docs: Updates contributors list

Merge pull request #243 from Lissy93/sec/fix-com-inj-vul
security: Replace exec with execFile
2025-04-27 03:20:38 +01:00 · 2025-04-12 12:13:01 +01:00 · 2025-04-12 12:12:51 +01:00 · 2025-04-12 12:11:11 +01:00 · 2025-04-03 13:05:33 +01:00
4 changed files with 36 additions and 46 deletions
--- a/.github/README.md
+++ b/.github/README.md
@@ -1065,13 +1065,6 @@ Credit to the following users for contributing to Web-Check
                    <sub><b>John Hupperts</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/eltociear">
                    <img src="https://avatars.githubusercontent.com/u/22633385?v=4" width="80;" alt="eltociear"/>
                    <br />
                    <sub><b>Ikko Eltociear Ashimine</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/Gertje823">
                    <img src="https://avatars.githubusercontent.com/u/36937387?v=4" width="80;" alt="Gertje823"/>
@@ -1079,8 +1072,6 @@ Credit to the following users for contributing to Web-Check
                    <sub><b>Gertje823</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/epreston">
                    <img src="https://avatars.githubusercontent.com/u/347224?v=4" width="80;" alt="epreston"/>
@@ -1088,6 +1079,8 @@ Credit to the following users for contributing to Web-Check
                    <sub><b>Ed Preston</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/dimitri-kandassamy">
                    <img src="https://avatars.githubusercontent.com/u/21193806?v=4" width="80;" alt="dimitri-kandassamy"/>
@@ -1122,6 +1115,13 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>Vincent Koc</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/BrianCurliss">
                    <img src="https://avatars.githubusercontent.com/u/1222949?v=4" width="80;" alt="BrianCurliss"/>
                    <br />
                    <sub><b>Brian Curliss</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/AnandChowdhary">
                    <img src="https://avatars.githubusercontent.com/u/2841780?u=747e554b3a7f12eb20b7910e1c87d817844f714f&v=4" width="80;" alt="AnandChowdhary"/>
@@ -1129,13 +1129,6 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>Anand Chowdhary</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/shrippen">
                    <img src="https://avatars.githubusercontent.com/u/2873570?v=4" width="80;" alt="shrippen"/>
                    <br />
                    <sub><b>Shrippen</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/bile0026">
                    <img src="https://avatars.githubusercontent.com/u/5022496?u=aec96ad173c0ea9baaba93807efa8a848af6595c&v=4" width="80;" alt="bile0026"/>
@@ -1180,13 +1173,6 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>Brian McGonagill</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/arcestia">
                    <img src="https://avatars.githubusercontent.com/u/7936962?u=41e34bb816ad09323e1650f3efc0bec4fb2bc5dd&v=4" width="80;" alt="arcestia"/>
                    <br />
                    <sub><b>Laurensius Jeffrey</b></sub>
                </a>
            </td>
            <td align="center">
                <a href="https://github.com/vlad-tim">
                    <img src="https://avatars.githubusercontent.com/u/11474041?u=eee43705b54d2ec9f51fc4fcce5ad18dd17c87e4&v=4" width="80;" alt="vlad-tim"/>
@@ -1201,8 +1187,6 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>HeliXZz</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/mryesiller">
                    <img src="https://avatars.githubusercontent.com/u/24632172?u=0d20f2d615158f87cd60a3398d3efb026c32f291&v=4" width="80;" alt="mryesiller"/>
@@ -1210,6 +1194,8 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>Göksel Yeşiller</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/sushibait">
                    <img src="https://avatars.githubusercontent.com/u/26634535?v=4" width="80;" alt="sushibait"/>
@@ -1245,8 +1231,6 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>Terminal Trove</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/st617">
                    <img src="https://avatars.githubusercontent.com/u/128325650?v=4" width="80;" alt="st617"/>
@@ -1254,6 +1238,8 @@ Huge thanks to these wonderful people, who sponsor me on GitHub, their support h
                    <sub><b>st617</b></sub>
                </a>
            </td>
 		</tr>
 		<tr>
            <td align="center">
                <a href="https://github.com/hudsonrock-partnerships">
                    <img src="https://avatars.githubusercontent.com/u/163282900?u=5f2667f7fe5d284ac7a2da6b0800ea8970b0fcbf&v=4" width="80;" alt="hudsonrock-partnerships"/>
--- a/api/screenshot.js
+++ b/api/screenshot.js
@@ -1,7 +1,7 @@
 import puppeteer from 'puppeteer-core';
 import chromium from 'chrome-aws-lambda';
 import middleware from './_common/middleware.js';
-import { exec } from 'child_process';
+import { execFile } from 'child_process';
 import { promises as fs } from 'fs';
 import path from 'path';
 import pkg from 'uuid';
@@ -20,32 +20,37 @@ const directChromiumScreenshot = async (url) => {
  return new Promise((resolve, reject) => {
    const chromePath = process.env.CHROME_PATH || '/usr/bin/chromium';
-    const command = `${chromePath} --headless --disable-gpu --no-sandbox --screenshot=${screenshotPath} "${url}"`;
+    const args = [
      '--headless',
      '--disable-gpu',
      '--no-sandbox',
      `--screenshot=${screenshotPath}`,
      url
    ];
    console.log(`[DIRECT-SCREENSHOT] Executing: ${chromePath} ${args.join(' ')}`);
-    console.log(`[DIRECT-SCREENSHOT] Executing command: ${command}`);
+    execFile(chromePath, args, async (error, stdout, stderr) => {
    exec(command, async (error, stdout, stderr) => {
      if (error) {
-        console.error(`[DIRECT-SCREENSHOT] Error executing Chromium: ${error.message}`);
+        console.error(`[DIRECT-SCREENSHOT] Chromium error: ${error.message}`);
        return reject(error);
      }
-      
+  
      try {
-        // Read screenshot
+        // Read the screenshot file
        const screenshotData = await fs.readFile(screenshotPath);
-        console.log(`[DIRECT-SCREENSHOT] Read ${screenshotData.length} bytes from screenshot file`);
+        console.log(`[DIRECT-SCREENSHOT] Screenshot read successfully`);
-        // Convert base64
+        // Convert to base64
        const base64Data = screenshotData.toString('base64');
-        
+  
-        // Clean 
+        await fs.unlink(screenshotPath).catch(err =>
        await fs.unlink(screenshotPath).catch(err => 
          console.warn(`[DIRECT-SCREENSHOT] Failed to delete temp file: ${err.message}`)
        );
-        
+  
        resolve(base64Data);
      } catch (readError) {
-        console.error(`[DIRECT-SCREENSHOT] Error reading screenshot: ${readError.message}`);
+        console.error(`[DIRECT-SCREENSHOT] Failed reading screenshot: ${readError.message}`);
        reject(readError);
      }
    });
--- a/package.json
+++ b/package.json
@@ -1,7 +1,7 @@
 {
  "name": "web-check",
  "type": "module",
-  "version": "2.0.0",
+  "version": "2.0.1",
  "homepage": "https://web-check.xyz",
  "scripts": {
    "start": "node server",
--- a/src/layouts/MetaTags.astro
+++ b/src/layouts/MetaTags.astro
@@ -22,7 +22,7 @@ const siteInfo = {
  site: import.meta.env.SITE_URL || 'https://web-check.xyz',
  analytics: {
    enable: import.meta.env.ENABLE_ANALYTICS,
-    domain: 'web-check.xyz',
+    domain: 'web-check.as93.net',
    script: 'https://no-track.as93.net/js/script.js',
  },
 };
@@ -92,8 +92,7 @@ const makeBreadcrumbs = () => {
 <!-- Non-tracking hit counter -->
 {analytics.enable && (
-  <script defer is:inline type="text/partytown"
+  <script defer data-domain={analytics.domain} src={analytics.script}></script>
    data-domain={analytics.domain} src={analytics.script}></script>
 )}
 <!-- Schema.org markup for Google -->
Author	SHA1	Message	Date
liss-bot	0a13335fde	docs: Updates contributors list	2025-04-27 03:20:38 +01:00
Alicia Sykes	50a11a5f50	Merge pull request #243 from Lissy93/sec/fix-com-inj-vul security: Replace exec with execFile	2025-04-12 12:13:01 +01:00
Alicia Sykes	145711bdc7	ref: Bump version to 2.0.1	2025-04-12 12:12:51 +01:00
Alicia Sykes	0e4958aa10	security: Replace exec with execFile	2025-04-12 12:11:11 +01:00
Alicia Sykes	99653868c7	ref: Update data-domain	2025-04-03 13:05:33 +01:00