| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | fix(security): sanitize badge_wall_css server-side, render via textContent | Fuwn | 21 hours | 1 | -12/+1 |
| | | | | | | | | | | | | | | | | | Custom badge-wall CSS was sanitised only client-side with a fragile regex and injected via innerHTML, while the stored value stayed raw. Sanitise at the write boundary instead (setCSS, covering both the REST and GraphQL paths) with a css-tree pass that parses leniently and drops @import, behavior/-moz-binding, expression()/javascript: values, and </style> break-out attempts; render with textContent instead of innerHTML so break-out is impossible by construction (CSP already blocks inline script). css-tree stays server-only. A behaviour-gate test confirms ordinary CSS (backdrop-filter, content, url(), @media, @keyframes) is preserved while the dangerous constructs are removed. The previous regex also silently stripped all `content:` declarations; those now render correctly. | ||||
| * | style: apply biome autofixes and resolve remaining lint findings | Fuwn | 4 days | 5 | -51/+50 |
| | | | | | | | | | | | | | | | Auto-fixed cosmetic findings (import ordering, obj["k"]->obj.k, optional chaining, template literals, Date.now, parseInt radix, useless ternaries/ switch cases). Resolved the non-autofixable rest by hand: - Senpy: static-only class -> object literal (no this/static reliance). - app.html: var global shim -> window.global = window (keeps the shim, drops the unused-var flag). - biome-ignore with rationale for the logout document.cookie clear and the holodule scrape non-null assertion. Verified: biome check 0 diagnostics, svelte-check 0/0, 24/24 unit tests. | ||||
| * | feat(analytics): track umami events across core actions | Fuwn | 4 days | 1 | -2/+7 |
| | | | | | | | | | | Add a guarded track() wrapper (src/lib/analytics.ts) so programmatic events no-op instead of throwing when umami is absent (localhost), lazily loaded, or ad-blocked. Instrument the core loop (progress increment, roulette, list filter, force refresh), the auth funnel (log in/out, command palette), settings toggles/selects at the wrapper level, sync/debug/feed actions, and tool/sharing actions. | ||||
| * | refactor(locale): move hardcoded UI strings into english locale | Fuwn | 9 days | 3 | -67/+83 |
| | | | | | | | | | | | | | | | | | | Adds optional namespaces (common, errors, commandPalette, headTitle, notifications, schedule, events, home, reader, routes, badgePreview, badgeWall) and extends existing ones (settings.*, lists.*, tools.*, user.*, hololive.*) on the Locale interface. New fields are optional so japanese.ts can omit them; svelte-i18n's fallbackLocale handles the runtime miss. HeadTitle gains an optional routeKey prop for type-safe lookup. defaultActions becomes a factory so the command palette re-reads locale on language toggle. The existing JP feedback translation in routes/settings is preserved via japanese.ts. Out of scope (kept hardcoded): service-worker.ts, app.html, Landing*.svelte, tools.ts registry, Easter Event 2025 pages. | ||||
| * | refactor(colours): tokenise card shadows and scrims | Fuwn | 2026-05-15 | 1 | -2/+2 |
| | | | | | | | | | | | | Introduce --shadow-card, --shadow-card-emphasized, --shadow-cta, --scrim, --scrim-soft, and --scrim-banner. Migrate 14 inline literals (card.css, input.css, Notification, MediaRoulette, the two Landing CTA buttons, the popup overlay, the palette and roulette scrims, three identity banners, the user profile cover art shadow) onto the tokens, with light/dark adaptation handled by the existing prefers-color-scheme blocks instead of duplicated inline. Two single-use Landing demo-focus values stay inline. | ||||
| * | fix(badges): hide outbound link notice | Fuwn | 2026-04-01 | 1 | -1/+1 |
| | | |||||
| * | fix(cache): preserve hydrated client state | Fuwn | 2026-03-28 | 1 | -1/+2 |
| | | |||||
| * | fix(profile): restore owner controls for new accounts | Fuwn | 2026-03-27 | 1 | -14/+26 |
| | | |||||
| * | chore(biome): drop formatter style overrides | Fuwn | 2026-03-01 | 7 | -487/+524 |
| | | |||||
| * | chore(biome): re-enable noImplicitAnyLet rule | Fuwn | 2026-03-01 | 2 | -2/+4 |
| | | |||||
| * | chore(biome): enable svelte formatting | Fuwn | 2026-03-01 | 3 | -487/+487 |
| | | |||||
| * | chore(types): decouple app code from fragile generated route types | Fuwn | 2026-03-01 | 1 | -1/+1 |
| | | |||||
| * | fix: Resolve all ESLint errors and warnings | Fuwn | 2026-01-29 | 2 | -5/+5 |
| | | |||||
| * | fix: Add null guards and improve error messaging for user lookups | Fuwn | 2026-01-23 | 4 | -6/+27 |
| | | |||||
| * | refactor: Migrate event handlers to new Svelte 5 syntax | Fuwn | 2026-01-23 | 2 | -30/+30 |
| | | |||||
| * | refactor(layout): Replace empty p elements with reusable Spacer component | Fuwn | 2026-01-23 | 2 | -24/+26 |
| | | |||||
| * | fix(html): Replace self-closing non-void HTML elements with proper closing tags | Fuwn | 2026-01-23 | 2 | -26/+26 |
| | | |||||
| * | deps(svelte): Migrate to Svelte 5 with compatibility mode | Fuwn | 2026-01-22 | 1 | -3/+8 |
| | | |||||
| * | format: Apply Prettier formatting | Fuwn | 2025-12-15 | 2 | -34/+31 |
| | | |||||
| * | feat(badges): Add a no-load query parameter | Fuwn | 2025-09-06 | 1 | -8/+15 |
| | | |||||
| * | style(src): Remove self-closing tags with attributes | Fuwn | 2025-06-23 | 1 | -2/+2 |
| | | |||||
| * | style(src): Remove self-closing p and div tags | Fuwn | 2025-06-23 | 2 | -24/+24 |
| | | |||||
| * | feat: Move remaining localStorage usages to localforage | Fuwn | 2025-06-12 | 2 | -16/+17 |
| | | |||||
| * | style: Reformat using latest formatting | Fuwn | 2025-06-11 | 1 | -2/+7 |
| | | |||||
| * | feat: Add Badge Wall action to command palette | Fuwn | 2025-05-06 | 1 | -1/+6 |
| | | |||||
| * | fix(badges): Ignore empty user-set time | Fuwn | 2025-05-04 | 1 | -1/+1 |
| | | |||||
| * | fix(badges): Properly set badge time when mutating | Fuwn | 2025-05-02 | 1 | -1/+1 |
| | | |||||
| * | revert: Clean up easter event | Fuwn | 2025-04-21 | 1 | -4/+1 |
| | | |||||
| * | feat(EasterEgg): Add more eggs | Fuwn | 2025-04-19 | 1 | -1/+4 |
| | | |||||
| * | chore(prettier): use spaces instead of tabs | Fuwn | 2024-10-09 | 6 | -1632/+1632 |
| | | |||||
| * | feat(graphql): add badgeCount field | Fuwn | 2024-10-08 | 2 | -6/+3 |
| | | |||||
| * | fix(graphql): wait for database update on badge mutation | Fuwn | 2024-10-07 | 1 | -1/+0 |
| | | |||||
| * | fix(badges): fix field clearing regression | Fuwn | 2024-10-07 | 1 | -0/+2 |
| | | |||||
| * | chore(badges): remove old comments | Fuwn | 2024-10-06 | 1 | -40/+0 |
| | | |||||
| * | feat(badges): use locally cached identity | Fuwn | 2024-10-06 | 1 | -327/+301 |
| | | |||||
| * | feat(user): request id in initial query | Fuwn | 2024-10-06 | 1 | -0/+2 |
| | | |||||
| * | feat(badges): return user for badge mutations | Fuwn | 2024-10-06 | 2 | -40/+62 |
| | | |||||
| * | feat(user): live update for mutations | Fuwn | 2024-10-06 | 1 | -6/+30 |
| | | |||||
| * | feat(user): use preferences graphl api | Fuwn | 2024-10-06 | 2 | -51/+88 |
| | | |||||
| * | feat(badges): use preferences graphql api | Fuwn | 2024-10-06 | 3 | -43/+55 |
| | | |||||
| * | feat(badges): move badge operations to graphql | Fuwn | 2024-10-06 | 5 | -401/+496 |
| | | |||||
| * | chore(npm): fix graphql builder | Fuwn | 2024-09-28 | 2 | -22/+22 |
| | | |||||
| * | feat(user): move profile page badges to graphql | Fuwn | 2024-09-28 | 4 | -21/+39 |
| | | |||||
| * | refactor(Data): rename database references | Fuwn | 2024-08-24 | 2 | -3/+3 |
| | | |||||
| * | feat(settings): data saver | Fuwn | 2024-08-22 | 1 | -1/+4 |
| | | |||||
| * | refactor(Database): move Supabase user modules to User module | Fuwn | 2024-07-25 | 2 | -9/+9 |
| | | |||||
| * | refactor(Database): separate providers | Fuwn | 2024-07-25 | 2 | -3/+3 |
| | | |||||
| * | feat(BadgePreview): move seek buttons to preview panel | Fuwn | 2024-06-14 | 1 | -22/+4 |
| | | |||||
| * | feat(badges): overseer wording | Fuwn | 2024-06-13 | 1 | -5/+6 |
| | | |||||
| * | refactor(badges): move category toggle to script | Fuwn | 2024-05-27 | 1 | -14/+14 |
| | | |||||