Skip to content

fix: resolve viewId inconsistency in WebPreviewProvider #5982

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
roomote wants to merge 3 commits into from
Closed

fix: resolve viewId inconsistency in WebPreviewProvider #5982

roomote wants to merge 3 commits into from

Conversation

@roomote
Copy link
Contributor

@roomote roomote bot commented Jul 20, 2025
edited by ellipsis-dev bot
Loading

This PR fixes the viewId inconsistency issue identified in PR #5981.

Changes

  • Changed viewId from "roo-code.webPreview" to "roo-cline.WebPreviewProvider" in WebPreviewProvider.ts to match the ID used in package.json and registerCommands.ts

Context

This fix addresses the review comment from ellipsis-dev bot in PR #5981. The security vulnerabilities mentioned in the GitHub Advanced Security comments were already addressed in the original PR through proper URL validation and sanitization.

Testing

  • ✅ All unit tests pass
  • ✅ TypeScript compilation successful
  • ✅ ESLint checks pass
  • ✅ Pre-commit hooks pass

Relates to #5971

Important

Fixes viewId inconsistency in WebPreviewProvider and adds documentation and tests for the Web Preview feature.

  • Behavior:
    • Changed viewId from "roo-code.webPreview" to "roo-cline.WebPreviewProvider" in WebPreviewProvider.ts to match package.json and registerCommands.ts.
  • Documentation:
    • Added docs/web-preview.md to document the Web Preview feature.
  • Testing:
    • Added tests in WebPreviewProvider.spec.ts to cover new functionality.
  • Commands:
    • Added openWebPreview command in registerCommands.ts to focus on the web preview panel.
  • Misc:
    • Updated README.md to include web application preview feature.
    • Added ESLint configuration for preview.js in eslint.config.mjs.

This description was created by Ellipsis for a125c4b. You can customize this summary. It will automatically update as commits are pushed.

roomote added 3 commits July 20, 2025 05:37
@roomote
feat: add integrated web preview panel with element selection
e6b80cc 
- Implement WebPreviewProvider for managing preview panel
- Add element selection overlay with DOM inspection
- Extract comprehensive element context (HTML, CSS, position, etc.)
- Integrate selected element context with AI chat
- Add responsive controls and device simulation
- Support multiple device viewports (mobile, tablet, desktop)
- Handle cross-origin restrictions gracefully
- Add comprehensive tests for WebPreviewProvider
- Update documentation with usage guide

Closes #5971
@roomote
fix: address CodeQL security vulnerabilities in URL handling
a9e4f1e 
- Validate and sanitize URLs before loading in iframe
- Use URL constructor to parse and validate URLs
- Only allow HTTP and HTTPS protocols
- Use setAttribute instead of direct property assignment
- Add proper error handling for invalid URLs

This fixes:
- Client-side URL redirect vulnerability
- DOM text reinterpreted as HTML
- Client-side cross-site scripting (XSS)
@roomote
fix: resolve viewId inconsistency in WebPreviewProvider
a125c4b 
- Changed viewId from "roo-code.webPreview" to "roo-cline.WebPreviewProvider" to match package.json and registerCommands.ts
- This fixes the issue identified by ellipsis-dev bot in PR #5981
- Security vulnerabilities were already fixed in the original PR
@roomote roomote bot requested review from cte, jr and mrubens as code owners July 20, 2025 05:53
@dosubot dosubot bot added size:XXL This PR changes 1000+ lines, ignoring generated files. bug Something isn't working documentation Improvements or additions to documentation labels Jul 20, 2025
@roomote roomote bot mentioned this pull request Jul 20, 2025
Closed
@hannesrudolph hannesrudolph added the Issue/PR - Triage New issue. Needs quick review to confirm validity and assign labels. label Jul 20, 2025
@SannidhyaSah
Copy link
Collaborator

SannidhyaSah commented Jul 21, 2025

@daniel-lxs This PR is also not good. You can close this too . I'm working on the version myself .

@daniel-lxs daniel-lxs closed this Jul 22, 2025
@github-project-automation github-project-automation bot moved this from New to Done in Roo Code Roadmap Jul 22, 2025
@github-project-automation github-project-automation bot moved this from Triage to Done in Roo Code Roadmap Jul 22, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mrubens mrubens Awaiting requested review from mrubens mrubens is a code owner

@cte cte Awaiting requested review from cte cte is a code owner

@jr jr Awaiting requested review from jr jr is a code owner

Assignees

No one assigned

Labels

bug Something isn't working documentation Improvements or additions to documentation Issue/PR - Triage New issue. Needs quick review to confirm validity and assign labels. size:XXL This PR changes 1000+ lines, ignoring generated files.

Projects

Roo Code Roadmap
Archived in project

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@SannidhyaSah @hannesrudolph @daniel-lxs @roomote