Skip to content

Nitro ads test#84

Merged
codergautam merged 1 commit intomasterfrom
mapimprovements
Feb 5, 2026
Merged

Nitro ads test#84
codergautam merged 1 commit intomasterfrom
mapimprovements

Conversation

@codergautam
Copy link
Owner

@codergautam codergautam commented Feb 5, 2026

No description provided.

Copilot AI review requested due to automatic review settings February 5, 2026 16:17
@codergautam codergautam merged commit d9f8d87 into master Feb 5, 2026
1 check passed
Copilot AI reviewed Feb 5, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR modifies the NitroAds user token implementation to send plain email addresses instead of SHA-256 hashed values. Based on the title "Nitro ads test", this appears to be a test change to evaluate different ad targeting approaches.

Changes:

  • Modified window.nitroAds.addUserToken to send plain email addresses with 'PLAIN' parameter instead of SHA-256 hashed values

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

components/home.js
const hashArray = Array.from(new Uint8Array(hashBuffer));
const hashHex = hashArray.map(b => b.toString(16).padStart(2, '0')).join('');
window.nitroAds.addUserToken(hashHex, 'SHA-256');
window.nitroAds.addUserToken(email, 'PLAIN');
Copy link

Copilot AI Feb 5, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The change from hashed email to plain email (PLAIN) exposes user email addresses to the NitroAds advertising network. This is a significant privacy and security concern as it:

  1. Sends personally identifiable information (PII) to a third-party ad network
  2. May violate privacy regulations (GDPR, CCPA) depending on your user consent and privacy policy
  3. Increases the risk of data exposure if NitroAds experiences a breach

The original implementation correctly hashed the email using SHA-256 to maintain user anonymity while still enabling ad targeting. Unless there's a specific requirement to send plain emails to NitroAds (which should be explicitly documented and consented to by users), this change should be reverted.

Suggested change
window.nitroAds.addUserToken(email, 'PLAIN');
window.nitroAds.addUserToken(hashHex, 'SHA256');

Copilot uses AI. Check for mistakes.
components/home.js
Comment on lines 248 to 252
const encoder = new TextEncoder();
const data = encoder.encode(email.toLowerCase().trim());
const hashBuffer = await crypto.subtle.digest('SHA-256', data);
const hashArray = Array.from(new Uint8Array(hashBuffer));
const hashHex = hashArray.map(b => b.toString(16).padStart(2, '0')).join('');
Copy link

Copilot AI Feb 5, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The code now performs SHA-256 hashing of the email (lines 248-252) but never uses the resulting hashHex value. The hashing logic should either be removed if plain email is intentionally being sent, or the hashHex variable should be used instead of the plain email in the addUserToken call. This dead code reduces maintainability and may confuse future developers about the intended behavior.

Copilot uses AI. Check for mistakes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@codergautam