fix: resolve npm audit vulnerabilities in prismjs dependency (#37)

* Cleanup: Remove unused components and update configuration

- Remove RepoStatusButton component (unused)
- Remove git.ts library file (unused)
- Update ExecutionModeModal with improvements
- Update page.tsx with enhancements
- Update env.js configuration
- Update scripts router with improvements
- Update .env.example with new variables

* fix: resolve npm audit vulnerabilities in prismjs dependency

- Add overrides to force prismjs@^1.30.0 across all dependencies
- Update refractor to latest version (5.0.0)
- Resolves 3 moderate severity vulnerabilities in prismjs DOM Clobbering
- All npm audit vulnerabilities now resolved (0 vulnerabilities found)

Author: michelroegl-brunner

.env.example

@@ -1,7 +1,6 @@
 # When adding additional environment variables, the schema in "/src/env.js"
 # should be updated accordingly.
 
-ORIGINAL_REPO_URL="https://github.com/michelroegl-brunner/PVEScriptslocal"
 REPO_URL="https://github.com/community-scripts/ProxmoxVE"
 REPO_BRANCH="main"
 SCRIPTS_DIRECTORY="scripts"

package-lock.json

@@ -29,30 +29,29 @@
     "@trpc/server": "^11.0.0",
     "@types/react-syntax-highlighter": "^15.5.13",
     "@types/ws": "^8.18.1",
-    "@xterm/addon-attach": "^0.11.0",
     "@xterm/addon-fit": "^0.10.0",
     "@xterm/addon-web-links": "^0.11.0",
     "@xterm/xterm": "^5.5.0",
+    "better-sqlite3": "^9.6.0",
     "next": "^15.5.3",
     "node-pty": "^1.0.0",
     "react": "^19.0.0",
     "react-dom": "^19.0.0",
     "react-syntax-highlighter": "^15.6.6",
+    "refractor": "^5.0.0",
     "server-only": "^0.0.1",
-    "simple-git": "^3.28.0",
     "strip-ansi": "^7.1.2",
     "superjson": "^2.2.1",
     "ws": "^8.18.3",
-    "xterm": "^5.3.0",
-    "zod": "^3.24.2",
-    "better-sqlite3": "^9.6.0"
+    "zod": "^3.24.2"
   },
   "devDependencies": {
     "@eslint/eslintrc": "^3.3.1",
     "@tailwindcss/postcss": "^4.0.15",
     "@testing-library/jest-dom": "^6.8.0",
     "@testing-library/react": "^16.3.0",
     "@testing-library/user-event": "^14.6.1",
+    "@types/better-sqlite3": "^7.6.8",
     "@types/node": "^24.3.1",
     "@types/react": "^19.0.0",
     "@types/react-dom": "^19.0.0",
@@ -68,11 +67,13 @@
     "tailwindcss": "^4.0.15",
     "typescript": "^5.8.2",
     "typescript-eslint": "^8.27.0",
-    "vitest": "^3.2.4",
-    "@types/better-sqlite3": "^7.6.8"
+    "vitest": "^3.2.4"
   },
   "ct3aMetadata": {
     "initVersion": "7.39.3"
   },
-  "packageManager": "[email protected]"
+  "packageManager": "[email protected]",
+  "overrides": {
+    "prismjs": "^1.30.0"
+  }
 }

package.json

@@ -79,11 +79,9 @@ export function ExecutionModeModal({ isOpen, onClose, onExecute, scriptName }: E
         <div className="p-6">
           <div className="mb-6">
             <h3 className="text-lg font-medium text-gray-900 mb-2">
-              How would you like to execute &quot;{scriptName}&quot;?
+              Where would you like to execute &quot;{scriptName}&quot;?
             </h3>
-            <p className="text-gray-600 text-sm">
-              Choose between local execution or running the script on a remote server via SSH.
-            </p>
+            
           </div>
 
           {error && (
@@ -103,42 +101,7 @@ export function ExecutionModeModal({ isOpen, onClose, onExecute, scriptName }: E
 
           {/* Execution Mode Selection */}
           <div className="space-y-4 mb-6">
-            {/* Local Execution */}
-            <div 
-              className={`border rounded-lg p-4 cursor-pointer transition-colors ${
-                selectedMode === 'local' 
-                  ? 'border-blue-500 bg-blue-50' 
-                  : 'border-gray-200 hover:border-gray-300'
-              }`}
-              onClick={() => handleModeChange('local')}
-            >
-              <div className="flex items-center">
-                <input
-                  type="radio"
-                  id="local"
-                  name="executionMode"
-                  value="local"
-                  checked={selectedMode === 'local'}
-                  onChange={() => handleModeChange('local')}
-                  className="h-4 w-4 text-blue-600 focus:ring-blue-500 border-gray-300"
-                />
-                <label htmlFor="local" className="ml-3 flex-1 cursor-pointer">
-                  <div className="flex items-center">
-                    <div className="flex-shrink-0">
-                      <div className="w-10 h-10 bg-green-100 rounded-full flex items-center justify-center">
-                        <svg className="w-6 h-6 text-green-600" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                          <path strokeLinecap="round" strokeLinejoin="round" strokeWidth={2} d="M9.75 17L9 20l-1 1h8l-1-1-.75-3M3 13h18M5 17h14a2 2 0 002-2V5a2 2 0 00-2-2H5a2 2 0 00-2 2v10a2 2 0 002 2z" />
-                        </svg>
-                      </div>
-                    </div>
-                    <div className="ml-3">
-                      <h4 className="text-sm font-medium text-gray-900">Local Execution</h4>
-                      <p className="text-sm text-gray-500">Run the script on this server</p>
-                    </div>
-                  </div>
-                </label>
-              </div>
-            </div>
+
 
             {/* SSH Execution */}
             <div 

src/app/_components/ExecutionModeModal.tsx

@@ -33,6 +33,14 @@ export default function Home() {
           </p>
         </div>
 
+        {/* Controls */}
+        <div className="mb-8">
+          <div className="flex items-left pr-4 mb-6">
+            <SettingsButton />
+            <ResyncButton />
+          </div>
+        </div>
+
         {/* Tab Navigation */}
         <div className="mb-8">
           <div className="border-b border-gray-200">
@@ -61,13 +69,7 @@ export default function Home() {
           </div>
         </div>
 
-        {/* Controls */}
-        <div className="mb-8">
-          <div className="flex items-center justify-between mb-6">
-            <SettingsButton />
-            <ResyncButton />
-          </div>
-        </div>
+
 
         {/* Running Script Terminal */}
         {runningScript && (

src/app/_components/RepoStatusButton.tsx

@@ -13,7 +13,7 @@ export const env = createEnv({
       .default("development"),
     // Repository Configuration
     REPO_URL: z.string().url().optional(),
-    ORIGINAL_REPO_URL: z.string().url().optional(),
+   
     REPO_BRANCH: z.string().default("main"),
     SCRIPTS_DIRECTORY: z.string().default("scripts"),
     JSON_FOLDER: z.string().default("json"),
@@ -42,7 +42,7 @@ export const env = createEnv({
     NODE_ENV: process.env.NODE_ENV,
     // Repository Configuration
     REPO_URL: process.env.REPO_URL,
-    ORIGINAL_REPO_URL: process.env.ORIGINAL_REPO_URL,
+   
     REPO_BRANCH: process.env.REPO_BRANCH,
     SCRIPTS_DIRECTORY: process.env.SCRIPTS_DIRECTORY,
     JSON_FOLDER: process.env.JSON_FOLDER,

src/app/page.tsx

@@ -1,7 +1,6 @@
 import { z } from "zod";
 import { createTRPCRouter, publicProcedure } from "~/server/api/trpc";
 import { scriptManager } from "~/server/lib/scripts";
-import { gitManager } from "~/server/lib/git";
 import { githubJsonService } from "~/server/services/githubJsonService";
 import { localScriptsService } from "~/server/services/localScripts";
 import { scriptDownloaderService } from "~/server/services/scriptDownloader";
@@ -27,27 +26,7 @@ export const scriptsRouter = createTRPCRouter({
       };
     }),
 
-  // Get repository status
-  getRepoStatus: publicProcedure
-    .query(async () => {
-      const status = await gitManager.getStatus();
-      return status;
-    }),
-
-  // Update repository
-  updateRepo: publicProcedure
-    .mutation(async () => {
-      const result = await gitManager.pullUpdates();
-      return result;
-    }),
-
-  // Full update repository (git pull, npm install, build)
-  fullUpdateRepo: publicProcedure
-    .mutation(async () => {
-      const result = await gitManager.fullUpdate();
-      return result;
-    }),
-
+ 
   // Get script content for viewing
   getScriptContent: publicProcedure
     .input(z.object({ path: z.string() }))