metabuilder

git/metabuilder

Fork 0

mirror of https://github.com/johndoe6345789/metabuilder.git synced 2026-04-25 06:14:59 +00:00

Commit Graph

Author	SHA1	Message	Date
johndoe6345789	862cc29457	various changes	2026-03-09 22:30:41 +00:00
johndoe6345789	83eed65735	fix: Address CodeQL security alerts - workflow/plugins/ts/dict: Fix prototype pollution by adding key validation and safeAssign wrapper to reject __proto__, constructor, prototype keys in DictSet, DictDelete, DictPick, DictInvert classes - pastebin/quality-validator: Fix regex injection by escaping regex metacharacters before creating RegExp from user input in matchesPattern - postgres/generate-password: Fix biased cryptographic random by using crypto.randomInt() instead of modulo operation Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-01 22:41:56 +00:00
johndoe6345789	7ce8b4ae8a	refactor(workflow): convert all plugins to class/struct + factory pattern - Python: class extending NodeExecutor + factory.py (80+ plugins) - TypeScript: class implements NodeExecutor + factory.ts (7 groups, 116 classes) - Go: struct with methods + factory.go (36 plugins) - Rust: struct impl NodeExecutor trait + factory.rs (54 plugins) - Mojo: struct + factory.mojo (11 plugins) All package.json files now include: - files array listing source files - metadata.class/struct field - metadata.entrypoint field This enables a unified plugin loading system across all languages with no import side effects (Spring-style DI pattern). Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>	2026-01-22 14:53:04 +00:00

Author

SHA1

Message

Date

johndoe6345789

862cc29457

various changes

2026-03-09 22:30:41 +00:00

johndoe6345789

83eed65735

fix: Address CodeQL security alerts

- workflow/plugins/ts/dict: Fix prototype pollution by adding key
  validation and safeAssign wrapper to reject __proto__, constructor,
  prototype keys in DictSet, DictDelete, DictPick, DictInvert classes

- pastebin/quality-validator: Fix regex injection by escaping regex
  metacharacters before creating RegExp from user input in matchesPattern

- postgres/generate-password: Fix biased cryptographic random by using
  crypto.randomInt() instead of modulo operation

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-01 22:41:56 +00:00

johndoe6345789

7ce8b4ae8a

refactor(workflow): convert all plugins to class/struct + factory pattern

- Python: class extending NodeExecutor + factory.py (80+ plugins)
- TypeScript: class implements NodeExecutor + factory.ts (7 groups, 116 classes)
- Go: struct with methods + factory.go (36 plugins)
- Rust: struct impl NodeExecutor trait + factory.rs (54 plugins)
- Mojo: struct + factory.mojo (11 plugins)

All package.json files now include:
- files array listing source files
- metadata.class/struct field
- metadata.entrypoint field

This enables a unified plugin loading system across all languages
with no import side effects (Spring-style DI pattern).

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

2026-01-22 14:53:04 +00:00

3 Commits