Closed (fixed)
Project:
Drupal.org security advisory coverage applications
Component:
module
Priority:
Normal
Category:
Task
Assigned:
Reporter:
Created:
4 Jun 2023 at 14:54 UTC
Updated:
7 Jul 2023 at 14:59 UTC
Jump to comment: Most recent
Comments
Comment #2
vinaymahale commentedComment #3
shashank5563 commentedThank you for applying! Reviewers will review the project files, describing what needs to be changed.
Please read Review process for security advisory coverage: What to expect for more details and Security advisory coverage application checklist to understand what reviewers look for. Tips for ensuring a smooth review gives some hints for a smoother review.
To reviewers: Please read How to review security advisory coverage applications, What to cover in an application review, and Drupal.org security advisory coverage application workflow.
While this application is open, only the user who opened the application can make commits to the project used for the application.
Reviewers only describe what needs to be changed; they don't provide patches to fix what reported in a review.
Comment #4
avpadernoComment #5
shashank5563 commentedFix PHPCS Issue.
Comment #6
vinaymahale commentedComment #7
vinaymahale commentedHello everyone,
All the above PHPCS issues have been addressed and committed to branch 1.0.x
Except for the below error which I was not able to replicate
@shashank5563 can you please help replicate the issue for me? I ran the phpcs and it did not give me the above error!
Please validate the fixed errors and let me know if any changes are needed.
Thank you!
Comment #8
vinaymahale commentedComment #9
avpadernosrc/Form/MetadataConfigForm.php
That is the documentation comment for a class, not a function. There is no need to start the comment with Function to nor Class to.
The state service is used to store temporary information that is not human-edited, as Information types says. Human-edited information is stored in a configuration object; that is why the
ConfigFormBaseclass has theconfig()method.$this->messenger()->addMessage('Configurations saved successfully');The first argument passed to
MessengerInterface::addError(),MessengerInterface::addMessage(),MessengerInterface::addStatus(), andMessengerInterface::addWarning()must be a translatable string.That message is not necessary, though, since the parent method already shows a message; it just needs to be called.
open_ai_metadata.module
$node = \Drupal::routeMatch()->getParameter('node');The node object is already available in
$variables['node'].The short description for an AJAX callback is similar to the one used for
_update_ckeditor5_html_filter(). (The longer description is optional, as for hooks.)Comment #10
vinaymahale commentedI have addressed the above feedback and changes have been committed to branch 1.0.x
State service has been now only used to store the Open AI access token to maintain the sensitive information.
Please validate the fixed security feedback and let me know if any changes are needed.
Comment #11
vinaymahale commentedComment #12
vinaymahale commentedComment #13
avpadernoThank you for your contribution! I am going to update your account.
These are some recommended readings to help with excellent maintainership:
You can find more contributors chatting on the Slack #contribute channel. So, come hang out and stay involved.
Thank you, also, for your patience with the review process.
Anyone is welcome to participate in the review process. Please consider reviewing other projects that are pending review. I encourage you to learn more about that process and join the group of reviewers.
I thank all the reviewers.
Comment #14
avpaderno