一月累积更新

[Stapxs]

一月累积更新 - 第一部分

✨ 群收纳盒功能，现在你可以在群收纳盒中查看活跃的群消息了 <- #169
✨ at 和特别关心消息现在将显示为红色文本便于查看 <- #169
✨ 快速动画模式 💨 <- #169
✨ 本地高级链接解析，目前只支持 electron 端
✨ 好友信息面板完善 <- #160
🐛 修正移出群聊和撤回菜单显示判断异常 <- #169
🐛 +1 操作未拷贝对象导致渲染移动 <- #170
🐛 为 npx 快速启动组件限制访问路径防止非法访问 <- #176
💩 移除英文文档和英文多语言支持
💩 调整一个判断错误导致的统计功能损坏

[sourcery-ai]

喂 @Stapxs - 我已經審查咗你嘅改動 - 以下係啲意見：

整體意見：

• 喺 linkView.ts 入面，應該喺跟隨重定向之前，加入 URL 驗證同淨化，以防止潛在嘅 SSRF 安全漏洞
• 停用動畫嘅代碼可以用 CSS 類別嚟優化，而唔係動態插入樣式標籤，呢個會更加高效

以下係我喺審查期間睇嘅嘢

• 🟢 一般問題：一切正常
• 🟡 安全性：發現咗 2 個問題
• 🟢 測試：一切正常
• 🟡 複雜度：發現咗 1 個問題
• 🟢 文檔：一切正常

---

Sourcery 對開源項目係免費嘅 - 如果你鍾意我哋嘅審查，請考慮分享佢哋 ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{幫我變得更有用！請喺每個意見度撳 👍 或 👎，我會用呢個反饋嚟改進你嘅審查。}

Original comment in English

Hey @Stapxs - I've reviewed your changes - here's some feedback:

Overall Comments:

• Consider adding URL validation and sanitization in linkView.ts before following redirects to prevent potential SSRF vulnerabilities
• The animation disabling code could be optimized by using CSS classes instead of dynamically injecting style tags, which would be more performant

Here's what I looked at during the review

• 🟢 General issues: all looks good
• 🟡 Security: 2 issues found
• 🟢 Testing: all looks good
• 🟡 Complexity: 1 issue found
• 🟢 Documentation: all looks good

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[sonarqubecloud]

Quality Gate passed

Issues
9 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud