rewrite of RSS module, two additional modules, other tweaks #230
Conversation
|
We'd much rather that you limit your pull requests to one focus at a time. It makes it far easier for us to merge that way. To pull this, I'd need to go through and figure out which individual things you've done we actually want. For example, you were right to modify the regexes in ai, but leaving commented code in version-controlled software is generally frowned upon - better to remove it entirely and use the version control to bring it back if you need it. (Not to mention, at the moment I don't think we want to remove that feature.) And we already have All that said, I'm afraid your RSS module introduces a SQL injection vulnerability. Admittedly, you'd have to be an admin to cause it, but such a thing could just as easily lead to a difficult bug down the line. I'm also not sure what RSS authentication is for, or what the purpose is of the Regarding RSS specifically, we are planning a new database system which is not yet fully defined. (See issue #194.) The current RSS module needs much more work done than just refactoring to that coming system, so I certainly won't tell you not to redo it before that gets finalized, but when it does come out it'll make some things easier (like, for example, reliably executing more kinds of SQL queries safely). I don't say all this to dissuade you from contributing; we certainly appreciate it. But following the guidelines in the CONTRIBUTING file will make it much easier to merge your commits. |
ghost
closed this
Just some stuff I've tweaked this week, feel free to merge if you find these appropriate.
Core
socket.read()instead ofread()AI
Join
.join <#channel>Raw
.raw PRIVMSG #lobby :Just testing.RSS
mechanize), configurable, work in progressSUB