Skip to content

[elsa] 增加在指针模式下,按住空格可以进入至拖拽模式的逻辑#35

Merged
CodeCasterX merged 1 commit intoModelEngine-Group:3.5.xfrom
RonnyChan96:3.5.x_enhancement_elsa_react_UX
Apr 10, 2025
Merged

[elsa] 增加在指针模式下,按住空格可以进入至拖拽模式的逻辑#35
CodeCasterX merged 1 commit intoModelEngine-Group:3.5.xfrom
RonnyChan96:3.5.x_enhancement_elsa_react_UX

Conversation

@RonnyChan96
Copy link
Copy Markdown
Contributor

@RonnyChan96 RonnyChan96 commented Apr 10, 2025

[elsa] 指针模式 + 空格按键 => 进入拖拽模式 ;拖拽模式 + 空格按键 => 不变;松开空格按键 => 回到原有模式

@RonnyChan96 RonnyChan96 force-pushed the 3.5.x_enhancement_elsa_react_UX branch from c555a5a to da242e7 Compare April 10, 2025 06:32
@CodeCasterX CodeCasterX requested a review from a team April 10, 2025 07:18
@CodeCasterX CodeCasterX self-assigned this Apr 10, 2025
@CodeCasterX CodeCasterX added type: enhancement A general enhancement in: elsa Issues in Elsa modules labels Apr 10, 2025
@CodeCasterX CodeCasterX added this to Nova Apr 10, 2025
@CodeCasterX CodeCasterX added this to the 3.5.0 milestone Apr 10, 2025
@CodeCasterX CodeCasterX merged commit 2438458 into ModelEngine-Group:3.5.x Apr 10, 2025
1 check passed
@github-project-automation github-project-automation bot moved this to Done in Nova Apr 10, 2025
@CodeCasterX CodeCasterX modified the milestones: 3.5.0, elsa 0.1.0 May 14, 2025
Yager-42 pushed a commit to Yager-42/fit-framework that referenced this pull request Aug 16, 2025
@RonnyChan96
[elsa] 增加在指针模式下,按住空格可以进入至拖拽模式的逻辑 (ModelEngine-Group#35)
2fb38a0
CodeCasterX added a commit that referenced this pull request Oct 13, 2025
@CodeCasterX @claude
fix: 重构Unzip类安全验证逻辑以满足CodeQL静态分析要求
bb5848e 
- 提取validateAndBuildTargetPath()方法集中处理安全验证
- 实现三道防线防御Zip Slip攻击:
  1. 检测绝对路径攻击(/, \, 驱动器字母)
  2. 使用Path.normalize()规范化路径
  3. 使用Path.startsWith()验证路径边界
- 优化JavaDoc注释,使用有序列表和完整类型引用
- 通过所有安全测试用例(15/15) ✓

此修复针对GitHub安全扫描问题#35(CWE-22: Zip Slip)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@CodeCasterX CodeCasterX CodeCasterX approved these changes

Assignees

@RonnyChan96 RonnyChan96

Labels

in: elsa Issues in Elsa modules type: enhancement A general enhancement

Projects

Nova
Status: Done

Milestone

elsa 0.1.0

Development

Successfully merging this pull request may close these issues.

2 participants

@RonnyChan96 @CodeCasterX