nobody
/
LocalCDN
17
322
Fork 14
Code Issues 1 Pull Requests Releases 100 Wiki Activity

[addons.mozilla.org] Information about v2.6.2 #285

New Issue
Closed
opened 2021-02-26 06:31:34 +00:00 by nobody · 16 comments
nobody commented 2021-02-26 06:31:34 +00:00
Owner

Maybe some of you have already noticed, version 2.6.2 has been released here, but you can't see it on addons.mozilla.org yet. This is caused by the fact that Mozilla has rejected the version. The reason is that I am supposed to give the original source of all 158 resources. Links to CDNs are not allowed 😒

Your add-on includes third-party libraries. Please provide the origin of the exact library version you were using and make sure you are using an exact copy of the original maintainers release version. For more information, refer to https://extensionworkshop.com/documentation/publish/third-party-library-usage/ .

Unfortunately this is difficult because e.g. Babel does not provide precompiled JavaScript files. In the case of Google Material Icons and Bootstrap, I have edited or renamed files to allow replacement or version upgrade without problems.

I'll wait and see what I get as a response and update this issue immediately...

Maybe some of you have already noticed, version 2.6.2 has been released [here](https://codeberg.org/nobody/LocalCDN/releases/tag/v2.6.2), but you can't see it on addons.mozilla.org yet. This is caused by the fact that Mozilla has rejected the version. The reason is that I am supposed to give the original source of all 158 resources. Links to CDNs are not allowed :unamused: > Your add-on includes third-party libraries. Please provide the origin of the exact library version you were using and make sure you are using an exact copy of the original maintainers release version. For more information, refer to https://extensionworkshop.com/documentation/publish/third-party-library-usage/ . Unfortunately this is difficult because e.g. [Babel](https://codeberg.org/nobody/LocalCDN/src/branch/main/resources/babel-polyfill/7.12.1) does not provide precompiled JavaScript files. In the case of [Google Material Icons](https://codeberg.org/nobody/LocalCDN/src/branch/main/resources/google-material-design-icons/google-material-design-icons.css#L6) and [Bootstrap](https://codeberg.org/nobody/LocalCDN/src/branch/main/resources/twitter-bootstrap/4.6.0), I have edited or renamed files to allow replacement or version upgrade without problems. I'll wait and see what I get as a response and update this issue immediately...
👍 3
nobody changed title from Information about v2.6.2 in addons.mozilla.org to [addons.mozilla.org] Information about v2.6.2 2021-02-26 06:36:16 +00:00
colbergv commented 2021-02-26 15:14:21 +00:00

You had us hope for a "recommended" badge there :) But we are behind you.

You had us hope for a "recommended" badge there :) But we are behind you.
❤️ 3
nobody added this to the v2.6.3 milestone 2021-02-28 17:23:58 +00:00
nobody commented 2021-03-05 06:11:13 +00:00
Poster
Owner

Unfortunately I still have no feedback from Mozilla. The last answer from the reviewer was on 2021-02-26 😒

Screenshot AMO Developer Hub

Unfortunately I still have no feedback from Mozilla. The last answer from the reviewer was on 2021-02-26 😒 ![Screenshot AMO Developer Hub](https://codeberg.org/attachments/93fd1c8b-3dad-4e73-8550-15447260a90d)
screenshot9958.png
14 KiB
😕 1
6543 commented 2021-03-05 08:19:24 +00:00
Collaborator

can we as users vote for it somehow :D ?

can we as users vote for it somehow :D ?
nobody commented 2021-03-06 07:13:04 +00:00
Poster
Owner

That would be nice, but I don't think so.

At worst, Mozilla will disable the extension because it violates the policy. 😞

That would be nice, but I don't think so. At worst, Mozilla will disable the extension because it violates the policy. :disappointed:
6543 commented 2021-03-06 10:49:31 +00:00
Collaborator

why is Decentraleyes allowed to do the same ?!?

why is Decentraleyes allowed to do the same ?!?
nobody commented 2021-03-07 07:07:05 +00:00
Poster
Owner

I don't know. Looks like something changed in the validation process in Feb 2021 (see screenshot). The last update of Decentraleyes was in November last year. Maybe Thomas (developer of Decentraleyes) has already been contacted by Mozilla and is also affected.

The test/beta versions are also affected. 😒

I don't know. Looks like something changed in the validation process in Feb 2021 (see screenshot). The last update of Decentraleyes was in November last year. Maybe Thomas (developer of Decentraleyes) has already been contacted by Mozilla and is also affected. The test/beta versions are also affected. 😒
screenshot9959.png
121 KiB
screenshot9960.png
57 KiB
screenshot9959.png screenshot9960.png
colbergv commented 2021-03-07 18:32:30 +00:00

This is sad. LocalCDN is one of my must-haves.

This is sad. LocalCDN is one of my must-haves.
nobody commented 2021-03-09 05:04:14 +00:00
Poster
Owner

Good news. I have received a reply from Mozilla:

Please create a script that would download the files from the servers and compare them to the files inside the XPI. Please remember that established libraries must be included in their original format without any modification (changing the file name does not matter)

Good news. I have received a reply from Mozilla: > Please create a script that would download the files from the servers and compare them to the files inside the XPI. Please remember that established libraries must be included in their original format without any modification (changing the file name does not matter)
👍 2
nobody referenced this issue from a commit 2021-03-09 05:04:28 +00:00
Added: Audit script (#285)
colbergv commented 2021-03-09 17:38:10 +00:00

That's really great to hear.

That's really great to hear.
6543 commented 2021-03-11 19:10:28 +00:00
Collaborator

@nobody sorry but I tryed your ./audit.sh and had to do chmod +x audit.sh first (should be set & commited ... but this is only a nit)

then I only got No connection: ../resources ... for USE_TOR=false

@nobody sorry but I tryed your `./audit.sh` and had to do `chmod +x audit.sh` first (should be set & commited ... but this is only a nit) then I only got `No connection: ../resources ...` for USE_TOR=false
nobody commented 2021-03-12 05:23:30 +00:00
Poster
Owner

Thanks for testing 👍

I've implemented a few checks, because maybe something is missing on this OS.

Which OS are you using?

Thanks for testing :+1: I've implemented a few checks, because maybe something is missing on this OS. Which OS are you using?
6543 commented 2021-03-12 16:59:34 +00:00
Collaborator

I use latest artix (linux 5.11.4 x64)

with your patches if i start it with: USE_TOR=false ./audit.sh I get this:

...
REMOTE HASH: -
STATUS:      NO CONNECTION https://cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js
=============================================================================================================================================
SCANNED:     9/1071
PATH:        ../resources/Swiper/5.4.5/css/swiper.min.css
1615568271 ERROR torsocks[14691]: [socks5] Resolve destination buffer too small (in socks5_recv_resolve_reply() at socks5.c:701)
LOCAL HASH:  -
REMOTE HASH: -
STATUS:      NO CONNECTION https://cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/css/swiper.min.css
=====================================================
...
I use latest artix (linux 5.11.4 x64) with your patches if i start it with: `USE_TOR=false ./audit.sh` I get this: ```sh ... REMOTE HASH: - STATUS: NO CONNECTION https://cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js ============================================================================================================================================= SCANNED: 9/1071 PATH: ../resources/Swiper/5.4.5/css/swiper.min.css 1615568271 ERROR torsocks[14691]: [socks5] Resolve destination buffer too small (in socks5_recv_resolve_reply() at socks5.c:701) LOCAL HASH: - REMOTE HASH: - STATUS: NO CONNECTION https://cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/css/swiper.min.css ===================================================== ... ```
nobody commented 2021-03-13 05:47:34 +00:00
Poster
Owner

You have to manually edit that option inside the script and then run the script.

...
# ============================================================================= 
# SETTINGS:
#
# Use local Tor Proxy
USE_TOR=false   #fast (~ 5 minutes)
# USE_TOR=true    #slow (~ 15 minutes)
#
...

I'll add this in the README.md 👍

You have to manually edit that option [**inside** the script](https://codeberg.org/nobody/LocalCDN/src/branch/develop/audit/audit.sh#L26) and then run the script. ```sh ... # ============================================================================= # SETTINGS: # # Use local Tor Proxy USE_TOR=false #fast (~ 5 minutes) # USE_TOR=true #slow (~ 15 minutes) # ... ``` I'll add this in the README.md 👍
😆 1
6543 commented 2021-03-13 17:55:30 +00:00
Collaborator

I should have looked more into the script ... but I just asumed it handle things as normal linux scripts do ...

I should have looked more into the script ... but I just asumed it handle things as normal linux scripts do ...
nobody commented 2021-03-14 10:06:42 +00:00
Poster
Owner

Which variant you use doesn't make a big difference. The only problem with your variant is that the variable is set to true inside the script.

Normally we start bash scripts with bash script or bash script.sh, if we follow the conventions of Google. After the script name there are arguments, e.g. bash script -h or bash script.sh -h. In this case I've added the .sh extension so Windows users will immediately know what it is when WSL is configured.

The variant VARIABLE=true script.sh I've seen very rarely.

I've added a small help, which can be called with bash audit.sh -h.

Which variant you use doesn't make a big difference. The only problem with your variant is that the variable is set to true inside the script. Normally we start bash scripts with `bash script` or `bash script.sh`, if we follow the [conventions of Google](https://google.github.io/styleguide/shellguide.html#s1.1-which-shell-to-use). After the script name there are arguments, e.g. `bash script -h` or `bash script.sh -h`. In this case I've added the `.sh` extension so Windows users will immediately know what it is when WSL is configured. The variant `VARIABLE=true script.sh` I've seen very rarely. --- I've added a small help, which can be called with `bash audit.sh -h`.
nobody commented 2021-03-14 11:03:22 +00:00
Poster
Owner

What a bummer!
Now Mozilla's validator doesn't work. It works without the resources.

https://github.com/mozilla/addons/issues/1302

The version v2.6.3 cannot be published/signed at the moment.

This was probably only a temporary problem 🥳 🥳 🥳

I think we can close here now because version v2.6.2 was not released and now v2.6.3 is waiting for release.

Char errors

~~What a bummer!~~ ~~Now Mozilla's validator doesn't work. It works without the resources.~~ ~~https://github.com/mozilla/addons/issues/1302~~ ~~The version v2.6.3 cannot be published/signed at the moment.~~ This was probably only a temporary problem 🥳 🥳 🥳 I think we can close here now because version v2.6.2 was not released and now v2.6.3 is waiting for release. [<img src="https://codeberg.org/attachments/818ac654-9bd3-4467-99e7-95572433db34" alt="Char errors" width="400"/>](https://codeberg.org/attachments/818ac654-9bd3-4467-99e7-95572433db34)
screenshot9966.png
25 KiB
👍 1
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
develop
main
experimental
v2.6.56
v2.6.55
v2.6.54
v2.6.53
v2.6.52
v2.6.51
v2.6.50
v2.6.49
v2.6.48
v2.6.47
3.0.0beta2
3.0.0beta1
v2.6.46
v2.6.45
v2.6.44
v2.6.43
v2.6.42
v2.6.41
v2.6.40
v2.6.39
v2.6.38
v2.6.37
v2.6.36
v2.6.35
v2.6.34
v2.6.33
v2.6.32
v2.6.31
v2.6.30
v2.6.29
v2.6.28
v2.6.27
v2.6.26
v2.6.25
v2.6.24
v2.6.23
v2.6.22
v2.6.21
v2.6.20
v2.6.19
v2.6.18
v2.6.17
v2.6.16
v2.6.15
v2.6.14
v2.6.13
v2.6.12
v2.6.10
v2.6.9
v2.6.8
v2.6.7
v2.6.6
v2.6.5
v2.6.4
v2.6.3
v2.6.2
v2.6.1
v2.6.1beta1
v2.6.0
v2.6.0beta5
v2.6.0beta4
v2.6.0beta2
v2.5.13
v2.5.12
v2.5.11
v2.5.10
v2.5.9
v2.5.8
v2.5.7
v2.5.6
v2.5.5
v2.5.4
v2.5.3
v2.5.2
v2.5.1
v2.5.0
v2.4.0
v2.3.1.10
v2.3.1
v2.3.0
v2.2.18.3
v2.2.17.2
v2.2.17
v2.2.16.1
v2.2.16
v2.2.15
v2.2.14.2
v2.2.14
v2.2.13
v2.2.12
v2.2.10
v2.2.9
v2.2.8
v2.2.7.5
v2.2.7
v2.2.6
v2.2.5
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.14
v2.1.13
v2.1.12
v2.1.11
v2.1.10
v2.1.9
v2.1.8
v2.1.7
v2.1.6
v2.1.5
v2.1.4.3
v2.1.4
v2.1.3
v2.1.2
v2.1.1
v2.1.0
v2.0.24
v2.0.23
v2.0.22
v2.0.21
v2.0.20
v2.0.19
v2.0.18
v2.0.17
Labels
Clear labels   
bug

Something is not working   
Chromium incompatibility/bug

Incompatible or a bug in Chromium-based browsers   
documentation

documentation   
duplicate

This issue or pull request already exists   
enhancement

Feature request/Enhancement   
firefox-bug

Firefox bug   
framework/mapping

missing/obsolete framework or mapping   
help wanted

Need some help   
invalid

Something is wrong   
need info

Need info from the reporter   
observation

Things to monitor   
pr welcome
   
question/discussion

Question about the extension   
sop/cors

Same-Origin-Policy or Cross-Origin-Resource-Sharing   
testing

testing   
update framework

Update framework   
website

Own Website (www.localcdn.org)   
wontfix

This won't be fixed or implemented
No Label
bug
Chromium incompatibility/bug
documentation
duplicate
enhancement
firefox-bug
framework/mapping
help wanted
invalid
need info
observation
pr welcome
question/discussion
sop/cors
testing
update framework
website
wontfix
Milestone
Clear milestone
No items
No Milestone
v2.6.3
Assignees
Clear assignees
No Assignees
3 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: nobody/LocalCDN#285
There is no content yet.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?