profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/MarcelloTheArcane/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Max Reynolds MarcelloTheArcane United Kingdom buymeacoffee.com/maxdotreynolds

MarcelloTheArcane/netlify-plugin-csp-generator 12

Generate CSP headers from inline script hashes

MarcelloTheArcane/brainfork 1

Arduino based brainfuck interpreter with LCD

MarcelloTheArcane/pipedrive-graphql 1

GraphQL wrapper for Pipedrive Rest API

MarcelloTheArcane/aura 0

Aura website files

MarcelloTheArcane/cirrus 0

Cirrus Player

MarcelloTheArcane/CirrusBugs 0

Bug reporting for projectcirrus.stream

pull request commentadonisjs/docs.adonisjs.com

Remove exclamation mark

@RomainLanz Thanks for the quick response.

My mistake, I wasn't aware of this feature of Typescript - a "non-null assertion operator" apparently...

MarcelloTheArcane

comment created time in 8 days

PR opened adonisjs/docs.adonisjs.com

Remove exclamation mark

There's a ! in the code block which is a syntax error - I'm not entirely sure why it's there!

+1 -1

0 comment

1 changed file

pr created time in 8 days

push eventMarcelloTheArcane/docs.adonisjs.com

Max Reynolds

commit sha 1f344e07936a82624ffd13de97485b693ba042d4

Remove exclamation mark There's a ! in the code block which is a syntax error - I'm not entirely sure why it's there!

view details

push time in 8 days

fork MarcelloTheArcane/docs.adonisjs.com

📚 Source code and documentation for the official docs website.

https://docs.adonisjs.com

fork in 8 days

push eventMarcelloTheArcane/donations

Max Reynolds

commit sha d6a5b372c35b0c83afb2ff599433c82c3c316de2

Update september-2021.md

view details

push time in 10 days

issue openednhost/cli

Existing project schemata not pulled on initialisation

At least, I think that's what's happening.

I have an existing project on Nhost that I'm trying to link to with nhost dev, but I get the following error. It seems like it's not recognising the existing tables I have set up (which are in another schema).

Error message:

$ nhost dev

✖ Applying metadata
Error! Command failed: hasura metadata apply --endpoint http://localhost:8080 --admin-secret 123456 --skip-update-check
{"level":"info","msg":"Applying metadata...","time":"2021-09-13T08:14:53+01:00"}
time="2021-09-13T08:14:53+01:00" level=fatal msg="error applying metadata \n{\n  \"internal\": [\n    {\n      \"definition\": {\n        \"schema\": \"quote\",\n        \"name\": \"list\"\n      },\n      \"reason\": \"Inconsistent object: no such table/view exists in source: \\\"quote.list\\\"\",\n      \"name\": \"table quote.list in source default\",\n      \"type\": \"table\"\n    }\n  ],\n  \"path\": \"$.args\",\n  \"error\": \"cannot continue due to inconsistent metadata\",\n  \"code\": \"unexpected\"\n}"

Pretty error JSON:

{
  "internal": [
    {
      "definition": {
        "schema": "quote",
        "name": "list"
      },
      "reason": "Inconsistent object: no such table/view exists in source: \"quote.list\"",
      "name": "table quote.list in source default",
      "type": "table"
    }
  ],
  "path": "$.args",
  "error": "cannot continue due to inconsistent metadata",
  "code": "unexpected"
}

created time in 11 days

created repositoryMarcelloTheArcane/ender-5-marlin-1.1.x-firmware

DO NOT USE! This is not working

created time in 14 days

issue closedcanadian-federation-of-medical-students/CFMS-Issue-Tracker

Security issue in nonce generation

Hello!

I made netlify-plugin-csp-generator, which you've cloned here.

I noticed that is has an insecure function for generating nonces:

// functions.js

function insertNonce (dom) {
  return selector => {
    for (const matchedElement of dom.window.document.querySelectorAll(selector)) {
      let att = dom.window.document.createAttribute('nonce');
      att.value = '41SWRENqnTUAb6n3';
      matchedElement.setAttributeNode(att);
    }
  }
}

Source

The flaw is this:

A nonce is a randomly generated value that is not intended to be reused. Source

The point of a nonce is that it allows the browser to recognised code that you have authorised, but that isn't known (which would be handled by a checksum instead). It must be a cryptographically-secure randomly-generated base64 string, and must be unique for at least each session (ideally every nonce used in the page would be unique). This is because a hacker can read a hard-coded nonce, and inject code with the same nonce, which would be validated by the browser.

Since the nonce here is a hardcoded string, it means that the nonce is ineffective, and is a security flaw.

closed time in 14 days

MarcelloTheArcane

issue commentcanadian-federation-of-medical-students/CFMS-Issue-Tracker

Security issue in nonce generation

Thanks for confirming, just wanted to make sure you were aware!

No problem 🙂

MarcelloTheArcane

comment created time in 14 days

issue commentmicrosoft/vscode-arduino

identifier "Serial" is undefined

If you want Intellisense autocomplete, instead of "USBCON" add "UBRRH":

image

image

Source

loongEgg

comment created time in 15 days

push eventMarcelloTheArcane/donations

Max Reynolds

commit sha 890b0421e794739ff711ab3e41190789ecc69b7c

Update september-2021.md

view details

push time in 16 days

delete branch MarcelloTheArcane/donations

delete branch : donations-august-2021

delete time in 18 days

push eventMarcelloTheArcane/donations

Max Reynolds

commit sha 2072d44a0dd9fc1230dad5d489da516fc5ecfae6

Donations August 2021 (#3) * Create august-2021.md * Add vue-concise-carousel and Yarn * Update winners.md

view details

push time in 18 days

create barnchMarcelloTheArcane/donations

branch : donations-september-2021

created branch time in 18 days

startedtenacityteam/tenacity

started time in 19 days

issue commentmorinted/art_of_chording

Hardware?

There's a link through to the Open Steno Project, which has a hardware page: https://github.com/openstenoproject/plover/wiki/Supported-Hardware#dedicated-machines-designed-for-use-with-plover

neopaf

comment created time in 22 days

startedmorinted/art_of_chording

started time in 22 days

push eventMarcelloTheArcane/donations

Max Reynolds

commit sha 0d44f3e36f8c2fe3b157606ae9b2959f3bc88dfa

Update winners.md

view details

push time in 23 days

issue commentLibreCAD/LibreCAD

[Feature request] Edit text size along the top bar

If the top bar looked like this, I'd be very happy:

Screenshot 2021-08-26 150618

I'd like the height variable to be exposed when the text tool is active.

MarcelloTheArcane

comment created time in a month

startedOctoPrint/OctoPrint-DisplayProgress

started time in a month

issue openedcanadian-federation-of-medical-students/CFMS-Issue-Tracker

Security issue in nonce generation

Hello!

I made netlify-plugin-csp-generator, which you've cloned here.

I noticed that is has an insecure function for generating nonces:

// functions.js

function insertNonce (dom) {
  return selector => {
    for (const matchedElement of dom.window.document.querySelectorAll(selector)) {
      let att = dom.window.document.createAttribute('nonce');
      att.value = '41SWRENqnTUAb6n3';
      matchedElement.setAttributeNode(att);
    }
  }
}

Source

The flaw is this:

A nonce is a randomly generated value that is not intended to be reused. Source

The point of a nonce is that it allows the browser to recognised code that you have authorised, but that isn't known (which would be handled by a checksum instead). It must be a cryptographically-secure randomly-generated base64 string, and must be unique for at least each session (ideally every nonce used in the page would be unique). This is because a hacker can read a hard-coded nonce, and inject code with the same nonce, which would be validated by the browser.

Since the nonce here is a hardcoded string, it means that the nonce is ineffective, and is a security flaw.

created time in a month

Pull request review commentvitormhenrique/OctoPrint-Enclosure

Create bme680.py

+import bme680+import time+++try:+    sensor = bme680.BME680(bme680.I2C_ADDR_PRIMARY)+except IOError:+    sensor = bme680.BME680(bme680.I2C_ADDR_SECONDARY)++# These calibration data can safely be commented+# out, if desired.+++# These oversampling settings can be tweaked to+# change the balance between accuracy and noise in+# the data.++hum_weighting = float(0.25)   # so hum effect is 25% of the total air quality score

Why do you use float(0.25) as opposed to just 0.25? Python will recognise a decimal as a float I think.

You can use 40.0 for hum_reference too, to make sure it is cast as a float.

cristianku

comment created time in a month

PullRequestReviewEvent

issue commentLibreCAD/LibreCAD

[Feature request] Edit text size along the top bar

@fa201 That's true - that might speed up my workflow a bit.

I'd really like to adjust before I add the text though.

MarcelloTheArcane

comment created time in a month

issue commentLibreCAD/LibreCAD

Librecad software shortcut keys

LibreCAD has lots of shortcuts! They are called commands.

Wiki: https://wiki.librecad.org/index.php/Commands

lianzaozi

comment created time in a month

issue openedLibreCAD/LibreCAD

[Feature request] Edit text size along the top bar

When I run the text command, I can change the actual text and angle on the fly.

I'd like to also be able to edit the text height in the same way, rather than having to cancel the text command and re-run it in order to edit the size.

Here's the bar I mean:

image

Operating System and LibreCAD version info

Version: 2.2.0-rc2 Compiler: GNU GCC 7.3.0 Compiled on: Dec 31 2020 Qt Version: 5.12.4 Boost Version: 1.65.1 System: Windows 10 (10.0)

created time in a month

issue commentOctoPrint/OctoPrint

[Request] Disable mouse scrolling when panning on the gcode canvas

Here's a video of what I mean:

https://user-images.githubusercontent.com/21159570/130263940-1c1ea3d1-10c8-49d9-8677-be4736059dd6.mp4

MarcelloTheArcane

comment created time in a month

issue openedOctoPrint/OctoPrint

[Request] Disable mouse scrolling when panning on the gcode canvas

Is your feature request related to a problem? Please describe.

When I'm zoomed in close to the gcode canvas, I often use the middle mouse button (mouse wheel) to pan around, as force of habit from various CAD programs.

This has the effect of showing the mouse wheel scroll feature on the whole page, which means it scrolls up and down when panning.

The panning still works, but the page moves around too.

Describe the solution you'd like

I ran the following Javascript in the console, and I think it fixed the issue:

function preventDefaultOnMouseWheel (event) {
    if (event.which === 2) { // Middle mouse button
        event.preventDefault() // Don't pan!
    }
}
const gcodeCanvasElement = document.getElementById('gcode_canvas')
gcodeCanvasElement.addEventListener('mousedown', preventDefaultOnMouseWheel)

// Clean up:
// gcodeCanvasElement.addEventListener('mousedown', preventDefaultOnMouseWheel)

I'm not sure if there are any side effects I need to consider, or where this could be added.

Describe alternatives you've considered

No response

Additional context

No response

created time in a month