mCursor/critical bug inspection 3d4e#194
Open
thomaslovaslokoy-ui wants to merge 8 commits intogitkraken:mainfrom
Open
mCursor/critical bug inspection 3d4e#194thomaslovaslokoy-ui wants to merge 8 commits intogitkraken:mainfrom
thomaslovaslokoy-ui wants to merge 8 commits intogitkraken:mainfrom
Conversation
… prompts (#2) Co-authored-by: Cursor Agent <cursoragent@cursor.com> Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
Co-authored-by: Cursor Agent <cursoragent@cursor.com> Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
Bug 1 – noResults flash on load: add 'hidden' class to #noResults in HTML
so it is invisible before JS runs, preventing a flash of 'no results' text
on every page load while tools.json is fetched asynchronously.
Bug 2 – silent clipboard failure: navigator.clipboard.writeText() had no
.catch() handler, so any rejection (non-HTTPS context, permission denied)
was silently swallowed with no user feedback. Added .catch() with an
error message and a document.execCommand('copy') fallback for non-secure
contexts where navigator.clipboard is undefined.
Bug 3 – XSS via raw innerHTML interpolation: tool.name, tool.desc,
tool.commission, tool.category, and tool.link were injected into
card.innerHTML without HTML escaping, while only tool.prompt used the
existing escapeHtml() helper. Escape all five fields; also validate
tool.link against /^https?:\/\// so javascript: URLs fall back to '#'.
Co-authored-by: Cursor Agent <cursoragent@cursor.com>
Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
Replaced the <!-- TODO: rules --> placeholder comment with a full set of contributing guidelines including rules for descriptive titles, detailed bug reports, forking workflow, focused PRs, and clear commit messages. Co-authored-by: Cursor Agent <cursoragent@cursor.com> Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
Complete redesign as high-tech AI command interface: - 20 AI domains with 160+ tools (8 tools per domain) - T-800 Terminator endoskeleton SVG emerging half-way through a breached blast door portal — pure SVG, no images - Red multi-layer glowing eyes with SVG animation - Torn metal shards and electrical discharge effects at breach - Animated neural network particle canvas background - Orbitron + JetBrains Mono typography for sci-fi HUD feel - HUD header with live clock, system status, nav - Glitch text animation on hero title - Animated counter metrics (20 domains, 160 tools, 99% uptime) - Portal parallax effect on mouse move - Rotating portal coordinates and threat level labels - Expanding domain cards with tool lists (click-to-toggle) - Stats bar with intersection-observer counter animation - Scanline overlay for CRT aesthetic - Full mobile responsive layout - Zero external dependencies — pure HTML/CSS/JavaScript Co-authored-by: Cursor Agent <cursoragent@cursor.com> Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
- Add loadTools() to fetch tools.json at runtime - Map tools.json categories to domain card format - Fall back to hardcoded DOMAINS when fetch fails - Restores architecture documented in AGENTS.md Co-authored-by: Cursor Agent <cursoragent@cursor.com> Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
Signed-off-by: thomaslovaslokoy-ui <thomaslovaslokoy@gmail.com>
Co-authored-by: thomaslovaslokoy-ui <thomaslovaslokoy-ui@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.