bitwarden/browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser synced 2025-12-06 00:13:28 +00:00
Code Issues Releases Wiki Activity
19,988 Commits 1,216 Branches 567 Tags
7a25b402558f89068178f18c61c0fe59e099d47f
Commit Graph

5854 Commits

Author SHA1 Message Date
John Harrington
7a25b40255 Merge branch 'main' into PM-26250-Explore-options-to-enable-direct-importer-for-mac-app-store-build 2025-11-21 14:02:45 -07:00
neuronull
489eb40057 Desktop Autotype fix IPC error handling (#17332) 
* Desktop Autotype fix IPC error handling

* TS lint

* sweep sweep: fix unecessary member name qualifier
 2025-11-21 14:02:22 -07:00
Todd Martin
23ac477bbc chore(feature-flag): Removed pm-28325-remove-pm-22110-disable-alternate-login-methods flag 2025-11-21 16:01:41 -05:00
Nick Krantz
aa2d263751 [PM-24505] Manually open extension error message (#17116) 
* update manual open message to be more generic to cover more scenarios

* update error state when attempting to open the extension via button press
 2025-11-21 14:48:50 -06:00
John Harrington
f900acf0c5 re-run cargo fmt after fixing clippy lints 2025-11-21 13:37:01 -07:00
John Harrington
9fbf45e7a5 fix more clippy lints not caught locally 2025-11-21 13:29:58 -07:00
John Harrington
abf8991a90 remove unused dep 2025-11-21 12:57:15 -07:00
renovate[bot]
129c21cfb8 [deps] Vault: Update koa to v2.16.3 [SECURITY] (#17514) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-21 13:23:51 -05:00
Daniel Riera
279632d65f [PM-28516] Inline menu is not working in main (#17524) 
* PM-28516 alidate iframe and stylesheet URLs against their own origins to handle
cases where chrome assigns different extension ids in different contexts

* switch to regex to match exisiting match pattern

* updated regex to account for safari
 2025-11-21 17:10:03 +00:00
John Harrington
f14a6f4501 fix another clippy warning 2025-11-21 09:16:16 -07:00
John Harrington
46d24d33d9 cargo clippy 2025-11-21 08:56:20 -07:00
John Harrington
be9452530d pass args directly in objc/build.rs 2025-11-21 08:40:37 -07:00
Dave
daf7b7d2ce fix(two-factor) [PM-21204]: Users without premium cannot disable premium 2FA (#17134) 
* refactor(two-factor-service) [PM-21204]: Stub API methods in TwoFactorService (domain).

* refactor(two-factor-service) [PM-21204]: Build out stubs and add documentation.

* refactor(two-factor-service) [PM-21204]: Update TwoFactorApiService call sites to use TwoFactorService.

* refactor(two-fatcor) [PM-21204]: Remove deprecated and unused formPromise methods.

* refactor(two-factor) [PM-21204]: Move 2FA-supporting services into common/auth/two-factor feature namespace.

* refactor(two-factor) [PM-21204]: Update imports for service/init containers.

* feat(two-factor) [PM-21204]: Add a disabling flow for Premium 2FA when enabled on a non-Premium account.

* fix(two-factor-service) [PM-21204]: Fix type-safety of module constants.

* fix(multiple) [PM-21204]: Prettier.

* fix(user-verification-dialog) [PM-21204]: Remove bodyText configuration for this use.

* fix(user-verification-dialog) [PM-21204]: Improve the error message displayed to the user.
 2025-11-21 10:35:34 -05:00
John Harrington
60eb309fba avoid unwrap 2025-11-21 08:32:37 -07:00
John Harrington
61ace267f0 cargo fmt 2025-11-21 08:19:50 -07:00
John Harrington
f55e6992da add dep to desktop_native cargo.toml 2025-11-21 08:14:51 -07:00
John Harrington
5fc55c86a0 Merge branch 'PM-26250-Explore-options-to-enable-direct-importer-for-mac-app-store-build' of github.com:bitwarden/clients into PM-26250-Explore-options-to-enable-direct-importer-for-mac-app-store-build 
merge conflict resolution
 2025-11-21 08:13:34 -07:00
John Harrington
4be25d9290 remove additional debug output and revert popup-modal-style to match main 2025-11-21 08:12:34 -07:00
John Harrington
245171e999 Merge branch 'main' into PM-26250-Explore-options-to-enable-direct-importer-for-mac-app-store-build 2025-11-21 08:10:27 -07:00
John Harrington
83c01ba9bf added docs and removed debug output 2025-11-21 07:56:10 -07:00
renovate[bot]
e9f67f4fd6 [deps]: Update Rust crate cc to v1.2.46 (#17571) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
 2025-11-21 13:57:31 +01:00
renovate[bot]
87e49c174c [deps] Platform: Update Rust crate libc to v0.2.177 (#17549) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Daniel García <dani-garcia@users.noreply.github.com>
 2025-11-21 13:56:54 +01:00
renovate[bot]
f6eb0f642e [deps]: Update Rust crate clap to v4.5.51 (#17572) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-21 11:52:51 +01:00
renovate[bot]
678e5193ca [deps]: Update Rust crate async-trait to v0.1.89 (#17570) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-21 11:32:36 +01:00
bw-ghapp[bot]
bc7825654b Autosync the updated translations (#17531) 
Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
 2025-11-21 09:45:19 +01:00
bw-ghapp[bot]
5ff6e50e1d Autosync the updated translations (#17530) 
Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
 2025-11-21 09:40:12 +01:00
bw-ghapp[bot]
8077270ef8 Autosync the updated translations (#17529) 
Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
 2025-11-21 09:39:50 +01:00
Addison Beck
ba93526965 chore: create eslint rule to catch insecure page script injection (#17437) 
* chore: create eslint rule to catch insecure page script injection

* chore: ignore existing lints

* review: tighten rule scope

* review: add tests
 2025-11-20 19:45:49 -05:00
Jared Snider
98401ccda1 PM-28506 - TwoFactorSetupYubikey - refactor yubikey form to be rows with 1 field per row to allow remove button to be visible again. (#17519) 2025-11-20 15:22:48 -05:00
Vijay Oommen
43897df9ed [PM-27287] Items in My Items should show in Inactive 2FA report (#17434) 2025-11-20 12:52:23 -06:00
Stephon Brown
9afba33f58 [PM-26044] Update Offboarding Survey for User and Organization (#17472) 
* feat(billing): update messages to add reasons

* feat(billing): update survey with switching reason based on param

* fix(billing): revert value of switching reasons

* fix(billing): revert removal of tooExpensive message

* fix(billing): Add plan type to params and update switching logic

* fix(billing): update to include logic

* fix(billing): PR feedback
 2025-11-20 13:38:33 -05:00
John Harrington
18064efc4f add/improve comments and logging 2025-11-20 09:51:49 -07:00
renovate[bot]
81453ede1b [deps] Vault: Update koa to v2.16.2 [SECURITY] (#15807) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Matt Andreko <mandreko@bitwarden.com>
 2025-11-20 11:45:21 -05:00
John Harrington
61b26241ad move sandbox code into macos.rs 2025-11-20 09:09:11 -07:00
Jeffrey Holland
e23b2d0c98 Autofill/pm 25597 plex password generation (#16997) 
* Correctly fill generated passwords and current password on plex.tv

* Correctly fill generated passwords and current password on plex.tv

* Leave existing forEach

* Add tests for changes
 2025-11-20 16:31:05 +01:00
Brandon Treston
a5caa194cd fix copy (#17504) 2025-11-20 09:51:40 -05:00
Kyle Spearrin
d7949ab2f3 [PM-27766] Add policy for blocking account creation from claimed domains (#17211) 
* Added policy for blocking account creation for claimed domains.

* add feature flag

* fix desc

* learn more link

* fix localization key to learnMore

* onpush change detection
 2025-11-20 08:42:57 -06:00
Nick Krantz
b00987180d [PM-26688][PM-27710] Delay skeletons from showing + search (#17394) 
* add custom operator for loading skeleton delays

* add `isCipherSearching$` observable to search service

* prevent vault skeleton from showing immediately

* add skeleton for search + delay to sends

* update fade-in-out component selector

* add fade-in-out component for generic use

* address memory leak by using defer to encapsulate `skeletonShownAt`

* add missing provider
 2025-11-20 08:26:47 -06:00
Bernd Schoolmann
5f27452ac2 Fix desktop not launching (#17485) 2025-11-20 02:41:59 +01:00
Jonathan Prusik
7c4db701b9 [PM-27797] Prevent host page manipulation of inline menu popover attribute (#17400) 
* turn off inline experience if host page aggressively competes for top of top-layer

* add alert message for top-layer hijack scenarios

* widen the backoff threshold

* refactor backoff logic to include popover attribute mutations

* improve getPageIsOpaque check

* do not attempt inline menu insertion if it has been disabled for security concerns

* fix typo

* cleanup

* add tests
 2025-11-19 19:14:05 -05:00
John Harrington
aa42630410 chromium importer working in sandbox 2025-11-19 15:22:23 -07:00
Andy Pixley
d86c918e71 [BRE-1303] Providing method for pinning Chrome extension ID for dev (#17432) 2025-11-19 16:11:51 -05:00
Addison Beck
6d1c474fc5 fix: add world: MAIN to Firefox page script registration (#17466) 
* chore: update @types/firefox-webext-browser

* fix: add world: MAIN to Firefox page script registration

* review: add world property to registration type
 2025-11-19 20:13:41 +00:00
Addison Beck
e44ab1b411 fix: enable dynamic URLs for Chrome web accessible resources (#17429) 
This commit adds use_dynamic_url: true to the extension's web_accessible_resources configuration. When enabled, Chrome generates random session-based GUIDs for extension resource URLs instead of using the predictable static extension ID. This enhances privacy by making extension resource URLs unpredictable and prevents third-party enumeration of installed extensions.

The feature is supported in Chrome 102+ and changes resource URLs from chrome-extension://[static-id]/resource to chrome-extension://[random-guid]/resource, with GUIDs regenerating each browser session while maintaining all existing extension functionality.

Addresses: https://bitwarden.atlassian.net/browse/PM-28344
 2025-11-19 14:57:59 -05:00
Alex Morask
de42cf303f [PM-27925] Refactor StripeService to allow more than one instance (#17467) 
* Refactor StripeService to allow more than one instance per scope

* Fix linting issue

* Claude's feedback
 2025-11-19 12:57:00 -06:00
Brandon Treston
28dc244fd3 fix error in console (#17468) 2025-11-19 13:32:50 -05:00
bw-ghapp[bot]
0912d1abe8 Autosync the updated translations (#17462) 
Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
 2025-11-19 18:31:02 +01:00
neuronull
db16c201b8 Align Desktop Native's Rust CI checks with SDK (#17261) 
* clean crate deps

* update lint workflow

* add rustfmt.toml

* apply rust fmt

* missed one

* fix lint of lint lol

* more deps platform fixes

* fix macos_provider

* some more deps clean

* more cleanup

* add --all-targets

* remove another unused dep

* generate index.d.ts

* fix whitespace

* fix split comment in biometric

* formatting comment in biometric_v2

* apply fmt
 2025-11-19 15:07:57 +00:00
Github Actions
64bfbf274a Bumped client version(s) 2025-11-19 00:18:10 +00:00
John Harrington
f40233fce4 initial sandbox implementation for mac app store builds 2025-11-18 16:20:12 -07:00