Skip to content

Feat/vchart editor:Add VChartSpec Atom and demo of vchart editor #197

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 69 commits into from
Mar 19, 2025
Merged

Feat/vchart editor:Add VChartSpec Atom and demo of vchart editor #197

merged 69 commits into from
Mar 19, 2025

Conversation

666haiwen
Copy link
Contributor

[中文版模板 / Chinese template]

🤔 This is a ...

  • New feature
  • Bug fix
  • TypeScript definition update
  • Bundle size optimization
  • Performance optimization
  • Enhancement feature
  • Refactoring
  • Update dependency
  • Code style optimization
  • Test Case
  • Branch merge
  • Release
  • Site / documentation update
  • Demo update
  • Workflow
  • Other (about what?)

🔗 Related issue link

🔗 Related PR link

🐞 Bugserver case id

💡 Background and solution

📝 Changelog

Language Changelog
🇺🇸 English
🇨🇳 Chinese

☑️ Self-Check before Merge

⚠️ Please check all items below before requesting a reviewing. ⚠️

  • Doc is updated/provided or not needed
  • Demo is updated/provided or not needed
  • TypeScript definition is updated/provided or not needed
  • Changelog is provided or not needed

🚀 Summary

copilot:summary

🔍 Walkthrough

copilot:walkthrough

666haiwen and others added 30 commits December 4, 2024 17:42
@666haiwen
feat(vchart-edtior): add vchart spec atom template
457ac2b
@666haiwen
feat(vchart-edtior): format assistant result
f22c259
@666haiwen
feat(vchart-edtior): queryKeyPath with spec
e72b3da
@xile611
feat: merge spec of vchart
dec7acc
@666haiwen
Merge pull request #171 from VisActor/feat/vchart_editor_merge_spec
3eaa74b 
feat: merge spec of vchart
@xile611
fix: update merge spec of legends
bca0c86
@666haiwen
feat(rag): add qa keyPath options
aea3823
@666haiwen
feat(rag_demo): add try catch in case of error
8be043f
@666haiwen
feat(rag): add useSpec options and delete button
fad2ae2
@666haiwen
feat(rag_test): add feedback model of user
0771858
@666haiwen
feat(rag): add use query transfer option, default useTopKey
9b57b87
@xile611
fix: fix spec when spec contain parent path
3534cf0
@xile611
fix: fix merge of context
0a25f5f
@666haiwen
Merge pull request #172 from VisActor/feat/vchart_editor_merge_spec
9ff4bca 
Feat/vchart editor merge spec
@xile611
chore: update jest to 0.29
c43ad93
@xile611
fix: fix conflict texts
5916036
@xile611
Merge branch 'feat/vchart_editor' into chore/update-jest
5a29891
@666haiwen
Merge pull request #173 from VisActor/chore/update-jest
354a835 
chore: update jest to 0.29
@xile611
fix: fix spec connection of vchart
bd1a9f0
@xile611
chore: fix error of sass
633b7fd
@xile611
feat: add handle of fucntion and series
9f415de
@xile611
fix: fix vchart spec when leafSpec is simple type
64caedb
@xile611
fix: handle case of series
b34609d
@xile611
fix: fix merge spec of vchart
7383aec
@xile611
test: add test case for vchartspec utils
74888f3
@666haiwen
feat(rag): feedback optimizer
379d410
@xile611
refactor: update vchartspec utils
55e33a8
@xile611
fix: update merge spec of vchart
a56eb39
@xile611
test: update test case of commonchart
511abeb
@xile611
Merge branch 'feat/vchart_editor' into feat/vchart_editor_merge_spec
9954a11
666haiwen and others added 23 commits March 3, 2025 10:13
@666haiwen
feat(agent): add session in api
34df927
@666haiwen
feat: update closeSession api
2b41d91
@xile611
fix: update vchartspec
924aa2f
@xile611
fix: fix operation add
532d005
@xile611
fix: fix operation about delete
7e133ea
@xile611
Merge branch 'feat/vchart_editor' into fix/merge-spec-2
bfd1cfd
@666haiwen
Merge pull request #187 from VisActor/fix/merge-spec-2
0e498d5 
Fix/merge spec 2
@666haiwen
feat(editor): add demo chart + spec editor in demo
571cce9
@666haiwen
Merge branch 'feat/vchart_editor' of https://github.com/VisActor/VMind
b35e1f6 
…into feat/vchart_editor
@xile611
test: update test case of bar
a3aec9b
@666haiwen
Merge pull request #188 from VisActor/fix/merge-spec-2
82de247 
test: update test case of bar
@666haiwen
Merge branch 'feat/vchart_editor' of https://github.com/VisActor/VMind
1d34cc4 
…into feat/vchart_editor
@666haiwen
feat(editor): demo style update
b8cb9d0
@666haiwen
Merge branch 'develop' into feat/vchart_editor
7927f73
@666haiwen
feat: update opeanAPI md
a4abf47
@666haiwen
Merge branch 'develop' into feat/vchart_editor
e9da92b
@666haiwen
feat: replace doubao of skylark in md
bb3d137
@666haiwen
fix: fix data may not array in chart insights atom
0c5ded6
@666haiwen
feat: add feedback and duelaxis demo
d1c46d3
@666haiwen
feat: agent demo transfer to vmind open api server
3e3dfad
@xile611
fix: fix error of set
1f9bedc
@666haiwen
Merge pull request #192 from VisActor/fix/set-error
1ba17e2 
fix: fix error of `set`
@666haiwen
Merge remote-tracking branch 'origin/develop' into feat/vchart_editor
7ce8ba4
github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 19, 2025
View reviewed changes
packages/vmind/src/core/rag.ts
@@ -52,10 +52,15 @@
sparse_vector: (sparseVector ?? [])
.map(item => {
// 使用正则表达式解析字符串
const match = item.match(/\('(.+)', ([\d.]+)\)/);
const match = item.match(/\("(.+?)", ([\d.]+)\)/);

Check failure

Code scanning / CodeQL

Polynomial regular expression used on uncontrolled data High

This
regular expression
Loading
that depends on
library input
Loading
may run slow on strings starting with '("' and with many repetitions of '("a'.
This
regular expression
Loading
that depends on
library input
Loading
may run slow on strings starting with '("' and with many repetitions of '("a'.
packages/vmind/src/core/rag.ts
if (match) {
return [match[1], parseFloat(match[2])];
}
const oldMatch = item.match(/\('(.+)', ([\d.]+)\)/);

Check failure

Code scanning / CodeQL

Polynomial regular expression used on uncontrolled data High

This
regular expression
Loading
that depends on
library input
Loading
may run slow on strings starting with '('' and with many repetitions of '('a'.
This
regular expression
Loading
that depends on
library input
Loading
may run slow on strings starting with '('' and with many repetitions of '('a'.
packages/vmind/src/utils/set.ts
if (isValid(nested[key])) {
merge(nested, { [key]: newValue });
} else {
nested[key] = newValue;

Check warning

Code scanning / CodeQL

Prototype-polluting function Medium

The property chain
here
Loading
is recursively assigned to
nested
Loading
without guarding against prototype pollution.

Copilot Autofix

AI 3 months ago

To fix the problem, we need to ensure that the key variable does not include any properties that can lead to prototype pollution, such as __proto__ or constructor. We can achieve this by adding a check to skip these properties before performing the assignment.

  • Add a check to skip __proto__ and constructor properties in the baseSet function.
  • This change should be made in the baseSet function in the file packages/vmind/src/utils/set.ts.
Suggested changeset 1
packages/vmind/src/utils/set.ts

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/packages/vmind/src/utils/set.ts b/packages/vmind/src/utils/set.ts
--- a/packages/vmind/src/utils/set.ts
+++ b/packages/vmind/src/utils/set.ts
@@ -65,2 +65,5 @@
     const key = path[index];
+    if (key === "__proto__" || key === "constructor") {
+      continue;
+    }
     let newValue = value;
EOF
@@ -65,2 +65,5 @@
const key = path[index];
if (key === "__proto__" || key === "constructor") {
continue;
}
let newValue = value;
Copilot is powered by AI and may make mistakes. Always verify output.
@xile611 xile611 merged commit 2f584a1 into develop Mar 19, 2025
5 of 6 checks passed
@xile611 xile611 deleted the feat/vchart_editor branch March 19, 2025 02:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@xile611 xile611 xile611 approved these changes

Assignees
No one assigned
Labels
calculator chart-advisor vmind
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@666haiwen @xile611