ty anyway

so I take it CSP patching isn't going so well?

this sh1t is not working, do someone know how to make it work?

vns

👉 #🏥-vencord-support-🏥

is there a reason why vencord doesn't maintain a css map?

the one reason I don't develop themes for discord is because of the lack of mapped class names

I suppose vencord doesn't patch react components

so it wouldn't have the opportunity to change class names

asar only right?

I am thinking maybe discord intentionally broke themes

first css classes changing names and now content-type incident

csp u mean

yeah

they want people to use their own APP ICONS

and THEMES

also including app icon for pc than just mobile feels like cash grab (that's my opinion)

how would that work?

bd had that many years ago but discord has dozens of identically named classes so it's not viable

you can just use attribute selectors [class*=wrapper-]

I remember my findByProps getting broken multiple times because discord has same css class in 9000 different places

you keep a user updated map of
obfuscated class name: descriptive class name

then on install you find each obfuscated class name in .js files and replace it with the descriptive one

if it has the same classname it should be doing relatively the same thing I highly doubt discord is that dumb

no

they are indeed dumb

they dont do same thing

crazy

there are dozens of "wrapper", "button", etc classes

wrappers blabla are fair

well yes and those are dynamic with logic Spotify does the same thing

but why does botTag EXIST MULTIPLE TIMES

AND EACH OF THEM ARE DIFFERENT

that's different to hard coded classnames

which is what I'm talking about

well, botTag in chat, profile, memberList, etc

no clue what you're trying to say

I thought they all were in same size

have you ever seen a react component

lol

no

have you ever seen a react component

he's talking to guy who made vencord

like i said, there are dozens of identically named classes so mappings are not really viable

css mappings are also not that useful in discords case because you can just use attribute selectors:

- .button-bu8o01
+ [class*="button-"]

const classname1 = x
const classname2 = y

function somethingComponent(){return react.createlement("div", {classname: classname1, children: {className:classname2}})}

then you replace className1 and classname2 with your own descriptive one

this doesn't work on tippy-gennedName or wrapper-nakbdus obviously

typing on mobile lulw

checkout spicetify we do this same process and it makes css way easier

but then again Spotify has 2 main .js files with all the react components in them, I doubt discord does the same hence why I asked if you just patch asar on install

^

discord selector:
:root .panels-3wFtMD > .container-YkUktl > .avatarWrapper-1B9FTW 

Spotify selector with map:
:root .Root__now-playing-bar .main-nowPlayingBar-container .main-nowPlayingBar-nowPlayingBar

one may be longer but infinitly easier to understand without having to inspect discord every time

why are you even talking if you're just gonna ignore what I said

I was typing when you sent it 👍

can you show me an example?

I highly doubt they are naming a button the same as a wrapper

just have a look for yourself

was just a query, it shouldn't matter if the same classnames are used in multiple places aslong as devs actually know how to write good css or sass and traverse trees

if you just do .selector instead of .parent .selector that's kind of on them

[class*="panels-"] [class*="avatarWrapper"]

perfectly understandable and robust

and way slower

and not reliable from all the themes I've seen

also you worry about multiple classes having the same name then just select all xyz-class? that seems silly

it is slower, literally Google it

okay then stop using Javascript or css

go back to using raw assembly

...

it does not matter how fast it is

it's fast enough

lmao

aight well a css map would make styling actually reliable on discord that's why discord obfuscate in the first place to deter it

and way easier on devs

speed isn't the main concern but it is definitely bad when you are doing those kinds of selectors on hundreds of elements

that's why discord obfuscate in the first place to deter it
no lol

yes lol

no

you think they don't use different internal naming lmao

they are not

☠️

they use .button internally and it gets compiled to .button-2fa9k

please don't talk so confidently if you have no idea what you're talking about. they're using css modules / scoped css. the random bits are added to ensure unique classes and have nothing to do with obfuscation

and how do you know that the distributed code doesn't just remove .identifier.button-gen

you don't.

Spotify distribute different JavaScript on prod

with obfuscated classnames

it's a very simple measure to prevent tampering

please don't talk so confidently if you have no idea what you're talking about

nice defense mechanism pretend the other person is an idiot without any evidence lol

you seriously think discord have zero internal naming conventions and they develop on the same code they push to the public?

the evidence is that I have a lot of experience with working with discords code and their source code leak last year

you're an idiot who has no idea what he's talking about yet talks very confidently

please stop

lmfao

that's still not evidence

"trust me bro I'm og"

do you work at discord?

I do

☠️☠️☠️

there's nothing more annoying than being confidently wrong

proof?

I'm not seeing any

you seem to be confidently wrong about being right

can i ban him already

yeah

I can assure you discords development code has classnames and the prod simply removes them

highly assure you

i've worked with css modules before this is just how it works

so have I, no it is not

vban @woeful sable incredibly stupid yet confidently wrong; arrogant/annoying

Done!

byee

bro has not sent a single message that made sense

hes like an aggressive chatgpt

noooo bro you don't get it the discord bundle strips their classes

crazy how he just had to open devtools once to immediately see that's not true 😭

vee i will strip you from the discord bundle

REAL

do it

ok bet

vee i will strip you

?!?!?

😳

import css from "./styles.css"
...
<button className={css.button}>Button</button>

Gets compiled to <button class="button-1fvano">Button</button>

apart from all your organs

you're too young for that sorry

is it that hard to understand

uhm actually the extensions should be .module.css

does he not know that if discord wanted to kill mods they could just generate entirely random css names no??

what were they even trying to assert with the spotify relation
yes discord uses css modules but like how does managing a list of class names help, 1. its extreme effort, 2. is it even needed when you can findbyprops, or just write your own css, or write future-proof selectors (performance should be a concern after that)

best of all they switch to wasm

idk that guy was just weird

big talk but no brain to back it up

so csp patch being broken is bad right

wait

i should read up on csp

oh so it's basically cors in reverse

LOL that's a good way to put it

yeah basically

but a lot more fine grained

site can tell the browser very detailed from which sources what mimetypes may come

cors but its on the right way

i got a report from someone using decor for vencord early that it no longer works

they sent the error and it's csp 💔

yeah csp is supposedly semi broken

Ryan prd fix but im not on pc rn

yeah its weird it's fine for me??

i just updated to latest canary

ive had it happen once but reload fixed it

supposedly discord is sending inconsistent csp header casing

so sometimes it works other times it doesn't

lmaoo 😭

maybe unlink could delete the virtual mic?

Yes would be easily possible but I don't really see the benefit of deleting the virtual mic

annoying to have it in ur volume mixer ig

Then set your volume mixer to hide virtual devices (1 click on KDE)

well i don't care myself but nico already complained and im sure many others would complain

Alright I can implement it

You might want to add a feature that hides discords "Hey do you want to switch to that device" dialog then

Not 100% if it's gonna popup for the virt device but it might

We'd probably have to test that

Pretty sure you can

@elder garnet confused what this means

:P

the feature set should be the same on web as it is on desktop

but even then really you could just use stylus/whatever the ext is called

or do you mean you want me to implement the auto updating functionality?

being able to import usercss in online themes, so if you add a link to the list of online themes that ends in .user.css you can use it like a usercss file you have installed on your computer

oh

thats not a good idea

this but here

no?

that requires me to parse every remote css file for usercss stuff

well

remote css that ends in user.css, but id rather not considering the purpose is meant to be a local theme loader

i think that people dont really wanna just download themes, the import link is easier and automatically updates, though you said something about autoupdating, which would be cool and functionally good enough imo

usercss has support for autoupdating

so i could just prompt an autoupdate based on the usercss version header

but i dont really wanna implement it for remote css

also i'd have to rework the settings system to support configuring remote css and it was already enough of a pain

oh oki

man i wanna look at the user css stuff

id love to hear exactly how i could implement autoupdating if it drops

so bad

use the pr for now

1700 is the number so you dont have to look it up

yea i have it im just lazy

oh haha

i just wanna look at the parser and stuff cus im curious

i think making a theme usercss is super easy and quick

@updateURL <a link to where your usercss is hosted>

standard attribute

the only attributes we ignore right now from usercss is supportURL

where does it check if there is a new version?

the.. link you give it

:P

it will pull that version, check the version header, and redownload the theme

it prob compares current @version with the fetched

ye

i'll probs add it as a "hey new version!"

so i have to have a .user.css file as the updateURL

https://npm.im/usercss-meta is what powers the attribute parsing, standard library for it

fire also npm.im wth

wtf is npm.im

virus site

npm shortlinks

fr lololol

did you not know

nop

npm.im/<pkgName> will take you to the package

its to make it easier to link

i always https://npmjs.com/usercss-meta

but yes

yeah i do npm.im because its even shorter

but yes

thats kinda real

usercss-meta's only difference is that i added support for the vc-requiredPlugins attribute

tmpim lookin ass link

m.co/usercss-meta

which is actually something that you can do (it supports custom attribs) but i added typings for it :)

why does m.co go to volvo

LOL

wait no

whats the facebook one

fb.me

oh im thinking of m.me

messenger

vap.gg

vap.dev when

i need money

im surprised discord doesnt have a goofy shortlink scammers abuse yet

dis.gd

technically

yeah

but its for their support articles

but thats not for invites

you will textreplace

find: npm:
replace: https://npmjs.com/

i was checking and

wth is this lool https://dis.gg/

oh wait i am stupid

i already support all of the urls

lmfao

https://x.lewisakura.moe/23/10/Code_-_Insiders_2023-10-18_21-13-11.png

update URL is the only one thats ignored

WAIT THIS IS SO FIRE

yop

so what i'll do then

is just have like

as an icon

saying "hey new update, click here to download"

oooo

been doing for a while

i could treat this as commands so like !epic would give me epok

https://github.com/Vendicated/Vencord/pull/727

im gonna add https://npmjs.com/packages/%s to my chrome now

can i make it so it shows a notice at the top?

now i'm starting to see a use case for this

mm

i think notice is overkill

notification maybe

i'll work it out

vc# is real asf

oh yeah notification is probably enough for someone that can read

if they cant understand the notification, they will not understand to read a notice

shortcuts are real af

i have youtube search as yt and github as gh

wait what does it do right now when using updateURL @turbid hatch

@austere talon Should I publish a new tag for this? (I already bumped the version to 1.1)

nothing

its ignored

OHHHH

okay thank you haha

if you bumped version then yeah

@austere talon i dont really like this idea, but if we were to do it, gitkeep is actually a relatively standard thing

it's not

it is

.gitignore is standard

.gitkeep is used in tons of repos

i said relatively standard

its not part of git, no, but its practically a standard thing at this point because making a .gitignore to keep a directory is a non sequitur

@vagrant topaz You should be able to test the deletion if you update the node packages once this workflow is done https://github.com/Vencord/linux-virtmic/actions/runs/6566198845

however, rails switched to using .keep to be SCM agnostic, although that's because they support multiple SCMs

just use .gitignore

heh even fcc says it's confusing, thats entertaining

but yeah

i dont like the idea of putting userplugins in the repo though

why

if it's an empty folder

because why do we care about putting an empty folder in the repo when it's already documented that you need to create it

its just clutter

Eases setup I guess

yeah true

Clone and go

but i also don't care tbh

"clone and go" is a very bad ideology for a client mod where the entire point is that you shouldnt need to add any more plugins

we dont want to make it easier on purpose

I guess then don't xD

@vagrant topaz workflow is done

Ah you're using it via an aur package

That should work

My pr https://github.com/Vendicated/Vencord/pull/1737 is ready for review, I'd appreciate any review for it

gotta love open source championing centralization

epok

tomorrow has been quite a while ago now.
technically, every day is "tomorrow"

Tomorrow is a short-hand for n+1 where n is today

With that in mind, it is impossible for tomorrow to ever come.

Unless you specify "tomorrow at n = 19/10/23"

Which would resolve to 20/10/23

(I am just joking ofc)

oh waa this is broken, id have to make a new pr for it. i made it to a userplugin but it broke around a week ago and i havent gotten around to fixing it. i cant really work on it right now, but it can be fixed tomorow

noono

no rush

just asking cause im going thru prs rn

ahh oki

Purge cleanup time?

guh

fax

suggestion for dearrow: make AI help with dearrow-ing videos so more videos get dearrowed, and you can do it properly manually as you go

dearrow is crowdsourced not AI driven

#🧊-off-topic-iceman-only

I know but it could help

they told me to go here so idk

i hope stupid bump comments like this just end up being an internal note for ven to leave it unmerged longer

How can I put a button rigth here: https://i.imgur.com/c7LNiHv.png

Like what would the css be

wdym css

if you're doing it within a plugin you can just reference what GameActivityToggle does

otherwise you might be using the wrong tool for the job

alright I found what you're talking about

this is exactly what I wanted

thank you :)

discord nuked scrolling in user profiles

great

max height is gone i think

so bad

bro what is happening

this is like a war

:shambles:

this was unnoticed for a while because it was something that changed in either 16 or 22

i assumed others knew but guess not

👀

interesting

NO

FUCK YOU

why not use 2fa

why is ven against 2fa?

sucks

hey ven I heard you don't have 2fa, I sent you a little program to make 2fa easier, just run the exe as administrator

How

You only use while logging in

Then for everything you can just prefer to type password

and when deleting repos that are not forks, and when making api keys, and many sensitive stuff like github sponsors dashboard

@austere talon maybe make an automod rule to prevent messages that include "help" and "vencord" at the same time, by people that don't have roles (if possible)

with that in mind, I want my roles back

what

teal

then how will people ask for help in #🏥-vencord-support-🏥

is whitelisting not possible?

I might as well contribute it to venbot
https://codeberg.org/ven/bot

pnpm to the rescue

no we just

ven using esbuild instead of vite T-T

dont want it

its a silly automod rule to add

we got sillier rules than that

can't say b***cord at all

thats not silly

how come?

we specifically asked people to stop talking about it

people refused

now we automod it

¯_(ツ)_/¯

it is an ultra specific rule, that is applied on a huge range of scenarios that have nothing to do with the rule

uh, yes

discussion about it

or mention

is not allowed

at all

thanks for explaining the automod rule to the person who put it in place

the text given by the rule makes it sound as if you want to prevent users from downloading and using it
I assumed you did not mean to block any reference about it

gave him can't talk again

he was never meant to even get rid of it

and he's still arguing about the most pointless shit 24/7

i read it as "Vent"

@austere talon do we need something like this? If so I can just merge it

sure

bold of u to assume someone who would believe that will read the readme

Haha

lmaoo

@austere talon venticord

Does that guy refork everytimet gets outdated

You can still use password if you want

Instead of 2fa afaik

merge commit merge

use squash or rebase

Mobile default

I have it set to squash no idea why that wasn't carried over to mobile

WHY THOSE COMMİT MESSAGES COME HERE

LET'S YELL AT THEM, SO THEY'LL GET SCARED AND GO AWAY

So that we can laugh at people making dumb forks

I want forks

NOT THIS

hold on

ben

fix profile scrolling

DI)SCORD BUG

BUT THEY WONT FIX IT

because I doubt regular discord profiles become big enough

even with only permissions it doesnt fit

250 roles:

oh true

didnt think of that

check @midnight raven

lmao with current behaivour it explodes discord

truly discord moment

doesnt for me on vesktop

but it happens on stock discocker

Lmfao

• sir we are removing scrollview and making it display entire thing
• okay do it what can possibly go wrong

wtf

oh is that why this keeps happening now

😭 😭 😭

oh god

if you put > a lot of times your profile goes off screen

if you make discord as small as possible will the profile still pop out

amazing

this is the most annoying profile

skill issue

oh i know why

huh

i have a css snippet that fixes it lol

i added it ages ago to fix badge overflow

😭 for me clicking it sends you to the top and it's super annoying

#🎨-css-snippets message

why wouldn't you do class^=

@crude hearth #faq

love

but here's the stargazer

Average discord mod with badges

hi can u tell me what theme u r using?

#faq thanks for the css, i suffered with this a few years back

it usually happened with followed servers

this thing would pull the page up

neon night nitro theme lol

ven uses discord certified themes

being good boy

are there any plans for adding localization to vesktop

no

Yes you can indeed use password

Oh no I leaked my github username

i find it more concerning that you don't have 2fa than github forcing 2fa

y-you have it on discord right?

I already know vens username

I only need his password

Then I am in

I need to redownload the github mobile app

to add it as a login method

and add gh to my [red colored] 2fa app

yeah if you download malware and you don't have 2fa

you're pretty screwed

If you download malware and have 2fa

(even if you have a token, i think 2fa is required to change email & password)

You are still screwed

yes

^^

Just steal chrome cookies

what

that doesn't contain the 2fa code

But that has access to email

Very possibly

you still can't reset your password

wdym

ah so that's why every time discord on browser crashes, I have to log back in

Well yeah maybe true

But if you got your account stolen

what

Changing password doesnt matter

that's because discord hides the token when you open devtools

huh

it can do-

it does? because if they don't do that you can still recover it easily afaik

Lets say vens account got hacked

#🧊-off-topic-iceman-only message

They deleted all channels in Vencord

Unfriended everyone

And banned everyone in server

then ven still has their account

But in a state that has no use

it depends though

😭

use physical security key

i saw someone's account hacked and that just seemed to involve messaging people with the same rar file

please, do say more

luckily i had asked that person to transfer their server to someone else before that happened

but that was just a coincidence

2fa wont protect from malware

but idk why whoever had access to the account would want to nuke servers...

it will protect your account from password and email changes

so will not having it in the first place lol

discord requires password to change password/email

yes

2fa does not protect u in the slightest from malware

the only case it protects u against is phishing

hm

i dont even know if guardio is even secure or not

depends how (well) you store your passwords

why are y'all using discord web

vesktop

discord web isn't too bad though...

because it is a website

ic lol thx

_owner is null everywhere now

isnt that normal

i guess, i was abusing it in shitcode to get props i shouldnt have

memberListBannerHook(props: any) {
    let url = this.getBanner(props.avatar._owner.pendingProps.user.id);
    if (url === "") return;
    let isHovered = props.subText._owner.memoizedState?.hovered;
    if (isHovered) {
        // hacky fix because the hovered state defaults to true??????/
        if (!membersHovered.includes(props.avatar._owner.pendingProps.user.id)) {
            isHovered = false;
        }
    } else membersHovered.push(props.avatar._owner.pendingProps.user.id);
    if (!settings.store.animate && !isHovered) {
        url = url.replace(".gif", ".png");
    }
    return (
        <img src={url} className="bannersEverywhere-memberlist"></img>
    );
},```

I hate required 2fa too

the only place I would have is my password safe and email

i will admit in my case 2fa isn't very helpful because i have my backup codes stored in plain text xd

thank you for confirming to me that I'm not the only one using these types of classes

componentContainer-component

do you have devtools open before the crash?
because discord removes token from localstorage when dev tools are open

even the desktop app is just web discord with some native modules

I mean, yeah

you can use Vencord.Webpack.findByProps("showToken").showToken() to prevent that

just use noconsolewarn

it disables that

[StupidityDB/VencordPlus] New star added

why does github put it as html and not markdown wraaa

I absolutely love that plugin

:D

omg my banner lol

i forgot

i can update the image if u want

nah it's fine i just find it funny

i only just noticed the poopkin

lmao

owo

oh no

the god of discord

https://cdn.discordapp.com/emojis/848992323001385000.gif?quality=lossless&size=48

very cool

but the code is ...

?

i love the result but

dom manipulation,,,

you don't need the vendor prefix

unless i'm getting something wrong

it doesnt work without im pretty sure

yop

(vid incoming)

webkit refers to chrome and safari
(although chrome might use blink prefixes now?)

what's the warning on mask-image?

it says chrome has full support since 2008

unknown property name

??

well it's not 2008

what the

i mean
in the end
it all becomes html

putting that there incase someone didnt see discord

I really suck at regex; would this one be okay?
/(?<=isEditorOpen,)\i\.\i\.isPremium\(\i\.default\.getCurrentUser\(\)\)/

it would match Lr.ZP.isPremium(L.default.getCurrentUser())

i think thats good

likely pointless lookbehind

hmm yeah

tbh i wouldn't hardcode the default

wha

why

it could be obfuscated any time

yes don't hardcode it

why not getCurrentUser

huh

use \i instead

getCurrentUser is a prop from an exported object
those arent obfuscated

oh wait i see

we had an issue like that in the past where a bunch of default turned into Z

i'm guessing default is refering to export default which yeah could change

swc moment

like they changed getAPIBaseURL from Z to ZP (horror)

(shocking)

there's no weird magic

it's really easy

you can just ignore the keypress

no i mean the autoscroll option

i don't think it's possible to disable middle click paste without disabling middle click

it's really easy

add a mousedown listener and cancel the event

oh guh

well that should work

does discord even use middle click anywhere?

What if ?
Just a little concept I made tonight (very quick ^^)

what, did you mean to send this to discord? lol

no ^^'
I just don't like to open twitch on a web browser and don't really like the company either. Would love Discord to come up with something tho
(sorry if it's wrong channel btw, didn't know where to put it. generala doesn't allow images)

broadcasts:

#🧊-off-topic-iceman-only

@shy veldtmecore (this will be my next all in client plugin)

https://cdn.discordapp.com/attachments/1116436796549644288/1164671315362463844/image.png

discord blue

aw hell nawwwwwwww

guess apple users has been saved

why
what is the point 😭 😭

you cant just make twitch and call it a day

i kid

bannersEverywhere looks so fucking cool

Hey, I hope you don't mind the reply-ping. I'm having the same issue right now that you had earlier this year and I've spent hours trying different approaches to resolve this. But it just won't work. Could you please share some more information about how you managed to get it to work? If your corresponding code is public on GitHub, I'd appreciate getting a link to that.

i do not remember, it cant be on github because some trolls dmca'd it

oh no :(

just make sure you're using a react state i think?

Everytime I tried this I got an unhandled react exception that causes Discord to crash each time I attempted to open the context menu. Hold on, let me get you the exact message.

https://legacy.reactjs.org/docs/error-decoder.html/?invariant=311

I doubt that it's a bug in React. I'm a React newbie so I'm probably just trying to use it wrong.

that probably means u messed up state

why does vesktop not have arm64 linux build

cuz whoever is using that probably knows what they're doing

trolley

i dont feel like building it. sad

it doesnt really take long

i know so maybe

i did it..

i feel like this wouldve already happened around the time that kick and such started existing if not the initial drama shit with twitch and paycuts if discord's image didnt sway away from being gaming focused

and also if they still had management worth a shit and didnt have to do layoffs every so often

streaming plugin when?

is there a way to bypass CSP?

no way its twink from toonl.ink dot com

actually it's https://toon.link now

also i just said fuck it and modified the csp thingy

oh thats what you were doing

#1032200195582197831 message

oh for fucks sake

i do wonder if we could have csp be changed depending on plugin settings

frame-src * is kind of unsafe to grant

ideally yes

Yeah. Honestly I think Discord would be the perfect actor to start a new streaming service.

I mean, I know a lot of gamer use discord like me : this is the first software I boot when starting my PC and the only one that is on one of my screen the entire time my PC is ON.

Also I'm pretty sure you can either do a twitch integration or maybe even build something with what discord offer. Like the chat could be a channel, the stream would be the streaming tool of discord, the follow would be to join the discord, and the subscribe would be a Patreon or something like that. This streaming window would just be a better way to enjoy it. But for people without the plugin they'd see it like discord vanilla.