why did bro make this a pr

lmfao

lmaooo

it's got a point but these are fine

the prototype pollution aspect it brought up is actually true

settings sync is indeed vulnerable to it

it's not really a bad vulnerability (since I doubt it can be exploited in a meaningful way, plus the attacker needs to have access to your vencloud safe aka have access to your discord account or be us) but should still be fixed

yeah its good it noted it but there's no meaningful vuln here

isTryItOutFlow -> isTryItOut is the only difference I saw and its not stable compat because of it

if u wanna make it stable compat why dont just pick another part of the code

isTryItOut is used in the modal

its a findbycode not a findbyprops

as long as it matches the code it wouldnt matter if isTryItOut specifically is used in the match

thats all i said

it doesnt need to be stable compat anyway its just a plugin

what I mean

or are you saying have both?

OH

im stupid

as always

techncially possible but thats so stupid for a plugin

do you just want me to leave this slice as is?

also wym more places that use git hash? all I see thats using it right now is
HashLink (img above)
Updater both for fetching/checking for updates and calculating changes
SupportHelper for the full commit link

why

useless

i could // @ts-check

because @ts-pmo

Paigr 2

Wipaigr 2

1 week later and I have no idea what UI breaking things nino is referring to in known issues

I told you he's insane

there's nothing to be fixed? 😭

I think he was just referring to how the toolbox and stuff was broken for some people

Idk he is insane

There is also desktop-land-and-learn breaking pin DMs

But thats a small number of people who have that

vtest

Now testing!

Um…

vext

The Vencord Chrome Extension is up to date! (v1.13.4)

no tag pushed

oop

vtest dev

Now testing!

Pretty sure using a bot token in a client is just as frowned upon as self botting

i like keeping my prs up to date

:3

hoping for merge of translation v3 I see

when translation v6?

never

v3 is my magnum opus

v3.1

tbh i kinda remember why i did it like that but its no longer necessary

especially since i can just set the loadedLocale to default to english, so there's always a loaded bundle

i should actually look at that review

@austere talon how should that safe mode be triggered on web?

and what if Settings explodes

discord will still explode yk

can settings explode?

isnt it just using local storage

the patches

bro just opened it again

Is it me or do I just not trust anything that has the commit name “Add files via upload” in it

vibe coded

they don’t know how to use git so they probably made with ChatGpt and uploaded

/**

• Vencord Plugin: Bulk Channel Delete
• @name BulkChannelDelete
• @description Multi-select and delete multiple Discord channels at once with Shift + Right Click
• @author YourName
• @version 1.0.1
• ⚠️ WARNING: This plugin can permanently delete channels. Use with extreme caution!
• • Deleted channels CANNOT be recovered
• • This may violate Discord's Terms of Service
• • Use only in servers where you have proper authorization
• • The author is not responsible for any consequences of using this plugin
    */

okay this is vibe coded

thanks YourName for making this awesome plugin

BetterDcord saying hello lmao
i remember having to write that header

mmmm sweet sweet raw dom manipulation

we love discords ui choices

I think the adblock plugin is causing some issues, it seems to spam some sort of module crash log in the native console when you play a video and each time you click another youtube embed the log gets longer and longer and discord gets more and more laggy

It seems like the log contains the other logs as it gets ridiculously more escaped lol

they didn't even remove the comments before functions

it just crashed my discord lmfao

like 8 clicks and it died

Yeah it stacks fast lol, the logs look ridiculous at that point, just a screen full of backslashes

my discord wont even open now

voice just went missing

then it crashed

instantly 3gb used again

not even loading anything

A full restart sorts it for me

it fully dies and then reopening it does 4gb off the bat

can you provide a video of the repro + relevant logs*
cc @gritty iris

yup give me a sec gotta close my kubernetes stuff

the 3gb is from doing it before

where's that hiddenCSS one coming from?

i tried looking for it but cant find a ref to it in (at least my) client source

you gonna give me a moment it unpatched after that crash lol

adguard

Same, I was gonna show the logs freaking out but it has my email and stuff in it so eh

hmm i kinda knew this much, but im trying to work out whats specifically saying hiddenCSS has already been declared since it should be scoped

unless it is that

Yeah I clicked the console error to jump to that

hm okay

so that snippet probably has stopped working then

since its constantly rerunning in the iframe context

https://youtu.be/jNQXAC9IVRw

CR: hiddenCSS redefinition issue, not the loop though

latest canary

did I just dox myself? 😭

fwiw from what i can see no lol

Nah it happens in the native console

You have to run from command line to see

can u dm me it

i cant replicate it so anything helps

Sent

I don't think that recording had my email anyway, must've been an earlier one but better safe than sorry

i have no interest in leaking ur info so ur secrets r safe with me

agh that is a very deeply nested json structure

hm interesting ok so it seems to eventually play the video

Yeah I think each log is containing the previous one as a string

yeah it seems to

The videos play, it just gets slower and slower

can you check the dir it references, %appdata%/discordptb/module_data/crashlogs

you are right though it is def logging the prev one in the object

idk if im chasing a dead end but its worth trying to investigate anything in there

Just log files with the same content as the console

The last one before it causes a crash is 121mb lol

hm okay not very useful then

tbh the logs arent really that helpful either lol

fwiw it's logged as a sentry report, shouldn't that be disabled?

Or is it just the part that actually sends it to discord

the sending is disabled

it can still make reports but they wont be sent to discord cuz the sentry reporter is dead

Makes sense

we should probs disable that in the plugin though, @limber skiff ^

The json is just a list of the console lines from the session as well so just nothing interesting at all really

yeah its nothing more than you'd get from devtools

that kinda sucks, i was hoping for an easy "oh its that" fix

doesnt help that i cant repro the issue

I'm confused

what are we talking about

the yt adblock plugin is repeatedly crashing in the iframe and it's causing sentry to keep trying to report the logs in console, so it keeps including its own previous report and inflating the log each time

😭

from what i can see, the ytab plugin reinjects itself multiple times and leaks a ton of memory

but only in some users

on my client, it reinjects once sure but doesnt seem to cause a memleak

idk if this is an a/b from youtube or not

what is protex

well..

https://nxpdev.dk/

all the commit does is blocks users from using vencord if they're blocked from using the protex bot

i presume

a plugin for a bot wouldve been rejected anyway

ikr

this plugin is just a bit silly for what it is

more suitable as a third party one

i just dont understand why vencord would need it

looks like it just hides messages client side if they're blocked with the bot

oh wtf

wait

not hiding messages

but adding some blockedn text thingie to them

it blocks the entire user

i thin

im genuinely dumb i cant tell

i dont care enough to find out lol

neither

whats the point in using wreq.j

the other side of the terenary is null

disk leak

@turbid hatch theyre back 😭

ty

that bug has been annoying me for longer than it should have been

(i should have fixed it a lot eariler)

@limber skiff got a question for you

so for that pr for whatever reason arguments[0] is always undefined when hovering in chat

but using the avatar decoration override value that was there blocks decor?

also apperantly the create modal is fucked

fix was avatarDecorationOverride -> avatarDecoration

vtest fix-circular-deps

Now testing!

its broken

bro i cant reproduce

vtest fix-circular-deps

Now testing!

web only issue

vtest fix-circular-deps

Now testing!

ts pmo

@limber skiff review https://github.com/Vendicated/Vencord/pull/3729/

so we can merge

alright

PR obituary

theres r the responses we need

wait its broken on stable?

tmk its been broken since they changed the last patch

I'm asking if it's compatible or not

should be I didnt see any changes

idrk how Im gonna fix the store being broken

any ideas?

they're using the override in chat and such is the issue :(

wdym

what store

It's Showtime!

Insane

who

insane 😭

horrorrrrr

this is the terrible fix I have for it wiping the shop decors for custom decors 😭

apperantly its broken in the actual decor thing as well

@austere talon hi

good music

portuguese is hypnotizing

I have been only listening to portuguese songs recently

this one really is a banger

https://tenor.com/view/bruno-mars-brazil-calebtheuncool-gif-6934546091816481382

@inland fable are you brazillian

I dont remember

not quite

im spanish

brazilian but with typos

I know a bit of spanish

thank you keys thank you (chatbarbuttons)

@inland fable I gotta go now

so the music will stop

👋

i think youre really close you just need to check for decor page and shop pages

i would say

check modal stack?

vtest fix-circular-deps

Now testing!

it seems to me that if you are overriding decorations in the shop too, then you are overriding one component too deep

instead target which place that access the user current decoration and passes it down to avatarDecorationOverride

I just ended up patching messages separately

huh

the module its patching is kinda like the center and expanded upon

so I just patched messages instead

that's what I said

oh

im losing it

its not a very good patch ngl

// Messages
        {
            find: '"Message Username"',
            replacement: [
                {
                    match: /(?<=void 0:)((\i)\.avatarDecoration)/,
                    replace: "$self.useUserDecorAvatarDecoration($3)??$2"
                }
            ]
        }

you were patching UserWithAvatarDecoration and not the component that had <UserWithAvatarDecoration decoration={...}>

for example

well keeping the old patch does member list and such still

so I was just gonna keep that and patch messages separately

and how does it not affect the shop too?

it doesnt

its falling back if override is null

should I add an anchor to this?

ill just add uservalue to use as an anchor

I just pushed it to the pr

Love feature requests for things that already exist

Opening devtools with f12 would be nice though

sure

I just did -1 so they stayed the same as before

also that fix looks eh I wanted input so I opened it

WE GOT A KEY

vtest dev

Now testing!

test

guhhh

discord devs rushing to break more shit the second I push a new tag

@fossil inlet satan

Why husk

LOVE

Satan #1 slop dev

adding support for all the worst discord features

Good feature tho

And it's not slop if it can animate and doesn't get animated by always animate

Simpleee

i have one to annoy others

but i have them off

I should make vencord companion mcp server

I always read mcp server as Minecraft pocket edition server

Finally be able to vibecode patches

Imsane

That's mcpe

mcpedl my beloved

mcpe server

:(

minecraft still refers to bedrock as pe internally lol

quickest ss I have

why r u talking about mc

Why aren't you?

cuz idk why I need to

great more aislop

funnily enough they all have i18n

its a sign

i wonder why though

do Devilbro plugins have i18n

dont think so

yes they do

okay that’s why

oh they do?

interesting

already a thing in voicechatUtilites #1260497802019082251

also why

WHAT is that

reminds me of that

lol

its me

vtest

Now testing!

when u forget to remove your logpoints

vtest

Now testing!

ugh

we still have to fix new settings

https://github.com/Vendicated/Vencord/pull/3781/files#diff-e8d0a358ae2fb090c56f00a058050983cc9691b7d3622ddd443170017123e7d9
forgot to remove their name from constants.ts

thats fine it can be removed in a different commit

it'll just get compiled out since its unused

or, well, should

dunno if its smart enough for that

no

and i deliberately left it in

hm?

@austere talon why is this needed?

wdym

I meant like

can we not import patches from here already

or does the autosort imports mess it up

because then it gets moved to the bottom

yes

ugh annoying

there's no difference in priority or anything

it's just the autosort

this is too funny

this line is so important lmfao

https://github.com/Vendicated/Vencord/pull/3729/commits/82f1579f097a945da061bb43793d30a1f45fe788

this one is so funny

browser imported utils/discord before importing vencord entry point

which imports like half of the entire mod

but then isn't the one in the bottom enough?

wdym

I removed the one in the top

we want patchWebpack to be loaded first

is the one in the bottom enough or will it cause issues

ah, I think I misunderstood what you said with priority

well technically we don't need the patchWebpack import

trhe plugin import already imports it

wait does it

yeah it does

it can go i think

yeah you are right

vtest fix-circular-deps

Now testing!

wait we dont need the inline import in VencordNative i think

vtest fix-circular-deps

Now testing!

wrong hmm

should we have something like hasPluginStarted?

to avoid this for example

your commit conflicts

what's wrong with this

I don't like passing plugin names as strings

it hurts maintainability

couldn't it at some point cause a circular dependency

it could yes but it's easy to avoid & fix

alright

even this i dont like

ideally it should be something like OpenInAppPlugin.enabled?

this

github lagging

https://github.com/Vendicated/Vencord/pull/3729/commits/d38ea5575c315afc319771b66bce6a60ef2c122e

I see

importing plugins is fine it should never cause any issues

the way circular import issues happen is if two files have top level code that depends on each other

did you test anything here?

for plugins importing each other or themselves to cause issues, they would both have to have top level code that uses each other

we should just avoid top level code as much as we can

is discord having issues

github webhook didnt send the commit and my messages are lagging

vds

quickcss indirectly imports most of vencord

it shouldnt matter but eh

I'm not sure if it still causes issues but

it seems risky to keep it

since it indirectly requires all webpack commons which is kinda risky

ill keep it as is right now

webpack commons should avoid importing each other

erm that's a leading space

vtest fix-circular-deps

Now testing!

trailing in the beginning

SDGFAHFDJSFADS

was this on purpose

oh yeah

we nuked that plugin didn't we

yeah its gone lmao

ugh I formatted the file in accident

ehh It's fine, right?

now eslint is yapping

undo formatting

@austere talon this is dumb, any idea how to fix this?

lmaoooo

you'd have to just eslint-ignore it

why the fuck does it want this

it wants you to use @plugins/decor/api

just run autofix btw

there has to be a configuration for this

but the solution is so bad lmao

just dont add plugins import alias

also imo this is fine

makes it clearer where it's coming from

fwiw this is intended behavior by the eslint plugin

one of their examples shows it

I mean

you're meant to use the full alias no matter what (except in our case for ./)

I just dont understand why it wants to nest it so much

if our relative import is much more closer and short

refactoring mostly

the whole point is that if you were to change where the file was it would still import fine

otherwise you'd have to update your relative imports

welp

autofix makes it use backslash

very smart

windows issue

its using the environment path sep

i think if you use the eslint cli it doesnt do that

HORROR

stupid clankers

I did, same issue

eslint is dumb then

it shouldnt be using the env sep when / is the only valid char for node lol

the issue isn't eslint it's that plugin

maybe this is better but it hasnt been updated in 7y https://www.npmjs.com/package/eslint-plugin-import-alias

seems like https://www.npmjs.com/package/eslint-import-resolver-alias is much more popular

😭

just undo and I'll do it

I spent 15 mins fixing it 😭

5 mins trying to make a regex and failing

xD

wait how the fuck

I ran the lint command and it said everything was fine

so stupid

well it Runs As Eslint so its Eslint's Fault

/s

vtest fix-circular-deps

Now testing!

evil pr

alright looks good to me

does that look okay?

vtest fix-circular-deps

Now testing!

bro didnt check what @api/Settings imports

dont tell me

settings api imports half of vencord

oh my god

just undo that commit

💔

useless

vencord is.. spaghetti code??

we need to add custom instructions

if we're gonna keep using that hunk of junk

very

at least in some places

cuz as a pr reviewer its practically pointless

Settings should not import commons 😭

vtest fix-circular-deps

Now testing!

dude i cant wait

until i get more nvmes

i can finally move my data drive off of spinning rust

i give up i've tried two tools to generate a depgraph

and neither of them want to play nice with codebase

madge doesnt support path aliases, and dependency-cruiser seems to get caught up on the two .js files we have and assumes that the whole codebase is js only

i think im going to do more refactoring in this pr @limber skiff

like make settings not import other places

and move quickcss to api

etc

alright

seems good

we can't really do this

it needs all plugins and react for hooks

we could solve it by spamming lazy imports but meh

stylelint in quickcss when

That's just monaco not being up to date, isn't it?

Just like back when :has() selectors weren't properly recognised

@limber skiff why doesn't findStore early return?

export function findStore(name: StoreNameFilter) {
    let res = fluxStores[name] as any;
    if (res == null) {
        for (const store of Flux.Store.getAll?.() ?? []) {
            const storeName = store.getName();

            if (storeName === name) {
                res = store;
            }

            if (fluxStores[storeName] == null) {
                fluxStores[storeName] = store;
            }
        }

        try {
            const getLibdiscore = findByCode("libdiscoreWasm is not initialized");
            const libdiscoreExports = getLibdiscore();

            for (const libdiscoreExportName in libdiscoreExports) {
                if (!libdiscoreExportName.endsWith("Store")) {
                    continue;
                }

                const storeName = libdiscoreExportName;
                const store = libdiscoreExports[storeName];

                if (storeName === name) {
                    res = store;
                }

                if (fluxStores[storeName] == null) {
                    fluxStores[storeName] = store;
                }
            }

        } catch { }

        if (res == null) {
            res = find(filters.byStoreName(name), { isIndirect: true });
        }
    }

    if (!res)
        handleModuleNotFound("findStore", name);
    return res;
}

there are multiple places where it could early return

old code I think

export function findStore(name: StoreNameFilter) {
    let res = fluxStores[name] as any;
    if (res) return res;

    for (const store of Flux.Store.getAll?.() ?? []) {
        const storeName = store.getName();

        if (storeName === name) {
            fluxStores[storeName] = store;
            return store;
        }
    }

    try {
        const getLibdiscore = findByCode("libdiscoreWasm is not initialized");
        const libdiscoreExports = getLibdiscore();

        for (const libdiscoreExportName in libdiscoreExports) {
            if (!libdiscoreExportName.endsWith("Store")) {
                continue;
            }

            const storeName = libdiscoreExportName;
            const store = libdiscoreExports[storeName];

            if (storeName === name) {
                fluxStores[storeName] = store;
                return store;
            }
        }

    } catch { }

    res = find(filters.byStoreName(name), { isIndirect: true });
    if (res) {
        fluxStores[name] = res;
        return res;
    }

    handleModuleNotFound("findStore", name);
    return null;
}

isn't this better

also that should use Map not object

export function findStore(name: StoreNameFilter) {
    let res = fluxStores.get(name);
    if (res) return res;

    for (const store of Flux.Store.getAll?.() ?? []) {
        if (name === store.getName()) {
            fluxStores.set(name, store);
            return store;
        }
    }

    try {
        const getLibdiscore = findByCode("libdiscoreWasm is not initialized");
        const libdiscoreExports = getLibdiscore();

        for (const libdiscoreExportName in libdiscoreExports) {
            if (!libdiscoreExportName.endsWith("Store")) {
                continue;
            }

            const storeName = libdiscoreExportName;
            const store = libdiscoreExports[storeName];

            if (storeName === name) {
                fluxStores.set(storeName, store);
                return store;
            }
        }

    } catch { }

    res = find(filters.byStoreName(name), { isIndirect: true });
    if (res) {
        fluxStores.set(name, res);
        return res;
    }

    handleModuleNotFound("findStore", name);
    return null;
}

this should be removed probably

oh wait you want to add stores to the object put on the window

I see

but it shouldn't do it every time eh

why do you even build a big object of stores

i dont really get the point

how about this @limber skiff

function populateFluxStoreMap() {
    const { Flux } = require("./common") as typeof import("./common");

    for (const store of Flux.Store.getAll?.() ?? []) {
        fluxStores.set(store.getName(), store);
    }

    try {
        const getLibdiscore = findByCode("libdiscoreWasm is not initialized");
        const libdiscoreExports = getLibdiscore();

        for (const libdiscoreExportName in libdiscoreExports) {
            if (!libdiscoreExportName.endsWith("Store")) {
                continue;
            }

            const storeName = libdiscoreExportName;
            const store = libdiscoreExports[storeName];

            fluxStores.set(storeName, store);
        }

    } catch { }
}

/**
 * Find a store by its displayName
 */
export function findStore(name: StoreNameFilter) {
    if (fluxStores.has(name)) {
        return fluxStores.get(name);
    }

    populateFluxStoreMap();

    if (fluxStores.has(name)) {
        return fluxStores.get(name);
    }

    const res = find(filters.byStoreName(name), { isIndirect: true });
    if (res) {
        fluxStores.set(name, res);
        return res;
    }

    handleModuleNotFound("findStore", name);
    return null;
}

wtf is this store

958832: function(e, t, n) {
        n.d(t, {
            Z: () => s
        });
        var r = n(442837)
          , i = n(570140);
        let l = {};
        class a extends r.ZP.Store {
            hasFetched(e) {
                return null != l[e]
            }
            getTopChannelIds(e) {
                return "874345844743213126" === e ? ["1041887225819955252", "985996080107892776", "1035280727610241166"] : l[e]
            }
        }
        let s = new a(i.Z,{
            GUILD_TOP_READ_CHANNELS_FETCH_SUCCESS: function(e) {
                let {guildId: t, topChannelIds: n} = e;
                l[t] = n
            }
        })
    },

what guild is 874345844743213126

@shy veldt tell

Cap's Book Community

really or are you meming

Cap's Book Community

wtf lmao

peak

cap's book community

how tf do you have this data 😭

only 3 members

I tried widget but it's off

(await Vencord.Webpack.Common.RestAPI.get("/guilds/1015060230222131221/top-read-channels")).body

👍

empty

Dziruwa is discord staff or something

i think it's ready now

vtest fix-circular-deps

Now testing!