Skip to content

feat(site): bright "Inspector" website redesign + v3.0.1 audit hardening#28

Merged
New1Direction merged 3 commits into
mainfrom
redesign/bright-inspector
Jun 16, 2026
Merged

feat(site): bright "Inspector" website redesign + v3.0.1 audit hardening#28
New1Direction merged 3 commits into
mainfrom
redesign/bright-inspector

Conversation

@New1Direction

@New1Direction New1Direction commented Jun 16, 2026

Copy link
Copy Markdown
Owner

Summary

Lands the bright "Inspector" website redesign plus the v3.0.1 audit hardening pass (the 14 commits on redesign/bright-inspector beyond main). This is the base of the extension feature stack (#25#26#27); merging it first lets those retarget cleanly to main.

  • Bright "Inspector" marketing redesign — interactive verdict card, lens sheen, theme-scan → camera-snap theme toggle.
  • Hero treatment iterated (WebGL lens experiment added then reverted for a calmer, seamless Vee loop).
  • v3.0.1 audit hardening: XSS, a crash fix, drift-alert correctness, a11y, and CI fixes; patch notes + audit report.

Merging to main triggers the GitHub Pages deploy of the redesigned site (deploys from main on website/**).

Test plan

  • CI green on the branch
  • Post-merge: confirm the Pages deploy publishes the redesigned site at the /RepoLens base path

New1Direction and others added 3 commits June 15, 2026 14:09
@New1Direction
fix: audit hardening pass — XSS, crash, drift alert, a11y, CI (v3.0.1)
595470f 
A correctness/security/tooling pass from a full code audit. No feature changes.

- batch.js: HTML-escape provider errors + pasted URLs (stored-input XSS)
- library.js: hoist FIT_ORDER to one module const — fixes a ReferenceError in
  the compare modal's Fit-delta cell; drop the duplicate per-function locals
- background.js: read saved_at (not savedAt) so the daily drift alert fires;
  add the missing .catch on the RERUN path; make the combinator seed immutable;
  drop two production console.log
- format.js: esc() now escapes single quotes (matches the safe-html escaper)
- batch.html, stack-tab.html: honour prefers-reduced-motion (loaders pulsed on)
- themes.css, website/app/global.css: darken faint text on light themes to AA
- manifest.json: explicit content_security_policy; version -> 3.0.1
- eslint.config.js: lint .mjs so the dev driver stops flooding no-undef
- ci.yml: npm ci (synced lockfile) + blocking lint + advisory npm audit
- package.json / package-lock.json: version -> 3.0.1; regenerate the stale lockfile

733/733 tests pass; eslint 0 errors.
@New1Direction
docs: v3.0.1 patch notes + audit report
e399ef4 
- CHANGELOG: add [3.0.1] — Audit hardening (Fixed / Changed / Notes)
- README: v3.0.1 "What's new" block + version badge 3.0.0 -> 3.0.1
- docs/audits: add the 2026-06-15 deep-review report
@New1Direction
Merge pull request #24 from New1Direction/fix/audit-3.0.1
d07e520 
fix: audit hardening pass — XSS, crash, drift alert, a11y, CI (v3.0.1)
@New1Direction New1Direction merged commit 36eb03b into main Jun 16, 2026
1 check passed
@New1Direction New1Direction deleted the redesign/bright-inspector branch June 16, 2026 18:53
@New1Direction New1Direction mentioned this pull request Jun 16, 2026
Merged
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@New1Direction