7 commits
Author | SHA1 | Message | Date | |
---|---|---|---|---|
Mime Čuvalo
|
f19ed94422
|
csp: add content security policy for dotcom (#3952)
followup to https://github.com/tldraw/tldraw/pull/3907 This introduces, more formally, a CSP policy for dotcom. ### Change Type <!-- ❗ Please select a 'Scope' label ❗️ --> - [ ] `sdk` — Changes the tldraw SDK - [x] `dotcom` — Changes the tldraw.com web app - [ ] `docs` — Changes to the documentation, examples, or templates. - [ ] `vs code` — Changes to the vscode plugin - [ ] `internal` — Does not affect user-facing stuff <!-- ❗ Please select a 'Type' label ❗️ --> - [ ] `bugfix` — Bug fix - [ ] `feature` — New feature - [x] `improvement` — Improving existing features - [ ] `chore` — Updating dependencies, other boring stuff - [ ] `galaxy brain` — Architectural changes - [ ] `tests` — Changes to any test code - [ ] `tools` — Changes to infrastructure, CI, internal scripts, debugging tools, etc. - [ ] `dunno` — I don't know ### Release Notes - Security: add CSP to dotcom. |
||
Mime Čuvalo
|
6c846716c3
|
assets: make option to transform urls dynamically / LOD (#3827)
this is take #2 of this PR https://github.com/tldraw/tldraw/pull/3764 This continues the idea kicked off in https://github.com/tldraw/tldraw/pull/3684 to explore LOD and takes it in a different direction. Several things here to call out: - our dotcom version would start to use Cloudflare's image transforms - we don't rewrite non-image assets - we debounce zooming so that we're not swapping out images while zooming (it creates jank) - we load different images based on steps of .25 (maybe we want to make this more, like 0.33). Feels like 0.5 might be a bit too much but we can play around with it. - we take into account network connection speed. if you're on 3g, for example, we have the size of the image. - dpr is taken into account - in our case, Cloudflare handles it. But if it wasn't Cloudflare, we could add it to our width equation. - we use Cloudflare's `fit=scale-down` setting to never scale _up_ an image. - we don't swap the image in until we've finished loading it programatically (to avoid a blank image while it loads) TODO - [x] We need to enable Cloudflare's pricing on image transforms btw @steveruizok 😉 - this won't work quite yet until we do that. ### Change Type <!-- ❗ Please select a 'Scope' label ❗️ --> - [x] `sdk` — Changes the tldraw SDK - [ ] `dotcom` — Changes the tldraw.com web app - [ ] `docs` — Changes to the documentation, examples, or templates. - [ ] `vs code` — Changes to the vscode plugin - [ ] `internal` — Does not affect user-facing stuff <!-- ❗ Please select a 'Type' label ❗️ --> - [ ] `bugfix` — Bug fix - [x] `feature` — New feature - [ ] `improvement` — Improving existing features - [ ] `chore` — Updating dependencies, other boring stuff - [ ] `galaxy brain` — Architectural changes - [ ] `tests` — Changes to any test code - [ ] `tools` — Changes to infrastructure, CI, internal scripts, debugging tools, etc. - [ ] `dunno` — I don't know ### Test Plan 1. Test images on staging, small, medium, large, mega 2. Test videos on staging - [x] Unit Tests - [ ] End to end tests ### Release Notes - Assets: make option to transform urls dynamically to provide different sized images on demand. |
||
Mitja Bezenšek
|
4245fd55b2
|
Fix deploy script (#3550)
Seems like `tar` is moving to `ts` in version 7 and this caused some issues with imports. Saw this issue on [readonly PR](https://github.com/tldraw/tldraw/actions/runs/8783569356/job/24099998235?pr=3192#step:6:684), looks like a result of a [dependabot PR](https://github.com/tldraw/tldraw/pull/3505). ### Change Type <!-- ❗ Please select a 'Scope' label ❗️ --> - [ ] `sdk` — Changes the tldraw SDK - [ ] `dotcom` — Changes the tldraw.com web app - [ ] `docs` — Changes to the documentation, examples, or templates. - [ ] `vs code` — Changes to the vscode plugin - [x] `internal` — Does not affect user-facing stuff <!-- ❗ Please select a 'Type' label ❗️ --> - [ ] `bugfix` — Bug fix - [ ] `feature` — New feature - [ ] `improvement` — Improving existing features - [ ] `chore` — Updating dependencies, other boring stuff - [ ] `galaxy brain` — Architectural changes - [ ] `tests` — Changes to any test code - [x] `tools` — Changes to infrastructure, CI, internal scripts, debugging tools, etc. - [ ] `dunno` — I don't know |
||
dependabot[bot]
|
4507ce6378
|
Bump the npm_and_yarn group across 1 directory with 2 updates (#3505)
Bumps the npm_and_yarn group with 2 updates in the / directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [tar](https://github.com/isaacs/node-tar). Updates `vite` from 5.2.8 to 5.2.9 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md">vite's changelog</a>.</em></p> <blockquote> <h2><!-- raw HTML omitted -->5.2.9 (2024-04-15)<!-- raw HTML omitted --></h2> <ul> <li>fix: <code>fsp.rm</code> removing files does not take effect (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16032">#16032</a>) (<a href="https://github.com/vitejs/vite/commit/b05c405">b05c405</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16032">#16032</a></li> <li>fix: fix accumulated stacks in error overlay (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16393">#16393</a>) (<a href="https://github.com/vitejs/vite/commit/102c2fd">102c2fd</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16393">#16393</a></li> <li>fix(deps): update all non-major dependencies (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16376">#16376</a>) (<a href="https://github.com/vitejs/vite/commit/58a2938">58a2938</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16376">#16376</a></li> <li>chore: update region comment (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16380">#16380</a>) (<a href="https://github.com/vitejs/vite/commit/77562c3">77562c3</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16380">#16380</a></li> <li>perf: reduce size of injected __vite__mapDeps code (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16184">#16184</a>) (<a href="https://github.com/vitejs/vite/commit/c0ec6be">c0ec6be</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16184">#16184</a></li> <li>perf(css): only replace empty chunk if imported (<a href="https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/16349">#16349</a>) (<a href="https://github.com/vitejs/vite/commit/e2658ad">e2658ad</a>), closes <a href="https://redirect.github.com/vitejs/vite/issues/16349">#16349</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
alex
|
408a269114
|
log message size in worker analytics (#3274)
Adds logging of message size in worker analytics. This also adds the environment to worker analytics as `blob2`. We need this because previously, all the analytics from all environments were going to the same place with no ability to tell them apart, which means we can't easily compare analytics on e.g. a particular PR. This means that all the other blobs get shifted along one, so we won't be able to query across the boundary of when this gets released for those properties. I think this is fine though - it's things like `roomId` that I don't think we were querying on anyway. You can query the analytics through grafana - [docs here](https://www.notion.so/tldraw/How-to-11fce2ed0be5480bb8e711c7ff1a0488?pvs=4#a66fae7bfcfe4ffe9d5348504598c6a0) ### Change Type - [x] `internal` — Does not affect user-facing stuff - [x] `chore` — Updating dependencies, other boring stuff |
||
Dan Groshev
|
3a3248a636
|
Introduce a Cloudflare health worker (#2499)
This PR introduces a new Cloudflare worker for health checks. At the moment the worker only translates Updown webhooks into Discord webhooks. In the future we can teach this worker to check more things. ### Change Type - [x] `internal` — Any other changes that don't affect the published package --------- Co-authored-by: Steve Ruiz <steveruizok@gmail.com> |
||
Steve Ruiz
|
d7002057d7
|
unbrivate, dot com in (#2475)
This PR moves the tldraw.com app into the public repo. ### Change Type - [x] `internal` — Any other changes that don't affect the published package[^2] --------- Co-authored-by: Dan Groshev <git@dgroshev.com> Co-authored-by: alex <alex@dytry.ch> |