test `disabled` binding on input directive #13086

willmartian · 2025-01-27T15:11:47Z

🎟️ Tracking

📔 Objective

📸 Screenshots

⏰ Reminders before review

Contributor guidelines followed
All formatters and local linters executed and passed
Written new unit and / or integration tests where applicable
Protected functional changes with optionality (feature flags)
Used internationalization (i18n) for all UI strings
CI builds passed
Communicated to DevOps any deployment requirements
Updated any necessary documentation (Confluence, contributing docs) or informed the documentation team

🦮 Reviewer guidelines

👍 (:+1:) or similar for great changes
📝 (:memo:) or ℹ️ (:information_source:) for notes or general info
❓ (:question:) for questions
🤔 (:thinking:) or 💭 (:thought_balloon:) for more open inquiry that's not quite a confirmed issue and could potentially benefit from discussion
🎨 (:art:) for suggestions / improvements
❌ (:x:) or ⚠️ (:warning:) for more significant problems or concerns needing attention
🌱 (:seedling:) or ♻️ (:recycle:) for future improvements or indications of technical debt
⛏ (:pick:) for minor or nitpick changes

github-actions · 2025-01-27T15:20:14Z

Checkmarx One – Scan Summary & Details – e05211f5-23ff-4dc7-b451-2265673bb280

New Issues (42)

Checkmarx found the following issues in this Pull Request

Issue	Source File / Package	Checkmarx Insight
CVE-2024-12692	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12694	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12695	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11112	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11113	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11114	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11115	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11395	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12053	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12381	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12382	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-12693	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0291	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0434	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0436	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0437	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0438	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0443	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0447	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11110	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11111	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11116	Npm-electron-33.3.1	Vulnerable Package
CVE-2024-11117	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0435	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0439	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0440	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0441	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0442	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0446	Npm-electron-33.3.1	Vulnerable Package
CVE-2025-0448	Npm-electron-33.3.1	Vulnerable Package
Client_Privacy_Violation	/apps/browser/src/vault/popup/components/vault-v2/attachments/open-attachments/open-attachments.component.ts: 50	details Method at line 50 of /apps/browser/src/vault/popup/components/vault-v2/attachments/open-attachments/open-attachments.component.ts sends user infor... Attack Vector
Client_Privacy_Violation	/libs/angular/src/admin-console/components/collections.component.ts: 36	details Method at line 36 of /libs/angular/src/admin-console/components/collections.component.ts sends user information outside the application. This may ... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 119	details Method at line 119 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application. This may constitute... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 286	details Method load at line 286 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application. This may consti... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 780	details Method loadAddEditCipherInfo at line 780 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application... Attack Vector
Client_Privacy_Violation	/apps/browser/src/vault/popup/components/vault-v2/attachments/open-attachments/open-attachments.component.ts: 50	details Method OpenAttachmentsComponent at line 50 of /apps/browser/src/vault/popup/components/vault-v2/attachments/open-attachments/open-attachments.compo... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 70	details Method at line 70 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application. This may constitute ... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 278	details Method load at line 278 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application. This may consti... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 281	details Method load at line 281 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application. This may consti... Attack Vector
Client_Privacy_Violation	/libs/angular/src/vault/components/add-edit.component.ts: 776	details Method loadAddEditCipherInfo at line 776 of /libs/angular/src/vault/components/add-edit.component.ts sends user information outside the application... Attack Vector
Client_Hardcoded_Domain	/apps/web/src/app/billing/shared/payment/payment.component.ts: 75	details The JavaScript file imported in "https://js\.stripe\.com/v3/?advancedFraudSignals=false" in /apps/web/src/app/billing/shared/payment/payment.componen... Attack Vector
Client_Hardcoded_Domain	/apps/web/src/app/billing/shared/payment/payment.component.ts: 75	details The JavaScript file imported in "https://js\.stripe\.com/v3/?advancedFraudSignals=false" in /apps/web/src/app/billing/shared/payment/payment.componen... Attack Vector

codecov · 2025-01-27T15:23:14Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 35.25%. Comparing base (e2629ee) to head (7d89ba2).
Report is 73 commits behind head on main.

✅ All tests successful. No failed tests found.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #13086      +/-   ##
==========================================
+ Coverage   35.16%   35.25%   +0.09%     
==========================================
  Files        2984     2997      +13     
  Lines       90519    90889     +370     
  Branches    16940    16974      +34     
==========================================
+ Hits        31827    32044     +217     
- Misses      56231    56356     +125     
- Partials     2461     2489      +28

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

test disabled binding on input

7d89ba2

willmartian added the hold do not merge, do not approve yet label Jan 27, 2025

willmartian mentioned this pull request Jan 27, 2025

[PM-15938] - Restrict viewing hidden input based on permission #13016

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

test `disabled` binding on input directive #13086

test `disabled` binding on input directive #13086

willmartian commented Jan 27, 2025

github-actions bot commented Jan 27, 2025

codecov bot commented Jan 27, 2025

test disabled binding on input directive #13086

Are you sure you want to change the base?

test disabled binding on input directive #13086

Conversation

willmartian commented Jan 27, 2025

🎟️ Tracking

📔 Objective

📸 Screenshots

⏰ Reminders before review

🦮 Reviewer guidelines

github-actions bot commented Jan 27, 2025

codecov bot commented Jan 27, 2025

Codecov Report

test `disabled` binding on input directive #13086

test `disabled` binding on input directive #13086