Fix Regression When Adding Torrent Files #1351
Conversation
Ignore VSCode Dev Container files. Resolves 6c65726f79#1309, resolves 6c65726f79#1340
|
Kudos, SonarCloud Quality Gate passed!
|
|
forgive the ignorance about how github works, but… has this been fixed? how do you tell what version fixes it, and how to get that version? |
As I far as I know, this issue has not been fixed. This repository hasn't received any commits in more than a year, so the author is likely too busy or otherwise unable to merge this PR. Are you referring to a version of Transmissionic, or to a version of the offending dependency? If it's the former, you could try installing older versions of Transmissionic until you find one that works in an insecure context. For the latter, the problematic dependency is called |
At some point, the
parse-torrentdependency was upgraded; the new version of this dependency relies on another dependency nameduint8-utilwhich relies on the WebCrypto API for message digest functions.Unfortunately, the WebCrypto API is only available in secure contexts (HTTPS or localhost). This is likely why the regression was not caught sooner, because a developer would have to go out of their way to load the web app in an insecure context in order to experience the bug.
This PR reverts to the previous version of the offending dependency, which appears to solve the problems users are experiencing with adding torrent files from local filesystem or by URL.
Resolves #1309, resolves #1340.