mirrors/electron
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions 1
electron/lib/browser
History
Exact
trop[bot] a349e616d4
 fix: strictly validate sender for internal IPC reply channels (#50125) 
The sender-mismatch check in invokeInWebContents and invokeInWebFrameMain
used a negative condition (`type === 'frame' && sender !== expected`),
which only rejected mismatched frame senders and accepted anything else.

Invert to a positive check so only the exact expected frame can resolve
the reply — matches the guard style used elsewhere in lib/browser/.

Co-authored-by: trop[bot] <37223003+trop[bot]@users.noreply.github.com>
Co-authored-by: Samuel Attard <sattard@anthropic.com>
2026-03-09 11:36:47 +01:00
..
api fix: prevent use-after-free in PowerMonitor via dangling OS callbacks (#50088) 2026-03-05 17:21:22 -05:00
.eslintrc.json chore: add missing .eslintrc.json files to limit imports properly (#35719) 2022-09-20 13:25:33 -05:00
default-menu.ts build: add import/order eslint rule (#44085) 2024-10-02 19:10:44 -07:00
devtools.ts feat: service worker preload scripts for improved extensions support (#44411) 2025-01-31 09:32:45 -05:00
guest-view-manager.ts chore: bump chromium to 140.0.7281.0 (main) (#47616) 2025-07-14 13:42:37 -07:00
guest-window-manager.ts build: add import/order eslint rule (#44085) 2024-10-02 19:10:44 -07:00
init.ts chore: upgrade Node.js to v24.10.0 (#48739) 2025-11-04 09:52:30 +01:00
ipc-dispatch.ts refactor: dispatch IPC messages from Session (#45452) 2025-02-17 16:36:28 -05:00
ipc-main-impl.ts build: add import/order eslint rule (#44085) 2024-10-02 19:10:44 -07:00
ipc-main-internal-utils.ts fix: strictly validate sender for internal IPC reply channels (#50125) 2026-03-09 11:36:47 +01:00
ipc-main-internal.ts feat: add WebContents.ipc (#34959) 2022-08-03 16:55:12 -07:00
message-port-main.ts fix: make sure classes in lib correctly implement Electron interfaces (#40291) 2023-10-25 14:02:15 -04:00
parse-features-string.ts fix: window.open popups are always resizable (#47540) 2025-07-02 15:02:59 +02:00
rpc-server.ts refactor: replace webFrame.routingId with sync IPC (#47717) 2025-08-02 11:00:42 -04:00
web-view-events.ts chore: bump chromium to 140.0.7281.0 (main) (#47616) 2025-07-14 13:42:37 -07:00