v1.8.3 #263

n4ze3m · 2024-05-16T15:38:18Z

Added new OpenAI model gpt-4o Gpt4o #262
Added ability to add models from openai, anthropic, groq from UI
[New] Configure semantic search score

…ic number of documents

… unnecessary code

vercel · 2024-05-16T15:38:21Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
dialoqbase-ui	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	May 17, 2024 11:24am

socket-security · 2024-05-16T15:49:18Z

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@ant-design/[email protected]	environment	`+7`	847 kB	zombiej
npm/@headlessui/[email protected]	environment	`+3`	2.25 MB	malfaitrobin
npm/@heroicons/[email protected]	None	`0`	3.33 MB	malfaitrobin
npm/@mantine/[email protected]	None	`+2`	256 kB	rtivital
npm/@rspack/[email protected]	environment, eval, filesystem Transitive: network, shell, unsafe	`+141`	16.2 MB	hardfist
npm/@tailwindcss/[email protected]	None	`+1`	60.6 kB	thecrypticace
npm/@tailwindcss/[email protected]	None	`+5`	362 kB	thecrypticace
npm/@tanstack/[email protected]	environment	`+1`	3.6 MB	tannerlinsley
npm/@types/[email protected]	None	`+31`	1 MB	types
npm/@types/[email protected]	None	`0`	7.43 kB	types
npm/@types/[email protected]	None	`0`	34 kB	types
npm/@types/[email protected]	None	`+1`	13.5 kB	types
npm/@types/[email protected]	None	`0`	195 kB	types
npm/@types/[email protected]	None	`+2`	443 kB	types
npm/@types/[email protected]	None	`0`	23.7 kB	types
npm/@typescript-eslint/[email protected]	Transitive: environment, filesystem	`+42`	7.01 MB	jameshenry
npm/@typescript-eslint/[email protected]	Transitive: environment, filesystem	`+30`	2.16 MB	jameshenry
npm/@vitejs/[email protected]	filesystem, unsafe Transitive: environment, shell	`+3`	433 kB	vitebot
npm/[email protected]	environment	`+58`	63 MB	afc163
npm/[email protected]	environment Transitive: filesystem	`+7`	2.69 MB	ai
npm/[email protected]	network Transitive: environment, filesystem	`+8`	2.22 MB	jasonsaayman
npm/[email protected]	Transitive: filesystem, network, shell	`+37`	4.16 MB	mbostock
npm/[email protected]	None	`0`	664 kB	iamkun
npm/[email protected]	environment	`0`	118 kB	gnoff
npm/[email protected]	None	`0`	10.4 kB	arnaud-barre
npm/[email protected]	environment, filesystem Transitive: eval, shell, unsafe	`+84`	10.1 MB	eslintbot
npm/[email protected]	None	`0`	204 kB	rexxars
npm/[email protected]	None	`0`	26.2 kB	carhartl
npm/[email protected]	Transitive: environment, filesystem, shell	`+36`	1.37 MB	okonet
npm/[email protected]	network	`+2`	527 kB	tofumatt
npm/[email protected]	None	`+3`	474 kB	kentcdodds
npm/[email protected]	Transitive: environment, eval, filesystem, shell	`+54`	46.1 MB	sidv
npm/[email protected]	environment Transitive: filesystem, shell	`+34`	757 kB	mysticatea
npm/[email protected]	environment, filesystem	`0`	198 kB	ai
npm/[email protected]	environment	`+3`	4.62 MB	gnoff
npm/[email protected]	None	`+2`	323 kB	brianvaughn
npm/[email protected]	Transitive: environment	`+46`	1.71 MB	wooorm
npm/[email protected]	Transitive: environment, eval, filesystem, network	`+13`	35.8 MB	agentcooper
npm/[email protected]	environment Transitive: network	`+2`	4.03 MB	mjackson
npm/[email protected]	None	`+23`	9.78 MB	simmerer
npm/[email protected]	environment	`+2`	337 kB	gnoff
npm/[email protected]	Transitive: environment, eval, filesystem, network, shell, unsafe	`+46`	41.7 MB	wooorm
npm/[email protected]	Transitive: environment, eval, filesystem, network, shell, unsafe	`+19`	26.3 MB	remcohaszing
npm/[email protected]	Transitive: environment	`+51`	1.75 MB	wooorm
npm/[email protected]	Transitive: environment, filesystem, shell	`+19`	4.62 MB	wooorm

View full report↗︎

socket-security · 2024-05-16T15:49:21Z

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source
Install scripts	npm/@fortawesome/[email protected]	Install script: postinstall Source: `node attribution.js`	`app/ui/package.json` `pnpm-lock.yaml`
Install scripts	npm/@swc/[email protected]	Install script: postinstall Source: `node postinstall.js`	`app/ui/package.json` `app/widget/package.json` `pnpm-lock.yaml`
Install scripts	npm/[email protected]	Install script: postinstall Source: `node -e "try{require('./postinstall')}catch(e){}"`	`app/script/package.json` `pnpm-lock.yaml`

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@SocketSecurity ignore npm/@fortawesome/[email protected]
@SocketSecurity ignore npm/@swc/[email protected]
@SocketSecurity ignore npm/[email protected]

…versions

…t and semantic search similarity score

…ory in context and semantic search similarity score

n4ze3m added 6 commits May 3, 2024 19:26

fix query issue

539130d

feat: Add GPT-4o (OpenAI) chat model to seed.ts

6aaf019

feat: Update package versions and add support for retrieving a specif…

1f04cae

…ic number of documents

feat: Add websiteParser utility function for converting HTML to markdown

f796852

chore: Update LLMForm to include new third-party providers and remove…

be8b848

… unnecessary code

feat: Add support for new API types in SaveModelFromInputedUrlRequest

ddd6590

n4ze3m added 2 commits May 17, 2024 16:46

chore: Remove unused "@langchain/groq" dependency and update package …

7031bf5

…versions

chore: Update dependencies and add support for chat history in contex…

733ecc0

…t and semantic search similarity score

vercel bot deployed to Preview May 17, 2024 11:16 View deployment

chore: Update SettingsCard component to include support for chat hist…

510d33a

…ory in context and semantic search similarity score

vercel bot deployed to Preview May 17, 2024 11:24 View deployment

n4ze3m marked this pull request as ready for review May 17, 2024 12:09

n4ze3m merged commit 2e8c43b into main May 17, 2024
5 of 6 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v1.8.3 #263

v1.8.3 #263

n4ze3m commented May 16, 2024 •

edited

Loading

vercel bot commented May 16, 2024 •

edited

Loading

socket-security bot commented May 16, 2024 •

edited

Loading

socket-security bot commented May 16, 2024 •

edited

Loading

v1.8.3 #263

v1.8.3 #263

Conversation

n4ze3m commented May 16, 2024 • edited Loading

vercel bot commented May 16, 2024 • edited Loading

socket-security bot commented May 16, 2024 • edited Loading

socket-security bot commented May 16, 2024 • edited Loading

Next steps

n4ze3m commented May 16, 2024 •

edited

Loading

vercel bot commented May 16, 2024 •

edited

Loading

socket-security bot commented May 16, 2024 •

edited

Loading

socket-security bot commented May 16, 2024 •

edited

Loading