Conversation
stophecom
commented
Jul 7, 2026
- Add browser extensions
- Dependency updates
Adds apps/extension, a WXT + Svelte 5 browser extension (Chrome MV3 + Firefox) that creates an encrypted, one-time-view secret link in one click. It's a thin UI over @scrt-link/client — all client-side crypto and the POST /api/v1/secrets call are reused, no backend changes. - Authenticates with a personal API key stored in browser.storage.local - Onboarding, create-secret, and key-settings screens - Brand-matched styling (navy/cream/red) and inlined flame logo - Wires apps/* into the pnpm workspace - Ignores WXT-generated .wxt/.output dirs in the root ESLint config Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Firefox now rejects new submissions without browser_specific_settings.gecko.data_collection_permissions. scrt.link is zero-knowledge (secrets are E2E-encrypted, API key stays local), so we declare `required: ["none"]`. Scoped to the Firefox build via a per-browser manifest so Chrome doesn't emit an unrecognized-key warning. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Icons are now included; the remaining store-listing items live in the PR description. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
feat(extension): cross-browser secret-sharing extension
Bump @aws-sdk/{client-s3,s3-presigned-post,s3-request-presigner} from
^3.772.0 to ^3.1081.0. This drops the transitive fast-xml-parser
dependency, resolving the critical Dependabot alert (entity-encoding
bypass via regex injection in DOCTYPE entity names).
pnpm auto-added the new AWS SDK versions to minimumReleaseAgeExclude in
pnpm-workspace.yaml so they pass the supply-chain release-age policy.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
chore(deps): update aws-sdk to ^3.1081.0
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|