RubyGems - rails_vitals - Versions diffs - 0.6.3 → 0.6.4 - Mend

rails_vitals 0.6.3 → 0.6.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/app/controllers/rails_vitals/application_controller.rb +2 -2
data/app/controllers/rails_vitals/playgrounds_controller.rb +28 -1
data/app/views/rails_vitals/playgrounds/index.html.erb +12 -0
data/lib/rails_vitals/engine.rb +5 -0
data/lib/rails_vitals/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a4479577c80975bad32203d017cff00cf4070589c6059424b393796bb5f4b7a2
-  data.tar.gz: e96412a5354e3e79ae97e4957a8e4c96372ffabb705fb8cb52251bb9348a4d9d
+  metadata.gz: 7fb9a7c51b933da864e0f8ce0cfce6b0035cd1b47d90bf438115338cdb64cba2
+  data.tar.gz: c0a6a58e6ca56c35708a5132a9352fed34552d8a3ae33fc7033c7604b7fa6cf2
 SHA512:
-  metadata.gz: 9d7f670412fc9caaf74d8310161f246eb5d7f2d20a433a9eae01fa10350602afcfabbddb89048920b54a136001d0aaee0338c642ca6826dff3a8a99f133ee175
-  data.tar.gz: b46385277f03c958362eff854389098c921f6b7bdaf490ddbb41212c255a14c60c3c48c45c7a10fd290361dbd58d9a8619865c154b2a020b7daeb6bc342e9b66
+  metadata.gz: f5d40cc9d798c5c5fa4f2a02d173ff8c9991b273c66e50a81e201b987b46d5ac642a9b1e64d2e578c2055ce29b69abacfa373eb8b7bab4d22e4d6dc5966804d7
+  data.tar.gz: 717c9ca8d3d1f6561325635be1df4c53bd1c758295b95f29150b022dc8ab81c219abb6c49762f090b5a74b0f9c3b37b91f97f57be33867fb3c4a3555f76a7491

data/app/controllers/rails_vitals/application_controller.rb CHANGED Viewed

@@ -13,8 +13,8 @@ module RailsVitals
         true
       when :basic
         authenticate_or_request_with_http_basic("RailsVitals") do |username, password|
-          username == RailsVitals.config.basic_auth_username &&
-            password == RailsVitals.config.basic_auth_password
+          ActiveSupport::SecurityUtils.secure_compare(username, RailsVitals.config.basic_auth_username.to_s) &
+            ActiveSupport::SecurityUtils.secure_compare(password, RailsVitals.config.basic_auth_password.to_s)
         end
       when Proc
         unless auth.call(self)

data/app/controllers/rails_vitals/playgrounds_controller.rb CHANGED Viewed

@@ -10,6 +10,26 @@ module RailsVitals
     def create
       expression = params[:expression].to_s.strip
       clean_expr = clean_expression(expression)
+      unless params[:confirmed] == "1"
+        @expression = clean_expr
+        @result = Playground::Sandbox::Result.new(
+          error: "Please confirm that you understand this runs real queries",
+          queries: [], query_count: 0, duration_ms: 0,
+          model_name: nil, record_count: 0, score: nil, n1_patterns: []
+        )
+        model_name = Playground::Sandbox.extract_model_name(clean_expr)
+        if model_name
+          @available_assocs = associations_for_model(model_name)
+          @prechecked_assocs = Array(params[:access_associations]).reject(&:blank?)
+        else
+          build_index_data
+        end
+        render :index
+        return
+      end
       access_associations = Array(params[:access_associations]).reject(&:blank?)
       result = Playground::Sandbox.run(
@@ -17,7 +37,7 @@ module RailsVitals
         access_associations: access_associations
       )
-      model_name = Playground::Sandbox.extract_model_name(expression)
+      model_name = Playground::Sandbox.extract_model_name(clean_expr)
       @available_assocs = associations_for_model(model_name)
       @prechecked_assocs = access_associations
@@ -116,5 +136,12 @@ module RailsVitals
         }
       end
     end
+    def build_index_data
+      @default_query = default_query
+      @default_model = default_model_name
+      @available_assocs = associations_for_model(@default_model)
+      @prechecked_assocs = prechecked_associations
+    end
   end
 end

data/app/views/rails_vitals/playgrounds/index.html.erb CHANGED Viewed

@@ -57,6 +57,18 @@
       Queries run against real data with a 100-record cap and 2s timeout.
     </div>
+    <label class="flex items-center gap-8 mb-16" style="cursor:pointer;font-size:13px;color:#a0aec0;">
+      <% if params[:confirmed] %>
+        <input type="checkbox" name="confirmed" value="1"
+               style="accent-color:#68d391;width:16px;height:16px;"
+               checked>
+      <% else %>
+        <input type="checkbox" name="confirmed" value="1"
+               style="accent-color:#68d391;width:16px;height:16px;">
+      <% end %>
+      I understand this runs real queries against my database
+    </label>
     <button type="submit" class="run-btn" id="run-btn">▶ Run</button>
   <% end %>
 </div>

data/lib/rails_vitals/engine.rb CHANGED Viewed

@@ -21,6 +21,11 @@ module RailsVitals
                 "Permitted: #{RailsVitals::Configuration::PERMITTED_ENVIRONMENTS.join(', ')}"
         end
+        token = RailsVitals.config.mcp_auth_token
+        if token.blank? || token.length < 16
+          raise "RailsVitals MCP requires mcp_auth_token to be at least 16 characters"
+        end
         require "rails_vitals/mcp/auth"
         require "rails_vitals/mcp/response_builder"
         require "rails_vitals/mcp/tool_registry"

data/lib/rails_vitals/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module RailsVitals
-  VERSION = "0.6.3"
+  VERSION = "0.6.4"
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rails_vitals
 version: !ruby/object:Gem::Version
-  version: 0.6.3
+  version: 0.6.4
 platform: ruby
 authors:
 - David Sanchez