passbolt-browser-extension 5.10.4 → 5.12.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (296) hide show
  1. package/.devcontainer/Dockerfile +15 -0
  2. package/.devcontainer/devcontainer.json +31 -0
  3. package/.devcontainer/docker-compose.yml +11 -0
  4. package/.devcontainer/post-start.sh +20 -0
  5. package/.devcontainer/safe-chain-config.json +6 -0
  6. package/.devcontainer/safe-chain-shims.sh +10 -0
  7. package/.pre-commit-config.yaml +5 -0
  8. package/CHANGELOG.md +131 -4
  9. package/RELEASE_NOTES.md +3 -5
  10. package/am_i_compromised.py +1036 -0
  11. package/am_i_compromised.sh +688 -0
  12. package/build-safari-extension/Passbolt-Safari-Extension/Passbolt - password manager Extension/services/fetch/fetchService.swift +90 -2
  13. package/build-safari-extension/Passbolt-Safari-Extension/Passbolt - password manager.xcodeproj/project.pbxproj +13 -11
  14. package/build-safari-extension/Passbolt-Safari-Extension/Passbolt - password manager.xcodeproj/xcshareddata/xcschemes/Passbolt-Safari-Extension.xcscheme +1 -1
  15. package/eslint.config.mjs +0 -6
  16. package/package.json +25 -24
  17. package/{.gitlab-ci/scripts → scripts}/bin/publish.sh +2 -2
  18. package/{.gitlab-ci/scripts → scripts}/bin/publish_npm.sh +2 -6
  19. package/{.gitlab-ci/scripts → scripts}/bin/review.sh +1 -1
  20. package/src/all/background_page/controller/InformMenuController/InformMenuController.test.js +11 -11
  21. package/src/all/background_page/controller/account/verifyAccountPassphraseController.test.js +3 -3
  22. package/src/all/background_page/controller/accountRecovery/accountRecoveryGenerateOrganizationKeyController.test.js +1 -1
  23. package/src/all/background_page/controller/accountRecovery/accountRecoveryGetRequestController.test.js +3 -5
  24. package/src/all/background_page/controller/accountRecovery/accountRecoveryGetUserRequestsController.test.js +1 -1
  25. package/src/all/background_page/controller/accountRecovery/accountRecoveryLoginController.test.js +5 -6
  26. package/src/all/background_page/controller/accountRecovery/accountRecoverySaveOrganizationPolicyController.test.js +4 -5
  27. package/src/all/background_page/controller/accountRecovery/accountRecoverySaveUserSettingController.test.js +2 -2
  28. package/src/all/background_page/controller/accountRecovery/accountRecoveryValidateOrganizationPrivateKeyController.test.js +5 -6
  29. package/src/all/background_page/controller/accountRecovery/accountRecoveryValidatePublicKeyController.test.js +2 -3
  30. package/src/all/background_page/controller/accountRecovery/continueAccountRecoveryController.test.js +1 -1
  31. package/src/all/background_page/controller/accountRecovery/downloadOrganizationGenerateKeyController.test.js +1 -1
  32. package/src/all/background_page/controller/accountRecovery/recoverAccountController.test.js +7 -8
  33. package/src/all/background_page/controller/accountRecovery/reviewRequestController.test.js +13 -19
  34. package/src/all/background_page/controller/applicationOverlaid/IsApplicationOverlaidController.test.js +2 -4
  35. package/src/all/background_page/controller/auth/authLoginController.test.js +5 -6
  36. package/src/all/background_page/controller/auth/authLogoutController.js +11 -2
  37. package/src/all/background_page/controller/auth/authLogoutController.test.js +14 -5
  38. package/src/all/background_page/controller/auth/authVerifyServerKeyController.test.js +7 -16
  39. package/src/all/background_page/controller/autofill/AutofillController.test.js +2 -2
  40. package/src/all/background_page/controller/comment/createCommentController.test.js +3 -3
  41. package/src/all/background_page/controller/comment/deleteCommentController.test.js +3 -3
  42. package/src/all/background_page/controller/comment/getCommentsByRessourceidController.test.js +3 -5
  43. package/src/all/background_page/controller/crypto/checkPassphraseController.test.js +2 -2
  44. package/src/all/background_page/controller/crypto/downloadUserPrivateKeyController.test.js +1 -2
  45. package/src/all/background_page/controller/crypto/downloadUserPublicKeyController.test.js +1 -2
  46. package/src/all/background_page/controller/crypto/getKeyInfoController.test.js +1 -1
  47. package/src/all/background_page/controller/crypto/validatePrivateGpgKeySetupController.test.js +5 -6
  48. package/src/all/background_page/controller/export/exportResourcesFileController.test.js +6 -7
  49. package/src/all/background_page/controller/exportPolicies/findExportPoliciesSettingsController.test.js +1 -1
  50. package/src/all/background_page/controller/extension/isExtensionAllowedOnEveryWebsiteController.test.js +1 -1
  51. package/src/all/background_page/controller/extension/openSafariExtensionSettingsController.test.js +1 -1
  52. package/src/all/background_page/controller/extension/startCheckingForPermissionUpdateController.test.js +1 -1
  53. package/src/all/background_page/controller/extension/stopCheckingForPermissionUpdateController.test.js +1 -1
  54. package/src/all/background_page/controller/folder/findFolderDetailsController.test.js +1 -1
  55. package/src/all/background_page/controller/group/groupCreateController.js +58 -0
  56. package/src/all/background_page/controller/group/groupCreateController.test.js +67 -0
  57. package/src/all/background_page/controller/import/importResourcesFileController.test.js +17 -19
  58. package/src/all/background_page/controller/metadata/enableEncryptedMetadataForExistingInstanceController.test.js +1 -1
  59. package/src/all/background_page/controller/metadata/enableMetadataSetupSettingsController.test.js +2 -2
  60. package/src/all/background_page/controller/metadata/findMetadataSetupSettingsController.test.js +1 -1
  61. package/src/all/background_page/controller/metadata/keepCleartextMetadataForExistingInstanceController.test.js +1 -1
  62. package/src/all/background_page/controller/move/moveResourcesController.test.js +2 -2
  63. package/src/all/background_page/controller/passwordExpiry/deletePasswordExpirySettingsController.test.js +2 -2
  64. package/src/all/background_page/controller/recover/generateRecoverAccountRecoveryRequestKeyController.test.js +1 -1
  65. package/src/all/background_page/controller/recover/startRecoverController.test.js +2 -2
  66. package/src/all/background_page/controller/resource/findAllByIdsForDisplayPermissionsController.test.js +1 -1
  67. package/src/all/background_page/controller/resource/findAllIdsByIsSharedWithGroupController.test.js +1 -1
  68. package/src/all/background_page/controller/resource/resourceCreateController.js +1 -1
  69. package/src/all/background_page/controller/resource/resourceCreateController.test.js +1 -1
  70. package/src/all/background_page/controller/resource/resourceUpdateController.test.js +1 -1
  71. package/src/all/background_page/controller/resource/updateResourceLocalStorageByFolderParentIdController.test.js +1 -1
  72. package/src/all/background_page/controller/role/findAllRoleControler.test.js +1 -1
  73. package/src/all/background_page/controller/role/rolesUpdateLocalStorageController.test.js +1 -1
  74. package/src/all/background_page/controller/scimSettings/createScimSettingsController.test.js +2 -2
  75. package/src/all/background_page/controller/scimSettings/disableScimSettingsController.test.js +1 -1
  76. package/src/all/background_page/controller/scimSettings/findScimSettingsController.test.js +1 -1
  77. package/src/all/background_page/controller/scimSettings/updateScimSettingsController.test.js +1 -1
  78. package/src/all/background_page/controller/secretRevision/findResourceSecretRevisionsForDisplayController.test.js +3 -3
  79. package/src/all/background_page/controller/setup/downloadRecoverKitController.test.js +1 -1
  80. package/src/all/background_page/controller/setup/setSetupAccountRecoveryUserSettingController.test.js +1 -1
  81. package/src/all/background_page/controller/setup/setSetupLocaleController.test.js +1 -1
  82. package/src/all/background_page/controller/setup/signInSetupController.test.js +3 -3
  83. package/src/all/background_page/controller/setup/startSetupController.test.js +3 -3
  84. package/src/all/background_page/controller/setup/verifyImportedKeyPassphraseController.test.js +3 -3
  85. package/src/all/background_page/controller/share/shareOneFolderController.test.js +3 -5
  86. package/src/all/background_page/controller/share/shareResourcesController.test.js +5 -7
  87. package/src/all/background_page/controller/sso/hasSsoLoginErrorController.test.js +1 -2
  88. package/src/all/background_page/controller/sso/ssoAuthenticationController.test.js +1 -2
  89. package/src/all/background_page/controller/tab/openAdministrationPageController.test.js +1 -1
  90. package/src/all/background_page/controller/tab/openResourceUriTabController.js +60 -0
  91. package/src/all/background_page/controller/tab/openResourceUriTabController.test.js +108 -0
  92. package/src/all/background_page/controller/tab/openTrustedDomainTabController.test.js +1 -1
  93. package/src/all/background_page/controller/tab/openWebsiteGettingStartedPageController.test.js +1 -1
  94. package/src/all/background_page/controller/tag/addTagsToResourcesController.test.js +4 -6
  95. package/src/all/background_page/controller/tag/findTagsController.test.js +1 -1
  96. package/src/all/background_page/error/timeoutError.js +23 -0
  97. package/src/all/background_page/event/appEvents.js +12 -0
  98. package/src/all/background_page/event/appSignOutEvents.js +23 -0
  99. package/src/all/background_page/event/groupEvents.js +3 -10
  100. package/src/all/background_page/model/actionLog/findActionLogService.test.js +2 -2
  101. package/src/all/background_page/model/comment/commentService.test.js +3 -3
  102. package/src/all/background_page/model/entity/accountRecovery/accountRecoveryOrganizationPolicyChangeEntity.test.js +2 -3
  103. package/src/all/background_page/model/entity/accountRecovery/accountRecoveryOrganizationPolicyEntity.test.js +2 -3
  104. package/src/all/background_page/model/entity/accountRecovery/accountRecoveryOrganizationPublicKeyEntity.test.js +2 -3
  105. package/src/all/background_page/model/entity/gpgkey/generate/generateGpgKeyPairOptionsEntity.test.js +2 -2
  106. package/src/all/background_page/model/entity/group/update/groupUpdatesCollection.test.js +1 -1
  107. package/src/all/background_page/model/entity/passwordPolicies/passphraseGeneratorSettingsEntity.test.js +2 -3
  108. package/src/all/background_page/model/entity/passwordPolicies/passwordGeneratorSettingsEntity.test.js +2 -3
  109. package/src/all/background_page/model/entity/passwordPolicies/passwordPoliciesEntity.test.js +4 -5
  110. package/src/all/background_page/model/entity/plaintext/plaintextEntity.js +9 -0
  111. package/src/all/background_page/model/entity/plaintext/plaintextEntity.test.js +33 -2
  112. package/src/all/background_page/model/entity/rememberMe/userRememberMeLatestChoiceEntity.test.js +1 -1
  113. package/src/all/background_page/model/entity/resource/external/externalResourceEntity.js +33 -0
  114. package/src/all/background_page/model/entity/resource/external/externalResourceEntity.test.js +64 -1
  115. package/src/all/background_page/model/entity/resource/resourceEntity.js +1 -1
  116. package/src/all/background_page/model/entity/sso/ssoLoginUrlEntity.js +2 -0
  117. package/src/all/background_page/model/entity/sso/ssoLoginUrlEntity.test.js +6 -5
  118. package/src/all/background_page/model/entity/totp/totpEntity.test.js +2 -3
  119. package/src/all/background_page/model/export/resources/resourcesKdbxExporter.test.js +68 -0
  120. package/src/all/background_page/model/group/groupModel.js +0 -15
  121. package/src/all/background_page/model/import/resources/csvRowParser/csv1PasswordRowParser.js +1 -0
  122. package/src/all/background_page/model/import/resources/csvRowParser/csvBitWardenRowParser.js +1 -0
  123. package/src/all/background_page/model/import/resources/csvRowParser/csvChromiumRowParser.js +1 -0
  124. package/src/all/background_page/model/import/resources/csvRowParser/csvDashlaneRowParser.js +1 -0
  125. package/src/all/background_page/model/import/resources/csvRowParser/csvKdbxRowParser.js +1 -0
  126. package/src/all/background_page/model/import/resources/csvRowParser/csvLastPassRowParser.js +1 -0
  127. package/src/all/background_page/model/import/resources/csvRowParser/csvLogMeOnceRowParser.js +1 -0
  128. package/src/all/background_page/model/import/resources/csvRowParser/csvMozillaPlatformRowParser.js +1 -0
  129. package/src/all/background_page/model/import/resources/csvRowParser/csvNordpassRowParser.js +1 -0
  130. package/src/all/background_page/model/import/resources/csvRowParser/csvSafariRowParser.js +1 -0
  131. package/src/all/background_page/model/import/resources/resourcesCsvImportParser.test.js +6 -7
  132. package/src/all/background_page/model/import/resources/resourcesKdbxImportParser.js +1 -0
  133. package/src/all/background_page/model/import/resources/resourcesTypeImportParser.js +60 -0
  134. package/src/all/background_page/model/import/resources/resourcesTypeImportParser.test.js +398 -42
  135. package/src/all/background_page/model/passwordExpiry/passwordExpirySettingsModel.test.js +2 -2
  136. package/src/all/background_page/model/resourceType/resourceTypeModel.test.js +1 -1
  137. package/src/all/background_page/model/userPassphrasePolicies/userPassphrasePoliciesModel.test.js +1 -1
  138. package/src/all/background_page/model/userSettings/userSettings.test.js +2 -2
  139. package/src/all/background_page/pagemod/accountRecoveryBootstrapPagemod.test.js +2 -3
  140. package/src/all/background_page/pagemod/appBootstrapPagemod.test.js +2 -3
  141. package/src/all/background_page/pagemod/appPagemod.js +9 -1
  142. package/src/all/background_page/pagemod/appPagemod.test.js +32 -2
  143. package/src/all/background_page/pagemod/authBootstrapPagemod.test.js +2 -3
  144. package/src/all/background_page/pagemod/publicWebsiteSignInPagemod.test.js +2 -3
  145. package/src/all/background_page/pagemod/recoverBootstrapPagemod.test.js +4 -5
  146. package/src/all/background_page/pagemod/setupBootstrapPagemod.test.js +4 -5
  147. package/src/all/background_page/pagemod/webIntegrationPagemod.test.js +2 -3
  148. package/src/all/background_page/service/accountRecovery/decryptPrivateKeyPasswordDataService.test.js +6 -6
  149. package/src/all/background_page/service/accountRecovery/decryptResponseDataService.test.js +5 -7
  150. package/src/all/background_page/service/accountRecovery/parseAccountRecoveryUrlService.test.js +6 -7
  151. package/src/all/background_page/service/accountRecovery/validateOrganizationPublicKeyService.test.js +2 -3
  152. package/src/all/background_page/service/api/accountRecovery/validateAccountRecoveryOrganizationPrivateKeyService.test.js +2 -2
  153. package/src/all/background_page/service/api/favorite/favoriteApiService.test.js +9 -9
  154. package/src/all/background_page/service/api/group/groupApiService.js +6 -3
  155. package/src/all/background_page/service/api/metadata/metadataKeysApiService.test.js +6 -6
  156. package/src/all/background_page/service/api/metadata/metadataRotateKeysResourcesApiService.test.js +2 -2
  157. package/src/all/background_page/service/api/metadata/metadataSetupSettingsApiService.test.js +1 -1
  158. package/src/all/background_page/service/api/secretRevision/resourceSecretRevisionApiService.test.js +4 -4
  159. package/src/all/background_page/service/api/secretRevision/secretRevisionsSettingsApiService.test.js +6 -6
  160. package/src/all/background_page/service/app/parseAppUrlService.test.js +5 -6
  161. package/src/all/background_page/service/auth/authVerifyLoginChallengeService.test.js +1 -1
  162. package/src/all/background_page/service/auth/authVerifyServerChallengeService.test.js +2 -4
  163. package/src/all/background_page/service/auth/decryptUserAuthTokenService.js +2 -2
  164. package/src/all/background_page/service/auth/decryptUserAuthTokenService.test.js +8 -10
  165. package/src/all/background_page/service/auth/parseAuthUrlService.test.js +4 -5
  166. package/src/all/background_page/service/authenticationStatusService.test.js +2 -4
  167. package/src/all/background_page/service/clipboard/copyToClipboardService.test.js +2 -2
  168. package/src/all/background_page/service/crypto/decryptPrivateKeyService.test.js +1 -1
  169. package/src/all/background_page/service/crypto/decryptSecretsService.js +4 -0
  170. package/src/all/background_page/service/crypto/decryptSecretsService.test.js +8 -3
  171. package/src/all/background_page/service/crypto/encryptPrivateKeyService.test.js +1 -1
  172. package/src/all/background_page/service/crypto/generateGpgKeyPairService.test.js +1 -1
  173. package/src/all/background_page/service/crypto/generateSsoKeyService.test.js +2 -3
  174. package/src/all/background_page/service/crypto/getGpgKeyCreationDateService.test.js +1 -1
  175. package/src/all/background_page/service/crypto/getSessionKeyService.test.js +5 -5
  176. package/src/all/background_page/service/crypto/signMessageService.test.js +4 -10
  177. package/src/all/background_page/service/crypto/verifyMessageSign.test.js +8 -10
  178. package/src/all/background_page/service/execute/executeConcurrentlyService.test.js +4 -4
  179. package/src/all/background_page/service/exportPolicies/findExportPoliciesSettingsService.test.js +1 -1
  180. package/src/all/background_page/service/extension/openSafariExtensionSettingsService.test.js +1 -1
  181. package/src/all/background_page/service/folder/findFoldersService.test.js +7 -11
  182. package/src/all/background_page/service/folder/getOrFindFoldersService.test.js +1 -3
  183. package/src/all/background_page/service/group/createGroupService.js +48 -0
  184. package/src/all/background_page/service/group/createGroupService.test.js +68 -0
  185. package/src/all/background_page/service/group/groupUpdateService.js +34 -2
  186. package/src/all/background_page/service/group/groupUpdateService.test.js +2 -5
  187. package/src/all/background_page/service/local_storage/folderLocalStorage.test.js +1 -1
  188. package/src/all/background_page/service/local_storage/groupLocalStorage.test.js +9 -15
  189. package/src/all/background_page/service/local_storage/resourceLocalStorage.test.js +1 -1
  190. package/src/all/background_page/service/metadata/configureMetadataSettingsService.test.js +11 -11
  191. package/src/all/background_page/service/metadata/createMetadataKeyService.test.js +2 -2
  192. package/src/all/background_page/service/metadata/decryptMetadataPrivateKeysService.test.js +10 -8
  193. package/src/all/background_page/service/metadata/decryptMetadataService.test.js +9 -7
  194. package/src/all/background_page/service/metadata/deleteMetadataKeyService.test.js +1 -1
  195. package/src/all/background_page/service/metadata/encryptMetadataPrivateKeysService.test.js +14 -10
  196. package/src/all/background_page/service/metadata/encryptMetadataService.test.js +14 -10
  197. package/src/all/background_page/service/metadata/expireMetadataKeyService.test.js +1 -1
  198. package/src/all/background_page/service/metadata/findMetadataKeysService.test.js +4 -4
  199. package/src/all/background_page/service/metadata/findMetadataSetupSettingsService.test.js +1 -1
  200. package/src/all/background_page/service/move/moveOneFolderService.test.js +3 -3
  201. package/src/all/background_page/service/move/moveResourcesService.js +2 -2
  202. package/src/all/background_page/service/move/moveResourcesService.test.js +72 -0
  203. package/src/all/background_page/service/publicWebsite/parsePublicWebsiteUrlService.test.js +4 -5
  204. package/src/all/background_page/service/rbac/findRbacService.test.js +2 -2
  205. package/src/all/background_page/service/recover/buildAccountRecoverService.test.js +2 -2
  206. package/src/all/background_page/service/recover/parseRecoverUrlService.test.js +10 -11
  207. package/src/all/background_page/service/resource/create/resourceCreateService.js +1 -1
  208. package/src/all/background_page/service/resource/create/resourceCreateService.test.js +2 -2
  209. package/src/all/background_page/service/resource/export/exportResourcesService.js +1 -1
  210. package/src/all/background_page/service/resource/export/exportResourcesService.test.data.js +16 -5
  211. package/src/all/background_page/service/resource/export/exportResourcesService.test.js +48 -13
  212. package/src/all/background_page/service/resource/findResourcesService.test.js +7 -9
  213. package/src/all/background_page/service/resource/import/ImportResourcesService.test.js +4 -5
  214. package/src/all/background_page/service/resource/update/resourceUpdateLocalStorageService.test.js +2 -6
  215. package/src/all/background_page/service/resourceType/updateResourceTypesService.test.js +3 -2
  216. package/src/all/background_page/service/role/findRolesService.test.js +2 -2
  217. package/src/all/background_page/service/scimSettings/updateScimSettingsService.test.js +1 -1
  218. package/src/all/background_page/service/secretRevisions/deleteSecretRevisionsSettingsService.test.js +1 -1
  219. package/src/all/background_page/service/secretRevisions/findAndDecryptSecretRevisionsService.test.js +5 -7
  220. package/src/all/background_page/service/secretRevisions/findSecretRevisionsService.test.js +7 -7
  221. package/src/all/background_page/service/secretRevisions/saveSecretRevisionsSettingsService.test.js +2 -2
  222. package/src/all/background_page/service/sessionKey/decryptSessionKeysBundlesService.test.js +6 -6
  223. package/src/all/background_page/service/sessionKey/encryptSessionKeysBundlesService.test.js +4 -4
  224. package/src/all/background_page/service/sessionKey/findSessionKeysService.test.js +1 -1
  225. package/src/all/background_page/service/sessionKey/getOrFindSessionKeysService.test.js +2 -6
  226. package/src/all/background_page/service/sessionStorage/sessionKeysBundlesSessionStorageService.test.js +1 -1
  227. package/src/all/background_page/service/session_storage/metadataKeysSessionStorage.test.js +4 -4
  228. package/src/all/background_page/service/setup/buildAccountSetupService.test.js +2 -2
  229. package/src/all/background_page/service/setup/parseSetupUrlService.test.js +6 -9
  230. package/src/all/background_page/service/share/shareResourceService.test.js +10 -13
  231. package/src/all/background_page/service/sso/generateSsoKitService.test.js +1 -1
  232. package/src/all/background_page/service/sso/popupHandlerService.test.js +2 -7
  233. package/src/all/background_page/service/tab/tabService.js +37 -27
  234. package/src/all/background_page/service/tab/tabService.test.js +132 -59
  235. package/src/all/background_page/service/tag/deleteTagService.test.js +6 -6
  236. package/src/all/background_page/service/tag/findTagsService.test.js +1 -1
  237. package/src/all/background_page/service/tag/updateResourceTagsService.test.js +25 -19
  238. package/src/all/background_page/service/tag/updateTagService.test.js +6 -6
  239. package/src/all/background_page/service/ui/browserTab.service.test.js +10 -10
  240. package/src/all/background_page/service/ui/openWebsiteGettingStartedPageService.test.js +1 -1
  241. package/src/all/background_page/service/webIntegration/parseWebIntegrationUrlService.test.js +4 -5
  242. package/src/all/background_page/service/webNavigation/webNavigationService.js +4 -3
  243. package/src/all/background_page/service/webNavigation/webNavigationService.test.js +2 -2
  244. package/src/all/background_page/utils/assertions.test.js +20 -21
  245. package/src/all/background_page/utils/format/formDataUtils.js +0 -16
  246. package/src/all/background_page/utils/format/formDataUtils.test.data.js +0 -7
  247. package/src/all/background_page/utils/format/formDataUtils.test.js +1 -39
  248. package/src/all/background_page/utils/openpgp/openpgpAssertions.test.js +11 -17
  249. package/src/all/background_page/utils/promise/promiseTimeoutService.js +3 -1
  250. package/src/all/background_page/vendors/locutus/stripslashes.js +25 -0
  251. package/src/all/background_page/vendors/locutus/stripslashes.test.js +64 -0
  252. package/src/all/background_page/vendors/locutus/urldecode.js +21 -0
  253. package/src/all/background_page/vendors/locutus/urldecode.test.js +64 -0
  254. package/src/all/background_page/vendors/locutus/urlencode.test.data.js +23 -0
  255. package/src/all/contentScripts/js/app/App.js +11 -0
  256. package/src/all/contentScripts/js/app/Login.js +11 -0
  257. package/src/all/contentScripts/js/message/messageEventHandler.test.js +7 -11
  258. package/src/all/locales/cs-CZ/common.json +1 -1
  259. package/src/all/locales/de-DE/common.json +1 -1
  260. package/src/all/locales/en-UK/common.json +1 -1
  261. package/src/all/locales/es-ES/common.json +1 -1
  262. package/src/all/locales/fr-FR/common.json +1 -1
  263. package/src/all/locales/it-IT/common.json +1 -1
  264. package/src/all/locales/ja-JP/common.json +1 -1
  265. package/src/all/locales/ko-KR/common.json +1 -1
  266. package/src/all/locales/lt-LT/common.json +1 -1
  267. package/src/all/locales/nl-NL/common.json +1 -1
  268. package/src/all/locales/pl-PL/common.json +1 -1
  269. package/src/all/locales/pt-BR/common.json +1 -1
  270. package/src/all/locales/ro-RO/common.json +1 -1
  271. package/src/all/locales/ru-RU/common.json +1 -1
  272. package/src/all/locales/sl-SI/common.json +1 -1
  273. package/src/all/locales/sv-SE/common.json +1 -1
  274. package/src/all/locales/uk-UA/common.json +1 -1
  275. package/src/chrome/manifest.json +1 -1
  276. package/src/chrome-mv3/manifest.json +1 -1
  277. package/src/chrome-mv3/offscreens/service/network/fetchOffscreenService.test.js +4 -5
  278. package/src/chrome-mv3/serviceWorker/service/network/requestFetchOffscreenService.test.js +14 -18
  279. package/src/chrome-mv3/serviceWorker/service/network/responseFetchOffscreenService.test.js +8 -9
  280. package/src/firefox/manifest.json +5 -2
  281. package/src/safari/background_page/index.js +2 -2
  282. package/src/safari/background_page/service/cookies/cookiesService.test.js +2 -2
  283. package/src/safari/background_page/service/nativeMessage/sendNativeMessageService.test.js +4 -4
  284. package/src/safari/common/polyfill/fetchPolyfill.js +1 -1
  285. package/src/safari/common/polyfill/fetchPolyfill.test.js +8 -4
  286. package/src/safari/manifest.json +1 -1
  287. package/.gitlab-ci/jobs/build.yml +0 -60
  288. package/.gitlab-ci/jobs/publish.yml +0 -48
  289. package/.gitlab-ci/jobs/release.yml +0 -21
  290. package/.gitlab-ci/jobs/review.yml +0 -25
  291. package/.gitlab-ci/jobs/test.yml +0 -32
  292. package/.gitlab-ci.yml +0 -21
  293. /package/{.gitlab-ci/scripts → scripts}/bin/slack-status-messages.sh +0 -0
  294. /package/{.gitlab-ci/scripts → scripts}/lib/git-helpers.sh +0 -0
  295. /package/{.gitlab-ci/scripts → scripts}/lib/set-env.sh +0 -0
  296. /package/{.gitlab-ci/scripts → scripts}/lib/version-check.sh +0 -0
package/.devcontainer/Dockerfile ADDED
@@ -0,0 +1,15 @@
1
+ FROM mcr.microsoft.com/devcontainers/typescript-node:22
2
+
3
+ RUN npm install -g @aikidosec/safe-chain \
4
+ && install -d -o node -g node /home/node/.safe-chain \
5
+ && su node -c "safe-chain setup-ci"
6
+ COPY --chown=node:node safe-chain-config.json /home/node/.safe-chain/config.json
7
+ COPY safe-chain-shims.sh /etc/profile.d/safe-chain-shims.sh
8
+ RUN chmod 0644 /etc/profile.d/safe-chain-shims.sh \
9
+ && printf '\n# Force safe-chain shims to front of PATH for non-login shells\n[ -f /etc/profile.d/safe-chain-shims.sh ] && . /etc/profile.d/safe-chain-shims.sh\n' \
10
+ >> /etc/bash.bashrc
11
+ ENV PATH="/home/node/.safe-chain/shims:${PATH}"
12
+
13
+ RUN curl -fsSL https://claude.ai/install.sh | bash -s stable \
14
+ && cp /root/.local/bin/claude /usr/local/bin/claude
15
+
package/.devcontainer/devcontainer.json ADDED
@@ -0,0 +1,31 @@
1
+ // @see: https://containers.dev/implementors/json_reference/#general-properties
2
+ {
3
+ "name": "[passbolt-browser-extension] Devcontainer",
4
+ "dockerComposeFile": "docker-compose.yml",
5
+ "service": "devcontainer",
6
+ "workspaceFolder": "/workspaces/passbolt-browser-extension",
7
+ "features": {
8
+ "ghcr.io/devcontainers/features/git:1": {}
9
+ },
10
+ "customizations": {
11
+ "vscode": {
12
+ "extensions": [
13
+ "Anthropic.claude-code",
14
+ "dbaeumer.vscode-eslint",
15
+ "esbenp.prettier-vscode",
16
+ "Orta.vscode-jest"
17
+ ]
18
+ },
19
+ "jetbrains": {
20
+ "plugins": [
21
+ "com.anthropic.code.plugin",
22
+ "com.intellij.reactivestreams",
23
+ "intellij.prettierJS"
24
+ ]
25
+ }
26
+ },
27
+ "remoteUser": "node",
28
+ "initializeCommand": "mkdir -p ${localEnv:HOME}/.claude/managed-settings && cp \"/Library/Application Support/ClaudeCode/managed-settings.json\" ${localEnv:HOME}/.claude/managed-settings/ 2>/dev/null || true",
29
+ "postCreateCommand": "npm install && echo 'Dev environment is ready!'",
30
+ "postStartCommand": "chmod +x .devcontainer/post-start.sh && .devcontainer/post-start.sh"
31
+ }
package/.devcontainer/docker-compose.yml ADDED
@@ -0,0 +1,11 @@
1
+ services:
2
+ devcontainer:
3
+ build:
4
+ context: .
5
+ dockerfile: Dockerfile
6
+ container_name: passbolt-browser-extension-devcontainer
7
+ volumes:
8
+ - ..:/workspaces/passbolt-browser-extension:cached
9
+ - ${HOME}/.claude:/home/node/.claude:cached
10
+ - ${HOME}/.claude/managed-settings:/etc/claude-code:ro
11
+ command: sleep infinity
package/.devcontainer/post-start.sh ADDED
@@ -0,0 +1,20 @@
1
+ #!/bin/bash
2
+ set -e
3
+
4
+ echo "==> Checking Claude mounts..."
5
+ ERRORS=0
6
+
7
+ if [ ! -d "$HOME/.claude" ]; then
8
+ echo "ERROR: ~/.claude directory is not mounted"
9
+ ERRORS=$((ERRORS + 1))
10
+ else
11
+ echo "OK: ~/.claude directory is mounted"
12
+ fi
13
+
14
+ if [ "$ERRORS" -gt 0 ]; then
15
+ echo "WARNING: $ERRORS mount(s) missing. Claude Code may not work correctly."
16
+ fi
17
+
18
+ echo "==> Updating Claude Code..."
19
+ curl -fsSL https://claude.ai/install.sh | bash -s stable
20
+ claude --version
package/.devcontainer/safe-chain-config.json ADDED
@@ -0,0 +1,6 @@
1
+ {
2
+ "minimumPackageAgeHours": 48,
3
+ "npm": {
4
+ "minimumPackageAgeExclusions": ["@passbolt/*", "@aikidosec/*"]
5
+ }
6
+ }
package/.devcontainer/safe-chain-shims.sh ADDED
@@ -0,0 +1,10 @@
1
+ # Force the safe-chain shims dir to the FRONT of PATH on every shell start.
2
+ # VS Code's remote terminal layer can re-prepend nvm / npm-global after the
3
+ # Dockerfile's ENV PATH ran, which would otherwise push the shims behind
4
+ # corepack-managed pnpm/yarn under /usr/local/share/npm-global/bin.
5
+ if [ -d "$HOME/.safe-chain/shims" ]; then
6
+ _sc_shims="$HOME/.safe-chain/shims"
7
+ PATH=$(printf ':%s:' "$PATH" | sed -e "s|:$_sc_shims:|:|g" -e 's|^:||' -e 's|:$||')
8
+ export PATH="$_sc_shims:$PATH"
9
+ unset _sc_shims
10
+ fi
package/.pre-commit-config.yaml ADDED
@@ -0,0 +1,5 @@
1
+ repos:
2
+ - repo: https://github.com/gitleaks/gitleaks
3
+ rev: v8.30.0 # v8.30.0
4
+ hooks:
5
+ - id: gitleaks
package/CHANGELOG.md CHANGED
@@ -4,6 +4,121 @@ This project adheres to [Semantic Versioning](http://semver.org/).
4
4
 
5
5
  ## [Unreleased]
6
6
 
7
+ ## [5.12.1] - 2026-05-12
8
+ ### Fixed
9
+ - PB-51546 On Safari after log out, the login page does not show until the page is refreshed
10
+ - PB-51547 On Safari after log in, some pages take a lot of time to display
11
+
12
+ ## [5.12.0] - 2026-05-12
13
+ ### Added
14
+ - PB-51015 Add PIN code resource type in resourceTypeSchemasDefinition
15
+ - PB-51016 Handle PIN code in resourceTypeEntity
16
+ - PB-51017 Handle PIN code in resourceTypesCollection
17
+ - PB-51019 PINCODE - 1.5 Create secretDataV5StandalonePinCodeEntity and add...
18
+ - PB-51020 PINCODE - 1.6 Add pin code to ResourceEditCreateFormEnumerationTypes
19
+ - PB-51023 Update resourceTypesFormEntity to handle the new pin code resource type
20
+ - PB-51046 PINCODE - 3.2 Adapt ExternalResourceEntity to handle the pin code resource type schema
21
+ - PB-51047 PINCODE - 3.3 Adapt ExportResourcesService to handle the mapping of pin code
22
+ - PB-51048 PINCODE - 3.4 Adapt resourcesKdbxImportParser and to map pin code in case it exist to the correct resource types
23
+ - PB-51049 Add PIN code icon to passboltDefaultResourceTypeIcons.data
24
+ - PB-51050 Update DisplayContentTypesAllowedContentTypesAdministration to handle PIN code
25
+ - PB-51051 Add the pin code resource type to DisplayResourceCreationMenu
26
+ - PB-51052 Add PIN code in SelectResourceForm
27
+ - PB-51053 Create the new pin code resource type form
28
+ - PB-51054 Adapt OrchestrateResourceForm to handle the new AddResourcePinCode
29
+ - PB-51055 Create the new DisplayResourceDetailsPinCode to display the pin code into detail
30
+ - PB-51056 PINCODE - 3.5 Adapt resourcesKdbxExporter and to map pin code in case it exist to the correct resource types
31
+ - PB-51073 PINCODE - 2.8 Add pin code into the grid
32
+ - PB-51201 Fix notes-related issues
33
+ - PB-51246 Add pin code to workspace create menu
34
+
35
+ ### Fixed
36
+ - PB-49888 The contents of Resource Creation Progress Dialog always shows Creating Password
37
+ - PB-50166 Fix break vs continue bug in MoveResourcesService batch permission calculation
38
+ - PB-50535 DisplayuserbadgeMenu should display attention required on page served by API if MFA is required
39
+ - PB-50617 Add PingOne redirect URL field
40
+ - PB-50945 Fix expired session when port is disconnected
41
+ - PB-51012 Hide 'set expired' option for already expired resources
42
+ - PB-51018 Tighten fields selectors to avoid false positives
43
+ - PB-51077 Fix typo "susccessfully" to "successfully"
44
+
45
+ ### Security
46
+ - PB-50623 Fix GHSA-2328-f5f3-gj25 (HIGH)
47
+ - PB-50877 Fix undici GHSA-f269-vfmq-vjvj - MEDIUM CVSS3.1
48
+ - PB-50906 Fix svgo GHSA-xpqw-6gx7-v673 - HIGH CVSS3.1
49
+ - PB-50907 Fix flatted GHSA-rf6f-7fwh-wjgh - HIGH CVSS4.0
50
+ - PB-50908 Fix @xmldom/xmldom GHSA-wh4c-j3r5-mjhp - HIGH CVSS3.1
51
+ - PB-50920 Upgrade webpack-cli
52
+ - PB-50921 Upgrade web-ext
53
+ - PB-51060 Fix protocol-buffers-schema GHSA-j452-xhg8-qg39 - MEDIUM CVSS3.1
54
+ - PB-51151 Fix i18next-http-backend GHSA-r5fr-rjxr-66jc - MEDIUM CVSS3.1
55
+ - PB-51152 Fix uuid GHSA-w5hq-g745-h8pq - MEDIUM CVSS3.1
56
+ - PB-51170 Fix @xmldom/xmldom GHSA-2v35-w6hq-6mfw - HIGH CVSS4.0
57
+ - PB-51179 Investigate and/or enforce package cool down mechanism with safe-chain or npm or both
58
+
59
+ ### Maintenance
60
+ - PB-50224 Add devcontainer to bext
61
+ - PB-50301 removed GitLab CI definition as it's been moved to the ci-definitions repo
62
+ - PB-50340 Small upgrade for picomatch (Medium)
63
+ - PB-51086 keep notify expired session tests skipping
64
+
65
+ ## [5.11.2] - 2026-04-22
66
+ ### Fixed
67
+ - PB-51067 - Rework TOTP selectors
68
+
69
+ ## [5.11.1] - 2026-04-09
70
+ ### Fixed
71
+ - PB-50644 - Fix browser extension port messaging failure after logout caused by Chrome 147 BFCache changes
72
+
73
+ ## [5.11.0] - 2026-04-07
74
+ ### Added
75
+ - PB-49733 SMTP-OAUTH - WP2.1 Update SmtpSettingsService to SmtpSettingsApiService
76
+ - PB-49734 SMTP-OAUTH - WP1.1 Create the SmtpSettingsEntity
77
+ - PB-49737 SMTP-OAUTH - WP2.2 Update SmtpTestSettingsService to SmtpTestSettingsApiService
78
+ - PB-49738 SMTP-OAUTH - WP2.3 Split SmtpSettingsModel to new architecture pattern
79
+ - PB-49739 SMTP-OAUTH - WP2.4 Split SmtpTestSettingsModel to new architecture pattern
80
+ - PB-49740 SMTP-OAUTH - WP3.1 Adapt context with the new SMTP entities
81
+ - PB-49741 SMTP-OAUTH - WP3.2 Adapt ManageSmtpAdministationSettings to handle the new OAUTH fields
82
+ - PB-50058 OAuth SMTP: add the new styleguide to backend
83
+ - PB-50135 SSO with PingOne
84
+ - PB-50157 Enable avatar upload for Safari
85
+ - PB-50254 SCIM-WP1.2 Adapt form to handle the new date field and display warning message when expired
86
+ - PB-50263 Add a username selector compatible with ProxMox
87
+
88
+ ### Fixed
89
+ - PB-46678 Fix quickaccess closing issue on Safari
90
+ - PB-49237 DisplayUserBadgeMenu attention required should be displayed on Administration page served by API
91
+ - PB-49287 When deleting a user, the URL must changed not to reference the deleted user id
92
+ - PB-49476 Fix autofill for websites using identifier as name for username field
93
+ - PB-49619 Fix username input field selector for OVH
94
+ - PB-49849 Sync generator password policy with the administration after save
95
+ - PB-49866 Fix the expiry column in the resource workspace grid is not present anymore
96
+ - PB-49882 Fix username input field selector for Supermicro IPMI WebUI
97
+ - PB-50023 Fix multifield OTP selector matching hidden inputs
98
+ - PB-50077 Fix React router issue that reloads the page unexpectedly
99
+ - PB-50177 Fix autofill issues for two websites
100
+
101
+ ### Maintenance
102
+ - PB-49129 Delegate tab opening to service worker in order to send all cookie via Safari
103
+ - PB-49459 Timeouts not cleared properly when filtering resources/users grids by keywords
104
+ - PB-49705 Add missing TOTP unit tests
105
+ - PB-49730 Setup an environment for publishing to npmjs registry
106
+ - PB-49998 Add required `data_collection_permissions` for Firefox and set it to `none`
107
+ - PB-50013 Make Safari download custom avatars
108
+ - PB-50118 Major upgrade for locutus (Critical) - passbolt-browser-extension
109
+ - PB-50158 Add Safari enablement through a feature flag
110
+ - PB-50200 Move the logic of passbolt.groups.create to GroupCreateController
111
+ - PB-50201 Update group create call in groupApiService to contain "my_group_user" as urlOptions
112
+ - PB-50202 Add supported formats documentation link in export dialog
113
+ - PB-50225 Create a CreateGroupService.js file and move the create call to api service inside it
114
+ - PB-50338 - Fix phantom @babel/preset-react
115
+
116
+ ### Security
117
+ - PB-49608 Fix ReDoS vulnerability in PGP armor regex validation
118
+ - PB-50271 Fix GHSA-25h7-pfq9-p65f - HIGH CVSS3.1
119
+ - PB-50272 Fix brace-expansion vulnerabilities
120
+
121
+
7
122
  ## [5.9.0] - 2026-01-21
8
123
  ### Fixed
9
124
  - PB-43511 Display the "Migrate metadata" admin home page card icon with a 2px stroke width
@@ -2606,10 +2721,22 @@ self registration settings option in the left-side bar
2606
2721
  - AP: User with plugin installed
2607
2722
  - LU: Logged in user
2608
2723
 
2609
- [Unreleased]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.9.0...HEAD
2610
- [5.9.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.8.0...5.9.0
2611
- [5.8.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.7.0...5.8.0
2612
- [5.7.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.6.0...5.7.0
2724
+ [Unreleased]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.12.1...HEAD
2725
+ [5.12.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.12.0...v5.12.1
2726
+ [5.12.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.11.3...v5.12.0
2727
+ [5.11.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.11.2...v5.11.3
2728
+ [5.11.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.11.1...v5.11.0
2729
+ [5.11.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.11.0...v5.11.1
2730
+ [5.11.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.11.0...v5.11.1
2731
+ [5.11.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.10.4...v5.11.0
2732
+ [5.10.4]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.10.3...v5.10.4
2733
+ [5.10.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.10.2...v5.10.3
2734
+ [5.10.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.10.1...v5.10.2
2735
+ [5.10.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.10.0...v5.10.1
2736
+ [5.10.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.9.0...v5.10.0
2737
+ [5.9.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.8.0...v5.9.0
2738
+ [5.8.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.7.0...v5.8.0
2739
+ [5.7.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.6.0...v5.7.0
2613
2740
  [5.6.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.5.1...v5.6.0
2614
2741
  [5.5.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.5.0...v5.5.1
2615
2742
  [5.5.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v5.4.1...v5.5.0
package/RELEASE_NOTES.md CHANGED
@@ -1,7 +1,5 @@
1
- Passbolt 5.10.4 is a hotfix release. It resolves a bug on the resources workspace where filtering resources by URIs would cause the application to crash, a regression surfaced by the latest upgrade of the UI framework.
2
-
3
- If you encountered the issue before updating, resetting your column customization in the workspace will restore normal behavior.
1
+ Passbolt 5.12.1 fixes some slowlyness issues on Safari during navigation
4
2
 
5
3
  ### Fixed
6
- - PB-50034 As a user I should be able to sort by uris
7
- - PB-49459 Timeouts not cleared properly when filtering resources/users grids by keywords
4
+ - PB-51546 On Safari after log out, the login page does not show until the page is refreshed
5
+ - PB-51547 On Safari after log in, some pages take a lot of time to display