Conversation
Summary of ChangesHello, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request significantly upgrades the deeplink system by introducing support for global variables, making deeplinks more flexible and powerful. It involves a comprehensive overhaul of the deeplink plugin, data models, and the desktop UI to manage these new variables. Additionally, the project's build configurations were updated to leverage newer Java and Kotlin versions, and a critical bug related to network response body extraction was addressed for improved application stability. Highlights
Changelog
Activity
Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here. You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension. Footnotes
|
There was a problem hiding this comment.
Code Review
This pull request significantly improves deeplink functionality by adding support for variables and a new DSL. However, a security audit identified a high-severity command injection vulnerability in the desktop application due to unsafe concatenation of user-supplied deeplink parameters into shell commands, and a medium-severity potential denial-of-service (OOM) in the OkHttp interceptor from unbounded response body buffering. Additionally, there are implementation issues related to variable resolution in the UI and submission logic, and a minor data model inconsistency. Addressing these security and implementation concerns is crucial for the robustness and safety of the new feature.
b84bb87 to
7cd2378
Compare
|
it's a bit dangerous to change the kotlin version IMO, some clients may be still on kotlin 2.1 |
c5fee41 to
2f4223a
Compare
bb76840 to
7a70433
Compare
|
wow great improvement ! thanks a lot |
|
feel free to merge when ready @rteyssandier |
Improve deeplink with adding global variables
Enregistrement.de.l.ecran.2026-03-06.a.15.02.40.mov