fix: address five review findings (Pillow CVEs, daemon exception narrowing, timeout handling, plugin store)

mirror of https://github.com/ChuckBuilds/LEDMatrix.git synced 2026-05-13 17:23:31 +00:00

- march-madness/requirements.txt: Pillow>=12.2.0 (patches CVE-2026-42308
  and CVE-2026-42310; previous floor of 10.3.0 was insufficient)

- wifi_monitor_daemon: narrow final except Exception to
  (subprocess.SubprocessError, OSError) so programming errors in the NM
  restart block are no longer silently swallowed

- api_v3/execute_system_action: add explicit subprocess.TimeoutExpired
  handler before the generic Exception catch; returns action-specific
  message with 'status','message','returncode','stdout','stderr' fields
  so the UI receives a precise, actionable payload instead of the generic
  'Failed to execute system action' string

- plugins_manager.js: move searchPluginStore into .finally() so the
  plugin store renders regardless of whether loadInstalledPlugins succeeds
  or fails; .catch() still logs the error

- first_time_install.sh: add safe_plugin_rm.sh NOPASSWD rule to the
  /tmp/ledmatrix_web_sudoers block; configure_web_sudo.sh had this rule
  but the standalone installer never granted it, leaving plugin removal
  broken after first-time install

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

This commit is contained in:

Chuck

2026-05-12 13:56:24 -04:00

parent a0f957be9e

commit 246ea54635

5 changed files with 13 additions and 5 deletions

2

plugin-repos/march-madness/requirements.txt

View File

@@ -1,4 +1,4 @@
 requests>=2.28.0
 Pillow>=10.3.0
 Pillow>=12.2.0
 pytz>=2022.1
 numpy>=1.24.0

fix: address five review findings (Pillow CVEs, daemon exception narrowing, timeout handling, plugin store)

2 plugin-repos/march-madness/requirements.txt Unescape Escape View File

2

plugin-repos/march-madness/requirements.txt

View File