web/components/UpdateOs/ChangelogModal.vue (6)

26-36: Prop-driven mode and release shape — consider centralizing the Release type

The prop shape looks good. To reduce duplication and ensure consistency with store types, consider exporting a shared Release interface from a types module and reusing it here.

---

69-75: Close behavior in store mode — verify it also hides the modal

handleClose sets setReleaseForUpdate(null) in store mode. If changelogModalVisible is not derived from releaseForUpdate, the modal could remain open. Verify store semantics and, if needed, also flip the open flag.

Option if needed:

   } else {
-    setReleaseForUpdate(null);
+    setReleaseForUpdate(null);
+    updateOsStore.setModalOpen?.(false);
   }

---

125-136: Comment contradicts behavior

The comment says “Attach event listener right away instead of waiting for mount,” but the code attaches in onMounted. Update the comment to avoid confusion.

Apply:

-// Attach event listener right away instead of waiting for mount
+// Attach event listener on mount

---

156-160: Reset iframe when reopening modal (nice to have)

If users navigate within the docs, reopening the modal could retain the last navigated page. If you want a fresh state per open, watch modalVisible and reset when it becomes true.

Apply:

 watch(darkMode, () => {
   // The iframe will only pick up the message if it has sent theme-ready
   sendThemeToIframe();
 });
+
+watch(modalVisible, (isOpen) => {
+  if (isOpen) {
+    revertToInitialChangelog();
+  }
+});

---

216-223: Localize button aria-labels

aria-label="Back to Changelog" should be localized like other UI strings.

Apply:

-            aria-label="Back to Changelog"
+            :aria-label="t('Back to Changelog')"

---

225-233: External link button — prefer parent-provided label or i18n

You translate viewDocsLabel via t here. To decouple this component from i18n, consider making viewDocsLabel a pre-localized string from the parent. If keeping as a key, align the prop name to viewDocsLabelKey for clarity and localize aria-label too.

Apply minimal i18n for aria label:

-            aria-label="View on Docs"
+            :aria-label="t('View on Docs')"

web/components/HeaderOsVersion.ce.vue (3)

39-54: Release object mapping for current version is clear

The computed currentVersionRelease is well-formed. Minor: consider date: null instead of undefined to match optional fields typically serialized in JSON, but not required.

---

163-169: Guard menu item when OS version is unknown

When displayOsVersion is null, clicking “View OS Release Notes” opens an empty modal (release is null; modal won’t render, but the flag flips). Consider disabling the item in that case.

Apply:

-          <DropdownMenuItem @click="showOsReleaseNotesModal = true">
+          <DropdownMenuItem :disabled="!displayOsVersion" @click="displayOsVersion && (showOsReleaseNotesModal = true)">

---

204-210: Pass a pre-localized docs label or a stable i18n key

You pass view-docs-label="Open in new tab", which ChangelogModal treats as an i18n key. If “Open in new tab” is not defined in locales, it will display the raw text (acceptable), but consider passing an explicit key (e.g., view-docs-label="Open in new tab" // key present in locales) or pre-localizing it here and letting the modal accept a plain string to reduce coupling.

Alternative (pre-localize here):

-    <ChangelogModal
+    <ChangelogModal
       :open="showOsReleaseNotesModal"
       :release="currentVersionRelease"
-      view-docs-label="Open in new tab"
+      :view-docs-label="t('Open in new tab')"
       :t="t"
       @close="showOsReleaseNotesModal = false"
     />

This change would require the modal to treat viewDocsLabel as “final text,” not a key.

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

Learnt from: mdatelle
PR: unraid/api#1122
File: web/components/UserProfile/DropdownLaunchpad.vue:38-42
Timestamp: 2025-02-06T17:24:58.784Z
Learning: In the DropdownLaunchpad.vue component, the current implementation of conditional icon rendering using `h(BrandLoading, { variant: 'white' })` is a temporary fix to maintain build stability, with a proper refactoring being handled in a separate branch.

api/dev/configs/api.json (1)

2-2: Version 4.15.1 bump—consistency confirmed

All references to the new API version have been updated and no stale mentions of 4.14.x remain (aside from historical changelog entries). You’re good to merge.

• api/dev/configs/api.json → version “4.15.1”
• package.json in root, web/, unraid-ui/, plugin/, and api/ → “4.15.1”
• api/CHANGELOG.md → entry for [4.15.1] dated 2025-08-20
• No lingering hard-coded “4.14.*” outside of prior changelog headers
• Tests referencing other version patterns (e.g. parsePackageArg) are unaffected

api/generated-schema.graphql (1)

1548-1548: Nullable change for InfoVersions.packages — no unsafe usages found

A grep across all .ts/.tsx/.vue files for direct versions.packages.* access without null checks came up empty, and no .graphql/.gql operations still declare packages: PackageVersions!. This indicates existing clients and queries won’t break on this loosened contract.

Next steps:

• Confirm your resolvers explicitly return null (not undefined) when packages is absent.
• (Optional) Add a brief docstring to InfoVersions.packages explaining under what conditions it may be null.

web/components/UpdateOs/ChangelogModal.vue (4)

44-47: Event model is clear

Emitting close in prop mode is a good API. No issues.

---

55-63: Dual-mode computed flags (prop vs store) are clean

The isPropMode, currentRelease, and modalVisible split is straightforward and readable.

---

193-199: RawChangelogRenderer props are consistent

Passing both raw and pretty changelog variants keyed off availability is sound.

---

236-254: Store-mode actions are gated correctly

Nice separation: renew action vs continue action only when sha256 exists. Looks good.

web/components/HeaderOsVersion.ce.vue (2)

9-9: Use of getReleaseNotesUrl is appropriate

Good move centralizing URL construction. Ensure getReleaseNotesUrl aligns with allowedDocsUrlRegex used by the modal.

---

16-16: Switch to shared ChangelogModal

Replacing the bespoke ReleaseNotesModal with the reusable ChangelogModal aligns the UI. Good reuse.

web/components/UpdateOs/ChangelogModal.vue (1)

87-90: Sanitize docsChangelogUrl before use (XFO/bounce risk via arbitrary iframes)

currentRelease.changelogPretty is used to drive iframe src without validation. Validate against allowedDocsUrlRegex here so the iframe and all consumers only see a trusted origin.

-const docsChangelogUrl = computed(() => {
-  return currentRelease.value?.changelogPretty ?? null;
-});
+const docsChangelogUrl = computed(() => {
+  const url = currentRelease.value?.changelogPretty ?? null;
+  return typeof url === 'string' && allowedDocsUrlRegex.test(url) ? url : null;
+});

web/components/UpdateOs/ChangelogModal.vue (3)

49-55: Avoid potential NPE on theme.value.name

If theme.value is not yet initialized, this will throw. Use optional chaining.

-const isDarkMode = computed(() => {
-  if (theme.value.name === 'azure') {
+const isDarkMode = computed(() => {
+  if (theme.value?.name === 'azure') {
     return true;
   }
   return darkMode.value;
 });

---

184-193: Tighten iframe sandbox policy

Prefer allow-top-navigation-by-user-activation over allow-top-navigation to prevent unsolicited top-level navigations from the embedded page.

           <iframe
             v-if="actualIframeSrc"
             ref="iframeRef"
             :src="actualIframeSrc"
             class="w-full h-full border-0 rounded-md"
-            sandbox="allow-scripts allow-same-origin allow-top-navigation"
+            sandbox="allow-scripts allow-same-origin allow-top-navigation-by-user-activation"
             title="Unraid Changelog"
           />

---

129-131: Nit: comment doesn’t match behavior

The comment says “Attach event listener right away instead of waiting for mount” but the code does it on mount. Update the comment for clarity.

-// Attach event listener right away instead of waiting for mount
+// Attach event listener on mount

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

Learnt from: mdatelle
PR: unraid/api#1122
File: web/components/UserProfile/DropdownLaunchpad.vue:38-42
Timestamp: 2025-02-06T17:24:58.784Z
Learning: In the DropdownLaunchpad.vue component, the current implementation of conditional icon rendering using `h(BrandLoading, { variant: 'white' })` is a temporary fix to maintain build stability, with a proper refactoring being handled in a separate branch.

web/components/UpdateOs/ChangelogModal.vue (5)

26-34: Prop-driven mode API looks solid

The added release prop and its shape are clear and keep this component reusable outside the store-driven flow.

---

42-44: Emitting close from prop mode is the right contract

This cleanly separates ownership of open between prop vs. store modes. No concerns.

---

59-67: Nice, clean mode switching

isPropMode, currentRelease, and modalVisible keep the data flow well-isolated between view and update flows. 👍

---

69-70: Correct scoping of renewal CTA

Hiding license actions in prop mode avoids leaking update-flow controls into read-only contexts.

---

72-80: Close behavior aligns with ownership

Emitting in prop mode and clearing store in update mode is the right separation of concerns.

web/components/UpdateOs/ChangelogModal.vue (1)

87-90: Block untrusted docs URLs and avoid injecting unsafe iframes/links (also fixes initial-load spinner).

docsChangelogUrl is used to drive both the iframe src and the external link without sanitization at source. Combined with sandbox="allow-top-navigation", a malicious URL could navigate the top window. Also, because the watch on docsChangelogUrl is not immediate, actualIframeSrc stays null on first render in prop mode, leaving the modal stuck in the loading state.

Harden by sanitizing the URL upfront, making the watch immediate, and ensuring all consumers (iframe, external link, revertToInitialChangelog) use the sanitized value only.

Apply:

@@
-const docsChangelogUrl = computed(() => {
-  return currentRelease.value?.changelogPretty ?? null;
-});
+const docsChangelogUrl = computed(() => {
+  const raw = currentRelease.value?.changelogPretty;
+  if (!raw) return null;
+  try {
+    const url = new URL(raw);
+    if (!/^https?:$/.test(url.protocol)) return null;
+    return allowedDocsUrlRegex.test(url.toString()) ? url.toString() : null;
+  } catch {
+    return null;
+  }
+});
@@
-const revertToInitialChangelog = () => {
-  if (iframeRef.value && docsChangelogUrl.value) {
-    iframeRef.value.src = docsChangelogUrl.value;
-    hasNavigated.value = false;
-    currentIframeUrl.value = docsChangelogUrl.value;
-  }
-};
+const revertToInitialChangelog = () => {
+  if (!iframeRef.value || !docsChangelogUrl.value) return;
+  iframeRef.value.src = docsChangelogUrl.value;
+  hasNavigated.value = false;
+  currentIframeUrl.value = docsChangelogUrl.value;
+  actualIframeSrc.value = docsChangelogUrl.value;
+};
@@
-watch(docsChangelogUrl, (newUrl) => {
-  currentIframeUrl.value = newUrl;
-  hasNavigated.value = false;
-
-  if (newUrl) {
-    actualIframeSrc.value = newUrl;
-  } else {
-    actualIframeSrc.value = null;
-  }
-});
+watch(
+  docsChangelogUrl,
+  (newUrl) => {
+    currentIframeUrl.value = newUrl;
+    hasNavigated.value = false;
+    actualIframeSrc.value = newUrl;
+  },
+  { immediate: true }
+);
@@
-          <BrandButton
-            v-if="currentIframeUrl || currentRelease?.changelogPretty"
+          <BrandButton
+            v-if="currentIframeUrl"
             variant="underline"
             :external="true"
-            :href="currentIframeUrl || currentRelease?.changelogPretty"
+            :href="currentIframeUrl"
             :icon-right="ArrowTopRightOnSquareIcon"
             aria-label="View on Docs"
           />

Also applies to: 141-147, 149-158, 230-235

web/components/UpdateOs/ChangelogModal.vue (4)

224-226: Localize aria-labels.

Hard-coded English strings bypass i18n.

-            aria-label="Back to Changelog"
+            :aria-label="t('Back to Changelog')"
@@
-            aria-label="View on Docs"
+            :aria-label="t('View on Docs')"

Also applies to: 235-236

---

211-211: Minor: Prefer t(...) over props.t(...) for consistency.

You pass t to Modal and elsewhere; use t here too.

-          <p>{{ props.t('Loading changelog…') }}</p>
+          <p>{{ t('Loading changelog…') }}</p>

---

131-135: Optional: with the watch made immediate, currentIframeUrl assignment here is redundant.

Not harmful, but you can drop it to avoid double-writes.

---

101-115: Dev origin allowance: consider covering https localhost or using an env-gated check.

Currently only http://localhost:3000 is whitelisted. You might want to allow https and/or 5173 for Vite, gated by NODE_ENV.

I can ship a small helper like isAllowedDocsOrigin(origin: string): boolean that adds dev allowances behind process.dev.

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

• MCP integration is disabled by default for public repositories
• Jira integration is disabled by default for public repositories
• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

Learnt from: mdatelle
PR: unraid/api#1122
File: web/components/UserProfile/DropdownLaunchpad.vue:38-42
Timestamp: 2025-02-06T17:24:58.784Z
Learning: In the DropdownLaunchpad.vue component, the current implementation of conditional icon rendering using `h(BrandLoading, { variant: 'white' })` is a temporary fix to maintain build stability, with a proper refactoring being handled in a separate branch.

web/components/UpdateOs/ChangelogModal.vue (7)

59-67: Nice abstraction: prop vs. store mode separation reads clean and is future-proof.

The isPropMode/currentRelease/modalVisible triad is clear and keeps the component reusable for both Header and Update flows.

---

72-80: Close behavior is correct but consider also hiding the modal via store if that’s the trigger.

If changelogModalVisible can be true independently of releaseForUpdate, also toggle the visibility flag to avoid stale UI.

Would you like a patch that sets changelogModalVisible = false here, or is releaseForUpdate = null sufficient in all flows?

---

197-203: Prop usage is consistent, but avoid passing unused props to RawChangelogRenderer.

If RawChangelogRenderer doesn’t read changelog-pretty, drop it to reduce surface area. Otherwise, ensure it is only used for rendering a “view on docs” link and not to create an iframe internally.

I can scan RawChangelogRenderer.vue and trim/add props as needed—say the word and I’ll follow up with a patch.

---

169-180: Modal bindings look solid.

• Title interpolates the version safely.
• open is correctly sourced from modalVisible.
• close event funnels through handleClose, which respects prop vs. store mode.

---

160-164: Theme sync watch is fine.

Watching isDarkMode only (instead of both theme and darkMode) centralizes logic. sendThemeToIframe is already guarded.

---

170-170: Guard modal render on complete release objects in prop mode.

You already check currentRelease?.version, which is good. If you later rely on date/name in the header, consider minimal required fields validation.

Do we want to fail closed (not render) if both changelogPretty and changelog are missing?

---

1-262: Sanity check passed: HeaderOsVersion integration

Verified that in web/components/HeaderOsVersion.ce.vue you’re using ChangelogModal exactly as intended in “prop mode”:

• Passing both :open="showOsReleaseNotesModal" and :release="currentVersionRelease"
• Listening to @close="showOsReleaseNotesModal = false"

This matches the new API defined in ChangelogModal.vue, so there are no regressions here.