Skip to content

chore: vp migrate beta test#4

Draft
fengmk2 wants to merge 1 commit into
mainfrom
vp-migrate-test
Draft

chore: vp migrate beta test#4
fengmk2 wants to merge 1 commit into
mainfrom
vp-migrate-test

Conversation

@fengmk2

@fengmk2 fengmk2 commented Jun 29, 2026

Copy link
Copy Markdown
Owner

READ AND DELETE THIS SECTION BEFORE SUBMITTING PR

  • Fill out each REQUIRED section
  • Fill out OPTIONAL sections, remove section if it doesn't apply to your PR
  • Read and fill out each of the checklists below
  • Remove this section after reading

Description

One Line Summary

REQUIRED - Very short description that summaries the changes in this PR.

Details

Motivation

REQUIRED - Why is this code change being made? Or what is the goal of this PR? Examples: Fixes a specific bug, provides additional logging to debug future issues, feature to allow X.

Scope

RECOMMEND - OPTIONAL - What is intended to be effected. What is known not to change. Example: Notifications are grouped when parameter X is set, not enabled by default.

OPTIONAL - Other

OPTIONAL - Feel free to add any other sections or sub-sections that can explain your PR better.

Testing

Unit testing

OPTIONAL - Explain unit tests added, if not clear in the code.

Manual testing

RECOMMEND - OPTIONAL - Explain what scenarios were tested and the environment.
Example: Tested opening a notification while the app was foregrounded, app build with Android Studio 2020.3 with a fresh install of the OneSignal example app on a Pixel 6 with Android 12.

Affected code checklist

  • Notifications
    • Display
    • Open
    • Push Processing
    • Confirm Deliveries
  • Outcomes
  • Sessions
  • In-App Messaging
  • REST API requests
  • Public API changes

Checklist

Overview

  • I have filled out all REQUIRED sections above
  • PR does one thing
    • If it is hard to explain how any codes changes are related to each other then it most likely needs to be more than one PR
  • Any Public API changes are explained in the PR details and conform to existing APIs

Testing

  • I have included test coverage for these changes, or explained why they are not needed
  • All automated tests pass, or I explained why that is not possible
  • I have personally tested this on my device, or explained why that is not possible

Final pass

  • Code is as readable as possible.
    • Simplify with less code, followed by splitting up code into well named functions and variables, followed by adding comments to the code.
  • I have reviewed this PR myself, ensuring it meets each checklist item
    • WIP (Work In Progress) is ok, but explain what is still in progress and what you would like feedback on. Start the PR title with "WIP" to indicate this.

@fengmk2 fengmk2 changed the title vp migrate beta test chore: vp migrate beta test Jun 29, 2026

@gemini-code-assist gemini-code-assist Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates the project's toolchain configuration, including adding VS Code formatter settings, simplifying the Vite+ documentation in AGENTS.md, and updating dependency versions in package.json to specific commit-based releases. The review feedback highlights a security and reliability risk with routing all package installations through a proxy registry bridge in .npmrc. Additionally, it identifies a critical typo in package.json where vitest and @vitest/coverage-v8 are set to a non-existent version 4.1.9 instead of 1.4.9, which will cause installation failures.

Important

The consumer version of Gemini Code Assist on GitHub is being sunset. Starting June 18, 2026, new organization installations will be blocked, and all code review activity will officially cease on July 17, 2026.
For more details on the timeline and next steps, please review the Help Documentation.

Comment thread package.json
Comment on lines +53 to +57
"@vitest/coverage-v8": "4.1.9",
"typescript": "^5.9.3",
"vite-plus": "^0.1.19"
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vite-plus": "0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "4.1.9"

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

high

It appears that 4.1.9 is a transposition typo for 1.4.9 (and the previous ^4.1.0 was a typo for ^1.4.0).

Since there is no official version 4.x of vitest or @vitest/coverage-v8 on the public npm registry, attempting to install these versions will fail unless using a custom registry that specifically hosts them under these versions. Please correct these to 1.4.9 (or the intended version).

Suggested change
"@vitest/coverage-v8": "4.1.9",
"typescript": "^5.9.3",
"vite-plus": "^0.1.19"
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vite-plus": "0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "4.1.9"
"@vitest/coverage-v8": "1.4.9",
"typescript": "^5.9.3",
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vite-plus": "0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "1.4.9"

Comment thread package.json
Comment on lines +63 to +64
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "4.1.9"

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

high

Similarly, please update the vitest override version to 1.4.9 to match the corrected devDependency version and avoid resolution failures.

Suggested change
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "4.1.9"
"vite": "npm:@voidzero-dev/vite-plus-core@0.0.0-commit.1318359eba93dfc997012ce2801f02fbe5534902",
"vitest": "1.4.9"

Comment thread .npmrc
@@ -0,0 +1,2 @@
# pkg.pr.new registry bridge (added by test-pkg-pr-new-migrate.sh)
registry=https://pkg-pr-registry-bridge.void.app/

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

Setting the global registry to https://pkg-pr-registry-bridge.void.app/ routes all package installations (including public ones like react, typescript, etc.) through this proxy.

This introduces security risks (potential package tampering, credential leakage) and reliability risks (if the bridge goes down, all installs fail).

If this is only for temporary local testing, please ensure this file is not merged into the main branch. If you need to use pkg.pr.new builds, consider using direct tarball URLs from pkg.pr.new (e.g., https://pkg.pr.new/<owner>/<repo>/<package>@<commit>) instead of overriding the global registry.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant