Merge main to release/stable for v2.0.134#1512
Merged
amitjoshi438 merged 160 commits intorelease/stablefrom Mar 10, 2026
Merged
Merge main to release/stable for v2.0.134#1512amitjoshi438 merged 160 commits intorelease/stablefrom
amitjoshi438 merged 160 commits intorelease/stablefrom
Conversation
* Enhance CodeQL screening with detailed telemetry logging and error handling * Add telemetry logging for SARIF viewer installation and activation events * Remove test for handling null or undefined inputs in CodeQLAction tests * Enhance CodeQL analysis with issue tracking and improved telemetry logging --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
… properties (#1285) Refactor completion item handling to simplify namespace and property insertions Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
…ndition for virtual workspaces (#1286) * Update actionsHub visibility condition to use virtualWorkspace
* Update node version * Add manual trigger for localization update workflow - ✨ Added `workflow_dispatch` to allow manual testing of the localization update workflow. -Priyanshu
- 🔧 Added token configuration for checkout step - 🔒 Ensured GITHUB_TOKEN is set for commit and push step -Priyanshu
- 🗑️ Deleted paths-ignore section to allow all changes to trigger the workflow. - 🔄 Ensured that localization files are now included in the CI process. -Priyanshu
…6: Build ID 2223259 (#1276) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2223259 * Automated localization update from CI * Dummy commit --------- Co-authored-by: Priyanshu Agrawal <priyanshuag@microsoft.com> Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
…6: Build ID 2227356 (#1292) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2227356 * Automated localization update from CI --------- Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Co-authored-by: PAC Auto Update Bot <pac-auto-update@microsoft.com>
* Enhance PAC CLI process management with error handling and reset logic in exit and download operations * Refactor handleOpenPowerPages to include progress notifications and improve error handling for URI processing * Refactor URI handling to improve parameter parsing, telemetry data construction, and error handling * Remove duplicate error message displays for missing parameters and download failures in URI handling * Add PowerPagesNavigationConstants for improved code organization and maintainability * Refactor handleOpenPowerPages to directly use selected folder and remove prepareDownloadFolder utility * Refactor URI handler error messages and download progress notifications for clarity and consistency * Add feature flag for 'Open in Desktop' functionality in VSCode Web * Update URI parameters to include WEBSITE_NAME and WEBSITE_PREVIEW_URL for improved flexibility in URI handling * Remove obsolete translation entries related to Power Pages and VS Code Desktop for cleaner localization files * Add localization strings and improve error handling for Power Pages and VS Code Desktop integration * Fix null reference error when killing process in PacInterop --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
…format (#1295) Enhance website data retrieval by adding fallback for website name and supporting new Git ALM format in website ID extraction Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
* Refactor CodeQL screening to check for .powerpages-site folder existence and clean up dispose method * Clarify comment for .powerpages-site folder existence check in runCodeQLScreening function --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
Update CHANGELOG for pac CLI 1.48.2 release with bug fixes and new features Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
* Update CHANGELOG for pac CLI 1.48.2 release and version bump to 2.1.0 * Update CHANGELOG for pac CLI 1.48.2 release and version bump to 2.0.100 --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
…6: Build ID 2230060 (#1296) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2230060 * Automated localization update from CI --------- Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
…6: Build ID 2236210 (#1303) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2236210 * Automated localization update from CI --------- Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
* Refactor HTTP method names to include 'Async' for clarity and update descriptions * Update Server API autocomplete tests and examples to use 'Async' methods for HTTP client --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
Bumps [axios](https://github.com/axios/axios) from 1.11.0 to 1.12.1. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.11.0...v1.12.1) --- updated-dependencies: - dependency-name: axios dependency-version: 1.12.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Refactor CodeQL command execution to handle paths with spaces and add tests for escapePath method * Refactor CodeQL command execution to handle paths with spaces and remove escapePath method and related tests --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
…#1310) * Preserve insertion order of root webpage IDs in processDataAndCreateFile function * Add feature flag for duplicate file handling in webpage folders --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
…es (#1311) Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
📝 Created initial Memory Bank structure and core files. 📄 Documented project overview, architecture, and workflows. 🔧 Included detailed descriptions of features and user scenarios. 📊 Established progress tracking and technical context. -Priyanshu
Add telemetry events for desktop opening actions and feature flag handling Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
Bumps [tar-fs](https://github.com/mafintosh/tar-fs) from 3.1.0 to 3.1.1. - [Commits](mafintosh/tar-fs@v3.1.0...v3.1.1) --- updated-dependencies: - dependency-name: tar-fs dependency-version: 3.1.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
suppress codeql
#1317) * Add automated workflows for release synchronization and manual syncing * Potential fix for code scanning alert no. 55: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 56: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 57: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
update codeql suppression rule id
* Add mermaid code block for memory bank instructions * Refactor memory bank instructions for clarity - ✏️ Cleaned up mermaid flowchart formatting - 📄 Improved organization of core files section - 🔄 Enhanced documentation updates section for better understanding -Priyanshu
Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
* Graceful 404/400 handling for optional entities in web extension
Sites without blogs, forums, or ideas provisioned return HTTP 400/404
from Dataverse when fetching these optional entity types. Previously
these were thrown and caught as system errors with message "{}",
producing ~5.4 false errors per session and degrading the read
completion rate from 97% to 77%.
Now, 400/404 responses for conditionalFolderEntities (blogs, blogposts,
ideas, ideaforums, forumannouncements, forumposts) are handled
gracefully with info telemetry instead of error telemetry.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Fix unused variable lint error in test
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Fix version number in CHANGELOG for pac CLI 2.2.1
---------
Co-authored-by: Amit Joshi <amitjoshi@microsoft.com>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
…1482) * Graceful 404/400 handling for optional entities in web extension Sites without blogs, forums, or ideas provisioned return HTTP 400/404 from Dataverse when fetching these optional entity types. Previously these were thrown and caught as system errors with message "{}", producing ~5.4 false errors per session and degrading the read completion rate from 97% to 77%. Now, 400/404 responses for conditionalFolderEntities (blogs, blogposts, ideas, ideaforums, forumannouncements, forumposts) are handled gracefully with info telemetry instead of error telemetry. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Fix unused variable lint error in test Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Fix version number in CHANGELOG for pac CLI 2.2.1 * Fix recurring desktop extension errors affecting error diagnostics Improve error handling across 5 high-impact areas identified via telemetry (184K errors/30 days): expand binary file exclusion to prevent validation errors on non-text files, add cooldown to auth session change handler to break retry loops, add phase tracking to PreviewSite initialization, include HTTP status in ECS config errors, and standardize WebsiteUtil fetch error handling with safe JSON parsing and consistent 404 tolerance. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Fix Dependabot security vulnerability in tar - Updated tar override from ^7.5.7 to ^7.5.8 - Refreshed lockfile to tar 7.5.9 to address GHSA-83g3-92jg-28cx Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Add npm override for minimatch ^10.2.1 - Regenerate lockfile to resolve minimatch to 10.2.2 - Addresses GHSA-3ppc-4f35-3m26 (CVE-2026-26996) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Override worker-loader schema-utils to ^4.3.3 so runtime uses ajv 8.18.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Correct extensionDevelopmentPath in desktop integration tests. - Correct extensionDevelopmentPath in common integration tests. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
* Enable desktop integration tests on all OS Fix case-sensitive path issues (Integration -> integration) that prevented test discovery on Linux/macOS, and add --no-sandbox --disable-gpu launch args for headless CI environments. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Fix desktop integration test failures on macOS/Linux - Skip Windows-specific path tests on non-Windows platforms (backslash path separator and drive letter URI conversion) - Stub prepareSiteStoragePath in CompareWithEnvironment/Local handler tests to prevent mkdirSync at absolute /test paths which causes EACCES on Linux and ENOENT on macOS Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Fix remaining backslash path test failure on macOS/Linux Skip getDeletePathUris test that uses backslash-separated paths, as vscode.Uri.file() only converts backslashes to forward slashes on Windows. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
* Refactor schema and URL handling in tests - 🔧 Updated test cases in `schemaHelperUtil.test.ts` to use `ORG_ID` instead of schema version. - 🔄 Modified `urlBuilderUtil.test.ts` to correct the mapping of fetch query parameters. - 🧹 Cleaned up `webExtensionTelemetry.test.ts` by removing unused query parameters. - 🚀 Removed the `isMultifileEnabled` function from `commonUtil.ts`. - 🔄 Refactored `folderHelperUtility.ts` to use `orgUrl` directly from `WebExtensionContext`. - 🔄 Adjusted `schemaHelperUtil.ts` to simplify fetch query retrieval logic. - 🔄 Updated `urlBuilderUtil.ts` to use `websiteId` directly from `WebExtensionContext`. - 🔄 Changed `NPSWebView.ts` to retrieve `tenantId` directly from `WebExtensionContext`. -Priyanshu * Refactor remoteFetchProvider tests for clarity - 🔧 Updated comments for clarity on function calls - 🐛 Changed fetchDataFromDataverseAndUpdateVFS to include entity parameters - 🔄 Replaced fetch stubs with concurrencyHandler stubs for consistency - ✨ Initialized WebExtensionContext properties in tests -Priyanshu * Add WEBSITE_ID parameter and update related logic - ✨ Introduced WEBSITE_ID to queryParameters enum. - 🔄 Updated errorHandler to check for WEBSITE_ID instead of PORTAL_ID. - 🧪 Added tests to validate behavior when WEBSITE_ID is present or missing. -Priyanshu * Add message for multiple websites selection - ✨ Added a new message for when multiple websites are found, prompting the user to select one. -Priyanshu
…6: Build ID 2430172 (#1493) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2430172 * Automated localization update from CI --------- Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
- Add top-level npm override for minimatch ^10.2.1 - Previous fix only scoped override to @types/minimatch, leaving all other transitive instances (3.x, 5.x, 7.x, 9.x) vulnerable - Exclude @vscode/vsce from override (incompatible with minimatch 10.x due to changed export structure) - All other minimatch instances now resolve to 10.2.2 - Addresses CVE-2026-26996 (high severity ReDoS) Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Add serverlogics to conditional folder entities for graceful 404 handling When adx_serverlogics table does not exist in an environment, the bulk entity fetch returns 404 and logs as ApiRequestFailure. Adding SERVERLOGICS to conditionalFolderEntities allows the existing graceful 404/400 handling in fetchFromDataverseAndCreateFiles to catch this and log an info-level OptionalEntityNotFound event instead. Telemetry shows 511 such errors from 219 users on v2.0.131 in the last 7 days, all from adx_serverlogics 404s. Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: PAC Auto Update Bot <pac-auto-update@microsoft.com>
- Updated basic-ftp from 5.1.0 to 5.2.0 - Addresses CVE-2026-27699 (critical) - Path Traversal in downloadToDir() - Transitive dependency via release-it > proxy-agent > pac-proxy-agent > get-uri - Lockfile-only change, no package.json modifications needed Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
…6: Build ID 2434286 (#1498) * Localized file check-in by OneLocBuild Task: Build definition ID 12756: Build ID 2434286 * Automated localization update from CI --------- Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
- Update minimatch override to ^10.2.3 (fixes ReDoS in alerts #129, #130) - Update @vscode/vsce minimatch override to 3.1.5 (fixes ReDoS in alert #126) - Add serialize-javascript override ^7.0.3 (fixes RCE in alert #131) - Update @vscode/test-web to ^0.0.80 (fixes koa Host Header Injection in alert #128) - Add diff override ^8.0.3 (fixes DoS vulnerability in jsdiff) Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
- Add nullish coalescing fallback for ActiveOrganization?.Item2 in AuthPanelView.ts - Add nullish coalescing fallback for orgInfo?.OrgUrl in ShowEnvironmentDetailsHandler.ts - Resolves TS2769: args must be (string | number | boolean)[], not undefined Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Update CHANGELOG for version 2.0.132 Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * Update CHANGELOG for version 2.0.133 --------- Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: PAC Auto Update Bot <pac-auto-update@microsoft.com>
- Updated tar override from ^7.5.8 to ^7.5.10 (resolves to 7.5.11) Addresses #133: Hardlink Path Traversal via Drive-Relative Linkpath (high) - Added @tootallnate/once override ^3.0.1 Addresses #132: Incorrect Control Flow Scoping (low) Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Amit Joshi <amitjoshi@microsoft.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
# Conflicts: # CHANGELOG.md # gulpfile.mjs # package-lock.json # package.json
priyanshu92
approved these changes
Mar 10, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Test plan
🤖 Generated with Claude Code