Skip to content

[Demo]#5747

Closed
gmechali wants to merge 29 commits intodatacommonsorg:masterfrom
gmechali:extension
Closed

[Demo]#5747
gmechali wants to merge 29 commits intodatacommonsorg:masterfrom
gmechali:extension

Conversation

@gmechali
Copy link
Copy Markdown
Contributor

@gmechali gmechali commented Nov 26, 2025

No description provided.

github-advanced-security[bot]
github-advanced-security AI found potential problems Nov 26, 2025
View reviewed changes
Comment thread server/routes/factcheck/api.py

except Exception as e:
logging.exception("Error verifying claim")
return jsonify({"error": str(e)}), 500

Check warning

Code scanning / CodeQL

Information exposure through an exception Medium

Stack trace information
Loading
flows to this location and may be exposed to an external user.
Comment thread server/routes/factcheck/api.py
return jsonify({"claims": claims})
except Exception as e:
logging.exception("Error extracting claims")
return jsonify({"error": str(e)}), 500

Check warning

Code scanning / CodeQL

Information exposure through an exception Medium

Stack trace information
Loading
flows to this location and may be exposed to an external user.
github-advanced-security[bot]
github-advanced-security AI found potential problems Nov 26, 2025
View reviewed changes
Comment thread chrome_extension/sidepanel.js
tab.url.startsWith('about:') ||
tab.url.startsWith('view-source:') ||
tab.url.startsWith('https://chrome.google.com/webstore') ||
tab.url.startsWith('https://chromewebstore.google.com')) {

Check failure

Code scanning / CodeQL

Incomplete URL substring sanitization High

'
https://chromewebstore.google.com
Loading
' may be followed by an arbitrary host name.
Comment thread server/templates/factcheck/widget.html
} else if (event.data.type === 'VERIFY_ERROR') {
loading.style.display = 'none';
verifyBtn.disabled = false;
resultsDiv.innerHTML = `<div class="error-message" style="color: #d93025; padding: 10px; background: #fce8e6; border-radius: 4px;">${event.data.error}</div>`;

Check failure

Code scanning / CodeQL

Client-side cross-site scripting High

Cross-site scripting vulnerability due to
user-provided value
Loading
.
Comment thread server/templates/factcheck/widget.html Fixed
github-advanced-security[bot]
github-advanced-security AI found potential problems Dec 8, 2025
View reviewed changes
Comment thread chrome_extension/sidepanel.js
Comment on lines +26 to +29
iframe.contentWindow.postMessage({
type: 'SET_API_KEY',
key: geminiApiKey
}, '*');

Check warning

Code scanning / CodeQL

Cross-window communication with unrestricted target origin Medium

Sensitive data
Loading
is sent to another window without origin restriction.
Sensitive data
Loading
is sent to another window without origin restriction.
Sensitive data
Loading
is sent to another window without origin restriction.
Comment thread chrome_extension/sidepanel.js
Comment on lines +58 to +61
iframe.contentWindow.postMessage({
type: 'SET_API_KEY',
key: geminiApiKey
}, '*');

Check warning

Code scanning / CodeQL

Cross-window communication with unrestricted target origin Medium

Sensitive data
Loading
is sent to another window without origin restriction.
Sensitive data
Loading
is sent to another window without origin restriction.
Sensitive data
Loading
is sent to another window without origin restriction.
@gmechali
v1
c3ac4d7
@gmechali
Add SV and place grounding.
7fc718d
@gmechali
Have all model evaluators rely on data commons for the verification
87e8ad7
@gmechali
REfactored for cleanliness and abiloity to ingest claims
215e2c2
@gmechali
Fixes with Gemini
8524cda
@gmechali
Split up claim generation + claim verification. Better use the abstra…
a9b7351 
…ct class. Cleanup overall
@gmechali
Saving progress
813256b
@gmechali
FactChecker working with MCP
7fa5e14
@gmechali
I think its the old factchecking
629162f
@gmechali
Adds a chrome extension and verification page.
be7f6fe
@gmechali
Extension improvements
09fe788
@gmechali
Work in progress: Chrome Extension UI improvements
53d1694
@gmechali
Fix ranking chart scrolling and limit height to 220px
4f5502f
@gmechali
Update Explore button to use /explore with p, sv, and chartType params
d1e2e90
@gmechali
Enhance Scan Page with context awareness, improved prompts, and Gemin…
ef4a620 
…i 1.5 Flash
@gmechali
Add visual feedback with inline badges for verified claims
2a33323
@gmechali
Enhance history to restore full verification results without re-fetching
2298f93
@gmechali
Removing unused things
bfcb45c
@gmechali
Diffs
9ed5641
@gmechali
Minor changes
630aee7
@gmechali
Adds a chrome extension and verification page.
f23d3a8
@gmechali
Work in progress: Chrome Extension UI improvements
e3b1648
@gmechali
Fix ranking chart scrolling and limit height to 220px
9c24c9a
@gmechali
Update Explore button to use /explore with p, sv, and chartType params
e9065ad
@gmechali
Enhance Scan Page with context awareness, improved prompts, and Gemin…
8c06d10 
…i 1.5 Flash
@gmechali
Enhance history to restore full verification results without re-fetching
cd95e03
@gmechali
Add API Key setup
4b702fa
@gmechali gmechali closed this Apr 16, 2026
@gmechali gmechali deleted the extension branch April 16, 2026 20:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@gmechali @github-advanced-security