xinyun/ComfyUI-Manager
1
0
Fork 0
mirror of https://git.datalinker.icu/ltdrdata/ComfyUI-Manager synced 2025-12-09 14:14:54 +08:00
Code Issues Packages Projects Releases Wiki Activity

Security policy changed.

Browse Source 
'normal' is changed to 'normal-'

and

'normal-' doesn't allow high-security features even if ComfyUI is running with local hosting.
This commit is contained in:
Dr.Lt.Data 2024-07-21 13:25:57 +09:00
parent a580a5a446
commit 50b9844215
4 changed files with 12 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -5,6 +5,7 @@
![menu](misc/menu.jpg) ![menu](misc/menu.jpg)
## NOTICE ## NOTICE
* V2.47: Security policy has been changed. The former 'normal' is now 'normal-', and 'normal' no longer allows high-risk features, even if your ComfyUI is local.
* V2.37 Show a ✅ mark to accounts that have been active on GitHub for more than six months. * V2.37 Show a ✅ mark to accounts that have been active on GitHub for more than six months.
* V2.33 Security policy is applied. * V2.33 Security policy is applied.
* V2.21 [cm-cli](docs/en/cm-cli.md) tool is added. * V2.21 [cm-cli](docs/en/cm-cli.md) tool is added.
@ -350,6 +351,9 @@ When you run the `scan.sh` script:
* `strong` * `strong`
* doesn't allow `high` and `middle` level risky feature * doesn't allow `high` and `middle` level risky feature
* `normal` * `normal`
* doesn't allow `high` level risky feature
* `middle` level risky feature is available
* `normal-`
* doesn't allow `high` level risky feature if `--listen` is specified and not starts with `127.` * doesn't allow `high` level risky feature if `--listen` is specified and not starts with `127.`
* `middle` level risky feature is available * `middle` level risky feature is available
* `weak` * `weak`

2
glob/manager_core.py
View File

@ -23,7 +23,7 @@ sys.path.append(glob_path)
import cm_global import cm_global
from manager_util import * from manager_util import *
version = [2, 46, 5] version = [2, 47]
version_str = f"V{version[0]}.{version[1]}" + (f'.{version[2]}' if len(version) > 2 else '') version_str = f"V{version[0]}.{version[1]}" + (f'.{version[2]}' if len(version) > 2 else '')

12
glob/manager_server.py
View File

@ -48,11 +48,11 @@ is_local_mode = args.listen.startswith('127.') or args.listen.startswith('local.
def is_allowed_security_level(level): def is_allowed_security_level(level):
if level == 'high': if level == 'high':
if is_local_mode: if is_local_mode:
return core.get_config()['security_level'].lower() in ['weak', 'normal'] return core.get_config()['security_level'].lower() in ['weak', 'normal-']
else: else:
return core.get_config()['security_level'].lower() == 'weak' return core.get_config()['security_level'].lower() == 'weak'
elif level == 'middle': elif level == 'middle':
return core.get_config()['security_level'].lower() in ['weak', 'normal'] return core.get_config()['security_level'].lower() in ['weak', 'normal', 'normal-']
else: else:
return True return True
@ -858,7 +858,7 @@ async def fix_custom_node(request):
@PromptServer.instance.routes.post("/customnode/install/git_url") @PromptServer.instance.routes.post("/customnode/install/git_url")
async def install_custom_node_git_url(request): async def install_custom_node_git_url(request):
if not is_allowed_security_level('high'): if not is_allowed_security_level('high'):
print(f"ERROR: To use this feature, you must set '--listen' to a local IP and set the security level to 'middle' or 'weak'. Please contact the administrator.") print(f"ERROR: To use this feature, you must either set '--listen' to a local IP and set the security level to 'normal-' or lower, or set the security level to 'middle' or 'weak'. Please contact the administrator.")
return web.Response(status=403) return web.Response(status=403)
url = await request.text() url = await request.text()
@ -874,7 +874,7 @@ async def install_custom_node_git_url(request):
@PromptServer.instance.routes.post("/customnode/install/pip") @PromptServer.instance.routes.post("/customnode/install/pip")
async def install_custom_node_git_url(request): async def install_custom_node_git_url(request):
if not is_allowed_security_level('high'): if not is_allowed_security_level('high'):
print(f"ERROR: To use this feature, you must set '--listen' to a local IP and set the security level to 'middle' or 'weak'. Please contact the administrator.") print(f"ERROR: To use this feature, you must either set '--listen' to a local IP and set the security level to 'normal-' or lower, or set the security level to 'middle' or 'weak'. Please contact the administrator.")
return web.Response(status=403) return web.Response(status=403)
packages = await request.text() packages = await request.text()
@ -990,7 +990,7 @@ async def install_model(request):
return web.Response(status=403) return web.Response(status=403)
if not json_data['filename'].endswith('.safetensors') and not is_allowed_security_level('high'): if not json_data['filename'].endswith('.safetensors') and not is_allowed_security_level('high'):
print(f"ERROR: To use this feature, you must set '--listen' to a local IP and set the security level to 'middle' or 'weak'. Please contact the administrator.") print(f"ERROR: To use this feature, you must either set '--listen' to a local IP and set the security level to 'normal-' or lower, or set the security level to 'middle' or 'weak'. Please contact the administrator.")
return web.Response(status=403) return web.Response(status=403)
res = False res = False
@ -1040,7 +1040,7 @@ manager_terminal_hook = ManagerTerminalHook()
@PromptServer.instance.routes.get("/manager/terminal") @PromptServer.instance.routes.get("/manager/terminal")
async def terminal_mode(request): async def terminal_mode(request):
if not is_allowed_security_level('high'): if not is_allowed_security_level('high'):
print(f"ERROR: To use this action, a security_level of `weak` is required. Please contact the administrator.") print(f"ERROR: To use this feature, you must either set '--listen' to a local IP and set the security level to 'normal-' or lower, or set the security level to 'middle' or 'weak'. Please contact the administrator.")
return web.Response(status=403) return web.Response(status=403)
if "mode" in request.rel_url.query: if "mode" in request.rel_url.query:

2
pyproject.toml
View File

@ -1,7 +1,7 @@
[project] [project]
name = "comfyui-manager" name = "comfyui-manager"
description = "ComfyUI-Manager provides features to install and manage custom nodes for ComfyUI, as well as various functionalities to assist with ComfyUI." description = "ComfyUI-Manager provides features to install and manage custom nodes for ComfyUI, as well as various functionalities to assist with ComfyUI."
version = "2.46.5" version = "2.47"
license = "LICENSE" license = "LICENSE"
dependencies = ["GitPython", "PyGithub", "matrix-client==0.4.0", "transformers", "huggingface-hub>0.20", "typer", "rich", "typing-extensions"] dependencies = ["GitPython", "PyGithub", "matrix-client==0.4.0", "transformers", "huggingface-hub>0.20", "typer", "rich", "typing-extensions"]