feat: FiveM Security series (Part 1 & 2)#7
Merged
Conversation
Completes section 1 (unvalidated server events) with case study, remediation principles, and code examples using Yoda conditions, layered validation, and default-to-negative pattern. Expands closing with threat model framing and anticheat scope analysis.
Renders anchor links to h1/h2 headings when toc: true is set in front matter. JS builds the nav from Kramdown-generated heading IDs.
Enables table of contents on the FiveM post; explicitly sets toc: false on existing posts and updates the post template in README.
Enables kramdown GFM input mode for checkbox rendering. Adds task-list styles with accent-colored checked state to match the site theme.
Adds section 4 covering peripheral attack surfaces (server machine, permissions, bare metal). Rewrites pre-install checklist as tickable items. Expands closing with threat model framing.
Strengthens closing with legal consequences teaser and sharing nudge. Removes section heading to preserve tension, fixes punctuation register.
TOC is now fixed to the left margin, visible on viewports >= 1200px. Active section is highlighted in accent red with overline, tracked via scroll position. Back-to-top button fades in after 200px of scroll.
Wraps prose lines and footnotes exceeding the 120 char lint limit.
Adds blank lines around headings, HRs, code blocks, and lists. Removes trailing colon from heading. Adds trailing newline. Disables MD025 for intentional multi-h1 structure. Fixes media feature range notation and missing empty line before rule.
The space-separated rgb(r g b / a) syntax is not supported by the SCSS compiler used in CI. Replaced with rgba(r, g, b, a) and disabled the conflicting stylelint color-function-notation and alpha-value-notation rules to allow legacy notation.
FiveM Security series: Part 1 post + blog UI improvements
actions/jekyll-build-pages@v1 bundles sass-3.7.4 which rejects modern CSS color-function and media-feature-range syntax required by stylelint. Switch to ruby/setup-ruby with the project Gemfile (Jekyll 4.3) which ships sass-embedded and handles both correctly.
fix: replace jekyll-build-pages with ruby/setup-ruby in deploy workflow
fix: SCSS rgb() syntax compatibility with CI compiler
Pyth3rEx
force-pushed
the
post/fivem-attack-surface
branch
2 times, most recently
from
c389986 to
4759b02
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Test plan