Conversation
- Code.gs improvements Code.gs now strips host, proxy/IP headers, origin, referrer, and caller-supplied user-agent. Also Forces User-Agent: Mozilla/5.0. Should prevent some IP leakage (but does not fully prevent it). - Obfuscated variants Added 4 obfuscated versions; should be used instead of the raw version, as they reduces the chances of detection and potential ban. - Navid
Added hyperminified version of Code.gs; I think it's a sweetspot between detection resistance and performance, for what it's worth. - Navid
|
Added minified version of Code.gs; I think it's a sweetspot between detection resistance and performance for what it's worth.
|
|
You put your personal auth key in the mini version. |
Ty. Already changed. Forgot to remove after testing it. I've also found out there's per-account rate limits (not per-deployment), so deploying on multiple accounts is the most effective way. |
|
obfuscated code in a GitHub project is usually a bad idea. |
|
does it conflict with #18 ? |
|
I agree with @creep247, it's not good to have obfuscated code in github. |
|
since there is no issues page, im writing here: Problem: Two options: Thanks |
|
@creep247 there is no issues page because there is many people having a simple problem on setup and we rather let the telegram community solves it. about the issue you mentioned, yes you are right. we should strip some headers like x-forwarded-for and proxy stuff. I'll add them after merging some PRs |
|
Maybe it is a good idea to save time by moving "Installing dependencies" step to a setup.bat file. This will save a few seconds opening the app. start.bat can just start the app. or maybe checking the .venv folder to see if the app is already installed or no and bypass these steps. |
run.bat / run.sh is only for the first-time run. Afterwards, you can just go |
|
start.bat script also uses unofficial mirror without using Hash-checking Mode , which enables the mirror to install arbitrary code. |
|
|
I will check on that, but it's not like we have many choices here, I might of release CI/CD for exe |
|
Does this really change the UA? I didn't think that was possible |
|
As there is no issues section I thought it to mention it here. The Windows version of start batch script The problem is resolved once the script is saved with CRLF line endings, as expected for Windows. |
Fork this project, edit start.bat in your fork, commit, make a pull request here |
|
obfuscation is never a good idea and never be and also in open source software it does violate honesty mostly nobody gotten banned for this code.gs abuse anyways google could tell if there is a abuse with network traffic |
|
I tested this (using Code.gs from the overhaul commit) and the UA thing didn't work. What gives? |
8 participants
Code.gs now strips host, proxy/IP headers, origin, referrer, and caller-supplied user-agent. Also Forces User-Agent: Mozilla/5.0.
Should prevent some IP leakage (but does not fully prevent it).
Added 4 obfuscated versions; should be used instead of the raw version, as they reduces the chances of detection and potential ban.