youngkingdom/ComfyUI-Manager
1
0
Fork 0
mirror of https://github.com/Comfy-Org/ComfyUI-Manager.git synced 2026-03-26 17:00:02 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
92e05fc767eaaac8d49ce2940ff2f3a4202d1d5b
ComfyUI-Manager/comfyui_manager/common
History
Dr.Lt.Data 92e05fc767 fix(security): add litellm supply chain attack detection (PYSEC-2026-2) (#2732) 
Add litellm==1.82.7 and litellm==1.82.8 to pip_blacklist and remediation
guide in security_check.py to detect compromised packages that harvest
credentials and exfiltrate via attacker-controlled server.

Also fixes two pre-existing issues in pip_blacklist scanning:
- Remove `break` that caused only the first blacklist match to be
  detected, missing additional threats in multi-infection scenarios
- Replace substring matching with set-based exact matching to prevent
  false positives on similar version strings (e.g. 1.82.70 vs 1.82.7)

Bump version to 4.1.
2026-03-26 04:17:50 +09:00
..
__init__.py
fix(git): handle divergent branches safely + datetime fallback
2025-12-12 22:45:05 +09:00
cm_global.py
restructuring
2025-04-13 09:26:02 +09:00
cnr_utils.py
refactor(core): add verbose config, improve module lookup, fix is_valid_url
2025-12-27 03:57:19 +09:00
context.py
refactor: remove preview_method and component legacy features
2025-12-19 22:39:59 +09:00
enums.py
modified: security policy
2025-06-27 01:38:38 +09:00
git_helper.py
fix: Windows git clone failures — URL reinstall + pipe deadlock + file lock (#2726)
2026-03-22 20:21:03 +09:00
git_utils.py
fix(api): improve import_fail_info_bulk lookup for cnr_id and aux_id
2025-12-15 02:54:30 +09:00
manager_downloader.py
Merge branch 'main' into draft-v4
2025-07-24 12:41:48 +09:00
manager_security.py
security(api): add path traversal and CRLF injection protection
2026-01-08 18:35:03 +09:00
manager_util.py
feat(deps): add unified dependency resolver using uv pip compile (#2589)
2026-03-07 06:51:53 +09:00
node_package.py
restructuring
2025-04-13 09:26:02 +09:00
README.md
Merge branch 'main' into draft-v4
2025-06-01 06:23:11 +09:00
security_check.py
fix(security): add litellm supply chain attack detection (PYSEC-2026-2) (#2732)
2026-03-26 04:17:50 +09:00
timestamp_utils.py
fix(git): handle divergent branches safely + datetime fallback
2025-12-12 22:45:05 +09:00
unified_dep_resolver.py
feat(cli): expand --uv-compile to all node management commands with conflict attribution (#2682)
2026-03-14 07:58:29 +09:00

README.md

ComfyUI-Manager: Core Backend (glob)

This directory contains the Python backend modules that power ComfyUI-Manager, handling the core functionality of node management, downloading, security, and server operations.

Core Modules

  • manager_downloader.py: Handles downloading operations for models, extensions, and other resources.
  • manager_util.py: Provides utility functions used throughout the system.

Specialized Modules

  • cm_global.py: Maintains global variables and state management across the system.
  • cnr_utils.py: Helper utilities for interacting with the custom node registry (CNR).
  • git_utils.py: Git-specific utilities for repository operations.
  • node_package.py: Handles the packaging and installation of node extensions.
  • security_check.py: Implements the multi-level security system for installation safety.