Skip to content

chore: improve accessibility and security#707

Open
dipanshurdev wants to merge 1 commit intoOpenCut-app:mainfrom
dipanshurdev:minor-patch03
Open

chore: improve accessibility and security#707
dipanshurdev wants to merge 1 commit intoOpenCut-app:mainfrom
dipanshurdev:minor-patch03

Conversation

@dipanshurdev
Copy link
Contributor

@dipanshurdev dipanshurdev commented Feb 17, 2026
edited by coderabbitai bot
Loading

Accessibility & Security Improvements

Changes

  • ♿ Improve hero image alt text for screen readers
  • 🔐 Add noreferrer to external links (security best practice)
  • 📅 Update roadmap date to Feb 2026

Impact

  • No breaking changes
  • Better a11y compliance
  • Enhanced security posture

Files Changed

Type: chore | Breaking: No

Summary by CodeRabbit

Release Notes

  • Chores
    • Enhanced security attributes for external links
    • Updated roadmap information timestamp
    • Improved accessibility descriptions for landing page imagery

@dipanshurdev
chore: improve accessibility and security
c026854 
- Update roadmap description date from July 14, 2025 to February 2026
- Improve landing page hero image alt text for better a11y
- Add noreferrer to external links for security best practice
@vercel
Copy link

vercel bot commented Feb 17, 2026

@dipanshurdev is attempting to deploy a commit to the OpenCut OSS Team on Vercel.

A member of the Team first needs to authorize it.

@netlify
Copy link

netlify bot commented Feb 17, 2026

👷 Deploy request for appcut pending review.

Visit the deploys page to approve it

Name Link
🔨 Latest commit c026854

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Feb 17, 2026
edited
Loading

📝 Walkthrough

Walkthrough

Three minor updates across the web application: enhanced link security attribute, updated metadata timestamp, and improved image accessibility text. All changes are cosmetic with no functional impact.

Changes

Cohort / File(s) Summary
Link Security Enhancement
apps/web/src/app/privacy/page.tsx		 Updated Analytics section Databuddy link rel attribute from "noopener" to "noopener noreferrer" for improved security practices.
Metadata Timestamp Update
apps/web/src/app/roadmap/page.tsx		 Updated BasePage description last-updated timestamp from July 14, 2025 to February 2026.
Accessibility Improvement
apps/web/src/components/landing/hero.tsx		 Updated landing page background image alt text from "landing-page.bg" to "OpenCut video editor landing page background".

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

Poem

🐰 A hop, skip, and jump through the code,
Where alt text dances and timestamps are bestowed,
Security tightens with "noreferrer" in place,
Three little tweaks that improve the space!

🚥 Pre-merge checks | ✅ 1 | ❌ 2

❌ Failed checks (2 warnings)

Check name Status Explanation Resolution
Description check ⚠️ Warning The PR description clearly outlines changes, impacts, and affected files, but does not follow the required template which asks for bug fix/feature information and maintainer approval checkboxes. Update the description to follow the repository's template format, including required checkboxes for bug fixes or feature notices as specified in the description_template.
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. Write docstrings for the functions missing them to satisfy the coverage threshold.
✅ Passed checks (1 passed)
Check name Status Explanation
Title check ✅ Passed The title 'chore: improve accessibility and security' accurately reflects the main changes in the PR, which include accessibility improvements (alt text) and security enhancements (noreferrer attribute).

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing touches
  • 📝 Generate docstrings
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai bot reviewed Feb 17, 2026
View reviewed changes
Copy link
Contributor

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
apps/web/src/app/privacy/page.tsx (1)

166-175: ⚠️ Potential issue | 🟡 Minor

noreferrer added only to the Databuddy link — other target="_blank" links in this file are inconsistent.

The Databuddy link now has rel="noopener noreferrer", but the Better Auth link (Line 120), GitHub link (Line 238), GitHub issues link (Line 255), and X/Twitter link (Line 271) still use only rel="noopener". If noreferrer is the desired security posture, apply it consistently to all external links.

Proposed fix 
 				<a
 					href="https://www.better-auth.com"
 					target="_blank"
-					rel="noopener"
+					rel="noopener noreferrer"
 					className="text-primary hover:underline"
 				>
 				<a
 					href={SOCIAL_LINKS.github}
 					target="_blank"
-					rel="noopener"
+					rel="noopener noreferrer"
 					className="text-primary hover:underline"
 				>
 				<a
 					href={`${SOCIAL_LINKS.github}/issues`}
 					target="_blank"
-					rel="noopener"
+					rel="noopener noreferrer"
 					className="text-primary hover:underline"
 				>
 				<a
 					href={SOCIAL_LINKS.x}
 					target="_blank"
-					rel="noopener"
+					rel="noopener noreferrer"
 					className="text-primary hover:underline"
 				>
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@apps/web/src/app/privacy/page.tsx` around lines 166 - 175, The Databuddy
anchor now uses rel="noopener noreferrer" while other external anchors with
target="_blank" (the "Better Auth", "GitHub", "GitHub issues", and "X/Twitter"
links) only use rel="noopener"; update those anchor elements so they
consistently include rel="noopener noreferrer" to match the desired security
posture, ensuring every <a> with target="_blank" in this component uses the same
rel attributes.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@apps/web/src/app/privacy/page.tsx`:
- Around line 166-175: The Databuddy anchor now uses rel="noopener noreferrer"
while other external anchors with target="_blank" (the "Better Auth", "GitHub",
"GitHub issues", and "X/Twitter" links) only use rel="noopener"; update those
anchor elements so they consistently include rel="noopener noreferrer" to match
the desired security posture, ensuring every <a> with target="_blank" in this
component uses the same rel attributes.

gameroman
gameroman approved these changes Feb 17, 2026
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

+1 more reviewer

@gameroman gameroman gameroman approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dipanshurdev @gameroman

Comments