update security scanner

update DB
2025-12-16 18:02:58 +08:00 · 2024-06-11 17:57:27 +09:00 · 2024-06-11 17:57:27 +09:00 · 676e99a77a
commit 676e99a77a
parent b2940a808a
5 changed files with 32 additions and 12 deletions
--- a/extension-node-map.json
+++ b/extension-node-map.json
@ -13733,12 +13733,11 @@
    ],
    "https://github.com/vanche1212/ComfyUI-ZMG-Nodes": [
        [
-            "LoadVideoUpload",
-            "OldPhotoColorizationNode",
            "Waveform2Audio",
            "\ud83d\ude0bAPI Request Node",
            "\ud83d\ude0bJSON Parser Node",
-            "\ud83d\ude0bLoad Video (Path)",
+            "\ud83d\ude0bLoad Video Path Unified Output",
+            "\ud83d\ude0bOld Photo Colorization Node",
            "\ud83d\ude0bOllama Request Node",
            "\ud83d\ude0bSave Image Unified Output",
            "\ud83d\ude0bVideo Combine Unified Output"
--- a/glob/manager_core.py
+++ b/glob/manager_core.py
@ -23,7 +23,7 @@ sys.path.append(glob_path)
 import cm_global
 from manager_util import *

-version = [2, 37, 2]
+version = [2, 37, 3]
 version_str = f"V{version[0]}.{version[1]}" + (f'.{version[2]}' if len(version) > 2 else '')

 comfyui_manager_path = os.path.abspath(os.path.join(os.path.dirname(__file__), '..'))
--- a/glob/security_check.py
+++ b/glob/security_check.py
@ -7,24 +7,40 @@ def security_check():
    print("[START] Security scan")

    custom_nodes_path = os.path.abspath(os.path.join(os.path.dirname(__file__), '..', '..'))
+    comfyui_path = os.path.abspath(os.path.join(custom_nodes_path, '..'))

-    guide = {"ComfyUI_LLMVISION": """
+    guide = {
+        "ComfyUI_LLMVISION": """
 0.Remove ComfyUI\\custom_nodes\\ComfyUI_LLMVISION.
 1.Remove pip packages: openai-1.16.3.dist-info, anthropic-0.21.4.dist-info, openai-1.30.2.dist-info, anthropic-0.26.1.dist-info, %LocalAppData%\\rundll64.exe
  (For portable versions, it is recommended to reinstall. If you are using a venv, it is advised to recreate the venv.)
 2.Remove these files in your system: lib/browser/admin.py, Cadmino.py, Fadmino.py, VISION-D.exe, BeamNG.UI.exe
 3.Check your Windows registry for the key listed above and remove it.
-  (HKEY_CURRENT_USER\Software\OpenAICLI)
+  (HKEY_CURRENT_USER\\Software\\OpenAICLI)
 4.Run a malware scanner.
 5.Change all of your passwords, everywhere.
+
+(Reinstall OS is recommended.)
 \n
 Detailed information: https://old.reddit.com/r/comfyui/comments/1dbls5n/psa_if_youve_used_the_comfyui_llmvision_node_from/
-    """}
+    """,
+        "lolMiner": """
+1. Remove pip packages: lolMiner*
+2. Remove files: lolMiner*, 4G_Ethash_Linux_Readme.txt, mine* in ComfyUI dir.
+
+(Reinstall ComfyUI is recommended.)
+    """
+             }

    node_blacklist = {"ComfyUI_LLMVISION": "ComfyUI_LLMVISION"}

    pip_blacklist = {"AppleBotzz": "ComfyUI_LLMVISION"}

+    file_blacklist = {
+        "ComfyUI_LLMVISION": ["%LocalAppData%\\rundll64.exe"],
+        "lolMiner": [os.path.join(comfyui_path, 'lolMiner')]
+    }
+
    installed_pips = subprocess.check_output([sys.executable, '-m', "pip", "freeze"], text=True)

    detected = set()
@ -38,6 +54,12 @@ Detailed information: https://old.reddit.com/r/comfyui/comments/1dbls5n/psa_if_y
            detected.add(v)
            break

+    for k, v in file_blacklist.items():
+        for x in v:
+            if os.path.exists(os.path.expandvars(x)):
+                detected.add(k)
+                break
+
    if len(detected) > 0:
        for line in installed_pips.split('\n'):
            for k, v in pip_blacklist.items():
@ -51,7 +73,7 @@ Detailed information: https://old.reddit.com/r/comfyui/comments/1dbls5n/psa_if_y
        for x in detected:
            print(f"\n======== TARGET: {x} =========")
            print(f"\nTODO:")
-            print(guide[x])
+            print(guide.get(x))

        exit(-1)

--- a/node_db/new/extension-node-map.json
+++ b/node_db/new/extension-node-map.json
@ -13733,12 +13733,11 @@
    ],
    "https://github.com/vanche1212/ComfyUI-ZMG-Nodes": [
        [
-            "LoadVideoUpload",
-            "OldPhotoColorizationNode",
            "Waveform2Audio",
            "\ud83d\ude0bAPI Request Node",
            "\ud83d\ude0bJSON Parser Node",
-            "\ud83d\ude0bLoad Video (Path)",
+            "\ud83d\ude0bLoad Video Path Unified Output",
+            "\ud83d\ude0bOld Photo Colorization Node",
            "\ud83d\ude0bOllama Request Node",
            "\ud83d\ude0bSave Image Unified Output",
            "\ud83d\ude0bVideo Combine Unified Output"
--- a/pyproject.toml
+++ b/pyproject.toml
@ -1,7 +1,7 @@
 [project]
 name = "comfyui-manager"
 description = "ComfyUI-Manager provides features to install and manage custom nodes for ComfyUI, as well as various functionalities to assist with ComfyUI."
-version = "2.37.2"
+version = "2.37.3"
 license = "LICENSE"
 dependencies = ["GitPython", "PyGithub", "matrix-client==0.4.0", "transformers", "huggingface-hub>0.20", "typer", "rich", "typing-extensions"]