wangbo/ComfyUI-Manager
1
0
Fork 0
mirror of https://github.com/Comfy-Org/ComfyUI-Manager.git synced 2026-05-08 16:12:35 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
manager-v4
ComfyUI-Manager/docs
History
Dr.Lt.Data 4410ebc6a6
Some checks are pending
Publish to PyPI / build-and-publish (push) Waiting to run
Details
Python Linting / Run Ruff (push) Waiting to run
Details
fix(security): harden CSRF with Content-Type gate and expand E2E coverage (#2818) 
Defense-in-depth over GET→POST alone: reject the three CORS-safelisted
simple-form Content-Types (x-www-form-urlencoded, multipart/form-data,
text/plain) on 16 no-body POST handlers (glob + legacy) to block
<form method=POST> CSRF that bypasses method-only gating. Move
comfyui_switch_version to a JSON body so the preflight requirement applies.
Split db_mode/policy/update/channel_url_list into GET(read) + POST(write).
Tighten do_fix (high → high+) and gate three previously-ungated config
setters at middle. Resynchronize openapi.yaml (27 paths, 30 operations,
ComfyUISwitchVersionParams as a shared $ref component). Add E2E harness
variants, Playwright config, CSRF/secgate suites, 39-endpoint coverage,
and a CHANGELOG.

Breaking: legacy per-op POST routes (install/uninstall/fix/disable/update/
reinstall/abort_current) are removed; callers already use queue/batch.
Legacy /manager/notice (v1) is removed; /v2/manager/notice is retained.

Reported-by: XlabAI Team of Tencent Xuanwu Lab
CVSS: 8.1 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H)
2026-04-22 05:04:30 +09:00
..
dev feat(cli): expand --uv-compile to all node management commands with conflict attribution (#2682) 2026-03-14 07:58:29 +09:00
en feat(cli): expand --uv-compile to all node management commands with conflict attribution (#2682) 2026-03-14 07:58:29 +09:00
guide fix(security): harden CSRF with Content-Type gate and expand E2E coverage (#2818) 2026-04-22 05:04:30 +09:00
ko feat(cli): expand --uv-compile to all node management commands with conflict attribution (#2682) 2026-03-14 07:58:29 +09:00
README.md [docs] Add README for docs directory (#1855) 2025-05-21 21:45:17 +09:00

README.md

ComfyUI-Manager: Documentation

This directory contains documentation for the ComfyUI-Manager, providing guides and tutorials for users in multiple languages.

Directory Structure

The documentation is organized into language-specific directories:

  • en/: English documentation
  • ko/: Korean documentation

Core Documentation Files

Command-Line Interface

  • cm-cli.md: Documentation for the ComfyUI-Manager Command Line Interface (CLI), which allows using manager functionality without the UI.

Advanced Features

  • use_aria2.md: Guide for using the aria2 download accelerator with ComfyUI-Manager for faster model downloads.

Documentation Standards

The documentation follows these standards:

  1. Markdown Format: All documentation is written in Markdown for easy rendering on GitHub and other platforms
  2. Language-specific Directories: Content is separated by language to facilitate localization
  3. Feature-focused Documentation: Each major feature has its own documentation file
  4. Updated with Releases: Documentation is kept in sync with software releases

Contributing to Documentation

When contributing new documentation:

  1. Place files in the appropriate language directory
  2. Use clear, concise language appropriate for the target audience
  3. Include examples where helpful
  4. Consider adding screenshots or diagrams for complex features
  5. Maintain consistent formatting with existing documentation

This documentation directory will continue to grow to support the expanding feature set of ComfyUI-Manager.