- Use the prebuilt [main.user.js](https://git.coom.tech/coomdev/PEE/raw/branch/%E4%B8%AD%E5%87%BA%E3%81%97/main.user.js)
How to Build
How to Build
============
npm i and npm run build
then install the generated main.users.js
(You only need to care about this section if you're auditing the code or contributing to development)
`npm i` and `npm run build`
then install the generated main.user.js
How to use
==========
@ -28,34 +30,22 @@ How to use
Posts with an embedded image/video will have an colored dashed line on their right. Golden means the file is external (ie. a booru), and pink means it was a file embedded in the post file.
this screenshot is outdated, UI has changed a little but I'm too lazy.
In the quick reply form, a magnet icon will appear.
You need to select a png/webm/gif file to upload first, as you would normally (this is what the file will appear as), then click on the magnet to select a file to embed (can be anything).
Clicking it will allow you to add files to attach to the file that will be uploaded and shown on 4chan.
Hovering on the magnet will reveal a pencil icon, that will attach the content of your message box to the file, use it as a way to hide messages. And finally a checkmark that will do the uploading, make sure to have selected the file you'll post on 4chan beforehand.
By default, you can add up to 5 attachments to a file. This limit can be raised, but keep in mind others using the default settings will only see your 5 first files, unless they themselves raised that limit in the settings.
# <aid="coom"></a> TroubleShooting
## Is this a virus
Yes
## Does this automatically download viruses and install them
Yes
## but i dont want a virus...
too bad fren...
## It doesn't work
## What should I use instead
Use [Zip's Media Embedder](https://git.coom.tech/Zip/Media-Embedder), it's very small, easily auditable, clean, in active development, and 100% work :^)
## thnk u fren im out
[Good, leave and never come back](https://google.com)
## "It doesn't wor-"
**ACK!**
I can't help if you don't give me any information, see below.
As mods are banning any kind of discussion about this extension, please open an issue on this repository. Account creation is quick and requires no email verification.
## "I am using [BROWSER] and [USERSCRIPT MANAGER] and when I do [X]..."
@ -63,7 +53,7 @@ That's better. Officially, all developpment is made and tested on latest Chromiu
## Something else
Either post in /cumg/, but I might gloss over your post, or open an issue on this repository, you need an account but email verification is disabled.
Open an issue on this repository, you need an account but email verification is disabled.
## It's slow
@ -71,40 +61,49 @@ The slowest machine I have available is an 8GB 2011 Sandy Bridge i5 with a 1660T
There are parts where slowness is unavoidable, for example if you have a slow internet connection and enabled preloading (wtf are you doing?).
Even without preloading enabled, PEE still makes many requests at the start of a page as it fetches a small initial chunk of png/webm/gif files to know if something is embedded in there, only progressing further when something is detected.
Even without preloading enabled, PEE still makes many requests at the start of a page as it fetches a small initial chunk of png/webm/gif files to know if something is embedded in there, only progressing further when something is detected. It also does boorus/catbox requests for the corresponding filenames.
## Why is it so big
The file-type detection package is huge as it detect many file types, but also depends on node constructs that are also huge by themselves. There's also a webm parser that's relatively big that's used for embedding/extracting files in/from webms. There's also the svelte UI that compiles down to simple javascript.
# Technical details
## How do I know it's not a botnet???
You're free to audit the code. You don't have to audit the 18000 loc file, you just need to audit the 2000-something lines of typescript code in the `src` folder, build it as instructed, and compare it to the one distributed. If you're incapable of doing that, chances are you're already using unauditable extensions with backdoors anyway? dumb schizoposter.
## Formats
## I heard about [Bad thing]
### PNG
Disingenuous misinformation, probably a covert seething janny.
This works by appending the file in the last IDAT chunk.
Metadata information is stored in a tEXt chunk, placed near the header so that a parser looking for that embedded information can bail out without having to parse the whole file.
1 - Embedding files is not possible in a practical way anymore, so what is embedded are simply links, which are outside 4chan's juridiction (not my problem if they decide to make it theirs)
Metadata in the tEXt has the following meaning:
2 - No CP was ever posted, the worst it got were clothed children posing and a fatty pig-faced kid dancing. 4chan is an [NCMEC](https://www.missingkids.org/) partner, so even if you don't post CP directly to 4chan, you can (and will) still get reported to local authorities, as they have basically a direct communication line with them. That's why no one posted CP even when embedding was a thing, it's just a retarded thing to do. People telling you CP was posted are either purposefully lying, or are confusing drawn images (loli) with actual child porn. Guess which one is the most likely on 4chan of all places?
CUM[null]0 -> The last IDAT chunk is formatted as [filename length[LE 4 bytes], filename, filedata]
3 - The virus in a png thing happened once, it was created just to trigger antivirus alerts on windows, it can't do anything unless you explicitly saved the file and renamed it as a .exe and double-clicked on it. Good luck with that.
CUM[null]X is reserved for future extensions
4 - It's not steganography, it's embedding in file metadata, it doesn't touch the original pixels. Older method appended data in critical pixel chunks that wasn't interpreted by decoders.
Possible workaround for 4chan jannies would be to assoome IDAT chunks don't go over a certain size, slightly harder workaround would be to check if the deflate stream yields enough pixels to fit the described dimensions of the image.
5 - PEE is not malicious, but don't take my word for it, you have the source code (2000loc) to build it yourself, and builds are binary-replicable.
## But embedding is a bannable offense!!!11
Webm
----
The file is embedded in a SimpleTag tag, with a TagName of C00M and a TagBinary that contains the file content.
The Tags section of that file can contain a TagName with a value of COOMFILENAME and a TagString containing a filename
Yeah, well use at your own risk, you dumb nigger cattle.
GIF
---
While it is true PEE used to allow you to embed complete files in your uploads, recent changes have made it much less practical (limited to really small files), so it's falling back to linking external content hosted on pomf-clones such as catbox.
The embedded data is contained in an application extension chunk, usually right after the NETSCAPE extension.
The extension is named COOMTECH0.1, the rest of the bytes encode directly the file content, with no filename. The filesize is implicitely determined by a sentinel value that marks the end of the subchunk.
Links are much smaller and as some PNG editing software injects their own metadata, 4chan is basically required to allow some little amount of it to go through, lest they inconvenience a lot of their users, so a link-embedding detection method cannot be generalized, meaning they rely on unpaid janny labor to moderate this kind of content.
Embedding is banned because it can be used to make 4chan host illegal content, but in its present form, this extension only LINKS external content, but it seems like jannies can't get this through their thick skulls and make the world's problems their own, truly worthy of an hero.
Just be discreet about it and you won't get into trouble.
# Fuck jannies
/cumg/ threads are still banned despite being tolerated for over a year and the current ones being made not breaking any rule or even daring to thread on a grey line.
Their OPs are wrongfully being banned under the pretense of using proxies/VPNs, or evading bans that didn't exist in the first place.
## Supports
Third Eye
---------
@ -117,11 +116,6 @@ Catbox
Supports:
- Base64 filenames
- [\<host>=\<file>] filesnames
- <6charfile>(.\<ext>) filesnames
Bugs
====
- more to come
- not having a feature isn't a bug you retard
- [\<host>=\<file>] filenames
- [\<type>=\<URL>] filenames (URL must be one of the supported hosts (catbox, pomf, zzzz...))
coomdev
2 years ago