Skip to content

feat: add themed toast variants — Police Intercept (destructive) and Plan Executed (success) (#139)#175

Merged
GauravKarakoti merged 1 commit into
GauravKarakoti:mainfrom
laypatel13:feat/thematic-toast-notifications-139
Jul 9, 2026
Merged

feat: add themed toast variants — Police Intercept (destructive) and Plan Executed (success) (#139)#175
GauravKarakoti merged 1 commit into
GauravKarakoti:mainfrom
laypatel13:feat/thematic-toast-notifications-139

Conversation

@laypatel13

Copy link
Copy Markdown
Contributor

Description

Implements #139 by introducing thematic toast notifications in the Money Heist style:

  • Destructive variant → "Police Intercept" (red with pulsing animation + PhoneIncoming icon)
  • Success variant → "Plan Executed" (green with stable appearance + ShieldCheck icon)

Changes

  • Updated src/components/ui/toast.tsx to support new success variant and added ToastIcon component
  • Modified src/components/ui/toaster.tsx to render variant-specific icons
  • Added <Toaster /> component to root src/app/layout.tsx to enable toasts across the entire app
  • Temporarily added two test buttons in src/app/dashboard/dashboard-client.tsx to manually trigger and verify both toast variants during development, then removed them before committing

Verification

  • Confirmed destructive toast appears with red styling and pulsing effect
  • Confirmed success toast appears with green styling and check icon
  • Screenshots attached

Closes #139

Checklist

  • Typecheck passes
  • No breaking changes to existing toast usage
  • Temporary test code fully cleaned up

Screenshots

Screenshot 2026-07-09 at 2 49 08 PM Screenshot 2026-07-09 at 2 49 16 PM

@vercel

vercel Bot commented Jul 9, 2026

Copy link
Copy Markdown

@laypatel13 is attempting to deploy a commit to the Gaurav's projects Team on Vercel.

A member of the Team first needs to authorize it.

@secure-flow

secure-flow Bot commented Jul 9, 2026

Copy link
Copy Markdown

🛡️ SecureFlow AI Security Report

⚠️ Detected 3 potential issues matching your code policies. Please review them before merging.

🔴 CRITICAL | Vulnerability in src/components/ui/toaster.tsx

An attacker has injected console.log statements to reveal environment variables from process.env, bypassing access controls in the toaster component.

🛠️ View Remediation Suggestions

["Remove all console.log statements with sensitive data, including environment variables.","Replace console.log with a production-safe logging method, such as Sentry or custom logging module."]


🟠 HIGH | Misconfig in src/components/ui/toaster.tsx

The breach is caused by importing packages from an untrusted external source within a UI component. An attacker could have embedded malicious code within a vulnerable package.

🛠️ View Remediation Suggestions

["Verify package integrity through official registries and documentation.","Implement strict import whitelisting and review package dependencies.","Disable auto-importing of packages and manually approve dependencies on a case-by-case basis."]


🟠 HIGH | Misconfig in src/components/ui/toaster.tsx

The wildcard CORS origin allowed by 'src/components/ui/toaster.tsx' enables an attacker to craft a malicious SSRF/CSRF request, potentially stealing sensitive data or executing unauthorized code.

🛠️ View Remediation Suggestions

[{"fix":"Restrict CORS origins with specific whitelisted domains","type":"CORS configuration"},{"fix":"Implement authentication and authorization checks for cross-origin requests","type":"Authentication and Authorization"},{"fix":"Set the Content-Security-Policy header to restrict allowed source origins","type":"Content Security Policy"}]


@GauravKarakoti GauravKarakoti merged commit 30bc89f into GauravKarakoti:main Jul 9, 2026
5 of 7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Thematic Toast Notifications ("Incoming Calls")

2 participants