MustardUI is an extension that provides an intuitive and easy-to-use user interface for human models.
The main features are:
For creators of models, be sure to follow the Developer Guide!
This extension does not require special permissions.
The updater.py
makes no sense to include & should be removed.
This add-on uses backslash literals as path separators which won't work on Linux or macOS.
Use os.sep
for the native path separator or utility functions such as os.path.join
or the pathlib
module.
Using __name__
to lookup add-on preferences is no longer valid.
See how to use __package__
instead.
This add-on uses eval()
/ exec()
which are potentially insecure
when input is not completely under the developers control
(when values from a blend-file are included for example).
Where possible, these functions should be avoided:
getattr(data, attr)
& setattr(data, attr, value)
can be an alternative in some cases.pickle
module or JSON should be used instead.ast
module (ast.pare
& ast.literal_eval
).This add-on appliers to be including names in literal quotes without any escaping. Names may themselves contain quotes or other characters that need to be escaped.
To resolve:
repr(...)
or the !r
conversion flag for f-strings or str.format
.bpy.utils.escape_identifier(..)
.This add-on uses str.strip
, str.lstrip
or str.rstrip
,
taking multiple characters that seem to assume order.
All characters are stripped in any order.
So "test_nojs.json".strip(".json")
results in "test_"
, not test_nojs
.
Use str.removeprefix
& str.removesuffix
instead.
Thank you very much for the review! I tried to address most of the issues mentioned.
If I may, I just have some comments on some parts.
Thanks again.
Hey everyone,
Just a heads-up about a recent change regarding the licensing of add-ons on the Blender extension platform. Moving forward, all add-ons will need to be released under the GNU/GPL 3.0 license (SPDX:GPL-3.0-or-later). This is mainly to keep things simple and consistent across the board.
Previously, we accepted various licenses as long as they were compatible with Blender’s distribution. However, to avoid any confusion and streamline the process, all add-ons using the bpy API should now be presented as GPL 3 (the same license the Blender bundle is distributed). Regardless of whether the original code was under GPL 2, or something else like MIT or ZLIB.
Existing add-ons versions won't be affected. However, new updates will need to comply to the revised requirements.
Thanks for understanding, and feel free to reach out if you have any questions.
Sign in to comment.
Ready for review