release: v0.7.2 - security improvements and UI refactoring

- Update Python version requirement to 3.9+
- Add ZIP compression bomb detection
- Simplify error messages to avoid exposing internals
- Add logging for exceptions in node_builder.py
- Lock dependency versions in requirements.txt
- Add Node.js/npm version requirements in package.json
- Refactor SocialCardGenerator to black/white minimalist design
- Update build number to 2596

Author: ChidcGithub

README.md

@@ -13,8 +13,8 @@
 
 # PyVizAST
 
-[![Version](https://img.shields.io/badge/Version-0.7.1-blue.svg)](https://github.com/ChidcGithub/PyVizAST)
-[![Python](https://img.shields.io/badge/Python-3.8%2B-brightgreen.svg)](https://www.python.org/)
+[![Version](https://img.shields.io/badge/Version-0.7.2-blue.svg)](https://github.com/ChidcGithub/PyVizAST)
+[![Python](https://img.shields.io/badge/Python-3.9%2B-brightgreen.svg)](https://www.python.org/)
 [![License](https://img.shields.io/badge/License-GPL%20v3-blue.svg)](LICENSE)
 [![Platform](https://img.shields.io/badge/Platform-Windows%20%7C%20Linux%20%7C%20macOS-lightgrey.svg)](https://github.com/ChidcGithub/PyVizAST)
 [![Status](https://img.shields.io/badge/Status-stable-brightgreen.svg)](https://github.com/ChidcGithub/PyVizAST)
@@ -82,7 +82,7 @@ PyVizAST/
 ## Installation
 
 ### Prerequisites
-- Python 3.8+
+- Python 3.9+
 - Node.js 18+ (optional, for frontend)
 
 ### Quick Start
@@ -213,6 +213,50 @@ Contributions are welcome. Please submit pull requests to the main repository.
 
 <summary>Version History</summary>
 
+<details>
+<summary>v0.7.2 (2026-03-15)</summary>
+
+**Bug Fixes & Security Improvements**
+
+**Python Version Requirement:**
+- Updated minimum Python version from 3.8 to 3.9 (required for `ast.unparse()`)
+
+**Security Improvements:**
+- Added ZIP compression bomb detection:
+  - Maximum uncompressed size limit (500MB)
+  - Maximum compression ratio check (100x)
+  - Individual file size limit (5MB)
+- Simplified error messages to avoid exposing internal implementation details
+
+**Code Quality:**
+- Added logging for exceptions in `node_builder.py`
+- Added user feedback for keyboard interrupt in `run.py`
+- Locked dependency versions in `requirements.txt` (fastapi, pydantic, uvicorn, etc.)
+- Added Node.js/npm version requirements in `package.json` (Node.js >= 18, npm >= 9)
+
+**UI Improvements:**
+- Refactored Social Card Generator to black/white minimalist design
+- Simplified card visual effects with clean geometric AST visualization
+- Improved consistency with project's overall monochrome theme
+
+**Verification:**
+- Confirmed all Map.get() calls in `ASTVisualizer3D.js` have proper null checks
+- Confirmed `ModuleInfo` dataclass has correct default values
+
+**Files Modified:**
+- `run.py` - Python version check, keyboard interrupt handling
+- `backend/ast_parser/node_builder.py` - Exception logging
+- `backend/project_analyzer/scanner.py` - ZIP bomb detection
+- `backend/main.py` - Simplified error messages
+- `requirements.txt` - Version constraints
+- `frontend/package.json` - Node.js version requirements, version bump
+- `backend/config.py` - Version bump
+- `frontend/src/components/SocialCardGenerator.js` - Refactored to black/white minimalist design
+- `frontend/src/App.css` - Updated social card styles to match project theme
+- `README.md` - Version badge, Python requirement, changelog
+
+</details>
+
 <details>
 <summary>v0.7.1 (2026-03-14)</summary>
 

backend/ast_parser/node_builder.py

@@ -5,11 +5,14 @@
 @link: github.com/chidcGithub
 """
 import ast
+import logging
 from typing import Dict, List, Optional, Any
 
 from ..models.schemas import ASTNode, NodeType
 from .node_styles import NODE_STYLES
 
+logger = logging.getLogger(__name__)
+
 
 class NodeBuilder:
     """Builder class for creating AST nodes"""
@@ -570,7 +573,8 @@ def _get_default_value_string(self, default: ast.AST) -> str:
         """Get default value as string representation"""
         try:
             return ast.unparse(default) if hasattr(ast, 'unparse') else repr(default)
-        except Exception:
+        except Exception as e:
+            logger.debug(f"Failed to unparse default value: {e}")
             return "..."
 
     def _contains_yield(self, node: ast.AST) -> bool:

backend/config.py

@@ -3,6 +3,6 @@
 All version numbers are managed in this single file for easy updates.
 """
 
-VERSION = "0.7.1"
-BUILD = "2522"
+VERSION = "0.7.2"
+BUILD = "2596"
 FULL_VERSION = f"v{VERSION}"

backend/main.py

@@ -159,29 +159,25 @@ async def general_exception_handler(request: Request, exc: Exception):
     """Handle all uncaught exceptions"""
     log_exception(logger, exc, f"Request path: {request.url.path}")
 
-    # Extract error type and message for better user feedback
-    error_type = type(exc).__name__
-    error_message = str(exc) if str(exc) else "Unknown error occurred"
-    
-    # Provide user-friendly messages based on error type
+    # Provide user-friendly messages without exposing internal details
     if isinstance(exc, TypeError):
-        detail = f"Type error during analysis: {error_message}. This may indicate a bug in the code being analyzed."
+        detail = "An internal type error occurred. The code structure may be unexpected."
     elif isinstance(exc, AttributeError):
-        detail = f"Attribute error during analysis: {error_message}. The code structure may be unexpected."
+        detail = "An internal attribute error occurred. The code structure may be unexpected."
     elif isinstance(exc, ValueError):
-        detail = f"Value error during analysis: {error_message}"
+        detail = "An invalid value was encountered during analysis."
     elif isinstance(exc, KeyError):
-        detail = f"Key error during analysis: {error_message}. Some expected data is missing."
+        detail = "Some expected data is missing in the analysis."
     elif isinstance(exc, RecursionError):
         detail = "Code structure is too deeply nested to analyze. Consider simplifying the code."
     elif isinstance(exc, MemoryError):
         detail = "Not enough memory to analyze this code. Try with a smaller file."
     else:
-        detail = f"Analysis error ({error_type}): {error_message}"
+        detail = "An unexpected error occurred during analysis. Please try again."
 
     return JSONResponse(
         status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
-        content={"detail": detail, "error_type": error_type}
+        content={"detail": detail}
     )
 
 

backend/project_analyzer/scanner.py

@@ -52,7 +52,9 @@ class ProjectScanner:
     def __init__(self, ignore_dirs: Optional[Set[str]] = None,
                  ignore_patterns: Optional[Set[str]] = None,
                  max_file_size: int = 5 * 1024 * 1024,  # 5MB
-                 max_files: int = 1000):
+                 max_files: int = 1000,
+                 max_zip_size: int = 500 * 1024 * 1024,  # 500MB max uncompressed size
+                 max_zip_ratio: float = 100.0):  # Max compression ratio
         """
         Initialize the scanner
         
@@ -61,11 +63,15 @@ def __init__(self, ignore_dirs: Optional[Set[str]] = None,
             ignore_patterns: File patterns to ignore
             max_file_size: Maximum file size in bytes
             max_files: Maximum number of files
+            max_zip_size: Maximum total uncompressed size of ZIP
+            max_zip_ratio: Maximum compression ratio (uncompressed/compressed)
         """
         self.ignore_dirs = ignore_dirs or DEFAULT_IGNORE_DIRS
         self.ignore_patterns = ignore_patterns or DEFAULT_IGNORE_PATTERNS
         self.max_file_size = max_file_size
         self.max_files = max_files
+        self.max_zip_size = max_zip_size
+        self.max_zip_ratio = max_zip_ratio
 
     def scan_zip(self, zip_path: str, project_name: Optional[str] = None) -> Tuple[ProjectScanResult, str]:
         """
@@ -86,6 +92,37 @@ def scan_zip(self, zip_path: str, project_name: Optional[str] = None) -> Tuple[P
         try:
             # Extract ZIP file with path traversal protection
             with zipfile.ZipFile(zip_path, 'r') as zip_ref:
+                # Check for zip bomb (compression bomb) before extracting
+                total_uncompressed_size = 0
+                compressed_size = 0
+                
+                for info in zip_ref.infolist():
+                    total_uncompressed_size += info.file_size
+                    compressed_size += info.compress_size
+                    
+                    # Check individual file size
+                    if info.file_size > self.max_file_size:
+                        raise RuntimeError(
+                            f"ZIP contains file exceeding size limit: {info.filename} "
+                            f"({info.file_size} bytes > {self.max_file_size} bytes)"
+                        )
+                
+                # Check total uncompressed size
+                if total_uncompressed_size > self.max_zip_size:
+                    raise RuntimeError(
+                        f"ZIP total uncompressed size ({total_uncompressed_size} bytes) "
+                        f"exceeds limit ({self.max_zip_size} bytes)"
+                    )
+                
+                # Check compression ratio (potential zip bomb indicator)
+                if compressed_size > 0:
+                    ratio = total_uncompressed_size / compressed_size
+                    if ratio > self.max_zip_ratio:
+                        raise RuntimeError(
+                            f"ZIP compression ratio ({ratio:.1f}) exceeds limit ({self.max_zip_ratio}). "
+                            "This may be a compression bomb."
+                        )
+                
                 # Check for path traversal attacks before extracting
                 for member in zip_ref.namelist():
                     # Skip entries that are absolute paths (Unix or Windows style)

frontend/package-lock.json

@@ -1,8 +1,12 @@
 {
   "name": "pyvizast-frontend",
-  "version": "0.7.1",
+  "version": "0.7.2",
   "author": "Chidc (github.com/chidcGithub)",
   "private": true,
+  "engines": {
+    "node": ">=18.0.0",
+    "npm": ">=9.0.0"
+  },
   "dependencies": {
     "@mediapipe/tasks-vision": "^0.10.32",
     "@monaco-editor/react": "^4.6.0",