Merge branch 'main' into 5.0-dev

Author: abidlabs

.changeset/dark-rings-lie.md

@@ -0,0 +1,5 @@
+---
+"gradio": minor
+---
+
+feat:test semgrep ci

.changeset/tall-impalas-reply.md

@@ -0,0 +1,5 @@
+---
+"website": minor
+---
+
+feat:Use latest lite wheel on website

.github/workflows/semgrep.yml

@@ -1,4 +1,4 @@
-name: Semgrep
+name: semgrep ci
 
 on:
   workflow_run:
@@ -43,9 +43,7 @@ jobs:
         with:
           repository: ${{ steps.json.outputs.source_repo }}
           ref: ${{ steps.json.outputs.sha }}
-      - run: semgrep ci
-        env:
-          SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN2 }}
+      - run: semgrep ci --config .github/workflows/semgrep_rules.yaml
   update-status:
     permissions:
       actions: read

.github/workflows/semgrep_rules.yaml

@@ -0,0 +1,18 @@
+rules:
+  - id: detect-os-system-calls
+    pattern: os.system(...)
+    message: "Unsafe use of os.system(). Consider using subprocess.run() instead."
+    languages: [python]
+    severity: WARNING
+
+  - id: detect-sql-injection
+    pattern: 'execute("SELECT * FROM " + $TABLE)'
+    message: "Potential SQL injection detected. Use parameterized queries."
+    languages: [python]
+    severity: ERROR
+
+  - id: detect-eval-usage
+    pattern: eval(...)
+    message: "Use of eval() detected. This can be dangerous if used with untrusted input."
+    languages: [python]
+    severity: ERROR

js/_website/src/lib/components/Demos.svelte

@@ -1,4 +1,6 @@
 <script lang="ts">
+	import WHEEL from "$lib/json/wheel.json";
+
 	export let name: string;
 	export let code: string;
 	export let highlighted_code: string;