bss
/
pleroma
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • 9da4f89b7b Merge branch 'tusooa/lint' into 'develop' Haelwenn 2023-08-31 22:24:30 +0000
  • 3c5ecca377
         Skip changelog tusooa 2023-08-30 20:37:45 -0400
  • 3d09bc320e
         Make lint happy tusooa 2023-08-30 20:34:16 -0400
  • 1e685c8302 Merge branch 'csp-flash' into 'develop' Haelwenn 2023-08-16 13:37:49 +0000
  • d838d1990b Apply lanodan's suggestion(s) to 1 file(s) Haelwenn 2023-08-16 13:34:32 +0000
  • b729a8b140 Merge branch 'fix-dockerfile-perms' into 'develop' tusooa 2023-08-10 00:42:29 +0000
  • c298e0165c Fix config ownership in dockerfile to pass restriction test Cat pony Black 2023-08-05 13:10:35 +0200
  • 4e355b8595 Merge branch 'disable-xml-entities-completely' into 'develop' Haelwenn 2023-08-06 08:27:27 +0000
  • 48b1e9bdc7 Completely disable xml entity resolution mae 2023-08-05 14:13:49 +0200
  • 17c336de66 Merge branch 'docs/gentoo-otp-intro' into 'develop' Haelwenn 2023-08-05 11:04:32 +0000
  • d0f7a5c4f5 Merge branch 'mergeback/2.5.4' into 'develop' Haelwenn 2023-08-05 08:13:03 +0000
  • 1f4be2b349 Merge branch 'releases/2.5.4' into 'stable' Haelwenn 2023-08-05 08:12:25 +0000
  • 4099ddb3dc Mergeback release 2.5.4 Haelwenn (lanodan) Monnier 2023-08-05 08:27:42 +0200
  • b631180b38 Release 2.5.4 Haelwenn (lanodan) Monnier 2023-08-05 08:27:42 +0200
  • cc848b78dc Document and test that XXE processing is disabled Mark Felder 2023-08-04 22:44:09 -0400
  • 77d57c974a Add unit test for external entity loading FloatingGhost 2023-08-04 22:24:32 +0100
  • fc10e07ffb Prevent XML parser from loading external entities Mae 2023-08-04 22:24:17 +0100
  • 6d48b0f1a9 Document and test that XXE processing is disabled Mark Felder 2023-08-04 22:44:09 -0400
  • 307692cee8 Add unit test for external entity loading FloatingGhost 2023-08-04 22:24:32 +0100
  • ca0859b90f Prevent XML parser from loading external entities Mae 2023-08-04 22:24:17 +0100
  • 0e321698d2 gentoo_otp_en.md: Indicate which install method it covers Haelwenn (lanodan) Monnier 2023-08-04 17:09:50 +0200
  • ff2f3862ab Merge branch 'release/2.5.3' into 'stable' Haelwenn 2023-08-04 09:45:48 +0000
  • 1062185ba0 Merge branch 'mergeback/2.5.3' into 'develop' Haelwenn 2023-08-04 09:38:01 +0000
  • 6a0fd77c48 Release 2.5.53 Haelwenn (lanodan) Monnier 2023-08-04 05:13:28 +0200
  • 65ef8f19c5 release_runtime_provider_test: chmod config for hardened permissions Haelwenn (lanodan) Monnier 2023-08-04 07:16:50 +0200
  • 9f0ad901ed changelog: Entry for config permissions restrictions Haelwenn (lanodan) Monnier 2023-06-22 01:00:25 +0200
  • 69caedc591 instance gen: Reduce permissions of pleroma directories and config files Haelwenn (lanodan) Monnier 2023-06-22 00:58:05 +0200
  • 8cc8100120 Config: Restrict permissions of OTP config file Haelwenn (lanodan) Monnier 2023-06-22 00:46:52 +0200
  • 57f7453748 Release 2.5.3 Haelwenn (lanodan) Monnier 2023-08-04 05:13:28 +0200
  • 5ac2b7417d test: Fix warnings Haelwenn (lanodan) Monnier 2023-08-04 09:16:08 +0200
  • c37561214a Force the use of amd64 runners for jobs using ci-base Haelwenn (lanodan) Monnier 2023-08-04 06:49:19 +0200
  • 76e408e42d release_runtime_provider_test: chmod config for hardened permissions Haelwenn (lanodan) Monnier 2023-08-04 07:16:50 +0200
  • 22df32b3f5 changelog: Entry for config permissions restrictions Haelwenn (lanodan) Monnier 2023-06-22 01:00:25 +0200
  • bd7381f2f4 instance gen: Reduce permissions of pleroma directories and config files Haelwenn (lanodan) Monnier 2023-06-22 00:58:05 +0200
  • 4befb3b1d0 Config: Restrict permissions of OTP config file Haelwenn (lanodan) Monnier 2023-06-22 00:46:52 +0200
  • 2c79509453 Resolve information disclosure vulnerability through emoji pack archive download endpoint Mark Felder 2023-08-03 13:08:37 -0400
  • 18a0c923d0 Resolve information disclosure vulnerability through emoji pack archive download endpoint Mark Felder 2023-08-03 13:08:37 -0400
  • 819fccb7d1 Merge branch 'tusooa/3154-attachment-type-check' into 'develop' Haelwenn 2023-08-03 10:01:32 +0000
  • b08cbe76f1 Merge branch 'fix/2927-disallow-unauthenticated-access' into 'develop' tusooa 2023-07-28 15:05:46 +0000
  • 11ce81d4af add changelog entry faried nawaz 2023-07-28 18:49:05 +0500
  • e5e76ec445 cleaner ecto query to handle restrict_unauthenticated for activities Faried Nawaz 2023-02-10 01:32:32 +0500
  • dc4de79d43 status context: perform visibility check on activities around a status faried nawaz 2022-12-07 22:37:50 +0500
  • ea4225a646
         Restrict attachments to only uploaded files only tusooa 2023-07-18 18:39:59 -0400
  • 93ad16cca0 Merge branch '2023-06-deps-update' into 'develop' Haelwenn 2023-07-17 20:37:47 +0000
  • e38207162b Merge branch 'tusooa/2775-emoji-policy' into 'develop' Haelwenn 2023-07-07 16:27:30 +0000
  • 1459d64508
         Make regex-to-string descriptor reusable tusooa 2023-07-07 07:09:35 -0400
  • ba3aa4f86d
         Fix edge cases tusooa 2023-06-20 10:14:01 -0400
  • 0d914e17be
         Add changelog tusooa 2023-06-13 14:56:16 -0400
  • d670dbdbd3
         Test that unicode emoji reactions are not affected tusooa 2023-06-13 14:55:27 -0400
  • ef8a6c539a
         Make EmojiPolicy aware of custom emoji reactions tusooa 2023-06-13 14:53:20 -0400
  • 20d193c91d
         Improve config examples for EmojiPolicy tusooa 2023-02-28 12:14:48 -0500
  • 18a8378beb
         Update config cheatsheet tusooa 2023-02-28 12:05:54 -0500
  • f50422c380
         Move emoji_policy.ex to the right place tusooa 2023-02-28 11:48:34 -0500
  • 7eb8abf7bb
         EmojiPolicy: Implement delist tusooa 2023-02-28 11:47:53 -0500
  • 80ce6482f6
         EmojiPolicy: implement remove by shortcode tusooa 2023-02-28 10:51:56 -0500
  • 28ff828caa
         Add emoji policy to remove emojis matching certain urls tusooa 2023-02-28 10:40:24 -0500
  • 7da6a82dbd Merge branch 'deprecate-scrobbles' into 'develop' tusooa 2023-07-04 02:46:10 +0000
  • 624a5ccb2e Merge branch 'hotfix/docs-broken-links' into 'develop' Haelwenn 2023-07-04 02:26:19 +0000
  • 0c3709173f docs: Fix broken links Haelwenn (lanodan) Monnier 2023-07-04 04:19:25 +0200
  • 53f4d6f238 Merge branch 'fix/pipeline-triggers' into 'develop' Haelwenn 2023-07-04 02:04:24 +0000
  • 3d79ceb23a Deprecate audio scrobbling Haelwenn (lanodan) Monnier 2023-07-04 03:34:51 +0200
  • 8c3363a5e7 CI: Use CI_JOB_TOKEN for cross-repo pipeline triggers Haelwenn (lanodan) Monnier 2023-07-04 03:23:32 +0200
  • 10249d1e42 CI: Let curl return non-0 on http failure code Haelwenn (lanodan) Monnier 2023-07-04 03:03:41 +0200
  • 6fbbf80800 Merge branch 'gentoo_otp' into 'develop' Haelwenn 2023-07-03 21:04:23 +0000
  • 2b9cd25cf4 Merge branch 'tusooa/media-altdomain' into 'develop' Haelwenn 2023-07-02 21:30:16 +0000
  • 0262916978 Merge branch 'testfix/system-config-use' into 'develop' Haelwenn 2023-07-02 21:28:15 +0000
  • a31a4c522f Merge branch 'tusooa/3131-handle-report-from-deactivated-user' into 'develop' Haelwenn 2023-07-02 21:27:15 +0000
  • 379590d438 Merge branch 'tusooa/3142-featured-collection-shouldnt-break-user-fetch' into 'develop' Haelwenn 2023-07-02 21:25:45 +0000
  • 8cf231c0d1 Merge branch 'tusooa/3151-amd64-runner' into 'develop' Haelwenn 2023-07-02 20:20:49 +0000
  • 6e4de2383f
         Fix handling report from a deactivated user tusooa 2023-07-02 11:15:34 -0400
  • a1621839cc
         Fix user fetch completely broken if featured collection is not in a supported form tusooa 2023-07-02 11:03:09 -0400
  • 63b9f76782
         Force the use of amd64 runners for jobs using ci-base tusooa 2023-07-01 23:25:04 -0400
  • 48e490cd58 Merge branch 'bugfix/full-revert-media-host-validation' into 'develop' tusooa 2023-07-01 21:54:18 +0000
  • bf2b4b9400 README.md: Update packaging state (GURU, AUR) Haelwenn (lanodan) Monnier 2023-06-27 21:08:47 +0200
  • 043a00991d Merge branch 'instance-nodeinfo-metadata' into 'develop' Haelwenn 2023-06-27 18:58:04 +0000
  • ae0ca49451 Merge branch 'tusooa/3119-bio-update' into 'develop' Haelwenn 2023-06-27 18:49:43 +0000
  • 41f2ee69a8 Merge branch 'from/upstream-develop/tusooa/backup-status' into 'develop' Haelwenn 2023-06-27 12:08:11 +0000
  • d7e049d5e8 router: Fix usage of globs Haelwenn (lanodan) Monnier 2023-06-27 02:48:50 +0200
  • 3a67b8f287 endpoint: Use custom Multipart module for dynamic configuration Haelwenn (lanodan) Monnier 2023-06-27 02:08:49 +0200
  • 9e69adf76f mix: Remove override on plug Haelwenn (lanodan) Monnier 2023-06-27 01:52:40 +0200
  • aa4c4ab2a0 mix: 2023-06 deps update Haelwenn (lanodan) Monnier 2023-06-27 00:23:21 +0200
  • 8bc51288be release_runtime_provider_test: Explicitely use non-existant config file Haelwenn (lanodan) Monnier 2023-06-27 00:06:58 +0200
  • 4e26fbda08 Merge branch 'weblate-extract' into 'develop' Haelwenn 2023-06-22 19:40:18 +0000
  • dd9f8150fc Merge Revert "Merge branch 'validate-host' into 'develop'" Haelwenn (lanodan) Monnier 2023-06-22 21:24:58 +0200
  • 4367579949 Merge branch 'fix/bypass-authorized-fetch-mode-json' into 'develop' Haelwenn 2023-06-22 10:35:56 +0000
  • 8bf8906045 Extract translatable strings weblate-extractor 2023-06-22 06:09:47 +0000
  • 994bfc4c09
         Add changelog entry Sean King 2023-06-21 23:13:16 -0600
  • a5a354a36e
         Prevent bypassing authorized fetch mode with a json file Sean King 2023-06-21 23:10:56 -0600
  • 8fa435f370 Add "potentially outdated" notice in non-English versions tusooa 2023-06-14 21:48:10 +0000
  • 937fa36ec4 changelog.d/gentoo_otp.skip: Doc-only MR Haelwenn (lanodan) Monnier 2023-06-13 15:47:48 +0200
  • eddfd41c1f gentoo_en: Reference packaged installation Haelwenn (lanodan) Monnier 2023-06-13 15:41:09 +0200
  • fb19f0d844 gentoo_otp_en: Add packaged installation documentation Haelwenn (lanodan) Monnier 2023-06-13 15:40:48 +0200
  • 4392fff212 otp_vs_from_source*: Acknowledge distro packages Haelwenn (lanodan) Monnier 2023-06-13 15:40:12 +0200
  • d5a7079f42 media_graphics_packages.md: Fix markdown syntax Haelwenn (lanodan) Monnier 2023-06-13 15:39:20 +0200
  • 589301ce06 Merge branch 'no_new_privs' into 'develop' lain 2023-06-13 13:34:21 +0000
  • a663b73634 Add no_new_privs to OpenRC service files Haelwenn (lanodan) Monnier 2023-06-13 12:45:18 +0200
  • fdb5bec431 Merge branch 'unused_indexes' into 'develop' lain 2023-06-11 19:48:23 +0000
  • d65a8bcd2d Merge branch 'fix-otp-documentation' into 'develop' lain 2023-06-11 16:45:53 +0000
  • 4e6ea7cc91 Merge branch 'tusooa/3054-banned-delete' into 'develop' lain 2023-06-11 13:17:12 +0000
  • d93b47cf2c Merge branch 'pleroma-double_mentions' into 'develop' lain 2023-06-11 13:04:59 +0000