1ab59dee0e
Chinwag 4.0.9-cw1
2023-09-19 13:46:25 +10:00
Mike
6f3094cfbd
Merge tag 'v4.0.9'
2023-09-19 13:42:45 +10:00
Claire
a9915c596b
Bump version to v4.0.9
2023-09-05 18:51:01 +02:00
Claire
e3c57f1add
Bump version to v4.0.8
2023-07-31 14:33:14 +02:00
Claire
10fcccedf2
Bump version to v4.0.7
2023-07-21 16:07:35 +02:00
81361b4393
Chinwag v4.0.6-cw2
2023-07-10 19:48:03 +10:00
ebd731e02d
Merge tag 'v4.0.6'
2023-07-09 21:45:33 +10:00
Claire
60b70755be
Bump version to v4.0.6
2023-07-07 19:36:12 +02:00
Claire
237f2adfa6
Fix branding:generate_app_icons failing because of disallowed ICO coder ( #25794 )
2023-07-07 19:36:12 +02:00
9289211e21
Chinwag 4.0.5-cw1
2023-07-07 01:54:09 +10:00
b45ba2d672
Merge tag 'v4.0.5'
2023-07-07 01:51:21 +10:00
Claire
8d7f6550f9
Bump version to v4.0.5
2023-07-06 15:07:46 +02:00
Claire
2119aadf0a
Merge pull request from GHSA-9928-3cp5-93fm
...
* Fix attachments getting processed despite failing content-type validation
* Add a restrictive ImageMagick security policy tailored for Mastodon
* Fix misdetection of MP3 files with large cover art
* Reject unprocessable audio/video files instead of keeping them unchanged
2023-07-06 15:05:05 +02:00
Claire
102ed6e8ca
Merge pull request from GHSA-ccm4-vgcc-73hp
...
* Tighten allowed HTML in oEmbed-based preview cards
* Sanitize preview cards at render time
* Add `sandbox` attribute to preview card iframes
2023-07-06 15:03:33 +02:00
Daniel M Brasil
995ad9602b
Fix tootctl accounts approve --number N not aproving N earliest registrations ( #24605 )
2023-07-06 13:45:58 +02:00
2ea3e29a48
Version suffix bump
2023-07-05 22:15:08 +10:00
d3d4497f09
Merge tag 'v4.0.4'
2023-07-05 21:13:10 +10:00
Claire
214c367095
Bump version to v4.0.4
2023-04-04 12:39:56 +02:00
Claire
448986438e
Change root Chewy strategy to emit a warning instead of erroring out in production mode ( #24327 )
2023-04-04 12:39:56 +02:00
Claire
f75fba0531
Fix crash in tootctl commands making use of parallelization when Elasticsearch is enabled ( #24182 )
2023-04-04 12:39:56 +02:00
Claire
2125dbf610
Bump version to v4.0.3
2023-03-16 22:49:35 +01:00
Claire
d6f1bd2e08
Fix sidekiq jobs not triggering Elasticsearch index updates ( #24046 )
2023-03-14 09:59:56 +01:00
931e70e894
Version bump: v4.0.2-cw2
2022-12-19 22:51:45 +11:00
8b6c96f29a
Updated image assets
2022-12-19 22:37:49 +11:00
b0fa7842db
Merge tag 'v4.0.2'
2022-12-17 22:55:12 +11:00
3cafaf4630
Chinwag version tag
2022-11-16 14:49:22 +11:00
b2448fbe1b
Merge tag 'v3.5.5'
2022-11-16 14:36:21 +11:00
Eugen Rochko
03b0f3ac83
Bump version to 4.0.2 ( #20725 )
2022-11-15 03:57:18 +01:00
Claire
696f7b3608
Bump version to 3.5.5
2022-11-14 22:26:24 +01:00
Eugen Rochko
4415dd6036
Bump version to 4.0.1 ( #20696 )
2022-11-14 22:21:14 +01:00
Eugen Rochko
fb389bd73c
Bump version to 4.0.0 ( #20636 )
2022-11-14 20:27:12 +01:00
Claire
105ab82425
Bump version to 3.5.4
2022-11-14 20:09:16 +01:00
Pierre Bourdon
1659788de4
blurhash_transcoder: prevent out-of-bound reads with <8bpp images ( #20388 )
...
The Blurhash library used by Mastodon requires an input encoded as 24
bits raw RGB data. The conversion to raw RGB using Imagemagick did not
previously specify the desired bit depth. In some situations, this leads
Imagemagick to output in a pixel format using less bpp than expected.
This then manifested as segfaults of the Sidekiq process due to
out-of-bounds read, or potentially a (highly noisy) memory infoleak.
Fixes #19235 .
2022-11-14 11:20:41 +01:00
Eugen Rochko
75299a042c
Bump version to 4.0.0rc4 ( #20634 )
2022-11-14 08:50:14 +01:00
Claire
457c37e47a
Fix index name in fix-duplicates task ( #20632 )
2022-11-14 08:33:48 +01:00
Eugen Rochko
b31afc6294
Fix error when passing unknown filter param in REST API ( #20626 )
...
Fix #19156
2022-11-14 08:06:06 +01:00
Claire
bd806a3090
Update fix-duplicates ( #20502 )
...
Fixes #19133
2022-11-13 21:01:38 +01:00
Arthur Isac
1af482659d
Copied Spaces support from packer .rake ( #20573 )
2022-11-13 20:58:40 +01:00
Eugen Rochko
53028af10e
Bump version to 4.0.0rc3 ( #20378 )
2022-11-11 08:39:38 +01:00
Pierre Bourdon
36bc90e8aa
blurhash_transcoder: prevent out-of-bound reads with <8bpp images ( #20388 )
...
The Blurhash library used by Mastodon requires an input encoded as 24
bits raw RGB data. The conversion to raw RGB using Imagemagick did not
previously specify the desired bit depth. In some situations, this leads
Imagemagick to output in a pixel format using less bpp than expected.
This then manifested as segfaults of the Sidekiq process due to
out-of-bounds read, or potentially a (highly noisy) memory infoleak.
Fixes #19235 .
2022-11-11 07:45:16 +01:00
Yamagishi Kazutoshi
19a8563905
Fix ENV ( #20377 )
2022-11-11 01:33:32 +01:00
F
9feba112a7
Make enable_starttls configurable by envvars ( #20321 )
...
ENABLE_STARTTLS is designed to replace ENABLE_STARTTLS_AUTO by accepting
three values: 'auto' (the default), 'always', and 'never'. If
ENABLE_STARTTLS isn't provided, we fall back to ENABLE_STARTTLS_AUTO. In
this way, this change should be fully backwards compatible.
Resolves #20311
2022-11-10 21:06:21 +01:00
Eugen Rochko
5187e4e758
Bump version to 4.0.0rc2 ( #19831 )
2022-11-06 06:59:56 +01:00
Eugen Rochko
e02812d5b6
Add assets from Twemoji 14.0 ( #19733 )
2022-11-04 16:08:41 +01:00
Claire
1dca08b76f
Fix admin action logs page ( #19649 )
...
* Add tests
* Fix crash when trying to display orphaned action logs
* Add migration for older admin action logs
2022-11-03 16:06:42 +01:00
Claire
e91418436a
Fix mastodon:setup not setting the admin's role properly ( #19670 )
...
* Fix mastodon:setup not setting the admin's role properly
* Set contact username when creating admin account in mastodon:setup
2022-11-02 16:35:21 +01:00
pea-sys
c68e6b52d9
png optimization(loss less) ( #19630 )
2022-11-01 15:06:52 +01:00
Eugen Rochko
8ae0936ddd
Bump version to 4.0.0rc1 ( #19473 )
2022-10-28 00:26:02 +02:00
Eugen Rochko
d7595adbf4
Add --remove-role option to tootctl accounts modify ( #19477 )
...
Fix #19152
2022-10-27 14:31:10 +02:00
Jeong Arm
882e54c786
Fix Ambiguous SQL error on tootctl media refresh ( #19206 )
2022-09-20 23:50:19 +02:00
