Commit graph

12712 commits

Author SHA1 Message Date
d3d4497f09 Merge tag 'v4.0.4' 2023-07-05 21:13:10 +10:00
Claire
214c367095 Bump version to v4.0.4 2023-04-04 12:39:56 +02:00
Claire
05c45e9eeb Fix unescaped user input in LDAP query (#24379)
Fix CVE-2023-28853
2023-04-04 12:39:56 +02:00
Claire
448986438e Change root Chewy strategy to emit a warning instead of erroring out in production mode (#24327) 2023-04-04 12:39:56 +02:00
Claire
274bb193b2 Fix invalid/expired invites being processed on sign-up (#24337) 2023-04-04 12:39:56 +02:00
Sai
46b91cd817 Update Ruby to 3.0.6 (#24333) 2023-04-04 12:39:56 +02:00
mhkhung
acc277a152 3.0.5 version of cimg/ruby:3.0-node upgraded to node 18 (#21873)
Node 18 caused build to fail
2023-04-04 12:39:56 +02:00
Robert R George
971e8b8f5f Wrap db:setup with Chewy.strategy(:mastodon) (#24302) 2023-04-04 12:39:56 +02:00
Claire
aa37eeadf3 Fix user archive takeout when using OpenStack Swift or S3 providers with no ACL support (#24200) 2023-04-04 12:39:56 +02:00
Claire
f75fba0531 Fix crash in tootctl commands making use of parallelization when Elasticsearch is enabled (#24182) 2023-04-04 12:39:56 +02:00
Claire
2125dbf610 Bump version to v4.0.3 2023-03-16 22:49:35 +01:00
Claire
9715a211c7 Add warning for object storage misconfiguration (#24137) 2023-03-16 22:49:35 +01:00
Eugen Rochko
a6217bd035 Change user backups to use expiring URLs for download when possible (#24136) 2023-03-16 22:49:35 +01:00
Claire
3e9978071b Update changelog 2023-03-16 22:05:00 +01:00
Claire
8236c3affc Update changelog 2023-03-16 12:04:15 +01:00
Nick Schonning
43a16e43ba Skip pushing containers on forks (#24106) 2023-03-16 12:02:31 +01:00
Renaud Chaput
520377a609 Use Github Container Registry as the official container image source (#24113) 2023-03-16 12:01:41 +01:00
Nick Schonning
0941230e22 Skip Docker CI Login/Push on forks (#23564) 2023-03-16 12:01:41 +01:00
Renaud Chaput
98c59c1d58 Push Docker images to Github Container Registry as well (#24101) 2023-03-16 12:01:39 +01:00
Claire
2c3cb903ad Fix misleading error code when receiving invalid WebAuthn credentials (#23568) 2023-03-16 11:58:46 +01:00
Claire
86924c344d Fix incorrect post links in strikes when the account is remote (#23611) 2023-03-16 11:58:34 +01:00
Claire
f834fdaf6a Fix dashboard crash on ElasticSearch server error (#23751) 2023-03-16 11:57:23 +01:00
Claire
1da72b41c7 Update changelog 2023-03-14 10:05:48 +01:00
Claire
97e19e8802 Add mail headers to avoid auto-replies (#23597) 2023-03-14 10:00:38 +01:00
Claire
bd43f7d4cc Add lang tag to native language names in language picker (#23749) 2023-03-14 10:00:28 +01:00
Thijs Kinkhorst
c44ddbdb3e Fix paths with url-encoded @ to redirect to the correct path (#23593) 2023-03-14 10:00:19 +01:00
Christian Schmidt
4ea4c3f49c Unescape HTML entities (#24019) 2023-03-14 10:00:13 +01:00
Christian Schmidt
419bd9281d Do not strip tags from Setting.site_short_description (#23975) 2023-03-14 10:00:07 +01:00
Claire
d6f1bd2e08 Fix sidekiq jobs not triggering Elasticsearch index updates (#24046) 2023-03-14 09:59:56 +01:00
Rodion Borisov
c2d38ef0f1 Center the text itself in upload area (#24029) 2023-03-14 09:59:46 +01:00
Claire
ad77e8a2fb Fix /api/v1/streaming sub-paths not being redirected (#23988) 2023-03-14 09:59:38 +01:00
Eugen Rochko
0f2e8476e0 Fix pgBouncer resetting application name on every transaction (#23958) 2023-03-14 09:59:30 +01:00
Claire
290d02e936 Fix original account being unfollowed on migration before the follow request could be sent (#21957) 2023-03-14 09:59:00 +01:00
Claire
11f04e3b97 Fix unconfirmed accounts being registered as active users (#23803) 2023-03-14 09:58:47 +01:00
Claire
76c96cdd72 Fix error when displaying post history of a trendable post in the admin interface (#23574) 2023-03-14 09:58:34 +01:00
Claire
c22c4247d9 Fix server error when failing to follow back followers from /relationships (#23787) 2023-03-14 09:58:26 +01:00
Claire
348599a543 Fix inefficiency when searching accounts per username in admin interface (#23801) 2023-03-14 09:58:13 +01:00
Botao Wang
0e3f06da99 Fix sidebar cut-off on small screens in admin UI (#23764) 2023-03-14 09:58:05 +01:00
Dean Bassett
cc80f4ed9b Fix case-sensitive check for previously used hashtags (#23526) 2023-03-14 09:57:10 +01:00
Claire
e2103c9175 Fix “Remove all followers from the selected domains” being more destructive than it claims (#23805) 2023-03-14 09:50:57 +01:00
931e70e894 Version bump: v4.0.2-cw2 2022-12-19 22:51:45 +11:00
8b6c96f29a Updated image assets 2022-12-19 22:37:49 +11:00
745f447bfd Replace Mastodon logo 2022-12-18 00:48:23 +11:00
b0fa7842db Merge tag 'v4.0.2' 2022-12-17 22:55:12 +11:00
3cafaf4630 Chinwag version tag 2022-11-16 14:49:22 +11:00
b2448fbe1b Merge tag 'v3.5.5' 2022-11-16 14:36:21 +11:00
Eugen Rochko
03b0f3ac83
Bump version to 4.0.2 (#20725) 2022-11-15 03:57:18 +01:00
Eugen Rochko
43b0b2f3f4
Fix wrong directive unsafe-wasm-eval to wasm-unsafe-eval (#20729) 2022-11-15 03:39:06 +01:00
prplecake
b46b7c3d5e
Use "unsafe-wasm-eval" instead of "unsafe-eval" in script-src CSP (#20606)
* Add "unsafe-eval" to script-src CSP

* Use 'unsafe-wasm-eval' instead of 'unsafe-eval'
2022-11-15 03:22:38 +01:00
dependabot[bot]
b59683c156
Bump nokogiri from 1.13.8 to 1.13.9 (#20041)
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.13.8 to 1.13.9.
- [Release notes](https://github.com/sparklemotion/nokogiri/releases)
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.13.8...v1.13.9)

---
updated-dependencies:
- dependency-name: nokogiri
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-15 03:19:56 +01:00