85ff31b904
[Security] Bump omniauth from 1.9.0 to 1.9.1 ( #13229 )
...
Bumps [omniauth](https://github.com/omniauth/omniauth ) from 1.9.0 to 1.9.1. **This update includes a security fix.**
- [Release notes](https://github.com/omniauth/omniauth/releases )
- [Commits](https://github.com/omniauth/omniauth/compare/v1.9.0...v1.9.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-21 03:23:25 +01:00
221eda646b
Migrate Rails ujs as required for Rails 6 Upgrade. ( #13280 )
...
* Update yarn.lock
* Update package.json
* Update public.js
* Update admin.js
* Update log_out.js
* Update common.js
2020-03-21 03:14:50 +01:00
44292a6952
Add link to bookmarks in web UI dropdown ( #13273 )
2020-03-21 03:14:28 +01:00
8c42e0b53c
Make bookmarks also searchable ( #13271 )
2020-03-21 03:14:10 +01:00
8758221e73
Fix frontend crash when deleting announcements ( #13283 )
...
This two-line change fixes a crash in the front end that occurred
under the following circumstances:
* A server had more than one announcement,
* A user was displaying the announcements, and
* An announcement was deleted (or unpublished, which amounts to
the same thing.)
As might be expected, the bug was caused by attempting to access a
notification using an index value outside the bounds of the existing
announcements. Specifically, in two places. First,
`_markAnnouncementAsRead` attempts to modify announcements based on
the current index. This is what caused the front end crash. Second,
when rendering the `Announcements` component, the code paginates the
announcements and displays the current one. This did not cause a
crash, but caused the front end to confusingly display a blank
announcement (in situations that would have caused a crash) with no
way for the user to navigate back to previous announcements.
This commit fixes both issues by adding a check to ensure that the
code never attempts to access an announcement with an index greater
than or equal to the number of announcements present.
2020-03-21 03:10:42 +01:00
b5dace62b0
Decommission support for Ruby 2.4 ( #13287 )
...
* Update Gemfile
* Update README.md
2020-03-21 03:10:24 +01:00
61f35c1a8a
Fix reported accounts not being whitelisted when resolving a spamcheck report ( #13289 )
2020-03-21 03:08:09 +01:00
c39ad4ab2f
Bump capistrano from 3.11.2 to 3.12.1 ( #13264 )
...
* Bump capistrano from 3.11.2 to 3.12.1
Bumps [capistrano](https://github.com/capistrano/capistrano ) from 3.11.2 to 3.12.1.
- [Release notes](https://github.com/capistrano/capistrano/releases )
- [Commits](https://github.com/capistrano/capistrano/compare/v3.11.2...v3.12.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
* Bump capistrano from 3.11.2 to 3.12.1
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh>
2020-03-18 21:48:03 +09:00
0b33d2b0f7
Bump webmock from 3.8.0 to 3.8.3 ( #13265 )
...
Bumps [webmock](https://github.com/bblimke/webmock ) from 3.8.0 to 3.8.3.
- [Release notes](https://github.com/bblimke/webmock/releases )
- [Changelog](https://github.com/bblimke/webmock/blob/master/CHANGELOG.md )
- [Commits](https://github.com/bblimke/webmock/compare/v3.8.0...v3.8.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 20:16:46 +09:00
e2b816b4da
Bump sidekiq-scheduler from 3.0.0 to 3.0.1 ( #13233 )
...
Bumps [sidekiq-scheduler](https://github.com/moove-it/sidekiq-scheduler ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/moove-it/sidekiq-scheduler/releases )
- [Commits](https://github.com/moove-it/sidekiq-scheduler/compare/v3.0.0...v3.0.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 20:02:34 +09:00
1780f00948
Bump simple_form from 5.0.1 to 5.0.2 ( #13231 )
...
Bumps [simple_form](https://github.com/plataformatec/simple_form ) from 5.0.1 to 5.0.2.
- [Release notes](https://github.com/plataformatec/simple_form/releases )
- [Changelog](https://github.com/heartcombo/simple_form/blob/master/CHANGELOG.md )
- [Commits](https://github.com/plataformatec/simple_form/compare/v5.0.1...v5.0.2 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 20:01:35 +09:00
897ff630e7
Bump json-ld from 3.1.0 to 3.1.1 ( #13230 )
...
Bumps [json-ld](https://github.com/ruby-rdf/json-ld ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/ruby-rdf/json-ld/releases )
- [Commits](https://github.com/ruby-rdf/json-ld/compare/3.1.0...3.1.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 20:00:20 +09:00
e65996f92b
Bump redis from 2.8.0 to 3.0.2 ( #13102 )
...
Bumps [redis](https://github.com/NodeRedis/node-redis ) from 2.8.0 to 3.0.2.
- [Release notes](https://github.com/NodeRedis/node-redis/releases )
- [Changelog](https://github.com/NodeRedis/node-redis/blob/master/CHANGELOG.md )
- [Commits](https://github.com/NodeRedis/node-redis/compare/v.2.8.0...v3.0.2 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:55:31 +09:00
ce228a440e
Bump mkdirp from 0.5.1 to 1.0.3 ( #12979 )
...
Bumps [mkdirp](https://github.com/isaacs/node-mkdirp ) from 0.5.1 to 1.0.3.
- [Release notes](https://github.com/isaacs/node-mkdirp/releases )
- [Changelog](https://github.com/isaacs/node-mkdirp/blob/master/CHANGELOG.md )
- [Commits](https://github.com/isaacs/node-mkdirp/commits/v1.0.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:45:37 +09:00
6c1e452d20
Bump sass from 1.25.0 to 1.26.3 ( #13263 )
...
Bumps [sass](https://github.com/sass/dart-sass ) from 1.25.0 to 1.26.3.
- [Release notes](https://github.com/sass/dart-sass/releases )
- [Changelog](https://github.com/sass/dart-sass/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sass/dart-sass/compare/1.25.0...1.26.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:44:21 +09:00
44cdc330ab
Bump react-test-renderer from 16.12.0 to 16.13.0 ( #13260 )
...
Bumps [react-test-renderer](https://github.com/facebook/react/tree/HEAD/packages/react-test-renderer ) from 16.12.0 to 16.13.0.
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v16.13.0/packages/react-test-renderer )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:43:22 +09:00
83f193361f
Bump react-dom from 16.12.0 to 16.13.0 ( #13181 )
...
Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom ) from 16.12.0 to 16.13.0.
- [Release notes](https://github.com/facebook/react/releases )
- [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/react/commits/v16.13.0/packages/react-dom )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:42:04 +09:00
a4387aceab
Bump babel-jest from 24.9.0 to 25.1.0 ( #12973 )
...
Bumps [babel-jest](https://github.com/facebook/jest/tree/HEAD/packages/babel-jest ) from 24.9.0 to 25.1.0.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/commits/v25.1.0/packages/babel-jest )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:41:38 +09:00
6dfc161ada
Bump react-immutable-proptypes from 2.1.0 to 2.2.0 ( #13259 )
...
Bumps [react-immutable-proptypes](https://github.com/HurricaneJames/react-immutable-proptypes ) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/HurricaneJames/react-immutable-proptypes/releases )
- [Changelog](https://github.com/HurricaneJames/react-immutable-proptypes/blob/master/CHANGELOG.md )
- [Commits](https://github.com/HurricaneJames/react-immutable-proptypes/commits )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-18 19:40:49 +09:00
b998ec7c72
Fix WebUI crash in single-column mode on prehistoric browsers ( #13267 )
...
Fixes #13266
2020-03-17 20:43:55 +01:00
cb12a2cdd3
Fix some timeouts when searching URLs by limiting some database queries ( #13253 )
...
Only look up private toots from database if the request failed because of 401,
403 or 404 errors, as those may indicate a private toot, rather than something
that isn't a toot or cannot be processed.
2020-03-12 23:06:43 +01:00
bea0bb39d6
Add option to include resolved DNS records when blacklisting e-mail domains in admin UI ( #13254 )
...
* Add shortcuts to blacklist a user's e-mail domain in admin UI
* Add option to blacklist resolved MX and IP records for e-mail domains
2020-03-12 22:35:20 +01:00
f556f79b77
Add titles to warning presets in admin UI ( #13252 )
2020-03-12 17:57:59 +01:00
aeebbe90dc
Fix detailed view of direct messages displaying a 0 boost count ( #13244 )
...
The boost count is already removed from private toots,
do the same with direct messages.
2020-03-10 18:39:47 +01:00
51a1fbaafc
[Security] Bump Node.js from 12.14.0 to 12.16.1 in Docker ( #13235 )
...
* Update Dockerfile
* Update Dockerfile
2020-03-10 12:00:55 +01:00
90f3a00062
Fix regression in “Edit media” modal in web UI ( #13243 )
2020-03-10 11:59:44 +01:00
2c6099125d
Fix videos with unsupported colorspace not being transcoded ( #13242 )
2020-03-10 11:58:40 +01:00
abd8394880
Fix MP4 (H264 + AAC) video files being needlessly re-encoded ( #13239 )
2020-03-09 23:15:59 +01:00
57d98b20f2
Bump eslint-plugin-react from 7.17.0 to 7.19.0 ( #13224 )
...
Bumps [eslint-plugin-react](https://github.com/yannickcr/eslint-plugin-react ) from 7.17.0 to 7.19.0.
- [Release notes](https://github.com/yannickcr/eslint-plugin-react/releases )
- [Changelog](https://github.com/yannickcr/eslint-plugin-react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/yannickcr/eslint-plugin-react/compare/v7.17.0...v7.19.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-09 22:33:58 +09:00
116938fc17
Bump cross-env from 6.0.3 to 7.0.2 ( #13228 )
...
Bumps [cross-env](https://github.com/kentcdodds/cross-env ) from 6.0.3 to 7.0.2.
- [Release notes](https://github.com/kentcdodds/cross-env/releases )
- [Changelog](https://github.com/kentcdodds/cross-env/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kentcdodds/cross-env/compare/v6.0.3...v7.0.2 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-09 22:28:25 +09:00
2c18debcd5
Bump wicg-inert from 3.0.0 to 3.0.2 ( #13226 )
...
Bumps [wicg-inert](https://github.com/WICG/inert ) from 3.0.0 to 3.0.2.
- [Release notes](https://github.com/WICG/inert/releases )
- [Commits](https://github.com/WICG/inert/compare/v3.0.0...v3.0.2 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-09 22:27:25 +09:00
8c3ac755f0
Bump file-loader from 5.0.2 to 5.1.0 ( #13225 )
...
Bumps [file-loader](https://github.com/webpack-contrib/file-loader ) from 5.0.2 to 5.1.0.
- [Release notes](https://github.com/webpack-contrib/file-loader/releases )
- [Changelog](https://github.com/webpack-contrib/file-loader/blob/master/CHANGELOG.md )
- [Commits](https://github.com/webpack-contrib/file-loader/compare/v5.0.2...v5.1.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-09 22:25:22 +09:00
310d729745
Change the string "hidden" to "blocked" in WebUI ( #13221 )
...
* Change the string "hidden" to "blocked" in WebUI.
* update
2020-03-09 09:13:21 +01:00
8a2b8e0321
Change video uploads to always be converted to H264/MP4 ( #13220 )
...
Even if the container format is the same (.mp4), the codec could
be different and not playable in web browsers
2020-03-09 02:20:18 +01:00
dc15c81e67
Change video uploads to enforce certain limits ( #13218 )
...
- Dimensions at most 1920x1200
- Frame rate at most 60
2020-03-09 02:19:07 +01:00
7088633ae1
Bump cld3 from 3.2.6 to 3.3.0 ( #13107 )
...
* Bump cld3 from 3.2.6 to 3.3.0
Bumps [cld3](https://github.com/akihikodaki/cld3-ruby ) from 3.2.6 to 3.3.0.
- [Release notes](https://github.com/akihikodaki/cld3-ruby/releases )
- [Commits](https://github.com/akihikodaki/cld3-ruby/compare/v3.2.6...v3.3.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
* Fix compatibility with cld3 3.3.0
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Eugen Rochko <eugen@zeonfederated.com>
2020-03-09 00:12:52 +01:00
b154428e14
Add federation support for the "hide network" preference ( #11673 )
...
* Change ActivityPub follower/following collections to not link first page
* Add support for hiding followers and following of remote users
* Switch to using a single `hide_collections` column
* Address code style remarks
2020-03-09 00:10:29 +01:00
9660aa4543
Change local media attachments to perform heavy processing asynchronously ( #13210 )
...
Fix #9106
2020-03-08 23:56:18 +01:00
764b89939f
Bump doorkeeper from 5.2.3 to 5.3.1 ( #13144 )
...
Bumps [doorkeeper](https://github.com/doorkeeper-gem/doorkeeper ) from 5.2.3 to 5.3.1.
- [Release notes](https://github.com/doorkeeper-gem/doorkeeper/releases )
- [Changelog](https://github.com/doorkeeper-gem/doorkeeper/blob/master/CHANGELOG.md )
- [Commits](https://github.com/doorkeeper-gem/doorkeeper/compare/v5.2.3...v.5.3.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-08 16:22:12 +01:00
5284e29e2f
Fix public posts from silenced accounts not being changed to unlisted visibility ( #13096 )
2020-03-08 16:11:49 +01:00
aa67036b41
Add support for links to statuses in announcements to be opened in web UI ( #13212 )
...
* Add support for links to public statuses in announcements to be opened in WebUI
* Please CodeClimate
2020-03-08 16:10:48 +01:00
5e4b649655
Change the tooltip "Toggle visibility" to "Hide media" in web UI ( #13199 )
2020-03-08 16:09:34 +01:00
62c4e4cc22
Change wording of media display preferences to be more intuitive ( #13198 )
2020-03-08 16:08:38 +01:00
514cd874a7
Update nginx.conf ( #13066 )
2020-03-08 16:04:25 +01:00
e31ba618d4
Add submit button to the top of preferences pages ( #13068 )
...
* Move submit button to the top of the edit page
* Duplicate save button on long form
* Fix click submit on profile spec
2020-03-08 16:04:03 +01:00
fd76955f39
Code style improvements in JavaScript ( #13159 )
...
* JS-linter: fix trailing comma's
* Configure eslinter to ignore this onchange error.
2020-03-08 16:02:36 +01:00
4e524218d3
Add `--skip-media-remove` option to `tootctl statuses remove` ( #13080 )
...
* Add skip_media_remove option to tootctl statuses remove
* Add skip_media_remove option to tootctl statuses remove
Co-authored-by: tateisu <tateisu@juggler.jp>
2020-03-08 16:01:07 +01:00
2423d2f677
Add ability to delete files uploaded for settings in admin UI ( #13192 )
...
* Allow deleting site uploads
* Refactor and move links into hints
* Fix i18n tests
* Fix HTML output of site_upload_delete_hint
2020-03-08 16:00:24 +01:00
4063f9f278
Change description of privacy levels to be more intuitive in web UI ( #13197 )
...
* Improve description of privacy levels in compose interface
* Change strings in defaultMessage and source as well as english
Co-authored-by: Thibaut Girka <thib@sitedethib.com>
2020-03-08 15:59:55 +01:00
05d83cb07d
Set BUNDLE_PATH in CircleCI ( #13214 )
2020-03-08 15:45:19 +01:00
dependabot-preview[bot]
Shlee
mayaeh
Jeong Arm
Daniel Sockwell
ThibG
Eugen Rochko
Mélanie Chauvel (ariasuni)
guigeekz
Bèr Kessels
tateisu
David Cook