Sebastian Jambor
a19c462245
only remove accounts containing underscores
2023-08-02 10:38:33 +02:00
Sebastian Jambor
fc262c22cd
update visualization library; do not delete alice account
2023-07-12 13:49:17 +02:00
Sebastian Jambor
a3c81fc929
Merge tag 'v4.1.4' into merge-security-fix
2023-07-11 13:11:33 +02:00
Sebastian Jambor
b45e686a89
Merge tag 'v4.1.3' into merge-security-fix
2023-07-11 13:07:56 +02:00
Sebastian Jambor
cd523cc8f3
fix opening explorer from log
2023-07-11 13:07:31 +02:00
Claire
53b979d5c7
Fix processing of media files with unusual names ( #25788 )
2023-07-07 19:37:21 +02:00
Claire
f2bbac3f9f
Fix crash in admin interface when viewing a remote user with verified links ( #25796 )
2023-07-07 19:37:21 +02:00
Claire
32ebeed59b
Merge pull request from GHSA-55j9-c3mp-6fcq
2023-07-06 15:06:50 +02:00
Claire
e75ad1de0f
Merge pull request from GHSA-9pxv-6qvf-pjwc
...
* Fix timeout handling of outbound HTTP requests
* Use CLOCK_MONOTONIC instead of Time.now
2023-07-06 15:06:24 +02:00
Claire
0aa0b71f2c
Merge pull request from GHSA-9928-3cp5-93fm
...
* Fix attachments getting processed despite failing content-type validation
* Add a restrictive ImageMagick security policy tailored for Mastodon
* Fix misdetection of MP3 files with large cover art
* Reject unprocessable audio/video files instead of keeping them unchanged
2023-07-06 15:05:05 +02:00
Claire
c4f2609f7a
Merge pull request from GHSA-ccm4-vgcc-73hp
...
* Tighten allowed HTML in oEmbed-based preview cards
* Sanitize preview cards at render time
* Add `sandbox` attribute to preview card iframes
2023-07-06 15:03:33 +02:00
Claire
a3d69a2c5d
Fix OAuth apps page crashing when listing apps with certain admin API scopes ( #25713 )
2023-07-06 13:45:40 +02:00
Vyr Cossont
652ff76462
Fix Redis client and type errors introduced in #24285 ( #24342 )
2023-07-06 13:45:40 +02:00
Vyr Cossont
6f484fbbd2
IndexingScheduler: fetch and import in batches ( #24285 )
...
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
2023-07-06 13:45:40 +02:00
Claire
79f5b8f156
Fix ResolveURLService not resolving local URLs for remote content ( #25637 )
2023-07-06 13:45:40 +02:00
Claire
f8930a67a0
Change /api/v1/statuses/:id/history to always return at least one item ( #25510 )
2023-07-06 13:45:40 +02:00
Claire
e65e3a6d14
Add finer permission requirements for managing webhooks ( #25463 )
2023-07-06 13:45:40 +02:00
Claire
8acbfc6ab1
Fix wrong view being displayed when a webhook fails validation ( #25464 )
2023-07-06 13:45:40 +02:00
Emelia Smith
3ef53958b2
Prevent UserCleanupScheduler from overwhelming streaming ( #25519 )
2023-07-06 13:45:40 +02:00
Daniel M Brasil
fd1ffd72eb
Fix incorrect pagination headers in /api/v2/admin/accounts
( #25477 )
2023-07-06 13:45:40 +02:00
Claire
7bd34f8b23
Fix infinite loop in AccountsStatusesCleanupScheduler ( #24840 )
2023-07-06 13:45:40 +02:00
Claire
7012bf6ed3
Improve automatic post cleanup worker performances ( #24785 )
2023-07-06 13:45:40 +02:00
Claire
d9e45f2fa9
Fix AccountsStatusesCleanupScheduler not spreading deletes across accounts correctly ( #24607 )
2023-07-06 13:45:40 +02:00
Claire
0e139e3c4d
Change automatic post deletion thresholds and load detection ( #24614 )
2023-07-06 13:45:40 +02:00
Claire
2779bce9a2
Add fallback redirection when getting a webfinger query LOCAL_DOMAIN@LOCAL_DOMAIN
( #23600 )
...
Co-authored-by: Eugen Rochko <eugen@zeonfederated.com>
2023-07-06 13:45:40 +02:00
Claire
210ff36860
Change AccessTokensVacuum to also delete expired tokens ( #24868 )
2023-07-06 13:45:40 +02:00
Claire
99c2bbbec9
Change profile updates to be sent to recently-mentioned servers ( #24852 )
2023-07-06 13:45:40 +02:00
Claire
7e58779300
Fix reports not being closed when performing batch suspensions ( #24988 )
2023-07-06 13:45:40 +02:00
Claire
cca464bce3
Fix being able to vote on your own polls ( #25015 )
2023-07-06 13:45:40 +02:00
Claire
1301af60e0
Fix race condition when reblogging a status ( #25016 )
2023-07-06 13:45:40 +02:00
Claire
f962e83856
Change OpenGraph-based embeds to allow fullscreen ( #25058 )
2023-07-06 13:45:40 +02:00
Claire
b3cbcd7447
Fix “Authorized applications” inefficiently and incorrectly getting last use date ( #25060 )
2023-07-06 13:45:40 +02:00
Claire
72d96bf17a
Remove invalid X-Frame-Options: ALLOWALL ( #25070 )
2023-07-06 13:45:40 +02:00
Claire
b1ac3562df
Change Identity to not destroy associated User on destroy ( #25098 )
2023-07-06 13:45:40 +02:00
Claire
4c6c790f80
Fix /api/v1/conversations sometimes returning empty accounts ( #25499 )
2023-07-06 13:45:40 +02:00
Claire
036ac5b5c9
Fix ArgumentError when loading newer Private Mentions ( #25399 )
2023-07-06 13:45:40 +02:00
Claire
3e1724e972
Fix multiple N+1s in ConversationsController ( #25134 )
2023-07-06 13:45:40 +02:00
Claire
bc8592627b
Fix user archive takeouts when using OpenStack Swift ( #24431 )
2023-07-06 13:45:40 +02:00
Sebastian Jambor
710d359bb2
extract component in activity log to avoid new render
2023-07-05 19:35:53 +02:00
Sebastian Jambor
13c83bd4ef
allow application/json responses to circumvent a lemmy bug
2023-07-04 20:04:24 +02:00
Sebastian Jambor
af095cb887
fix audience helper when passed array with null
2023-07-03 19:43:30 +02:00
Sebastian Jambor
7070051684
update visualization library
2023-05-03 16:02:14 +02:00
Sebastian Jambor
5e115a4a77
do not delete crepels account
2023-04-18 21:49:45 +02:00
Sebastian Jambor
16d01476d5
revert changes to action bar
2023-04-18 21:47:23 +02:00
Sebastian Jambor
d2158bd08e
update links to blog
2023-04-18 21:32:25 +02:00
Sebastian Jambor
fd2f4ba76c
ensure that activity log keep alive thread is started per worker
2023-04-18 19:20:11 +00:00
Sebastian Jambor
3d34d5d2b2
clean up css
2023-04-17 17:54:35 +02:00
Sebastian Jambor
a7e5d320fe
new signup page
2023-04-17 17:54:35 +02:00
Sebastian Jambor
b15ac6379a
follow redirects in json-ld proxy
2023-04-17 17:54:35 +02:00
Sebastian Jambor
13a5630949
pass fetch method to explorer
2023-04-17 17:54:35 +02:00