d3c18058d7
Bump react-select from 5.3.1 to 5.3.2 ( #18382 )
...
Bumps [react-select](https://github.com/JedWatson/react-select ) from 5.3.1 to 5.3.2.
- [Release notes](https://github.com/JedWatson/react-select/releases )
- [Changelog](https://github.com/JedWatson/react-select/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/JedWatson/react-select/compare/react-select@5.3.1...react-select@5.3.2 )
---
updated-dependencies:
- dependency-name: react-select
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-11 04:00:31 +09:00
b4d373a3df
Add `limited` attribute to accounts in REST API and a warning in web UI ( #18344 )
2022-05-10 09:44:35 +02:00
898fe2fa8e
Fix typo in source `setted`->`set` ( #18385 )
...
Found via `codespell -q 3 -S ./CHANGELOG.md,./AUTHORS.md,./config/locales,./app/javascript/mastodon/locales -L ba,keypair,medias,ro`
2022-05-10 04:58:04 +02:00
0406ca8d68
Translate Hometown-specific strings to Italian.
...
Please note: I did not translate the information about how third-party apps interact with the default federation setting because the linked resource is in English. I'll hopefully have time to do this in the future.
2022-05-09 15:49:09 -07:00
379a442464
Translate Hometown-specific text to Italian
2022-05-09 14:51:57 -07:00
662ed53c18
Fix block/mute lists showing a follow button when unblocking a user ( #18364 )
...
Fixes #601
2022-05-09 23:20:19 +02:00
f714e24ff1
Fix redis configuration not being changed by mastodon:setup ( #18383 )
...
Fixes #18342
2022-05-09 23:19:11 +02:00
e20ec53c3e
Remove references to Mastodon and instance name
...
Removed all of the references to Mastodon and the instance name in the Italian localization file.
2022-05-09 13:52:34 -07:00
1618bdad56
Translate Hometown-specific strings to Italian
...
This patch translates all of the Hometown-specific strings I could find to Italian. I tried to follow the conventions of the official Mastodon Italian localization whenever possible, although I probably would have translated a few things differently if I was starting from scratch.
2022-05-09 13:45:12 -07:00
2b8dc58b7f
Change RSS feeds ( #18356 )
...
* Change RSS feeds
- Use date and time for titles instead of ellipsized text
- Use full content in body, even when there is a content warning
- Use media extensions
* Change feed icons and add width and height attributes to custom emojis
* Fix custom emoji animate on hover breaking
* Fix tests
2022-05-09 07:43:08 +02:00
0ee2072d79
Removing margin which messes up emoji
2022-05-08 16:14:51 -07:00
9a8eb07c2a
Enable blank issues on the Hometown Github
2022-05-08 14:39:49 -07:00
6107040193
Updating version number
2022-05-08 14:35:26 -07:00
6f80acad90
Fix Macaron theme coloring bug
...
The "No description added" text on uncaptioned draft media posts was hard to see. Now it isn't.
2022-05-08 14:18:09 -07:00
9fb28f4258
Fixing stray bad merge
2022-05-08 13:18:47 -07:00
390635e922
Merge pull request #1156 from raboof/dont-autofocus-compose-form-hometown
...
Don't autofocus the compose form
2022-05-08 13:10:14 -07:00
2b9f8d25e3
Fix inline image rendering
...
For posts with inline images, we need to set a `max-height` so that high-resolution images don't take up too much vertical space when rendering. This only affects images in `.status__content__text`, so it doesn't affect image galleries at all. Also adding a margin to the bottom for nicer spacing.
Fixes #1145 .
2022-05-08 12:17:23 -07:00
c73b54a1da
Fix SVG rendering in application template
...
We were rendering an escaped version of the SVG in this template where we should have been rendering the SVG itself.
Fixes #1158 .
2022-05-08 12:03:08 -07:00
1855672e7c
Fix paragraph margins in public page posts
...
Fixes #1162 .
2022-05-08 11:50:16 -07:00
0a27dd866a
Show about pages in limited federation mode
...
We are running queer.haus in "limited federation mode" so we work with an allow list instead of a block list for federation. This mode hides all public pages by default, which makes it difficult to explain who we are to curious visitors.
This changes that so the about pages are still visible even in limited federation mode. All other public pages like profiles and posts are still hidden. I think this might be valuable also for other hometown instances.
More info on limited federation mode: https://docs.joinmastodon.org/admin/config/#limited_federation_mode
This code change initially comes from https://awoo.space (https://github.com/noiob/awoospace )
2022-05-08 11:32:00 -07:00
a2d93b7720
Merge pull request #967 from queerhaus/queertown/remove-elephants
...
remove two mastodon elephant images
2022-05-08 11:02:11 -07:00
a26084e29c
Merge pull request #1144 from killpack/local_only_in_cw
...
Fix posts incorrectly federating when :local_only: emoji is present in spoiler text
2022-05-08 11:01:13 -07:00
0929aad3b2
Merge pull request #1157 from ljcooke/list-resets-exclusive-flag-after-rename
...
Fix exclusive list changing to regular list after rename
2022-05-08 10:45:29 -07:00
2407b02383
Fix Macaron theme
...
The modal for reporting a post calculates its value based on $ui-secondary-color. In most themes that is the correct calculation to make, but in Macaron our colors are assigned a little differently and this makes the modal unusable. Setting it to white fixes the issue.
2022-05-08 10:40:09 -07:00
c43695e49c
Merge pull request #1163 from mistydemeo/clean_up_gemfile_lock
...
Gemfile: remove extraneous fields
2022-05-08 10:39:27 -07:00
27a1f048a1
Gemfile: remove extraneous fields
2022-05-07 20:25:36 -07:00
f17e73da09
Fix streaming notifications not using quick filter logic ( #18316 )
...
Fixes #18309
The quickFilter logic was used on display and to request new notification
pages, but not for live updates. The main issue this caused is bump the unread
notifications count regardless of the quickFilter setting.
Since notifications are re-fetched when changing quickFilter settings, it is
safe to drop live notifications that do not match the selected filter.
2022-05-07 04:50:40 +02:00
991353682d
Fix ambiguous wording on appeal actions ( #18328 )
...
Fixes #18322
2022-05-06 21:41:34 +02:00
5a448d0d71
Fix floating action button obscuring last element ( #18332 )
...
Fixes #18331
Add some padding below the last element of scrollable lists when the FAB is
shown in order for users to always be able to fully see the last element.
2022-05-06 21:40:49 +02:00
a53003c6f1
Fix account warnings not being recorded in audit log ( #18338 )
...
* Fix account warnings not being recorded in audit log
Fixes #18334
* Only record warnings if they are not associated to another action
2022-05-06 21:40:20 +02:00
b31e01f5b3
Polish translation
...
Thanks to Github user mkljczk in https://github.com/hometown-fork/hometown/pull/681
2022-05-06 08:29:18 -07:00
9250578e6b
New Crowdin updates ( #18255 )
...
* New translations doorkeeper.en.yml (Chinese Traditional, Hong Kong)
* New translations doorkeeper.en.yml (Tatar)
* New translations doorkeeper.en.yml (Malayalam)
* New translations doorkeeper.en.yml (Breton)
* New translations doorkeeper.en.yml (Sinhala)
* New translations doorkeeper.en.yml (Standard Moroccan Tamazight)
* New translations en.json (Chinese Traditional)
* New translations en.json (Catalan)
* New translations en.json (Japanese)
* New translations en.json (French)
* New translations en.json (Spanish)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.json (Kurmanji (Kurdish))
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.json (Korean)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.json (Korean)
* New translations en.yml (Hebrew)
* New translations en.json (Chinese Simplified)
* New translations en.yml (Hebrew)
* New translations en.json (Vietnamese)
* New translations en.json (Turkish)
* New translations en.json (Galician)
* Run `yarn manage:translations`
* Run `bundle exec i18n-tasks normalize`
* Add whitelist_en-GB.json [ci skip]
* New translations en.json (Ukrainian)
* New translations en.json (Ukrainian)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Swedish)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Greek)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Ukrainian)
* New translations en.json (Thai)
* New translations en.yml (Hebrew)
* New translations en.yml (Ukrainian)
* New translations en.json (Polish)
* New translations en.json (Ukrainian)
* New translations doorkeeper.en.yml (Ukrainian)
* New translations en.json (Thai)
* New translations en.yml (Hebrew)
* New translations en.yml (Ukrainian)
* New translations en.json (Danish)
* New translations en.json (Hebrew)
* New translations en.json (Ido)
* New translations simple_form.en.yml (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Danish)
* New translations en.json (Ido)
* New translations en.yml (Hebrew)
* New translations doorkeeper.en.yml (Hebrew)
* New translations en.json (Ido)
* New translations en.yml (Hebrew)
* New translations en.yml (Afrikaans)
* New translations en.json (Afrikaans)
* New translations en.yml (Hebrew)
* New translations en.json (Afrikaans)
* New translations en.json (Hebrew)
* New translations en.json (Slovenian)
* New translations simple_form.en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (Hebrew)
* New translations en.json (Slovenian)
* New translations en.json (Ukrainian)
* New translations simple_form.en.yml (Hebrew)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Hebrew)
* New translations en.json (Hebrew)
* New translations en.json (Latvian)
* New translations simple_form.en.yml (Hebrew)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Hebrew)
* New translations en.json (Hebrew)
* New translations simple_form.en.yml (Hebrew)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (Hebrew)
* New translations simple_form.en.yml (Ukrainian)
* New translations simple_form.en.yml (Hebrew)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (German)
* New translations simple_form.en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations simple_form.en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (Russian)
* New translations simple_form.en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (Icelandic)
* New translations simple_form.en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.json (Hungarian)
* New translations simple_form.en.yml (Hebrew)
* New translations simple_form.en.yml (Hungarian)
* New translations en.yml (Hebrew)
* New translations en.yml (Hungarian)
* New translations en.json (Hungarian)
* New translations en.yml (Hebrew)
* New translations en.json (Czech)
* New translations en.yml (Hebrew)
* New translations en.json (Czech)
* New translations en.yml (Spanish)
* New translations en.yml (Hebrew)
* New translations en.json (Spanish)
* New translations en.yml (Hebrew)
* New translations en.json (Chinese Simplified)
* New translations en.yml (Hebrew)
* New translations en.json (Portuguese)
* New translations en.yml (Hebrew)
* New translations en.yml (Japanese)
* New translations simple_form.en.yml (Japanese)
* New translations doorkeeper.en.yml (Japanese)
* New translations en.json (Danish)
* New translations activerecord.en.yml (Japanese)
* New translations en.yml (Hebrew)
* New translations en.yml (Slovenian)
* New translations en.json (Welsh)
* New translations en.yml (Slovenian)
* New translations en.json (Italian)
* New translations en.yml (Slovenian)
* New translations en.json (Indonesian)
* New translations en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.yml (Thai)
* New translations en.yml (Slovenian)
* New translations en.yml (Thai)
* New translations en.yml (Slovenian)
* New translations en.yml (Thai)
* New translations en.yml (Thai)
* New translations en.yml (Slovenian)
* New translations en.yml (Danish)
* New translations en.json (Swedish)
* New translations en.yml (Slovenian)
* New translations en.json (Vietnamese)
* New translations en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.yml (Welsh)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.yml (Scottish Gaelic)
* New translations en.json (Scottish Gaelic)
* New translations en.yml (Slovenian)
* New translations en.yml (Welsh)
* New translations en.json (Scottish Gaelic)
* New translations en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.json (Danish)
* New translations en.yml (Slovenian)
* New translations en.json (Portuguese, Brazilian)
* New translations en.yml (Slovenian)
* New translations en.json (Portuguese, Brazilian)
* New translations en.json (Slovenian)
* New translations doorkeeper.en.yml (Slovenian)
* New translations simple_form.en.yml (Slovenian)
* New translations en.yml (Slovenian)
* New translations en.json (Spanish, Argentina)
* New translations en.yml (Slovenian)
* New translations en.json (Scottish Gaelic)
* New translations en.json (Slovenian)
* New translations simple_form.en.yml (Slovenian)
* New translations en.json (Welsh)
* New translations en.json (French)
* New translations en.json (Welsh)
* New translations en.json (French)
* New translations en.yml (Arabic)
* New translations en.json (Arabic)
* New translations simple_form.en.yml (Welsh)
* New translations en.json (French)
* New translations simple_form.en.yml (Ukrainian)
* New translations en.json (Ukrainian)
* New translations en.json (Ukrainian)
* New translations en.yml (German)
* New translations en.yml (Ukrainian)
* New translations en.json (Ukrainian)
* New translations en.yml (Hebrew)
* New translations en.json (Chinese Simplified)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.yml (Hebrew)
* New translations en.json (Ido)
* New translations en.json (Ido)
* New translations en.json (Ido)
* New translations en.json (Chinese Simplified)
* New translations en.json (Chinese Simplified)
* New translations en.json (Chinese Simplified)
* New translations en.yml (Chinese Simplified)
* New translations en.yml (Chinese Simplified)
* New translations en.json (Chinese Simplified)
* New translations en.json (Chinese Simplified)
* New translations en.json (Chinese Simplified)
* New translations en.yml (Arabic)
* New translations en.json (Asturian)
* New translations en.yml (Thai)
* New translations en.json (Thai)
* New translations en.json (German)
* New translations en.json (Ido)
* New translations en.json (Welsh)
* New translations en.json (Ido)
* New translations en.json (Welsh)
* New translations en.json (German)
* New translations en.json (German)
* New translations en.json (German)
* New translations en.json (German)
* New translations en.json (German)
* New translations en.yml (German)
* New translations en.yml (Catalan)
* New translations en.json (Catalan)
* New translations en.json (German)
* New translations en.json (Albanian)
* New translations en.json (German)
* New translations en.yml (German)
* New translations en.json (German)
* Run `yarn manage:translations`
* Run `bundle exec i18n-tasks normalize`
Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh>
2022-05-06 21:53:22 +09:00
43d693cace
Merge branch 'hometown-dev-3.5.2' into hometown-dev
2022-05-05 21:34:15 -07:00
2c5862ede0
Merge tag 'v3.5.2' into hometown-dev-3.5.2
2022-05-05 21:08:15 -07:00
fccd9a537c
Update Hometown version
2022-05-05 20:44:23 -07:00
ac01eee575
Merge tag 'v3.5.1' into hometown-dev-3.5.1
2022-05-05 20:41:34 -07:00
9d2f13a004
Fix merge bugs
...
* we weren't notifying people when local polls were finished
* lacked a full svg logo function
* we were not parsing mentions due to a stray `&& false`, basically
* removed some extra unneeded UI reducer code
2022-05-05 18:56:04 -07:00
99d7684dfd
Replace leftover `envelope` icons with `at` icons ( #18305 )
2022-05-06 00:41:56 +02:00
336c23336a
Allow VerifyLinkService to accept backlinks with differing case ( #18320 )
2022-05-06 00:41:42 +02:00
db01df2dda
Bump sidekiq-scheduler from 3.2.0 to 4.0.0 ( #18275 )
...
Bumps [sidekiq-scheduler](https://github.com/moove-it/sidekiq-scheduler ) from 3.2.0 to 4.0.0.
- [Release notes](https://github.com/moove-it/sidekiq-scheduler/releases )
- [Changelog](https://github.com/moove-it/sidekiq-scheduler/blob/master/CHANGELOG.md )
- [Commits](https://github.com/moove-it/sidekiq-scheduler/compare/v3.2.0...v4.0.0 )
---
updated-dependencies:
- dependency-name: sidekiq-scheduler
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 22:47:05 +09:00
39820a940f
Bump glob from 7.2.0 to 8.0.1 ( #18013 )
...
Bumps [glob](https://github.com/isaacs/node-glob ) from 7.2.0 to 8.0.1.
- [Release notes](https://github.com/isaacs/node-glob/releases )
- [Changelog](https://github.com/isaacs/node-glob/blob/main/changelog.md )
- [Commits](https://github.com/isaacs/node-glob/compare/v7.2.0...v8.0.1 )
---
updated-dependencies:
- dependency-name: glob
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 22:38:02 +09:00
8f4d7f54f8
Bump stoplight from 2.2.1 to 3.0.0 ( #17645 )
...
Bumps [stoplight](https://github.com/orgsync/stoplight ) from 2.2.1 to 3.0.0.
- [Release notes](https://github.com/orgsync/stoplight/releases )
- [Changelog](https://github.com/bolshakov/stoplight/blob/master/CHANGELOG.md )
- [Commits](https://github.com/orgsync/stoplight/compare/v2.2.1...v3.0.0 )
---
updated-dependencies:
- dependency-name: stoplight
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 22:33:19 +09:00
132239008d
Bump redux from 4.1.2 to 4.2.0 ( #18087 )
...
Bumps [redux](https://github.com/reduxjs/redux ) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/reduxjs/redux/releases )
- [Changelog](https://github.com/reduxjs/redux/blob/master/CHANGELOG.md )
- [Commits](https://github.com/reduxjs/redux/compare/v4.1.2...v4.2.0 )
---
updated-dependencies:
- dependency-name: redux
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 22:29:51 +09:00
8a6b796440
Bump axios from 0.26.1 to 0.27.2 ( #18270 )
...
Bumps [axios](https://github.com/axios/axios ) from 0.26.1 to 0.27.2.
- [Release notes](https://github.com/axios/axios/releases )
- [Changelog](https://github.com/axios/axios/blob/master/CHANGELOG.md )
- [Commits](https://github.com/axios/axios/compare/v0.26.1...v0.27.2 )
---
updated-dependencies:
- dependency-name: axios
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 22:25:40 +09:00
8c644dcbd9
Bump jest from 27.5.1 to 28.0.3 ( #18280 )
...
* Bump jest from 27.5.1 to 28.0.3
Bumps [jest](https://github.com/facebook/jest/tree/HEAD/packages/jest ) from 27.5.1 to 28.0.3.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/commits/v28.0.3/packages/jest )
---
updated-dependencies:
- dependency-name: jest
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* Bump babel-jest from 27.5.1 to 28.0.3
Bumps [babel-jest](https://github.com/facebook/jest/tree/HEAD/packages/babel-jest ) from 27.5.1 to 28.0.3.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/commits/v28.0.3/packages/babel-jest )
---
updated-dependencies:
- dependency-name: babel-jest
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* Add jest-environment-jsdom
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh>
2022-05-04 14:06:49 +09:00
c08bc2da61
Bump ws from 8.5.0 to 8.6.0 ( #18279 )
...
Bumps [ws](https://github.com/websockets/ws ) from 8.5.0 to 8.6.0.
- [Release notes](https://github.com/websockets/ws/releases )
- [Commits](https://github.com/websockets/ws/compare/8.5.0...8.6.0 )
---
updated-dependencies:
- dependency-name: ws
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 13:55:05 +09:00
f18c620d4b
Bump brakeman from 5.2.2 to 5.2.3 ( #18274 )
...
Bumps [brakeman](https://github.com/presidentbeef/brakeman ) from 5.2.2 to 5.2.3.
- [Release notes](https://github.com/presidentbeef/brakeman/releases )
- [Changelog](https://github.com/presidentbeef/brakeman/blob/main/CHANGES.md )
- [Commits](https://github.com/presidentbeef/brakeman/compare/v5.2.2...v5.2.3 )
---
updated-dependencies:
- dependency-name: brakeman
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 13:49:53 +09:00
881d71e58c
Bump rubocop from 1.27.0 to 1.28.2 ( #18084 )
...
Bumps [rubocop](https://github.com/rubocop/rubocop ) from 1.27.0 to 1.28.2.
- [Release notes](https://github.com/rubocop/rubocop/releases )
- [Changelog](https://github.com/rubocop/rubocop/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop/compare/v1.27.0...v1.28.2 )
---
updated-dependencies:
- dependency-name: rubocop
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 13:43:02 +09:00
381415bd97
Bump redis from 4.0.6 to 4.1.0 ( #18282 )
...
Bumps [redis](https://github.com/redis/node-redis ) from 4.0.6 to 4.1.0.
- [Release notes](https://github.com/redis/node-redis/releases )
- [Changelog](https://github.com/redis/node-redis/blob/master/CHANGELOG.md )
- [Commits](https://github.com/redis/node-redis/compare/redis@4.0.6...redis@4.1.0 )
---
updated-dependencies:
- dependency-name: redis
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-05-04 13:42:37 +09:00
6e736f2452
fix: embed.js doesn't expands iframes height ( #18301 )
...
also including some refactoring:
- add `// @ts-check`
- use Map to completely avoid prototype pollution
- assign random id to each iframe for reduce chance to brute-force attack, and leak of iframe counts
- check iframe.contentWindow and MessageEvent.source to validate message is coming from correct iframe (it works on latest Chrome/Firefox/Safari but I'm not sure this is allowed by spec)
follow-up of #17420
fix #18299
2022-05-04 03:20:44 +02:00
dependabot[bot]
Eugen Rochko
luzpaz
Anthony Prestia
Claire
Darius Kazemi
Darius Kazemi
Misty De Meo
Stefano Pigozzi
Sara Golemon
rinsuki