mirrors
/
hometown
mirror of https://github.com/hometown-fork/hometown.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,520 Commits 10 Branches 212 Tags 286 MiB
Commit Graph

15520 Commits

Author SHA1 Message Date
Darius Kazemi 441dca176d Merge tag 'v4.2.10' into hometown-4.2-merge 2024-07-04 08:13:56 -07:00
Claire a5b4a2b7e7
Bump version to v4.2.10 (#30910) 2024-07-04 16:46:35 +02:00
Claire d4bf22b632
Merge pull request from GHSA-xjvf-fm67-4qc3 2024-07-04 16:45:52 +02:00
Claire 4fb4721072
Merge pull request from GHSA-58x8-3qxw-6hm7 
* Fix insufficient permission checking for public timeline endpoints

Note that this changes unauthenticated access failure code from 401 to 422

* Add more tests for public timelines

* Require user token in `/api/v1/statuses/:id/translate` and `/api/v1/scheduled_statuses`
 2024-07-04 16:26:49 +02:00
Claire df974a912b
Merge pull request from GHSA-vp5r-5pgw-jwqx 
* Fix streaming sessions not being closed when revoking access to an app

* Add tests for GHSA-7w3c-p9j8-mq3x
 2024-07-04 16:11:28 +02:00
Darius Kazemi e09be08a6b Removing huge logo banner thing on admin page on mobile 2024-07-03 15:20:34 -07:00
Darius Kazemi cf3234adfd Custom theme fixes plus some db cruft 2024-07-03 15:09:49 -07:00
Darius Kazemi b28d4b3c3b Fixing stray char 2024-07-03 09:07:33 -07:00
Darius Kazemi 5e10ac130f Merge branch 'lets-bump-hometown-to-mastodon-4.2' of github.com:queer-group/queer.group into hometown-4.2-merge-2 2024-07-03 09:03:27 -07:00
nachtjasmin c72697c2d2
Merge latest changes from 'stable-4.2' 2024-07-03 17:39:34 +02:00
nachtjasmin 424b01c6e4
Merge tag 'v4.2.9' into lets-bump-hometown-to-mastodon-4.2 2024-07-03 17:39:31 +02:00
renovate[bot] 9f517cc04e
Update dependency fastimage to v2.3.0 (#28488) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-07-03 17:38:52 +02:00
Darius Kazemi fce9d945ef
Render hints with HTML for hometown preferences 2024-07-03 17:38:52 +02:00
Claire 6cd9bd6ae1 fix: Return HTTP 422 when scheduled status time is less than 5 minutes (#30584) 2024-07-03 10:57:46 +02:00
David Roetzel 9b6219c48f Improve encoding detection for link cards (#30780) 2024-07-03 10:57:46 +02:00
Eugen Rochko 88b2d6eca5 Change search modifiers to be case-insensitive (#30865) 2024-07-03 10:57:46 +02:00
David Roetzel 846f59c6e9 Add size limit for link preview URLs (#30854) 2024-07-03 10:57:46 +02:00
Tim Rogers 17f69c0002 Added check for STATSD_ADDR setting to emit a warning and proceed rather than crashing if the address is unreachable (#30691) 2024-07-02 15:08:24 +02:00
Claire 1e87634a43 Update dependency charlock_holmes 2024-07-02 15:08:24 +02:00
Claire 5fd7cd79e0 Specify yarn version to avoid confusion with main which uses Yarn 4 2024-07-02 15:08:24 +02:00
Claire fcae9435ec Fix `/admin/accounts/:account_id/statuses/:id` for edited posts with media attachments (#30819) 2024-07-02 15:08:24 +02:00
Claire 55408f8085 Update dependency cbor 2024-07-02 15:08:24 +02:00
Claire 3f75c6f048 Update dependency rails 2024-07-02 15:08:24 +02:00
Claire bfc287fd6b Remove dependency on posix-spawn (#18559) 2024-07-02 15:08:24 +02:00
Claire 19ed22dc58 Fix duplicate `@context` attribute in user export (#30653) 2024-06-18 15:37:41 +02:00
Claire 520b2086af Change PWA start URL from `/home` to `/` (#27377) 2024-06-18 15:37:41 +02:00
Claire c93aacafde
Bump version to v4.2.9 (#30470) 2024-05-30 15:34:50 +02:00
Claire 9740c7eaea Fix rate-limiting incorrectly triggering a session cookie on most endpoints (#30483) 2024-05-30 15:14:03 +02:00
Claire 8ab0ca7d64
Merge pull request from GHSA-c2r5-cfqr-c553 
* Add hardening monkey-patch to prevent IP spoofing on misconfigured installations

* Remove rack-attack safelist
 2024-05-30 14:24:29 +02:00
Claire 7920aa59e8
Merge pull request from GHSA-q3rg-xx5v-4mxh 2024-05-30 14:14:04 +02:00
Claire 943792c187
Merge pull request from GHSA-5fq7-3p3j-9vrf 2024-05-30 14:03:13 +02:00
Emelia Smith 186f916192 Fix: remove broken OAuth Application vacuuming & throttle OAuth Application registrations (#30316) 
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
 2024-05-29 16:39:26 +02:00
Claire f9c41ae43b Normalize language code of incoming posts (#30403) 2024-05-29 15:31:26 +02:00
Claire b8edc95e8a Fix leaking Elasticsearch connections in Sidekiq processes (#30450) 2024-05-29 15:31:26 +02:00
Claire 16213a678d Update dependency rexml to 3.2.8 2024-05-29 15:31:26 +02:00
Claire a8dd32102f Update dependency nokogiri to 1.16.5 2024-05-17 12:30:00 +02:00
Claire 6fc07ff31f Update dependency fastimage to 2.3.1 2024-05-17 12:30:00 +02:00
Claire 997b021b69 Update dependency rotp to 6.3.0 2024-05-17 12:30:00 +02:00
Claire 2865bfadaf Update dependency json-jwt to 1.15.3.1 2024-05-17 12:30:00 +02:00
Claire 8c72e80019 Update dependency rack-cors to 2.0.2 2024-05-17 12:30:00 +02:00
Claire 8cf78825a2 Fix off-by-one in `tootctl media` commands (#30306) 2024-05-17 12:30:00 +02:00
Emelia Smith 67b2e62331 Fix missing destory audit logs for Domain Allows (#30125) 2024-05-17 12:30:00 +02:00
Claire 56b7d1a7b6 Fix not being able to block a subdomain of an already-blocked domain through the API (#30119) 2024-05-17 12:30:00 +02:00
Claire 51ef619140 Fix Idempotency-Key ignored when scheduling a post (#30084) 2024-05-17 12:30:00 +02:00
Tim Rogers e69780ec59 Fixed crash when supplying FFMPEG_BINARY environment variable (#30022) 2024-05-17 12:30:00 +02:00
Claire c3be5a3d2e Remove caching in `cache_collection` (#29862) 2024-05-17 12:30:00 +02:00
Claire 86807e4799 Improve email address validation (#29838) 2024-05-17 12:30:00 +02:00
Matt Jankowski 0143c9d3e1 Fix results/query in `api/v1/featured_tags/suggestions` (#29597) 2024-05-17 12:30:00 +02:00
Jeong Arm ab3f9852f2 Normalize idna domain before account unblock domain (#29530) 2024-05-17 12:30:00 +02:00
Claire 7af69f5cf5 Fix admin account created by `mastodon:setup` not being auto-approved (#29379) 2024-05-17 12:30:00 +02:00