Commit Graph

675 Commits (5e1752ce3f21a06287d0a0821c02835c06227441)

Author SHA1 Message Date
Claire 5e1752ce3f
Bump version to v4.1.3 ()
Claire dc8f1fbd97
Merge pull request from GHSA-9928-3cp5-93fm
* Fix attachments getting processed despite failing content-type validation

* Add a restrictive ImageMagick security policy tailored for Mastodon

* Fix misdetection of MP3 files with large cover art

* Reject unprocessable audio/video files instead of keeping them unchanged
Claire 6d8e0fae3e
Merge pull request from GHSA-ccm4-vgcc-73hp
* Tighten allowed HTML in oEmbed-based preview cards

* Sanitize preview cards at render time

* Add `sandbox` attribute to preview card iframes
Claire fed9cbfd2b
Add hardened headers to user-uploaded files ()
Claire c78280a8ce
Add translate="no" to outgoing mentions and links ()
Matt Jankowski b5675e265e
Add coverage for `CLI::Feeds` command ()
Matt Jankowski 07933db788
Add coverage for `CLI::Cache` command ()
Nick Schonning c66250abf1
Autofix Rubocop Regex Style rules ()
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
Jed Fox 768b00c4d0
Consistently use middle dot (·) instead of bullet (•) to separate items ()
Matt Jankowski cd4f0feab8
Extract verify options method in search cli ()
Matt Jankowski 35c1c3e57a
Add CLI area progress bar helper ()
Matt Jankowski dc26140d54
Use thor methods instead of tty prompt in maintenance cli ()
Matt Jankowski 1baf40077b
Fix FormatStringToken cop in CLI ()
Matt Jankowski 80c7de9984
Fix Rails/WhereExists cop in CLI ()
Matt Jankowski b7b96efd17
Extract helper method for error report in cli/accounts command ()
Matt Jankowski 2cecb2dc9e
Increment index which was previously not used in maintenance CLI loop ()
Matt Jankowski ec9bc7e604
Consistent usage of CLI `dry_run?` method ()
Matt Jankowski 55785b1603
Extract methods for user de-duping in maintenance CLI ()
Claire 1d588d58f1
Improve various queries against account domains ()
Matt Jankowski 384345b0de
Add CLI Base class for command line code ()
Matt Jankowski b6b4ea4ca5
Move the mastodon/*_cli files to mastodon/cli/* ()
Nick Schonning 99e2e9b81f
Fix minor typos in comments and spec names ()
Daniel M Brasil 536dd046d4
Add ability to block sign-ups from IP using the CLI ()
Daniel M Brasil ffb3fef7db
Fix uncaught `ActiveRecord::StatementInvalid` in Mastodon::IpBlocksCLI ()
Renaud Chaput 830e6cefae
Add version suffixes to nightly & edge image builds ()
Nick Schonning 569b39256b
Bump rubocop-rails 2.19.1 with update .rubocop_todo.yml ()
Nick Schonning da3bd913ae
Autofix Rubocop Style/HashSyntax ()
Matt Jankowski 2c6c398c60
Fix Performance/CollectionLiteralInLoop cop ()
Matt Jankowski 24491abf6d
Fix Rails/DeprecatedActiveModelErrorsMethods cop ()
Matt Jankowski 5e060e1f44
Fix Performance/Sum cop ()
Claire 1ed0ff30d3
Fix `tootctl accounts cull` crashing when encountering a domain resolving to a private address ()
Matt Jankowski 88d33f361f
Fix Lint/DuplicateBranch cop ()
Daniel M Brasil e8fe941015
Fix `tootctl accounts approve --number N` not aproving N earliest registrations ()
Matt Jankowski 2e43461100
Fix Rails/Output cop ()
Matt Jankowski 60ac9e8634
Fix Rails/SquishedSQLHeredocs cop ()
Daniel M Brasil 1d9969fadf
Fix `tootctl accounts create --reattach --force` not working with confirmed accounts ()
Claire 528b8e7e3a
Fix crash in `tootctl accounts create --reattach --force` ()
Daniel M Brasil faf657d709
Fix uncaught ActiveRecord::StatementInvalid exception in `Mastodon::AccountsCLI#approve` ()
Eugen Rochko e98c86050a
Refactor `Cache-Control` and `Vary` definitions ()
Daniel M Brasil 3afa1fda7a
Fix email confirmation skip option in `tootctl accounts modify USERNAME --email EMAIL --confirm` ()
Daniel M Brasil b0800d602e
tootctl: add --approve option to tootctl accounts create ()
Matt Jankowski a2a66300d9
Clean up the post deployment migration generator ()
Claire 3d8bd093b9
Bump version to v4.1.2 ()
Claire 5c499f54e3
Change root Chewy strategy to emit a warning instead of erroring out in production mode ()
Alison Wheeler 2f7c3cb628
Update redis_config.rb to remove warning message ()
Eugen Rochko a9b5598c97
Change user settings to be stored in a more optimal way ()
Co-authored-by: Claire <claire.github-309c@sitedethib.com>
Claire 0d70deee53
Add migration tests for user mail notification settings ()
Matt Jankowski b9e34ef098
Migration warning helper, and only run in production env ()
Claire 7f8e1bede4
Bump version to v4.1.1 ()
Claire bdeb6ff180
Fix crash in `tootctl` commands making use of parallelization when Elasticsearch is enabled ()