amechama/sharkey
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 5c0481070a Merge remote-tracking branch 'upstream/stable' into stable stable hijiki 2024-11-21 13:26:12 +0900
  • a38d8a91a1 merge: Fix .punyHost misuse (!765) Julia 2024-11-21 02:26:43 +0000
  • 6027b516e1
         Fix .punyHost misuse Julia Johannesen 2024-11-20 21:24:35 -0500
  • 757d9aa5ee merge: Fix type error(s) in security fixes (!764) Julia 2024-11-21 01:44:15 +0000
  • 36af07abe2
         Fix another style error Julia Johannesen 2024-11-20 20:31:22 -0500
  • 23c4aa2571
         Fix style error Julia Johannesen 2024-11-20 20:24:59 -0500
  • 1758f29364
         Fix error in test function calls Julia Johannesen 2024-11-20 20:16:43 -0500
  • fa3cf6c299
         Fix type error in security fixes Julia Johannesen 2024-11-20 20:06:46 -0500
  • 4b556efdaa merge: (re-merge) Prevent DoS from spammed media proxy requests (!763) Julia 2024-11-21 00:40:52 +0000
  • b0834ebf55 prevent DoS from spammed media proxy requests Hazelnoot 2024-11-19 22:59:07 -0500
  • 2234fbcb11 merge: Bump version (!762) Julia 2024-11-21 00:23:26 +0000
  • 8e90484b3e
         Bump version Julia Johannesen 2024-11-20 19:21:57 -0500
  • 0fcb23c4c1 merge: Coordinated Security Release (!761) Julia 2024-11-21 00:20:48 +0000
  • 776f6fd1f5
         fix(backend): allow fetchSummaryFromProxy, trueMail to access local addresses rectcoordsystem 2024-11-13 15:27:17 +0900
  • 7b3e3f8e25
         fix(backend): add isLocalAddressAllowed option to getAgentByUrl and send (HttpRequestService) rectcoordsystem 2024-11-13 13:30:01 +0900
  • 360d71278a
         fix(backend): lint and typecheck rectcoordsystem 2024-11-13 03:27:52 +0900
  • 663c06be00
         Apply suggestions from code review rectcoordsystem 2024-11-13 03:06:22 +0900
  • 7ccccf5545
         fix(backend): allow accessing private IP when testing rectcoordsystem 2024-11-06 06:33:44 +0900
  • f36f4b5398
         fix(backend): check target IP before sending HTTP request rectcoordsystem 2024-11-06 05:31:11 +0900
  • cc4e99fdde
         fix: Try using CacheService to avoid excess db lookups Julia Johannesen 2024-11-14 23:43:19 -0500
  • 5764fa55cb
         fix: primitives 25-33: proper local instance checks Julia Johannesen 2024-11-14 22:01:22 -0500
  • 74565f67f7
         fix: primitives 21, 22, and 23: reuse resolver Julia Johannesen 2024-11-14 21:53:16 -0500
  • 408e782507
         fix: primitive 19 & 20: respect blocks and hide more Julia Johannesen 2024-11-14 21:38:17 -0500
  • cbf8cc376e
         fix: primitive 18: ap/get bypasses access checks Julia Johannesen 2024-11-14 21:23:27 -0500
  • c04f344049
         fix: primitive 13: check attribution against actor in notes Julia Johannesen 2024-11-14 21:17:30 -0500
  • b9080da75d
         fix: code style for primitive 17 Julia Johannesen 2024-11-14 20:28:50 -0500
  • 4d925fc086
         fix: primitive 17: note same-origin identifier validation can be bypassed by wrapping the id in an array Laura Hausmann 2024-10-24 04:18:49 +0200
  • b74e2e9167
         fix: primitive 16: improper same-origin validation for user uri and url Laura Hausmann 2024-10-24 05:11:16 +0200
  • ebea1a2962
         fix: primitive 15: improper same-origin validation for note uri and url Laura Hausmann 2024-10-24 05:07:58 +0200
  • 4c432c07cb
         fix: code style for primitive 14 Julia Johannesen 2024-11-14 20:21:17 -0500
  • 322b3b677f
         fix: primitive 14: improper validation of outbox, followers, following & shared inbox collections Laura Hausmann 2024-10-26 19:51:11 +0200
  • 1c7e05ce9e
         fix: primitive 7 & 12: prevent poll spoofing Julia Johannesen 2024-11-14 19:57:29 -0500
  • 9ab25ede28
         fix: primitives 9, 10 & 11: http signature validation doesn't enforce required headers or specify auth header name Laura Hausmann 2024-10-24 04:40:33 +0200
  • 174dfb83d0
         fix: primitive 6: reject anonymous objects that were fetched by their id Laura Hausmann 2024-10-24 04:28:43 +0200
  • ad8e8793c7
         fix: primitives 5 & 8: reject activities with non-string identifiers Laura Hausmann 2024-10-24 04:37:47 +0200
  • 1e14612f0e
         fix: primitive 4: missing same-origin identifier validation of collection-wrapped activities Laura Hausmann 2024-10-24 04:11:35 +0200
  • 9090b745e6
         fix: primitive 3: validation of non-final url Laura Hausmann 2024-10-24 04:04:56 +0200
  • d883934826
         fix: primitive 2: acceptance of cross-origin alternate links Laura Hausmann 2024-10-24 05:13:35 +0200
  • 27339e03c2 merge: Bump version (!756) Julia 2024-11-20 05:22:39 +0000
  • 680c2a0718
         Bump version Julia Johannesen 2024-11-20 00:09:56 -0500
  • f258888408 merge: Prevent DoS from spammed media proxy requests (!754) Julia 2024-11-20 04:59:00 +0000
  • d150e92f41 prevent DoS from spammed media proxy requests Hazelnoot 2024-11-19 22:59:07 -0500
  • cdb14eda5b . hijiki 2024-11-13 12:34:29 +0900
  • 0cf9f2325e . hijiki 2024-11-13 12:05:35 +0900
  • f4bd99c423 翻訳追加とタイムライン非表示機能追加 AmaseCocoa 2024-10-02 18:43:20 +0900
  • 23f17f9360 翻訳追加 hijiki 2024-11-13 10:13:35 +0900
  • e9ad2d23c0 翻訳を追加 hijiki 2024-11-11 05:52:09 +0900
  • e6d3693fb0 s hijiki 2024-11-11 04:16:47 +0900
  • 24b171f486 feat: フォロワーの通知にフォローバックボタンを追加 まっちゃとーにゅ 2024-03-21 00:34:59 +0900
  • ed896934fc enhance: フォローしているユーザーなら鍵ノートでもアンテナにひっかかるように mai 2024-11-06 15:12:31 +0000
  • bc7fd1fa46 みすってた hijiki 2024-11-10 08:15:23 +0900
  • 4c2e6fae5b 翻訳追加 hijiki 2024-11-10 08:04:23 +0900
  • 1d3952dd90 日本語追加 hijiki 2024-11-08 06:00:41 +0900
  • 2a561f16ef ほとんどのapiエンドポイントを認証ありにした2 hijiki 2024-11-08 04:59:01 +0900
  • e2689a1d8d ほとんどのapiエンドポイントを認証ありにした hijiki 2024-11-08 04:28:00 +0900
  • 222cdcf688 2024.9.1 hijiki 2024-11-07 07:48:15 +0900
  • aa03bcb471 update: フォントの追加 mai 2024-05-06 15:16:32 +0000
  • 4e774832da fix: CSPポリシーのせいだった。ひどい。 mai 2024-05-06 15:04:40 +0000
  • f4862e4ec9 update: 調整 mai 2024-05-06 15:04:17 +0000
  • 3d0d14d1fa fix: !importantでいけるか!?!?!? mai 2024-05-06 12:00:06 +0000
  • d7c01e2d47 update: フォントの追加 mai 2024-05-06 10:20:16 +0000
  • a868ef584a fix: うごくように mai 2024-05-06 10:12:38 +0000
  • 6043f1d87e feat(client): フォントを変更できる機能を実装 yukineko 2023-03-08 02:09:23 +0900
  • 680e3ac7a3 merge: release 2024.9.1 (!733) Julia 2024-11-05 03:59:23 +0000
  • 002d0def42 comment out sharkey-specific crowdin link dakkar 2024-11-04 20:54:48 +0000
  • a769423c15 bump version number for release dakkar 2024-11-04 18:50:26 +0000
  • 6c889cb86e コンフリクト解消 hijiki 2024-11-04 23:31:44 +0900
  • 09d3449309 Merge pull request #45 from lqvp/master ひたりん 2024-10-09 12:51:25 +0900
  • 1cd2d64536 みー hijiki 2024-11-04 20:34:55 +0900
  • e783359aca merge: Revert "Experimental: dont mark backfetched notes as silent" (!703) Julia 2024-11-03 19:39:00 +0000
  • e24c5bd1e8 余計なものが入っていたので除去 hijiki 2024-11-04 01:21:42 +0900
  • 796492e3bf Merge pull request #35 from lqvp/master ひたりん 2024-10-01 05:46:05 +0900
  • 10be4267b1 いいね数を隠すように hijiki 2024-11-03 22:58:05 +0900
  • 1b0edffedd Merge pull request #43 from lqvp/master ひたりん 2024-10-05 13:43:56 +0900
  • 074ea57bff Revert "Merge pull request #40 from lqvp/master" hijiki 2024-11-03 22:17:49 +0900
  • bf40bc4fe3 Merge pull request #40 from lqvp/master ひたりん 2024-10-03 08:14:47 +0900
  • 4299588806 Merge pull request #39 from lqvp/master lqvp 2024-10-03 06:47:44 +0900
  • fa03c4cebe merge: Respect user privacy settings in federation endpoints (resolves #712) (!652) dakkar 2024-11-02 22:02:54 +0000
  • ddf572c22f fix lint errors in FollowingEntityService.ts Hazelnoot 2024-11-02 17:43:11 -0400
  • 872f987845 hide instance following / followers tabs from logged-out users Hazelnoot 2024-11-02 12:03:14 -0400
  • 37fd454f70 factor out shared code Hazel K 2024-10-07 18:56:48 -0400
  • 2e6726c81f update autogen types Hazel K 2024-10-07 17:02:29 -0400
  • 3a72bf453a respect following privacy settings Hazel K 2024-10-04 22:07:30 -0400
  • 65d81a4ae2 Revert "fix incorrect populated object in followers endpoint" Hazel K 2024-10-04 20:57:30 -0400
  • 8f0df1f01c check for blocks in following / followers endpoints Hazel K 2024-10-04 20:57:24 -0400
  • c566fa1f36 require auth for followers & following endpoints Hazel K 2024-10-04 17:55:02 -0400
  • 1906dbe1dc merge: Fix frontend TS configs (!725) dakkar 2024-11-02 18:00:57 +0000
  • b97db55a94 fix eslint in frontend / frontend-embed Hazelnoot 2024-11-02 13:00:49 -0400
  • 56023140cb merge: add FriendlyCaptcha as a captcha solution (!723) dakkar 2024-11-02 15:46:25 +0000
  • 4ad816e0df fix frontend-embed tsconfig includes Hazelnoot 2024-11-02 11:40:51 -0400
  • 5e054d0218 fix frontend tsconfig includes Hazelnoot 2024-11-02 11:40:40 -0400
  • b8b077cbad chore: replace recaptcha with frc Marie 2024-11-02 11:02:13 +0000
  • d786e96c2b
         upd: add FriendlyCaptcha as a captcha solution Marie 2024-11-02 02:20:35 +0100
  • 8824422cb5 merge: Add a clear filter option to the search widget if set (!722) Hazelnoot 2024-11-01 18:01:19 +0000
  • bcc845cdb1 merge: Allow admins to create users (resolves #764) (!719) Hazelnoot 2024-11-01 18:00:33 +0000
  • c8357a410b upd: append ✔ on set filter Marie 2024-11-01 17:45:04 +0000
  • 8b16b0fce9 merge: Hide Following Feed from guest users/logged out users and also don't show the button for migrated accounts (!721) dakkar 2024-11-01 17:33:39 +0000
  • 4da262d98c merge: fix inconsistent following feed filters on mobile (resolves #776) (!717) Hazelnoot 2024-11-01 15:40:43 +0000
  • ade801ec58 check token permissions in admin/accounts/create.ts Hazelnoot 2024-11-01 10:12:28 -0400
  • 37ff2bb0ca always approve the first / root user Hazelnoot 2024-10-26 16:50:40 -0400