Crimekillz
392a0cca55
Revert disable post import for security reasons
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-05 18:15:26 -06:00
Crimekillz
fb0ec3bdcc
Update re2
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-06 02:08:03 +02:00
Crimekillz
00e517ab6c
Achievements 1.5/2
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-06 02:08:03 +02:00
Crimekillz
0298aa3ee0
Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-06 02:08:03 +02:00
limepotato
c2d625181c
revert ea2d709116
...
revert Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-05 07:34:02 +02:00
Crimekillz
ea2d709116
Add Achievements Part 1/2, code by syuilo, Syuilotan@yahoo.co.jp
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-01 18:17:37 -06:00
8aa97e21d2
oops
/ test-build (push) Has been cancelled
2024-07-01 18:04:49 -06:00
8e26dd6bc3
withdrawal metrics and obliterate
2024-07-01 17:56:13 -06:00
2c98459dc6
Merge branch 'main' of https://iceshrimp.dev/limepotato/jormungandr-bite
/ test-build (push) Waiting to run
2024-07-01 12:15:33 -06:00
48606b487a
avatar is now blob is cat comf coffee
2024-07-01 12:15:31 -06:00
limepotato
c8689ca82b
revert 24bd05d090
...
/ test-build (push) Waiting to run
revert temporarily re-enable post imports (not masto)
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-07-01 04:49:47 +02:00
24bd05d090
temporarily re-enable post imports (not masto)
...
Signed-off-by: limepotato <limepot@protonmail.ch>
2024-06-30 15:25:23 -06:00
d45477847f
better default avatar
2024-06-29 10:44:23 -06:00
fe1bea20df
update images
2024-06-29 10:38:57 -06:00
1e9a7096e1
withdrawal traumatize patch
2024-06-17 13:39:53 -06:00
1d0ff68688
withdrawal hide-federation patch
2024-06-17 13:38:56 -06:00
e93373d72c
withdrawal robots patch
2024-06-17 13:38:18 -06:00
98f3f55371
withdrawal replacements patch
2024-06-17 13:02:29 -06:00
866a598aad
ouroboros icons
2024-06-17 12:01:26 -06:00
17532215ed
menhera images
2024-06-17 10:48:37 -06:00
a44a89276d
make pinned post limit configurable
2024-06-17 10:37:56 -06:00
limepotato
4410989fa2
revert ba0e5eec93
...
revert ?
2024-06-17 18:18:03 +02:00
ba0e5eec93
?
2024-06-17 10:15:54 -06:00
mia
cc4a0d3e58
apply patches
2024-04-29 07:55:26 -07:00
Laura Hausmann
febb499fcb
[backend] Compact LD-signed activities against well-known context to defend against spoofing attacks
2024-04-29 16:36:58 +02:00
Laura Hausmann
dcfa69ff9d
[backend/masto-client] Fix user profile html cache not updating
2024-04-27 18:48:03 +02:00
Laura Hausmann
6f3818a8bb
[backend/masto-client] Correctly set meId in FTS query helper
2024-04-24 03:02:24 +02:00
mei23
301c754e95
[backend] Add Cache-Control to Bull Dashboard
2024-04-19 17:11:14 +02:00
Ezeani Emmanuel
3fa791d71f
[backend] Improve custom TypeORM logger with configurable logging options
...
Co-authored-by: Laura Hausmann <laura@hausmann.dev>
2024-04-11 17:22:45 +02:00
Laura Hausmann
74a3375886
[backend] Add quote_id to mastodon api note responses
2024-04-10 18:21:59 +02:00
Laura Hausmann
5a30581c73
[backend] Fix autofollowedAccount being set to random (possibly non-local) users on update-meta
2024-04-08 20:39:41 +02:00
Laura Hausmann
41cb218aa8
[backend] Set X-Content-Type-Options to nosniff on the drive files endpoint
2024-03-30 13:11:15 +01:00
Laura Hausmann
cf506d3bd9
[backend] Reject anonymous objects in the AP resolver
2024-03-30 13:11:09 +01:00
Laura Hausmann
ac57c58ecf
[backend] Stricter validation of activity identifiers
...
This resolves a security issue that was disclosed on 2024-03-24 & patched in coordination with other affected software on 2024-03-30.
Huge thanks to Oneric for the detailed security disclosure.
2024-03-30 13:11:03 +01:00
Crimekillz
74df0b3602
Fix bug: Pass reference to Note OBJ when creating notifications for Poll Vote and Poll End so muted threads can be resolved correctly
2024-03-26 16:24:19 +01:00
Laura Hausmann
01fbd1a5c7
[backend] Fix video playback for files hosted from different origins
2024-03-18 15:34:14 +01:00
CookiLover311
ccec3e7e63
[mastodon-client] Add default reaction to /v1/instance
2024-03-01 14:25:41 +01:00
老周部落
3824767cc9
[backend] Fix resolver cannot parse some follows and notes request
2024-02-26 08:49:45 +01:00
naskya
e9ef70e272
fix (backend): check url properly
...
Co-authored-by: syuilo <Syuilotan@yahoo.co.jp>
2024-02-26 00:11:21 +01:00
Laura Hausmann
e2cff0340f
[backend] When fetching activities, specify the acceptable JSON-LD profile explicitly
2024-02-17 16:11:23 +01:00
Laura Hausmann
099ba9ce65
[backend] Enforce JSON-LD profile when fetching activities
2024-02-17 15:59:24 +01:00
Laura Hausmann
31122636d3
[backend] Fix federation for incoming note edits with an attachment that has no alt text
2024-02-17 04:04:25 +01:00
Laura Hausmann
5f6096c1b7
[backend] Verify object id host matches final URL when fetching remote activities
2024-02-16 18:42:23 +01:00
Laura Hausmann
9fc45f166c
[backend] Verify response content type when fetching remote activities
2024-02-16 18:42:22 +01:00
Laura Hausmann
129cc4408a
[mastodon-client] Register full OAuth scopes as well
2024-02-14 23:56:11 +01:00
Laura Hausmann
3399187302
[mastodon-client] Fix /v2/suggestions endpoint (undocumented API behavior strikes again)
2024-02-14 23:55:50 +01:00
Laura Hausmann
e49d168ecd
[mastodon-client] Add support for quote_id parameter when creating posts ( #515 )
2024-02-13 16:51:08 +01:00
Laura Hausmann
4b20ab6ad4
[backend] Fix typo in audience.ts isPublic check
2024-02-07 19:56:02 +01:00
Laura Hausmann
1378037384
[backend] Only allow author to see hidden posts
2024-02-04 20:23:42 +01:00
Laura Hausmann
f14c5ed4ef
[backend/frontend] Disable post imports for security reasons
2024-02-04 20:12:51 +01:00