barkey

mirrors/barkey

Fork 0

mirror of https://codeberg.org/yeentown/barkey.git synced 2025-07-30 07:44:35 +00:00

Commit graph

c1f19fad1e

fix(backend): fix apResolver (#15010) かっこかり 2024-11-21 14:36:24 +09:00
5181836dc3 Merge pull request 'update-to-2024.9.3' (#16) from update-to-2024.9.3 into dev zima 2024-11-21 05:32:22 +00:00
241b186a8a merge: Prevent "mark instance as NSFW" from producing hellspawns (!749) Hazelnoot 2024-11-21 05:26:41 +00:00
a150bc53ab merge: Respect pinned note limit for remote users (resolves #780) (!750) Hazelnoot 2024-11-21 05:26:10 +00:00
4098a0ced6 Merge tag '2024.9.3' into update-to-2024.9.3 zima 2024-11-20 21:52:15 -07:00
4b503f88e1 normalize naming of isPackedPureRenote and PackedPureRenote Hazelnoot 2024-11-17 09:08:04 -05:00
faf1b3559a fix note hiding when renote and target have different visibility settings Hazelnoot 2024-11-08 09:58:15 -05:00
2fb2e52312 add isPureRenotePacked Hazelnoot 2024-11-08 09:55:26 -05:00
2a4c432f41 don't generate URL previews for blocked domains Hazelnoot 2024-11-18 10:41:31 -05:00
4c6cec552e verify that preview URL is valid Hazelnoot 2024-11-18 10:41:18 -05:00
c48faca707 fix lint errors in UrlPreviewService Hazelnoot 2024-11-18 10:33:32 -05:00
c9afaba0d4 adjust translation string "Select a follow relationship..." Hazelnoot 2024-11-17 10:31:04 -05:00
5b48032681 restore animation and styling in following-feed Hazelnoot 2024-11-17 10:26:31 -05:00
83472dbd82 add following feed to the deck UI Hazelnoot 2024-11-02 11:31:43 -04:00
2b0a622875 separate following feed's menu component from the actual filter options Hazelnoot 2024-11-02 11:30:56 -04:00
4a43e1a9e9 factor out remote followers warning in SkRemoteFollowersWarning.vue Hazelnoot 2024-11-02 11:29:19 -04:00
1ca350e45d define defult Following Feed state in following-feed-utils.ts instead of store.ts Hazelnoot 2024-11-02 11:23:15 -04:00
38e30c0d54 allow following-feed-utils to use alternate state backends Hazelnoot 2024-11-02 11:20:54 -04:00
38787712d9 add responsive padding to recent-notes.vue Hazelnoot 2024-11-02 11:15:27 -04:00
0515fed92d remove unused ref from recent-notes.vue Hazelnoot 2024-11-02 11:14:45 -04:00
1d16656b39 add <Suspense> to enable async components and dynamic imports under the deck UI Hazelnoot 2024-11-02 11:09:52 -04:00
ed6c781426 fix responsive breakpoint in SkUserRecentNotes Hazelnoot 2024-11-02 11:08:37 -04:00
8cbc0761db add functions to access deck column state Hazelnoot 2024-11-02 11:08:16 -04:00
455ccc660e allow deck column updates to be awaited Hazelnoot 2024-11-02 11:07:12 -04:00
a40b77a66b prevent the following feed from auto-selecting a user under the mobile UI Hazelnoot 2024-11-02 10:54:10 -04:00
194bc20af1 fix type of deepMerge Hazelnoot 2024-11-01 18:33:06 -04:00
ca94959fff factor out Following Feed list into SkFollowingRecentNotes.vue Hazelnoot 2024-11-01 16:52:31 -04:00
3a6c2aa835

fix(backend): fix type error(s) in security fixes (#15009) かっこかり 2024-11-21 12:10:02 +09:00
bcc20d6dc4 allow Update activities for non-note posts Hazelnoot 2024-11-03 16:26:00 -05:00
0de7a084a9 fix exception handling for Undo activities Hazelnoot 2024-11-03 16:51:12 -05:00
cfc3ab4b04 fix exception handling for Announce activities Hazelnoot 2024-11-03 16:50:54 -05:00
8f42e8434e fix exception handling for Like activities Hazelnoot 2024-11-03 16:50:43 -05:00
dff465000c fix import-order in ApInboxService Hazelnoot 2024-11-03 16:49:58 -05:00
0f6d26e065 reduce log spam from charts Hazelnoot 2024-11-14 20:25:48 -05:00
cc394d9a4b quote all symbols in hellspawn upgrade script Hazelnoot 2024-11-17 09:32:13 -05:00
c9934c379f remove duplicate isPureRenote method Hazelnoot 2024-11-17 09:31:17 -05:00
eb1e326813 add script to fix hellspawns Hazelnoot 2024-11-14 19:50:34 -05:00
a62e4f1cf2 ignore isNSFW for pure renotes Hazelnoot 2024-11-14 19:32:08 -05:00
dcd5b6d972 replace console.error with this.logger.error (merge error) Hazelnoot 2024-11-17 09:01:59 -05:00
fedf0d7e20 further reduce log spam from updateFeatured errors Hazelnoot 2024-11-14 20:32:59 -05:00
984cfe358d reduce log spam from updateFeatured Hazelnoot 2024-11-14 18:47:28 -05:00
aabb1945e8 respect pinned note limit for remote users Hazelnoot 2024-11-17 09:54:47 -05:00
4e0f7ced84 preserve the raw URI in parseUri Hazelnoot 2024-11-14 18:10:14 -05:00
41536480ce merge: Bump develop version (!766) Julia 2024-11-21 02:58:28 +00:00
59e160147f

Bump develop version Julia Johannesen 2024-11-20 21:32:12 -05:00
a38d8a91a1 merge: Fix .punyHost misuse (!765) Julia 2024-11-21 02:26:43 +00:00
6027b516e1

Fix .punyHost misuse Julia Johannesen 2024-11-20 21:24:35 -05:00
757d9aa5ee merge: Fix type error(s) in security fixes (!764) Julia 2024-11-21 01:44:15 +00:00
36af07abe2

Fix another style error Julia Johannesen 2024-11-20 20:31:22 -05:00
53e827b18c

fix(backend): fix security patches (#15008) かっこかり 2024-11-21 10:30:30 +09:00
23c4aa2571

Fix style error Julia Johannesen 2024-11-20 20:24:59 -05:00
1758f29364

Fix error in test function calls Julia Johannesen 2024-11-20 20:16:43 -05:00
fa3cf6c299

Fix type error in security fixes Julia Johannesen 2024-11-20 20:06:46 -05:00
4b556efdaa merge: (re-merge) Prevent DoS from spammed media proxy requests (!763) Julia 2024-11-21 00:40:52 +00:00
b0834ebf55 prevent DoS from spammed media proxy requests Hazelnoot 2024-11-19 22:59:07 -05:00
0f59adc436 fix ap/show syuilo 2024-11-21 09:25:18 +09:00
2234fbcb11 merge: Bump version (!762) Julia 2024-11-21 00:23:26 +00:00
9fdabe3666 fix(backend): use atomic command to improve security syuilo 2024-11-21 09:22:15 +09:00
8e90484b3e

Bump version Julia Johannesen 2024-11-20 19:21:57 -05:00
0fcb23c4c1 merge: Coordinated Security Release (!761) Julia 2024-11-21 00:20:48 +00:00
776f6fd1f5

fix(backend): allow fetchSummaryFromProxy, trueMail to access local addresses rectcoordsystem 2024-11-13 15:27:17 +09:00
7b3e3f8e25

fix(backend): add isLocalAddressAllowed option to getAgentByUrl and send (HttpRequestService) rectcoordsystem 2024-11-13 13:30:01 +09:00
360d71278a

fix(backend): lint and typecheck rectcoordsystem 2024-11-13 03:27:52 +09:00
663c06be00

Apply suggestions from code review rectcoordsystem 2024-11-13 03:06:22 +09:00
7ccccf5545

fix(backend): allow accessing private IP when testing rectcoordsystem 2024-11-06 06:33:44 +09:00
f36f4b5398

fix(backend): check target IP before sending HTTP request rectcoordsystem 2024-11-06 05:31:11 +09:00
cc4e99fdde

fix: Try using CacheService to avoid excess db lookups Julia Johannesen 2024-11-14 23:43:19 -05:00
5764fa55cb

fix: primitives 25-33: proper local instance checks Julia Johannesen 2024-11-14 22:01:22 -05:00
74565f67f7

fix: primitives 21, 22, and 23: reuse resolver Julia Johannesen 2024-11-14 21:53:16 -05:00
408e782507

fix: primitive 19 & 20: respect blocks and hide more Julia Johannesen 2024-11-14 21:38:17 -05:00
cbf8cc376e

fix: primitive 18: ap/get bypasses access checks Julia Johannesen 2024-11-14 21:23:27 -05:00
c04f344049

fix: primitive 13: check attribution against actor in notes Julia Johannesen 2024-11-14 21:17:30 -05:00
b9080da75d

fix: code style for primitive 17 Julia Johannesen 2024-11-14 20:28:50 -05:00
4d925fc086

fix: primitive 17: note same-origin identifier validation can be bypassed by wrapping the id in an array Laura Hausmann 2024-10-24 04:18:49 +02:00
b74e2e9167

fix: primitive 16: improper same-origin validation for user uri and url Laura Hausmann 2024-10-24 05:11:16 +02:00
ebea1a2962

fix: primitive 15: improper same-origin validation for note uri and url Laura Hausmann 2024-10-24 05:07:58 +02:00
4c432c07cb

fix: code style for primitive 14 Julia Johannesen 2024-11-14 20:21:17 -05:00
322b3b677f

fix: primitive 14: improper validation of outbox, followers, following & shared inbox collections Laura Hausmann 2024-10-26 19:51:11 +02:00
1c7e05ce9e

fix: primitive 7 & 12: prevent poll spoofing Julia Johannesen 2024-11-14 19:57:29 -05:00
9ab25ede28

fix: primitives 9, 10 & 11: http signature validation doesn't enforce required headers or specify auth header name Laura Hausmann 2024-10-24 04:40:33 +02:00
174dfb83d0

fix: primitive 6: reject anonymous objects that were fetched by their id Laura Hausmann 2024-10-24 04:28:43 +02:00
ad8e8793c7

fix: primitives 5 & 8: reject activities with non-string identifiers Laura Hausmann 2024-10-24 04:37:47 +02:00
1e14612f0e

fix: primitive 4: missing same-origin identifier validation of collection-wrapped activities Laura Hausmann 2024-10-24 04:11:35 +02:00
9090b745e6

fix: primitive 3: validation of non-final url Laura Hausmann 2024-10-24 04:04:56 +02:00
d883934826

fix: primitive 2: acceptance of cross-origin alternate links Laura Hausmann 2024-10-24 05:13:35 +02:00
a9a82bed48 Update Sharkey to 2024.9.2 zima 2024-11-20 23:39:52 +00:00
3d8c3aa081 Merge 2024.9.2 zima 2024-11-20 23:38:42 +00:00
090e9392cd

Merge commit from fork rectcoordsystem 2024-11-21 08:27:09 +09:00
b9cb949eb1

Merge commit from fork Julia 2024-11-20 18:24:50 -05:00
5f675201f2

Merge commit from fork Julia 2024-11-20 18:20:09 -05:00
1c284c8154

New Crowdin updates (#15000) syuilo 2024-11-21 08:01:42 +09:00
aa48a0e207

Fix: リノートミュートが新規投稿通知に対して作用していなかった問題を修正 (#15006) Sayamame-beans 2024-11-21 08:00:50 +09:00
f0c3a4cc0b

perf(frontend): reduce api requests for non-logged-in enviroment (#15001) syuilo 2024-11-21 07:58:34 +09:00
b47ebf162f Merge remote-tracking branch 'origin/update-to-2024.9.2' into update-to-2024.9.2 zima 2024-11-20 15:08:13 -07:00
8ac6e62184 migration must happen after fixorm HellhoundSoftware 2024-11-10 02:55:02 -05:00
0670359c4f improve search mfm HellhoundSoftware 2024-11-09 23:21:48 -05:00
73ae0cf039 non-fucked migration script HellhoundSoftware 2024-11-09 20:27:41 -05:00
3054cd4936 she migrate on my TypeORM till i (GUNSHOTS) HellhoundSoftware 2024-11-08 20:38:37 -05:00
783cf3ed4a Change default settings ~keith 2024-11-08 19:31:02 -05:00
bccd6b2dd8 Remove like button ~keith 2024-11-08 19:30:38 -05:00