| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|\
| |
| |
| |
| | |
tests: Add a basic test for ActivityStreams
See merge request hubzilla/core!2146
|
| |
| |
| |
| |
| | |
This is just a basic test that parses a specific object, and tests that
all the referenced objects are fetched from the originating servers.
|
|\ \
| | |
| | |
| | |
| | | |
markdown: Don't link URLs in code blocks.
See merge request hubzilla/core!2145
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
When passing a content throught the `markdown_to_bb` function
to convert any markdown in the content, any recognized URLs in the
content would be converted to BBCode links as a post processing step
after the main conversion.
After commit a1ccacb825edac6ae36e5db4f62ebfe7aeaebe9f this did no longer
consider content within code blocks, and would thus convert them as
to BBCode links.
Example: The following content
[code]
example url: https://example.com
[/code]
Would be converted to
[code]
example url: [url=https://example.com]https://example.com[/url]
[/code]
Prior to commit a1ccacb825edac6ae36e5db4f62ebfe7aeaebe9f, code blocks
would be protected, so this would not happen.
This patch removes the post processing step for converting plain URLs to
links completely from this routine. This functionality is in any case
covered in the actual BBCode parser where it belongs.
This will have some other side effects as well, such as images and links
created using Markdown, will not be converted to [zmg] or [zrl] tags
where that would be done automatically before. If you intend to use a
[zrl] or [zmg] tag, you now need to do so explicitly.
|
| |/
|/|
| |
| | |
but the previous logic was throwing error in postgresql (while the result was correct anyway)
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
|\ \
| | |
| | |
| | |
| | | |
Fix help for other languages than english
See merge request hubzilla/core!2144
|
| | | |
|
| | |
| | |
| | |
| | | |
This finally fixes the help for languages other than english.
|
| | |
| | |
| | |
| | |
| | |
| | | |
The drop shadow looked terrible in dark mode. While that could be fixed,
I think it looks better with just using the link hover color and making
the selected item bold.
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
This allows us to get rid of some more unneccessary JavaScript that just
implements stuff that web browsers now do anyways.
|
| |/
| |
| |
| |
| | |
Changes the element where the jQuery.toc plugin looks for headings to
only include the actual help contents, not the toc itself.
|
|\ \
| |/
|/|
| |
| | |
deps: Upgrade smarty/smarty to version 4.5.4
See merge request hubzilla/core!2143
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This eliminates a potential vulnerability where an template author could
inject arbitrary PHP files to be run via the 'extends' tag.
See:
- https://github.com/smarty-php/smarty/security/advisories/GHSA-4rmg-292m-wg3w
- https://github.com/smarty-php/smarty/commit/0be92bc8a6fb83e6e0d883946f7e7c09ba4e857a
Impact assessment:
In our case I would consider this a low severity issue as we don't
allow users to dynamically add or edit smarty templates. Templates has
to be updated via merge requests, or by installing a theme. In both
cases a malicious attacker already has easier ways to inject whatever
code they want.
Further, the extend tag is not in use in any of our core templates.
|
|\ \
| | |
| | |
| | |
| | | |
Update Spanish strings
See merge request hubzilla/core!2142
|
| | |
| | |
| | |
| | |
| | | |
(cherry picked from commit d1811ea1f3f7249023c51104154d680f09df8572)
Co-authored-by: mjfriaza:4GF~eYj,-iAv <mjfriaza@disroot.org>
|
|/ / |
|
|/ |
|
|\ |
|
| |\
| | |
| | |
| | |
| | | |
Don't autoload test cases using composer.
See merge request hubzilla/core!2141
|
| |/
| |
| |
| |
| |
| |
| | |
Introduces a bootstrap file that ensures that the base test case classes
are loaded and available instead.
This reduces the number of warnings when running composer install.
|
|/ |
|
| |
|
| |
|
|
|
|
| |
minor code cleanup
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
add the token to the original ACL instead of rewriting the ACL to theitem ACL - it probably makes much more sense that way
|
| |
|