dependabot[bot]
8a9d9509ec
Bump brakeman from 4.8.2 to 4.9.0 ( #14540 )
...
Bumps [brakeman](https://github.com/presidentbeef/brakeman ) from 4.8.2 to 4.9.0.
- [Release notes](https://github.com/presidentbeef/brakeman/releases )
- [Changelog](https://github.com/presidentbeef/brakeman/blob/main/CHANGES.md )
- [Commits](https://github.com/presidentbeef/brakeman/compare/v4.8.2...v4.9.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
4d67df6155
Bump concurrent-ruby from 1.1.6 to 1.1.7 ( #14539 )
...
Bumps [concurrent-ruby](https://github.com/ruby-concurrency/concurrent-ruby ) from 1.1.6 to 1.1.7.
- [Release notes](https://github.com/ruby-concurrency/concurrent-ruby/releases )
- [Changelog](https://github.com/ruby-concurrency/concurrent-ruby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ruby-concurrency/concurrent-ruby/compare/v1.1.6...v1.1.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
2eabfdaf24
Bump @babel/core from 7.10.5 to 7.11.1 ( #14554 )
...
Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core ) from 7.10.5 to 7.11.1.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.11.1/packages/babel-core )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
ThibG
a55ad84251
Remove dependency on unused and unmaintained http_parser.rb gem ( #14574 )
...
It seems that years ago, the “http” gem dependend on the “http_parser.rb” gem
(it now depends on the “http-parser” gem), and, still years ago, we pulled
it from git in order to benefit from a bugfix that wasn't released yet (#7467 ).
4 years ago
ThibG
0f38f9726a
Fix hardcoded non-breaking space in public view ( #14568 )
4 years ago
Eugen Rochko
01647b8acb
Fix destructuring error when unsubscribing without subscribing ( #14566 )
4 years ago
ThibG
8d217d7231
Improve email address validation ( #14565 )
...
* Increase DNS timeout from 1 second to 5 seconds for MX check
1 seconds is rather short when using a recursive DNS resolver which
hasn't got a cached result already available. Use 5 seconds instead,
which is the timeout value we use for outgoing HTTP queries.
* Add more precise error messages for invalid e-mail addresses
4 years ago
ThibG
7dc4c74265
Add client-side validation in password change forms ( #14564 )
...
* Fix client-side username validation at registration
It used the Account::USERNAME_RE regexp which is for *remote* users,
local user validation is stricter. Also take into account max username length.
* Add client-side form validation for password change
* Add client-side form validation to dedicated registration form
Previous changes only applied to the /about page, not the dedicated form on
/auth
4 years ago
ThibG
d70c3ab4c3
Add HTML form validation for the registration form ( #14560 )
...
* Add HTML-level validation of username in sign-up form
* Make required fields with incorrect values more visible
* Enable HTML form validation for the registration form
* Mark agreement checkbox as required client-side
* Add minimum length to password
* Add client-side password confirmation validation
4 years ago
Eugen Rochko
ef057584fd
Add support for managing multiple stream subscriptions in a single connection ( #14524 )
4 years ago
ThibG
decc5b9a78
Fix `tootctl media` commands not handling snowflake ids for media_attachments ( #14536 )
4 years ago
niwatori24
1326c57506
Use default :edit routing ( #14535 )
4 years ago
niwatori24
8b61bb1c3e
Cache result of SQL ( #14534 )
4 years ago
ThibG
bd3420b139
Fix crash when failing to load emoji picker ( #14525 )
...
Fixes #14523
4 years ago
abcang
4a4d08f3a0
Fix eslint error ( #14521 )
4 years ago
dependabot[bot]
b61e060501
Bump node-notifier from 7.0.1 to 7.0.2 ( #14499 )
...
Bumps [node-notifier](https://github.com/mikaelbr/node-notifier ) from 7.0.1 to 7.0.2.
- [Release notes](https://github.com/mikaelbr/node-notifier/releases )
- [Changelog](https://github.com/mikaelbr/node-notifier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mikaelbr/node-notifier/compare/v7.0.1...v7.0.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
a37d9b6268
Bump minipass-pipeline from 1.2.3 to 1.2.4 ( #14504 )
...
Bumps minipass-pipeline from 1.2.3 to 1.2.4.
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
cdb6b5a04b
Bump @testing-library/jest-dom from 5.11.0 to 5.11.2 ( #14497 )
...
Bumps [@testing-library/jest-dom](https://github.com/testing-library/jest-dom ) from 5.11.0 to 5.11.2.
- [Release notes](https://github.com/testing-library/jest-dom/releases )
- [Changelog](https://github.com/testing-library/jest-dom/blob/master/CHANGELOG.md )
- [Commits](https://github.com/testing-library/jest-dom/compare/v5.11.0...v5.11.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
b7295f16ec
Bump dom-accessibility-api from 0.4.6 to 0.4.7 ( #14496 )
...
Bumps [dom-accessibility-api](https://github.com/eps1lon/dom-accessibility-api ) from 0.4.6 to 0.4.7.
- [Release notes](https://github.com/eps1lon/dom-accessibility-api/releases )
- [Changelog](https://github.com/eps1lon/dom-accessibility-api/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eps1lon/dom-accessibility-api/compare/v0.4.6...v0.4.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
87799371df
Bump postcss-modules-local-by-default from 3.0.2 to 3.0.3 ( #14505 )
...
Bumps [postcss-modules-local-by-default](https://github.com/css-modules/postcss-modules-local-by-default ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/css-modules/postcss-modules-local-by-default/releases )
- [Changelog](https://github.com/css-modules/postcss-modules-local-by-default/blob/master/CHANGELOG.md )
- [Commits](https://github.com/css-modules/postcss-modules-local-by-default/compare/v3.0.2...v3.0.3 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
9d45a6210d
Bump jest from 26.0.1 to 26.2.2 ( #14495 )
...
Bumps [jest](https://github.com/facebook/jest ) from 26.0.1 to 26.2.2.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/compare/v26.0.1...v26.2.2 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
5e292236d9
Bump csstype from 2.6.10 to 2.6.13 ( #14503 )
...
Bumps [csstype](https://github.com/frenic/csstype ) from 2.6.10 to 2.6.13.
- [Release notes](https://github.com/frenic/csstype/releases )
- [Commits](https://github.com/frenic/csstype/compare/v2.6.10...v2.6.13 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
c1c0a0e3a2
Bump excon from 0.75.0 to 0.76.0 ( #14490 )
...
Bumps [excon](https://github.com/excon/excon ) from 0.75.0 to 0.76.0.
- [Release notes](https://github.com/excon/excon/releases )
- [Changelog](https://github.com/excon/excon/blob/master/changelog.txt )
- [Commits](https://github.com/excon/excon/compare/v0.75.0...v0.76.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
4728286a51
Bump eslint from 7.5.0 to 7.6.0 ( #14508 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 7.5.0 to 7.6.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v7.5.0...v7.6.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
a61329199e
Bump pghero from 2.6.0 to 2.7.0 ( #14518 )
...
Bumps [pghero](https://github.com/ankane/pghero ) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/ankane/pghero/releases )
- [Changelog](https://github.com/ankane/pghero/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ankane/pghero/compare/v2.6.0...v2.7.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
ThibG
a637344e37
Fallback to previous, more approximative hashtag RE on older browsers ( #14513 )
...
Fixes #14511
4 years ago
dependabot[bot]
63bbe6cab8
Bump rubocop-ast from 0.2.0 to 0.3.0 ( #14498 )
...
Bumps [rubocop-ast](https://github.com/rubocop-hq/rubocop-ast ) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/rubocop-hq/rubocop-ast/releases )
- [Changelog](https://github.com/rubocop-hq/rubocop-ast/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop-hq/rubocop-ast/compare/v0.2.0...v0.3.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
3cd76411d2
Bump elasticsearch from 7.8.0 to 7.8.1 ( #14501 )
...
Bumps [elasticsearch](https://github.com/elastic/elasticsearch-ruby ) from 7.8.0 to 7.8.1.
- [Release notes](https://github.com/elastic/elasticsearch-ruby/releases )
- [Changelog](https://github.com/elastic/elasticsearch-ruby/blob/master/CHANGELOG.md )
- [Commits](https://github.com/elastic/elasticsearch-ruby/compare/v7.8.0...v7.8.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
563ec44aa9
Bump expect from 26.1.0 to 26.2.0 ( #14507 )
...
Bumps [expect](https://github.com/facebook/jest/tree/HEAD/packages/expect ) from 26.1.0 to 26.2.0.
- [Release notes](https://github.com/facebook/jest/releases )
- [Changelog](https://github.com/facebook/jest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/facebook/jest/commits/v26.2.0/packages/expect )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
c1df176aa9
Bump @babel/preset-env from 7.10.4 to 7.11.0 ( #14502 )
...
Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env ) from 7.10.4 to 7.11.0.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.11.0/packages/babel-preset-env )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
97afc88764
Bump aws-partitions from 1.345.0 to 1.349.0 ( #14489 )
...
Bumps [aws-partitions](https://github.com/aws/aws-sdk-ruby ) from 1.345.0 to 1.349.0.
- [Release notes](https://github.com/aws/aws-sdk-ruby/releases )
- [Changelog](https://github.com/aws/aws-sdk-ruby/blob/master/gems/aws-partitions/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-ruby/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
ThibG
8ce962e148
Fix audio/video player not using CDN_HOST in media paths on public pages ( #14486 )
4 years ago
ThibG
0ebc8d8626
Fix thumbnail color extraction ( #14464 )
...
* Fix contrast calculation for thumbnail color extraction
Luminance calculation was using 0-255 RGB values instead of 0-1 sRGB values,
leading to incorrectly-computed contrast values.
Since we use ColorDiff already, just use its XYZ colorspace conversion code
to get the value.
* Require at least 3:1 contrast for both accent and foreground colors
* Lower required contrast for the accent color
4 years ago
ThibG
635b6a0f1a
Fix audio player on Safari ( #14485 )
4 years ago
ThibG
3ade834830
Fix disabled boost icon being replaced by private boost icon on hover ( #14456 )
...
Fixes #14455
4 years ago
ThibG
a1412491b7
Change content-type to be always computed from file data ( #14452 )
...
* Change content-type to be always computed from file data
Restore previous behavior, detecting the content-type isn't very
expensive, and some instances may serve files as application/octet-stream
regardless of their true type, making fetching media from them fail, while
it used to work pre-3.2.0.
* Add test
4 years ago
Alex Dunn
9490011226
helm: bump default image tag to v3.2.0 ( #14476 )
4 years ago
ThibG
51b5bb5301
Fix new audio player features not working on Safari ( #14465 )
...
Fixes #14462
4 years ago
ThibG
5faf2de938
Fix wrong proptypes for onEditAccountNote ( #14481 )
...
Also add missing PropTypes to the correct component
Fixes #14478
4 years ago
kedama
cd94854e7d
Fix the hashtag judgment of the compose form to be the same as the server side ( #14484 )
4 years ago
ThibG
bfd5aea206
Fix handling of Reject Follow when a matching follow relationship exists ( #14479 )
...
* Add tests
* Fix handling of Reject Follow when a matching follow relationship exists
Regression from #12199
4 years ago
dependabot[bot]
7286d5ea48
Bump eslint from 6.8.0 to 7.5.0 ( #14454 )
...
* Bump eslint from 6.8.0 to 7.5.0
Bumps [eslint](https://github.com/eslint/eslint ) from 6.8.0 to 7.5.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v6.8.0...v7.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
* Fix .codeclimate.yml
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Yamagishi Kazutoshi <ykzts@desire.sh>
4 years ago
dependabot[bot]
4f2b06b6b5
Bump strong_migrations from 0.6.8 to 0.7.1 ( #14463 )
...
Bumps [strong_migrations](https://github.com/ankane/strong_migrations ) from 0.6.8 to 0.7.1.
- [Release notes](https://github.com/ankane/strong_migrations/releases )
- [Changelog](https://github.com/ankane/strong_migrations/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ankane/strong_migrations/compare/v0.6.8...v0.7.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
3f94572a88
Bump posix-spawn from 58465d2e213991f8afb13b984854a49fcdcc980c to 0.3.15 ( #14433 )
...
Bumps [posix-spawn](https://github.com/rtomayko/posix-spawn ) from 58465d2e213991f8afb13b984854a49fcdcc980c to 0.3.15. This release includes the previously tagged commit.
- [Release notes](https://github.com/rtomayko/posix-spawn/releases )
- [Commits](58465d2e21
...v0.3.15)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
87a058c8e0
Bump sidekiq from 6.1.0 to 6.1.1 ( #14427 )
...
Bumps [sidekiq](https://github.com/mperham/sidekiq ) from 6.1.0 to 6.1.1.
- [Release notes](https://github.com/mperham/sidekiq/releases )
- [Changelog](https://github.com/mperham/sidekiq/blob/master/Changes.md )
- [Commits](https://github.com/mperham/sidekiq/compare/v6.1.0...v6.1.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
c8e82ca1c8
Bump browserslist from 4.12.0 to 4.13.0 ( #14409 )
...
Bumps [browserslist](https://github.com/browserslist/browserslist ) from 4.12.0 to 4.13.0.
- [Release notes](https://github.com/browserslist/browserslist/releases )
- [Changelog](https://github.com/browserslist/browserslist/blob/master/CHANGELOG.md )
- [Commits](https://github.com/browserslist/browserslist/compare/4.12.0...4.13.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
93c3d04254
Bump tty-prompt from 0.21.0 to 0.22.0 ( #14430 )
...
Bumps [tty-prompt](https://github.com/piotrmurach/tty-prompt ) from 0.21.0 to 0.22.0.
- [Release notes](https://github.com/piotrmurach/tty-prompt/releases )
- [Changelog](https://github.com/piotrmurach/tty-prompt/blob/master/CHANGELOG.md )
- [Commits](https://github.com/piotrmurach/tty-prompt/compare/v0.21.0...v0.22.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
941c182968
Bump webpack from 4.43.0 to 4.44.0 ( #14435 )
...
Bumps [webpack](https://github.com/webpack/webpack ) from 4.43.0 to 4.44.0.
- [Release notes](https://github.com/webpack/webpack/releases )
- [Commits](https://github.com/webpack/webpack/compare/v4.43.0...v4.44.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
244592ba4d
Bump @babel/core from 7.10.3 to 7.10.5 ( #14334 )
...
Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core ) from 7.10.3 to 7.10.5.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.10.5/packages/babel-core )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
10a4892481
Bump capistrano-rails from 1.5.0 to 1.6.1 ( #14415 )
...
Bumps [capistrano-rails](https://github.com/capistrano/rails ) from 1.5.0 to 1.6.1.
- [Release notes](https://github.com/capistrano/rails/releases )
- [Commits](https://github.com/capistrano/rails/compare/v1.5.0...v1.6.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago