Source Control Integration

master db6a8c2d 2024-05-09 08:08 translatewiki.net Details Diff	Localisation updates from https://translatewiki.net. [skip ci]
	mod - lang/strings_chinese_traditional.txt	Diff File
	mod - lang/strings_interlingua.txt	Diff File
	mod - plugins/MantisGraph/lang/strings_zazaki.txt	Diff File
	mod - plugins/XmlImportExport/lang/strings_zazaki.txt	Diff File
master-2.26 1f355013 2024-05-08 12:57 dregad Details Diff	Fix PHP 8.2 deprecated warning When editing an issue with a Custom Field of type Checkbox and the field's value is null, a deprecated warning is shown with PHP 8.2 DEPRECATED: 'explode(): Passing null to parameter 0000002 ($string) of type string is deprecated' in ./core/cfdefs/cfdef_standard.php' line 406 Fixes 0034439	Affected Issues 0034439
	mod - core/cfdefs/cfdef_standard.php	Diff File
master 4f751342 2024-05-06 19:44 dregad Details Diff	Merge branch 'master-2.26'
	mod - account_update.php	Diff File
	mod - core/bug_api.php	Diff File
	mod - core/filter_api.php	Diff File
	mod - core/print_api.php	Diff File
	mod - main_page.php	Diff File
	mod - verify.php	Diff File
master-2.26 5442e838 2024-05-06 19:10 dregad Details Diff	Set AllowDynamicProperties for BugData class Fixes 0034106	Affected Issues 0034106
	mod - core/bug_api.php	Diff File
master-2.26 851527a2 2024-05-06 19:08 dregad Details Diff	Revert "Ignore unknown properties in BugData::__set()" This reverts commit 1cd258007d52f5cda5014049e2d729165102e5ee, which introduced a regression when displaying Bug Dependency graph. Issue 0034106	Affected Issues 0034106
	mod - core/bug_api.php	Diff File
master-2.26 ccc152b4 2024-05-06 18:29 dregad Details Diff	PHPDoc for filter API global variables
	mod - core/filter_api.php	Diff File
master-2.26 cc12cfef 2024-05-06 18:23 dregad Details Diff	Break long lines
	mod - core/print_api.php	Diff File
	mod - main_page.php	Diff File
master-2.26 d434e057 2024-05-06 18:14 dregad Details Diff	Escape label in print_link() As suggested by @atrol, it makes sense to escape the string to output at the lowest possible level, just before it is printed. This reduces the risk of forgetting to do it in the parent function. All usages of print_link() have been reviewed to ensure we do not have double-escaping following this change.
	mod - core/print_api.php	Diff File
	mod - manage_filter_page.php	Diff File
master-2.26 447a521a 2024-05-06 13:04 dregad Details Diff	Proper escaping of Custom Field name for display Fixes XSS vulnerability on - bug_change_status_page.php (resolving and closing issues) - view_all_bug_page.php & print_all_bug_page.php (when the custom field is selected as a column for display/print) Fixes 0034432, CVE-2024-34081	Affected Issues 0034432, 0034442
	mod - bug_change_status_page.php	Diff File
	mod - core/print_api.php	Diff File
master-2.26 b12b1f8b 2024-05-05 20:18 dregad Details Diff	Use g_reauthentication_expiry to set token timeout The timeout of the account verification token (TOKEN_ACCOUNT_VERIFY) is now set based on the $g_reauthentication_expiry config, instead of the TOKEN_EXPIRY_AUTHENTICATED constant. With default settings this does not change the system's behavior, but ensures there is a consistent timeout with other "secure" pages that require reauthentication and allows the admin to change the timeout, which was not possible before. The timeout is applied regardless of whether reauthentication is enabled or not.	Affected Issues 0034433
	mod - verify.php	Diff File
master-2.26 92d11a01 2024-05-05 20:09 dregad Details Diff	Validate confirm hash when updating account This prevents an attacker from resetting another user's password if they have an incomplete account validation or password reset request pending. Fixes 0034433, CVE-2024-xxxxx	Affected Issues 0034433
	mod - account_update.php	Diff File
	mod - verify.php	Diff File
master-2.26 5e8ef01a 2024-05-05 17:54 dregad Details Diff	Fix static analysis warnings
	mod - account_update.php	Diff File
	mod - verify.php	Diff File
master-2.26 ab4b09a3 2024-05-05 16:11 vboctor Committer: dregad Details Diff	Strikethrough reference to issue notes that belong to resolved bugs Fixes 0034435	Affected Issues 0034435
	mod - core/string_api.php	Diff File
master-2.26 0a505623 2024-05-05 15:54 vboctor Committer: dregad Details Diff	Fix access level check for note links Fixes 0034434	Affected Issues 0034434
	mod - core/string_api.php	Diff File
master 79569bab 2024-04-29 08:08 translatewiki.net Details Diff	Localisation updates from https://translatewiki.net. [skip ci]
	mod - lang/strings_chinese_simplified.txt	Diff File
	mod - lang/strings_german.txt	Diff File
	mod - lang/strings_hebrew.txt	Diff File
	mod - plugins/XmlImportExport/lang/strings_hebrew.txt	Diff File
master 2cc8ac3e 2024-04-24 12:42 dregad Details Diff	Doc: add missing paragraphs Fixes 0010289	Affected Issues 0010289
	mod - docbook/Admin_Guide/en-US/Page_Descriptions.xml	Diff File
master 77038aaa 2024-04-24 06:36 dregad Details Diff	Merge branch 'master-2.26'
	mod - core/constant_inc.php	Diff File
	rm - js/typeahead.jquery-1.3.0.min.js	Diff
	add - js/typeahead.jquery-1.3.4.min.js	Diff File
	mod - library/README.md	Diff File
master-2.26 60f1bf1d 2024-04-24 06:34 dregad Details Diff	Update typeahead.js library to 1.3.4 Fixes 0034417	Affected Issues 0034417
	mod - core/constant_inc.php	Diff File
	rm - js/typeahead.jquery-1.3.0.min.js	Diff
	add - js/typeahead.jquery-1.3.4.min.js	Diff File
	mod - library/README.md	Diff File
master 644084eb 2024-04-22 12:25 dregad Details Diff	Fix indentation
	mod - bug_actiongroup.php	Diff File
master 0ee78a83 2024-04-22 12:23 dependabot[bot] Committer: community Details Diff	Bump erusev/parsedown from 1.7.3 to 1.7.4 Bumps [erusev/parsedown](https://github.com/erusev/parsedown) from 1.7.3 to 1.7.4. - [Release notes](https://github.com/erusev/parsedown/releases) - [Commits](https://github.com/erusev/parsedown/compare/1.7.3...1.7.4) --- updated-dependencies: - dependency-name: erusev/parsedown dependency-type: direct:production update-type: version-update:semver-patch ... Fixes 0034415, PR https://github.com/mantisbt/mantisbt/pull/1999 Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	Affected Issues 0034415
	mod - composer.json	Diff File
	mod - composer.lock	Diff File
dependabot/composer/erusev/parsedown-1.7.4 2f7a0060 2024-04-22 12:13 dependabot[bot] Committer: community Details Diff	Bump erusev/parsedown from 1.7.3 to 1.7.4 Bumps [erusev/parsedown](https://github.com/erusev/parsedown) from 1.7.3 to 1.7.4. - [Release notes](https://github.com/erusev/parsedown/releases) - [Commits](https://github.com/erusev/parsedown/compare/1.7.3...1.7.4) --- updated-dependencies: - dependency-name: erusev/parsedown dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
	mod - composer.json	Diff File
	mod - composer.lock	Diff File
master ce91842b 2024-04-22 08:09 translatewiki.net Details Diff	Localisation updates from https://translatewiki.net. [skip ci]
	mod - lang/strings_qqq.txt	Diff File
	mod - lang/strings_russian.txt	Diff File
master-2.26 6cb30e73 2024-04-21 18:17 dregad Details Diff	PHPDoc for anonymous functions
	mod - api/soap/mc_issue_api.php	Diff File
master-2.26 bddcc92a 2024-04-21 18:08 dregad Details Diff	Allow id 0 and name '' to clear version The following Version payloads can now be used to unset Version fields: - `"version": {"id": 0}` - `"version": {"name": ""}` Prior to this, it was only possible with `"version": null`, `"version": ""` and `"version": {}`. Fixes 0025407	Affected Issues 0025407
	mod - api/soap/mc_api.php	Diff File
	mod - api/soap/mc_issue_api.php	Diff File
master-2.26 cb0e07f3 2024-04-19 13:45 dregad Details Diff	REST: allow clearing version fields Until now it was not possible to set an issue's version, target_version and fixed_in_version to blank. Fixes 0025407	Affected Issues 0025407
	mod - api/soap/mc_issue_api.php	Diff File

Changesets: MantisBT