mantisbt - Change Log
This will be the last release supporting PHP 5; starting with MantisBT 2.26.0, the minimum PHP version will be 7.0 - read the official announcement at https://mantisbt.org/blog/archives/mantisbt/678.
bug_monitor_list_view_inc.php
file (vboctor) 0026974: [installation] Required PHP json extension not documented and checked (atrol) 0027298: [code cleanup] Remove unused and regroup duplicated language strings (dregad) 0027362: [installation] Sourceforge [admin/test_langs.php] File missing from installation packages ( mantisbt-2.24.3.zip & mantisbt-2.24.3.tar.gz) (dregad) 0027384: [other] Upgrade release build scripts to Python3 (dregad) 0027375: [filters] search field at project-selection is not working anymore (dregad) 0026888: [code cleanup] Refactor printing of project selection menus (dregad) 0026903: [code cleanup] Move release scripts to main repository (vboctor) 0027241: [localization] Improve handling of missing language strings (dregad) 0027300: [documentation] Fix discrepancies in documentation for $g_display_errors (dregad) 0027302: [plug-ins] Force-installed plugins are not registered in order of priority (dregad) 0011463: [localization] Confusing message when selecting a project to enter an issue (dregad) 0027217: [bugtracker] bugnote_clear_cache() does not work properly (dregad) 0027242: [bugtracker] Allow printing of standard confirmation alerts without buttons (dregad) 0027256: [bugtracker] Refactor Profiles management pages to display a list of records (dregad) 0027257: [bugtracker] It is not possible to clear the Default Profile (dregad) 0027258: [code cleanup] Code cleanup around User/Global Profiles (dregad) 0027259: [bugtracker] Profile-related operations lack confirmations (dregad) 0027260: [ui] Confusing redirection when editing profiles (dregad) 0027150: [performance] Non visible image previews are transferred from server to client (atrol) 0027160: [ui] Wrong page position after bugnote add/edit (atrol) 0027155: [bugtracker] Update securimage to 3.6.8 (dregad) 0027144: [code cleanup] Data integrity: ensure users' default_project preference is a valid project (dregad) 0027129: [filters] Preserving filters does not work correctly on sub-sub-projects (dregad) 0027124: [plug-ins] MantisGraph: update Chart.js library to v2.9.3 (dregad) 0027122: [plug-ins] 3rd-party plugins cannot use chart.js library bundled with MantisGraph (dregad) 0027123: [javascript] MantisGraph: stop using chart.js bundled build (dregad) 0027117: [administration] SQL syntax error on manage_user_page (atrol) 0027005: [time tracking] User list in time tracking summary is not sorted (dregad) 0026919: [api rest] Upgrade guzzlehttp/guzzle from 6.5.2 to 6.5.5 (dregad) 0026920: [authorization] reporter allowed to close (vboctor) 0026963: [ui] Username field in Monitor box triggers password managers (vboctor) 0025998: [documentation] REST API documentation (vboctor) 0026964: [bugtracker] Admin check always has "WARN" for magic_quotes checks (PHP 7.4) (atrol) 0026887: [sub-projects] Project Menu Bar does not indent subprojects properly (dregad) 0026930: [code cleanup] Use user_is_login_request_allowed() instead of duplicating the logic (dregad) 0026884: [administration] Misleading e-mail notification following password reset by admin (dregad) 0026840: [preferences] Non existing field name os_version used where os_build should be used (atrol) 0026892: [administration] Attachment settings not available on "Workflow Thresholds" page (atrol) 0026889: [code cleanup] Implement ConfigsGetCommand
and use from REST API (vboctor) 0026890: [code cleanup] Implement LocalizedStringsGetCommand
and use from REST API (vboctor) 0026891: [api rest] /config REST API endpoint reports users as not found when they exist (vboctor) 0026861: [ui] "Move" functionality offered for users that have just access to a single project (atrol) 0026823: [ui] Upgrade to fontawesome version 4.7.0 (syncguru) 0026839: [printing] Viewer does not get Selection column in View Issues or Print Reports lists (atrol) 0026821: [code cleanup] Standardize access of option database_version (atrol) 0026822: [ldap] LDAP configuration options can be set in database (atrol) 0026617: [documentation] Admin Guide has various broken links, obsolete info, etc. (dregad) 0026798: [administration] PHP warning in config_get_global (dregad) 0026811: [authentication] Username regex is too strict by default (community)Security and maintenance release, addressing 6 CVEs: an XSS issue, an SQL injection in the SOAP API and several information disclosure issues including a critical one allowing full access to private issues' contents. All installations are strongly advised to upgrade as soon as possible.
Many thanks to randomdhiraj, ethicalhcop and d3vpoo1 (https://gitlab.com/jrckmcsb), for identifying and responsibly reporting these security issues.
This release also includes a few PHP 8.0 compatibility fixes, including a major one causing an access denied error for all users when updating issues.
Security release including 3 CVEs. Many thanks to d3vpoo1 (https://gitlab.com/jrckmcsb) for identifying most of the issues.
Security release
Security and maintenance release
bug_change_status_page_fields
config option (vboctor)private
checkbox state (community)This feature and maintenance release includes a schema change. Do not forget to upgrade the database as documented in the Admin Guide.
preview_*_extensions
config options not documented (vboctor) 0026102: [attachments] Support inline playing of video attachments (vboctor) 0026109: [db postgresql] check_pgsql_bool_columns: check wrongly suggests that the redirect_delay should be in boolean format (dregad) 0026123: [ui] Both "monitor" and "end monitoring" buttons are displayed (dregad) 0026125: [ui] "Users monitoring this issue" section not shown if nobody is monitoring the issue (dregad) 0026141: [custom fields] Use max length property of custom field in inputs (cproensa) 0026166: [performance] Issue view api uses many custom field database queries (cproensa) 0026167: [performance] Issue view history api repeated calls to bug_get_attachments database query (cproensa) 0026295: [ui] Clone button is not displayed correctly (cproensa) 0026326: [bugtracker] Tags are not copied from master issue when cloning (community) 0026353: [tagging] Tag attachments list includes tags already attached to the bug (dregad) 0026368: [administration] Custom fields selector in manage project page are not ordered by name (cproensa) 0026030: [custom fields] Filter value "none" is not available for multiselection list custom fields (cproensa) 0026086: [api rest] Update Slim Framework to 3.12.3 (dregad) 0026119: [tagging] Add $g_tag_create_threshold to Workflow Thresholds in the GUI (dregad) 0026294: [ui] Attachments without note text are not displayed (cproensa) 0026358: [security] Vulnerability from library Moment.js 2.15.2 (dregad) 0026367: [administration] Use empty value as default project in "manage project" subproject section (cproensa) 0026382: [javascript] Update corejs-typeahead.js library to 1.3.0 (dregad)Security release for 1.3.x series.
Security release for 2.22.x series.
Feature and maintenance release.
EVENT_BUGNOTE_DATA
event not documented in developer manual (dregad) 0025952: [code cleanup] MantisGraph: define Chart.js-related constants in the plugin (dregad) 0025953: [plug-ins] Missing an API function to check if a plugin event has been declared (dregad) 0025962: [bugtracker] IssueAddCommand does not create history entries identical to the code it replaced (vboctor) 0025963: [ui] Gravatar plugin should always use https (vboctor) 0025996: [api rest] Missing tag name in error message when creating issue via REST API (dregad) 0025997: [api rest] Invalid JSON response when creating issue with tag by name via REST API (dregad) 0026063: [code cleanup] Glue after String Array is being Deprecated (dregad) 0026066: [plug-ins] Gravatar Plugin Description (atrol) 0026074: [tagging] Creating an invalid tag should fail with an error (dregad) 0026075: [tagging] Tag-related error messages should reference the tag's name (dregad) 0026076: [api rest] Adding issue via REST API should fail if requested tags can't be attached (dregad) 0026077: [api rest] IssueAddCommand should create tag specified by name if they do not exist (dregad)Security release for 2.21.x series.
Maintenance release for 2.21.x series.
username
field in REST API (community) 0025693: [performance] Improve performance of Summary Page queries (cproensa)vendor
folder is not protected (vboctor) 0025675: [security] CVE-2019-10905: Update Parsedown library to 1.7.3 (dregad) 0025661: [bugtracker] Project versions disappear when set "obsolete" (cproensa) 0025697: [html] Viewing Issues > print reports, csv export, excel export - broken links (dregad)Feature release
Maintenance release for 2.19.x series.
Security and PHP compatibility fixes
reassign_on_feedback
doesn't work if reporter is not specified (vboctor) 0024882: [relationships] relationship_can_resolve_bug function problem (atrol) 0024896: [authentication] Password managers don't work with password login page (cproensa) 0024925: [administration] Misleading Message in the creation of user (atrol) 0024932: [preferences] "Manage" menuitem visible even though no access (atrol) 0024976: [ui] Sidebar's collapsed state is not preserved (dregad) 0024988: [email] Update Disposable Email Checker to 3.1.0 (dregad) 0025002: [custom fields] Error when updating content in a custom field of type "Text Area" ("Textbereich"): History cannot be stored (atrol) 0025016: [bugtracker] Default projection is ignored (atrol) 0025033: [installation] Warning with PHP 7.3: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"? (atrol) 0025042: [administration] Add some more information to view_user_page (atrol) 0025043: [code cleanup] Code Cleanup (atrol) 0025100: [plug-ins] Display header fails when no user is authentication and anonymous login is off (vboctor) 0025059: [administration] View User Page: hide footer at bottom of User Info table when not needed (dregad) 0025072: [filters] Could not use the FilterBugList filter with "Permalink" (community) 0025061: [authentication] Generic error is triggered when anonymous login is not defined (dregad) 0025099: [authentication] Auth plugins can't control session expiry time and disable perm login (vboctor) 0025116: [roadmap] Manage workflow thresholds does not have the option for "view roadmap" (cproensa) 0025112: [other] Link to create new user is a form and prevents reloading (cproensa)Feature release
Maintenance release for 2.17.x series.
Security fix for 2.17.x release
Feature release
My View
page (atrol) 0020101: [api soap] mc_filter_search_issues can't filter by date (community) 0023336: [html] Inline image attachments should have their own container to prevent scrolling (atrol) 0023915: [administration] Search for a part of (Real Name - Username - Email) (atrol) 0024622: [api rest] Add function for creating a new project via REST (community) 0024624: [api rest] Add function for updating a project via REST (community) 0024636: [api rest] Add function to delete a project via REST API (vboctor) 0024643: [ui] bug_actiongroup and custom bug_actiongroup don't provide the same user experience when displaying error message (dregad) 0024644: [ui] Footer displays behind sidebar on bug_actiongroup.php (dregad) 0024696: [authorization] Custom fields can be changed without having update_bug_threshold access rights (atrol) 0024717: [api soap] Add filter for the “last updated“ date in the soap api (community) 0024719: [administration] Impersonate User
is offered for disabled users (atrol)Maintenance release for 2.16.x series.
Maintenance release for 1.3.x series.
Feature release
Change Log
and Roadmap
(atrol) 0024552: [code cleanup] Code Cleanup (atrol) 0024553: [performance] Performance enhancement of config_get_global function (atrol) 0024564: [timeline] Missing display of events in Timeline if All Projects
is selected (atrol) 0024578: [documentation] Documentation: PHP documentation link: "installation.php" -> "install.php" (dregad) 0024579: [documentation] Documentation: Admin Guide: Installation: Broken Link "Microsoft IIS", is now https://docs.microsoft.com/en-us/iis (dregad) 0021376: [upgrade] Error in upgrade process 1.2.17 --> 1.3.0 (dregad)Maintenance release for 2.15.x series.
$g_log_destination = 'page'
when using PHP 7.2 (atrol) 0024462: [api soap] Error while querying for issue header with PHP 7.2 (atrol) 0024476: [performance] Unneeded <meta>
tag in <head>
section (atrol) 0024139: [ui] $g_show_realname for making usernames private (atrol)3.8.1
to 3.9.2
(vboctor) 0024197: [api rest] Update GuzzleHttp from 6.3.0
to 6.3.2
(vboctor) 0024220: [documentation] Wrong documentation of datetime_picker_format in Admin Guide (atrol) 0024325: [code cleanup] Code Cleanup (atrol) 0024326: [documentation] Wrong documentation of my_view_boxes in Admin Guide (atrol) 0024333: [api rest] Support getting a single project via REST API (vboctor)Maintenance release for 2.13.x series.
Security fixes release for 1.3.x series.
Maintenance release for 2.13.x release series.
Maintenance release for 2.12.x release series.
Feature release
IssueAddCommand
and use it from SOAP, REST and Web UI (vboctor) 0023161: [timeline] Show File Attachment events in Timeline (dregad) 0024128: [administration] Unable to start system check or installation with wrong PHP version (atrol) 0024056: [custom fields] Custom Fields of type "Textarea" cannot contain more than 255 chars due to bug_history table (atrol) 0010853: [filters] In View Issues list, several columns are sorted by Id instead of display value (cproensa) 0021404: [filters] System Error on changing filters (dregad) 0016070: [email] Delay due to Mantis trying sending emails to non existent address (vboctor) 0023498: [filters] Filtering "note by" with "none" does not return any result (cproensa) 0007264: [filters] Not able to filter issues that have no relationship assigned (cproensa) 0008167: [filters] Filter settings saved when using Anonymous account (cproensa) 0008204: [filters] Filters not remembered when clicking through from "My View" (cproensa) 0022785: [api rest] Support adding attachments when reporting issues (vboctor) 0023214: [performance] Remove usage of outdated phputf8 library (atrol) 0023999: [code cleanup] Implement IssueDeleteCommand
and use it from SOAP, REST, and Web UI (vboctor) 0024000: [api rest] Add Issue REST API doesn't trigger EVENT_REPORT_BUG_DATA
plugin event (vboctor) 0024001: [api soap] Add Issue SOAP API doesn't trigger EVENT_REPORT_BUG_DATA
plugin event (vboctor) 0024002: [api rest] Add Issue REST API doesn't trigger issue_create_validate
custom function (vboctor) 0024003: [api soap] Add Issue SOAP API doesn't trigger issue_create_validate
custom function (vboctor) 0024004: [api rest] Add Issue REST API doesn't trigger issue_create_notify
custom function (vboctor) 0024005: [api soap] Add Issue SOAP API doesn't trigger issue_create_notify
custom function (vboctor) 0024006: [api rest] Add Issue REST API doesn't trigger EVENT_REPORT_BUG
plugin event (vboctor) 0024007: [api soap] Add Issue SOAP API doesn't trigger EVENT_REPORT_BUG
plugin event (vboctor) 0024008: [api rest] Add Issue REST API doesn't add the issue to recent list (vboctor) 0024009: [api soap] Add Issue SOAP API doesn't add the issue to recent list (vboctor) 0013177: [filters] On ‘View Issues’ Page the filter does not allow user to select ‘blank’ ('No Category') Category (cproensa) 0021865: [filters] Filter out duplicated issues (cproensa) 0021867: [filters] Filter filed "relationships" resets its value when "duplicate of" is selected (cproensa) 0023476: [bugtracker] Can't login if admin directory has restricted access (atrol) 0023499: [filters] Filtering with "note by" shows results from private notes for unprivileged users (cproensa) 0023500: [filters] Search filter returns matches in private notes for unprivileged users (cproensa) 0023501: [filters] Filter "monitored by" does not have option for "none" (cproensa) 0023502: [filters] Filter "assigned to" does not account for configuration "view_handler_threshold" (cproensa) 0023504: [filters] Filter "monitored by" does not account for configuration "show_monitor_list_threshold" (cproensa) 0023506: [filters] Filter tags inconsitent with OR filter operator (cproensa) 0023538: [filters] Filter field for relationship bug id is set to -1 by default (cproensa) 0023549: [db mysql] Entering Emojis in comments with a user mention crashes with an error (atrol) 0024042: [filters] filter on relationships mistuned by switching sort order (cproensa) 0024089: [authentication] POST request to login_password_page.php return 405 when admin folder is deleted or access restricted (atrol) 0024140: [filters] Application error 401: "ORDER BY clause is not in SELECT list" when sorting by category or project (cproensa) 0022376: [documentation] Wrong documentation of string customization (atrol) 0024158: [bugtracker] Support providing a default value for issue description (vboctor) 0024159: [documentation] $g_default_bug_steps_to_reproduce
not documented (vboctor) 0024160: [documentation] $g_default_bug_additional_info
not documented (vboctor)Maintenance release for 2.12.x
Feature release
Maintenance release for 2.11.x series.
Feature release
UserCreateCommand
to create users (vboctor) 0023706: [administration] trigger_error()
with errors must terminate scripts rather than being config based (vboctor) 0023754: [code cleanup] Remove unused function print_bracket_link and code cleanup (atrol) 0023758: [ui] Allow users to select font family that fits them best (syncguru) 0023876: [installation] Running admin/check fails (dregad) 0023900: [administration] Unable to update user access level, due to check on 'Realname' returning KO (APPLICATION ERROR #807) (vboctor) 0023776: [attachments] Support adding attachments that were not uploaded via the browser (vboctor) 0023899: [api rest] Relationship type was localized in GET issue API (vboctor) 0023714: [api rest] Failing REST API requests should include Mantis error code and localized message (vboctor) 0023762: [api rest] Support adding users to monitor an issue via REST API (vboctor) 0023772: [api rest] Support attachments when adding notes via REST API (vboctor) 0023773: [api rest] Support time tracking when adding notes via REST API (vboctor) 0023780: [api rest] Return status code 429 when hitting spam check limits (vboctor) 0023784: [api rest] REST and SOAP API send two email notifications for mentioned users (vboctor) 0023785: [api rest] Adding notes via SOAP and REST API with time tracking uses incorrect access check (vboctor) 0023786: [code cleanup] Implement IssueNoteDeleteCommand
for deleting notes (vboctor) 0023787: [administration] Protected admin users can't be unprotected (atrol) 0023830: [security] Update PHPMailer to 5.2.26 (dregad) 0011327: [reports] "Developer By Resolution" is the only box in the Summary page not ordered (at least it doesn't seem to be any logic behind it) (dregad) 0012978: [code cleanup] Summary - Time Stats For Resolved Issues (days) (dregad) 0022792: [api rest] Support downloading issue attachments (vboctor) 0023627: [feature] Summary page enhancement with bugs ratio support (dregad) 0023774: [code cleanup] Implement IssueNoteAddCommand
to share code for adding notes (vboctor) 0023796: [reports] Filter links for resolved/closed custom statuses in Summary By Status report are incorrect (dregad) 0023828: [api rest] Support adding attachments to existing issues via REST API (vboctor) 0023839: [code cleanup] Implement UserDeleteCommand
for deleting users (vboctor) 0023840: [api rest] Delete user via REST API (vboctor) 0023854: [reports] Summary: always show the "By Project" box (dregad) 0023855: [code cleanup] Implement TagAttachCommand
for attaching tags (vboctor) 0023856: [code cleanup] Implement TagDetachCommand
to detach tags (vboctor) 0023857: [api rest] Add REST API to attach a tag (vboctor) 0023858: [api rest] Add REST API to detach a tag (vboctor) 0023863: [reports] Summary: Reporter and Developer by Resolution miss a Total column (dregad) 0023865: [code cleanup] Implement IssueRelationshipAddCommand
to add relationships (vboctor) 0023866: [api rest] Support adding relationships via REST API (vboctor) 0023867: [code cleanup] Implement IssueRelationshipDeleteCommand
(vboctor) 0023868: [api rest] Support deleting issue relationships via REST API (vboctor) 0023898: [api rest] Some relationships are not formatted correctly in GET issue rest API (vboctor) 0023775: [attachments] Remove obsolete code that checks if PHP file info API is defined (vboctor) 0023926: [ui] Footer displayed under sidebar on error page when $g_show_detailed_errors = ON (dregad) 0023930: [installation] Make Fileinfo a mandatory PHP extension (atrol) 0023944: [bugtracker] The stack trace on detailed error page should not include the error handler itself (dregad) 0023943: [bugtracker] Improve detailed error page layout (dregad)Bug fix and security release for 2.10.x series.
Security release for 1.3.x series.
Feature release
Bug fix release for 2.9.x series
Feature release
handler
when updating issues without updating handler
(vboctor) 0023658: [plug-ins] UI for protected plugins broken (atrol) 0023577: [api rest] REST APIs don't enforce required custom fields when reporting issues (vboctor) 0023578: [documentation] Document need for consistency between "normal" and "datepicker" date formats (dregad) 0012602: [custom fields] Default value for a date don't work (vboctor) 0019482: [custom fields] Using custom fields (date) with default value and required on resolve displays an error (vboctor) 0023466: [db mysql] database is not supported by PHP. Check that it has been compiled into your server. (atrol) 0023572: [code cleanup] Unneeded code for unsupported database types (atrol) 0023575: [api rest] Category lookup is case sensitive (vboctor) 0023579: [api rest] Internal Server Error 500 when category doesn't exist (vboctor) 0023594: [custom fields] Reporting an issue with default date {now}
that is not visible doesn't work (vboctor) 0023616: [api rest] Support exporting issue history (vboctor) 0023620: [api rest] PHP error on getting issues when user doesn't have access (vboctor) 0023625: [code cleanup] Function require_lib contains code to search in vendor folder (atrol) 0023626: [performance] Unneeded code executed when retrieving global settings (atrol) 0023630: [administration] Some check boxes on Manage Configuration > Workflow Threshold page are not centered (community) 0023645: [other] No preview of ANSI encoded text files that contain German Umlauts (atrol) 0023648: [api rest] Leverage ETag
headers when getting issues (vboctor) 0023650: [api rest] Leverage If-Match
when deleting issues (vboctor) 0023653: [api rest] Leverage If-Match
when updating issues (vboctor) 0023657: [api soap] mc_issue_update returns bug is read only on status update (atrol) 0023576: [api rest] Issues created via REST API with date custom fields fail (vboctor) 0023692: [authentication] Token API does not work with config show show_realname (dregad)Bug fix and security release for 2.8.x series.
Security release for 1.3.x series.
Feature release including fixes and new features including REST API issue updates and DKIM support for email signing. This release is the first to have REST API enabled by default.
inline_file_exts
(community) 0013126: [plug-ins] Add plugin event EVENT_BUG_ACTIONGROUP_FORM
(cproensa) 0016133: [custom fields] Numeric field accepts floats and displays them as numeric (vboctor) 0021225: [bugtracker] resolving parent issues inconsistency (community) 0022441: [bugtracker] Notes are not in the correct order after cloning an issue (cproensa) 0022842: [code cleanup] Remove php_version_at_least() function from PHP API (dregad) 0023493: [email] DomainKeys Identified Mail (DKIM) Signatures (community) 0023503: [bugtracker] Handler user is visible even if view_handler_threshold is configured to not allow (cproensa) 0023516: [api rest] Enable REST API by default (vboctor) 0023518: [bugtracker] "show_assigned_names" configuration is not applied correctly in view_all_bug_page (cproensa) 0023528: [filters] Filter "advanced" mode is reset after sorting through column headers (cproensa) 0023537: [api rest] Facilitate troubleshooting REST API by displaying detailed errors (dregad) 0023543: [email] Update PHPMailer to v5.2.25 (vboctor) 0023542: [code cleanup] Force composer to honor PHP compatibility advertised for MantisBT (vboctor)Maintenance release for 2.7 series.
A feature release that includes both functional and performance improvements.
A feature release that includes both functional and performance improvements.
Security fixes release for 2.5.x series.
Security fixes release for 1.3.x series.
Maintenance release that fixes installation failure.
Feature release with main focus on REST API improvements, some of the fixes also applies to the SOAP API.
label
for localized name (vboctor) 0022767: [api rest] Include status color in status enum value for issues (vboctor) 0022768: [api rest] Support retrieving issues based on filter or a project (vboctor) 0022769: [api rest] Note type should be note
instead of timelog
if time tracking is not accessible to user (vboctor) 0022770: [api rest] Change version
from string to an object (vboctor) 0022771: [api rest] Due date access check should be based on project access level rather than global one (vboctor) 0022772: [api rest] Don't return eta
info if feature is disabled (vboctor) 0022773: [api rest] Don't return projection
info if feature is disabled (vboctor) 0022774: [api rest] Some access denied errors don't show user info correctly (vboctor) 0022775: [api rest] Rename date_submitted
to created_at
and last_updated
to updated_at
(vboctor) 0022776: [api rest] Sticky flag should be a boolean rather than a string (vboctor) 0022777: [api rest] Don't return sponsorship_total
(vboctor) 0022778: [api rest] Don't allow setting version to an undefined version (vboctor) 0022779: [api rest] Don't return profile information if feature disabled (vboctor) 0022780: [api rest] Don't return platform
, os
, and os_build
if disabled (vboctor) 0022782: [api rest] Don't return target_version
if user doesn't have access to view roadmap (vboctor) 0022783: [api rest] Return 400 instead of server side error if summary
, description
or project
fields are missing (vboctor) 0022788: [api rest] Support retrieving projects accessible to users (vboctor) 0022808: [api rest] Use GuzzleHttp for http requests (vboctor) 0021871: [performance] Improve db_fetch_array performance (cproensa) 0021994: [attachments] issue with attachments cannot be moved between projects with different upload directories (uploads saved in file system) (dregad) 0022809: [api rest] Upgrade Slim Framework from 3.7.0
to latest (3.8.1
) (vboctor) 0022851: [installation] Installer should display sample table names based on table prefix/suffix settings (dregad) 0022852: [localization] [de] Incorrect label in German "Change status" form (atrol) 0022865: [code cleanup] Login page displays a PHP system notice when using BASIC_AUTH (dregad) 0022864: [code cleanup] phpdoc for 'print_link_button' has incorrect order of parameters (cproensa) 0022868: [other] PHP variable misspelt in html_api.php (dregad) 0022904: [db mssql] database_api: db_insert_id returns string not int (mssql) (dregad) 0022905: [code cleanup] The URL of the return button in breadcrumbs div has a trailing '?' (dregad) 0022925: [time tracking] Time Tracking - issue (atrol) 0022928: [administration] $g_anonymous_account is case sensitive, preventing normal users from logging in (vboctor) 0022933: [timeline] Confusing entry in timeline when removing other users from monitoring list (atrol)MantisBT maintenance release for 2.4.x.
MantisBT maintenance release for 2.3.x
MantisBT maintenance and security release for 1.3.x.
Security and maintenance release
Security release
Security release
Feature release including security fixes and our brand new experimental REST API. The REST API can be extended by plugins and power web UI ajax features. In this release the REST API is disabled by default (expect for calls from within the web UI using cookie authentication) – see 0022598 for more details.
Security fixes and maintenance release
Security fixes release
Security release
Maintenance and Security release for 2.2 series
Maintenance and Security release for 2.1 series
Maintenance and Security release for 1.3 series
Maintenance release for 2.2 series including security fixes.
A feature release that includes all fixes from 2.1.1 release listed above, some setup fixes, status colors visibility improvements, shed some unnecessary js/css and multiple improvements for relationships feature.
A maintenance release for 2.1.x series
Maintenance release for 2.0.x series.
MantisBT 2.1.0 feature release
The second release candidate for 2.0.0 release. This release includes all the fixes in 1.3.4 release.
We are excited to share with you a milestone for the 2.0.0 release by releasing the first release candidate. We encourage users to try out and give us feedback. Since 2.0.0-rc.1 and 1.3.3 share the same database schema, it should be easy to try them out side by side. Download it now or check it out at https://www.mantishub.com
MantisBT 2.0.0 release focuses on improvements to the UI compared to 1.3.x release. As of this release, the db schema is the same between 1.3.x and 2.0.0-beta.1, enabling users to easily try 2.0.0-beta.1 and provide feedback.