TnSb/akkoma
1
0
Fork 0
forked from AkkomaGang/akkoma
Code Issues Pull requests Projects Releases Packages Wiki Activity

Commit graph

  • ddd79ff22d Proactively harden emoji pack against path traversal Oneric 2024-03-10 07:15:26 +0100
  • d6d838cbe8 StealEmoji: check remote size before downloading Oneric 2024-03-10 01:35:35 +0100
  • 6d003e1acd test/steal_emoji: consolidate configuration setup Oneric 2024-03-10 01:14:51 +0100
  • d1ce5fd911 test/steal_emoji: reduce code duplication with mock macro Oneric 2024-03-10 00:44:12 +0100
  • a4fa2ec9af StealEmoji: make final paths infeasible to predict Oneric 2024-03-09 22:41:26 +0100
  • ee5ce87825 test: use pack functions to check for emoji Oneric 2024-03-09 21:39:25 +0000
  • d1c4d07404 Convert StealEmoji to pack.json Oneric 2024-03-08 03:06:40 +0100
  • fa98b44acf Fill out path for newly created packs Oneric 2024-03-09 22:18:00 +0100
  • 5b126567bb StealEmoji: drop superfluous basename Oneric 2024-03-07 23:39:00 +0100
  • a8c6c780b4 StealEmoji: use Content-Type and reject non-images Oneric 2024-03-07 23:35:05 +0100
  • 111cdb0d86 Split steal_emoji function for better readability Oneric 2024-03-07 13:07:02 +0100
  • af041db6dc Limit emoji stealer to alphanum, dash, or underscore characters Norm 2024-02-20 15:11:26 -0500
  • fb54c47f0b Update example nginx config Oneric 2024-03-10 19:01:17 +0000
  • fc36b04016 Drop media proxy same-domain default for base_url Oneric 2024-03-10 18:57:40 +0000
  • 11ae8344eb Sanitise Content-Type of media proxy URLs Oneric 2024-03-10 18:57:19 +0000
  • bcc528b2e2 Never automatically assign privileged content types Oneric 2024-03-07 01:02:32 -0100
  • e88d0a2853 Fix Content-Type of our schema Oneric 2024-03-07 00:18:00 +0100
  • ba558c0c24 Limit instance emoji to image types Oneric 2024-03-07 00:00:25 +0100
  • 0ec62acb9d Always insert Dedupe upload filter Oneric 2024-03-04 18:39:08 +0100
  • fef773ca35 Drop media base_url default and recommend different domain Oneric 2024-03-04 17:50:22 +0100
  • bdefbb8fd9 plug/upload_media: query config only once on init Oneric 2024-03-05 02:20:16 +0100
  • f7c9793542 Sanitise Content-Type of uploads Oneric 2024-03-04 17:50:21 +0100
  • 6116f81546
         Don't strip newlines in the Atom feed Sandra Snan 2024-03-10 13:08:54 +0100
  • 7ef93c0b6d Add set_content_type to Plug.StaticNoCT Oneric 2024-03-04 17:50:20 +0100
  • dbb6091d01 Import copy of Plug.Static from Plug 1.15.3 Oneric 2024-03-04 17:50:20 +0100
  • 5d467af6c5 Update notes on security exploit handling Oneric 2024-03-04 17:50:19 +0100
  • 5d89e0c917 Allow for url to be a list Helge 2024-03-03 09:11:45 +0100
  • f18e2ba42c Refresh Users much more aggressively when processing Move activities Erin Shepherd 2024-02-29 21:08:25 +0100
  • fc95519dbf Allow fetching over IPv6 Oneric 2024-02-25 23:27:10 +0100
  • 889b57df82 2024.02 release FloatingGhost 2024-02-24 13:54:21 +0000
  • 34ffb92db4 Update translation files Weblate 2023-10-22 11:53:48 +0000
  • c6dceb1802 Translated using Weblate (Polish) Weblate 2023-10-22 11:53:48 +0000
  • caaf2deb22 Translated using Weblate (Polish) Weblate 2023-10-22 11:53:48 +0000
  • 7d61fb0906 Merge pull request 'Fix static-fe Twitter metadata / URL previews' (#700) from Oneric/akkoma:staticfe-metadata into develop floatingghost 2024-02-24 13:42:55 +0000
  • cdf73e0ac8 Merge pull request 'Better document database differences for Pleroma migrations' (#699) from Oneric/akkoma:doc_pleroma-migration-db into develop floatingghost 2024-02-24 04:33:43 +0000
  • 967e6b8ade Merge pull request 'Docs: Add description for mrf_reject_newly_created_account_notes' (#695) from YokaiRick/akkoma:doc_mrf_reject_acc_notes into develop floatingghost 2024-02-24 04:31:28 +0000
  • d7c8e9df27 static-fe: don’t squeeze non-square avatars Oneric 2024-02-23 23:39:44 +0000
  • a0daec6ea1 static-fe: don’t squeeze non-square emoji Oneric 2024-02-20 17:33:38 +0100
  • bff2812a93 More prominently document db migrations in migrations from Pleroma Oneric 2024-02-19 17:53:11 +0100
  • 7964272c98 Document how to avoid data loss on migration from Pleroma Oneric 2024-02-19 17:33:14 +0100
  • c08f49d88e Add tests for static-fe metadata tags Oneric 2024-02-21 00:33:32 +0000
  • 3111181d3c mix format FloatingGhost 2024-02-20 15:09:04 +0000
  • 2f9aad0e65 Merge pull request '[Security] StealEmojiPolicy: Sanitize shortcodes' (#701) from erincandescent/akkoma:stealemojipolicy-sanitize into develop floatingghost 2024-02-20 15:08:54 +0000
  • b387f4a1c1 Don't steal emoji who's shortcodes have dots or colons in their name Erin Shepherd 2024-02-20 11:31:29 +0100
  • 7d94476dd6 StealEmojiPolicy: Sanitize shortcodes Haelwenn (lanodan) Monnier 2024-02-20 08:45:48 +0100
  • c25cfe9b7a fixed spelling rick 2024-02-19 23:25:20 +0100
  • 41dd37d796 doc/cheatsheet: add missing MRFs Oneric 2024-02-19 00:13:10 +0100
  • 9830d54fa1 doc/cheatsheet: sort main MRF list alphabetically Oneric 2024-02-18 23:29:43 +0100
  • f254e4f530 doc/cheatsheet: add missing MRF config detail docs Oneric 2024-02-18 23:18:50 +0100
  • da4190c46e doc/cheatsheet: split out always active MRFs Oneric 2024-02-18 23:02:48 +0100
  • 7a2d68c3ab doc/cheatsheet: add link to ActivityExpiration config details Oneric 2024-02-18 23:12:30 +0100
  • 8e7a89605d doc/cheatsheet: move MRF policies key to end of section Oneric 2024-02-18 22:54:02 +0100
  • 1640d19448 doc/cheatsheet: move :activitypub section ahead Oneric 2024-02-18 22:52:43 +0100
  • 8f1776a8a7 Purge leftovers from FollowBot MRF Oneric 2024-02-18 22:25:42 +0100
  • 1ec6e193e6 doc: clarify RejectNewlyCreated uses local account discovery Oneric 2024-02-18 22:47:02 +0100
  • 37e2a35b86 Fix Twitter metadata Oneric 2024-02-16 04:32:09 +0100
  • 086d6100e1 Merge pull request 'Disable busy waits in the default OTP vm.args configuration.' (#693) from erincandescent/akkoma:otp-tune-vm-busywait into develop floatingghost 2024-02-19 14:01:14 +0000
  • 3e24210e9f Merge pull request 'Prune old Update activities' (#683) from Oneric/akkoma:db-prune-old-updates into develop floatingghost 2024-02-19 13:59:33 +0000
  • 551ae69541 Merge pull request 'Fix and provide sane defaults for SMTP' (#686) from Oneric/akkoma:smtp-defaults into develop floatingghost 2024-02-19 13:39:15 +0000
  • 37f9626116 Merge pull request 'Docs: reword description for mrf_reject_newly_created_account_notes for more clarity' (#1) from stefan230/akkoma:doc_mrf_reject_acc_notes_patch into doc_mrf_reject_acc_notes YokaiRick 2024-02-17 22:19:32 +0000
  • b4c832471c docs/docs/configuration/cheatsheet.md aktualisiert stefan230 2024-02-17 22:09:47 +0000
  • db49daa4a5 make it clearer what it affects rick 2024-02-17 22:57:56 +0100
  • 718104117f fix link rick 2024-02-17 22:34:55 +0100
  • 12e7d0a25c added doc for mrf_reject_newly_created_account_notes rick 2024-02-17 22:25:12 +0100
  • 1a7839eaf2 Prune old Update activities Oneric 2024-02-09 23:26:23 +0100
  • 1ef8b967d2 test: fix typos affecting remove factory Oneric 2024-02-10 01:46:10 +0100
  • 7a0e27a746 Disable busy waits in the default OTP vm.args configuration. Erin Shepherd 2024-02-17 13:21:56 +0100
  • 755c75d8a4 Merge pull request 'Clean up warnings (+fallback metrics)' (#685) from Oneric/akkoma:metrics into develop floatingghost 2024-02-17 11:41:10 +0000
  • 289f93f5a2 Merge pull request 'Return last_status_at as date, not datetime' (#681) from katafrakt/akkoma:fix-last-status-at into develop floatingghost 2024-02-17 11:37:19 +0000
  • 371b258c99 Merge pull request 'Fix SimplePolicy blocking account updates' (#692) from Oneric/akkoma:fix-background_removal into develop floatingghost 2024-02-17 10:34:16 +0000
  • 3b0714c4fd Fix SimplePolicy blocking account updates Oneric 2024-02-17 01:59:50 +0000
  • 34c213f02f Merge pull request 'Federate user profile background' (#682) from Oneric/akkoma:background-federation into develop floatingghost 2024-02-16 21:00:10 +0000
  • e99e2407f3 Add background_removal to SimplePolicy MRF Oneric 2024-02-10 17:27:11 +0100
  • 7622aa27ca Federate user profile background Oneric 2024-02-09 21:03:02 +0100
  • 0ed815b8a1 Merge branch 'followback' into develop FloatingGhost 2024-02-16 13:27:40 +0000
  • c5dcd07e08 Merge pull request 'Fix OpenAPI spec for preferred_frontend endpoint' (#680) from katafrakt/akkoma:fix-openapi-spec-for-preferred-frontend into develop floatingghost 2024-02-16 12:21:00 +0000
  • 874ee73a87 Merge pull request 'Document Akkoma API' (#678) from Oneric/akkoma:doc-akkomapi into develop floatingghost 2024-02-16 12:20:11 +0000
  • a905223837 Merge pull request 'Check permissions on configuration file, not symlink' (#687) from erincandescent/akkoma:config-stat-symlink into develop floatingghost 2024-02-16 12:19:08 +0000
  • cda597a05c doc: fix Akkoma identification name Oneric 2024-02-15 16:02:13 +0100
  • 711043f57d Document bubble timeline API Oneric 2024-02-15 16:01:43 +0100
  • 6bb455702d Document Akkoma API Oneric 2024-01-28 19:49:20 +0100
  • 7493d8f49d Document live dashboard Oneric 2024-01-16 22:12:52 +0100
  • cb7eaccecb Config: Check the permissions of the linked file instead of the symlink↵ Haelwenn (lanodan) Monnier 2024-02-14 18:16:54 +0100
  • 376f6b15ca Add ability to auto-approve followbacks Oneric 2024-01-17 19:13:29 +0000
  • 13e62b4e51 Fix schema and docs for status_ttl_days and instance Oneric 2024-01-17 19:12:49 +0000
  • 6fde75e1f0 Merge pull request 'Purge leftovers from chats' (#684) from Oneric/akkoma:cosmetic-purge-chat into develop floatingghost 2024-02-13 09:13:37 +0000
  • 192480093c Provide sane defaults for SMTP Oneric 2024-02-12 18:27:40 +0000
  • 29f564f700 Use fallbacks of summary metrics for prometheus Oneric 2024-02-03 18:28:55 +0100
  • 16197ff57a Display memory as MB in live dashboard Oneric 2024-02-03 18:21:09 +0100
  • 8f8e1ff214 Purge unused function scrub_css Oneric 2024-02-08 00:10:46 +0100
  • 18ecae6183 Use fully qualified function capture for telementry event Oneric 2024-02-03 17:51:40 +0100
  • a6df71eebb Don't add summary metrics to prometheus Oneric 2024-02-03 17:30:00 +0100
  • 8cf183cb42 Drop Chat tables Oneric 2024-02-11 02:02:24 +0100
  • 5f7d47dcb7 Drop obolete chat/shoutbox config options Oneric 2024-02-11 01:19:03 +0100
  • df21b61829
         Return last_status_at as date, not datetime Paweł Świątkowski 2024-02-05 21:42:15 +0100
  • e97d08ee98 Merge pull request 'MRF transparency: don’t forget to obfuscate short domains' (#676) from Oneric/akkoma:mrf-obfuscation into develop floatingghost 2024-02-05 08:43:43 +0000
  • d7d159c49f
         Fix OpenAPI spec for preferred_frontend endpoint Paweł Świątkowski 2024-02-03 14:24:03 +0100
  • 3cd882528e More prominently document MRF transparency and obfuscation Oneric 2024-01-28 23:12:59 +0100
  • e47c50666d Fix obfuscation of short domains Oneric 2024-01-28 22:15:54 +0100
  • b4ccddab39 Merge pull request 'Fix OAuth consumer mode' (#668) from tcmal/akkoma:develop into develop floatingghost 2024-02-02 10:05:42 +0000