Age | Commit message (Collapse) | Author |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
photo of someone
|
|
|
|
- regenerate config checks without sphinx-related variables
|
|
|
|
replacing it, some minor code cleanup
|
|
|
|
|
|
|
|
classes instead
|
|
|
|
|
|
* get_random_bytes: use PHP7 random_bytes() if it is available
* validate CSRF token using hash_equals
|
|
|
|
|
|
cache/getUrl: basename() passed filename just in case
|
|
|
|
- fix vulnerability in rewrite_relative_url() which prevented some URLs from being properly absolutized
- fetch_file_contents: validate all URLs before requesting them
- validate URLs: explicitly whitelist http and https scheme, forbid everything else
- DiskCache/cached_url: only serve whitelisted content types (images, video)
- simplify filename/URL handling code, remove and consolidate some less-used functions
|
|
af_redditimgur: remove enclosures if we found something to embed because it's going to be a low-res thumbnail
|
|
Renamed swap_jk to match new naming scheme.
|
|
https://community.tt-rss.org/t/changing-the-amount-of-scroll-by-arrow-key/3452/7
|
|
Headlines.unpackVisible()
|
|
prevent smooth scrolling when going directly to an article
|
|
|
|
scroll to article after embedding
|
|
appropriate per-comic filters
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
CSS file
|
|
|
|
|
|
|
|
a slightly less ridiculous way
|
|
|
|
|
|
|
|
|
|
|