tedkulp/PrivateBin
1
0
Fork 0
mirror of https://github.com/PrivateBin/PrivateBin.git synced 2026-04-23 22:34:47 -04:00
Code Issues Packages Projects Releases Wiki Activity
3,934 Commits 11 Branches 40 Tags
07ba4f179dba6dfd4e4e3839cbef2cdd9034780b
Commit Graph

3934 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
PrivateBin Translator Bot b23b37c39f New translations en.json (Italian) 2024-05-05 09:29:34 +02:00
El RIDO 1722d8056b Merge pull request #1287 from PrivateBin/bootstrap5 
Bootstrap 5 template
 2024-05-05 09:27:53 +02:00
El RIDO 0983d1b514 doc 2024-05-04 16:19:56 +02:00
El RIDO 3508989114 updated dompurify library 2024-05-04 16:18:43 +02:00
El RIDO 06fb606aa7 Merge branch 'master' into bootstrap 2024-05-04 16:15:07 +02:00
El RIDO 2b87bf3d13 update SRI hashes 2024-05-04 16:14:12 +02:00
El RIDO 125feec67c Merge pull request #1299 from PrivateBin/chore/dompurify 
chore: ugrade DOMPurify from v3.0.8 to 3.1.2
 2024-05-04 16:13:19 +02:00
rugk 33df5fbd2f Actually make tests continue on experimental builds 2024-05-04 16:02:31 +02:00
rugk 61259a2e60 chore: remove source map URL 2024-05-04 13:50:51 +00:00
El RIDO 513408b4fb Update cfg/conf.sample.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-05-04 15:44:29 +02:00
rugk 3f1bcb5c5a doc: add Chnagelog entry 2024-05-04 15:39:25 +02:00
rugk 7a738d6893 test: also update DOMPurify in tests 2024-05-04 15:38:04 +02:00
Andreas Schneider 4163c4f1d9 Merge pull request #1300 from PrivateBin/php-84-experimental 
tolerate test failures in the PHP development release
 2024-05-04 15:34:17 +02:00
El RIDO 0f9158b37b allow disabling comment date display using discussiondatedisplay configuration option 2024-05-04 14:38:41 +02:00
El RIDO 3f5b6e0ce5 fix glitch introduced by e22da2e0d1 2024-05-04 13:53:21 +02:00
rugk 1d6a14ba14 Switch to better artifact download action 2024-05-04 13:29:58 +02:00
rugk 93f59d6456 Upload and use event file, too, for test runs 
To support forked repos: https://github.com/marketplace/actions/publish-test-results#support-fork-repositories-and-dependabot-branches

**NOTE:** Do _not_ use with `pull_request_target` as that causes issues!
 2024-05-04 13:21:57 +02:00
rugk 00fca44986 Fix npm syntax 2024-05-04 13:14:25 +02:00
rugk f92edf0026 Run mocha tests properly 2024-05-04 13:13:22 +02:00
rugk 8443d3e397 Add CI test script to package.json 2024-05-04 13:12:23 +02:00
rugk 91957838be Add upload test results job 
As per https://github.com/marketplace/actions/publish-test-results#use-with-matrix-strategy only one job should upload all results.
 2024-05-04 13:07:53 +02:00
rugk 04822aa643 Actually make tests continue on experimental builds 2024-05-04 12:40:44 +02:00
rugk 55dec46cf4 Mark PHP v8.4 tests as experimental 
As per this doc: https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#handling-failures

Workaround for https://github.com/PrivateBin/PrivateBin/issues/1301 for now. I hope this ignores failures?
 2024-05-04 12:16:37 +02:00
El RIDO 81fdf8ebfc re-lax samesite cookie policy 
As per discussion in code review:

> Cookies are always scoped in browsers. That's not the issue. SameSite attribute just protects against CSRF attacks. But Get requests (aka links) are also "protected" with Strict, which breaks it… and for users that is highly confusing when they (apparently arbitrarily) do not get the language they have set before when clicking a link.

https://github.com/PrivateBin/PrivateBin/pull/1287#discussion_r1589299210
 2024-05-04 12:12:31 +02:00
El RIDO 5425ea79f8 Merge branch 'master' into bootstrap5 2024-05-04 12:08:10 +02:00
El RIDO baf8c4a11d tolerate test failures in the PHP development release 
at this time, guzzle, dependency of google cloud storage library, raises deprecation warnings in PHP 8.4, which caused the tests to be considered failed
 2024-05-04 08:58:20 +02:00
El RIDO 1d755d8046 Merge pull request #1280 from PrivateBin/doc-n-test-mopup 
Doc'n'test mopup
 2024-05-04 08:38:12 +02:00
rugk 4500794980 chore: ugrade DOMPurify from v3.0.8 to 3.1.2 
This incluces v3.1.1, which says:
> Note that this is a security release and should be upgraded to immediately.

https://github.com/cure53/DOMPurify/releases/tag/3.1.1

The release notes of the actual version itself are https://github.com/cure53/DOMPurify/releases/tag/3.1.2

I do not found more information on the vulnerability that apparently is in there.

* [x] manually tested and works
 2024-05-03 15:55:53 +00:00
El RIDO 02e98826b3 Merge pull request #1296 from PrivateBin/crowdin-translation 
New Crowdin updates
 2024-05-03 07:25:50 +02:00
PrivateBin Translator Bot 22166c91d7 New translations en.json (Turkish) 2024-05-03 04:18:56 +02:00
El RIDO c7226eedd7 Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-05-02 08:03:55 +02:00
El RIDO 8bfab7fd89 Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-05-02 08:01:37 +02:00
El RIDO 5421e8e558 fix unit test 2024-05-01 21:13:24 +02:00
El RIDO 041068b590 apply Scrutinizer recommendation 2024-05-01 21:07:24 +02:00
El RIDO 58a235e068 apply StyleCI recommendation 2024-05-01 21:04:29 +02:00
El RIDO 2b2b6f2e41 SQLite 3.35.0 introduced drop column support 
see https://www.sqlite.org/releaselog/3_35_0.html
 2024-05-01 21:01:12 +02:00
El RIDO 2cc40b2447 apply StyleCI recommendation 2024-05-01 20:36:47 +02:00
El RIDO b2db26998d remove the old keys, if they are still stored 2024-05-01 20:32:39 +02:00
El RIDO a9f1926b96 implement chrono privacy for pastes, addresses #1290 2024-05-01 20:16:03 +02:00
El RIDO 5c6bd3eba8 Update tpl/bootstrap5.php 
Co-authored-by: rugk <rugk+git@posteo.de>
 2024-04-23 23:09:21 +02:00
El RIDO c66d3f05da semantics 2024-04-23 22:11:58 +02:00
El RIDO 142a380bb2 undo simplification, here we actually check if it is a non-empty string 2024-04-23 22:02:41 +02:00
El RIDO 6273cc9a4c extract shared common CSS into single file 2024-04-23 21:49:57 +02:00
El RIDO e22da2e0d1 address "oneliner-hell" 2024-04-23 21:15:33 +02:00
El RIDO f4e8e363cb fix scrutinizer reported issue 
empty only works with variables, not constants - here we want to error out if PATH either isn't defined or does not end in a directory separator, so we can concatenate onto it
 2024-04-23 21:15:33 +02:00
El RIDO ec02afca04 Merge pull request #1289 from PrivateBin/dependabot/github_actions/slsa-framework/slsa-github-generator-2.0.0 
Bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0
 2024-04-23 18:27:24 +02:00
El RIDO b6f90f903b Merge pull request #1288 from smonesi/master 
Fix weird Italian translation for burn-after-reading messages.
 2024-04-23 18:19:46 +02:00
dependabot[bot] ad19f8cfe6 Bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0 
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.10.0 to 2.0.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases)
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md)
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.10.0...v2.0.0)

---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-23 11:43:14 +00:00
smonesi 2813dd2295 Another small translation fix 2024-04-23 11:43:30 +02:00
smonesi 0311b4f527 Fix silly translation for burn-after-reading messages. 2024-04-23 11:35:32 +02:00