rugk
61259a2e60
chore: remove source map URL
2024-05-04 13:50:51 +00:00
El RIDO
513408b4fb
Update cfg/conf.sample.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-05-04 15:44:29 +02:00
rugk
3f1bcb5c5a
doc: add Chnagelog entry
2024-05-04 15:39:25 +02:00
rugk
7a738d6893
test: also update DOMPurify in tests
2024-05-04 15:38:04 +02:00
Andreas Schneider
4163c4f1d9
Merge pull request #1300 from PrivateBin/php-84-experimental
...
tolerate test failures in the PHP development release
2024-05-04 15:34:17 +02:00
El RIDO
0f9158b37b
allow disabling comment date display using discussiondatedisplay
configuration option
2024-05-04 14:38:41 +02:00
El RIDO
3f5b6e0ce5
fix glitch introduced by e22da2e0d1
2024-05-04 13:53:21 +02:00
rugk
1d6a14ba14
Switch to better artifact download action
2024-05-04 13:29:58 +02:00
rugk
93f59d6456
Upload and use event file, too, for test runs
...
To support forked repos: https://github.com/marketplace/actions/publish-test-results#support-fork-repositories-and-dependabot-branches
**NOTE:** Do _not_ use with `pull_request_target` as that causes issues!
2024-05-04 13:21:57 +02:00
rugk
00fca44986
Fix npm syntax
2024-05-04 13:14:25 +02:00
rugk
f92edf0026
Run mocha tests properly
2024-05-04 13:13:22 +02:00
rugk
8443d3e397
Add CI test script to package.json
2024-05-04 13:12:23 +02:00
rugk
91957838be
Add upload test results job
...
As per https://github.com/marketplace/actions/publish-test-results#use-with-matrix-strategy only one job should upload all results.
2024-05-04 13:07:53 +02:00
rugk
04822aa643
Actually make tests continue on experimental builds
2024-05-04 12:40:44 +02:00
rugk
55dec46cf4
Mark PHP v8.4 tests as experimental
...
As per this doc: https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#handling-failures
Workaround for https://github.com/PrivateBin/PrivateBin/issues/1301 for now. I hope this ignores failures?
2024-05-04 12:16:37 +02:00
El RIDO
81fdf8ebfc
re-lax samesite cookie policy
...
As per discussion in code review:
> Cookies are always scoped in browsers. That's not the issue. SameSite attribute just protects against CSRF attacks. But Get requests (aka links) are also "protected" with Strict, which breaks it… and for users that is highly confusing when they (apparently arbitrarily) do not get the language they have set before when clicking a link.
https://github.com/PrivateBin/PrivateBin/pull/1287#discussion_r1589299210
2024-05-04 12:12:31 +02:00
El RIDO
5425ea79f8
Merge branch 'master' into bootstrap5
2024-05-04 12:08:10 +02:00
El RIDO
baf8c4a11d
tolerate test failures in the PHP development release
...
at this time, guzzle, dependency of google cloud storage library, raises deprecation warnings in PHP 8.4, which caused the tests to be considered failed
2024-05-04 08:58:20 +02:00
El RIDO
1d755d8046
Merge pull request #1280 from PrivateBin/doc-n-test-mopup
...
Doc'n'test mopup
2024-05-04 08:38:12 +02:00
rugk
4500794980
chore: ugrade DOMPurify from v3.0.8 to 3.1.2
...
This incluces v3.1.1, which says:
> Note that this is a security release and should be upgraded to immediately.
https://github.com/cure53/DOMPurify/releases/tag/3.1.1
The release notes of the actual version itself are https://github.com/cure53/DOMPurify/releases/tag/3.1.2
I do not found more information on the vulnerability that apparently is in there.
* [x] manually tested and works
2024-05-03 15:55:53 +00:00
El RIDO
02e98826b3
Merge pull request #1296 from PrivateBin/crowdin-translation
...
New Crowdin updates
2024-05-03 07:25:50 +02:00
PrivateBin Translator Bot
22166c91d7
New translations en.json (Turkish)
2024-05-03 04:18:56 +02:00
El RIDO
c7226eedd7
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-05-02 08:03:55 +02:00
El RIDO
8bfab7fd89
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-05-02 08:01:37 +02:00
El RIDO
5421e8e558
fix unit test
2024-05-01 21:13:24 +02:00
El RIDO
041068b590
apply Scrutinizer recommendation
2024-05-01 21:07:24 +02:00
El RIDO
58a235e068
apply StyleCI recommendation
2024-05-01 21:04:29 +02:00
El RIDO
2b2b6f2e41
SQLite 3.35.0 introduced drop column support
...
see https://www.sqlite.org/releaselog/3_35_0.html
2024-05-01 21:01:12 +02:00
El RIDO
2cc40b2447
apply StyleCI recommendation
2024-05-01 20:36:47 +02:00
El RIDO
b2db26998d
remove the old keys, if they are still stored
2024-05-01 20:32:39 +02:00
El RIDO
a9f1926b96
implement chrono privacy for pastes, addresses #1290
2024-05-01 20:16:03 +02:00
El RIDO
5c6bd3eba8
Update tpl/bootstrap5.php
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-04-23 23:09:21 +02:00
El RIDO
c66d3f05da
semantics
2024-04-23 22:11:58 +02:00
El RIDO
142a380bb2
undo simplification, here we actually check if it is a non-empty string
2024-04-23 22:02:41 +02:00
El RIDO
6273cc9a4c
extract shared common CSS into single file
2024-04-23 21:49:57 +02:00
El RIDO
e22da2e0d1
address "oneliner-hell"
2024-04-23 21:15:33 +02:00
El RIDO
f4e8e363cb
fix scrutinizer reported issue
...
empty only works with variables, not constants - here we want to error out if PATH either isn't defined or does not end in a directory separator, so we can concatenate onto it
2024-04-23 21:15:33 +02:00
El RIDO
ec02afca04
Merge pull request #1289 from PrivateBin/dependabot/github_actions/slsa-framework/slsa-github-generator-2.0.0
...
Bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0
2024-04-23 18:27:24 +02:00
El RIDO
b6f90f903b
Merge pull request #1288 from smonesi/master
...
Fix weird Italian translation for burn-after-reading messages.
2024-04-23 18:19:46 +02:00
dependabot[bot]
ad19f8cfe6
Bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0
...
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator ) from 1.10.0 to 2.0.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases )
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md )
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.10.0...v2.0.0 )
---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-04-23 11:43:14 +00:00
smonesi
2813dd2295
Another small translation fix
2024-04-23 11:43:30 +02:00
smonesi
0311b4f527
Fix silly translation for burn-after-reading messages.
2024-04-23 11:35:32 +02:00
El RIDO
8b3d66b8e2
Update css/bootstrap5/privatebin.css
...
Co-authored-by: rugk <rugk+git@posteo.de>
2024-04-23 06:38:45 +02:00
El RIDO
9bcb114a23
document changes
2024-04-21 11:46:46 +02:00
El RIDO
bdc9c307df
add "Dark Mode" to translation strings
2024-04-21 11:46:14 +02:00
El RIDO
658383e6d1
set lang cookie with strict SameSite property
2024-04-21 11:36:31 +02:00
El RIDO
15481290fb
fix tab alignment
2024-04-21 11:02:14 +02:00
El RIDO
545ba7506e
bootstrap 5 - fix password modal display
2024-04-21 11:01:40 +02:00
El RIDO
a7ea62fcd0
bootstrap 5 prettify dark theme support
...
current status:
- made prettify theme work with dark mode
to be done:
- fix password modal display
- add "Dark Mode" to translation strings
- check tab alignment in HTML source
2024-04-19 14:00:49 +02:00
El RIDO
491ed9a521
bootstrap 5 template function complete
...
current status:
- got expiration and format selections to work
- fixed modals (password, QR-code, etc.)
- replaced glyphicons with Bootstrap icons (needs CSP relaxation to work)
- tested the different settings and combinations
- got editor tabs to change active status
to be done:
- add "Dark Mode" to translation strings
- figure out how to change prettify theme when dark mode gets selected
- check tab alignment in HTML source
2024-04-18 21:36:43 +02:00