dépôts
/
lhc
/
web
/
wiklou.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Fix warnings in SpecialEmailuser
2018-10-21
Brian Wolff
SECURITY: Don't allow loading unprotected JS files
commit
|
commitdiff
|
tree
2018-09-22
Brian Wolff
Fix some double escaping, and some incorrect escaping...
commit
|
commitdiff
|
tree
2018-09-22
Brian Wolff
Fix some phan-taint-check false positives
commit
|
commitdiff
|
tree
2018-09-22
Brian Wolff
Deprecate QuickTemplate::msgHtml & fix phan-taint-warning...
commit
|
commitdiff
|
tree
2018-09-20
Brian Wolff
SECURITY: Do not allow botpassword login if account...
commit
|
commitdiff
|
tree
2018-09-01
Brian Wolff
Fix html <title> for exceptions during message parsing.
commit
|
commitdiff
|
tree
2018-09-01
Brian Wolff
Add taint annotation and warnings to Language::convert...
commit
|
commitdiff
|
tree
2018-08-31
Brian Wolff
Add taint annotation to HtmlForm::getHTML()
commit
|
commitdiff
|
tree
2018-08-31
Brian Wolff
Use annotations for taint in Parser & ParserOutput.
commit
|
commitdiff
|
tree
2018-08-31
Brian Wolff
Change @return-taint to use onlysafefor_html instad...
commit
|
commitdiff
|
tree
2018-08-13
Brian Wolff
Paranoia, escape image alignment parameters before...
commit
|
commitdiff
|
tree
2018-08-13
Brian Wolff
Fix some warnings from phan-taint-check
commit
|
commitdiff
|
tree
2018-08-07
Brian Wolff
resourceloader: Give module eval the ContentSecurityPolicy...
commit
|
commitdiff
|
tree
2018-08-02
Brian Wolff
ChangesList: HTML escape the timestamp
commit
|
commitdiff
|
tree
2018-07-12
Brian Wolff
Mention MariaDB first, before MySQL in installer.
commit
|
commitdiff
|
tree
2018-07-12
Brian Wolff
Mark InnoDB as recomended in the installer.
commit
|
commitdiff
|
tree
2018-07-12
Brian Wolff
Start working on phan-taint-check warnings. Fix minor...
commit
|
commitdiff
|
tree
2018-07-11
Brian Wolff
Deprecate specialized file errors in OutputPage and...
commit
|
commitdiff
|
tree
2018-07-10
Brian Wolff
CSP: Allow an option of disabling nonces
commit
|
commitdiff
|
tree
2018-07-08
Brian Wolff
Force phan-taint-check to think LogFormatter stuff...
commit
|
commitdiff
|
tree
2018-06-15
Brian Wolff
Better logging for reauth operations
commit
|
commitdiff
|
tree
2018-06-12
Brian Wolff
Make $wgEmailConfirmToEdit only affect edit actions.
commit
|
commitdiff
|
tree
2018-05-22
Brian Wolff
ContentSecurityPolicy: Add trailing & to report urls
commit
|
commitdiff
|
tree
2018-05-15
Brian Wolff
Add whether user is elevated to unsafe js load log
commit
|
commitdiff
|
tree
2018-05-15
Brian Wolff
Disallow loading JS/CSS/Json subpages from unregistered...
commit
|
commitdiff
|
tree
2018-05-14
Brian Wolff
Initial support for Content Security Policy, disabled...
commit
|
commitdiff
|
tree
2018-05-10
Brian Wolff
Better logging for botpasswords
commit
|
commitdiff
|
tree
2018-05-09
Brian Wolff
Add default edit rate limit of 90 edits/minute for...
commit
|
commitdiff
|
tree
2018-03-28
Brian Wolff
Fix --memory-limit option to maintenance scripts
commit
|
commitdiff
|
tree
2018-03-05
Brian Wolff
SECURITY: Fix revdel checks in LogPager
commit
|
commitdiff
|
tree
2018-01-22
Brian Wolff
Make Gender normalize usernames
commit
|
commitdiff
|
tree
2017-12-07
Brian Wolff
placeholder-message for html form should be ->text...
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
Follow-up I077d30c50 fix phpcs error
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
Fix langauge converter parser test with self-close...
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
Follow-up 5e56f01f1. Rebase failure.
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
Fix LanguageSrTest for language converter
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
SECURITY: Handle -{}- syntax in attributes safely
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
SECURITY: XSS in langconverter when regex hits pcre...
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
SECURITY: Ensure Message::rawParams can't lead to XSS
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
SECURITY: Do not reveal if user exists during login...
commit
|
commitdiff
|
tree
2017-11-15
Brian Wolff
SECURITY: Escape internal error message
commit
|
commitdiff
|
tree
2017-10-30
Brian Wolff
Prefer using plaintextParams instead of rawParams where...
commit
|
commitdiff
|
tree
2017-10-28
Brian Wolff
No longer special case 'patrol' in $wgFilterLogTypes
commit
|
commitdiff
|
tree
2017-10-27
Brian Wolff
Html escape the timestamp in Special:Undelete
commit
|
commitdiff
|
tree
2017-10-16
Brian Wolff
Fix escaping of i18n message shared-repo-from
commit
|
commitdiff
|
tree
2017-10-11
Brian Wolff
Fix inconsistent i18n escaping in category paging links.
commit
|
commitdiff
|
tree
2017-09-29
Brian Wolff
Do not include RC_EXTERNAL in number active users on...
commit
|
commitdiff
|
tree
2017-09-28
Brian Wolff
Follow-up 67f04373d fix stupid typo
commit
|
commitdiff
|
tree
2017-09-28
Brian Wolff
Fix CreditsAction when user has no real name set but...
commit
|
commitdiff
|
tree
2017-09-27
Brian Wolff
Reopen db connection after doing SpecialPageCacheUpdates
commit
|
commitdiff
|
tree
2017-07-19
Brian Wolff
Update FIRST_LETTER_VERSION for rowiki changes
commit
|
commitdiff
|
tree
2017-06-28
Brian Wolff
Merge "Allow SVGs using an older proposed recommendation...
commit
|
commitdiff
|
tree
2017-05-30
Brian Wolff
Unit tests for CollationFa (0bfcbd724)
commit
|
commitdiff
|
tree
2017-05-21
Brian Wolff
Fix EnhancedChangesList::getDiffHistLinks null exception
commit
|
commitdiff
|
tree
2017-05-19
Brian Wolff
Hack around icu breakage for fa sorting
commit
|
commitdiff
|
tree
2017-05-10
Brian Wolff
Add collation for Bashkir (ba)
commit
|
commitdiff
|
tree
2017-04-08
Brian Wolff
Properly detect if CACHE_ACCEL is available in the...
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: Do not allow users to undelete a page they...
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: Always normalize link url before adding to...
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: Whitelist DTD declaration in SVG
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: Escape wikitext content model/format in message
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: XSS in search if $wgAdvancedSearchHighlighting...
commit
|
commitdiff
|
tree
2017-04-06
Brian Wolff
SECURITY: Do not directly redirect to interwikis, but...
commit
|
commitdiff
|
tree
2017-04-01
Brian Wolff
Release notes for CACHE_ANYTHING being CACHE_NONE ...
commit
|
commitdiff
|
tree
2017-04-01
Brian Wolff
Release notes for no <html> in system messages (1c7889446)
commit
|
commitdiff
|
tree
2017-03-30
Brian Wolff
objectcache: Never use CACHE_NONE for CACHE_ANYTHING
commit
|
commitdiff
|
tree
2017-03-28
Brian Wolff
SECURITY: Disable <html> tag on system messages despite...
commit
|
commitdiff
|
tree
2017-03-15
Brian Wolff
Make selectRowCount() (hopefully) work in MSSQL.
commit
|
commitdiff
|
tree
2017-03-15
Brian Wolff
Default to CACHE_ACCEL if user skips advanced settings
commit
|
commitdiff
|
tree
2017-03-15
Brian Wolff
rv accidental inclusion of debug code in TemplateParser
commit
|
commitdiff
|
tree
2017-03-14
Brian Wolff
Better path traversal prevention in TemplateParser.
commit
|
commitdiff
|
tree
2017-03-05
Brian Wolff
Add another entry to Content-security-policy logging...
commit
|
commitdiff
|
tree
2016-12-10
Brian Wolff
Escape return path extra params to php mail()
commit
|
commitdiff
|
tree
2016-11-23
Brian Wolff
Remove passwordreset capture feature
commit
|
commitdiff
|
tree
2016-11-16
Brian Wolff
Add first letter data for bn collation (Standard and...
commit
|
commitdiff
|
tree
2016-11-15
Brian Wolff
Throw an exception if password hash would be truncated...
commit
|
commitdiff
|
tree
2016-11-15
Brian Wolff
Use different varname for upgraded hash from original...
commit
|
commitdiff
|
tree
2016-11-15
Brian Wolff
Fix message name for passwordreset-invalidemail
commit
|
commitdiff
|
tree
2016-11-13
Brian Wolff
Add extra logging for when user logs in with a temp...
commit
|
commitdiff
|
tree
2016-11-13
Brian Wolff
Add better logging to password reset
commit
|
commitdiff
|
tree
2016-11-07
Brian Wolff
Add $wgCSPFalsePositiveUrls to release notes
commit
|
commitdiff
|
tree
2016-10-29
Brian Wolff
Add firstLetter data for ~50 additional languages
commit
|
commitdiff
|
tree
2016-10-29
Brian Wolff
Make NumericUppercaseCollation use localized digit...
commit
|
commitdiff
|
tree
2016-10-20
Brian Wolff
add RELEASE notes for 28417328 (CSS3 attr() is banned)
commit
|
commitdiff
|
tree
2016-10-08
Brian Wolff
Fix merging of class attribute on edit page textbox
commit
|
commitdiff
|
tree
2016-09-09
Brian Wolff
API: When undoing an edit, allow overriding content...
commit
|
commitdiff
|
tree
2016-09-09
Brian Wolff
Allow undoing edits that change content model if top
commit
|
commitdiff
|
tree
2016-09-06
Brian Wolff
Clarify that $terms get preg_quoted by caller in SearchHighl...
commit
|
commitdiff
|
tree
2016-08-25
Brian Wolff
Add urls from various adware to the CSP false positive...
commit
|
commitdiff
|
tree
2016-08-24
Brian Wolff
Enable $wgResourceLoaderStorageEnabled by default
commit
|
commitdiff
|
tree
2016-08-23
Brian Wolff
SECURITY: XSS in unclosed internal links
commit
|
commitdiff
|
tree
2016-08-23
Brian Wolff
SECURITY: Escape '<' and ']]>' in inline <style> blocks
commit
|
commitdiff
|
tree
2016-08-23
Brian Wolff
SECURITY: Do not allow undeleting a revdel'd file if...
commit
|
commitdiff
|
tree
2016-08-23
Brian Wolff
SECURITY: Make $wgBlockDisablesLogin also restrict...
commit
|
commitdiff
|
tree
2016-08-23
Brian Wolff
SECURITY: Make blocks log users out if $wgBlockDisablesLogin
commit
|
commitdiff
|
tree
2016-08-18
Brian Wolff
Tell users that js/css subpages are public
commit
|
commitdiff
|
tree
2016-08-05
Brian Wolff
Register a default value for the timecorrection preference
commit
|
commitdiff
|
tree
2016-08-01
Brian Wolff
Allow SVGs encoded as WINDOWS-125[0-8].
commit
|
commitdiff
|
tree
2016-07-21
Brian Wolff
Use current content model for blank page content (not...
commit
|
commitdiff
|
tree
2016-07-17
Brian Wolff
Do not override content format in EditPage when loading...
commit
|
commitdiff
|
tree
next