c36c8fbcab
Merge remote-tracking branch 'origin/oscar' into oscar
Build and Push Container Image (Misskey) TeamCity build finished
2025-05-16 08:05:49 +09:00
b80629abed
Merge upstream
2025-05-16 08:00:55 +09:00
2159cb3df8
Update README.md
Build and Push Container Image (Misskey) TeamCity build finished
2025-05-16 05:54:31 +09:00
bebf517601
Update README.md
2025-05-16 05:54:17 +09:00
あわわわとーにゅ
62109a5caa
Bump up version to 2024.5.0-io.10 (MisskeyIO#1008)
2025-05-14 06:45:43 +09:00
あわわわとーにゅ
51843d61ce
Merge pull request MisskeyIO#1006 from main
2025-05-14 06:34:50 +09:00
あわわわとーにゅ
814c328d6f
spec(dev): mainブランチからバージョン情報を削除 (MisskeyIO#1005)
2025-05-14 06:14:27 +09:00
あわわわとーにゅ
8cd2e3273c
fix(webp): GIFがループしない問題を修正2 (MisskeyIO#1004)
...
* Revert "fix(webp): GIFがループしない問題を修正 (MisskeyIO#988)"
This reverts commit 44f2f12dce
2025-05-14 05:45:49 +09:00
あわわわとーにゅ
0a6f0d70f8
Bump up version to 2024.5.0-io.9i (MisskeyIO#1001)
2025-05-14 03:46:02 +09:00
あわわわとーにゅ
daa940b131
chore(dev): 開発環境でPostgreSQL 17が使われるように (MisskeyIO#1002)
2025-05-14 03:45:43 +09:00
あわわわとーにゅ
1bdff70ece
fix(actions/test/backend/unit): FFmpegバージョンを固定 (MisskeyIO#1000)
2025-05-14 03:06:30 +09:00
dependabot[bot]
ebd8930aa6
update deps (MisskeyIO#997)
...
Co-authored-by: あわわわとーにゅ <17376330+u1-liquid@users.noreply.github.com>
2025-05-14 02:52:03 +09:00
dependabot[bot]
20e65cea51
chore(deps): bump @aws-sdk/client-s3 from 3.806.0 to 3.808.0 (MisskeyIO#996)
...
Bumps [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3 ) from 3.806.0 to 3.808.0.
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases )
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.808.0/clients/client-s3 )
---
updated-dependencies:
- dependency-name: "@aws-sdk/client-s3"
dependency-version: 3.808.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-05-14 02:15:07 +09:00
あわわわとーにゅ
868deea239
chore(git): mainブランチとioカスタマイズブランチを分離 (MisskeyIO#994)
2025-05-13 06:56:32 +09:00
あわわわとーにゅ
84a0568f88
update deps (MisskeyIO#993)
2025-05-13 06:34:39 +09:00
あわわわとーにゅ
2a79afa637
chore(git): デフォルトブランチの名前をmainに変更 (MisskeyIO#992)
2025-05-12 23:20:59 +09:00
あわわわとーにゅ
c51d91bc6e
Bump up version to 2024.5.0-io.9h (MisskeyIO#989)
2025-05-12 22:02:11 +09:00
あわわわとーにゅ
44f2f12dce
fix(webp): GIFがループしない問題を修正 (MisskeyIO#988)
2025-05-12 22:01:50 +09:00
あわわわとーにゅ
cdef7089e6
Update dependabot.yml (MisskeyIO#986)
2025-05-10 05:00:30 +09:00
あわわわとーにゅ
ee7f2c5713
Bump up version to 2024.5.0-io.9g (MisskeyIO#984)
2025-05-01 22:24:55 +09:00
あわわわとーにゅ
9b79304ae7
update deps (MisskeyIO#983)
2025-05-01 22:24:17 +09:00
あわわわとーにゅ
a3b41c1caa
Merge pull request MisskeyIO#982 from cherry-pick
...
cherry picked from upstream
2025-05-01 21:42:58 +09:00
あわわわとーにゅ
fe90cc7b24
Merge commit from fork
...
(cherry picked from commit 583df3ec63e25a1fd34def0dac13405396b8b663)
none of our endpoints will ever contain `..` (they might, maybe, at
some point, contain `.`, as in `something/get.html`?), so every
`Mk:api()` call to an endpoint that contains `..` can't work: let's
reject it outright
Co-authored-by: Julia <julia@insertdomain.name>
Co-authored-by: dakkar <dakkar@thenautilus.net>
2025-05-01 21:29:51 +09:00
かっこかり
80b4272c57
fix(frontend): fix lint ( #15906 )
...
(cherry picked from commit f8b0863b8edf18dac9188a93a52c4d149eabb0e9)
* fix(frontend): attempt to fix lint
* fix lint
2025-05-01 21:29:39 +09:00
あわわわとーにゅ
695bbf02ca
Merge commit from fork
...
(cherry picked from commit d10fdfe9738b17a9d81037c031b40a2cc4cb8038)
* SP-2025-03.1 always wrap icon&thumbnail URLs
if they're not HTTP URLs, the frontend won't be able to display them
anyway (`<img src="mailto:…">` or '<div stile="background-image:
url(nntp:…)">` aren't going to work!), so let's always run them through the
media proxy, which will fail harder (fetching a `javascript:` URL
won't do anything in the backend, might do something in the frontend)
and will always protect the client's address in cases like `gemini:`
where the browser could try to fetch
* SP-2025-03.2 use object binding for more styles
interpolating a random (remote-controlled!) string into a `style`
attribute is a bad idea; using VueJS object binding, we should get
proper quoting and therefore safe parse failures instead of CSS
injections / XSS
* SP-2025-03.3 slightly more robust "self" URL handling
parse URLs instead of treating them as strings; this is still not
perfect, but the `URL` class only handles full URLs, not relative
ones, so there's so way to ask it "give me a URL object that
represents this resource relative to this base URL"
notice that passing very weird URLs to `MkUrl` and `MkUrlPreview` will
break the frontend (in dev mode) because there's an untrapped `new
URL(…)` that may explode; production builds seem to safely ignore the
error, though
---------
Co-authored-by: Julia <julia@insertdomain.name>
Co-authored-by: dakkar <dakkar@thenautilus.net>
2025-05-01 21:29:39 +09:00
あわわわとーにゅ
969c5e3d39
Bump up version to 2024.5.0-io.9f (MisskeyIO#980)
2025-04-22 23:05:29 +09:00
あわわわとーにゅ
1d1d8853f6
fix(frontend/Skeb): APIエラーを無視するように (MisskeyIO#979)
2025-04-22 23:05:06 +09:00
あわわわとーにゅ
e0e4ea0c0c
update deps (MisskeyIO#978)
2025-04-22 05:56:50 +09:00
dependabot[bot]
fb1f093ae5
chore(deps): bump actions/setup-node from 4.3.0 to 4.4.0 (MisskeyIO#975)
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v4.3.0...v4.4.0 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 4.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-22 00:14:52 +09:00
あわわわとーにゅ
c94e5d7e22
feat(SSO): メールアドレスのnormalizeを設定可能にする (MisskeyIO#971)
2025-04-22 00:14:13 +09:00
あわわわとーにゅ
17e14bb87e
spec(test): DragonflyDBのフラグ見直し (MisskeyIO#977)
2025-04-16 09:55:33 +09:00
Laica Lunasys
a89bf002db
feat(signup): 招待制モードを環境変数でも設定できるように (MisskeyIO#976)
...
INFRA-85
2025-04-15 20:56:46 +09:00
8cd9d043c6
fix: add gaps to links
2025-04-15 17:46:55 +09:00
7e9967b66e
fix: add gaps to links
2025-04-15 17:24:16 +09:00
あわわわとーにゅ
8c8a6acd31
Bump up version to 2024.5.0-io.9e (MisskeyIO#974)
2025-04-12 21:06:44 +09:00
Laica Lunasys
bc1fe0e203
feat(frontend): headタグに任意のタグを追加できるようにする (MisskeyIO#973)
...
INFRA-84
2025-04-12 21:01:03 +09:00
あわわわとーにゅ
485f427092
Bump up version to 2024.5.0-io.9d (MisskeyIO#972)
2025-04-12 07:11:26 +09:00
Laica Lunasys
d55cc2a240
spec(monitoring): Instanaの導入 (MisskeyIO#970)
2025-04-11 19:40:33 +09:00
riku6460
ad75a15612
fix(docker): ビルドに使用した pnpm を runner にコピーする (MisskeyIO#969)
2025-04-10 08:11:16 +09:00
f08eea5335
chore: bump version to 2024.5.0-oscar.24b
Build and Push Container Image (Misskey) TeamCity build finished
2025-04-04 20:57:23 +09:00
0184c08494
style(about): remove first FormSection
2025-04-04 20:56:52 +09:00
e362718c12
chore: bump version to 2024.5.0-oscar.24a
2025-04-04 16:29:32 +09:00
cc7b2c5281
fix: special thanks
2025-04-04 16:28:53 +09:00
3e0bcd2b5b
Merge upstream
2025-04-04 16:00:58 +09:00
あわわわとーにゅ
2b84095c12
Bump up version to 2024.5.0-io.9c (MisskeyIO#967)
2025-04-01 06:37:54 +09:00
あわわわとーにゅ
abc5e05607
fix(SSO/SAML): JWK関数の仕様変更に対応 (MisskeyIO#966)
2025-04-01 06:37:33 +09:00
あわわわとーにゅ
3bd2b5a048
Bump up version to 2024.5.0-io.9b (MisskeyIO#964)
2025-04-01 05:15:13 +09:00
あわわわとーにゅ
a31cafee58
update deps (MisskeyIO#963)
2025-04-01 05:14:40 +09:00
あわわわとーにゅ
f0510d4e80
Bump up version to 2024.5.0-io.9a (MisskeyIO#961)
2025-04-01 03:24:37 +09:00
あわわわとーにゅ
d36be50b1c
enhance(timeline): タブがバックグラウンドから戻ってきた時、ノートの取得をまとめて行うように (MisskeyIO#960)
2025-04-01 02:56:21 +09:00
