Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 1054702: CSV export vulnerable to formulae injection | Simon Green | 2014-10-06 | 2 | -4/+8 |
| | | | | r=glob,a=glob | ||||
* | Bug 1064140: [SECURITY] Private comments can be shown to flagmail recipients ↵ | Simon Green | 2014-10-06 | 3 | -18/+38 |
| | | | | | | who aren't in the insider group r=glob,a=glob | ||||
* | Bug 1074980: Forbid the { foo => $cgi->param() } syntax to prevent data override | Frédéric Buclin | 2014-10-06 | 1 | -1/+32 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1075578: [SECURITY] Improper filtering of CGI arguments | Frédéric Buclin | 2014-10-06 | 11 | -45/+46 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1071276: Markdown comment checkbox value is not passed through properly ↵ | Koosha | 2014-10-05 | 1 | -0/+1 |
| | | | | | | when a mid air collision has occurred and user chooses to submit comment r=dkl a=sgreen | ||||
* | Bug 1076155: Remove "?" from table columns and labels + code cleanup | Frédéric Buclin | 2014-10-02 | 3 | -23/+14 |
| | | | | r=dkl a=justdave | ||||
* | Bug 1069760 - Cannot use 'component' in a template | Simon Green | 2014-10-01 | 3 | -17/+17 |
| | | | | r=gerv, a=justdave | ||||
* | Bug 1070640: Update (and rename) Bugzilla::Send::Sendmail to work with ↵ | Frédéric Buclin | 2014-10-01 | 2 | -31/+22 |
| | | | | | | Email::Sender::Transport::Sendmail r=dylan a=justdave | ||||
* | Fix bustage due to bug 1061247 | Frédéric Buclin | 2014-10-01 | 1 | -0/+1 |
| | |||||
* | Bug 1061247 - Successfully using a password change token should invalidate ↵ | Reed Loden | 2014-09-30 | 1 | -0/+2 |
| | | | | | | all other password change tokens for that user r=gerv a=glob | ||||
* | Bug 1070317 - Bugzilla::Flag's attribute modification_date is affected by ↵ | Dylan William Hardison | 2014-09-30 | 1 | -2/+3 |
| | | | | | | the user's timezone and differs from the database copy after a call to $flag->update() r=dkl, a=justdave | ||||
* | Bug 1071317: Remove unused variables | Frédéric Buclin | 2014-09-29 | 3 | -4/+0 |
| | | | | r=gerv a=sgreen | ||||
* | Bug 1044457 - PostgreSQL 8.x fails with error: language "plpgsql" does not exist | Dylan William Hardison | 2014-09-28 | 1 | -0/+3 |
| | |||||
* | Bug 1071024 - improve description of mail_delivery_method. r=glob. | Gervase Markham | 2014-09-26 | 1 | -1/+6 |
| | |||||
* | Bug 1071033: Variable "$user" will not stay shared at buglist.cgi | Frédéric Buclin | 2014-09-26 | 1 | -5/+4 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1072110: _concatenate_js assumes javascript_urls is an array | Byron Jones | 2014-09-26 | 3 | -3/+4 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1059685: Add user help for Markdown | Koosha KM | 2014-09-23 | 1 | -4/+4 |
| | | | | - Fixed template filter for constant in markdown.html.tmpl | ||||
* | Bug 1059685: Add user help for Markdown | Koosha KM | 2014-09-23 | 3 | -10/+270 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1065444: Several columns are not legal when displaying queries | Frédéric Buclin | 2014-09-23 | 2 | -41/+46 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1069363: "show user list again" link does not include is_enabled for ↵ | David Lawrence | 2014-09-22 | 1 | -1/+3 |
| | | | | | | showing previous results list r=glob,a=glob | ||||
* | Bug 502625: Replace Email::Send with Email::Sender | Frédéric Buclin | 2014-09-20 | 6 | -73/+41 |
| | | | | r=dylan a=glob | ||||
* | Bug 829273: Certain webservice tests failing due to improper error being ↵ | David Lawrence | 2014-09-18 | 1 | -2/+2 |
| | | | | | | thrown for undef or empty bug id values r=glob,a=glob | ||||
* | Bug 1068521: "Use of uninitialized value" warnings | Pami Ketolainen | 2014-09-18 | 2 | -5/+12 |
| | | | | r=glob,a=glob | ||||
* | Bug 1068014: skip strptime() in datetime_from() if the date is in a standard ↵ | Byron Jones | 2014-09-18 | 1 | -3/+8 |
| | | | | | | format r=dylan,a=glob | ||||
* | Bug 1064395: concatenate and slightly minify javascript files | Byron Jones | 2014-09-18 | 4 | -14/+100 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1068277: No longer able to save/edit/forget a saved search if results ↵ | David Lawrence | 2014-09-17 | 1 | -27/+27 |
| | | | | | | are 0 in buglist.cgi r=LpSolit,a=sgreen | ||||
* | Bug 1039940: serialisation of objects for webservice responses is extremely slow | Byron Jones | 2014-09-16 | 1 | -5/+8 |
| | | | | r=dylan,a=sgreen | ||||
* | Bug 252555: Remove the ANSI mode when running MySQL | Vishant Gautam | 2014-09-15 | 1 | -3/+4 |
| | | | | r=LpSolit a=sgreen | ||||
* | Bug 1066184: data/params.js should be renamed to data/params.json since the ↵ | David Lawrence | 2014-09-15 | 6 | -16/+21 |
| | | | | | | data form is JSON and not JS r=LpSolit,a=sgreen | ||||
* | Bug 1064933: Bugzilla.pm does not compile without Text::Markdown | Koosha KM | 2014-09-11 | 3 | -4/+6 |
| | | | | r=glob,a=sgreen | ||||
* | Bug 1052724: Use JSON::XS instead of Data::Dumper to store parameters into ↵ | Frédéric Buclin | 2014-09-11 | 8 | -61/+77 |
| | | | | | | data/params r=dkl r=wurblzap a=sgreen | ||||
* | Bug 1041306: Kill global/site-navigation.html.tmpl to conform to the HTML5 ↵ | Frédéric Buclin | 2014-09-11 | 4 | -81/+3 |
| | | | | | | spec about valid <link rel="..."> keywords r=dkl a=sgreen | ||||
* | Bug 1009013 - Require a user to change their password if they log in and ↵ | Simon Green | 2014-09-11 | 6 | -23/+63 |
| | | | | | | their current password does not meet the password complexity rules r=glob, a=sgreen | ||||
* | Bug 1053513 - fix patching error | Dylan William Hardison | 2014-09-10 | 1 | -1/+1 |
| | | | | I yearn for review board and more git-based development. | ||||
* | Bug 1035080: preload visibility of referenced bugs in _preload_referenced_bugs | Byron Jones | 2014-09-10 | 1 | -0/+3 |
| | | | | r=sgreen,a=sgreen | ||||
* | Bug 1036242: "TypeError: bug_status is undefined" when creating a bug | Matt Tyson | 2014-09-10 | 1 | -4/+8 |
| | | | | r=glob,a=glob | ||||
* | Bug 1053513 - remove last-visited entries when a user removes involvement ↵ | Dylan William Hardison | 2014-09-09 | 2 | -0/+16 |
| | | | | | | from a bug r/a=glob | ||||
* | Bug 1046126: Do not generate a new API token every time you access a ↵ | David Lawrence | 2014-09-08 | 1 | -3/+10 |
| | | | | | | bug-related page r=sgreen,a=glob | ||||
* | Bug 1046213: datetime_from() generates wrong dates if year < 1901 | Frédéric Buclin | 2014-09-08 | 1 | -3/+7 |
| | | | | r=sgreen a=glob | ||||
* | Bug 768892 - Specific Search without search words yields invalid_column_name ↵ | Simon Green | 2014-09-08 | 1 | -1/+1 |
| | | | | | | message, complaining about sort order "relevance desc" r=sgreen, a=glob | ||||
* | Bug 1057838 - Update Autolinkification documentation to cover a list of ↵ | Koosha KM | 2014-09-08 | 1 | -0/+4 |
| | | | | | | bug/comment ids r=sgreen, a=sgreen | ||||
* | Bug 1060308: Markdown: URLs and Emails are not rendered literally in code ↵ | Koosha KM | 2014-09-05 | 1 | -1/+6 |
| | | | | | | spans and code blocks r=glob,a=sgreen | ||||
* | Bug 1040728 - testserver.pl on Ubuntu 12.04 with Apache2 invalidly gives ↵ | Dylan William Hardison | 2014-09-03 | 1 | -1/+1 |
| | | | | | | error 'Failed to find the GID for the 'httpd' process' due to truncated command name r=gerv,a=sgreen | ||||
* | Bug 281791 - Add ability to change flags in "change several bugs at once" | Simon Green | 2014-09-02 | 6 | -1/+184 |
| | | | | r=glob, a=sgreen | ||||
* | Bug 1054175 - Exclude Bugzilla::Migrate:: from requiring POD documentation | Simon Green | 2014-09-02 | 1 | -0/+1 |
| | | | | r=gerv, a=sgreen | ||||
* | Bug 1060233 - Aliases are not displayed correctly in some places | Simon Green | 2014-08-30 | 2 | -5/+6 |
| | | | | r=dkl, a=sgreen | ||||
* | Bug 330707: Add optional support for MarkDown | Koosha KM | 2014-08-28 | 25 | -15/+624 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1056087 - contrib/merge-users.pl fails if there are no duplicate ↵ | Dylan William Hardison | 2014-08-26 | 1 | -2/+7 |
| | | | | bug_user_last_visit rows | ||||
* | Bug 1054642: quoteUrls() enters an infinite loop with a list of nonexistent ↵ | Koosha KM | 2014-08-25 | 1 | -13/+8 |
| | | | | | | bug ids to be linkified r=glob,a=sgreen | ||||
* | Bug 1008766 - Fix typo in documentation (edit) | Simon Green | 2014-08-24 | 1 | -1/+1 |
| | | | | r=glob, a=glob |