upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-05-26 03:04:35 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 9
46502 commits 967 branches 1211 tags 8.7 GiB
Commit graph

46502 commits

This branch
This branch
All branches
Author SHA1 Message Date
Roeland Jago Douma
d48f4336cf
Merge pull request #16650 from nextcloud/dependabot/npm_and_yarn/build/stable14/fstream-1.0.12 
[Security] Bump fstream from 1.0.11 to 1.0.12 in /build
 2019-08-04 22:50:31 +02:00
dependabot-preview[bot]
14301e67b3
[Security] Bump fstream from 1.0.11 to 1.0.12 in /build 
Bumps [fstream](https://github.com/npm/fstream) from 1.0.11 to 1.0.12. **This update includes a security fix.**
- [Release notes](https://github.com/npm/fstream/releases)
- [Commits](https://github.com/npm/fstream/compare/v1.0.11...v1.0.12)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-08-04 07:56:38 +00:00
Roeland Jago Douma
8d62892384
Merge pull request #16648 from nextcloud/dependabot/npm_and_yarn/build/stable14/lodash.mergewith-4.6.2 
[Security] Bump lodash.mergewith from 4.6.1 to 4.6.2 in /build
 2019-08-04 09:55:18 +02:00
Nextcloud bot
544b8522b4
[tx-robot] updated from transifex 2019-08-04 02:15:41 +00:00
dependabot-preview[bot]
80509ba66b
[Security] Bump lodash.mergewith from 4.6.1 to 4.6.2 in /build 
Bumps [lodash.mergewith](https://github.com/lodash/lodash) from 4.6.1 to 4.6.2. **This update includes a security fix.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-08-04 01:12:30 +00:00
Nextcloud bot
ffd345a44f
[tx-robot] updated from transifex 2019-08-03 02:14:53 +00:00
Nextcloud bot
bb89a01241
[tx-robot] updated from transifex 2019-08-02 02:14:52 +00:00
Nextcloud bot
062ec6adb0
[tx-robot] updated from transifex 2019-08-01 02:15:50 +00:00
Roeland Jago Douma
b675ed13c6
Merge pull request #16609 from nextcloud/backport/stable14/16596 
[stable14] Set proper defaults for v-tooltip usages
 2019-07-31 08:34:14 +02:00
Nextcloud bot
fdd35722cc
[tx-robot] updated from transifex 2019-07-31 02:16:26 +00:00
Roeland Jago Douma
53874abcf5
Merge pull request #16612 from nextcloud/backport/16599/stable14 
[stable14] Fix/xss/on favorite file
 2019-07-30 16:31:14 +02:00
Max Fichtelmann
f08798e919 prevent potential XSS via unchecked use innerHTML 
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
 2019-07-30 07:54:06 +00:00
Max Fichtelmann
29504e8c8d fix XSS when adding a file with a malicious name to favorites 
Signed-off-by: Max Fichtelmann <max.fichtelmann@procilon.de>
 2019-07-30 07:54:05 +00:00
Julius Härtl
7c3edd034a
Bump bundles 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-30 09:03:07 +02:00
Julius Härtl
737a05a017
Force defaultHtml setting of v-tooltip to be disabled 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
 2019-07-30 09:01:34 +02:00
Nextcloud bot
af348e1393
[tx-robot] updated from transifex 2019-07-30 02:15:11 +00:00
Nextcloud bot
7a8142edfd
[tx-robot] updated from transifex 2019-07-29 02:15:21 +00:00
Nextcloud bot
c9568371e1
[tx-robot] updated from transifex 2019-07-28 02:15:46 +00:00
Nextcloud bot
907ef8c3f9
[tx-robot] updated from transifex 2019-07-27 02:14:59 +00:00
Nextcloud bot
baa31c430e
[tx-robot] updated from transifex 2019-07-26 02:15:02 +00:00
Nextcloud bot
24e95b0bb4
[tx-robot] updated from transifex 2019-07-25 02:15:01 +00:00
Nextcloud bot
1388bee10c
[tx-robot] updated from transifex 2019-07-24 02:15:56 +00:00
Nextcloud bot
5d8be2dd49
[tx-robot] updated from transifex 2019-07-23 02:16:05 +00:00
Nextcloud bot
94acddb6fd
[tx-robot] updated from transifex 2019-07-22 02:16:22 +00:00
Nextcloud bot
3fe7a27902
[tx-robot] updated from transifex 2019-07-21 02:15:31 +00:00
Nextcloud bot
96de99da7d
[tx-robot] updated from transifex 2019-07-20 02:14:53 +00:00
Nextcloud bot
fd69188d81
[tx-robot] updated from transifex 2019-07-19 02:27:39 +00:00
Nextcloud bot
53ab33acbe
[tx-robot] updated from transifex 2019-07-18 02:15:19 +00:00
Roeland Jago Douma
e8e5087349
Merge pull request #16434 from nextcloud/backport/16424/stable14 
[stable14] Do not keep searching for recent
 2019-07-17 09:51:25 +02:00
Roeland Jago Douma
d115e7f802 Do not keep searching for recent 
If userA has a lot of recent files. But only shares 1 file with userB
(that has no files at all). We could keep searching until we run out of
recent files for userA.

Now assume the inactive userB has 20 incomming shares like that from
different users. getRecent then basically keeps consuming huge amounts
of resources and with each iteration the load on the DB increases
(because of the offset).

This makes sure we do not get more than 3 times the limit we search for
or more than 5 queries.

This means we might miss some recent entries but we should fix that
separatly. This is just to make sure the load on the DB stays sane.

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
 2019-07-17 05:49:34 +00:00
Nextcloud bot
55b12fd62f
[tx-robot] updated from transifex 2019-07-17 02:15:52 +00:00
Roeland Jago Douma
ad675cd364
Merge pull request #16427 from nextcloud/backport/16423/stable14 
[stable14] Only prevent disabling encrytion via the API
 2019-07-16 22:18:26 +02:00
Joas Schilling
5c036d1606 Only prevent disabling encrytion via the API 
Signed-off-by: Joas Schilling <coding@schilljs.com>
 2019-07-16 17:47:41 +00:00
Nextcloud bot
5fa795ea53
[tx-robot] updated from transifex 2019-07-16 02:15:10 +00:00
Nextcloud bot
90b7f1316e
[tx-robot] updated from transifex 2019-07-15 02:14:49 +00:00
Nextcloud bot
abe371beba
[tx-robot] updated from transifex 2019-07-14 02:15:26 +00:00
Nextcloud bot
fd1c58bb80
[tx-robot] updated from transifex 2019-07-13 02:14:38 +00:00
Nextcloud bot
10a8660230
[tx-robot] updated from transifex 2019-07-12 02:15:21 +00:00
Morris Jobke
4d52293c3a
Merge pull request #16347 from nextcloud/dependabot/npm_and_yarn/settings/stable14/lodash-4.17.14 
[Security] Bump lodash from 4.17.11 to 4.17.14 in /settings
 2019-07-11 12:54:28 +02:00
dependabot-preview[bot]
12f484772f
[Security] Bump lodash from 4.17.11 to 4.17.14 in /settings 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.14. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.11...4.17.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-11 10:53:22 +00:00
Morris Jobke
0382f65f1b
Merge pull request #16354 from nextcloud/dependabot/npm_and_yarn/apps/oauth2/stable14/lodash-4.17.14 
[Security] Bump lodash from 4.17.11 to 4.17.14 in /apps/oauth2
 2019-07-11 12:52:52 +02:00
Morris Jobke
e3dcddfc3b
Merge pull request #16355 from nextcloud/dependabot/npm_and_yarn/apps/updatenotification/stable14/lodash-4.17.14 
[Security] Bump lodash from 4.17.11 to 4.17.14 in /apps/updatenotification
 2019-07-11 12:52:33 +02:00
Morris Jobke
d560e876a1
Merge pull request #16358 from nextcloud/dependabot/npm_and_yarn/apps/accessibility/stable14/lodash-4.17.14 
[Security] Bump lodash from 4.17.11 to 4.17.14 in /apps/accessibility
 2019-07-11 12:52:00 +02:00
dependabot-preview[bot]
56438880c8
[Security] Bump lodash in /apps/updatenotification 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.14. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.11...4.17.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-11 10:51:28 +00:00
dependabot-preview[bot]
900d37e1d9
[Security] Bump lodash from 4.17.11 to 4.17.14 in /apps/oauth2 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.14. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.11...4.17.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-11 10:51:19 +00:00
dependabot-preview[bot]
832babfaba
[Security] Bump lodash from 4.17.11 to 4.17.14 in /apps/accessibility 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.14. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.11...4.17.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-11 10:51:18 +00:00
Morris Jobke
493591125c
Merge pull request #16342 from nextcloud/dependabot/npm_and_yarn/settings/stable14/lodash.merge-4.6.2 
[Security] Bump lodash.merge from 4.6.1 to 4.6.2 in /settings
 2019-07-11 12:49:25 +02:00
Roeland Jago Douma
292d551a50
Merge pull request #16356 from nextcloud/dependabot/npm_and_yarn/build/stable14/lodash-4.17.14 
[Security] Bump lodash from 4.17.11 to 4.17.14 in /build
 2019-07-11 08:57:35 +02:00
dependabot-preview[bot]
8cb7a37495
[Security] Bump lodash from 4.17.11 to 4.17.14 in /build 
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.11 to 4.17.14. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.11...4.17.14)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-07-11 03:20:40 +00:00
Nextcloud bot
9fc95b3ed9
[tx-robot] updated from transifex 2019-07-11 02:14:50 +00:00