Commit graph

8008 commits

Author SHA1 Message Date
github-actions[bot]
650ef29042
Merge pull request #6357 from wallabag/dependabot/npm_and_yarn/autoprefixer-10.4.14
Bump autoprefixer from 10.4.13 to 10.4.14
2023-03-24 23:02:05 +00:00
dependabot[bot]
622fd53fd0
Bump autoprefixer from 10.4.13 to 10.4.14
Bumps [autoprefixer](https://github.com/postcss/autoprefixer) from 10.4.13 to 10.4.14.
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/autoprefixer/compare/10.4.13...10.4.14)

---
updated-dependencies:
- dependency-name: autoprefixer
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:52:27 +00:00
github-actions[bot]
3d7d9a8a78
Merge pull request #6358 from wallabag/dependabot/npm_and_yarn/eslint-8.36.0
Bump eslint from 8.33.0 to 8.36.0
2023-03-24 22:51:12 +00:00
github-actions[bot]
c6cc235942
Merge pull request #6344 from wallabag/dependabot/npm_and_yarn/dns-packet-5.4.0
Bump dns-packet from 5.3.1 to 5.4.0
2023-03-24 22:46:27 +00:00
Jérémy Benoist
8469a3df76
Merge pull request #6341 from wallabag/dependabot/composer/symfony/phpunit-bridge-6.2.7 2023-03-24 23:36:23 +01:00
dependabot[bot]
59b33e98af
Bump eslint from 8.33.0 to 8.36.0
Bumps [eslint](https://github.com/eslint/eslint) from 8.33.0 to 8.36.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.33.0...v8.36.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:22:43 +00:00
github-actions[bot]
b4738264d0
Merge pull request #6367 from wallabag/dependabot/npm_and_yarn/mini-css-extract-plugin-2.7.5
Bump mini-css-extract-plugin from 2.7.2 to 2.7.5
2023-03-24 22:21:25 +00:00
github-actions[bot]
ad6d0f5776
Merge pull request #6371 from wallabag/dependabot/npm_and_yarn/stylelint-scss-4.5.0
Bump stylelint-scss from 4.3.0 to 4.5.0
2023-03-24 22:18:35 +00:00
github-actions[bot]
250e8027b7
Merge pull request #6378 from wallabag/dependabot/npm_and_yarn/sass-1.60.0
Bump sass from 1.58.3 to 1.60.0
2023-03-24 22:18:13 +00:00
dependabot[bot]
555e19e76a
Bump phpstan/phpstan from 1.9.17 to 1.10.8
Bumps [phpstan/phpstan](https://github.com/phpstan/phpstan) from 1.9.17 to 1.10.8.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/1.10.x/CHANGELOG.md)
- [Commits](https://github.com/phpstan/phpstan/compare/1.9.17...1.10.8)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:16:50 +00:00
dependabot[bot]
169f55b5cc
Bump symfony/phpunit-bridge from 6.2.5 to 6.2.7
Bumps [symfony/phpunit-bridge](https://github.com/symfony/phpunit-bridge) from 6.2.5 to 6.2.7.
- [Release notes](https://github.com/symfony/phpunit-bridge/releases)
- [Changelog](https://github.com/symfony/phpunit-bridge/blob/6.2/CHANGELOG.md)
- [Commits](https://github.com/symfony/phpunit-bridge/compare/v6.2.5...v6.2.7)

---
updated-dependencies:
- dependency-name: symfony/phpunit-bridge
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:16:32 +00:00
Jérémy Benoist
c62f914d6e
Merge pull request #6351 from wallabag/dependabot/composer/j0k3r/graby-2.4.4 2023-03-24 23:15:33 +01:00
Jérémy Benoist
f4dede484c
Merge pull request #6376 from wallabag/dependabot/composer/phpseclib/phpseclib-3.0.19 2023-03-24 23:12:09 +01:00
github-actions[bot]
700d5c0140
Merge pull request #6377 from wallabag/dependabot/npm_and_yarn/webpack-5.76.0
Bump webpack from 5.75.0 to 5.76.0
2023-03-24 22:11:13 +00:00
dependabot[bot]
a794d40a65
Bump mini-css-extract-plugin from 2.7.2 to 2.7.5
Bumps [mini-css-extract-plugin](https://github.com/webpack-contrib/mini-css-extract-plugin) from 2.7.2 to 2.7.5.
- [Release notes](https://github.com/webpack-contrib/mini-css-extract-plugin/releases)
- [Changelog](https://github.com/webpack-contrib/mini-css-extract-plugin/blob/master/CHANGELOG.md)
- [Commits](https://github.com/webpack-contrib/mini-css-extract-plugin/compare/v2.7.2...v2.7.5)

---
updated-dependencies:
- dependency-name: mini-css-extract-plugin
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:08:22 +00:00
dependabot[bot]
3c9205e5d6
Bump sass from 1.58.3 to 1.60.0
Bumps [sass](https://github.com/sass/dart-sass) from 1.58.3 to 1.60.0.
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sass/dart-sass/compare/1.58.3...1.60.0)

---
updated-dependencies:
- dependency-name: sass
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:07:48 +00:00
dependabot[bot]
d788867652
Bump stylelint-scss from 4.3.0 to 4.5.0
Bumps [stylelint-scss](https://github.com/stylelint-scss/stylelint-scss) from 4.3.0 to 4.5.0.
- [Release notes](https://github.com/stylelint-scss/stylelint-scss/releases)
- [Changelog](https://github.com/stylelint-scss/stylelint-scss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/stylelint-scss/stylelint-scss/compare/v4.3.0...v4.5.0)

---
updated-dependencies:
- dependency-name: stylelint-scss
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:07:12 +00:00
dependabot[bot]
51f4440c2b
Bump j0k3r/graby from 2.4.2 to 2.4.4
Bumps [j0k3r/graby](https://github.com/j0k3r/graby) from 2.4.2 to 2.4.4.
- [Release notes](https://github.com/j0k3r/graby/releases)
- [Commits](https://github.com/j0k3r/graby/compare/2.4.2...2.4.4)

---
updated-dependencies:
- dependency-name: j0k3r/graby
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:07:03 +00:00
dependabot[bot]
596b200d61
Bump dns-packet from 5.3.1 to 5.4.0
Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 5.3.1 to 5.4.0.
- [Release notes](https://github.com/mafintosh/dns-packet/releases)
- [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mafintosh/dns-packet/compare/v5.3.1...5.4.0)

---
updated-dependencies:
- dependency-name: dns-packet
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:05:27 +00:00
dependabot[bot]
2b1f110d6f
Bump webpack from 5.75.0 to 5.76.0
Bumps [webpack](https://github.com/webpack/webpack) from 5.75.0 to 5.76.0.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](https://github.com/webpack/webpack/compare/v5.75.0...v5.76.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:03:57 +00:00
dependabot[bot]
1825c1ebc8
Bump phpseclib/phpseclib from 3.0.18 to 3.0.19
Bumps [phpseclib/phpseclib](https://github.com/phpseclib/phpseclib) from 3.0.18 to 3.0.19.
- [Release notes](https://github.com/phpseclib/phpseclib/releases)
- [Changelog](https://github.com/phpseclib/phpseclib/blob/master/CHANGELOG.md)
- [Commits](https://github.com/phpseclib/phpseclib/compare/3.0.18...3.0.19)

---
updated-dependencies:
- dependency-name: phpseclib/phpseclib
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-03-24 22:03:27 +00:00
Jérémy Benoist
2bbaf414b1
Merge pull request #6338 from wallabag/dependabot/composer/sensio/framework-extra-bundle-6.2.10
Bump sensio/framework-extra-bundle from 6.2.9 to 6.2.10
2023-03-24 23:02:33 +01:00
Jeremy Benoist
a237414f9c
Skip test because of encoding issue in PHP 8.1 2023-03-24 22:57:11 +01:00
dependabot[bot]
a60e01db71
Bump sensio/framework-extra-bundle from 6.2.9 to 6.2.10
Bumps [sensio/framework-extra-bundle](https://github.com/sensiolabs/SensioFrameworkExtraBundle) from 6.2.9 to 6.2.10.
- [Release notes](https://github.com/sensiolabs/SensioFrameworkExtraBundle/releases)
- [Changelog](https://github.com/sensiolabs/SensioFrameworkExtraBundle/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sensiolabs/SensioFrameworkExtraBundle/compare/v6.2.9...v6.2.10)

---
updated-dependencies:
- dependency-name: sensio/framework-extra-bundle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-27 04:01:22 +00:00
Kevin Decherf
7ae8b4b09c
Merge pull request #6320 from wallabag/dependabot/npm_and_yarn/sass-1.58.3
Bump sass from 1.58.0 to 1.58.3
2023-02-20 12:30:17 +01:00
Kevin Decherf
2ff687b631
Merge pull request #6319 from wallabag/dependabot/npm_and_yarn/stylelint-webpack-plugin-4.1.0
Bump stylelint-webpack-plugin from 4.0.0 to 4.1.0
2023-02-20 12:29:15 +01:00
dependabot[bot]
6e8bcdb1b4
Bump sass from 1.58.0 to 1.58.3
Bumps [sass](https://github.com/sass/dart-sass) from 1.58.0 to 1.58.3.
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sass/dart-sass/compare/1.58.0...1.58.3)

---
updated-dependencies:
- dependency-name: sass
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-20 03:57:18 +00:00
dependabot[bot]
aa4a371733
Bump stylelint-webpack-plugin from 4.0.0 to 4.1.0
Bumps [stylelint-webpack-plugin](https://github.com/webpack-contrib/stylelint-webpack-plugin) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/webpack-contrib/stylelint-webpack-plugin/releases)
- [Changelog](https://github.com/webpack-contrib/stylelint-webpack-plugin/blob/master/CHANGELOG.md)
- [Commits](https://github.com/webpack-contrib/stylelint-webpack-plugin/compare/v4.0.0...v4.1.0)

---
updated-dependencies:
- dependency-name: stylelint-webpack-plugin
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-20 03:57:00 +00:00
Nicolas Lœuillet
c0cb7ef430
Merge pull request #6305 from wallabag/dependabot/composer/phpstan/phpstan-phpunit-1.3.4
Bump phpstan/phpstan-phpunit from 1.3.3 to 1.3.4
2023-02-10 09:14:55 +01:00
dependabot[bot]
0fa808de7d
Bump phpstan/phpstan-phpunit from 1.3.3 to 1.3.4
Bumps [phpstan/phpstan-phpunit](https://github.com/phpstan/phpstan-phpunit) from 1.3.3 to 1.3.4.
- [Release notes](https://github.com/phpstan/phpstan-phpunit/releases)
- [Commits](https://github.com/phpstan/phpstan-phpunit/compare/1.3.3...1.3.4)

---
updated-dependencies:
- dependency-name: phpstan/phpstan-phpunit
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-10 03:59:38 +00:00
Jérémy Benoist
f972d212a4
Merge pull request #6296 from wallabag/dependabot/composer/phpstan/phpstan-1.9.17 2023-02-09 07:29:44 +01:00
Jérémy Benoist
cb48fa46be
Merge pull request #6298 from wallabag/dependabot/composer/twig/string-extra-3.5.1 2023-02-09 05:43:31 +01:00
Jérémy Benoist
bd3d53b075
Merge pull request #6299 from wallabag/dependabot/composer/twig/extra-bundle-3.5.1 2023-02-09 05:43:01 +01:00
dependabot[bot]
1d76b77d5c
Bump twig/extra-bundle from 3.5.0 to 3.5.1
Bumps [twig/extra-bundle](https://github.com/twigphp/twig-extra-bundle) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/twigphp/twig-extra-bundle/releases)
- [Commits](https://github.com/twigphp/twig-extra-bundle/compare/v3.5.0...v3.5.1)

---
updated-dependencies:
- dependency-name: twig/extra-bundle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-09 03:14:43 +00:00
dependabot[bot]
33ac507799
Bump twig/string-extra from 3.5.0 to 3.5.1
Bumps [twig/string-extra](https://github.com/twigphp/string-extra) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/twigphp/string-extra/releases)
- [Commits](https://github.com/twigphp/string-extra/compare/v3.5.0...v3.5.1)

---
updated-dependencies:
- dependency-name: twig/string-extra
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-09 03:14:02 +00:00
dependabot[bot]
3a3e6f5534
Bump phpstan/phpstan from 1.9.16 to 1.9.17
Bumps [phpstan/phpstan](https://github.com/phpstan/phpstan) from 1.9.16 to 1.9.17.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/1.10.x/CHANGELOG.md)
- [Commits](https://github.com/phpstan/phpstan/compare/1.9.16...1.9.17)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-09 03:12:57 +00:00
Jérémy Benoist
2ceec933d0
Merge pull request #6293 from wallabag/dependabot/composer/doctrine/dbal-3.6.0 2023-02-08 06:56:26 +01:00
Jérémy Benoist
11252e74da
Merge pull request #6294 from wallabag/dependabot/composer/phpstan/phpstan-1.9.16 2023-02-08 06:55:47 +01:00
dependabot[bot]
83563795a7
Bump phpstan/phpstan from 1.9.14 to 1.9.16
Bumps [phpstan/phpstan](https://github.com/phpstan/phpstan) from 1.9.14 to 1.9.16.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/1.10.x/CHANGELOG.md)
- [Commits](https://github.com/phpstan/phpstan/compare/1.9.14...1.9.16)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-08 03:03:41 +00:00
dependabot[bot]
4a891f8a1d
Bump doctrine/dbal from 3.5.3 to 3.6.0
Bumps [doctrine/dbal](https://github.com/doctrine/dbal) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/doctrine/dbal/releases)
- [Commits](https://github.com/doctrine/dbal/compare/3.5.3...3.6.0)

---
updated-dependencies:
- dependency-name: doctrine/dbal
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-08 03:02:04 +00:00
Jérémy Benoist
055d304bc9
Merge pull request #6291 from wallabag/release/2.5.4
Prepare 2.5.4
2023-02-07 22:20:00 +01:00
Jeremy Benoist
812d6ac376
Prepare 2.5.4 2023-02-07 22:03:20 +01:00
Jérémy Benoist
268372dbbd
Merge pull request #6289 from wallabag/2.5/fix-csrf-user-deletion
Fix CSRF on user deletion
2023-02-07 21:52:51 +01:00
Jérémy Benoist
4e023bddc3
Merge pull request #6288 from wallabag/2.5/xss-username-share-page
Fix XSS on username on share page
2023-02-07 21:43:04 +01:00
Jérémy Benoist
acd285dcbb
Merge pull request #6290 from wallabag/2.5/fix-add-tag-other-entries
Fix adding tag to entries from other people
2023-02-07 21:42:46 +01:00
Jeremy Benoist
f1b3d5cdd7
Fix CSRF on user deletion 2023-02-07 21:41:52 +01:00
Jeremy Benoist
242e3feac9
Fix adding tag to entries from other people
I've also limited tag length to 20 chars (and limit adding more than 5 tags at once)
2023-02-07 21:25:57 +01:00
Jeremy Benoist
bd4c71682e
Fix XSS on username on share page 2023-02-07 19:58:06 +01:00
Jérémy Benoist
ebb39759ff
Merge pull request #6286 from wallabag/dependabot/composer/phpstan/phpstan-symfony-1.2.23 2023-02-07 05:35:17 +01:00
dependabot[bot]
647d628853
Bump phpstan/phpstan-symfony from 1.2.22 to 1.2.23
Bumps [phpstan/phpstan-symfony](https://github.com/phpstan/phpstan-symfony) from 1.2.22 to 1.2.23.
- [Release notes](https://github.com/phpstan/phpstan-symfony/releases)
- [Commits](https://github.com/phpstan/phpstan-symfony/compare/1.2.22...1.2.23)

---
updated-dependencies:
- dependency-name: phpstan/phpstan-symfony
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-02-07 03:03:29 +00:00