github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-24 13:18:33 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
4b66086d04
discourse/spec
History
Jarek Radosz b27d5626d2
SECURITY: Prevent arbitrary file write when decompressing files (#18421) 
* SECURITY: Prevent arbitrary file write when decompressing files
* FIX: Allow decompressing files into symlinked directories

Co-authored-by: OsamaSayegh <asooomaasoooma90@gmail.com>
Co-authored-by: Gerhard Schlager <gerhard.schlager@discourse.org>
2022-09-29 20:00:38 +02:00
..
fabricators UX: Use dominant color as image loading placeholder (#18248) 2022-09-20 10:28:17 +01:00
fixtures FEATURE: Add support for case-sensitive Watched Words (#17445) 2022-08-02 10:06:03 +02:00
helpers DEV: output sitelinks search tag on homepage only (#16157) 2022-09-23 15:05:53 +08:00
import_export DEV: Use proper wording for contexts in specs 2022-08-04 11:05:02 +02:00
initializers Add RSpec 4 compatibility (#17652) 2022-07-28 10:27:38 +08:00
integration DEV: Use AR enums in reviewables related code 2022-09-22 14:44:27 +02:00
integrity DEV: Use proper wording for contexts in specs 2022-08-04 11:05:02 +02:00
jobs DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
lib SECURITY: Prevent arbitrary file write when decompressing files (#18421) 2022-09-29 20:00:38 +02:00
mailers DEV: Use proper wording for contexts in specs 2022-08-04 11:05:02 +02:00
models DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
multisite DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
requests SECURITY: moderator shouldn't be able to import a theme via API (#18418) 2022-09-29 20:00:20 +02:00
script/import_scripts DEV: Use proper wording for contexts in specs 2022-08-04 11:05:02 +02:00
serializers DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
services FEATURE: Introduce personal_message_enabled_groups setting (#18042) 2022-09-26 13:58:40 +10:00
support DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
system DEV: Minimal first pass of rails system test setup (#16311) 2022-09-28 11:48:16 +10:00
tasks DEV: Rename secure_media to secure_uploads (#18376) 2022-09-29 09:24:33 +10:00
views Add RSpec 4 compatibility (#17652) 2022-07-28 10:27:38 +08:00
rails_helper.rb DEV: Minimal first pass of rails system test setup (#16311) 2022-09-28 11:48:16 +10:00
regenerate_swagger_docs DEV: Add API docs for uploads and API doc watcher (#15387) 2021-12-23 08:40:15 +10:00
swagger_helper.rb DEV: Fix openapi definition logo URL (#17038) 2022-06-08 13:10:20 +01:00