This repository has been archived on 2024-07-22. You can view files and clone it, but cannot push or open issues or pull requests.
mastodon/config/initializers
Claire dc8f1fbd97
Merge pull request from GHSA-9928-3cp5-93fm
* Fix attachments getting processed despite failing content-type validation

* Add a restrictive ImageMagick security policy tailored for Mastodon

* Fix misdetection of MP3 files with large cover art

* Reject unprocessable audio/video files instead of keeping them unchanged
2023-07-06 15:05:05 +02:00
..
0_post_deployment_migrations.rb
1_hosts.rb
2_whitelist_mode.rb
active_model_serializers.rb
application_controller_renderer.rb
assets.rb Revert "Rails 7 update" (#25667) 2023-07-02 11:14:22 +02:00
backtrace_silencers.rb
blacklists.rb
cache_buster.rb
cache_logging.rb
chewy.rb Change root Chewy strategy to emit a warning instead of erroring out in production mode (#24327) 2023-04-03 15:05:39 +02:00
content_security_policy.rb Fix CSP headers when S3_ALIAS_HOST includes a path component (#25273) 2023-06-05 17:35:05 +02:00
cookies_serializer.rb
cors.rb
devise.rb
doorkeeper.rb
fast_blank.rb
ffmpeg.rb Autofix Rubocop spacing in config (#25022) 2023-05-22 13:17:56 +02:00
filter_parameter_logging.rb Revert "Rails 7 update" (#25667) 2023-07-02 11:14:22 +02:00
http_client_proxy.rb
httplog.rb
inflections.rb Change user settings to be stored in a more optimal way (#23630) 2023-03-30 14:44:00 +02:00
json_ld.rb
kaminari_config.rb
mail_delivery_job.rb
makara.rb
mime_types.rb
oj.rb
omniauth.rb Autofix Rubocop spacing in config (#25022) 2023-05-22 13:17:56 +02:00
open_uri_redirection.rb
paperclip.rb Merge pull request from GHSA-9928-3cp5-93fm 2023-07-06 15:05:05 +02:00
permissions_policy.rb
pghero.rb
preload_link_headers.rb
premailer_rails.rb
rack_attack.rb Autofix Rubocop Regex Style rules (#23690) 2023-06-06 14:50:51 +02:00
rack_attack_logging.rb
redis.rb Upgrade to latest redis-rb 4.x and fix deprecations (#23616) 2023-03-04 16:38:28 +01:00
session_activations.rb
session_store.rb
sidekiq.rb
simple_form.rb Change wording of “Content cache retention period” setting to highlight destructive implications (#23261) 2023-06-02 18:09:08 +02:00
single_user_mode.rb
stoplight.rb
strong_migrations.rb Fix compatibility of recent migration with PostgreSQL 10 (#25324) 2023-06-07 01:53:50 +02:00
suppress_csrf_warnings.rb
trusted_proxies.rb
twitter_regex.rb Autofix Rubocop Regex Style rules (#23690) 2023-06-06 14:50:51 +02:00
vapid.rb
webauthn.rb Autofix Rubocop spacing in config (#25022) 2023-05-22 13:17:56 +02:00
wrap_parameters.rb