Pleroma

History

rinpatch 6ca709816f Fix object spoofing vulnerability in attachments Validate the content-type of the response when fetching an object, according to https://www.w3.org/TR/activitypub/#x3-2-retrieving-objects. content-type headers had to be added to many mocks in order to support this, some of this was done with a regex. While I did go over the resulting files to check I didn't modify anything unrelated, there is a possibility I missed something. Closes pleroma#1948		2020-11-12 15:25:33 +03:00
..
activity/ir
bbs
chat
config
conversation
docs
ecto_type/activity_pub/object_validators
emails
emoji
gun
http
instances
integration
mfa
migration_helper
object	Fix object spoofing vulnerability in attachments	2020-11-12 15:25:33 +03:00
repo/migrations
upload
uploaders
user
web	Fix object spoofing vulnerability in attachments	2020-11-12 15:25:33 +03:00
workers
activity_test.exs
application_requirements_test.exs
bookmark_test.exs
captcha_test.exs
chat_test.exs
config_db_test.exs
config_test.exs
conversation_test.exs
earmark_renderer_test.exs
emoji_test.exs
filter_test.exs
following_relationship_test.exs
formatter_test.exs
healthcheck_test.exs
html_test.exs
http_test.exs
instances_test.exs
job_queue_monitor_test.exs
keys_test.exs
list_test.exs
marker_test.exs
mfa_test.exs
moderation_log_test.exs
notification_test.exs
object_test.exs	Fix object spoofing vulnerability in attachments	2020-11-12 15:25:33 +03:00
otp_version_test.exs
pagination_test.exs
registration_test.exs
repo_test.exs
report_note_test.exs
reverse_proxy_test.exs
runtime_test.exs
safe_jsonb_set_test.exs
scheduled_activity_test.exs
signature_test.exs
stats_test.exs
upload_test.exs
user_invite_token_test.exs
user_relationship_test.exs
user_search_test.exs
user_test.exs
utils_test.exs
xml_builder_test.exs