Pleroma/lib
rinpatch 6ca709816f Fix object spoofing vulnerability in attachments
Validate the content-type of the response when fetching an object,
according to https://www.w3.org/TR/activitypub/#x3-2-retrieving-objects.

content-type headers had to be added to many mocks in order to support
this, some of this was done with a regex. While I did go over the
resulting files to check I didn't modify anything unrelated, there is a
 possibility I missed something.

Closes pleroma#1948
2020-11-12 15:25:33 +03:00
..
mix Remove release_env 2020-11-08 11:56:09 +03:00
phoenix/transports/web_socket Merge branch 'develop' into chore/elixir-1.11 2020-10-13 09:54:53 -05:00
pleroma Fix object spoofing vulnerability in attachments 2020-11-12 15:25:33 +03:00
jason_types.ex Update Copyrights 2020-03-03 16:44:49 -06:00