Ejegg has uploaded a new change for review. https://gerrit.wikimedia.org/r/289967
Change subject: Merge remote-tracking branch 'origin/REL1_25' into fundraising/REL1_25 ...................................................................... Merge remote-tracking branch 'origin/REL1_25' into fundraising/REL1_25 Update to 1.25.6 01b4001 I iz ugh 87e62b8 Fix fatal with PHP 5.3 a14add6 Bump to 1.25.6 for tagging 8ffc7a5 Add rel="noreferrer noopener" when target attribute would open window b7f2d14 SECURITY: Rate limit moves via the API 7e6dd52 SECURITY: Wrap diff generation in PoolCounter dd2d64c Enforce upper limit on invocations of wfShellExec() aca768e SECURITY: Throw exception on unknown hash algorithm 2e6d67d Canonicalize usernames before rate limiting logins 5a2d9a30 Use global cache keys login/create account rate limitting d6bdfbb SECURITY: RawAction: Vary on the usual headers c0b4f97 SECURITY: Improve cross-domain-policy mangling 6e48d1e SECURITY: Don't use m modifier when checking link prefix fb3c9a4 SECURITY: Check for mbstring.func_overload at runtime dfd1256 Reset wsEditToken on login 79db508 Update default hash storage settings ceffd37 SECURITY: Include quote characters in strip markers so esc in attr 295bbae SECURITY: Add class to <a> for patrol links so it can't be spoofed by user f6260d1 SECURITY: API: Add "standard" header and hook for lacksSameOriginSecurity() f3642b9 Merge "Bump composer-merge-plugin to v1.3.1" into REL1_25 55e051a Bump composer-merge-plugin to v1.3.1 d75270f Merge "sajax: Explicitly specify released under 3-clause BSD license" into REL1_25 eb45722 build: Bump various devDependencies 57956e5 sajax: Explicitly specify released under 3-clause BSD license c1fa430 Fix exception in Import, when import of a revision fails 977aee4 Prep 1.25.5 9fe5ced Fix Fatal on various special pages introduced in 1.25.4 fbe53db 1.25.4: Prep release notes and bump version number 2a11f80 Add $query to JavaScript redirect info 2ccdbbb SECURITY: Make Special:MyPage and friends fake redirect to prevent info leak 6211faf Fixed some doc errors in tryNormaliseRedirect() 34ffe76 MediaWiki.php: Factor out tryNormaliseRedirect 29ee797 Really validate that $wgArticlePath starts with a slash e0dcc8f Validates wgArticlePath does start with slash (/). 95b32b4 Fix IP::toHex for IPv4 addresses with a double/triple 0 block 4715821 [SECURITY] 0-pad to length in random string generation 2bfc17b SECURITY: Work around CURL insanity breaking POST parameters that start with '@' e4b2475 Use hash_equals in User::matchEditToken 1c4d1ee Don't install a custom error handler for hooks 9ed2883 Fixup MW for HHVM Repo Authorative mode c7bc530 tests: let us select/exclude ParserTests 3b8cee1 Added Rakefile c18d5ad Fix mw.notify not being visible if first loaded when scrolled down Change-Id: Id2d5c2ae256b4d1bc46a3ffc05babb7476a67d53 --- 0 files changed, 0 insertions(+), 0 deletions(-) git pull ssh://gerrit.wikimedia.org:29418/mediawiki/core refs/changes/67/289967/1 -- To view, visit https://gerrit.wikimedia.org/r/289967 To unsubscribe, visit https://gerrit.wikimedia.org/r/settings Gerrit-MessageType: newchange Gerrit-Change-Id: Id2d5c2ae256b4d1bc46a3ffc05babb7476a67d53 Gerrit-PatchSet: 1 Gerrit-Project: mediawiki/core Gerrit-Branch: fundraising/REL1_25 Gerrit-Owner: Ejegg <eeggles...@wikimedia.org> _______________________________________________ MediaWiki-commits mailing list MediaWiki-commits@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits