gnu-social

upstream V3 development https://www.gnusocial.rocks/v3

Histórico

Hugo Sales aef1fac536 [SECURITY] Refactor security hardening code and disable unused stream wrappers Ensure unwanted enviorment variables are removed from the actual global environment rather than just the `$_ENV` superglobal variable Disable stream wrappers, as this is an unexpected feature for most developers and can be exploited. For instance, `phar://` can be used to override any class and thus provide code execution (through `__wakeup` or `__costruct`, for instance). Not a complete solution, as `php://` can also be abused, but we can't disable it as it gets used _somewhere_ in our dependencies		há 1 ano
..
assets	[CSS] Details inside another details (accordion widget) will represent their 'open/close feedback arrows' properly now	há 1 ano
components	[CSS] .section-widget class and derivatives replaced as .frame-section, since a widget implies a simple element with a specific function	há 1 ano
plugins	[PLUGINS][PinnedNotes] Replacing arbitary size values with common variables	há 1 ano
favicon.ico	[ASSETS] Import old favicon.ico	há 1 ano
index.php	[SECURITY] Refactor security hardening code and disable unused stream wrappers	há 1 ano