Mercurial Repository: p/roundup/code: doc/acknowledgements.txt history

doc: add XSS discoverer to ack

2025-07-11T22:22:08-04:00

changeset	1482729ba16d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	doc: add XSS discoverer to ack
files

chore: update files for release 2.5.0b1.

2025-06-11T17:04:51-04:00

changeset	3bf6ad421347
branch
bookmark
tag	2.5.0b1
user	John Rouillard <rouilj@ieee.org>
description	chore: update files for release 2.5.0b1.
files

build: some work from RELEASE.txt for 2.4.0 release.

2024-07-09T15:30:56-04:00

changeset	4f07d7835019
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: some work from RELEASE.txt for 2.4.0 release.
files

fix(security): fix CVE-2024-39124, CVE-2024-39124, and CVE-2024-39125

2024-07-09T09:07:09-04:00

changeset	28aa76443f58
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	fix(security): fix CVE-2024-39124, CVE-2024-39124, and CVE-2024-39125 Directions for fixing: * `CVE-2024-39124`_ - :ref:`classhelpers (_generic.help.html) are vulnerable to an XSS attack. ` Requires fixing tracker homes. * `CVE-2024-39125`_ - :ref:`if Referer header is set to a script tag, it will be executed. ` Fixed in release 2.4.0, directions available for fixing in prior versions. * `CVE-2024-39126`_ - :ref:`PDF, XML and SVG files downloaded from an issue can contain embedded JavaScript which is executed. ` Fixed in release 2.4.0, directions available for fixing in prior versions. prior to 2.4.0 release this weekend that fixes the last two CVE's.
files

docs: fix missing indent.

2024-05-27T16:56:11-04:00

changeset	63155529cfe3
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	docs: fix missing indent.
files

changes for 2.4.0b0 release

2024-05-26T20:57:28-04:00

changeset	a377590eba34
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	changes for 2.4.0b0 release
files

issue2551353 - Add roundup-classhelper for 2.4.0 release

2024-05-21T01:17:28-04:00

changeset	fe0348bbe45b
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	issue2551353 - Add roundup-classhelper for 2.4.0 release Changes to the classic template are not done yet. Still testing. This commit has document updates and changes to rest.py. rest.py: add /rest/data/user/role endpoint to core so the user doesn't have to add the /rest/roles endpoint via interfaces.py. It will only send roles for a user with Admin role and there is no way to override this currently. acknowledgements.txt: Added members of team3 to other contributors. Specified for all other contributes what they worked on. upgrading.txt: added classhelper section and basic template change directions. Linked to admin_guide for full directions. admin_guide.txt: documented install, translation, troubleshooting, config etc. user_guide.txt: added section on using the classhelper. Added reference to section earlier in the doc. Added image for section.
files

fix: out of memory error when importing under postgresql

2023-10-19T16:11:25-04:00

changeset	5b41018617f2
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	fix: out of memory error when importing under postgresql If you try importing more than 20k items under postgresql you can run out of memory: psycopg2.errors.OutOfMemory: out of shared memory HINT: You might need to increase max_locks_per_transaction. Tuning memory may help, it's unknown at this point. This checkin forces a commit to the postgres database after 10,000 rows have been added. This clears out the savepoints for each row and starts a new transaction. back_postgresql.py: Implement commit mechanism in checkpoint_data(). Add two class level attributes for tracking the number of savepoints and the limit when the commit should happen. roundup_admin.py: implement pragma and dynamically create the config item RDBMS_SAVEPOINT_LIMIT used by checkpoint_data. Also fixed formatting of descriptions when using pragma list in verbose mode. admin_guide.txt, upgrading.txt: Document change and use of pragma savepoint_limit in roundup-admin for changing the default of 10,000. test/db_test_base.py: add some more asserts. In existing testAdminImportExport, set the savepoint limit to 5 to test setting method and so that the commit code will be run by existing tests. This provides coverage, but does not actually test that the commit is done every 5 savepoints 8-(. The verification of every 5 savepoints was done manually using a pdb breakpoint just before the commit. acknowledgements.txt: Added 2.4.0 section mentioning Norbert as he has done a ton of testing with much larger datasets than I can test with.
files

Updates for 2.3.0 release.

2023-07-12T22:59:49-04:00

changeset	ed2bc951277b
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Updates for 2.3.0 release.
files

update for latest change to sort method.

2023-06-11T23:12:57-04:00

changeset	52f22cfcbdc1
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	update for latest change to sort method.
files

2.3.0b1 release changes

2023-05-31T19:25:13-04:00

changeset	623502678b97
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	2.3.0b1 release changes roundup/__init__.py: Update version setup.py: Mark as beta release; add python 3.11/3.12 as supported language versions. website/www/conf.py: update version/release to 2.3b1/2.3.0b1 website/www/index.txt: update highlights/version website/www/signatures/: Add 2.3.0b1 pgp signature. Will be removed when 2.3.0 is released but this allows me to test. docs: Fix links Update acknowlegements with 2.3.x churn/contrib etc. locale: update software version, creation date; rebuild template and propagate changes. MANIFEST.in: add locale/Makefile
files

Add description metadata.

2023-04-25T17:31:05-04:00

changeset	c83038a606ac
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Add description metadata.
files

Changes for release 2.2.0.

2022-07-12T23:18:19-04:00

changeset	a1868fe784d0
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Changes for release 2.2.0.
files

2.2.0b1 release changes

2022-06-15T09:58:31-04:00

changeset	b3ba03d2b214
branch
bookmark
tag	2.2.0b1
user	John Rouillard <rouilj@ieee.org>
description	2.2.0b1 release changes
files

Add changelog and attribution

2022-05-03T15:50:56+02:00

changeset	c9b56477fb41
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Add changelog and attribution
files

Changes for release of version 2.1.0.

2021-07-12T23:21:12-04:00

changeset	cbc18a8bc61f
branch
bookmark
tag	2.1.0
user	John Rouillard <rouilj@ieee.org>
description	Changes for release of version 2.1.0. Updates specified in RELEASE.txt.
files

Implementing RELEASE.txt 2.1.0b1 release

2021-06-19T14:48:29-04:00

changeset	5296d27ac97c
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Implementing RELEASE.txt 2.1.0b1 release Also spellcheck CHANGES.txt.
files

Commits for roundup 2.0 release.

2020-07-13T00:30:21-04:00

changeset	043a8ffd79ad
branch
bookmark
tag	2.0.0
user	John Rouillard <rouilj@ieee.org>
description	Commits for roundup 2.0 release.
files

Forgot to check in changed doc files for 2.0.0beta0

2020-04-06T10:06:08-04:00

changeset	eb9d00db0923
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Forgot to check in changed doc files for 2.0.0beta0
files

prep for 2.0.0alpha0 release.

2019-10-22T14:30:52-04:00

changeset	29d428927362
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	prep for 2.0.0alpha0 release. Initial set of changes for the release. Still a few files to change.
files

Reorder html entities generated by submit button

2019-10-08T14:37:29+02:00

changeset	fe96015445e9
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Reorder html entities generated by submit button issue2551065: This allows styles to be applied. Thanks to Garth Jensen for the patch against release 1.6
files

issue2551053: Fix routing dict in rest.py

2019-08-13T09:46:02+02:00

changeset	167ef847fcdf
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	issue2551053: Fix routing dict in rest.py The routing dictionary in rest.py used compiled regular expressions as dictionary keys. This worked most of the time because the regex lib uses a cache but resulted in duplicate keys in the dictionary in some cases where a single key should have been used. Thanks to Robert Klonner for discovering the problem, debugging the root cause and providing a first proposed fix.
files

[maint-1.6] Changes to prepare for 1.6.1 release.

2019-07-10T10:35:29-04:00

changeset	b68d3d8531d5
branch	maint-1.6
bookmark
tag	1.6.1
user	John Rouillard <rouilj@ieee.org>
description	Changes to prepare for 1.6.1 release.
files

[REST-rebased] Add changelog, acknowledgements

2019-01-30T14:24:25+01:00

changeset	33f8bb777659
branch	REST-rebased
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Add changelog, acknowledgements
files

add subhead for 1.6.0 release

2018-07-12T20:54:40-04:00

changeset	dc6cc2dbd70a
branch
bookmark
tag	1.6.0
user	John Rouillard <rouilj@ieee.org>
description	add subhead for 1.6.0 release
files

Add link to announcement.html. It is for current release only.

2018-07-05T22:48:24-04:00

changeset	6a743a1c2bc0
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Add link to announcement.html. It is for current release only.
files

Update acknowledgements.txt.

2018-07-05T21:57:10-04:00

changeset	1eba4c7149e4
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Update acknowledgements.txt.
files

doc: (minor) remove some trailing whitespace

2018-04-24T08:42:40+02:00

changeset	bb1125433de6
branch
bookmark
tag
user	Bernhard Reiter <bernhard@intevation.de>
description	doc: (minor) remove some trailing whitespace
files

Fix formatting of developer activity.

2017-10-05T21:37:39-04:00

changeset	349b8465ba41
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Fix formatting of developer activity.
files

Add Trent Gamblin to acknowledgements

2017-04-06T09:17:02+02:00

changeset	8cd7233986bf
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Add Trent Gamblin to acknowledgements See latest patch for issue2550937.
files

Fix Traceback in backends/portalocker.py (windows)

2016-12-09T10:52:59+01:00

changeset	a76fbb9f5535
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Fix Traceback in backends/portalocker.py (windows) .. due to missing windll import, thanks to Heiko Stegmann for suggesting a first fix.
files

Credits: Added 1.5.0 and 1.5.1 as their own sections to acknowledgements.

2016-01-12T16:07:07+01:00

changeset	f52a9fb035d2
branch
bookmark
tag
user	Bernhard Reiter <bernhard@intevation.de>
description	Credits: Added 1.5.0 and 1.5.1 as their own sections to acknowledgements.
files

Change email package module names to conform v4 (issue2550875)

2015-03-05T00:19:42+11:00

changeset	760ffc0eae5b
branch
bookmark
tag
user	John Kristensen <john@jerrykan.com>
description	Change email package module names to conform v4 (issue2550875) Update the mailer roundup module to use email package names introduced in v4 (Python v2.5). If nothing else this will provide forward support for Python v3+. Thanks to Anthony Pankov for the patch.
files

add missing commas in acknowlegements

2013-12-30T15:54:43+01:00

changeset	f211f5da0d74
branch
bookmark
tag
user	Thomas Arendsen Hein <thomas@intevation.de>
description	add missing commas in acknowlegements
files

Add acknowlegements

2013-12-21T12:49:52+01:00

changeset	df4c1f58c3b8
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Add acknowlegements
files

Add Pradip Caulagi to acknowledgements

2012-12-18T09:42:36+01:00

changeset	b9960e506043
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Add Pradip Caulagi to acknowledgements
files

Fix another XSS with the ok- and error message, see issue2550724.

2012-05-14T14:17:07+02:00

changeset	4f9c3858b671
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Fix another XSS with the ok- and error message, see issue2550724. We solve this differently from the proposals in the bug-report by not allowing any html-tags in ok/error messages anymore. Thanks to David Benjamin for the bug-report and to Ezio Melotti for several proposed fixes.
files

Found my old contribution from changeset 0112e9e1d068. Fixing credits.

2012-04-09T14:40:11+03:00

changeset	71b9428a14e5
branch
bookmark
tag
user	anatoly techtonik <techtonik@gmail.com>
description	Found my old contribution from changeset 0112e9e1d068. Fixing credits.
files

Fix another XSS with the "otk" parameter.

2012-02-07T14:39:02+01:00

changeset	033a550812fc
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Fix another XSS with the "otk" parameter. Thanks to Jesse Ruderman for reporting.
files

Fix syntax errors in doc/upgrading.txt and .gitignore

2012-01-26T15:30:44+01:00

changeset	753a379c0303
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Fix syntax errors in doc/upgrading.txt and .gitignore doc/upgrading.txt produced errors with latest docutils about wrong block structure. Thanks to Cheer Xiao for the patches.
files

issue2550711 Fix XSS vulnerability in @action parameter.

2012-01-05T16:22:27+01:00

changeset	941681fec1b0
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	issue2550711 Fix XSS vulnerability in @action parameter. thanks to "om" for reporting. Also fix issue number of previous change-entry.
files

Updated version of simplified Chinese message file by Cheer Xiao.

2011-11-23T08:27:34+01:00

changeset	8469ce312dcf
branch
bookmark
tag
user	Ralf Schlatterbeck <rsc@runtux.com>
description	Updated version of simplified Chinese message file by Cheer Xiao. Corrected some mistakes, added a few more items and did some formating.
files

Adding myself to the contributors list.

2011-11-11T12:32:02-05:00

changeset	6327b1b21593
branch
bookmark
tag
user	Eric S. Raymond <esr@thyrsus.com>
description	Adding myself to the contributors list.
files

- add latest change to CHANGES.txt changelog

2011-07-15T12:54:27+00:00

changeset	d48f88f4c3c8
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	- add latest change to CHANGES.txt changelog
files

- recent attributions

2011-07-15T08:59:14+00:00

changeset	bb667c81f848
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	- recent attributions
files

Fix file-unlink bug in mailgw

2011-05-29T18:25:49+00:00

changeset	8df9492c2746
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	Fix file-unlink bug in mailgw (Ralfs oversight when refactoring the mail gateway code) -- if a message is sent that contains no attachments, all previous files of the issue are unlinked, thanks to Rafal Bisingier for reporting and proposing a fix. I've now added a regression test that catches this issue.
files

Norwegian Bokmal translation by Christian Aastorp

2011-05-23T09:52:46+00:00

changeset	e76576b52f2d
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	Norwegian Bokmal translation by Christian Aastorp (with some fixes regarding leading and trailing newlines)
files

Fix first part of Password handling security issue2550688

2011-04-14T12:24:59+00:00

changeset	1613754d2646
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	Fix first part of Password handling security issue2550688 (thanks Joseph Myers for reporting and Eli Collins for fixing) Small change against original patch: We still accept plaintext passwords (in known_schemes) when parsing encrypted password (e.g. from database). This way existing databases with plaintext passwords continue to work (I don't know of any, this would need patching on the users side) and all regression tests pass.
files

Fixed bug in mailgw refactoring, patch issue2550697 (thanks Hubert Touvet)

2011-04-14T05:29:39+00:00

changeset	9be284ce56b7
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	Fixed bug in mailgw refactoring, patch issue2550697 (thanks Hubert Touvet)
files

Fix setting of sys.path when importing schema.py, fixes issue2550675,

2010-10-21T19:19:58+00:00

changeset	80a9295a60fd
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	Fix setting of sys.path when importing schema.py, fixes issue2550675, thanks to Bryce L Nordgren for reporting.
files

Allow search_popup macro to work with all db classes, issue2550567

2010-10-07T02:30:46+00:00

changeset	c114843fcfbc
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	Allow search_popup macro to work with all db classes, issue2550567 (thanks John Kristensen)
files

Fix charset of first text-part of outgoing multipart messages...

2010-10-04T12:56:37+00:00

changeset	579802067547
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	Fix charset of first text-part of outgoing multipart messages... ...thanks Dirk Geschke for reporting, see http://thread.gmane.org/gmane.comp.bug-tracking.roundup.user/10223 This also adds some regression tests to test incoming latin1 and outgoing single- and multipart utf-8 and latin1 messages
files

- update acknowledgements

2010-09-13T17:08:41+00:00

changeset	eade357a1a16
branch
bookmark
tag
user	Ralf Schlatterbeck <schlatterbeck@users.sourceforge.net>
description	- update acknowledgements
files

fixed registration, issue2550665 (thanks Timo Paulssen)

2010-09-10T06:31:30+00:00

changeset	36d52125c9cf
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	fixed registration, issue2550665 (thanks Timo Paulssen)
files

fix for incorrect except: syntax, issue2550661

2010-08-09T04:45:28+00:00

changeset	06af6d5bedbe
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	fix for incorrect except: syntax, issue2550661
files

make URL detection a little smarter about brackets per issue2550657

2010-07-12T04:14:02+00:00

changeset	d5239335fae3
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	make URL detection a little smarter about brackets per issue2550657 (thanks Ezio Melotti)
files

add note & thanks

2010-07-01T01:44:17+00:00

changeset	6893b5253dac
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	add note & thanks
files

Default to "text/plain" if no Content-Type header is present in email

2010-04-19T03:56:54+00:00

changeset	378fc1ecaaa6
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	Default to "text/plain" if no Content-Type header is present in email (thanks Hauke Duden)
files

support CRAM-MD5 for IMAPS

2010-02-02T05:15:10+00:00

changeset	38265325492a
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	support CRAM-MD5 for IMAPS
files

Fix thread safety with stdin in roundup-server

2010-02-02T05:00:42+00:00

changeset	85b00a3820b3
branch
bookmark
tag
user	Richard Jones <richard@users.sourceforge.net>
description	Fix thread safety with stdin in roundup-server
files