Redmine

2021-10-11

22:36 Defect #35949: Several Critical CVEs

Thank you for looking into this. I will relay these findings to our security folks. Marcelo Simas

21:54 Defect #35949 (Closed): Several Critical CVEs

None of the vulnerabilities you have listed are in Redmine. Instead, they are all vulnerabilities of either base soft... Holger Just

21:44 Defect #35979: SSL Bad certificate

The provided intermediate certificate is the "Gandi Standard SSL CA 2" certificate. Its valid until 2024-09-11, i.e. ... Holger Just

14:53 Defect #35979 (Closed): SSL Bad certificate

Salut,
when you use:
wget -d https://www.redmine.org/releases/redmine-4.2.3.tar.gz <= KO
curl https://www.redmin... sacha b

10:58 Feature #32424: CommonMark Markdown Text Formatting

Hi guys, I couldn't watch this for a while. I like the configurable approach for hardbreaks. Thank you all for finali... Martin Cizek

07:49 Patch #35975: Add missing fixtures to UserTest

I added fixtures and confirmed that the test was successful.... Yuichi HARADA

07:40 Patch #35975 (Closed): Add missing fixtures to UserTest

I confirmed https://www.redmine.org/builds/logs/build_4.1-stable_sqlite3_ruby-2.6_173.html and the test failed. When ... Yuichi HARADA

2021-10-10

20:17 Feature #23980: Replace icon images with Tabler SVG icons

I made a demo patch that adds SVGs instead of icon fonts for issue page: ​
* rendering SVG inline (in HTML) make the... Marius BĂLTEANU

15:54 Defect #35789: Redmine is leaking usernames on activities index view

Thanks for the release. I have updated the security scanner with the new releases.
On Monday, I'll request a CVE e... Holger Just

12:08 Defect #35789: Redmine is leaking usernames on activities index view

I've updated the [[Security_Advisories]]. Holger, feel free to update based on the security scanner. Marius BĂLTEANU

11:59 Defect #35789 (Closed): Redmine is leaking usernames on activities index view

Marius BĂLTEANU

2021-10-09

13:12 Feature #35764 (Closed): Multiple search terms in the "contains" operator of text filters

Marius BĂLTEANU

08:50 Feature #35764 (Resolved): Multiple search terms in the "contains" operator of text filters

I've disabled for now the rubocop offense for Lint/IneffectiveAccessModifier. Jens, the method @self.tokenized_like_c... Marius BĂLTEANU

13:12 Feature #35073 (Closed): Escape values in LIKE statements to prevent injection of placeholders (_ or %)

All tests passed now. Marius BĂLTEANU

10:28 Feature #35742: Enable task list items for CommonMark text formatting

Really nice feature. This should be delivered in Redmine 5.0.0.
Marius BALTEANU wrote:
> I'm adding a patch for t... Go MAEDA

08:53 Defect #35090 (Confirmed): Permission check of the setting button on the issues page mismatches button semantics

Setting the target version to 4.1.5. Go MAEDA

08:52 Defect #35957 (Closed): MessagesControllerTest#test_post_new test fails (trunk)

Committed, thanks! Marius BĂLTEANU