Source Control Integration

master fa96f439 2024-10-12 13:45 dregad Details Diff	Fix and improve fill color for Issue Trends chart With chart.js 3.x, datasets' fill attribute is false by default. This restores the fill color, with the following change: - "Resolved" dataset is filled from the x axis - "Opened" dataset (= the total) is filled from the Resolved dataset (to avoid overlap) - Remove fill color for the "Still open" dataset since it's the delta from the other 2 sets it makes more sense to only display the line. Fixes 0034847	Affected Issues 0034847
	mod - plugins/MantisGraph/files/MantisGraph.js	Diff File
master 3fb491c5 2024-10-12 12:59 dregad Details Diff	Fix custom colors for status pie chart For some reason, the colorscheme plugin's colors are overriding the custom colors we applied on the datasets (to reflect the standard status colors from MantisBT config). As a workaround we now define our status colors as a custom color scheme instead. Fixes 0034847	Affected Issues 0034847
	mod - plugins/MantisGraph/files/MantisGraph.js	Diff File
master ab8fbc4a 2024-10-12 05:34 dregad Details Diff	Adjusting pie chart aspect ratio This avoids the canvas to be resized vertically to a size bigger than the bar char displayed next to it. https://www.chartjs.org/docs/3.9.1/configuration/responsive.html Fixes 0034847	Affected Issues 0034847
	mod - plugins/MantisGraph/files/MantisGraph.js	Diff File
master 322cbcbf 2024-10-12 05:31 dregad Details Diff	Chart.js v3 compatibility fixes Following 3.x Migration Guide [1]: - global namespace was removed from defaults - xAxes and yAxes arrays were removed - horizontalBar chart type was removed Fixes 0034847 [1]: https://www.chartjs.org/docs/3.9.1/migration/v3-migration.html	Affected Issues 0034847
	mod - plugins/MantisGraph/files/MantisGraph.js	Diff File
master 3538b980 2024-10-12 04:43 dregad Details Diff	Update chart.js colorschemes plugin to 0.5.4 The plugin's official repository seems unmaintained for several years, and the latest 0.4.0 release is not compatible with Chart.js v3, so we are switching to a community-maintained fork [1]. Fixes 0034847 [1]: https://github.com/MaximBelov/chartjs-plugin-colorschemes/	Affected Issues 0034847
	mod - library/README.md	Diff File
	mod - plugins/MantisGraph/MantisGraph.php	Diff File
	rm - plugins/MantisGraph/files/chartjs-plugin-colorschemes-0.4.0.min.js	Diff
	add - plugins/MantisGraph/files/chartjs-plugin-colorschemes-0.5.4.min.js	Diff File
master 499e9ee3 2024-10-12 04:39 dregad Details Diff	Update chart.js to 3.9.1 Fixes 0034847	Affected Issues 0034847
	mod - library/README.md	Diff File
	mod - plugins/MantisGraph/MantisGraph.php	Diff File
	rm - plugins/MantisGraph/files/Chart-2.9.4.min.js	Diff
	add - plugins/MantisGraph/files/chart-3.9.1.min.js	Diff File
master deea5279 2024-10-12 03:03 dregad Details Diff	Merge branch 'master-2.27'
	mod - composer.lock	Diff File
	mod - core/email_api.php	Diff File
	mod - core/html_api.php	Diff File
master-2.27 4cc297cd 2024-10-12 03:02 dregad Details Diff	Bump phpmailer/phpmailer from 6.9.1 to 6.9.2 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.9.1 to 6.9.2. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.9.1...v6.9.2) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Fixes 0034845, PR https://github.com/mantisbt/mantisbt/pull/2035 Signed-off-by: dependabot[bot] <support@github.com>	Affected Issues 0034845
	mod - composer.lock	Diff File
dependabot/composer/phpmailer/phpmailer-6.9.2 10552062 2024-10-09 21:58 dependabot[bot] Committer: community Details Diff	Bump phpmailer/phpmailer from 6.9.1 to 6.9.2 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.9.1 to 6.9.2. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.9.1...v6.9.2) --- updated-dependencies: - dependency-name: phpmailer/phpmailer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
	mod - composer.lock	Diff File
master-2.27 5ff8bb6a 2024-10-07 12:37 dregad Details Diff	Move fastcgi_finish_request() to email shutdown function This was originally added to html_end() to improve performance when using php-fpm and sending mail synchronously [1], back when the function was calling email_send_all(), i.e. before issue 0017460 moved that to email_shutdown_function(). This is now causing issues as the HTTP response code is not set when an error occurs and FastCGI is used. Fixes 0034828, 0034634 [1]: see commit cea405ccf228fd2c6ac694574a74e87396b14f1f	Affected Issues 0017460, 0034634, 0034828
	mod - core/email_api.php	Diff File
	mod - core/html_api.php	Diff File
master f98ca4d3 2024-10-07 08:07 translatewiki.net Details Diff	Localisation updates from https://translatewiki.net. [skip ci]
	mod - lang/strings_chinese_simplified.txt	Diff File
	mod - lang/strings_interlingua.txt	Diff File
	mod - lang/strings_korean.txt	Diff File
	mod - plugins/MantisCoreFormatting/lang/strings_chinese_simplified.txt	Diff File
	mod - plugins/MantisCoreFormatting/lang/strings_french.txt	Diff File
	mod - plugins/MantisCoreFormatting/lang/strings_interlingua.txt	Diff File
master 23f73d8a 2024-10-03 08:07 translatewiki.net Details Diff	Localisation updates from https://translatewiki.net. [skip ci]
	mod - plugins/MantisCoreFormatting/lang/strings_mnc.txt	Diff File
master-2.27 28962e8b 2024-10-03 07:58 atrol Committer: dregad Details Diff	Add release marker for database schema Fixes 0034813 (cherry picked from commit 1e372140b4c922f31ee27c4de91b5fd31c5defc8)	Affected Issues 0034813
	mod - admin/schema.php	Diff File
master 1e372140 2024-10-03 07:58 atrol Committer: dregad Details Diff	Add release marker for database schema Fixes 0034813	Affected Issues 0034813
	mod - admin/schema.php	Diff File
master 503db85d 2024-09-29 13:09 dregad Details Diff	Set version to 2.28.0-dev
	mod - core/constant_inc.php	Diff File
master 6eff1a4e 2024-09-29 12:55 dregad Details Diff	Bump version to 2.27.0
	mod - core/constant_inc.php	Diff File
	mod - docbook/Admin_Guide/en-US/Revision_History.xml	Diff File
	mod - docbook/Developers_Guide/en-US/Revision_History.xml	Diff File
master 834ea837 2024-09-29 12:48 dregad Details Diff	Update Credits
	mod - doc/CREDITS	Diff File
master 67f3a80d 2024-09-29 12:45 dregad Details Diff	Manual: reference 2.x in title instead of 2.0 2.0 could be confusing since we're on 2.27...
	mod - docbook/Admin_Guide/en-US/Book_Info.xml	Diff File
	mod - docbook/Developers_Guide/en-US/Book_Info.xml	Diff File
master fa953cc3 2024-09-29 12:44 dregad Details Diff	Composer update - Upgrading nikic/php-parser (v5.1.0 => v5.3.0) - Upgrading phpunit/php-code-coverage (9.2.31 => 9.2.32) - Upgrading phpunit/phpunit (9.6.20 => 9.6.21)
	mod - composer.lock	Diff File
master ed2133c0 2024-09-28 11:36 dregad Details Diff	Merge tag 'release-2.26.4' Conflicts: api/soap/mc_api.php -> new ERROR constant added in error_api.php config_defaults_inc.php core/constant_inc.php
	mod - api/soap/mc_api.php	Diff File
	mod - config_defaults_inc.php	Diff File
	mod - core/commands/IssueAddCommand.php	Diff File
	mod - core/error_api.php	Diff File
	mod - core/html_api.php	Diff File
	mod - tests/rest/RestIssueTest.php	Diff File
	mod - tests/soap/AttachmentTest.php	Diff File
master-2.26 ef89eb7f 2024-09-28 11:18 dregad Details Diff	Bump version to 2.26.4
	mod - core/constant_inc.php	Diff File
master-2.26 3b1caab1 2024-09-28 11:01 dregad Details Diff	Fix REST & SOAP API issues PR https://github.com/mantisbt/mantisbt/pull/2030
	mod - api/soap/mc_api.php	Diff File
	mod - core/commands/IssueAddCommand.php	Diff File
	mod - tests/rest/RestIssueTest.php	Diff File
	mod - tests/soap/AttachmentTest.php	Diff File
master-2.26 ef0f8202 2024-09-28 10:54 dregad Details Diff	Prevent unauthorized access to other users Profiles Create 2 new Profile API functions: profile_can_update() and profile_ensure_can_update(). Use them in account_prof_update.php and account_prof_edit_page.php to ensure that users can only view and update their own Profiles (or the global ones if they are authorized to). Fixes 0034640, CVE-2024-45792 (cherry picked from commit 56bbd02dc1fb33a8de5898fd17dc3d698c847f55)	Affected Issues 0034640
	mod - account_prof_edit_page.php	Diff File
	mod - account_prof_update.php	Diff File
	mod - core/profile_api.php	Diff File
master 901f74fe 2024-09-28 10:49 dregad Details Diff	GHSA-h5q3-fjp4-2x7r The automated commit generated by GitHub when merging the pull request from the security advisory's private fork was somewhat messed up (the commit message's 1st line was changed from "Prevent unauthorized access to other users Profiles" to "Merge commit from fork"). This somewhat artificial merge commit's purpose is to allow easy identification of the security advisory from Git history.
	mod - account_prof_edit_page.php	Diff File
	mod - account_prof_update.php	Diff File
	mod - core/profile_api.php	Diff File
master 56bbd02d 2024-09-28 10:47 dregad Committer: community Details Diff	Merge commit from fork Create 2 new Profile API functions: profile_can_update() and profile_ensure_can_update(). Use them in account_prof_update.php and account_prof_edit_page.php to ensure that users can only view and update their own Profiles (or the global ones if they are authorized to). Fixes 0034640, CVE-2024-45792	Affected Issues 0034640
	mod - account_prof_edit_page.php	Diff File
	mod - account_prof_update.php	Diff File
	mod - core/profile_api.php	Diff File

Changesets: MantisBT