mantisbt - Roadmap

mantisbt - 2.28.4

100%
View Issues2.28.4mantisbt

Hotfix release

  • 0037135: [authentication] Fix CSRF validation failure in anonymous login (community)
1 of 1 issue(s) resolved View Issues

mantisbt - 2.29.0

45%
View Issues2.29.0mantisbt

Future feature release

  • 0024689: [administration] Remove clickable alphanumeric index in manage_user_page.php
  • 0034605: [plug-ins] Request for a new signal in view_user_page.php
  • 0020577: [plug-ins] Consistent use of EVENT_UPDATE_BUG_DATA
  • 0036812: [code cleanup] PHP 8.4: Passing E_USER_ERROR to trigger_error() is deprecated
  • 0021908: [security] Weakened security headers in 2.0.x
  • 0031699: [api rest] Upgrade Slim Framework to 4.x
  • 0034400: [code cleanup] Introduce a cs fixer
  • 0035550: [bugtracker] Use GuzzleHttp request in url_get()
  • 0027099: [html] Inconsistent escape of html entities while editing an issue
  • 0019370: [code cleanup] Retire 'user_print_pref' table and related code (dregad)
  • 0037134: [bugtracker] The "Jump to bug" form should accept bug_id with leading # (dregad)
  • 0034829: [plug-ins] Graph plugin: deprecated strftime() in View Issues > issue trends (dregad)
  • 0037131: [filters] Move "Show sticky issues" to bottom of filters (dregad)
  • 0028669: [filters] Due date is not filterable (dregad)
  • 0026901: [administration] Shorten or filter obsolete version numbers in administration (community)
  • 0036811: [filters] Allow relative dates when filtering by due date (dregad)
  • 0028831: [ui] Improve date filter fields display (label and "no filter" text) (dregad)
  • 0034886: [installation] Admin checks: support MariaDB version checking (dregad)
  • 0034909: [administration] Admin checks: unsupported version checks using endoflife.date (dregad)
  • 0022464: [custom fields] Loose type comparison can prevent custom field update (dregad)
  • 0022840: [authentication] Don't expire user sessions when updating password hash after login method change (dregad)
  • 0022841: [authentication] Don't truncate password when it exceeds db field size (dregad)
  • 0024188: [ui] Update issue history code to display user names via standard APIs
  • 0026929: [api rest] Support user account unlock via REST API (dregad)
  • 0017577: [performance] Improve print_user_option_list() performance (dregad)
  • 0019964: [authentication] Wrong anonymous rights application (dregad)
  • 0020307: [printing] Print issue page needs to adjust formatting for tags and relationship handler (vboctor)
  • 0020540: [attachments] Implement upgrade step to cleanup corrupt disk attachments after db->disk conversion (dregad)
  • 0020431: [db schema] Use utf8mb4 charset for new MySQL installations (dregad)
  • 0021694: [ui] inconsistent presentation of required fields (syncguru)
  • 0027807: [bugtracker] Prevent silent update of invalid enum fields when editing issue (dregad)
  • 0030047: [bugtracker] After login with HTTP_AUTH user is redirected to "main_page.php" (dregad)
  • 0032470: [api rest] REST API: Project Category Add/Update/Delete (vboctor)
  • 0032577: [api rest] Get Issues should return total count of issues for pagination (vboctor)
  • 0033012: [administration] Don't abort Admin Checks after first failure unless it's critical (dregad)
  • 0033019: [api rest] X-Mantis-Version headers sent when REST API is disabled (dregad)
  • 0034389: [markdown] Broken rendering of links in <a href=... links when markdown is enabled (community)
  • 0034910: [administration] Fatal error in Admin Checks when using invalid FileInfo magic database (dregad)
  • 0034911: [administration] Admin checks: fatal error if PHP database extension is not available (dregad)
  • 0034912: [administration] Admin checks: minor improvement to output messages (dregad)
  • 0034914: [code cleanup] Remove admin check for obsolete register_long_arrays php.ini directive (dregad)
  • 0034915: [code cleanup] Reduce code duplication in Admin Checks (dregad)
  • 0008141: [bugtracker] Issue reporters should be able to update their own issues (atrol)
  • 0022408: [custom fields] Custom field's value logged as changed in history, when it wasn't changed (vboctor)
  • 0022839: [authentication] Deprecate MD5 login method and replace with BCRYPT hash (dregad)
  • 0025681: [plug-ins] Problem with date range filter in MantisGraph issues_trend_page.php (dregad)
  • 0034406: [customization] Allow changing navbar buttons (community)
  • 0034879: [reports] In Issue Trend graphs, the date is displayed in short format even if data is in hourly buckets (dregad)
  • 0034880: [reports] The latest data set is not included in Issue Trends graphs (dregad)
  • 0034881: [reports] Issue Trends data buckets should be fixed for a given period type (dregad)
  • 0034885: [reports] Issue trends data should be relative to period start, not current time (dregad)
  • 0034889: [reports] In Issue Trend graphs, bucket number and date should be separated (dregad)
  • 0034890: [reports] Inconsistent sort order in Issue Trends reports (dregad)
  • 0037110: [localization] New translation: serbo-croatian (latin) (dregad)
  • 0037133: [ui] The buttons on the “Access Denied” widget may contain incorrect links (community)
  • 0036874: [other] Support CDN in require_js and require_css functions (community)
  • 0036873: [ldap] When creating or updating a user, the email address and real name are not synchronized with LDAP (community)
  • 0036832: [administration] Strict verification of parameters in translation strings is required (community)
  • 0037018: [performance] The require_once() function is called more times than necessary when loading the API. (community)
  • 0034465: [html] Wrong rendering of strings (atrol)
  • 0024044: [ldap] Getting user name and email from LDAP without LDAP authentication (community)
  • 0006523: [filters] Allow filtering by Reproducibility (community)
  • 0036861: [other] Non-optimal verification of uploaded files (community)
  • 0035539: [webpage] URL in the Summary field (community)
  • 0036914: [installation] Increase minimum PHP requirement to 8.1 (dregad)
  • 0024389: [bugtracker] Cannot create Issue when core path is out of MantisBT root (dregad)
  • 0037112: [documentation] Document OpenSSL PHP extension requirement for SMTP over SSL/TLS (community)
  • 0010857: [other] do not adjust "last updated" when monitor added (community)
  • 0037111: [administration] Manage User Edit page does not show the same information like the User Information page (atrol)
  • 0037098: [performance] Unnecessary token requests from the database on the issue page (community)
  • 0037097: [other] The debug log displays db_query as the calling function for all database calls on Windows (community)
  • 0037100: [administration] Move Attachments admin page should not list projects without attachments (dregad)
  • 0036889: [performance] Add database caching to more functions. (community)
  • 0037008: [api rest] Fix REST API errors when summary field is too long (vboctor)
  • 0037012: [api rest] User self deletion doesn't work in REST API (vboctor)
  • 0037007: [code cleanup] Remove unnecessary global variable $g_cookie_secure_flag_enabled (dregad)
  • 0036967: [performance] Restricting Dropzone loading by pages that use it. (community)
  • 0026738: [attachments] WebP attachments are not forced to display inline (dregad)
  • 0037004: [filters] Deleting a user doesn't delete their filters (vboctor)
  • 0032489: [documentation] Document impersonation of users via REST API (vboctor)
  • 0036968: [performance] Restricting DateTimePicker loading by pages that use it. (community)
  • 0037009: [ui] Add "today" button to DateTimePicker (community)
  • 0036916: [tools] GitHub Actions CI builds should fail during install phase (dregad)
  • 0036915: [bugtracker] core.php should not return HTTP 200 when aborting due to an error (dregad)
  • 0036885: [other] Unreliable implementation of HTTP redirects (community)
  • 0036858: [ui] Improving Workflow Graph display (community)
  • 0036864: [other] Proposal for implementing deferred HTTP headers (community)
  • 0035627: [html] OpenSearch links cannot be disabled (community)
  • 0036871: [code cleanup] Remove unused language strings (dregad)
  • 0036866: [api rest] REST API cannot clear user email to blank via PATCH /users/{id} (vboctor)
  • 0036509: [code cleanup] Account Update does not use UserUpdateCommand (vboctor)
  • 0036867: [plug-ins] Support muting email notification in IssueNoteAddCommand via options (vboctor)
  • 0036868: [administration] System warning when install is unable to get db version (vboctor)
  • 0036869: [upgrade] Enable upgrade_unattended.php to run successfully on an empty database (vboctor)
  • 0036840: [administration] Clearly identify locked accounts (dregad)
  • 0036841: [administration] Use "shield" icon instead of padlock to identify protected accounts (dregad)
  • 0036842: [administration] Allow clearing the failed login count even if account is not yet locked (dregad)
44 of 97 issue(s) resolved View Issues