Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Tags: typecho/typecho

Tags

v1.3.0

Toggle v1.3.0's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Fix XSS vulnerability in comment URL field by improving input filteri…

…ng (#1933)

* Initial plan

* Fix XSS vulnerability in comment URL field by escaping HTML special characters

Co-authored-by: joyqi <[email protected]>

* Improve escapeHtml to handle null/undefined values correctly

Co-authored-by: joyqi <[email protected]>

* Escape all user-provided comment fields to prevent XSS attacks

Co-authored-by: joyqi <[email protected]>

* Use strict equality checks in escapeHtml for better type safety

Co-authored-by: joyqi <[email protected]>

* Improve safeUrl function to remove quotes and dangerous characters at input stage

Co-authored-by: joyqi <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: joyqi <[email protected]>

v1.3.0-rc

Toggle v1.3.0-rc's commit message
fix form validate error

v1.3.0-alpha

Toggle v1.3.0-alpha's commit message

Partially verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
We cannot verify signatures from co-authors, and some of the co-authors attributed to this commit require their commits to be signed.
v1.3.0 (#1661)

* Add feed widget

* add feed render

* Add CommentPage widget

* New theme (#1390)

* 调整忽略目录

* add theme

* fix theme scss build

Co-authored-by: fen <[email protected]>

* s/is_writeable/is_writable/g

* New upgrade method

* merge new fixes from master

* add pgsql ssl mode support (ref #1600) (#1623)

* Feat/code refactor (#1626)

* remove all magic methods, add type for class properties

* refactor codes

* fix all

* refactor code

* fix type

* fix all

* fix request is method

* fix all

* fix router

* fix get page

* fix 1.3.0 upgrade

* [feat] support high resolution avatar

* fix types in i18n component

* Implement Ctrl+S or Command+S for save draft (#1628)

* Implement Ctrl+S or Command+S for save draft

* rename

* add Typecho.savePost

* fix upload file size

* add new uploader

* replace new uploader

* fix textarea change

* fix preview

* refactor post edit

* fix issue

* fix page edit

---------

Co-authored-by: joyqi <[email protected]>
Co-authored-by: joyqi <[email protected]>

* fix #1632

* Add svg to image types

* Feat/tree pages (#1646)

* add tree trait

* finish category tree trait

* support select fields

* fix select fields

* refactor admin trait

* fix draft status

* Add new contents type "revision"

* minor refactor

* add more tree view abstracts

* add tree trait to pages

* get ready for tree view pages

* improve page edit

* fix revision

* fix slug

* add router params delegate

* fix params delegate

* fix

* fix

* fix all

* fix all

* fix tree

* fix page link

* fix feed

* fix page

* fix permalink

* fix permalink input

* fix offset query

* Support IDN (#1629)

* Support IDN

* use js

* Optimize code

* Optimize code

* fix URL script

* remove unnecessary use

---------

Co-authored-by: joyqi <[email protected]>

* fix input element

* fix #1651, close #1653

* Use json instead of serialize (#1624)

* Use json instead of serialize

* Fix Upgrade code

* add tree trait

* finish category tree trait

* support select fields

* fix select fields

* refactor admin trait

* fix draft status

* Add new contents type "revision"

* minor refactor

* add more tree view abstracts

* add tree trait to pages

* get ready for tree view pages

* improve page edit

* fix revision

* fix slug

* add router params delegate

* fix params delegate

* fix

* fix

* fix all

* fix all

* fix tree

* fix page link

* fix feed

* fix page

* fix permalink

* fix permalink input

* fix offset query

* Fix typo

* remove proxy methods

* remove unnecessary useage

---------

Co-authored-by: joyqi <[email protected]>
Co-authored-by: joyqi <[email protected]>

* Fix Prevent XSS vulnerability in default theme (#1654)

* Fix Prevent XSS vulnerability in default theme

* Update var/Typecho/Db/Adapter/Pdo.php

* fix the getter

---------

Co-authored-by: joyqi <[email protected]>

* add throwCallback to widget response

* fix: cut down fields when selecting recent posts

* fix typo errors

* fix typo errors

* fix http client cookie

* add throw finish

* fix theme lang

* fix default theme

* fix query

* add open graph and twitter card support
add canonical link

* fix canonical link meta

* fix theme classic-22

* remove unnecessary scss file when packaging

* init plugin signal

* improve: remove feather-icon js file

* fix: typo

* improve: post detail layout

* fix tags saving

* improve: nav search

* fix: theme screenshot

* fix: theme page layout

* remove php 7.2/7.3 env

---------

Co-authored-by: fen <[email protected]>
Co-authored-by: Lu Fei <[email protected]>

v1.2.1

Toggle v1.2.1's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
重复执行判断的优化 (#1586)

使用$isNamespace变量,避免重复判断

v1.2.1-rc.2

Toggle v1.2.1-rc.2's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
improve release ci, upload built asset after new release published. (#…

…1576)

v1.2.1-rc

Toggle v1.2.1-rc's commit message
Replace the protocol of backend remote checking url from http to https.

v1.2.0

Toggle v1.2.0's commit message

v1.2.0-rc.2

Toggle v1.2.0-rc.2's commit message

v1.2.0-rc.1

Toggle v1.2.0-rc.1's commit message

ci

Toggle ci's commit message
fix zip