summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-02-14Fixed #34280 -- Allowed specifying different field values for create ↵tschilling
operation in QuerySet.update_or_create().
2023-02-14Added CVE-2023-24580 to security archive.Carlton Gibson
2023-02-14Fixed CVE-2023-24580 -- Prevented DoS with too many uploaded files.Markus Holtermann
Thanks to Jakob Ackermann for the report.
2023-02-13Fixed #29994 -- Added warning about performance of FileBasedCache with a ↵Sarah Boyce
large number of files. Co-authored-by: sheenarbw <699166+sheenarbw@users.noreply.github.com> Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>
2023-02-13Bumped versions in pre-commit and npm configurations.Sarah Boyce
2023-02-13Fixed #34318 -- Added release note for 4bfe8c0eec835b8eaffcda7dc1e3b203751a790a.Sota Tabu
2023-02-13Fixed #34316 -- Fixed layout of admin password change forms and help texts.sarahboyce
Regression in 96a598356a9ea8c2c05b22cadc12e256a3b295fd.
2023-02-11Fixed #33213 -- Doc'd testing code coverage in parallel and used it.Paolo Melchiorre
2023-02-10Ignored 534ac4829764f317cf2fbc4a18354fcc998c1425 formatting changes in git ↵Mariusz Felisiak
blame.
2023-02-10Refs #34140 -- Applied rst code-block to non-Python examples.Carlton Gibson
Thanks to J.V. Zammit, Paolo Melchiorre, and Mariusz Felisiak for reviews.
2023-02-10Fixed #34325 -- Corrected wording in PercentRank() docs.dennisvang
This is consistent with the terminology used for the percent_rank() function in SQLite docs and PostgreSQL docs.
2023-02-10Fixed #32813 -- Made runserver display port after binding.Dhanush
Thanks Florian Apolloner for the review.
2023-02-10Fixed #34324 -- Mentioned Discord server in contributing index.p0lygun
2023-02-09Fixed #34248 -- Added tox.ini to MANIFEST.in.Syed Sajjad Hussain Shah
Co-authored-by: Syed Sajjad Hussain Shah <syed.sajjad@H7FKF7K6XD.local>
2023-02-09Fixed #34311 -- Updated serialization docs from unique_together to ↵Willem Van Onsem
UniqueConstraint.
2023-02-08Fixed #34303 –- Allowed customizing admin site log entry list.Jacob Rief
Added AdminSite.get_log_entries() as an override point and made this available to the template via each_context().
2023-02-08Added missing vars to AdminSite.each_context() docs.Carlton Gibson
2023-02-08Fixed #34319 -- Fixed Model.validate_constraints() crash on ValidationError ↵Mariusz Felisiak
with no code. Thanks Mateusz Kurowski for the report. Regression in 667105877e6723c6985399803a364848891513cc.
2023-02-08Refs #7430 -- Removed broken Template.__iter__().Anders Hovmöller
Co-authored-by: Anders Hovmöller <anders.hovmoller@dryft.se>
2023-02-08Fixed #34315 -- Preserved admin changelist filters on "Close" button.Bakdolot
2023-02-08Fixed #34313 -- Updated thousands separator for Spanish (ES) locale.Youngkwang Yang
Format was updated from a comma to a space in 2010. ref: https://en.wikipedia.org/wiki/Decimal_separator#Examples_of_use
2023-02-07Removed hardcoded date in SetCookieTests.test_far_expiration().Bernhard M. Wiedemann
Follow up to a92c83828785f12dcf90477413c2d04e1855fbb9.
2023-02-07Refs #34146 -- Fixed typos in tutorial. (#16530)Carlton Gibson
- Fixed formatting on index page. - Removed duplicate What's next section. Thanks to Tim Graham for the report.
2023-02-07Fixed #34146 -- Added 3rd-party lib tutorial step.Tim Schilling
Added a tutorial step that highlights Django Debug Toolbar, on of the most common third party packages. It also added a mention of djangopackages.com as a place to search for other libraries and a link to Adam Johnson’s post on evaluating whether a package is well-maintained. Third-party packages are one of Django’s strengths. This should give folks a sound route in.
2023-02-07Fixed #34317 -- Renamed "instance" argument of ↵Bakdolot
BaseModelFormSet.save_existing() method.
2023-02-07Fixed #34285 -- Fixed index/slice lookups on filtered aggregates with ↵Nils VAN ZUIJLEN
ArrayField. Thanks Simon Charette for the review.
2023-02-07Fixed #33638 -- Fixed GIS lookups crash with geography fields on PostGIS.Jacob Walls
2023-02-07Fixed typo in release notes.Carlton Gibson
2023-02-07Added stub release notes for 4.0.10 and 3.2.18.Carlton Gibson
Set date for 4.1.7 release.
2023-02-07Fixed #34310 -- Added deletion example to one-to-one topic.Marcelo Galigniana
2023-02-07Fixed #34301 -- Made admin's submit_row check add permission for "Save as ↵Frederic Mheir
new" button.
2023-02-06Made PostgreSQL's SchemaEditor._create_index_sql() respect the "sql" argument.Dan Glass
2023-02-04Increased the default PBKDF2 iterations for Django 5.0.Mariusz Felisiak
Follow up to 9a1848f48c1f7f627a52b2063a8a8428e77765d6.
2023-02-03Fixed #34259 -- Passed called_from_command_line to command subparsers.Adam Johnson
2023-02-02Fixed #34286 -- Fixed admindocs markups for case-sensitive template/view names.skidipap
2023-02-02Improved error message for ASCIIUsernameValidator.Mariusz Felisiak
Follow up to 10bb21e71e3668f770493e2af0d0e0271830f7a3. Co-authored-by: Paolo Melchiorre <paolo@melchiorre.org>
2023-02-01Added stub release notes for 4.1.7.Mariusz Felisiak
2023-02-01Added CVE-2023-23969 to security archive.Mariusz Felisiak
2023-02-01Ignored 097e3a70c1481ee7b042b2edd91b2be86fb7b5b6 formatting changes in git ↵Mariusz Felisiak
blame.
2023-02-01Refs #33476 -- Applied Black's 2023 stable style.David Smith
Black 23.1.0 is released which, as the first release of the year, introduces the 2023 stable style. This incorporates most of last year's preview style. https://github.com/psf/black/releases/tag/23.1.0
2023-02-01Fixed CVE-2023-23969 -- Prevented DoS with pathological values for ↵Nick Pope
Accept-Language. The parsed values of Accept-Language headers are cached in order to avoid repetitive parsing. This leads to a potential denial-of-service vector via excessive memory usage if the raw value of Accept-Language headers is very large. Accept-Language headers are now limited to a maximum length in order to avoid this issue.
2023-01-31Fixed #34304 -- Made MySQL's SchemaEditor.remove_constraint() don't create ↵sag᠎e
foreign key index when unique constraint is ignored. Regression in b731e8841558ee4caaba766c83f34ea9c7004f8b.
2023-01-31Fixed #34180 -- Added note about resetting language in test tear-downs.Durval Carvalho
Co-authored-by: Faris Naimi <farisfaris66@gmail.com>
2023-01-30Fixed #34283 -- Escaped title in admin's changelist filters.Stanislav Volyk
Regression in 27aa7035f57f0db30b6632e4274e18b430906799.
2023-01-30Fixed typo in docs/topics/auth/passwords.txt.fschwebel
Wrapped hashing is only possible if the inner wrapped function is the same as the previous hasher.
2023-01-27Fixed #28054 -- Made runserver not return response body for HEAD requests.Sarah Boyce
Co-authored-by: jannschu <jannik.schuerg@posteo.de>
2023-01-27Refs #34255 -- Skipped test_group_by_nested_expression_with_params test on ↵Mariusz Felisiak
PostgreSQL when server-side binding cursors are used. Thanks Tim Graham for the review.
2023-01-26Fixed #34254 -- Fixed return value of Exists() with empty queryset.Raj Desai
Thanks Simon Charette for reviews.
2023-01-26Fixed #34294 -- Protected django.core.files.locks against argtypes ↵Simon Sawicki
redefinition on Windows.
2023-01-26Fixed #34291 -- Fixed Meta.constraints validation crash on UniqueConstraint ↵Mariusz Felisiak
with ordered expressions. Thanks Dan F for the report. Bug in 667105877e6723c6985399803a364848891513cc.