| Age | Commit message (Collapse) | Author |
|
validation when uploading multiple files using one form field.
Thanks Moataz Al-Sharida and nawaik for reports.
Co-authored-by: Shai Berger <shai@platonix.com>
Co-authored-by: nessita <124304+nessita@users.noreply.github.com>
|
|
|
|
Backport of 18a7f2c711529f8e43c36190a5e2479f13899749 from main
|
|
Backport of ecafcaf634fcef93f9da8cb12795273dd1c3a576 from main
|
|
Thanks to Jakob Ackermann for the report.
|
|
Backport of 7e003428f96d616c1f77fed84882a95e63bc3644 from main
|
|
Backport of 36e3eef7d5a4c88671d20a561788679d0d9c334c from main
|
|
Accept-Language.
The parsed values of Accept-Language headers are cached in order to
avoid repetitive parsing. This leads to a potential denial-of-service
vector via excessive memory usage if the raw value of Accept-Language
headers is very large.
Accept-Language headers are now limited to a maximum length in order
to avoid this issue.
|
|
Backport of d8e1442ce2c56282785dd806e5c1147975e8c857 from main
|
|
Backport of 1df963ad2476726d63be132c0cee47e07b8250d7 from main
|
|
Auto-created table of contents entries for all domain objects (e.g.
functions, classes, attributes, etc.) were added in Sphinx 5.2, see
https://github.com/sphinx-doc/sphinx/issues/6316.
An option to control new table of contents entries was added in Sphinx
5.2.3, see https://github.com/sphinx-doc/sphinx/pull/10886.
Backport of 279967ec859a9a5240318cf29a077539b0e3139f from main
|
|
Backport of 970f61fefb148284fb2af63b5cc844279254111a from main
|
|
Backport of 93d4c9ea1de24eb391cb2b3561b6703fd46374df from main
|
|
regular expressions.
Thanks to Benjamin Balder Bach for the report.
|
|
Backport of 57c7220280db19dc9dda0910b90cf1ceac50c66f from main
|
|
Backport of 57c7220280db19dc9dda0910b90cf1ceac50c66f from main
|
|
Thanks to Motoyasu Saburi for the report.
|
|
Backport of cadd864f6878c1c02a014589876ece166befdeb3 from main
|
|
Backport of 0c1675781ec5944132fe5a475ca6064edc71bd81 from main
|
|
Backport of d12d7c4c42814736c24731a6a300a79526fc2ef6 from main
|
|
against SQL injection.
Thanks Takuto Yoshikai (Aeye Security Lab) for the report.
|
|
Related Sphinx changes:
- https://github.com/sphinx-doc/sphinx/pull/8898
- https://github.com/sphinx-doc/sphinx/issues/8326
Backport of ebf25555bbed3e9112d4b726575d60b242daf48a from main.
|
|
sphinxcontrib-spelling 7.5.0+ includes captions of figures in the set
of nodes for which the text is checked.
Backport of ac90529cc58507d9a07610809a795ec5fc3cbf8c from main.
|
|
Backport of b2eff16806057095c7dd3daa9402ad615e51627f from main
|
|
Empty language is not supported anymore.
Backport of 565ad5ace46aa1e2368450701cba45dd1a95a026 from main
|
|
Backport of 78eeff8d33ead67cfc8603477c95e70f8fbe096a from main
|
|
against SQL injection on PostgreSQL.
Backport of 6723a26e59b0b5429a0c5873941e01a2e1bdbb81 from main.
|
|
and extra() against SQL injection in column aliases.
Thanks Splunk team: Preston Elder, Jacob Davis, Jacob Moore,
Matt Hanson, David Briggs, and a security researcher: Danylo Dmytriiev
(DDV_UA) for the report.
Backport of 93cae5cb2f9a4ef1514cf1a41f714fef08005200 from main.
|
|
check for template changes.
Regression in 68357b2ca9e88c40fc00d848799813241be39129.
Backport of 62739b6e2630e37faa68a86a59fad135cc788cd7 from main.
|
|
Backport of 78277faafd38d8360efc1fd0c9c52d7bb5eec002 from main
|
|
Backport of 770d3e6a4ce8e0a91a9e27156036c1985e74d4a3 from main.
|
|
Backport of 9e0df0d6dde441dbbad2b548d777e0a01d633286 from main
|
|
Thanks Alan Ryan for the report and initial patch.
Backport of fc18f36c4ab94399366ca2f2007b3692559a6f23 from main.
|
|
Thanks Keryn Knight for the report.
Backport of 394517f07886495efcf79f95c7ee402a9437bd68 from main.
Co-authored-by: Adam Johnson <me@adamj.eu>
|
|
Backport of eeca9342381c8583be16f18942774e785ab7e527 from main.
|
|
archive.
Backport of 63869ab1f191ab5781cde8b813b838300455f6d6 from main
|
|
subsystem.
Thanks to Dennis Brinkrolf for the report.
|
|
dictsort template filter.
Thanks to Dennis Brinkrolf for the report.
Co-authored-by: Adam Johnson <me@adamj.eu>
|
|
UserAttributeSimilarityValidator.
Thanks Chris Bailey for the report.
Co-authored-by: Adam Johnson <me@adamj.eu>
|
|
Backport of b13d920b7b56d3e088e35311f5ee54f25d2779af from main.
|
|
Django 2.2.25, 3.1.14, and 3.2.10.
Follow up to d4dcd5b9dd9e462fec8220e33e3e6c822b7e88a6.
Backport of 5de12a369a7b2231e668e0460c551c504718dbf6 from main
|
|
Backport of 8747052411275d290b2152ffcb8dee11afbb82cd from main
|
|
upstream access control based on URL paths.
Thanks Sjoerd Job Postmus and TengMA(@te3t123) for reports.
Backport of d4dcd5b9dd9e462fec8220e33e3e6c822b7e88a6 from main.
|
|
on PostgreSQL.
This makes models.BinaryField pickleable on PostgreSQL.
Regression in 3cf80d3fcf7446afdde16a2be515c423f720e54d.
Thanks Adam Zimmerman for the report.
Backport of 2c7846d992ca512d36a73f518205015c88ed088c from main.
|
|
|
|
Backport of ae4077e13ea2e4c460c3f21b9aab93a696590851 from main
|
|
Backport of a17becf4c7f4e4057e8c94990e4b4999be0aea95 from main
|
|
Follow up to e74b3d724e5ddfef96d1d66bd1c58e7aae26fc85.
Backport of 8b020f2e64f1cbf2b06205a389a13af6623f90ce from main
|
|
Backport of dd528cb2cefc0db8b91a7ff0a2bc87305b976597 from main
|
|
See https://github.com/sphinx-doc/sphinx/commit/dd2ff3e911c751c06c81f494128fba56d8ecbafd.
Backport of f0480ddd2d3cb04b784cf7ea697f792b45c689cc from main
|