Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
branch: master
Commits on Nov 11, 2014
  1. move inline javascript to file (bug #68404)

    authored
    See corresponding commit in web/shared
  2. don't want two jquerys (bug #68404)

    authored
    web/shared loads jQuery in the footer
Commits on Aug 20, 2014
  1. make sqlite counts table pretty

    authored
    Well... prettier... a bit.
  2. remove floating HTML tags

    authored
    Much of the markup in this mirrors sidebar could do with some love!
Commits on Aug 1, 2014
  1. @bjori

    Removing the action (opened/closed/..) from the title

    bjori authored
    It otherwise creates tons of "gmail conversation"
  2. duh, swap the lines so $payload is set before used

    kovacs.ferenc authored
Commits on Jul 31, 2014
  1. @bjori

    Mailout the PR comments

    bjori authored
Commits on Jul 28, 2014
  1. @bjori

    Improve welcome email

    bjori authored
Commits on Jul 24, 2014
  1. @bjori
  2. @laruence
Commits on Jul 10, 2014
Commits on Jul 3, 2014
  1. note spammer

    authored
Commits on Jun 11, 2014
  1. send PRs of php-src to the git-pulls list

    kovacs.ferenc authored
  2. escape the $action parameter

    kovacs.ferenc authored
  3. enforce types for numeric vars

    kovacs.ferenc authored
  4. escape the variables coming from $_REQUEST

    kovacs.ferenc authored
    magic_quote_gpc makes this not exploitable, but we should move away from that sooner or later
  5. $user was renamed to $cuser in include/login.inc in c659097

    kovacs.ferenc authored
    also fix the column names
  6. escape the variables coming from $_REQUEST

    kovacs.ferenc authored
    magic_quote_gpc makes this not exploitable, but we should move away from that sooner or later
  7. escape the $search variable coming from $_REQUEST

    kovacs.ferenc authored
    magic_quote_gpc makes this not exploitable, but we should move away from that sooner or later
  8. introduce a whitelist for the order param

    kovacs.ferenc authored
  9. $user was renamed to $cuser in include/login.inc in c659097

    kovacs.ferenc authored
  10. escape the $name, $email, $username and $note variables coming from $…

    kovacs.ferenc authored
    …_REQUEST
    
    magic_quote_gpc makes this not exploitable, but we should move away from that sooner or later
  11. escape the $user variable coming from $_REQUEST

    kovacs.ferenc authored
    magic_quote_gpc makes this not exploitable, but we should move away from that sooner or later
  12. escape the cname for the shell exec

    kovacs.ferenc authored
Commits on Jun 10, 2014
  1. that was almost what I've planned

    kovacs.ferenc authored
  2. it seems the -f is mandatory

    kovacs.ferenc authored
  3. actually, I need two parts. :/

    kovacs.ferenc authored
  4. rename the variable holding the PR description to not collide with th…

    kovacs.ferenc authored
    …e request body variable with the same name
  5. fix the signature verification

    kovacs.ferenc authored
  6. oops, thanks salathe

    kovacs.ferenc authored
  7. add initial script, should be handle to multiple repositories and sen…

    kovacs.ferenc authored
    …ding the PR notification mail to the matching address
Commits on May 7, 2014
  1. Use https for Flickr (web bug #67227)

    authored
    See also http://code.flickr.net/2014/04/30/flickr-
    api-going-ssl-only-on-june-27th-2014/
Something went wrong with that request. Please try again.