@Gargron Gargron released this Jan 9, 2018 · 1379 commits to master since this release

Assets 2

Mastodon

Note: Some of these patches are security-related. A timely upgrade is advised.

Fixes:

  • Fix unintended cache (#6214)
  • Fix force_ssl conditional (#6201)
  • Skip remote reblogs of non-public objects (#6230)
  • Fix bad URL schemes being accepted (#6219)
  • Refactor /api/web APIs to use the centralized axios instance (#6223)
  • Increase rate limit on protected paths (fix wrongful throttling on login/sign up) (#6229)
  • ActivityPub: Move Article from supported to converted types (#6218)
  • ActivityPub: Revert #5772 (#6221)
  • ActivityPub: Add the author of a status to cc if reblogged (#6226)
  • Do not display elephant friend in single-column layout (#6222)
  • Add index on statuses for /api/v1/accounts/:account_id/statuses (#6202)
  • Use content warning for page title when present (#6231)

Upgrade notes:

Both Docker and non-Docker:

  • This release includes database migrations, that means you need to run RAILS_ENV=production bundle exec rails db:migrate (in Docker: docker-compose run --rm web rails db:migrate).
  • This release includes changes to assets, that means you need to run RAILS_ENV=production bundle exec rails assets:precompile (in Docker: docker-compose run --rm web rails assets:precompile)

Contributors to this release:

@Gargron
@Kjwon15
@MasterGroosha
@nightpool
@puckipedia
@renatolond
@SerCom-KC
@takayamaki
@ykzts