Hayden 13850cda1f

security: multiple reported CVE fixes (#1515) ...

* update out of date license

* update typing / refactor

* fix arbitrarty path injection

* use markdown sanatizer to prevent XSS CWE-79

* fix CWE-918 SSRF by validating url and mime type

* add security docs

* update recipe-scrapers

* resolve DOS from arbitrary url

* update changelog

* bump version

* add ref to #1506

* add #1511 to changelog

* use requests decoder

* actually fix encoding issue

2022-07-31 13:10:20 -08:00

..

admin

Consolidate frontend types (#1245)

2022-05-21 11:22:02 -08:00

cookbooks

feat: additional cookbook features (tags, tools, and public) (#1116)

2022-04-01 09:50:31 -08:00

group

feat: create new foods and units from their Data Management pages (#1511)

2022-07-31 12:31:20 -08:00

recipe

security: multiple reported CVE fixes (#1515)

2022-07-31 13:10:20 -08:00

recipes

feat: restore frontend sorting for all recipes (#1497)

2022-07-26 18:08:56 -08:00

register

fix: recipe ingredient editor bugs (#1251)

2022-05-22 11:16:23 -08:00

shared/recipes

security: multiple reported CVE fixes (#1515)

2022-07-31 13:10:20 -08:00

shopping-lists

feat: re-write get all routes to use pagination (#1424)

2022-06-25 11:39:38 -08:00

user

feat: implement user favorites page (#1376)

2022-06-13 09:33:46 -08:00

forgot-password.vue

Refactor/composables-folder (#787)

2021-11-06 11:28:47 -08:00

index.vue

feature: proper multi-tenant-support (#969)(WIP)

2022-02-13 12:23:42 -09:00

login.vue

feat: improved registration signup flow (#1188)

2022-05-06 11:18:06 -08:00

reset-password.vue

Refactor/composables-folder (#787)

2021-11-06 11:28:47 -08:00

search.vue

refactor: unify recipe-organizer components (#1340)

2022-06-03 20:12:32 -08:00