tqt
/
Ghost
mirror of https://github.com/TryGhost/Ghost.git
2
1
Fork 0
Code Issues 1 Releases Wiki Activity
6,332 Commits 101 Branches 822 Tags 285 MiB
Commit Graph

433 Commits

Author SHA1 Message Date
Terin Stock 7bbfc37df6 automatically insert Link rel="preload" headers 2016-04-26 14:07:36 -07:00
Hannah Wolfe f955fa14e8 deps: path-match@1.2.4 2016-04-26 13:00:12 +01:00
Hannah Wolfe 5f64d03054 deps: morgan@1.7.0 2016-04-26 13:00:11 +01:00
Hannah Wolfe 7b9e61cba9 deps: moment@2.13.0 2016-04-26 13:00:11 +01:00
Hannah Wolfe 380a539ec0 deps: extract-zip@1.5.0 2016-04-26 13:00:11 +01:00
Hannah Wolfe de9976070b deps: chalk@1.1.3 2016-04-26 12:59:32 +01:00
Hannah Wolfe adaa5c2992 deps: bookshelf@0.9.4 2016-04-26 12:59:32 +01:00
Hannah Wolfe 1745335423 deps: body-parser@1.15.0 2016-04-26 12:59:32 +01:00
Hannah Wolfe 63be9964a2 deps: bluebird@3.3.5 2016-04-26 12:59:32 +01:00
Sebastian Gierlinger 9dd19dd4ff Merge pull request #6745 from ErisDS/express-hbs-update 
deps: express-hbs@1.0.0
 2016-04-26 13:47:42 +02:00
Hannah Wolfe e21640a7e5 deps: validator@5.2.0 
- also remove from greenkeeper ignores
 2016-04-21 12:20:37 +01:00
Hannah Wolfe 31857ed78a deps: express-hbs@1.0.0 
refs #2459

This includes updating handlebars to v4 as well as other fixes which
will introduce breaking changes to the theme API:

From express-hbs:
- partials must now use the `.hbs` extension, the same as templates
From handlebars:
- Depthed paths are now conditionally pushed on to the stack.
If the helper uses the same context, then a new stack is not created.
This leads to behavior that better matches expectations for helpers
like if that do not seem to alter the context. Any instances of ../
in templates will need to be checked for the correct behavior under 4.0.0.
In general templates will either reduce the number of ../ instances
or leave them as is. See #1028.
- The = character is now HTML escaped. This closes a potential exploit
case when using unquoted attributes, i.e. <div foo={{bar}}>. In general
it's recommended that attributes always be quoted when their values are
generated from a mustache to avoid any potential exploit surfaces.
 2016-04-21 10:45:54 +01:00
Hannah Wolfe f14c9f488f Merge pull request #6645 from joerx/issue6462 
deps: validator@5.1.0
 2016-04-20 18:55:43 +01:00
Jason Williams b4adc322f8 deps: top-gh-contribs@2.0.3 2016-04-18 22:50:48 -05:00
Joerg Henning 0f3cb44227 deps: validator@5.1.0 
closes #6462

- monkey-patch validator.extends() since it was dropped by validator @5.0.0
- coerce input to string prior to validation (custom toString func)
- need to handle boolean validation based on column type not isIn()
- use `lodash.tostring` to convert input values to strings
 2016-04-19 09:39:12 +08:00
Hannah Wolfe 4b641bba7c Version bump to 0.7.9 2016-04-14 12:21:36 +01:00
Hannah Wolfe 6b74e1a34a Dev tooling clean up 
- remove old casper.js tests
- cleanup mochacli groups that are less useful than `grunt test:path`
- improve inline Gruntfile.js docs
- fixup coverage for new internal apps
- add new coverage-all task which works for all our tests
- reverse order of master-warn messages to make this clearer
- remove bluebird from greenkeeper ignores
 2016-04-13 13:21:33 +01:00
Hannah Wolfe 7ff74010fd Merge pull request #6659 from jaswilli/multer 
Replace busboy upload middleware with multer
 2016-04-11 11:07:34 +01:00
Hannah Wolfe 098974917f Merge pull request #6644 from jaswilli/auth-origin 
Relax origin header checking and add more CORS support
 2016-04-08 22:10:02 +01:00
Jason Williams c41ee354b1 Replace busboy upload middleware with multer 
- deps: multer@1.1.0
 2016-04-07 21:30:46 -05:00
Hannah Wolfe f4d1afe494 Merge pull request #6665 from jaswilli/uglify 
deps: grunt-contrib-uglify@1.0.1
 2016-04-01 11:12:38 -07:00
Jason Williams 07dab144bd Add middleware for handling CORS 
Refs #6644
- deps: cors@2.7.1; Add express cors package.
- Adds new middleware for proper CORS support.
- Handles CORS pre-flight checks.
- Separates request authentication/authorization from
  CORS.
 2016-03-31 10:58:52 -05:00
Jason Williams 401fbb1c71 deps: grunt-contrib-uglify@1.0.1 2016-03-30 17:22:33 -05:00
Jason Williams 0ed0a72c35 Replace internal tempfile name generator 
- Drops "tempfile" module in favor of using the "tmp"
  external package.
- Drop unused "rimraf-then" package.
 2016-03-29 15:19:42 -05:00
Jason Williams bdcb25a0cd Remove method stubs from upload API tests 2016-03-28 23:02:23 -05:00
Hannah Wolfe bd0f16aea7 Remove support for old io.js version 
- io.js and node merged some time ago now
- we only ever had support for a single random and now very old version of io.js anyway
 2016-03-26 14:54:23 +00:00
Jason Williams ee534845e5 deps: bookshelf@0.9.2 2016-03-21 19:27:23 -05:00
Jason Williams 57250edf0b deps: knex@0.10.0 
Closes #6573
 2016-03-21 19:27:23 -05:00
Hannah Wolfe e4a1797085 Remove should-sinon dependency 
no issue

- removes should-sinon dependency from package.json
- rewrites all usages of should-sinon to use normal should assertions

Unfortunately, should-sinon has very minimal documentation  and therefore it is hard to discern what is considered a correctly-written assertion:
- in some cases, refactoring to use should-sinon causes false positives
- in other cases, assertions that work written in the normal way fail when written using should-sinon (e.g. getters, combos with rewire)
The additional overhead created by these issues outweigh any benefit from the easier-to-read assertions
 2016-03-14 16:52:22 +00:00
Jason Williams 1edf49daf7 deps: bluebird@3.3.3 
- Finishes refactoring started in #6376.
- Fixes invalid Promise.map() call.
- Cleans up promise (rejection) handling.
 2016-03-01 15:17:20 -06:00
JT Turner 3db9913191 deps: bluebird@3.1.2 
closes #6361
- Updated bluebird dependency to latest 3.1.2.
- Updated update check to handle promises not resolving to arrays.
- Reviewed all other promise code and it looks good.
- Updated code using settle to use the new reflect function.
 2016-03-01 14:47:23 -06:00
Hannah Wolfe 8f8f07ed80 Version bump to 0.7.8 2016-02-18 19:17:07 +00:00
Hannah Wolfe 2d2a8f9f41 Version bump to 0.7.7 2016-02-18 14:19:09 +00:00
Cameron Viner 8fd272476b Removed uneeded jshint comments in order to cleanup the tests 
closes #6505
-Removed all of the /*jshint expr:true*/ comments from the tests
-Removed all of the should.equal(true, true) statements from the tests
-Removed should from the greenkeeper ignores
 2016-02-17 12:52:43 +00:00
Hannah Wolfe c301510cd1 Refactor gravatarLookup, remove request dependency 
no issue

- request is quite a heavy dependency
- we were only using request in 3 places: a test, storing contrib images in the gruntfile & the gravatar lookup
- all 3 are relatively simple to do with the http/https module
- refactored all 3, removed request
 2016-02-16 11:12:01 +00:00
Hannah Wolfe 893971cc51 Merge pull request #6490 from naoyak/node-4-semver 
Support Node v4 LTS semver-minor releases
 2016-02-12 11:28:21 +00:00
Naoya Kanai 4834cb436d Support Node v4 LTS semver-minor releases 
Fixes #6473
- Replace Node v4.2 with v4 in Travis config
- Replace ~4.2.0 with ^4.2.0 in engines to support semver-minor bumps in LTS line
 2016-02-12 01:37:27 +09:00
Hannah Wolfe ffa92ab913 deps: ghost-gql@0.0.4 2016-02-11 13:13:56 +00:00
Hannah Wolfe b4a126bf58 deps: mocha@2.4.5 2016-02-10 15:52:08 +00:00
Hannah Wolfe 0bb2a2f852 Merge pull request #6464 from cameronviner/6448 
Upgrade should.js to version 8.2.1 (Issue #6448)
 2016-02-09 14:27:23 +00:00
Cameron Viner faba83d5dc deps: should@8.2.1 
closes #6448
-upgraded should.js to the latest version (8.2.1)
-Changed the tests so that they comply with the breaking changes introduced in the new version of should.js
-Installs the package should-http so should.be.json() can be used
-Installs the package should-sinon so that should.be.calledOnce() can be used
 2016-02-09 13:39:10 +00:00
Hannah Wolfe 52ca6fba27 Updating greenkeeper ignores 2016-02-08 21:43:53 +00:00
Hannah Wolfe f02169c449 deps: xml@1.0.1 2016-02-08 21:42:41 +00:00
Hannah Wolfe 42236c1414 deps: request@2.69.0 2016-02-08 21:42:41 +00:00
Hannah Wolfe 800b081a4c deps: oauth2orize@1.2.2 2016-02-08 21:42:41 +00:00
Hannah Wolfe 1be0a84a01 deps: moment@2.11.2 2016-02-08 21:42:40 +00:00
Hannah Wolfe d5ce500a7b deps: html-to-text@1.6.0 2016-02-08 21:42:40 +00:00
Hannah Wolfe 69657a59de deps: fs-extra@0.26.5 2016-02-08 21:42:40 +00:00
Hannah Wolfe fc60558176 deps: express@4.13.4 2016-02-08 21:42:39 +00:00
Hannah Wolfe 4a98481583 deps: compression@1.6.1 2016-02-08 21:42:39 +00:00