Update changelog

author: Lain Soykaf <lain@lain.com> 2025-03-11 18:06:43 +0400
committer: Lain Soykaf <lain@lain.com> 2025-03-11 18:06:43 +0400
commit: 4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7 (patch)
tree: 5bfccab16091bd2ab75b31f5f023c77ea3ed60fe /changelog.d
parent: 0a93a7b0c9e4f05f2abd2079c976c0a4bf1b3d77 (diff)
download: pleroma-4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7.tar.gz
pleroma-4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7.zip
9 files changed, 0 insertions, 9 deletions
diff --git a/changelog.d/c2s-update-authorization.security b/changelog.d/c2s-update-authorization.security
deleted file mode 100644
index 0fe7d97c9..000000000
--- a/changelog.d/c2s-update-authorization.security
+++ /dev/null
@@ -1 +0,0 @@
-Fix authorization checks for C2S Update activities to prevent unauthorized modifications of other users' content.
-\ No newline at end of file
diff --git a/changelog.d/content-type-sanitize.security b/changelog.d/content-type-sanitize.security
deleted file mode 100644
index a70b49f35..000000000
--- a/changelog.d/content-type-sanitize.security
+++ /dev/null
@@ -1 +0,0 @@
-Fix content-type spoofing vulnerability that could allow users to upload ActivityPub objects as attachments
-\ No newline at end of file
diff --git a/changelog.d/cross-domain-redirect-check.security b/changelog.d/cross-domain-redirect-check.security
deleted file mode 100644
index 9201de794..000000000
--- a/changelog.d/cross-domain-redirect-check.security
+++ /dev/null
@@ -1 +0,0 @@
-Reject cross-domain redirects when fetching ActivityPub objects to prevent bypassing domain-based security controls.
-\ No newline at end of file
diff --git a/changelog.d/debian-distro-docs-pleromaBE.fix b/changelog.d/debian-distro-docs-pleromaBE.fix
deleted file mode 100644
index d43477ba9..000000000
--- a/changelog.d/debian-distro-docs-pleromaBE.fix
+++ /dev/null
@@ -1 +0,0 @@
-Remove trailing ` from end of line 75 which caused issues copy-pasting
-\ No newline at end of file
diff --git a/changelog.d/emoji-shortcode-validation.security b/changelog.d/emoji-shortcode-validation.security
deleted file mode 100644
index 5a7d39279..000000000
--- a/changelog.d/emoji-shortcode-validation.security
+++ /dev/null
@@ -1 +0,0 @@
-Limit emoji shortcodes to alphanumeric, dash, or underscore characters to prevent potential abuse.
-\ No newline at end of file
diff --git a/changelog.d/local-fetch-prevention.security b/changelog.d/local-fetch-prevention.security
deleted file mode 100644
index e012abcd5..000000000
--- a/changelog.d/local-fetch-prevention.security
+++ /dev/null
@@ -1 +0,0 @@
-Block attempts to fetch activities from the local instance to prevent spoofing.
-\ No newline at end of file
diff --git a/changelog.d/media-proxy-sanitize.security b/changelog.d/media-proxy-sanitize.security
deleted file mode 100644
index b94348ea7..000000000
--- a/changelog.d/media-proxy-sanitize.security
+++ /dev/null
@@ -1 +0,0 @@
-Sanitize Content-Type headers in media proxy to prevent serving malicious ActivityPub content through proxied media.
-\ No newline at end of file
diff --git a/changelog.d/object-fetcher-content-type.security b/changelog.d/object-fetcher-content-type.security
deleted file mode 100644
index 2ef4aefe7..000000000
--- a/changelog.d/object-fetcher-content-type.security
+++ /dev/null
@@ -1 +0,0 @@
-Validate Content-Type headers when fetching remote ActivityPub objects to prevent spoofing attacks.
-\ No newline at end of file
diff --git a/changelog.d/pl-fe.change b/changelog.d/pl-fe.change
deleted file mode 100644
index 7e3e4b59e..000000000
--- a/changelog.d/pl-fe.change
+++ /dev/null
@@ -1 +0,0 @@
-Include `pl-fe` in available frontends
author	Lain Soykaf <lain@lain.com>	2025-03-11 18:06:43 +0400
committer	Lain Soykaf <lain@lain.com>	2025-03-11 18:06:43 +0400
commit	4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7 (patch)
tree	5bfccab16091bd2ab75b31f5f023c77ea3ed60fe /changelog.d
parent	0a93a7b0c9e4f05f2abd2079c976c0a4bf1b3d77 (diff)
download	pleroma-4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7.tar.gz pleroma-4c8a8a4b62151ab86019cf92ffb67dc81e13cdd7.zip