MozillaWiki

BMO/Recent Changes: Difference between revisions

< BMO
 
(122 intermediate revisions by the same user not shown)
Line 1: Line 1:
= Recent Changes =
= Recent Changes =


== 2023-03-08 ==
== 2026-02-04 ==


[https://github.com/mozilla-bteam/bmo/tree/release-20230308.1 release-20230308.1]
[https://github.com/mozilla-bteam/bmo/tree/release-20260204.1 release-20260204.1]
* {{bug|1821078}} Nightly download link on front page should not have the en-US locale code
* {{bug|2009883}} [HackerOne] [Bugzilla] Account Takeover via Side-Channel Attack
* {{bug|1821175}} Push comment support is too strict when validating JSON data from Github and throwing error when sending event
* {{bug|2012069}} [HackerOne] unauthenticated blind SQL injection in search feature
* {{bug|1764214}} add a warning that the BMO uplift request flow will soon be deprecated


== 2023-03-07 ==
== 2026-01-20 ==


[https://github.com/mozilla-bteam/bmo/tree/release-20230307.1 release-20230307.1]
[https://github.com/mozilla-bteam/bmo/tree/release-20260120.1 release-20260120.1]
* {{bug|1802052}} GitHub API endpoint for GitHub/Bugzilla push hook to link bugs to GitHub commits
* {{bug|2009746}} Whine events allow newlines in subject line which can be used to inject email headers
* {{bug|1816611}} Add links to download Firefox Beta and Nightly to the index page
* {{bug|1996136}} Create a new cron script (weekly) that accesses the Recorded Future API and looks for compromised BMO accounts
* {{bug|1819404}} Add documentation for the new github push comment support added in bug 1802052
* {{bug|2007378}} [HackerOne] Path traversal on bugzilla.mozilla.org via improper path canonicalization leads to arbitrary content loading
* {{bug|1820042}} Calling bug->update twice on the same bug object is generally a bad idea so we load a second copy during the uplift process
* {{bug|2009837}} After recent update sitemap extensions is including improperly formatted urls in the sitemap gz files
* {{bug|1799913}} Remove parameters from crash signatures in bug summaries


== 2023-02-23 ==
== 2025-12-16 ==


[https://github.com/mozilla-bteam/bmo/tree/release-20230223.2 release-20230223.2]
[https://github.com/mozilla-bteam/bmo/tree/release-20251216.1 release-20251216.1]
* {{bug|1803374}} Numbers in PR descriptions are considered bug numbers by the Bugzilla GitHub integration
* {{bug|2005835}} Please add a markdown preview option to the description field of the Client Bug Bounty Form
* {{bug|1811647}} Enforce consistent metadata for regression bugs
* {{bug|1931686}} don't preselect a component in the form to file a new bug
* {{bug|1800750}} [Webhooks] Add webhook attributes REST endpoint
* {{bug|2004722}} Cannot expand hidden comment any more, when not logged in
* {{bug|1814226}} create a custom API endpoint for uplift automation bug changes
* {{bug|1818562}} ensure the uplift request form is commented on the bug
* {{bug|1818541}} add bug keywords to Lando uplift `GET` response


== 2023-01-26 ==
== 2025-12-04 ==


[https://github.com/mozilla-bteam/bmo/tree/release-20230126.1 release-20230126.1]
[https://github.com/mozilla-bteam/bmo/tree/release-20251204.1 release-20251204.1]
* {{bug|1812384}} Error occurring when $revision->uplift_request in Phabbugz is being interpreted as true when it is really empty
* {{bug|2004060}} Sometimes comment is posted twice due to mid-air collision for non editbugs users
* {{bug|1812457}} we are unconditionally setting release-managers review on the patch when we detect the change, even when release-managers has already given an r+ review.
* {{bug|1812606}} github pull request with the same number but from different repos get confused


== 2023-01-17 ==
== 2025-12-03 ==


[https://github.com/mozilla-bteam/bmo/tree/release-20230117.1 release-20230117.1]
[https://github.com/mozilla-bteam/bmo/tree/release-20251203.1 release-20251203.1]
* {{bug|1809448}} clarify BMO datadog code is used for statsd
* {{bug|2003859}} Need info is not cleared after submitting a new comment
* {{bug|1809452}} local suite BMO instance doesn't have markdown comments enabled
* {{bug|1805453}} Implement Bugzilla-updating logic from Phab uplift extension in PhabBugz feed reader


= Archive =
= Archive =
* [[BMO/Recent_Changes/2026-02|2026-02]]
* [[BMO/Recent_Changes/2026-01|2026-01]]
* [[BMO/Recent_Changes/2025-12|2025-12]]
* [[BMO/Recent_Changes/2025-11|2025-11]]
* [[BMO/Recent_Changes/2025-10|2025-10]]
* [[BMO/Recent_Changes/2025-09|2025-09]]
* [[BMO/Recent_Changes/2025-08|2025-08]]
* [[BMO/Recent_Changes/2025-07|2025-07]]
* [[BMO/Recent_Changes/2025-06|2025-06]]
* [[BMO/Recent_Changes/2025-05|2025-05]]
* [[BMO/Recent_Changes/2025-04|2025-04]]
* [[BMO/Recent_Changes/2025-03|2025-03]]
* [[BMO/Recent_Changes/2025-02|2025-02]]
* [[BMO/Recent_Changes/2025-01|2025-01]]
* [[BMO/Recent_Changes/2024-12|2024-12]]
* [[BMO/Recent_Changes/2024-11|2024-11]]
* [[BMO/Recent_Changes/2024-10|2024-10]]
* [[BMO/Recent_Changes/2024-09|2024-09]]
* [[BMO/Recent_Changes/2024-08|2024-08]]
* [[BMO/Recent_Changes/2024-07|2024-07]]
* [[BMO/Recent_Changes/2024-06|2024-06]]
* [[BMO/Recent_Changes/2024-05|2024-05]]
* [[BMO/Recent_Changes/2024-04|2024-04]]
* [[BMO/Recent_Changes/2024-03|2024-03]]
* [[BMO/Recent_Changes/2024-02|2024-02]]
* [[BMO/Recent_Changes/2023-12|2023-12]]
* [[BMO/Recent_Changes/2023-11|2023-11]]
* [[BMO/Recent_Changes/2023-10|2023-10]]
* [[BMO/Recent_Changes/2023-09|2023-09]]
* [[BMO/Recent_Changes/2023-08|2023-08]]
* [[BMO/Recent_Changes/2023-07|2023-07]]
* [[BMO/Recent_Changes/2023-06|2023-06]]
* [[BMO/Recent_Changes/2023-05|2023-05]]
* [[BMO/Recent_Changes/2023-03|2023-03]]
* [[BMO/Recent_Changes/2023-03|2023-03]]
* [[BMO/Recent_Changes/2023-02|2023-02]]
* [[BMO/Recent_Changes/2023-02|2023-02]]

Latest revision as of 01:53, 5 February 2026

Recent Changes

2026-02-04

release-20260204.1

  • bug 2009883 [HackerOne] [Bugzilla] Account Takeover via Side-Channel Attack
  • bug 2012069 [HackerOne] unauthenticated blind SQL injection in search feature
  • bug 1764214 add a warning that the BMO uplift request flow will soon be deprecated

2026-01-20

release-20260120.1

  • bug 2009746 Whine events allow newlines in subject line which can be used to inject email headers
  • bug 1996136 Create a new cron script (weekly) that accesses the Recorded Future API and looks for compromised BMO accounts
  • bug 2007378 [HackerOne] Path traversal on bugzilla.mozilla.org via improper path canonicalization leads to arbitrary content loading
  • bug 2009837 After recent update sitemap extensions is including improperly formatted urls in the sitemap gz files

2025-12-16

release-20251216.1

  • bug 2005835 Please add a markdown preview option to the description field of the Client Bug Bounty Form
  • bug 1931686 don't preselect a component in the form to file a new bug
  • bug 2004722 Cannot expand hidden comment any more, when not logged in

2025-12-04

release-20251204.1

  • bug 2004060 Sometimes comment is posted twice due to mid-air collision for non editbugs users

2025-12-03

release-20251203.1

  • bug 2003859 Need info is not cleared after submitting a new comment

Archive

Retrieved from "https://wiki.mozilla.org/index.php?title=BMO/Recent_Changes&oldid=1256406"