evazion c41e3f4590 saved searches: fix exploit allowing flaggers to be determined. ...

Fix an exploit that let you determine the flagger of a post using
`flagger:<username>` saved searches. Saved searches were performed as
DanbooruBot, but since DanbooruBot is a moderator, it let unprivileged
users do `flagger:<username>` searches. Saved searches were done as a
moderator to avoid tag limits, but this is no longer necessary since the
last PostQueryBuilder refactor.

fred get out

2021-09-01 00:55:19 -05:00

..

components

Upload page: show artist tag if it exists even if artist_name is empty in source

2021-08-15 02:16:56 -05:00

controllers

make appeals editable

2021-06-29 14:43:27 -03:00

helpers

docs: document config/ and some directories in app/.

2021-06-27 05:21:38 -05:00

javascript

Fix #4661: Change shortcut for submitting uploads from Enter to Ctrl+Enter

2021-08-28 04:53:33 -05:00

jobs

docs add more docs to app/{jobs,logical}.

2021-06-28 05:09:19 -05:00

logical

nokogiri: switch to the nokogumbo-based html5 parser.

2021-08-30 21:21:27 -05:00

mailers

docs add more docs to app/{jobs,logical}.

2021-06-28 05:09:19 -05:00

models

saved searches: fix exploit allowing flaggers to be determined.

2021-09-01 00:55:19 -05:00

policies

make appeals editable

2021-06-29 14:43:27 -03:00

presenters

rubocop: fix various Rubocop warnings.

2021-06-17 04:17:53 -05:00

views

Fix link to rest of user's post disapprovals

2021-08-15 02:16:57 -05:00