Goyslop/4chan-x
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
11,666 Commits 2 Branches 0 Tags
Commit Graph

576 Commits

Author SHA1 Message Date
Zixaphir
a0f5efdcc7 Attempt to resolve zixaphir/appchan-x#724 2014-05-16 09:21:15 -07:00
ccd0
cb828fa9c4 quote all the attributes 2014-05-15 17:32:38 -07:00
ccd0
05014b7f13 rewrite HTML escaping in post building 2014-05-15 17:02:17 -07:00
ccd0
e74fc2765a move escape function to Build 2014-05-15 10:02:27 -07:00
ccd0
4b757fb0a3 only need single quotes here 2014-05-15 09:30:08 -07:00
ccd0
1189b71029 this seems to be a common pattern 2014-05-14 14:16:16 -07:00
ccd0
6ce8bef709 Drop HTML in custom board titles. 
This could be useful, but the fact that it's been broken almost
since its creation indicates nobody's actually using it.

As with the file info formatting, I'll mention it on the changelog
and add it back with better security if someone actually wants to
use it.
 2014-05-13 15:03:10 -07:00
ccd0
0415828e27 Disallow custom HTML in file info format. 
I doubt anyone is using it, and if someone manages to inject a
malicious script into the page, this could be used to install a
script permanently to be executed each time 4chan is visited.

I'll mention it in the changelog, and if anyone complains, I can
add it back with some security checks.
 2014-05-13 14:20:19 -07:00
ccd0
3365e67c0a ' should be ' 2014-05-13 02:26:28 -07:00
ccd0
43a99b9291 update catalog.neet.tv board list 2014-05-12 23:56:53 -07:00
Zixaphir
02ed8d2db0 4gropes has been broken for awhile, I guess? Fix #687 
If anyone has a new catalog to replace 4gropes, CC me.
 2014-05-12 23:46:58 -07:00
ccd0
97ca89c83d Escape file info more aggressively. 
Most of this isn't strictly necessary, but it makes the script
more robust against changes, either in 4chan or the script itself.
I don't want to have to review this code for vulnerabilities each
time something changes.
 2014-05-12 22:20:04 -07:00
ccd0
57ed5e8055 fix privilege escalation vulnerability 2014-05-12 21:46:18 -07:00
Zixaphir
4f820ad8de 4gropes has been broken for awhile, I guess? Fix #687 
If anyone has a new catalog to replace 4gropes, CC me.
 2014-05-11 19:42:13 -07:00
ccd0
c3f04314cc make things work with Quick Reply and Thread Updater disabled 2014-05-11 17:36:13 -07:00
Brandon
de2d6a0303 /f/ security issue #722 2014-05-09 10:53:56 -07:00
Brandon
ae997753e2 fix #720 2014-05-04 16:13:40 -07:00
Zixaphir
93c5ecae9c Merge branch 'v3' 2014-05-03 16:07:23 -07:00
Zixaphir
0faacd737e Revert "Lets pretend we're smarter than we really are!" 
This reverts commit 393eb3ec2289293dd4d4caaef17db33bb695fa30.

Conflicts:
	LICENSE
	builds/4chan-X.user.js
	builds/crx/script.js
 2014-05-03 16:05:46 -07:00
Zixaphir
c04c83f915 Merge branch 'v3' 
Conflicts:
	CHANGELOG.md
	LICENSE
	README.md
	builds/appchan-x.user.js
	builds/crx/manifest.json
	builds/crx/script.js
	package.json
	src/General/Header.coffee
	src/General/Main.coffee
	src/General/css/font-awesome.css
	src/General/html/Features/Index-navlinks.html
	src/Miscellaneous/ExpandComment.coffee
	src/Miscellaneous/Keybinds.coffee
	src/Monitoring/ThreadStats.coffee
	src/Posting/QR.captcha.coffee
	src/Posting/QR.coffee
	src/Theming/Banner.coffee
 2014-05-03 06:20:04 -07:00
Zixaphir
ec77ec1e84 QuoteYou > QuoteMarkers 2014-05-03 03:35:33 -07:00
Zixaphir
a1601d8825 Merge branch 'mayhem' into v3 
Conflicts:
	CHANGELOG.md
	package.json
	src/General/Build.coffee
	src/General/Index.coffee
	src/General/Main.coffee
	src/General/lib/post.class
	src/Monitoring/ThreadStats.coffee
 2014-05-03 02:45:58 -07:00
Zixaphir
523d6bd9c4 Merge branch 'ccd0' into v3 
Conflicts:
	CHANGELOG.md
	LICENSE
	builds/4chan-X.user.js
	builds/crx.crx
	builds/crx/script.js
	src/General/Build.coffee
	src/General/Index.coffee
	src/General/Main.coffee
	src/General/Navigate.coffee
	src/General/css/style.css
	src/General/html/Build/post.html
	src/General/html/Features/Index-navlinks.html
	src/General/lib/post.class
	src/Images/Gallery.coffee
	src/Images/ImageExpand.coffee
	src/Images/ImageHover.coffee
	src/Miscellaneous/Banner.coffee
	src/Miscellaneous/Keybinds.coffee
	src/Monitoring/ThreadUpdater.coffee
	src/Posting/QR.captcha.coffee
	src/Posting/QR.coffee
	src/Posting/QR.post.coffee
	src/Quotelinks/QuoteBacklink.coffee
	src/Quotelinks/Quotify.coffee
 2014-05-03 02:03:35 -07:00
Zixaphir
ca9b0517de Merge some changes from appchan. 2014-05-03 01:09:35 -07:00
Mayhem
a9b05047be Build pathnames taking into account the thread slug. 2014-04-30 15:30:46 +02:00
ccd0
e1ff987c1e enable keybinds on catalog 2014-04-26 22:51:48 -07:00
ccd0
c1ea97cb6f remove old InfiniScroll code 2014-04-26 19:39:17 -07:00
ccd0
cc0cc82c4c fix comment expansion 2014-04-20 01:21:37 -07:00
ccd0
823eace903 begin work on restoring comment expansion 2014-04-19 21:44:13 -07:00
ccd0
bf45917000 Merge branch 'newnames' 
Conflicts:
	src/General/lib/post.class
 2014-04-19 16:57:17 -07:00
Zixaphir
41ec3933cd Merge branch 'v3' 
Conflicts:
	CHANGELOG.md
	LICENSE
	builds/appchan-x.user.js
	builds/crx/manifest.json
	builds/crx/script.js
	package.json
	src/General/Navigate.coffee
	src/Miscellaneous/Keybinds.coffee
	src/Posting/QR.coffee
 2014-04-19 15:48:11 -07:00
ccd0
ec03ab524d Merge branch 'page1' 2014-04-19 15:28:56 -07:00
ccd0
7aeb46abb9 transition to new HTML 2014-04-19 00:28:19 -07:00
ccd0
a452b732fd change res -> thread in JSON API URLs 2014-04-13 01:46:18 -07:00
ccd0
c5b06f6988 Merge branch 'page1' into newnames 2014-04-13 01:38:24 -07:00
ccd0
9fe486d637 Merge branch 'master' into page1 2014-04-13 01:19:02 -07:00
ccd0
814b64b31c update URLs to 4cdn.org 2014-04-12 22:37:27 -07:00
ccd0
4ecd6f8cfe res -> thread 2014-04-12 21:16:01 -07:00
ccd0
1182047357 more indexing changes 2014-04-12 18:41:05 -07:00
Zixaphir
33943a06eb Merge branch 'mayhem' into v3 
Conflicts:
	CHANGELOG.md
	css/style.css
	package.json
	src/General/Build.coffee
	src/General/Main.coffee
	src/Images/ImageExpand.coffee
	src/Images/ImageHover.coffee
	src/Monitoring/ThreadUpdater.coffee
 2014-04-12 18:13:21 -07:00
Zixaphir
4b3f4d1baf Merge branch 'ccd0' into v3 
Conflicts:
	builds/crx.crx
	src/General/Index.coffee
	src/Miscellaneous/Keybinds.coffee
 2014-04-12 18:02:25 -07:00
Mayhem
c7b7795261 Start supporting new semantics. 2014-04-12 18:01:03 +02:00
ccd0
1ee5c11968 restore non-JSON navigation keybinds 2014-04-12 04:03:27 -07:00
Zixaphir
ea47aefd93 Merge branch 'v3' 
Conflicts:
	.gitignore
	CHANGELOG.md
	CONTRIBUTING.md
	LICENSE
	builds/appchan-x.user.js
	builds/crx/manifest.json
	builds/crx/script.js
	latest.js
	package.json
	src/General/Header.coffee
	src/General/Index.coffee
	src/General/Settings.coffee
	src/General/UI.coffee
	src/General/html/Settings/Settings.html
	src/Images/Gallery.coffee
	src/Images/ImageExpand.coffee
	src/Monitoring/ThreadWatcher.coffee
 2014-04-11 00:29:52 -07:00
ccd0
aedaac2b24 get thread expansion working 2014-04-07 03:32:47 -07:00
Zixaphir
44350c5f76 Fix thread expansion URL 2014-04-06 11:52:20 -07:00
Zixaphir
453ebe7e74 Merge branch 'v3' 
Conflicts:
	CHANGELOG.md
	builds/appchan-x.user.js
	builds/crx/script.js
	src/Images/ImageExpand.coffee
	src/Images/ImageHover.coffee
 2014-04-04 20:28:21 -07:00
Zixaphir
f6353729eb Merge branch 'mayhem' into v3 
Conflicts:
	CHANGELOG.md
	package.json
	src/Images/ImageExpand.coffee
	src/Images/ImageHover.coffee
	src/Miscellaneous/FileInfo.coffee
	src/Posting/QR.coffee
 2014-04-04 20:24:12 -07:00
Zixaphir
337b43591b Fix webm PDF bug 
Conflicts:
	builds/4chan-X.user.js
	builds/crx/script.js
 2014-04-04 16:07:08 -07:00
Zixaphir
6dcbb80070 Merge branch 'v3' 
Conflicts:
	CHANGELOG.md
	LICENSE
	README.md
	builds/appchan-x.user.js
	builds/crx/manifest.json
	builds/crx/script.js
	builds/updates.xml
	latest.js
	package.json
 2014-04-04 16:01:06 -07:00