ci: Fix extra bracket in commit shorthash

fix: Filter out invalid replacements from bundled aggregations
feat: Add bundled aggregations support
2025-07-09 14:26:42 +02:00 · 2025-06-13 14:29:14 +01:00 · 2025-06-04 22:50:17 +01:00 · 2025-06-04 00:11:09 +01:00 · 2025-06-03 21:31:02 +01:00
3 changed files with 5 additions and 14 deletions
--- a/SECURITY.md
+++ b/SECURITY.md
@ -20,10 +20,10 @@ We may backport fixes to the previous release at our discretion, but we don't gu
 We appreciate the efforts of security researchers and the community in identifying and reporting vulnerabilities. To ensure that potential vulnerabilities are addressed properly, please follow these guidelines:
-1. **Contact members of the team directly** over E2EE private message.
+1. Contact members of the team over E2EE private message.
   - [@jade:ellis.link](https://matrix.to/#/@jade:ellis.link)
   - [@nex:nexy7574.co.uk](https://matrix.to/#/@nex:nexy7574.co.uk) <!-- ? -->
-2. **Email the security team** at [security@continuwuity.org](mailto:security@continuwuity.org). This is not E2EE, so don't include sensitive details.
+2. **Email the security team** directly at [security@continuwuity.org](mailto:security@continuwuity.org). This is not E2EE, so don't include sensitive details.
 3. **Do not disclose the vulnerability publicly** until it has been addressed
 4. **Provide detailed information** about the vulnerability, including:
   - A clear description of the issue
@ -48,7 +48,7 @@ When you report a security vulnerability:
 When security vulnerabilities are identified:
-1. We will develop and test fixes in a private fork
+1. We will develop and test fixes in a private branch
 2. Security updates will be released as soon as possible
 3. Release notes will include information about the vulnerabilities, avoiding details that could facilitate exploitation where possible
 4. Critical security updates may be backported to the previous stable release
--- a/src/admin/debug/mod.rs
+++ b/src/admin/debug/mod.rs
@ -125,13 +125,13 @@ pub(super) enum DebugCommand {
 		reset: bool,
 	},
-	/// - Sign JSON blob
+	/// - Verify json signatures
 	///
 	/// This command needs a JSON blob provided in a Markdown code block below
 	/// the command.
 	SignJson,
-	/// - Verify JSON signatures
+	/// - Verify json signatures
 	///
 	/// This command needs a JSON blob provided in a Markdown code block below
 	/// the command.
--- a/src/core/config/check.rs
+++ b/src/core/config/check.rs
@ -219,15 +219,6 @@ pub fn check(config: &Config) -> Result {
 		));
 	}
 	// Check if support contact information is configured
 	if config.well_known.support_email.is_none() && config.well_known.support_mxid.is_none() {
 		warn!(
 			"No support contact information (support_email or support_mxid) is configured in \
 			 the well_known section. Users in the admin room will be automatically listed as \
 			 support contacts in the /.well-known/matrix/support endpoint."
 		);
 	}
 	if config
 		.url_preview_domain_contains_allowlist
 		.contains(&"*".to_owned())
Author	SHA1	Message	Date
Jade Ellis	e4a0337e56	ci: Fix extra bracket in commit shorthash Some checks failed Release Docker Image / define-variables (push) Failing after 1s Details Release Docker Image / build-image (linux/amd64, linux-amd64) (push) Has been skipped Details Release Docker Image / build-image (linux/arm64, linux-arm64) (push) Has been skipped Details Release Docker Image / merge (push) Has been skipped Details Rust Checks / Format (push) Failing after 2s Details Rust Checks / Clippy (push) Failing after 22s Details Rust Checks / Cargo Test (push) Failing after 8s Details	2025-06-13 14:29:14 +01:00
Jade Ellis	74cf5445cc	fix: Filter out invalid replacements from bundled aggregations Some checks failed Release Docker Image / define-variables (push) Failing after 1s Details Release Docker Image / build-image (linux/amd64, linux-amd64) (push) Has been skipped Details Release Docker Image / build-image (linux/arm64, linux-arm64) (push) Has been skipped Details Release Docker Image / merge (push) Has been skipped Details Rust Checks / Format (push) Failing after 2s Details Rust Checks / Clippy (push) Failing after 18s Details Rust Checks / Cargo Test (push) Failing after 10s Details	2025-06-04 22:50:17 +01:00
Jade Ellis	980e2bb8d5	feat: Add bundled aggregations support Add support for the m.replace and m.reference bundled aggregations. This should fix plenty of subtle client issues. Threads are not included in the new code as they have historically been written to the database. Replacing the old system would result in issues when switching away from continuwuity, so saved for later. Some TODOs have been left re event visibility and ignored users. These should be OK for now, though.	2025-06-04 00:11:09 +01:00
Jade Ellis	490a5d087e	refactor: Promote handling unsigned data out of timeline Also fixes: - Transaction IDs leaking in event route - Age not being set for event relations or threads - Both of the above for search results Notes down concern with relations table	2025-06-03 21:31:02 +01:00