You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: CHANGELOG.md
+36-12
Original file line number
Diff line number
Diff line change
@@ -10,12 +10,13 @@ The following changelog entries focus on changes visible to users, administrator
10
10
11
11
-**Add confirmation interstitial instead of silently redirecting logged-out visitors to remote resources** (#27792, #28902, and #30651 by @ClearlyClaire and @Gargron)\
12
12
This fixes a longstanding open redirect in Mastodon, at the cost of added friction when local links to remote resources are shared.
13
+
- Fix ReDoS vulnerability on some Ruby versions ([GHSA-jpxp-r43f-rhvx](https://github.com/mastodon/mastodon/security/advisories/GHSA-jpxp-r43f-rhvx))
13
14
- Change `form-action` Content-Security-Policy directive to be more restrictive (#26897 by @ClearlyClaire)
Group notifications of the same type for the same target, so that your notifications no longer get cluttered by boost and favorite notifications as soon as a couple of your posts get traction.\
20
21
This is done server-side so that clients can efficiently get relevant groups without having to go through numerous pages of individual notifications.\
21
22
As part of this, the visual design of the entire notifications feature has been revamped.\
@@ -27,7 +28,7 @@ The following changelog entries focus on changes visible to users, administrator
The old “Block notifications from non-followers”, “Block notifications from people you don't follow” and “Block direct messages from people you don't follow” notification settings have been replaced by a new set of settings found directly in the notification column.\
32
33
You can now separately filter or drop notifications from people you don't follow, people who don't follow you, accounts created within the past 30 days, as well as unsolicited private mentions, and accounts limited by the moderation.\
33
34
Instead of being outright dropped, notifications that you chose to filter are put in a separate “Filtered notifications” box that you can review separately without it clogging your main notifications.\
@@ -76,7 +77,11 @@ The following changelog entries focus on changes visible to users, administrator
76
77
Clicking the domain of a user in their profile will now open a tooltip with a short explanation about servers and federation.
77
78
-**Add support for Redis sentinel** (#31694, #31623, #31744, #31767, and #31768 by @ThisIsMissEm and @oneiros)\
78
79
See https://docs.joinmastodon.org/admin/scaling/#redis-sentinel
79
-
- Add ability to reorder uploaded media before posting in web UI (#28456 by @Gargron)
80
+
-**Add ability to reorder uploaded media before posting in web UI** (#28456 and #32093 by @Gargron)
81
+
- Add “A Mastodon update is available.” message on admin dashboard for non-bugfix updates (#32106 by @ClearlyClaire)
82
+
- Add ability to view alt text by clicking the ALT badge in web UI (#32058 by @Gargron)
83
+
- Add preview of followers removed in domain block modal in web UI (#32032 and #32105 by @ClearlyClaire and @Gargron)
84
+
- Add reblogs and favourites counts to statuses in ActivityPub (#32007 by @Gargron)
80
85
- Add moderation interface for searching hashtags (#30880 by @ThisIsMissEm)
81
86
- Add ability for admins to configure instance favicon and logo (#30040, #30208, #30259, #30375, #30734, #31016, and #30205 by @ClearlyClaire, @FawazFarid, @JasonPunyon, @mgmn, and @renchap)\
82
87
This is also exposed through the REST API: https://docs.joinmastodon.org/entities/Instance/#icon
@@ -122,14 +127,14 @@ The following changelog entries focus on changes visible to users, administrator
122
127
- Add Interlingue and Interlingua to interface languages (#28630 and #30828 by @Dhghomon and @renchap)
123
128
- Add Kashubian, Pennsylvania Dutch, Vai, Jawi Malay, Mohawk and Low German to posting languages (#26024, #26634, #27136, #29098, #27115, and #27434 by @EngineerDali, @HelgeKrueger, and @gunchleoc)
124
129
- Add option to use native Ruby driver for Redis through `REDIS_DRIVER=ruby` (#30717 by @vmstan)
125
-
- Add support for libvips in addition to ImageMagick (#30090, #30590, #30597, #30632, #30857, #30869, and #30858 by @ClearlyClaire, @Gargron, and @mjankowski)\
130
+
- Add support for libvips in addition to ImageMagick (#30090, #30590, #30597, #30632, #30857, #30869, #30858and #32104 by @ClearlyClaire, @Gargron, and @mjankowski)\
126
131
Server admins can now use libvips as a faster and lighter alternative to ImageMagick for processing user-uploaded images.\
127
132
This requires libvips 8.13 or newer, and needs to be enabled with `MASTODON_USE_LIBVIPS=true`.\
128
133
This is enabled by default in the official Docker images, and is intended to completely replace ImageMagick in the future.
129
134
- Add validations to `Web::PushSubscription` (#30540 and #30542 by @ThisIsMissEm)
130
135
- Add anchors to each authorized application in `/oauth/authorized_applications` (#31677 by @fowl2)
131
136
- Add active animation to header settings button (#30221, #30307, and #30388 by @daudix)
132
-
- Add OpenTelemetry instrumentation (#30130, #30322, #30353, and #30350 by @julianocosta89, @renchap, and @robbkidd)\
See https://docs.joinmastodon.org/admin/config/#otel for documentation
134
139
- Add API to get multiple accounts and statuses (#27871 and #30465 by @ClearlyClaire)\
135
140
This adds `GET /api/v1/accounts` and `GET /api/v1/statuses` to the REST API, see https://docs.joinmastodon.org/methods/accounts/#index and https://docs.joinmastodon.org/methods/statuses/#index
@@ -138,7 +143,6 @@ The following changelog entries focus on changes visible to users, administrator
138
143
- Add RFC8414 OAuth 2.0 server metadata (#29191 by @ThisIsMissEm)
139
144
- Add loading indicator and empty result message to advanced interface search (#30085 by @ClearlyClaire)
140
145
- Add `profile` OAuth 2.0 scope, allowing more limited access to user data (#29087 and #30357 by @ThisIsMissEm)
141
-
- Add global Regexp timeout (#31928 by @ClearlyClaire)
142
146
- Add the role ID to the badge component (#29707 by @renchap)
143
147
- Add diagnostic message for failure during CLI search deploy (#29462 by @mjankowski)
144
148
- Add pagination `Link` headers on API accounts/statuses when pinned true (#29442 by @mjankowski)
@@ -167,15 +171,15 @@ The following changelog entries focus on changes visible to users, administrator
167
171
-**Change icons throughout the web interface** (#27385, #27539, #27555, #27579, #27700, #27817, #28519, #28709, #28064, #28775, #28780, #27924, #29294, #29395, #29537, #29569, #29610, #29612, #29649, #29844, #27780, #30974, #30963, #30962, #30961, #31362, #31363, #31359, #31371, #31360, #31512, #31511, and #31525 by @ClearlyClaire, @Gargron, @arbolitoloco1, @mjankowski, @nclm, @renchap, @ronilaukkarinen, and @zunda)\
168
172
This changes all the interface icons from FontAwesome to Material Symbols for a more modern look, consistent with the official Mastodon Android app.\
169
173
In addition, better care is given to pixel alignment, and icon variants are used to better highlight active/inactive state.
170
-
-**Change design of compose form in web UI** (#28119, #29059, #29248, #29372, #29384, #29417, #29456, #29406, #29651, #29659, and #31889 by @ClearlyClaire, @Gargron, @eai04191, @hinaloe, and @ronilaukkarinen)\
174
+
-**Change design of compose form in web UI** (#28119, #29059, #29248, #29372, #29384, #29417, #29456, #29406, #29651, #29659, #31889and #32033 by @ClearlyClaire, @Gargron, @eai04191, @hinaloe, and @ronilaukkarinen)\
171
175
The compose form has been completely redesigned for a more modern and consistent look, as well as spelling out the chosen privacy setting and language name at all times.\
172
176
As part of this, the “Unlisted” privacy setting has been renamed to “Quiet public”.
173
177
-**Change design of modals in the web UI** (#29576, #29614, #29640, #29644, #30131, #30884, #31399, #31555, #31752, #31801, #31883, #31844, #31864, and #31943 by @ClearlyClaire, @Gargron, @tribela and @vmstan)\
174
178
The mute, block, and domain block confirmation modals have been completely redesigned to be clearer and include more detailed information on the action to be performed.\
175
179
They also have a more modern and consistent design, along with other confirmation modals in the application.
176
-
-**Change colors throughout the web UI** (#29522, #29584, #29653, #29779, #29803, #29809, #29808, #29828, #31034, #31168, #31266, #31348, #31349, #31361, and #31510 by @ClearlyClaire, @Gargron, @renchap, and @vmstan)
180
+
-**Change colors throughout the web UI** (#29522, #29584, #29653, #29779, #29803, #29809, #29808, #29828, #31034, #31168, #31266, #31348, #31349, #31361, #31510and #32128 by @ClearlyClaire, @Gargron, @mjankowski, @renchap, and @vmstan)
177
181
-**Change onboarding prompt to follow suggestions carousel in web UI** (#28878, #29272, and #31912 by @Gargron)
178
-
-**Change email templates** (#28416, #28755, #28814, #29064, #28883, #29470, #29607, #29761, #29760, and #29879 by @ClearlyClaire, @Gargron, @hteumeuleu, and @mjankowski)\
All emails to end-users have been completely redesigned with a fresh new look, providing more information while making them easier to read and keeping maximum compatibility across mail clients.
180
184
-**Change follow recommendations algorithm** (#28314, #28433, #29017, #29108, #29306, #29550, #29619, and #31474 by @ClearlyClaire, @Gargron, @kernal053, @mjankowski, and @wheatear-dev)\
181
185
This replaces the “past interactions” recommendation algorithm with a “friends of friends” algorithm that suggests accounts followed by people you follow, and a “similar profiles” algorithm that suggests accounts with a profile similar to your most recent follows.\
@@ -188,10 +192,17 @@ The following changelog entries focus on changes visible to users, administrator
188
192
Administrators may need to update their setup accordingly.
189
193
- Change how content warnings and filters are displayed in web UI (#31365, and #31761 by @Gargron)
190
194
- Change preview card processing to ignore `undefined` as canonical url (#31882 by @oneiros)
191
-
- Change embedded posts to use web UI (#31766 by @Gargron)
195
+
- Change embedded posts to use web UI (#31766and #32135by @Gargron)
192
196
- Change inner borders in media galleries in web UI (#31852 by @Gargron)
193
-
- Change design of hide media button in web UI (#31807 by @Gargron)
197
+
- Change design of media attachments and profile media tab in web UI (#31807, #32048, and #31967 by @Gargron)
194
198
- Change labels on thread indicators in web UI (#31806 by @Gargron)
199
+
- Change label of "Data export" menu item in settings interface (#32099 by @c960657)
200
+
- Change responsive break points on navigation panel in web UI (#32034 by @Gargron)
201
+
- Change cursor to `not-allowed` on disabled buttons (#32076 by @mjankowski)
202
+
- Change OAuth authorization prompt to not refer to apps as “third-party” (#32005 by @Gargron)
203
+
- Change Mastodon to issue correct HTTP signatures by default (#31994 by @ClearlyClaire)
204
+
- Change zoom icon in web UI (#29683 by @Gargron)
205
+
- Change directory page to use URL query strings for options (#31980, #31977 and #31984 by @ClearlyClaire and @renchap)
195
206
- Change report action buttons to be disabled when action has already been taken (#31773, #31822, and #31899 by @ClearlyClaire and @ThisIsMissEm)
196
207
- Change width of columns in advanced web UI (#31762 by @Gargron)
197
208
- Change design of unread conversations in web UI (#31763 by @Gargron)
@@ -254,6 +265,7 @@ The following changelog entries focus on changes visible to users, administrator
254
265
255
266
### Removed
256
267
268
+
- Remove unused E2EE messaging code and related `crypto` OAuth scope (#31193, #31945, #31963, and #31964 by @ClearlyClaire and @mjankowski)
257
269
- Remove StatsD integration (replaced by OpenTelemetry) (#30240 by @mjankowski)
258
270
- Remove `CacheBuster` default options (#30718 by @mjankowski)
259
271
- Remove home marker updates from the Web UI (#22721 by @davbeck)\
@@ -269,9 +281,21 @@ The following changelog entries focus on changes visible to users, administrator
269
281
- Fix log out from user menu not working on Safari (#31402 by @renchap)
270
282
- Fix various issues when in link preview card generation (#28748, #30017, #30362, #30173, #30853, #30929, #30933, #30957, #30987, and #31144 by @adamniedzielski, @oneiros, @phocks, @timothyjrogers, and @tribela)
271
283
- Fix handling of missing links in Webfinger responses (#31030 by @adamniedzielski)
284
+
- Fix error when accepting an appeal for sensitive posts deleted in the meantime (#32037 by @ClearlyClaire)
285
+
- Fix error when encountering reblog of deleted post in feed rebuild (#32001 by @ClearlyClaire)
286
+
- Fix Safari browser glitch related to horizontal scrolling (#31960 by @Gargron)
287
+
- Fix too many requests caused by relationship look-ups in web UI (#32042 by @Gargron)
288
+
- Fix links for reblogs in moderation interface (#31979 by @ClearlyClaire)
289
+
- Fix the appearance of avatars when they do not load (#31966 by @renchap)
290
+
- Fix spurious error notifications for aborted requests in web UI (#31952 by @c960657)
272
291
- Fix HTTP 500 error in `/api/v1/polls/:id/votes` when required `choices` parameter is missing (#25598 by @danielmbrasil)
273
292
- Fix security context sometimes not being added in LD-Signed activities (#31871 by @ClearlyClaire)
274
293
- Fix cross-origin loading of `inert.css` polyfill (#30687 by @louis77)
294
+
- Fix wrapping in dashboard quick access buttons (#32043 by @renchap)
295
+
- Fix recently used tags hint being displayed in profile edition page when there is none (#32120 by @mjankowski)
296
+
- Fix checkbox lists on narrow screens in the settings interface (#32112 by @mjankowski)
297
+
- Fix the position of status action buttons being affected by interaction counters (#32084 by @renchap)
298
+
- Fix the summary of converted ActivityPub object types to be treated as HTML (#28629 by @Menrath)
275
299
- Fix cutoff of instance name in sign-up form (#30598 by @oneiros)
276
300
- Fix invalid date searches returning 503 errors (#31526 by @notchairmk)
277
301
- Fix invalid `visibility` values in `POST /api/v1/statuses` returning 500 errors (#31571 by @c960657)
@@ -285,7 +309,7 @@ The following changelog entries focus on changes visible to users, administrator
285
309
- Fix “Redirect URI” field not being marked as required in “New application” form (#30311 by @ThisIsMissEm)
286
310
- Fix right-to-left text in preview cards (#30930 by @ClearlyClaire)
287
311
- Fix rack attack `match_type` value typo in logging config (#30514 by @mjankowski)
288
-
- Fix various cases of duplicate, missing, or inconsistent borders or scrollbar styles (#31068, #31286, #31268, #31275, #31284, #31305, #31346, #31372, #31373, #31389, #31432, #31391, and #31445 by @valtlai and @vmstan)
312
+
- Fix various cases of duplicate, missing, or inconsistent borders or scrollbar styles (#31068, #31286, #31268, #31275, #31284, #31305, #31346, #31372, #31373, #31389, #31432, #31391, #31445and #32091 by@ClearlyClaire,@valtlai and @vmstan)
289
313
- Fix race condition in `POST /api/v1/push/subscription` (#30166 by @ClearlyClaire)
290
314
- Fix post deletion not being delayed when those are part of an account warning (#30163 by @ClearlyClaire)
291
315
- Fix rendering error on `/start` when not logged in (#30023 by @timothyjrogers)
0 commit comments