Mastodon - Package Updates

girish

[1.3.0]

• Add forumUrl

girish

[1.3.1]

• Update Mastodon to 3.1.5
• Full changelog
• Security: Fix media attachment enumeration (ThibG)
• Security: Change rate limits for various paths (Gargron)
• Security: Fix other sessions not being logged out on password change (Gargron)

girish

[1.4.0]

• Update Mastodon to 3.2.0
• Full changelog
• Add hotkey for toggling content warning input in web UI (ThibG)
• Add support for summary field for media description in ActivityPub (ThibG)
• Add hints about incomplete remote content to web UI (Gargron, noellabo)
• Add personal notes for accounts (ThibG, Gargron, Sasha-Sorokin)
• Add customizable thumbnails for audio and video attachments (Gargron, Gargron, Gargron, Gargron, ThibG, ThibG, noellabo, noellabo)
• Add a visibility indicator to toots in web UI (noellabo, highemerly)
• Add tootctl email_domain_blocks (tateisu, Gargron)
• Add "Add new domain block" to header of federation page in admin UI (ariasuni)
• Add ability to keep emoji picker open with ctrl+click in web UI (bclindner, noellabo)
• Add custom icon for private boosts in web UI (ThibG)
• Add support for Create and Update activities that don't inline objects in ActivityPub (ThibG)
• Add support for Undo activities that don't inline activities in ActivityPub (ThibG)

nebulon

[1.4.1]

• Add cron job to cleanup cached files

girish

[1.4.2]

• Update Mastodon to 3.2.1
• Full changelog
• Add support for latest HTTP Signatures spec draft (ThibG)
• Add support for inlined objects in ActivityPub to/cc (ThibG)
• Fix crash when failing to load emoji picker in web UI (ThibG)
• Fix contrast requirements in thumbnail color extraction (ThibG)
• Fix audio/video player not using CDN_HOST on public pages (ThibG)
• Fix private boost icon not being used on public pages (OmmyZhang)
• Fix audio player on Safari in web UI (ThibG, ThibG)

girish

[1.4.3]

• Install ffmpeg. This was causing sidekiq jobs to fail

girish

[1.4.4]

• Update Mastodon to 3.2.2
• Remove dependency on unused and unmaintained http_parser.rb gem (ThibG)
• Fix Move handler not being triggered when failing to fetch target account (ThibG)
• Fix downloading remote media files when server returns empty filename (ThibG)
• Fix possible casing inconsistencies in hashtag search (ThibG)
• Fix updating account counters when association is not yet created (Gargron)
• Fix account processing failing because of large collections (ThibG)
• Fix resolving an account through its non-canonical form (i.e. alternate domain) (ThibG)
• Fix slow distinct queries where grouped queries are faster (Gargron)
• Fix 2FA/sign-in token sessions being valid after password change (Gargron)
• Fix resolving accounts sometimes creating duplicate records for a given ActivityPub identifier (ThibG)

girish

[1.5.0]

• Update Mastodon to 3.3.0
• Full changelog
• Add hotkeys for audio/video control in web UI (Gargron, Gargron)
• Add expand/compress button on media modal in web UI (mashirozx, mashirozx, mashirozx)
• Add border around man_dancing emoji in web UI (ThibG)
• Add border around beetle emoji in web UI (ThibG)
• Add home link to the getting started column when home isn't mounted (ThibG)
• Add option to disable swiping motions across the web UI (ThibG)
• Add pop-out player for audio/video in web UI (Gargron, Gargron, Gargron, noellabo)

girish

[1.6.0]

• Update base image to v3

nebulon

[1.6.1]

• Update Mastodon to 3.4.0
• Add follow recommendations for onboarding
• Update dependencies

nebulon

[1.6.2]

• Update Mastodon to 3.4.1
• Add new emoji assets from Twemoji 13.1.0
• Fix some ActivityPub identifiers in server actor outbox (ClearlyClaire)
• Fix custom CSS path setting cookies and being uncacheable due to it (tribela)
• Fix unread notification count when polling in web UI (ClearlyClaire)
• Fix health check not being accessible through localhost (ClearlyClaire)
• Fix some redis locks auto-releasing too fast (ClearlyClaire, ClearlyClaire)
• Fix e-mail confirmations API not working correctly (Gargron)
• Fix migration script not being able to run if it fails midway (ClearlyClaire)
• Fix account deletion sometimes failing because of optimistic locks (ClearlyClaire)
• Fix deprecated slash as division in SASS files (ClearlyClaire)
• Fix tootctl search deploy compatibility error on Ruby 3 (ClearlyClaire)
• Fix mailer jobs for deleted notifications erroring out (ClearlyClaire)

girish

[1.7.0]

• Add /app/data/config.sh to customize puma, sidekiq and streaming configs

girish

[1.7.1]

• Update Mastodon to 3.4.3
• Full changelog
• Fix handling of back button with modal windows in web UI (ClearlyClaire)
• Fix pop-in player when author has long username in web UI (ClearlyClaire)
• Fix crash when a status with a playing video gets deleted in web UI (ClearlyClaire)
• Fix crash with Microsoft Translate in web UI (ClearlyClaire)
• Fix PWA not being usable from alternate domains (HolgerHuo)
• Fix locale-specific number rounding errors (ClearlyClaire)
• Fix scheduling a status decreasing status count (ClearlyClaire)
• Fix user's canonical email address being blocked when user deletes own account (ClearlyClaire)

girish

[1.7.2]

• Update Mastodon to 3.4.4
• Full changelog
• Fix error when suspending user with an already blocked canonical email (ClearlyClaire)
• Fix overflow of long profile fields in admin UI (ClearlyClaire)
• Fix confusing error when WebFinger request returns empty document (ClearlyClaire)
• Fix upload of remote media with OpenStack Swift sometimes failing (ClearlyClaire)
• Fix logout link not working in Safari (noellabo)
• Fix “open” link of media modal not closing modal in web UI (ClearlyClaire)
• Fix replying from modal in web UI (ClearlyClaire)

girish

[1.7.3]

• Update base image to 3.2.0

nebulon

[1.7.4]

• Update Mastodon to 3.4.5
• Full changelog

nebulon

[1.7.5]

• Update Mastodon to 3.4.6
• Full changelog
• Fix mastodon:webpush:generate_vapid_key task requiring a functional environment (ClearlyClaire)
• Fix spurious errors when receiving an Add activity for a private post (ClearlyClaire)
• Fix error-prone SQL queries (ClearlyClaire)
• Fix not compacting incoming signed JSON-LD activities (puckipedia, ClearlyClaire) (CVE-2022-24307)
• Fix insufficient sanitization of report comments (ClearlyClaire)
• Fix stop condition of a Common Table Expression (ClearlyClaire)
• Disable legacy XSS filtering (Wonderfall)

nebulon

[1.8.0]

• Update Mastodon to 3.5.0
• Full changelog
• Add support for incoming edited posts
• Add appeals for moderator decisions
• Add notifications for posts deleted by moderators
• Add explore page with trending posts and links
• Add graphs and retention metrics to admin dashboard
• Add notifications for moderators about new sign-ups
• Add ability to suspend accounts in batches in admin UI

girish

[1.8.1]

• Update Mastodon to 3.5.1
• Full changelog
• Add pagination for trending statuses in web UI (Gargron)
• Change e-mail notifications to only be sent when recipient is offline (Gargron)
• Send e-mails for mentions and follows by default again
• But only when recipient does not have push notifications through an app
• Change website attribute to be nullable on Application entity in REST API (rinsuki)

girish

[1.8.2]

• Update Mastodon to 3.5.2
• Full changelog
• Add warning on direct messages screen in web UI (Gargron)
  • We already had a warning when composing a direct message, it has now been reworded to be more clear
  • Same warning is now displayed when viewing sent and received direct messages
• Add ability to set approval-based registration through tootctl (ClearlyClaire)
• Add pre-filling of domain from search filter in domain allow/block admin UI (ClearlyClaire)

girish

[1.8.3]

• Update Mastodon to 3.5.3
• Full changelog
• Add language dropdown to compose form in web UI (Gargron, ykzts)
• Add warning for limited accounts in web UI (Gargron)
• Add limited attribute to accounts in REST API (Gargron)

girish

[1.8.4]

• Update Mastodon to 3.5.4
• Full changelog
• Install ruby 3.0.4
• Fix emoFix emoji substitution not applying only to text nodes in backend code (ClearlyClaire)
• Fix emoji substitution not applying only to text nodes in Web UI (ClearlyClaire)
• Fix rate limiting for paths with formats (Gargron)
• Fix out-of-bound reads in blurhash transcoder (delroth)

girish

[1.8.5]

• Update Mastodon to 3.5.5
• Full changelog
• Fix nodes order being sometimes mangled when rewriting emoji (ClearlyClaire)

girish

[1.9.0]

• Update Mastodon to 4.0.2
• Full changelog
• Add ability to filter followed accounts' posts by language (Gargron, ClearlyClaire)
• Add ability to follow hashtags (Gargron, Gargron, Gargron, noellabo)
• Add ability to filter individual posts (ClearlyClaire)
• Add ability to translate posts (Gargron, ClearlyClaire, Gargron, ClearlyClaire, Gargron, ykzts, Gargron)
• Add featured tags to web UI (noellabo, noellabo, noellabo, noellabo, Gargron, ykzts, noellabo, noellabo, Gargron, Gargron, ClearlyClaire)
• Add support for language preferences for trending statuses and links (Gargron, Gargron, ykzts)
• Add server rules to sign-up flow (Gargron)
• Add privacy icons to report modal in web UI (ClearlyClaire)
• Add noopener to links to remote profiles in web UI (shleeable)
• Add option to open original page in dropdowns of remote content in web UI (Gargron)
• Add warning for sensitive audio posts in web UI (rgroothuijsen)
• Add language attribute to posts in web UI (tribela)
• Add support for uploading WebP files (Saiv46)
• Add support for uploading audio/vnd.wave files (tribela)
• Add support for uploading AVIF files (txt-file)
• Add support for uploading HEIC files (Gargron)

nebulon

[1.9.0-1]

• Cleanup preview-cards cache and orphaned media

girish

[1.9.1]

• Only chown if needed

girish

[1.10.0]

• Update base image to 4.0.0

alwynispat

@girish why is this package downgrading Mastodon from 4.0.2 to 4.0?

nebulon

@alwynispat version 4.0.0 is referring to the app base docker image, not the mastodon app itself. Mastodon is still on v4.0.2

itbeard

@girish hello! What does it mean for administrators? Is it nessesary Package Update for stable servers?

murgero

@itbeard All this update was, was an internal cloudron update - you don't need to do anything with Mastodon

"Base Image" in the change log refers to the Cloudron Docker base image.

girish

[1.11.0]

• Update Mastodon to 4.1.0
• Full changelog
• Add support for importing/exporting server-wide domain blocks (enbylenore, ClearlyClaire, dariusk, ClearlyClaire)
• Add listing of followed hashtags (connorshea)
• Add support for editing media description and focus point of already-sent posts (ClearlyClaire)
• Add follow request banner on account header (ClearlyClaire)
• Add confirmation screen when handling reports (ClearlyClaire, Gargron, tribela)
• Add option to make the landing page be /about even when trends are enabled (ClearlyClaire)

nebulon

[1.11.1]

• Update Mastodon to 4.1.1
• Full changelog
• Add redirection from paths with url-encoded @ to their decoded form (thijskh)
• Add lang attribute to native language names in language picker in Web UI (ClearlyClaire)
• Add headers to outgoing mails to avoid auto-replies (ClearlyClaire)
• Add support for refreshing many accounts at once with tootctl accounts refresh (9p4)
• Add confirmation modal when clicking to edit a post with a non-empty compose form (PauloVilarinho)
• Add support for the HAproxy PROXY protocol through the PROXY_PROTO_V1 environment variable (CSDUMMI)
• Add SENDFILE_HEADER environment variable (Gargron)
• Add cache headers to static files served through Rails (Gargron)
• Increase contrast of upload progress bar background (toolmantim)
• Change post auto-deletion throttling constants to better scale with server size (ClearlyClaire)
• Change order of bookmark and favourite sidebar entries in single-column UI for consistency (TerryGarcia)
• Change ActivityPub::DeliveryWorker retries to be spread out more (ClearlyClaire)
• Fix “Remove all followers from the selected domains” also removing follows and notifications (ClearlyClaire)
• Fix streaming metrics format (emilweth, emilweth)
• Fix case-sensitive check for previously used hashtags in hashtag autocompletion (deanveloper)
• Fix focus point of already-attached media not saving after edit (ClearlyClaire)
• Fix sidebar behavior in settings/admin UI on mobile (wxt2005)
• Fix inefficiency when searching accounts per username in admin interface (ClearlyClaire)
• Fix duplicate “Publish” button on mobile (ClearlyClaire)
• Fix server error when failing to follow back followers from /relationships (ClearlyClaire)
• Fix server error when attempting to display the edit history of a trendable post in the admin interface (ClearlyClaire)
• Fix tootctl accounts migrate crashing because of a typo (ClearlyClaire)
• Fix original account being unfollowed on migration before the follow request to the new account could be sent (ClearlyClaire)
• Fix the “Back” button in column headers sometimes leaving Mastodon (c960657)
• Fix pgBouncer resetting application name on every transaction (Gargron)
• Fix unconfirmed accounts being counted as active users (ClearlyClaire)
• Fix /api/v1/streaming sub-paths not being redirected (ClearlyClaire)
• Fix drag'n'drop upload area text that spans multiple lines not being centered (vintprox)
• Fix sidekiq jobs not triggering Elasticsearch index updates (ClearlyClaire)
• Fix tags being unnecessarily stripped from plain-text short site description (c960657)
• Fix HTML entities not being un-escaped in extracted plain-text from remote posts (c960657)
• Fix dashboard crash on ElasticSearch server error (ClearlyClaire)
• Fix incorrect post links in strikes when the account is remote (ClearlyClaire)
• Fix misleading error code when receiving invalid WebAuthn credentials (ClearlyClaire)
• Fix duplicate mails being sent when the SMTP server is too slow to close the connection (ClearlyClaire)
• Change user backups to use expiring URLs for download when possible (Gargron)
• Add warning for object storage misconfiguration (ClearlyClaire)