summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2016-03-14Bug 1255272 - Adding a flag via the MozReview batch-attachment API doesn't ↵Dylan Hardison1-0/+3
CC the user
2016-03-10Bug 1252578 - CSRF and SELECT-only SQL execution attack against ↵Dylan Hardison2-0/+2
query_database.html
2016-03-10Bug 1253914 - Cross domain referer leakage when resetting the user passwordDylan Hardison4-1/+8
2016-03-10Bug 1254227 - MozReview auth delegation allows sending out phishing mails ↵Dylan Hardison4-3/+15
via Bugzilla
2016-03-10Bug 1254675 - bug_modal template fails to escape format parameterDavid Lawrence1-1/+1
2016-03-10Bug 1254542 - Reflected XSS in comment-remo-form-payment.txt pageDylan Hardison2-1/+2
2016-03-09Bug 1253483 - MozReview.attachments() doesn't create flags on new attachmentsDylan Hardison1-1/+7
2016-03-08Bug 1252554 - Avoid possibility of XSS in release tracking reportDylan Hardison1-3/+3
2016-03-08Bug 1252445 - Tracking flags configuration is vulnerable to CSRF and causes ↵David Lawrence6-9/+24
persistent XSS
2016-03-08Bug 1251442 - Update VP list in Recruiting ProductDavid Lawrence1-3/+4
2016-03-07Bug 1253691 - In issue-api-key.pl, set the MozReview API key if the ↵Mark Côté1-2/+9
description is 'mozreview'. r=dylan
2016-03-07Bug 1252084 - Warning when entering row into user_request_log when running ↵David Lawrence1-1/+2
commandline script
2016-03-07Bug 1252862 - Remove calls to delete_token() in several places where it is ↵David Lawrence3-4/+1
unnecessary
2016-03-03Bug 1252735 - test_email_preferences.t selenium test is intermittently failingDavid Lawrence1-1/+1
- Archiving the test caused test_qa_contact.t to fail due to a bug in the test that relied on the archived test to set a preference to enabled. An accidental side effect. Changing generate_test_data.pl to always add preferences as enabled by default since BMO does not display displayed preferences.
2016-03-03Bug 1252735 - selenium tests are failingDavid Lawrence1-0/+0
- Archiving test script for now til a future time it can be fixed
2016-03-03Bug 1253032 - Recent change to JSON::XS breaks some APIsDylan Hardison1-0/+1
2016-03-02Bug 1252628 - 404 on ↵David Lawrence1-1/+1
https://www.mozilla.org/en-US/quality/bug-writing-guidelines.html
2016-03-01Bug 1252437 - XSS vulnerability through malicious bug aliasesDylan Hardison1-1/+2
2016-03-01Bug 1252437 - XSS vulnerability through malicious bug aliasesDylan Hardison2-3/+6
2016-03-01Revert "Bug 1251208 - Bugzilla->request_cache() can be faster"Dylan William Hardison1-6/+29
This reverts commit 1d3186c171465b173a42f8ecd168662eccccc4d1.
2016-03-01Bug 1252210 - AntiSpam configuration is vulnerable to CSRF and persistent XSSDylan Hardison2-1/+8
2016-03-01Bug 1252216 - Push extension configuration is vulnerable to CSRF and ↵David Lawrence3-0/+7
potentially code execution
2016-03-01Bug 1252219 - Attachment bounty form is vulnerable to CSRF and persistent XSSDylan Hardison2-9/+16
2016-03-01Bug 1251208 - Bugzilla->request_cache() can be fasterDylan Hardison1-29/+6
r=dkl,a=dylan
2016-02-29Bug 1251047 - cmp is remarkably different from eqDylan William Hardison1-1/+1
2016-02-29Bug 1251047 - fix to work with right functionDylan William Hardison1-2/+2
2016-02-29Bug 1251047 - /rest/bug/field takes 15-25 seconds to returnDylan Hardison1-2/+2
2016-02-29Bug 1251647 - XSS vulnerability in the remo-form-payment pageDylan Hardison2-107/+89
2016-02-29Bug 1251731 - XSS vulnerability through malicious attachment namesDavid Lawrence2-29/+43
2016-02-27Bug 1223421 - Hide/Obfuscate MozReview API KeysDylan Hardison2-4/+28
2016-02-27Bug 1251442 - Update VP list in Recruiting ProductDylan Hardison1-7/+5
2016-02-26Bug 1251221 - Pass cache => 1 to calls to Bugzilla::Product->new() called in ↵Dylan Hardison3-6/+5
Bugzilla::{Milestone,Version,Component} r=dkl,a=dylan
2016-02-24Bug 1249196 - mass-resolve l10n fxos bugsDavid Lawrence1-0/+82
2016-02-24Bug 1250911 - document the count_only rest argumentDavid Lawrence1-1/+4
2016-02-23Bug 1244718 - API documentation is missing error codesDavid Lawrence13-445/+343
2016-02-22- task.expires needs to be greater than artifacts.expiresDavid Lawrence1-0/+4
2016-02-22- Update artifact expiration dateDavid Lawrence1-7/+7
2016-02-22Bug 1250129 - tab links sometimes do not workDylan Hardison1-1/+1
2016-02-22Bug 1249614 - Release Tracking Report missed bugDavid Lawrence1-2/+2
2016-02-16Bug 1245471 - Release Tracking Report should be able to have custom datesDavid Lawrence3-68/+251
2016-02-11Bug 1244602 - rewrite the bmo --> reviewboard connector to create a bug ↵Byron Jones4-256/+102
instead of updating reviewboard
2016-02-11Bug 1235182 - User Story should always be visibleByron Jones3-0/+5
2016-02-10Bug 1246413 - Email::Address caches all email addressesDylan Hardison1-1/+9
2016-02-09Bug 1246864 - Unable to comment tickets with "WONTFIX" status without change ↵Byron Jones1-1/+2
the status on the experimental UI
2016-02-02Bug 1245003 - increase the apache sizelimit used by the taskcluster imageDavid Lawrence2-0/+2
2016-02-02Bug 1244996 - (remove unused import)Byron Jones1-1/+0
2016-02-02Bug 1244996 - add a script to manage a user's settingsByron Jones1-0/+57
2016-02-01Bug 1244604 - configure nagios alerting for the bmo/reviewboard connectorByron Jones1-0/+83
2016-01-30Bug 1243051 - Create one off script to output cpanfile with all modules and ↵David Lawrence1-0/+126
their current versions to be used for version pinning
2016-01-29Bug 1188236 - "Congratulations on having your first patch approved" email ↵David Lawrence1-2/+2
should be clearer about how to get the patch landed. - Fixed t/009bugwords.t failure