summaryrefslogtreecommitdiffstats
path: root/extensions
AgeCommit message (Collapse)AuthorFilesLines
2016-03-24Bug 1259266 - Attachment of security issues when viewing a bug are ↵David Lawrence1-0/+8
indistinguishable from any other attachment.
2016-03-23Bug 1251236 - Please show the diff on the attachment details page when a ↵Byron Jones1-0/+16
patch has been reviewed in MozReview
2016-03-15Bug 1251442 - Update VP list in Recruiting ProductDavid Lawrence1-0/+1
2016-03-15Bug 1229834 - extend information we [audit] log to the syslogDylan Hardison1-1/+6
2016-03-14Bug 1255272 - Adding a flag via the MozReview batch-attachment API doesn't ↵Dylan Hardison1-0/+3
CC the user
2016-03-10Bug 1252578 - CSRF and SELECT-only SQL execution attack against ↵Dylan Hardison2-0/+2
query_database.html
2016-03-10Bug 1253914 - Cross domain referer leakage when resetting the user passwordDylan Hardison2-1/+4
2016-03-10Bug 1254227 - MozReview auth delegation allows sending out phishing mails ↵Dylan Hardison1-1/+3
via Bugzilla
2016-03-10Bug 1254675 - bug_modal template fails to escape format parameterDavid Lawrence1-1/+1
2016-03-09Bug 1253483 - MozReview.attachments() doesn't create flags on new attachmentsDylan Hardison1-1/+7
2016-03-08Bug 1252554 - Avoid possibility of XSS in release tracking reportDylan Hardison1-3/+3
2016-03-08Bug 1252445 - Tracking flags configuration is vulnerable to CSRF and causes ↵David Lawrence6-9/+24
persistent XSS
2016-03-08Bug 1251442 - Update VP list in Recruiting ProductDavid Lawrence1-3/+4
2016-03-07Bug 1252862 - Remove calls to delete_token() in several places where it is ↵David Lawrence3-4/+1
unnecessary
2016-03-02Bug 1252628 - 404 on ↵David Lawrence1-1/+1
https://www.mozilla.org/en-US/quality/bug-writing-guidelines.html
2016-03-01Bug 1252437 - XSS vulnerability through malicious bug aliasesDylan Hardison1-1/+2
2016-03-01Bug 1252437 - XSS vulnerability through malicious bug aliasesDylan Hardison1-1/+2
2016-03-01Bug 1252210 - AntiSpam configuration is vulnerable to CSRF and persistent XSSDylan Hardison2-1/+8
2016-03-01Bug 1252216 - Push extension configuration is vulnerable to CSRF and ↵David Lawrence3-0/+7
potentially code execution
2016-03-01Bug 1252219 - Attachment bounty form is vulnerable to CSRF and persistent XSSDylan Hardison2-9/+16
2016-02-29Bug 1251647 - XSS vulnerability in the remo-form-payment pageDylan Hardison2-107/+89
2016-02-29Bug 1251731 - XSS vulnerability through malicious attachment namesDavid Lawrence2-29/+43
2016-02-27Bug 1223421 - Hide/Obfuscate MozReview API KeysDylan Hardison1-0/+12
2016-02-27Bug 1251442 - Update VP list in Recruiting ProductDylan Hardison1-7/+5
2016-02-22Bug 1249614 - Release Tracking Report missed bugDavid Lawrence1-2/+2
2016-02-16Bug 1245471 - Release Tracking Report should be able to have custom datesDavid Lawrence3-68/+251
2016-02-11Bug 1244602 - rewrite the bmo --> reviewboard connector to create a bug ↵Byron Jones4-256/+102
instead of updating reviewboard
2016-02-11Bug 1235182 - User Story should always be visibleByron Jones3-0/+5
2016-02-10Bug 1246413 - Email::Address caches all email addressesDylan Hardison1-1/+9
2016-02-09Bug 1246864 - Unable to comment tickets with "WONTFIX" status without change ↵Byron Jones1-1/+2
the status on the experimental UI
2016-01-29Bug 1188236 - "Congratulations on having your first patch approved" email ↵David Lawrence1-2/+2
should be clearer about how to get the patch landed. - Fixed t/009bugwords.t failure
2016-01-28Bug 1188236 - "Congratulations on having your first patch approved" email ↵Mike Hoye1-22/+37
should be clearer about how to get the patch landed.
2016-01-28Bug 1241667 - Trying to report a bug traps the user in an infinite loopDavid Lawrence3-9/+21
2016-01-23Bug 1226028 - API for batching MozReview requestsDylan Hardison3-8/+214
2016-01-22Bug 1240575 - Update form.reps.budgetDavid Lawrence2-37/+84
2016-01-20Bug 1236161 - when converting a BMP attachment to PNG fails a zero byte ↵Dylan Hardison1-7/+56
attachment is created
2016-01-13Bug 1239065 - Project Kickoff Form: Adjustments needed to Mozilla Infosec ↵David Lawrence1-2/+2
review portion
2016-01-11Bug 1238573 - Change label of "New Bug" menu to "New/Clone Bug"David Lawrence1-1/+1
2016-01-11Bug 1237185 - fix broken js in old uiByron Jones1-4/+1
2016-01-11Bug 1237185 - hide 'cab review' custom field behind a "click through" to ↵Byron Jones4-5/+85
direct people to servicenow
2016-01-07Bug 1232913 - The attachment links don't look like linksByron Jones1-4/+0
2016-01-06Bug 1236955 - [form.mdn] Please add component drop-down to custom formDavid Lawrence1-3/+18
2016-01-06Bug 1237188 - add support for servicenow to the 'see also' fieldByron Jones1-1/+3
2016-01-05Bug 1224001 - Add push connector for Aha.ioDylan Hardison1-0/+182
2016-01-04Bug 1233878 - tracking flags don't show up in the view of the bug right ↵Dylan Hardison1-3/+11
after filing
2015-12-11Bug 1226287 - A few more Data & BI Services Team product tweaksDylan Hardison1-0/+1
2015-12-02Bug 1227998 - B2G Droid product missing some fields that are on FxOS bugsDylan William Hardison1-0/+1
2015-12-01Bug 1149952 - Can't change bug status to ASSIGNED in one clickByron Jones3-1/+20
2015-11-30Bug 1225247 - Bug assignee should be displayed in a more prominent wayByron Jones2-4/+19
2015-11-30Bug 1217890 - Ctrl+Click/Shift+Click on image attachments does not open them ↵Byron Jones1-1/+1
in new tabs, with bugzilla's experimental UI