joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,970 Commits 2 Branches 18 Tags
5908a40d2f93ff11c7289c07d493f4de7c3bfcf6
Commit Graph

3970 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Manuel
5908a40d2f docs: minor rephrasing in CONTRIBUTING docs 2022-09-28 15:44:20 +02:00
Manuel
b2dd1d9c0f docs: add contribution FAQs (#8201) 2022-09-28 15:22:21 +02:00
Parse Platform
c9bd87e2f3 refactor: upgrade @graphql-tools/merge from 8.3.4 to 8.3.5 (#8199) 2022-09-28 02:04:47 +02:00
Parse Platform
c1dbd007c5 refactor: upgrade @graphql-tools/utils from 8.10.1 to 8.11.0 (#8198) 2022-09-28 00:06:25 +02:00
Parse Platform
9872051e3b refactor: upgrade @graphql-tools/schema from 9.0.2 to 9.0.3 (#8197) 2022-09-27 22:27:25 +02:00
Parse Platform
643d49199a refactor: upgrade uuid from 8.3.2 to 9.0.0 (#8200) 2022-09-27 13:01:54 +02:00
Manuel
ae8d08294b ci: adapt to new MongoDB lifecycle schedule (#8195) 2022-09-26 15:08:12 +02:00
Corey
377ce67239 ci: upgrade Postgres versions (#8191) 2022-09-24 01:06:22 +02:00
Manuel
eb20e92f8f docs: update Parse Server support for Postgres table 2022-09-22 22:44:36 +02:00
Snyk bot
e8242423e4 refactor: upgrade mongodb from 4.9.0 to 4.9.1 (#8190) 2022-09-22 11:27:47 +02:00
Manuel
d9afeb86a5 docs: remove diamond sponsors from README 2022-09-20 23:22:19 +02:00
Manuel
8c8ec71573 fix: authentication adapter app ID validation may be circumvented; this fixes a vulnerability that affects configurations which allow users to authenticate using the Parse Server authentication adapter for *Facebook* or *Spotify* and where the server-side authentication adapter configuration appIds is set as a string (e.g. abc) instead of an array of strings (e.g. ["abc"]) ([GHSA-r657-33vp-gp22](https://github.com/parse-community/parse-server/security/advisories/GHSA-r657-33vp-gp22)) [skip release] (#8187) 2022-09-20 23:05:44 +02:00
Manuel
37fed3062c fix: session object properties can be updated by foreign user; this fixes a security vulnerability in which a foreign user can write to the session object of another user if the session object ID is known; the fix prevents writing to foreign session objects ([GHSA-6w4q-23cf-j9jp](https://github.com/parse-community/parse-server/security/advisories/GHSA-6w4q-23cf-j9jp)) [skip release] (#8180) 2022-09-20 02:23:49 +02:00
Snyk bot
004faf41e4 refactor: upgrade @graphql-tools/merge from 8.3.3 to 8.3.4 (#8175) 2022-09-19 22:07:14 +02:00
Snyk bot
bf7d5ba605 refactor: upgrade @graphql-tools/schema from 9.0.1 to 9.0.2 (#8176) 2022-09-19 20:07:26 +02:00
Snyk bot
6fb4d68f4c refactor: upgrade pg-promise from 10.11.1 to 10.12.0 (#8178) 2022-09-19 16:35:20 +02:00
Snyk bot
9fe16738b6 refactor: upgrade @graphql-tools/utils from 8.10.0 to 8.10.1 (#8177) 2022-09-19 15:45:00 +02:00
dblythy
df12ba3ba2 docs: regenerate API docs (#8179) 2022-09-19 12:40:15 +02:00
dblythy
a5ba5da36d docs: describe additional database options (#8173) 2022-09-18 18:44:31 +02:00
semantic-release-bot
b2fe087a02 chore(release): 5.3.0-alpha.26 [skip ci] 
# [5.3.0-alpha.26](https://github.com/parse-community/parse-server/compare/5.3.0-alpha.25...5.3.0-alpha.26) (2022-09-17)

### Bug Fixes

* sorting by non-existing value throws `INVALID_SERVER_ERROR` on Postgres ([#8157](https://github.com/parse-community/parse-server/issues/8157)) ([3b775a1](3b775a1fb8))
 2022-09-17 18:49:17 +00:00
dblythy
3b775a1fb8 fix: sorting by non-existing value throws INVALID_SERVER_ERROR on Postgres (#8157) 2022-09-17 20:41:45 +02:00
semantic-release-bot
73e1763a63 chore(release): 5.3.0-alpha.25 [skip ci] 
# [5.3.0-alpha.25](https://github.com/parse-community/parse-server/compare/5.3.0-alpha.24...5.3.0-alpha.25) (2022-09-17)

### Bug Fixes

* updating object includes unchanged keys in client response for certain key types ([#8159](https://github.com/parse-community/parse-server/issues/8159)) ([37af1d7](37af1d78fc))
 2022-09-17 16:30:24 +00:00
dblythy
37af1d78fc fix: updating object includes unchanged keys in client response for certain key types (#8159) 2022-09-17 18:20:50 +02:00
semantic-release-bot
41e44302b4 chore(release): 5.3.0-alpha.24 [skip ci] 
# [5.3.0-alpha.24](https://github.com/parse-community/parse-server/compare/5.3.0-alpha.23...5.3.0-alpha.24) (2022-09-17)

### Bug Fixes

* query aggregation pipeline cannot handle value of type `Date` when `directAccess: true` ([#8167](https://github.com/parse-community/parse-server/issues/8167)) ([e424137](e424137406))
 2022-09-17 14:26:53 +00:00
dblythy
e424137406 fix: query aggregation pipeline cannot handle value of type Date when directAccess: true (#8167) 2022-09-17 16:19:28 +02:00
semantic-release-bot
cec3071170 chore(release): 5.3.0-alpha.23 [skip ci] 
# [5.3.0-alpha.23](https://github.com/parse-community/parse-server/compare/5.3.0-alpha.22...5.3.0-alpha.23) (2022-09-17)

### Bug Fixes

* liveQuery with `containedIn` not working when object field is an array ([#8128](https://github.com/parse-community/parse-server/issues/8128)) ([1d9605b](1d9605bc93))
 2022-09-17 12:10:06 +00:00
Stew
1d9605bc93 fix: liveQuery with containedIn not working when object field is an array (#8128) 2022-09-17 13:59:45 +02:00
semantic-release-bot
4a45cc467c chore(release): 5.3.0-alpha.22 [skip ci] 
# [5.3.0-alpha.22](https://github.com/parse-community/parse-server/compare/5.3.0-alpha.21...5.3.0-alpha.22) (2022-09-16)

### Bug Fixes

* brute force guessing of user sensitive data via search patterns (GHSA-2m6g-crv8-p3c6) ([#8146](https://github.com/parse-community/parse-server/issues/8146)) [skip release] ([4c0c7c7](4c0c7c77b7))
* push notifications `badge` doesn't update with Installation beforeSave trigger ([#8162](https://github.com/parse-community/parse-server/issues/8162)) ([3c75c2b](3c75c2ba48))
 2022-09-16 19:50:56 +00:00
dblythy
3c75c2ba48 fix: push notifications badge doesn't update with Installation beforeSave trigger (#8162) 2022-09-16 21:43:03 +02:00
dependabot[bot]
5250c07a1c refactor: bump jose from 2.0.5 to 2.0.6 (#8171) 2022-09-16 21:03:05 +02:00
Manuel
1109d0ca23 docs: fix link of official parse email adapter 2022-09-16 11:35:41 +02:00
Manuel
9cd4a35120 ci: add code scanning (#8169) 2022-09-14 23:38:37 +02:00
dblythy
c85bc016e2 ci: fix flaky Apple Game Center tests (#8163) 2022-09-14 16:33:55 +02:00
Parse Platform
7c32bfe95f refactor: upgrade mongodb from 4.8.1 to 4.9.0 (#8158) 2022-09-10 10:55:03 +02:00
Snyk bot
07acecdc77 refactor: upgrade winston from 3.8.0 to 3.8.1 (#8155) 2022-09-09 01:20:44 +02:00
Parse Platform
dfe9168512 refactor: upgrade graphql from 16.5.0 to 16.6.0 (#8154) 2022-09-08 17:32:39 +02:00
dependabot[bot]
780ee0203a refactor: bump node-fetch from 3.2.4 to 3.2.10 (#8150) 2022-09-04 17:32:27 +02:00
Snyk bot
6a2651c325 refactor: upgrade @graphql-tools/schema from 9.0.0 to 9.0.1 (#8147) 2022-09-04 14:01:16 +02:00
Snyk bot
a2d0de7656 refactor: upgrade mongodb from 4.7.0 to 4.8.1 (#8148) 2022-09-04 11:46:36 +02:00
Snyk bot
149884fe3e refactor: upgrade mongodb from 4.6.0 to 4.7.0 (#8083) 2022-09-03 11:22:42 +02:00
Snyk bot
f821dfd02a refactor: upgrade @graphql-tools/utils from 8.9.1 to 8.10.0 (#8142) 2022-09-03 02:20:43 +02:00
Manuel
4c0c7c77b7 fix: brute force guessing of user sensitive data via search patterns (GHSA-2m6g-crv8-p3c6) (#8146) [skip release] 2022-09-02 21:43:31 +02:00
Snyk bot
5432082d82 refactor: upgrade @graphql-tools/merge from 8.3.2 to 8.3.3 (#8141) 2022-09-02 18:49:04 +02:00
Snyk bot
3de466ba9b refactor: upgrade @graphql-tools/schema from 8.5.1 to 9.0.0 (#8138) 2022-09-02 17:37:40 +02:00
Snyk bot
82eb4613d9 refactor: upgrade @graphql-tools/utils from 8.9.0 to 8.9.1 (#8140) 2022-08-31 19:19:10 +02:00
Snyk bot
276c32a0dd refactor: upgrade @graphql-tools/merge from 8.3.1 to 8.3.2 (#8139) 2022-08-31 13:24:47 +02:00
Snyk bot
4de1c9bdd5 refactor: upgrade @graphql-tools/schema from 8.5.0 to 8.5.1 (#8130) 2022-08-25 14:03:01 +02:00
Snyk bot
0287098ef5 refactor: upgrade @graphql-tools/merge from 8.3.0 to 8.3.1 (#8131) 2022-08-22 19:55:17 +02:00
Snyk bot
ef5d59d784 refactor: upgrade @graphql-tools/utils from 8.6.13 to 8.9.0 (#8129) 2022-08-19 12:42:11 +02:00
dependabot[bot]
1db432db51 refactor: bump semver-regex and husky (#8134) 2022-08-19 00:31:14 +02:00