Upstream/ChestShop-3
1
0
Fork 0
mirror of https://github.com/ChestShop-authors/ChestShop-3.git synced 2024-06-26 14:24:45 +02:00
Code Issues Projects Releases Wiki Activity
919 Commits 6 Branches 11 Tags 8 MiB
9842f47f37
Commit Graph

919 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Felipe Foschiera
9842f47f37
Trigger transaction message from CurrencyTransferEvent and consider tax (#534) 
Triggers TransactionMessageSender from CurrencyTransferEvent, wrapping TransactionEvent inside of it.
Add logic to showamount after taxes on the message.
 2022-10-12 16:37:18 +01:00
Max Lee
34df7e368a
Merge pull request #527 from JLLeitschuh/fix/JLL/use_https_to_resolve_dependencies_maven 
[SECURITY] Use HTTPS to resolve dependencies in Maven Build
 2022-09-12 23:26:02 +01:00
Jonathan Leitschuh
5066a21a5f
vuln-fix: Use HTTPS instead of HTTP to resolve deps CVE-2021-26291 
This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Weakness: CWE-829: Inclusion of Functionality from Untrusted Control Sphere
Severity: High
CVSSS: 8.1
Detection: CodeQL & OpenRewrite (https://public.moderne.io/recipes/org.openrewrite.maven.security.UseHttpsForRepositories)

Reported-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>

Bug-tracker: https://github.com/JLLeitschuh/security-research/issues/8

Co-authored-by: Moderne <team@moderne.io>
 2022-07-14 22:41:37 +00:00
Phoenix616
da3928b723
Add meta information for more item types 2022-07-06 22:08:55 +01:00
Phoenix616
d0af977212
Fix issue when creating sign with own name without existing account 
This was only an issue if the autofill functionality for the own name wasn't used.
Now if there is no account with a certain name then the player can use it if it matches their user name
 2022-07-06 20:05:21 +01:00
Phoenix616
e3cd50cf75
Add some debug logging for shop sign creation 2022-07-06 00:54:44 +01:00
Phoenix616
a78b925181
Update dependencies (mainly ORMLite and bStats) 
Also fixed the outdated Reserve maven repository. That massively slowed down builds...
 2022-06-28 16:24:17 +01:00
Phoenix616
5b712f9ed5
Back to development builds 2022-06-28 16:12:44 +01:00
Phoenix616
c54ed6b2f5
Prepare 3.12.2 release 2022-06-28 14:54:20 +01:00
Max Lee
f57d1b04a2
New Crowdin updates (#518) 
* New translations lang.en.yml (Chinese Simplified)

* New translations lang.en.yml (Turkish)

* New translations lang.en.yml (Russian)

* New translations lang.en.yml (Ukrainian)

* New translations lang.en.yml (Ukrainian)

* New translations lang.en.yml (Spanish)

* New translations lang.en.yml (French)

* New translations lang.en.yml (Italian)

* New translations lang.en.yml (Ukrainian)

* New translations lang.en.yml (Ukrainian)

* New translations lang.en.yml (Italian)

* New translations lang.en.yml (Ukrainian)
 2022-06-28 12:44:19 +01:00
Max Lee
6b372883ac
Merge pull request #522 from Krakenied/master 
Fix zero partial price exploit
 2022-06-28 12:21:31 +01:00
Krakenied
fd969cd996 Fix zero partial price exploit 2022-06-28 11:09:29 +02:00
Phoenix616
fd0035a99c
Build against 1.19 and replace apache-commons-lang 2022-06-13 22:52:26 +01:00
Phoenix616
4285358910
Back to snapshots for development 2022-06-04 14:51:40 +01:00
Phoenix616
dc731919e3
Prepare 3.12.1 release 2022-06-04 14:51:18 +01:00
Phoenix616
a112c50d55
Update language files with latest Crowdin translations. 2022-06-04 14:49:48 +01:00
Phoenix616
4c7b018f8c
Ignore formatting when parsing sign lines (#503) 2022-02-17 21:29:43 +01:00
Krakenied
2ebc2f285b
Fix NFE and some other possible issues (#502) 
Fixes #499
 2022-02-17 16:34:25 +01:00
Phoenix616
e40b5567b8
Require count digit on quantity line if module is enabled 
Also use the same pattern for validating the line in QuantityUtil and ChestShoSign.
 2022-02-04 16:28:44 +01:00
Phoenix616
419527efaa
Fix item id not being valid with numbers and underscore (Fixes #498) 2022-01-29 22:23:51 +01:00
Phoenix616
99a609b423
Unify sign line parsing and strip owner line whitespace 2022-01-26 20:35:42 +01:00
jeffry1829
5ec2ab61e5
Make Unicode character valid in ChestShop Sign (#497) 2022-01-26 14:26:03 +01:00
Phoenix616
d1bbcfce47
Sync log4j version with updated server version 
The log4j bugs weren't an issue as log4j wasn't included in the plugin directly
 but simply depended on the version the server provided. This just syncs it with
 the commonly used server version again. (And shuts up dependabot)
 2022-01-10 17:07:59 +01:00
Phoenix616
fa924f0212
Full message support on 1.18 2021-12-03 19:12:18 +01:00
Phoenix616
f9a0bf90a3
Don't search unknown players by default 
This shouldn't be needed in any of the internal usage of the event
 and could lead to unexpected network lookups.
 2021-11-17 14:03:51 +01:00
Phoenix616
02dd167024
Add better message for when the shop's sell price is above the buy price 2021-10-15 15:50:04 +01:00
Phoenix616
8655870077
Add clarifying comment to buy tax bypass 2021-10-15 15:39:01 +01:00
Phoenix616
01b7cddaa3
Use correct tax amount 🙈 2021-10-15 15:26:44 +01:00
Phoenix616
6962ae2590
Added log messages to tax and discount module (#478) 2021-10-15 15:17:09 +01:00
Phoenix616
03317c2c78
Fix prefix not getting parsed with MineDown 2021-10-15 14:22:14 +01:00
Max Lee
a84cd7a2aa Improve agreements 2021-10-15 01:15:52 +01:00
TreyRuffy
bb7bd3415c
ChestShop Sign Dying (#479) 
Signed-off-by: TreyRuffy <TreyRuffy@users.noreply.github.com>
 2021-10-12 23:30:49 +01:00
Phoenix616
4f8e7938e2
Update Adventure (Fixes #474) 2021-09-10 22:22:16 +01:00
Phoenix616
986a22fb73
Make sure to not load chunks to check for shops (Fixes #473) 2021-09-01 16:30:14 +01:00
Phoenix616
f7aa80e566
[CI-SKIP] Convert to issue form system 2021-08-05 22:19:10 +01:00
Phoenix616
d193812392
Fix shop not buying/selling errors being the wrong way around 2021-07-25 22:31:11 +01:00
Phoenix616
13b727c779
Fix possible NPE when loading material sets from config 2021-07-09 11:26:30 +01:00
Phoenix616
129663650f
Build and test against 1.17 
Also update maven-compiler-plugin
 2021-07-04 14:20:43 +01:00
Phoenix616
d3cb06acc0
Use the correct messages 🙈 (Fixes #462) 2021-06-26 23:06:21 +01:00
Phoenix616
965d931978
Include prices in price restriction messages (Resolves #461) 2021-06-24 19:40:58 +01:00
Phoenix616
1b85bda656
Fix some block place and break access message issues 
Messages were missing on block break and placement sent multiple.
 2021-06-21 16:16:19 +01:00
Phoenix616
42a7cc4789
Check if sign actually applies to container (Fixes #460) 2021-06-21 16:07:42 +01:00
Phoenix616
a549b4ef51
[CI-SKIP] Update issue templates to include link to dev builds 2021-06-19 19:25:00 +01:00
Phoenix616
988420992c
Sync version of adventure gson serializer dependency with api 2021-06-18 22:52:05 +01:00
Phoenix616
df2e4394c4
Use more exact shop detection with /shopinfo 2021-06-13 15:48:04 +01:00
Phoenix616
63f68d5444
Fix test profiles activation 2021-06-13 15:47:41 +01:00
Phoenix616
6f4be10065
Prepare next version and update Minedown 2021-06-09 00:47:42 +01:00
Phoenix616
8cb78165a3
3.12 release 2021-06-06 22:02:53 +01:00
Max Lee
3cc219e86b
New Crowdin updates (#399) 2021-06-06 22:01:55 +01:00
Phoenix616
052560393c
Add additional plugin, server and java version stats 2021-06-04 00:35:27 +01:00