Upstream/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2024-11-18 00:25:37 +01:00
Code Issues Projects Releases Wiki Activity
36,717 Commits 50 Branches 748 Tags 792 MiB
7b17c71213
Commit Graph

10407 Commits

Author SHA1 Message Date
Aaron Campbell
7b17c71213 Database: Don’t trigger _doing_it_wrong() for null values in wpdb::prepare(). 
While `wpdb::prepare()` does not support null values (see #12819) they still appear in the wild like in the WordPress Importer and other plugins.

Merges [41483] to 4.8 branch.


Built from https://develop.svn.wordpress.org/branches/4.8@41484


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41317 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 16:19:32 +00:00
Aaron Campbell
109695b948 Database: Hardening for wpdb::prepare() 
Previously if you passed an array of values for placeholders, additional values could be passed as well. Now additional values will be ignored.

Merges [41470] to 4.8 branch.


Built from https://develop.svn.wordpress.org/branches/4.8@41471


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41304 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 14:55:32 +00:00
John Blackbourn
3e77adc619 Filesystem API: Ensure filenames are valid before attempting to unzip them to ensure malformed file paths don't cause issues. 
Merges [41457] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41458


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41291 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 14:37:33 +00:00
Aaron Campbell
a9b03b1b80 oEmbed: Add extra hardening around allowed HTML for improved sandboxing. 
Merges [41448] to 4.8 branch.



Built from https://develop.svn.wordpress.org/branches/4.8@41450


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41283 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 13:47:33 +00:00
Dominik Schilling
40074d31a0 TinyMCE: Improve the previews for shortcodes. 
Merge of [41395] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41435


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41268 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 12:41:32 +00:00
Dominik Schilling
460edb5519 Customize: Ensure valid themes in the preview. 
Merge of [41397] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41429


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41262 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 11:50:31 +00:00
Dominik Schilling
07e1f9a6ca Taxonomy/Users: Provide a fallback for incorrect HTTP referrers. 
Merge of [41398] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41417


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41250 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 11:11:33 +00:00
John Blackbourn
846bd22a79 General: Add missing URL-encoding and add extra hardening to plugin and template names when they're displayed in the admin area. 
Merges [41399], with additions, to the 4.8 branch.

See #13377

Built from https://develop.svn.wordpress.org/branches/4.8@41412


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41245 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 10:21:16 +00:00
Dominik Schilling
1647b11bf4 Editor: Prevent adding javascript: and data: URLs through the inline link dialog. 
Merge of [41393] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41400


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41233 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 10:15:32 +00:00
Dominik Schilling
a905eb3690 Emoji: Invert value returned by UN test for accuracy. 
The JavaScript testing for UN flag support was passing when it failed, and failing when it passes.

This inverts the result to take more traditional approach of returning the correct result.

Merge of [41386] to the 4.8 branch.

Unprops Pento.
Fixes #41852.

Built from https://develop.svn.wordpress.org/branches/4.8@41396


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41229 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 08:29:33 +00:00
Dominik Schilling
d75fad697d Emoji: Update Twemoji to 2.5.0. 
* Twemoji 2.3.0 has a rendering issue in Safari, emoji can sometimes be followed by U+FEOF (which is just a flag meaning "render the preceding character as emoji).
* Twemoji wasn't catching this character correctly, and Safari rendered it incorrectly.
* Twemoji 2.5.0 resolves this issue.

Merge of [41250] to the 4.8 branch.

Props peterwilsoncc.
Fixes #41584.
Built from https://develop.svn.wordpress.org/branches/4.8@41394


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41227 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 08:04:33 +00:00
Dominik Schilling
b7d54dd918 Widgets: Prevent visual Text widget from decoding encoded HTML. 
Also apply `the_editor_content` filters on widget `text` with `format_for_editor()` as is done for the post editor.

Merge of [41260] to the 4.8 branch.

Amends [40631].
Props westonruter, azaozz.
See #35243.
Fixes #41596.
Built from https://develop.svn.wordpress.org/branches/4.8@41392


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41225 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 07:44:32 +00:00
Dominik Schilling
d82e0f5c86 Widgets: Suppress PHP warnings raised by DOMDocument::loadHTML() in WP_Widget_Text::is_legacy_instance() which could appear in Text widget forms. 
Also explicitly use HTML5 doctype when parsing Text widget contents in legacy mode detection.

Merge of [41251] to the 4.8 branch.

Amends [41050].
See #40951.
Fixes #41622.
Built from https://develop.svn.wordpress.org/branches/4.8@41391


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41224 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-19 07:39:33 +00:00
Dominik Schilling
93ba8ea6fb I18N: Allow numbers in locales during installation. 
The current regex was a bit to strict for locales like `pt_PT_ao90` which were already supported by `wp_get_installed_translations()`.

Merge of [41335] to the 4.8 branch.

See #41794.
Built from https://develop.svn.wordpress.org/branches/4.8@41336


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41167 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-09-04 19:38:33 +00:00
John Blackbourn
795af804ba Build/Test tools: Use the latest in the 4.x and 6.x branches of PHPUnit when running tests on Travis for the 4.8 branch. 
See #41472

Merges [41294] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@41295


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41135 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-22 17:10:35 +00:00
Weston Ruter
a0153f27c8 Post-4.8.1 version bump for 4.8 branch. 
Built from https://develop.svn.wordpress.org/branches/4.8@41212


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41052 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-02 21:38:34 +00:00
Weston Ruter
e10af224e2 Bump 4.8 branch to version 4.8.1. 
Built from https://develop.svn.wordpress.org/branches/4.8@41210


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41050 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-02 20:58:32 +00:00
Weston Ruter
a9897ef218 Post-WordPress 4.8.1 RC2 version bump. 
Built from https://develop.svn.wordpress.org/branches/4.8@41203


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41043 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-01 22:28:31 +00:00
Weston Ruter
546dcf7fed WordPress 4.8.1 RC2. 
Built from https://develop.svn.wordpress.org/branches/4.8@41202


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41042 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-01 22:21:32 +00:00
Peter Westwood
30f39b93be Emoji: Revert [41069] as the new Regular Expressions performance on balance significantly worse that the old ones. 
See #35293 props @jmdodd

Built from https://develop.svn.wordpress.org/branches/4.8@41201


git-svn-id: http://core.svn.wordpress.org/branches/4.8@41041 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-08-01 21:16:34 +00:00
Gary Pendergast
fee9368d46 REST API: Update the fixture data for wp-api.js tests. 
[41139] changed how the REST API URL is generated, but included an incorrect version of `wp-api-generated.js`.

This updates the generator to create the correct `wp-api-generated.js`, and updates ``wp-api-generated.js`.

Repeat of [41154], in the 4.8 branch.
Fixes #40886.


Built from https://develop.svn.wordpress.org/branches/4.8@41155


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40995 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-26 04:06:36 +00:00
Weston Ruter
b9d2c50edd Post-WordPress 4.8.1 RC 1 version bump. 
Built from https://develop.svn.wordpress.org/branches/4.8@41144


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40984 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-25 03:20:36 +00:00
Weston Ruter
be70069a0a WordPress 4.8.1 RC1. 
Built from https://develop.svn.wordpress.org/branches/4.8@41143


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40983 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-25 03:00:36 +00:00
Weston Ruter
7eccdc89e7 TinyMCE: Fix styling of selected state for linked images containing captions. 
Merges [41141] onto 4.8 branch.
Props azaozz.
Fixes #41408 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41142


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40982 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-25 02:21:34 +00:00
Gary Pendergast
7cdc8af10c REST API: Always add index.php to the REST URL when pretty permalinks are disabled. 
When pretty permalinks are disabled, the web server will internally forward requests to `index.php`. Unfortunately, nginx only forwards HTTP/1.0 methods: `PUT`, `PATCH`, and `DELETE` methods will return a 405 error.

To work around this nginx behaviour, including `index.php` in the REST URL skips the internal redirect.

Merges 41139 to the 4.8 branch.
Fixes #40886.


Built from https://develop.svn.wordpress.org/branches/4.8@41140


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40980 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-25 00:54:36 +00:00
Weston Ruter
cbfc476b43 Customize: Update Text widget starter content to utilize visual mode. 
Merges [41136] onto 4.8 branch.
Amends [38991].
Props dlh, westonruter.
See #35243, #38114.
Fixes #41410 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41137


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40977 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-24 23:27:36 +00:00
Weston Ruter
a17fcecfda Widgets: Improve notice in Text widget's legacy mode. 
Retains 'new' in notice on 4.8 branch, in contrast with [41134]. Also fixes phpunit test which broke in [41132].

Merges [41134] onto 4.8 branch.
Props melchoyce, westonruter.
See #41394, #35243, #40951, #40907.
Fixes #41386 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41135


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40975 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-24 23:15:34 +00:00
Weston Ruter
fd423f720e Widgets: Rename Text widget's legacy mode to non-visual mode, restore boolean filter prop, and improve compatibility for widget_text filters applied in Custom HTML widget. 
Merges [41132] onto 4.8 branch.
Amends [41050].
Props westonruter, obenland, timmydcrawford for testing.
See #35243, #40951, #40907.
Fixes #41394 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41133


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40973 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-24 22:54:34 +00:00
Weston Ruter
74314b2ddb Bump package.json version to 4.8.1 to fix Tests_Basic::test_package_json failure 
Built from https://develop.svn.wordpress.org/branches/4.8@41130


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40970 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-24 22:30:34 +00:00
Weston Ruter
6be40b7a13 WP-API JS Client: Interpret Settings resource as a model. 
The REST API does not provide a mechanism to distinguish between endpoints representing models and those representing collections, so the Backbone client must make that distinction internally. Previously wp-api.js accounted for `/users/me`, but not for `/settings`. This patch updates the logic so that `/settings` is properly registered as a Backbone model.

When calling `wp.api.init`, additional endpoints can be specified to be models using the `modelEndpoints` argument.

Merges [41112] onto 4.8 branch.
Props adamsilverstein, kadamwhite.
Fixes #41056 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41126


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40966 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-24 20:46:38 +00:00
Weston Ruter
96da852a31 Widgets: Improve theme styling compatibility for Custom HTML widget by adding content container with textwidget class and widget_text class on widget wrapper element. 
The same styling from the Text widget should apply to the Custom HTML widget since users are expected to copy HTML from the (legacy) Text widget into the latter.

Merges [41115] and partially [41116] onto 4.8 branch.
Amends [40893].
See #40907.
Fixes #41392 for 4.8.1.

Built from https://develop.svn.wordpress.org/branches/4.8@41117


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40957 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-21 21:17:37 +00:00
Weston Ruter
6ce522414f Post-WordPress 4.8.1 Beta 1 version bump 
Built from https://develop.svn.wordpress.org/branches/4.8@41098


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40938 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-20 00:52:36 +00:00
Weston Ruter
fc475c2d71 WordPress 4.8.1 Beta 1 
Built from https://develop.svn.wordpress.org/branches/4.8@41097


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40937 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-07-20 00:09:35 +00:00
Ella Iseulde Van Dorpe
b15040f1b2 Bump version for WordPress 4.8 
Built from https://develop.svn.wordpress.org/branches/4.8@40888


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40738 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-08 14:27:35 +00:00
Aaron Jorbin
408dae699e About: Swap out images and videos for CDN versions, and add responsive images. 
Backports [40881] from trunk to 4.8.

Props: melchoyce, joemcgill, pento.

See #40721.


Built from https://develop.svn.wordpress.org/branches/4.8@40887


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40737 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-08 05:25:33 +00:00
Aaron Jorbin
0d820bf585 About Page: update CSS with prefixes 
Backports [40885] from trunk to 4.8.

Seconded by melchoyce.

See #40721.

Built from https://develop.svn.wordpress.org/branches/4.8@40886


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40736 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-08 04:53:32 +00:00
Aaron Jorbin
9c577e4d04 Bundled Themes - Bump themes in preparation for 4.8 
Backports [40883] from trunk to 4.8

Change version numbers in stylesheets, fix typo in Twenty Fourteen readme and update copyright dates for themes. Twentysixteen wasn't updated this cycle.

See #40745 for changes that helped push this along.
Fixes #40905.
Props davidakennedy, mrahmadawais, maedahbatool.


Built from https://develop.svn.wordpress.org/branches/4.8@40884


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40734 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-08 04:43:33 +00:00
Dominik Schilling
439478f087 Upgrade: Add wp-includes/js/tinymce/plugins/wpembed to $_old_files. 
Merge of [40879] to the 4.8 branch.

See #39513, #40942.
Built from https://develop.svn.wordpress.org/branches/4.8@40880


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40730 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-07 21:36:33 +00:00
Gary Pendergast
882ab89172 Build: Add npm-shrinkwrap.json 
`fsevent` has been manually removed, so it doesn't kill the build server.

Props netweb.
Fixes #40928.


Built from https://develop.svn.wordpress.org/branches/4.8@40878


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40728 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-07 00:18:37 +00:00
John Blackbourn
97dcac413f Build/Test Tools: Fix PHP 5.2 compatibility for grandchild methods which expect exceptions to be raised. 
This is due to `is_callable( 'parent::setExpectedException' )` not being supported on PHP 5.2 when the method being checked only exists on the grandparent class.

See #39822

Merges [40872] and [40873] to the 4.8 branch.

Built from https://develop.svn.wordpress.org/branches/4.8@40875


git-svn-id: http://core.svn.wordpress.org/branches/4.8@40725 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-05 10:41:22 +00:00
Ella Iseulde Van Dorpe
84d9597ce4 Bump version after RC2 
Built from https://develop.svn.wordpress.org/trunk@40868


git-svn-id: http://core.svn.wordpress.org/trunk@40718 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 21:22:40 +00:00
Ella Iseulde Van Dorpe
c44ba7cfa9 Bump version for WordPress 4.8 RC2 
Built from https://develop.svn.wordpress.org/trunk@40867


git-svn-id: http://core.svn.wordpress.org/trunk@40717 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 20:40:45 +00:00
Dominik Schilling
55497ccfd1 I18N: Improve translator comments for strings in the community events widget. 
Props dimadin, iandunn.
Fixes #40865.
Built from https://develop.svn.wordpress.org/trunk@40866


git-svn-id: http://core.svn.wordpress.org/trunk@40716 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 09:49:42 +00:00
Dominik Schilling
7737e48a21 About: Sync tagline from about page with credits and freedoms. 
See #40721.
Built from https://develop.svn.wordpress.org/trunk@40865


git-svn-id: http://core.svn.wordpress.org/trunk@40715 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 09:24:43 +00:00
Dominik Schilling
0e82284d87 Multisite: Revert indentation of the sample page content added in [40296]. 
Props swissspidy.
Fixes #40895.
Built from https://develop.svn.wordpress.org/trunk@40864


git-svn-id: http://core.svn.wordpress.org/trunk@40714 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 09:16:40 +00:00
Mel Choyce
d69e67581f About: Finalize strings. 
Props: bridgetwillard, jenblogs4u, michelleweber, flixos90, johnbillion, francina, voldemortensen, melchoyce.
See #40721.

Built from https://develop.svn.wordpress.org/trunk@40863


git-svn-id: http://core.svn.wordpress.org/trunk@40713 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-06-01 03:14:41 +00:00
Andrew Ozz
56101fc06a TinyMCE: Force urlencoding of commas in URLs added by plugins to prevent warnings about missing stylesheets. 
Fixes #40893.
Built from https://develop.svn.wordpress.org/trunk@40862


git-svn-id: http://core.svn.wordpress.org/trunk@40712 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-31 22:04:43 +00:00
Mel Choyce
69a7ab7d37 About: Add Link Boundary video and update poster image. 
See #40721.

Built from https://develop.svn.wordpress.org/trunk@40861


git-svn-id: http://core.svn.wordpress.org/trunk@40711 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-31 18:02:44 +00:00
Andrew Ozz
9799bf93f5 TinyMCE: update to 4.6.3. Fixes few more edge cases with link boundaries. Changelog: https://www.tinymce.com/docs/changelog/#version463-may302017 
Fixes #40890.
Built from https://develop.svn.wordpress.org/trunk@40856


git-svn-id: http://core.svn.wordpress.org/trunk@40707 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-30 23:35:41 +00:00
John Blackbourn
95cf5aa7c9 Build/Test Tools: Add a missing class to the PHPUnit 6 back compat. 
See #39822

Built from https://develop.svn.wordpress.org/trunk@40853


git-svn-id: http://core.svn.wordpress.org/trunk@40704 1a063a9b-81f0-0310-95a4-ce76da25c4cd
 2017-05-30 22:07:41 +00:00