Release 2.8.0

Added

• New Gitea VCS Plugin, thanks to Pasquale Pizzuti #375

Full Changelog: v2.7.0...v2.8.0

Release 2.7.0

Changed

• Minimum MantisBT version increased to 2.26.0 #372
• Use print_form_button() to display "Detach" buttons in view page #372integration/issues/372)

Fixed

• PHP 8.2: Creation of dynamic property is deprecated #409
• Page redirections trigger a deprecation warning since MantisBT 2.26.0 #411

Release 2.6.0

Changed

• Use constants instead of hardcoded strings for SourceFile actions #400
• Only display the Diff/File buttons when needed #401
• Code cleanup

Fixed

• Allow file rename action for GitHub and Bitbucket #374
• Fix deprecated usage of ${} string interpolation #396
• Fix errors in language strings #397
• Make sure status colors CSS is available #398
• Fix Details/Diff buttons' position in Changesets list #402
• bitbucket: end of support for API authentication with account password #399

Release 2.5.2

Fixed

• github: PHP 8.1 compatibility #391

Release 2.5.1

Fixed

• svn: outdated dependencies due to incorrect SOURCESVN_VERSION_REQUIRED #388

Release 2.5.0

Added

• New Azure DevOps Service VCS Plugin, thanks to Stefan Gross #340
• GitLab: Pull Request linking #353
• Allow disabling file stats on Index page #358

Changed

• Minimum MantisBT version increased to 2.24.0 #350 #337 #339
• Only show "Attach issues" column if needed #355
• Move register() function to MantisSourcePlugin class #369
• Remove custom plugin_lang_get_defaulted() function #339
• GitLab: improve error handling when setting repoid #352
• Bitbucket: use Git base class #359
• GitHub: Use https links #357
• GitHub: use X-Hub-Signature-Sha-256 header #361
• GitHub: stop processing if payload contains no commits #367
• Code cleanup

Fixed

• Store Changeset timestamp as UTC and display in user's timezone #317
• Return HTTP/400 when checkin.php input is invalid #365
• Fix missing language strings warnings #364
• Replace deprecated html_get_status_css_class() function #350
• Localization does not fall back to English when translation is unavailable #337
• Bitbucket: fix changeset retrieval for branches with '/' #376
• Bitbucket: fix incorrect branch name validation #381
• Cgit: fix column 'revision' cannot be null when importing repository #149
• Cgit: fix error with libravatar plugin #386
• Cgit: fix error when parsing committer or author without email #387
• GitHub: prevent creating Webhook if secret changed #357
• GitHub: Only process GitHub repositories in precommit() #366
• GitHub: Gracefully handle ping events from webhook #382
• GitHub: Fix undefined array key warning #383
• Gitlab: abort precommit() on invalid payload #370
• Gitlab: System warnings when the GitLab Root is not valid #373

Security

• Hide sensitive information in manage repo pages #329

Release 2.4.1

Changed

• Confusing documentation for GitHub Webhook Secret #345

Fixed

• GitLab: Fix system warning when committing #346
• Unparenthesized a ? b : c ? d : e not supported (PHP8) #347
• Changeset reference not processed at beginning of bugnote #351
• On List page, "Attach issues" is shown for users with read-only access #354

Security

• Private issue information disclosure (CVE-2020-36192), thanks to d3vpoo1 #344
• Only attach Issues to changeset if authorized (CVE-2020-36192) #344
• Unprivileged user can detach private Issue from Changeset #356

Release 2.4.0

Added

• Support for VisualSVN Server, thanks to David Hopkins, FBR Ltd #313
• Default primary branch can be configured for git-based repositories #308

Changed

• GitHub: use GuzzleHttp instead of cURL #336
• SVN: improve documentation #311

Fixed

• GitHub: allow processing more than 30 branches #327
• GitHub: authentication using query parameters is deprecated #335
• SVN: Workaround to avoid data import failures due to timeout reading proc_open() buffers #333

Release 2.3.1

Includes all changes and fixes from 1.6.2.

Security

• Fix XSS in Delete Repository page (CVE request pending) #338

Release 1.6.2

Security

• Fix XSS in Delete Repository page (CVE request pending) #338