Fabien O'Carroll b3f66c6c91 Blacklisted private member settings for HTTP calls ... no-issue Previously it was possible to fetch the private key and session secret for the members service, this is a security issue as we do not have specific permissions for individual settings yet, and could have possibly exposed secrets to admin integrations.		2019-04-16 14:39:01 +02:00
..
adapters	Removed superagent dependency (#10535)	2019-03-04 15:59:38 +08:00
api	Blacklisted private member settings for HTTP calls	2019-04-16 14:39:01 +02:00
apps	🐛 Changed subscribed page title from hardcoded to site title (#10589)	2019-03-11 14:07:37 +08:00
config	Removed support for apps from getContentPath	2019-04-16 11:05:33 +02:00
data	Updated import to never use {active,instsalled}_apps	2019-04-16 11:19:17 +02:00
helpers	Removed use of filters module	2019-04-16 11:05:33 +02:00
lib	Exposed new logging config options (#10678)	2019-04-16 16:34:15 +05:30
models	🐛 Disallowed locked/suspended users from being made owner via the API (#10647)	2019-04-16 10:30:29 +01:00
public
services	Removed use of filters module	2019-04-16 11:05:33 +02:00
translations	🐛 Disallowed locked/suspended users from being made owner via the API (#10647)	2019-04-16 10:30:29 +01:00
views	✨ Aliased {{@blog}} as {{@site}} in the theme API	2019-01-04 12:17:32 +00:00
web	Added Admin API for deleting members (#10673)	2019-04-13 10:38:56 +05:30
analytics-events.js	Added event to integrations when created (#10588)	2019-03-11 15:28:17 +01:00
ghost-server.js
index.js	De-aliased api versions in codebase (#10375)	2019-01-14 19:49:55 +01:00
overrides.js
update-check.js	Removed apps from update-check	2019-04-16 11:05:33 +02:00