The |json_encode Twig filter now calls craft\helpers\Json::encode() internally, improving error handling. (#12919)
craft\helpers\Json::encode() no longer sets the JSON_UNESCAPED_SLASHES flag by default.
Fixed a JavaScript error that occurred when resolving an asset move conflict. (#12920)
Fixed a bug where volume subfolders were being shown when viewing soft-deleted assets. (#12927)
Fixed a bug where structure data was getting deleted when running garbage collection on PostgreSQL. (#12925)
3.8.3 - 2023-03-16
Customize Sources modals no longer hide when the Esc key is pressed on the surrounding area is clicked on. (#12895)
Added craft\helpers\FileHelper::uniqueName().
Fixed an error that occurred when uploading an asset with a filename over 250 characters long. (#12889)
Fixed an error that could occur when preparing licensing alerts, if any licenses were invalid. (#12899)
Fixed a bug where it wasn’t possible to drag nested Neo blocks. (#12896)
Fixed a bug where fields with reduced widths in Matrix blocks were becoming full-width while dragged. (#12909)
Fixed a bug where multi-edition plugins weren’t showing their edition labels within the Plugin Store cart. (#12910)
3.8.2 - 2023-03-14
Fixed a bug where it wasn’t always possible to access entry or category edit pages if the slugWordSeparator config setting was set to /. (#12871)
Fixed a bug where craft\helpers\Html::parseTagAttribute() wasn’t decoding attribute values, which could lead to double-encoded attributes, e.g. when using the |attr filter. (#12887)
Fixed XSS vulnerabilities.
Fixed an SSRF vulnerability.
3.8.1 - 2023-03-09
Fixed a bug where it wasn’t possible to select subfolders on the Assets index page. (#12802)
Fixed a bug where element index search inputs were losing focus when the element listing was updated. (#12846)
Fixed a bug where the database driver was being referenced as “MySQL” when using MariaDB. (#12827)
Fixed a bug where users weren’t able to select assets within Assets fields, if they didn’t have full permissions for the volume. (#12851)
Fixed a bug where the Assets index page’s URL would get updated incorrectly when renaming a subfolder.
Added craft\db\Connection::getDriverLabel().
3.8.0 - 2023-03-08
Content Management
Volume subfolders are now displayed within the element listing pane on asset indexes, rather than as nested sources in the sidebar. (#12558, #9171, #5809)
Asset indexes now display the current subfolder path above the element listing. (#12558)
Assets and folders can now be drag-and-dropped simultaneously. (#12792)
Reduced the likelihood of accidentally triggering an asset drag operation. (#12792)
Reduced the likelihood of accidentally dropping dragged assets/folders on an unintended target. (#12792)
It’s now possible to move volume folders and assets to a new location via a new “Move…” bulk element action, rather than via drag-and-drop interactions. (#12558)
It’s now possible to sort asset indexes by image width and height. (#12653)
Administration
Most licensing isuses are now consolidated into a single control panel alert, with a button to resolve them all with a single purchase on Craft Console. (#12768)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Bynder/gathercontent-craft-integration/network/alerts).
dependabot[bot]
commented
1 year ago
Bumps craftcms/cms from 3.5.17.1 to 3.8.4.
Changelog
Sourced from craftcms/cms's changelog.
... (truncated)
Commits
06a4916Finish 3.8.496c56f1Fixed #12925e39861bFixed #12927e2f7e7bStop setting JSON_UNESCAPED_SLASHES by defaultf910b80Useflex-startafe2dd8Fixed #129209d87f1eCall Json::encode() from the |json_encode filter44079bdFinish 3.8.381fc7ccFixed #1291009d59c4composer updateDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Bynder/gathercontent-craft-integration/network/alerts).