The Updates utility and Plugin Store now identify abandoned plugins.
URLs within plain text email bodies are no longer wrapped with < and > characters, fixing a bug where they could be removed by email providers for looking like HTML tags.
The relatedToAssets, relatedToCategories, relatedToEntries, relatedToTags, and relatedToUsers GraphQL arguments now accept a list of multiple criteria sets. (#7528)
Adjusted GraphQL complexity values for relational fields.
craft\helpers\UrlHelper::getSchemeForTokenizedUrl() and urlWithToken() now have a $cp argument, indicating whether the method call is for a control panel URL.
Updated Composer to 2.0.10.
Removed
Removed all draft arguments for assets, categories, global sets, Matrix blocks, tags, and users when querying via the GraphQL API.
Removed the status, archived and trashed arguments for global sets when querying via the GraphQL API.
Removed the status argument for assets when querying via the GraphQL API.
Fixed
Fixed a JavaScript error that occurred after saving an entry from the Quick Post widget, preventing the widget from being used to create a second entry. (#7582)
Fixed a bug where it was possible to access the homepage entry from /__home__. (#7585)
Fixed a bug where URL fields weren’t getting validated properly if their “Allowed URL Types” setting was set to only “Telephone” or “Email”. (#7588)
Fixed a bug where Craft would set plugins’ base paths to the file system root directory, if they were configured with an invalid basePath in vendor/craftcms/plugins.php.
Fixed a bug where user verification and password-reset URLs would use https in some cases where they shouldn’t. (#7581)
Fixed a bug where it wasn’t possible to override the User-Agent header sent by Guzzle from config/guzzle.php. (#7597)
Fixed a bug where non-admin users weren’t able to replace files from the Edit Asset page, unless they had the “Remove files and folders” permission. (#7601)
Fixed a bug where links within info HUDs weren’t opening in a new window.
Security
It’s no longer possible to save a Local volume with the File System Path setting set to a system directory (e.g. the templates/ or vendor/ folders).
3.6.6 - 2021-02-15
Added
Added the successMessageInput() and failMessageInput() Twig functions. (#7561)
Added the prefixGqlRootTypes config setting, which determines whether the gqlTypePrefix config setting should impact query, mutation, and subscription types. (#7552)
The Entries index page no longer shows unpublished drafts that have never been updated with content.
It’s now possible to delete entries from the “All entries” source. (#7545)
Garbage collection now deletes unpublished drafts that were never updated with content, per the (no longer deprecated) purgeUnsavedDraftsDuration config setting.
Garbage collection now deletes orphaned rows in the drafts and revisions tables.
Garbage collection now deletes incomplete element data, for built-in element types. (#6434)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/netliferesearch/craft-starter/network/alerts).
dependabot[bot]
commented
3 years ago
Bumps craftcms/cms from 3.5.7 to 3.6.7.
Changelog
Sourced from craftcms/cms's changelog.
... (truncated)
Commits
5ef4562Merge branch 'release/3.6.7' into main478100aChangelog tweak9761f0eMerge tag '3.6.7' into develop3570042Merge branch 'release/3.6.7' into maine9528b2Finish 3.6.7f27e332Disable the buy button for disabled pluginsb06379eOpen info HUD links in a new window9e3042fMerge branch 'develop' into release/3.6.79b45f17Composer 2.0.10cb4367cBump vue cli service to fix highlight.js dependency closes #7176Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/netliferesearch/craft-starter/network/alerts).