Artalk
Artalk copied to clipboard
ArtalkJS
🌌 自托管评论系统 | Your Self-hosted Comment System.
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.29.0 to 0.36.0. Commits 85d1d54 go.mod: update golang.org/x dependencies cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts fe7f039 publicsuffix: spruce up code gen and...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Hi, I've tested Artalk with a Grav CMS installation, using JSComments as a bridge/framework. JSComments is a Grav CMS plugin that simplifies the connection to several commenting systems (such as...
Bumps [vue-i18n](https://github.com/intlify/vue-i18n/tree/HEAD/packages/vue-i18n) from 10.0.4 to 10.0.6. Release notes Sourced from vue-i18n's releases. v10.0.6 What's Changed 🔒 Security Fixes fix: prototype pollution in handleFlatJson, about details see https://github.com/intlify/vue-i18n/security/advisories/GHSA-p2ph-7g93-hw3m Full Changelog: https://github.com/intlify/vue-i18n/compare/v10.0.5...v10.0.6...
Bumps the deps group with 16 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/adrg/xdg](https://github.com/adrg/xdg) | `0.5.0` |...
Bumps the dev-deps group with 60 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@eslint/compat](https://github.com/eslint/rewrite) | `1.2.1` |...
Bumps the deps group with 2 updates in the / directory: golang and alpine. Updates `golang` from 1.22.7-alpine3.20 to 1.24.0-alpine3.20 Updates `alpine` from 3.20 to 3.21 Dependabot will resolve any...
Bumps the prod-deps group with 4 updates in the / directory: [marked](https://github.com/markedjs/marked), [@typescript-eslint/utils](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/utils), [katex](https://github.com/KaTeX/KaTeX) and [@microsoft/api-extractor](https://github.com/microsoft/rushstack/tree/HEAD/apps/api-extractor). Updates `marked` from 14.1.3 to 15.0.6 Release notes Sourced from marked's releases. v15.0.6 15.0.6...
Bumps the deps group with 3 updates in the /.github/workflows directory: [crazy-max/ghaction-setup-docker](https://github.com/crazy-max/ghaction-setup-docker), [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) and [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `crazy-max/ghaction-setup-docker` from 3 to 4 Release notes Sourced from crazy-max/ghaction-setup-docker's releases. v4.0.0 Repo moved...
Bumps [solid-js](https://github.com/solidjs/solid) from 1.9.2 to 1.9.4. Commits 9316baf v1.9.4 7f9cd3d lazy image, tagged template detection, security fixes dca942a formatting b93956f fix escaping in resolution done outside of DOM Expressions 4d824b0...
版本号:2.9.1 Docker 部署 问题如标题,不是很确定这算不算一个问题,不影响功能。 两次导出的行为不一致,而且被转义之后,在某些实现不太鲁棒的 json 编辑器可能会认为 json 不合法。 复现方式: 1. 构造一个站点,然后在页面按正常方式增加一些评论,评论中要带图片,且要以图片开头 2. 导出评论数据 artrans 文件,这个时候得到的文件内容 json 是合法的 没有被转义 3. 将此文件随便改点内容(我自己使用的路径,估计不执行也不会影响复现),在后台 **导入** 4. 在管理后台删除随便几条评论(我自己使用的路径,估计不执行也不会影响复现),在后台 **导出** 5. 此时得到的 artrans 文件会发现 <...
