onli

That's good, so the navigation in the backend is not broken :) I remember 15 minutes as the limit here. Is this something to investigate as something necessary to improve,...

I hope it works. I'm not keen on working on the http referrer protection for the moment. Let's re-open this or tackle it in a separate issue if this indeed...

Hi @garvinhicking, what exactly is the dangerous scenario here? If I open `bundled-libs/bin/fetch-mf2` for example it is just output as text in the browser. Is the scenario something like "attacker...

.php files would be blockable by the .htaccess :) At least for direct browser access. But I don't understand yet how this is different for these bundled libs than with...

@garvinhicking Researching this a bit more, I found no reliable solution for avoiding these files via composer (completely possible I missed something). Instead I added a new `.htaccess` to bundled-libs,...

I grepped through additional_plugins/ for 'bundled-libs' and saw no code that not very much looked like a require, or the path creation for one. I think we are good on...

Probably something to catch around https://github.com/s9y/Serendipity/blob/71f2c2dfaed766ed4a33096aed3524794859c0d3/include/genpage.inc.php#L61

This should be fixed now in current master, thanks to https://github.com/s9y/Serendipity/pull/846 by @GuillaumeValadas Thanks for the report @hannob ! I'll close here already, we can re-open if the issue remains...

Great :) > Not sure if PHP

Hi :) I did not see the progress here, sorry. Thank you for changing it to `version_compare`, judging from the code that part looks good to me now! But now...