b2f86751bb
- Update to 5.15.1 * Batch automatic translation can now be manually triggered at project language, category or component level * Added ability to completely disable the admin contact form by setting CONTACT_FORM to "disabled" * Added new Ollama machinery tool for local Ollama AI model integration * XLIFF 2.0, Nextcloud Apps JSON files, JavaScript Resource Files (RESJSON), and TOML are now supported file formats * Added disk usage overview in Performance report * Compatibility with Git SHA256 repositories * Improper invitation validation upon accepting (CVE 2025-64725 / GHSA-m6hq-f4w9-qrjj) * Server-Side Request Forgery while cloning repository (CVE 2025-66407 / GHSA-hfpv-mc5v-p9mm) * Over‑permissive webhook endpoint enabling mass repository updates plus component enumeration (CVE 2025-67492 / GHSA-pj86-258h-qrvf) * Notification settings disclosure via Weblate API (CVE 2025-67715 / GHSA-3pmh-24wp-xpf4) * Git config file overwrite remote code execution (CVE 2025-68398 / GHSA-8vcg-cfxj-p5m3) * Arbitrary file read via symbolic links (CVE 2025-68279 / GHSA-g925-f788-4jh7) * Python 3.12 or newer is now required * GLib 2.80 or newer is now required - Drop merged patches: * CVE-2025-68398_2.patch * CVE-2025-68398_1.patch * site-url.patch
Markéta Machová2026-01-14 08:48:48 +00:00
7564bf1b7c
Accepting request 1324753 from M17N:l10n.opensuse.org
Ana Guerrero2025-12-30 11:01:48 +00:00
a26432bb8b
- Add upstream patches CVE-2025-68398_1.patch and CVE-2025-68398_2.patch to fix bsc#1255374
Markéta Machová2025-12-30 08:27:09 +00:00
6f4e69d910
Accepting request 1317301 from M17N:l10n.opensuse.org
Ana Guerrero2025-11-12 20:15:04 +00:00
2f6bfb1138
- Update to 5.14.3 (CVE-2025-64326, bsc#1253125) * Flag updated translations from repository as “Needs editing” is now available as an add-on. * DELETE /api/projects/(string:project)/labels/(int:label_id)/. * Added multivalue CSV in Downloading translations for multivalue formats. * New global permissions have been added to control viewing teams, users and roles without edit rights, see List of privileges. * Last changed lookup in Searching for strings. * Do not show glossary matches component setting. * Notification hooks improvements. * Improved activity logging for Add missing languages add-on. * Admins can configure Expiring user accounts. * File format parameters can now be configured via the Weblate’s REST API. * Rate limiting of notification e-mails, configurable by RATELIMIT_NOTIFICATION_LIMITS. * Team administrators can no longer edit teams besides membership. * Importing some strings from XLIFF. * Removed Akismet spam protection integration as it was no longer effective and used an unmaintained Python library. * String context are now tracked in changes histoy and displayed when available * Avoid storing inviting user information in the invited user audit log - Add upstream site-url.patch to fix one failing test
Markéta Machová2025-11-12 12:02:41 +00:00
482730a2c0
- Update to 5.13.3 (bsc#1250803, CVE-2025-61587) * Enhanced Translation Memory management with configurable status control. * Added cleanup_memory management command to remove obsolete translation memory entries. * Some flags are now added to a string by default, based on locations. * Added Commit Policy setting to control which translations are included when committing changes. * New management command list_file_format_params to list all available file format parameters. * Searching for strings supports labels_count:NUMBER lookup. * Avatars for API and internal accounts. * Migration towards Bootstrap 5 has started, selected views now use Bootstrap 5. * OpenAI compatibility with latest models. * Smarter retries of unwritable pending changes. * Failed Two-factor authentication is visible in Audit log. * LibreTranslate compatibility with LibreTranslate 1.7.0. * Shorten session expiry while in Two-factor authentication. * Removed support for no longer working IBM Watson Language Translator. * Error reporting upon validation of the file upload method. * Text on the registration page informs about possible use of user’s data in more detail. * Fixed an open redirect when Weblate is configured with Anubis and REDIRECT_DOMAINS is not set. - Drop weblate-%{version}.tar.gz.sigstore.json, we don't verify it anyway
Markéta Machová2025-10-06 08:43:32 +00:00
dbb165039e
Accepting request 1286939 from M17N:l10n.opensuse.org
Ana Guerrero2025-06-20 16:43:11 +00:00
abde8a4fd2
- Update to 5.12.1 (bsc#1244678, bsc#1244676) * Exposure of personal IP address via e-mail (CVE 2025-49134). * Lack of rate limiting when verifying second factor (CVE 2025-47951). * Added POST /api/units/(int:id)/comments/ to create a new comment for the given translation unit. * Customize JSON output now has a configurable compact mode. * Software Bill of Material is now being provided for Weblate. * Security and privacy documentation. * Slack Webhooks is now available as an add-on. * Unchanged translation is now skipped for Toki Pona. * Searching for strings supports has:location lookup. * Unicode whitespaces are now considered as problematic characters for Glossary, see Prohibited initial character.
Markéta Machová2025-06-19 11:53:14 +00:00
dc90d111d1
Accepting request 1274355 from M17N:l10n.opensuse.org
Ana Guerrero2025-05-05 21:39:57 +00:00
1c46a571be
- Update to 5.11.3 * Inconsistent reStructuredText references check to validate reStructuredText references. * reStructuredText syntax error check to validate reStructuredText syntax. * API can now produce CSV output. * New management command import_projectbackup to import Project level backups. * Improved error handling in Automatic suggestions. * Synchronize on shared repository now operates on all its components. * Reused translation check gracefully handles languages which are not case sensitive. * Running tests using Django test executor is no longer supported, see Weblate testsuite and continuous integration. * Weblate has switched to a different library for zxcvbn integration, as the old one is no longer maintained, see Password authentication. * Weblate uses proactive authentication with Git 2.46.0 and newer when HTTP credentials are supplied. * Webhook is now available as an add-on. * Automattic components formatting check to validate placeholders in Automattic components. * Inherited flags can now be discarded, see Customizing behavior using flags. * Security: Cloning a component could leak component configuration into the URL (CVE-2025-32021). * Fixed captcha verification when some time zone was configured. * Project level backups now include teams and categories. * Registration now disallows disposable e-mail domains. * Glossary performance in zen mode and automatic suggestions. * Django 5.2 compatibility.
Markéta Machová2025-05-05 07:38:23 +00:00
ec50d20777
Accepting request 1235965 from M17N:l10n.opensuse.org
Ana Guerrero2025-01-14 15:22:07 +00:00
414a01be93
- Update to 5.9.2 * Added Key filter in the component. * Searching now supports filtering by object path and Fuzzy values for DATETIME fields. * Merge requests credentials can now be passed in the repository URL, see Configuring version control credentials. * Azure OpenAI automatic suggestion service. * Bitbucket Cloud pull requests. * Weblate now requires Python 3.11 or newer. * Amazon Translate now requires the TranslateFullAccess permission. * Weblate’s REST API now has a preview OpenAPI specification. * Per-project Automatic suggestions can now be configured via the Project Weblate’s REST API. * Translation memory import now supports files with XLIFF, PO and CSV formats. * The registration CAPTCHA now includes proof-of-work mechanism ALTCHA. * Leading problematic characters in CSV are now checks for Glossary. * Logging to Graylog log management. * Rollbar integration no longer includes client-side error collection. * Weblate now requires Git 2.28 or newer. * WEB_WORKERS now configures number of threads instead of processes. - Docs were excluded from the release tarball, dropped from the package - Drop no-longer-needed use-old-html-theme.patch - Add upstream ttkit.patch to fix tests - Update to 5.7.2 * Many more changes, see https://docs.weblate.org/en/latest/changes.html * Two-factor authentication is now supported using Passkeys, WebAuthn, authentication apps (TOTP), and recovery codes. * Weblate now uses mistletoe instead of misaka as a Markdown renderer. * Two-factor authentication can be enforced at the team or project level. * Adding new strings can now create plural strings in the user interface. * OpenAI now supports custom models and URLs and offers rephrasing of existing strings. * Cyrtranslit automatic suggestion service. * Content security policy is now stricter what might block third-party customizations. * ENABLE_HTTPS is now required for WebAuthn support. If you cannot use HTTPS, please silence related check as described in ENABLE_HTTPS documentation. * Updated language names to better describe different scripts and Sintic languages. * Instead of redirecting, the sign-out now displays a page.
Markéta Machová2025-01-08 14:50:47 +00:00
1152983aa4
Accepting request 1194546 from home:bmwiedemann:branches:M17N:l10n.opensuse.org
Stanislav Brabec2024-08-19 19:20:44 +00:00
1127aac997
Accepting request 1188419 from M17N:l10n.opensuse.org
Ana Guerrero2024-07-19 13:27:03 +00:00
012c2b61ef
- Update to 5.6.2 (bsc#1227273, CVE-2024-39303) * Many more changes, see https://docs.weblate.org/en/latest/changes.html * Perl brace format quality check * Mobile Kotlin resources * Format.JS JSON file * Component discovery now reports skipped entries * File downloads now honor If-Modified-Since * Add-ons can be now installed project-wide and site-wide * API improvements * Added Systran automatic translation support * Docker container now validates user password strength by default * Translation component alerts are now refreshed when needed, not just daily * Notifications now include strings which need updating * Improved compatibility with password managers * Validation of Project level backups ZIP file upon restoring (CVE-2024-39303 / GHSA-jfgp-674x-6q4p). - Download tarballs from GitHub - Releases are signed by Sigstore instead of PGP * added weblate-%{version}.tar.gz.sigstore * dropped Weblate-%{version}.tar.xz.asc
Markéta Machová2024-07-18 06:46:00 +00:00
6605fec988
- Add opensuse use-old-html-theme.patch and upstream pyparsing.patch - Add one more hunk to skip-test_ocr.patch
Markéta Machová2023-07-20 11:40:10 +00:00
8ec2d85dbd
Accepting request 1099707 from home:mcalabkova:branches:devel:languages:python
Markéta Machová2023-07-20 11:32:45 +00:00
d199eb2130
- Update to 4.1.1: * Various fixes found after 4.1 release - Remove merged patch tests.patch
Tomáš Chvátal
2020-06-19 13:07:47 +00:00
421e6c4648
- Fix /etc/apache2 permissions to not conflict with others
Tomáš Chvátal
2020-06-18 13:10:16 +00:00
202ff7d352
- Add patch from upstream to fix test execution: * tests.patch
Tomáš Chvátal
2020-06-17 09:35:28 +00:00
029f3723ad
- Install the documentation in subpkg to make weblate bit smaller
Tomáš Chvátal
2020-06-16 14:20:44 +00:00
a042f79d95
- Do not hardcode optional requires - Verify signatures
Tomáš Chvátal
2020-06-16 14:03:18 +00:00
1adb168cb2
- Update to 4.1.0: * Added support for creating new translations with included country code. * Added support for seaching source strings with screenshot. * Extended information available in the stats insights. * Improved search editing on translate pages. * Improve handling of concurrent repository updates. * Include source language in project creation form. * Include changes count in credits. * Fixed UI language selection in some cases. * Allow to whitelist registration methods with registrations closed. * Improved lookup of related terms in glossary. * Improved translation memory matches. * Group same machinery results. * Add direct link to edit screenshot from translate page. * Improved removal confirmation dialog. * Include templates in ZIP download. * Add support for Markdown and notification configuration in announcements. * Extended details in check listings. * Added support for new file formats: :ref:laravel-php, :ref:html, :ref:odf, :ref:idml, :ref:winrc, :ref:ini, :ref:islu, :ref:gwt, :ref:go-i18n-json, :ref:arb. * Consistently use dismissed as state of dismissed checks. * Add support for configuring default addons to enable. * Fixed editor keyboard shortcut to dismiss checks. * Improved machine translation of strings with placeholders. * Show ghost translation for user languages to ease starting them. * Improved language code parsing. * Show translations in user language first in the list. * Renamed shapings to more generic name variants. * Added new quality checks: :ref:check-unnamed-format, :ref:check-long-untranslated, :ref:check-duplicate. * Reintroduced support for wiping translation memory. * Fixed option to ignore source checks.
Tomáš Chvátal
2020-06-16 12:12:35 +00:00
e464b8e5f9
- Add missing deps for documentation build
Tomáš Chvátal
2020-06-16 12:00:34 +00:00
95b05a1c20
- Update to 4.0.2: * Improved performance of translation stats. * Improved performance of changing labels. * Improved bulk edit performance. * Improved translation memory performance. * Fixed possible crash on component deletion. * Fixed displaying of translation changes in some corner cases. * Improved warning about too long celery queue. * Fixed possible false positives in the consistency check. * Fixed deadlock when changing linked component repository. * Included edit distance in changes listing and CSV and reports. * Avoid false positives of punctuation spacing check for Canadian French. * Fixed XLIFF export with placeholders. * Fixed false positive with zero width check. * Improved reporting of configuration errors. * Fixed bilingual source upload. * Automatically detect supported languages for DeepL machine translation. * Fixed progress bar display in some corner cases. * Fixed some checks triggering on non translated strings.
Tomáš Chvátal
2020-04-28 10:33:45 +00:00
a7a911b573
- Update to 4.0.1: * Weblate now requires Python 3.6 or newer. * Added management overview of component alerts. * Added component alert for broken repository browser URLs. * Improved sign in and registration pages. * Project access control and workflow configuration integrated to project settings. * Added check and highlighter for i18next interpolation and nesting. * Added check and highlighter for percent placeholders. * Display failing checks for suggestions. * Record source string changes in history. * Upgraded Microsoft Translator to version 3 API. * Reimplemented translation memory backend. * Added support for several is: lookups in :doc:user/search. * Allow to make :ref:check-same avoid internal blacklist. * Improved comments extraction from monolingual po files. * Renamed whiteboard messages to announcements. * Fixed occasional problems with registration mails. * Improved LINGUAS update addon to handle more syntax variants. * Fixed editing monolingual XLIFF source file. * Added support for exact matching in :doc:user/search. * Extended API to cover screenshots, users, groups, componentlists and extended creating projects. * Add support for source upload on bilingual translations. * Added support for intermediate language from developers. * Added support for source strings review. * Extended download options for platform wide translation memory.
Tomáš Chvátal
2020-04-17 07:17:16 +00:00
66ae9b92b1
- Drop selenium and chromedriver deps: * These are fragile and cause test failures if mismatch happens * We can live without doing those few depending tests
Tomáš Chvátal
2020-04-07 12:11:40 +00:00
081982932a
- Drop condition < 15.0
Tomáš Chvátal
2020-03-16 08:19:27 +00:00
b71bd4ad72
- Update to 3.11.3: * Fixed searching for fields with certain priority. * Fixed predefined query for recently added strings. * Fixed searching returning duplicate matches. * Fixed notifications rendering in Gmail. * Fixed reverting changes from the history. * Added links to events in digest notifications. * Fixed email for account removal confirmation. * Added support for Slack authentication in Docker container. * Avoid sending notifications for not subscribed languages. * Include Celery queues in performance overview. * Fixed documentation links for addons. * Reduced false negatives for unchanged translation check. * Raised bleach dependency to address CVE-2020-6802. * Fixed listing project level changes in history. * Fixed stats invalidation in some corner cases. * Fixed searching for certain string states. * Improved format string checks behavior on missing percent. * Fixed authentication using some third party providers.
Tomáš Chvátal
2020-03-16 08:18:37 +00:00
de55099deb
- Update to 3.11.2: * Fixed rendering of suggestions. * Fixed some strings wrongly reported as having none words. * Documented Celery setup changes. * Improved filename validation on component creation. * Fixed minimal versions of some dependecies. * Fixed adding groups with certain Django versions. * Fixed manual pushing to upstream repository. * Improved glossary matching. * Allow using VCS push URL during component creation via API. * Rendered width check now shows image with the render. * Fixed links in notifications e-mails. * Improved look of plaintext e-mails. * Display ignored checks and allow to make them active again. * Display nearby keys on monolingual translations. * Added support for groupping string shapings. * Recommend upgrade to new Weblate versions in the system checks. * Provide more detailed analysis for duplicate language alert. * Include more detailed license info on the project pages. * Automatically unshallow local copies if needed. * Fixed download of strings needing action. * New alert to warn about using the same filemask twice. * Improve XML placeables extraction. * The :setting:SINGLE_PROJECT can now enforce redirection to chosen project. * Added option to resolve comments. * Added bulk editing of flags. * Added support for :ref:labels. * Added bulk edit addon. * Added option for :ref:enforcing-checks. * Increased default validity of confirmation links.
Tomáš Chvátal
2020-02-25 15:09:08 +00:00
7c701e3123
- During %post phase do not fail on static files copying if running redis is not available
Tomáš Chvátal
2020-02-17 14:11:35 +00:00
f3e7524d7c
- Add patch to fix test_ssh_add failure: * test_ssh_add.patch
Tomáš Chvátal
2020-02-17 12:51:04 +00:00
92eb27f5f2
- Add patch from upstream to fix test_statistics failure: * test_statistics.patch
Tomáš Chvátal
2020-02-17 12:29:10 +00:00
46903b7b81
- Update to 3.1.0.3: * Support translate-toolkit 2.5.0. * Add lock indication to projects. * Fixed CSS bug caused flicker in some browsers. * Fixed searching on systems with non English locales. * Improved GitHub and Bitbucket hooks repositories matching. * Fixed data migration on some Python 2.7 installations. * Allow to configure git shallow clones. * Improved background notifications processing. * Fixed broken form submissing when navigating back in browser. * New addon to configure YAML formatting. * Fixed same plurals check to not fire on single plural form languages. * Fixed regex search on some fields.
Tomáš Chvátal
2020-02-17 08:52:01 +00:00
46c46aeba8
- Update to 3.10.1: * Extended API with translation creation. * Fixed several corner cases in data migrations. * Compatibility with Django 3.0. * Improved data cleanup performance. * Added support for customizable security.txt. * Improved breadcrumbs in changes log. * Improved translations listing on dashboard. * Improved HTTP responses for web hooks. * Added support for GitLab pull requests in Docker container. * Improved application user interface. * Added doublespace check. * Fixed creating new languages. * Avoid sending auditlog notifications to deleted e-mails. * Added support for read only strings. * Added support for markdown in comments. * Allow to place translation instructions text into project info. * Add copy to clipboard for secondary languages. * Improved support for Mercurial. * Improved performance in fetching Git repositories. * Add search lookup for age of string. * Show source language for all translations. * Show context for nearby strings. * Added support for notifications on repository operations. * Improved translation listings. * Extended search capabilities. * Added support for automatic translation strings marked for edit. * Avoid sending duplicate notifications for linked component alerts. * Improve default merge request message. * Better indicate string state in zen mode.
Tomáš Chvátal
2020-01-16 08:13:53 +00:00
24051a1219
- Add dependency on borgbackup
Tomáš Chvátal
2019-12-03 08:43:16 +00:00
cc8c27b236
- Add few more missing dependencies/requirements
Tomáš Chvátal
2019-11-30 10:07:19 +00:00
ea42e6889e
- Update to 3.9.1: * Remove some not needed files from backups. * Fixed potential crash in reports. * Fixed cross database migration failure. * Added support for force pushing Git repositories. * Reduced risk of registration token invalidation. * Fixed account removal hitting rate limiter. * Added search based on priority. * Fixed possible crash on adding strings to JSON file. * Safe HTML check and fixup now honor source string markup. * Avoid sending notifications to invited and deleted users. * Fix SSL connection to redis in Celery in Docker container. * Include Weblate metadata in downloaded files. * Improved UI for failing checks. * Indicate missing strings in format checks. * Separate check for French punctuation spacing. * Add support for fixing some of quality checks errors. * Add separate permission to create new projects. * Extend stats for char counts. * Improve support for Java style language codes. * Added new generic check for placeholders. * Added support for WebExtension JSON placeholders. * Added support for flat XML format. * Exteded API with project, component and translation removal and creation. * Added support for Gitea and Gitee webhooks. * Added new custom regex based check. * Allow to configure contributing to shared translation memory. * Added ZIP download for more translation files. * Make Xliff standard compliant parsing of maxwidth and font. * Added new check and fixer for safe HTML markup for translating web applications.
Tomáš Chvátal
2019-11-08 07:49:19 +00:00
Ana Guerrero
Markéta Machová
Dominique Leuenberger
Stanislav Brabec
Matej Cepl
Tomáš Chvátal