Simon/siyuan
1
0
Fork 0
mirror of https://github.com/siyuan-note/siyuan.git synced 2026-06-27 22:36:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
22,613 Commits 4 Branches 909 Tags
feature/setSort-api
Commit Graph

22613 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel
cf45ff5ae3 🧑‍💻 Add kernel API /api/filetree/setSort https://github.com/siyuan-note/siyuan/issues/15776 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 16:50:34 +08:00
Daniel
3392e8667e 🐛 Fix build 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 16:50:14 +08:00
Vanessa
937f9d22ae Merge remote-tracking branch 'origin/dev' into dev 2026-05-12 12:11:20 +08:00
Vanessa
106a958225 🎨 https://github.com/siyuan-note/siyuan/issues/17384 2026-05-12 12:11:02 +08:00
Daniel
d7e9e52a89 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 11:43:33 +08:00
Daniel
7589196f9e 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 11:22:48 +08:00
Daniel
56e2fb4932 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 11:20:03 +08:00
Daniel
dfb331e589 🎨 Clear all cached data when open the user guide 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-12 00:14:15 +08:00
Vanessa
a5de2c8fba 🎨 https://github.com/siyuan-note/siyuan/issues/17258 2026-05-11 23:03:48 +08:00
Vanessa
e7a27b69bc 🎨 https://github.com/siyuan-note/siyuan/issues/17258 2026-05-11 22:38:51 +08:00
Daniel
fe8f96da48 🎨 Supports returning a list of files from data snapshots via filename search https://github.com/siyuan-note/siyuan/issues/17258 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-11 20:24:34 +08:00
Vanessa
e69937e350 🐛 https://github.com/siyuan-note/siyuan/issues/17665 2026-05-11 20:18:48 +08:00
Daniel
99e7587798 🎨 Supports returning a list of files from data snapshots via filename search https://github.com/siyuan-note/siyuan/issues/17258 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-11 20:04:14 +08:00
Daniel
4b1c10ee94 🎨 Supports returning a list of files from data snapshots via filename search https://github.com/siyuan-note/siyuan/issues/17258 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-11 20:03:16 +08:00
Suikalley
5d43bfe323 🎨 Improve icon on Linux (#17666) 2026-05-11 16:54:29 +08:00
Vanessa
58dd8617c8 🎨 https://github.com/siyuan-note/siyuan/issues/17384 2026-05-11 16:36:20 +08:00
Vanessa
718cdb30bb 🎨 https://github.com/siyuan-note/siyuan/issues/17384 2026-05-11 13:42:24 +08:00
Vanessa
fa4bdd5adc 🎨 https://github.com/siyuan-note/siyuan/pull/17647 2026-05-11 13:24:14 +08:00
Jeffrey Chen
6ee1b8d989 Improve export file (#17647) 
* 🎨 Improve export file

* 🎨 Improve export file
 2026-05-11 12:57:52 +08:00
Jeffrey Chen
c20212594d ♻️ Extract IsMobileContainer and replace the mobile ternary judgment (#17661) 2026-05-11 00:03:33 +08:00
Daniel
06c2c89a95 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 23:50:24 +08:00
Daniel
971bfb4786 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 23:38:44 +08:00
Daniel
27b4c72b5d 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 23:36:07 +08:00
Jeffrey Chen
ff9d839c00 🔒 Escape package name, version, keywords and funding https://github.com/siyuan-note/siyuan/security/advisories/GHSA-27qc-m5gf-jv5r (#17660) 2026-05-10 23:32:19 +08:00
Daniel
6dd37652cc 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
v3.7.0-dev2 		2026-05-10 23:29:57 +08:00
Daniel
fe1cb8ac6c 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 23:20:26 +08:00
Daniel
12ae99d573 🎨 Improve IFrame block https://github.com/siyuan-note/siyuan/issues/17659 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 22:51:35 +08:00
Vanessa
d3ff0f67cb Merge remote-tracking branch 'origin/dev' into dev 2026-05-10 20:15:09 +08:00
Vanessa
be2718888d 🎨 https://github.com/siyuan-note/siyuan/issues/17628 2026-05-10 20:14:51 +08:00
Daniel
74cdf2ca9f 🔒 https://github.com/siyuan-note/siyuan/security/advisories/GHSA-gmmv-4cc5-wr9r 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 20:09:48 +08:00
Vanessa
0ace03b7e9 Merge remote-tracking branch 'origin/dev' into dev 2026-05-10 20:03:35 +08:00
Vanessa
4ac49f6705 🎨 https://github.com/siyuan-note/siyuan/issues/13207 2026-05-10 20:03:18 +08:00
Daniel
58da3744e1 🎨 Improve text 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 19:59:40 +08:00
Daniel
2aec075cce 🎨 Improve text 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 19:59:23 +08:00
Daniel
038dc6e183 🎨 Improve wal queue 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 19:32:03 +08:00
Qiaochu Hu
3071ad22d4 🔒 Use parameterized queries in putStat to prevent SQL injection (#17658) 
The putStat function in kernel/sql/stat.go was building SQL queries
via string concatenation instead of using parameterized queries.
While currently only called with hardcoded internal values, this is
a defense-in-depth improvement that prevents future SQL injection
if the function is ever called with user-controlled input.

The execStmtTx helper already supports variadic args, so this is
a straightforward change to use ? placeholders.

Co-authored-by: Test User <test@example.com>
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-10 19:24:21 +08:00
Qiaochu Hu
890d2c5a67 🔒 Fix path traversal vulnerability in /repo/diff/ endpoint (#17657) 
The /repo/diff/ endpoint used the URL path parameter directly in
filepath.Join without validation, allowing an authenticated admin
user to read arbitrary files via path traversal sequences.

This fix:
- Cleans the path with filepath.Clean
- Rejects paths containing ".."
- Validates the final path with IsSubPath to ensure it stays within
  {TempDir}/repo/diff/

Co-authored-by: Test User <test@example.com>
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-10 19:20:31 +08:00
Vanessa
30d22d71bd Merge remote-tracking branch 'origin/dev' into dev 2026-05-10 19:03:48 +08:00
Vanessa
926c13317d 🎨 https://github.com/siyuan-note/siyuan/issues/13207 2026-05-10 19:03:31 +08:00
Qiaochu Hu
b763d787d1 🔒 Fix path traversal vulnerability in /export/temp/ endpoint (#17656) 
The /export/temp/ endpoint used c.Request.URL.Path directly in
filepath.Join without any validation, allowing path traversal via
sequences like /export/temp/../../ to access files outside the
intended temp directory.

This fix:
- Constrains file access to {TempDir}/export/temp/ base directory
- Cleans the relative path with filepath.Clean
- Rejects paths containing ".."
- Validates the final path with IsSubPath check

Co-authored-by: Test User <test@example.com>
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-10 19:01:32 +08:00
Vanessa
bb55695925 🎨 https://github.com/siyuan-note/siyuan/issues/13207 2026-05-10 18:30:05 +08:00
Vanessa
3745b9feaa Merge remote-tracking branch 'origin/dev' into dev 2026-05-10 15:48:01 +08:00
Vanessa
ce696ca1d1 🎨 https://github.com/siyuan-note/siyuan/issues/13207 2026-05-10 15:47:40 +08:00
Daniel
cf48690f97 🎨 Improve text https://github.com/siyuan-note/siyuan/issues/14414 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 15:43:51 +08:00
Daniel
06065475cd 🎨 Improve text https://github.com/siyuan-note/siyuan/issues/14414 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 15:36:29 +08:00
Daniel
70e6e2b216 🎨 Improve text https://github.com/siyuan-note/siyuan/issues/14414 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 15:27:31 +08:00
Daniel
87eee0db67 Shorthands on HarmonyOS https://github.com/siyuan-note/siyuan/issues/17654 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 13:46:42 +08:00
Daniel
9f00ad2db9 Shorthands on HarmonyOS https://github.com/siyuan-note/siyuan/issues/17654 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 13:41:37 +08:00
Daniel
dd461d2f39 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 10:00:59 +08:00
Daniel
0e23d6496e 🔨 Update build scripts 
Signed-off-by: Daniel <845765@qq.com>
 2026-05-10 09:01:32 +08:00