fix(security): add csrf filter + prevent xss attacks by escaping user input

- update CI4 to v4.1.9's stable production package - update php and js dependencies to latest
2026-04-15 04:27:46 +02:00 · 2022-03-04 14:33:48 +00:00 · 2022-03-04 14:33:48 +00:00 · cd2e1e1dc3
commit cd2e1e1dc3
parent a597cf4ecf
182 changed files with 4410 additions and 4214 deletions
--- a/modules/Fediverse/Controllers/ActorController.php
+++ b/modules/Fediverse/Controllers/ActorController.php
@ -132,6 +132,7 @@ class ActorController extends Controller
                    return $this->response->setStatusCode(200)
                        ->setJSON([]);
                }
+
                // return not handled undo error (501 = not implemented)
                return $this->response->setStatusCode(501)
                    ->setJSON([]);
@ -286,6 +287,7 @@ class ActorController extends Controller
            foreach ($paginatedActivity as $activity) {
                $orderedItems[] = $activity->payload;
            }
+
            $collection = new OrderedCollectionPage($pager, $orderedItems);
        }

@ -322,6 +324,7 @@ class ActorController extends Controller
            foreach ($paginatedFollowers as $follower) {
                $orderedItems[] = $follower->uri;
            }
+
            $followersCollection = new OrderedCollectionPage($pager, $orderedItems);
        }