0025956: [installation] Increase minimum PHP requirement to 7.0
0021908: [security] Weakened security headers in 2.0.x
0024689: [administration] Remove clickable alphanumeric index in manage_user_page.php
0020577: [plug-ins] Consistent use of EVENT_UPDATE_BUG_DATA
0027144: [code cleanup] Data integrity: ensure users' default_project preference is a valid project (dregad)
0027145: [code cleanup] Convert Project and User Pref APIs to use DbQuery class (dregad)
0022408: [custom fields] Custom field's value logged as changed in history, when it wasn't changed (dregad)
0021820: [attachments] Support adding an attachment when editing an issue (cproensa)
0021819: [attachments] Support adding an attachment from change status page (cproensa)
0022839: [authentication] Deprecate MD5 login method and replace with BCRYPT hash (dregad)
0026929: [api rest] Support user account unlock via REST API (dregad)
0026101: [ui] Upgrade to font-awesome free 5.0 (syncguru)
0017577: [performance] Improve print_user_option_list() performance (dregad)
0019964: [authentication] Wrong anonymous rights application (dregad)
0020307: [printing] Print issue page needs to adjust formatting for tags and relationship handler (vboctor)
0020540: [attachments] Implement upgrade step to cleanup corrupt disk attachments after db->disk conversion (dregad)
0020431: [db schema] Use utf8mb4 charset for new MySQL installations (dregad)
0020874: [ui] Content Security Policy blocked embedded images added by Chrome Extension (vboctor)
0021694: [ui] inconsistent presentation of required fields (syncguru)
0022464: [custom fields] Loose type comparison can prevent custom field update (dregad)
0022840: [authentication] Don't expire user sessions when updating password hash after login method change (dregad)
0022841: [authentication] Don't truncate password when it exceeds db field size (dregad)
0024188: [ui] Update issue history code to display user names via standard APIs
0024241: [markdown] $g_html_valid_tags are not rendered if Markdown is enabled (dregad)
0024628: [markdown] Double quotes " and lesser than sign < are shown as HTML entity within Markdown code blocks (dregad)
0025764: [email] Enable S/MIME signed e-mail notifications (community)
0026142: [plug-ins] Improve handling of invalid / incorrectly installed plugins (dregad)
0027124: [plug-ins] MantisGraph: update Chart.js library to v2.9.3 (dregad)
0026988: [preferences] issue report TOO_MANY_REDIRECTS (dregad)
0027122: [plug-ins] 3rd-party plugins cannot use chart.js library bundled with MantisGraph (dregad)
0027123: [javascript] MantisGraph: stop using chart.js bundled build (dregad)
0026837: [db mssql] Update ADOdb to 5.20.18 (dregad)
0027117: [administration] SQL syntax error on manage_user_page (atrol)
0027005: [time tracking] User list in time tracking summary is not sorted (dregad)
0026919: [api rest] Upgrade guzzlehttp/guzzle from 6.5.2 to 6.5.5 (dregad)
0027118: [security] Update PHPMailer to 6.1.7 (dregad)
0026920: [authorization] reporter allowed to close (vboctor)
0026963: [ui] Username field in Monitor box triggers password managers (vboctor)
0025998: [documentation] REST API documentation (vboctor)
0026962: [code cleanup] Remove unused bug_monitor_list_view_inc.php file (vboctor)
0026974: [installation] Required PHP json extension not documented and checked (atrol)
0026964: [bugtracker] Admin check always has "WARN" for magic_quotes checks (PHP 7.4) (atrol)
0026903: [code cleanup] Move release scripts to main repository (vboctor)
0026887: [sub-projects] Project Menu Bar does not indent subprojects properly (dregad)
0026888: [code cleanup] Refactor printing of project selection menus (dregad)
0026930: [code cleanup] Use user_is_login_request_allowed() instead of duplicating the logic (dregad)
0026884: [administration] Misleading e-mail notification following password reset by admin (dregad)
0026840: [preferences] Non existing field name os_version used where os_build should be used (atrol)
0026892: [administration] Attachment settings not available on "Workflow Thresholds" page (atrol)
0026889: [code cleanup] Implement ConfigsGetCommand and use from REST API (vboctor)
0026890: [code cleanup] Implement LocalizedStringsGetCommand and use from REST API (vboctor)
0026891: [api rest] /config REST API endpoint reports users as not found when they exist (vboctor)
0026861: [ui] "Move" functionality offered for users that have just access to a single project (atrol)
0026823: [ui] Upgrade to fontawesome version 4.7.0 (syncguru)
0026839: [printing] Viewer does not get Selection column in View Issues or Print Reports lists (atrol)
0026821: [code cleanup] Standardize access of option database_version (atrol)
0026822: [ldap] LDAP configuration options can be set in database (atrol)
0026617: [documentation] Admin Guide has various broken links, obsolete info, etc. (dregad)
0026798: [administration] PHP warning in config_get_global (dregad)
0026811: [authentication] Username regex is too strict by default (community)
33 of 60 issue(s) resolved. Progress (55%). View Issues