Friends

4.0.5

• Fix search pagination losing search results on infinite scroll and add search controls (clear search, sort order). (#636)
• Fix comment textarea causing horizontal scrollbar on mobile. (#637)
• Fix TypeError when updating the Friends dashboard widget. (#638)
• Add ActivityPub integration tests to CI and test for comment federation on cached posts. (#639)
• Show ActivityPub comment form for posts whose permalink host is a known ActivityPub instance, with a fallback message linking to the source for non-ActivityPub posts. (#641)
• Add friends_browser_extension_actions filter to allow plugins to register actions in the browser extension. (#642)
• Remove the plugin installer page and update the README for 4.0. (#643)
• Fix reblog account handle for WordPress blog-wide ActivityPub actors using ?author=0 URLs. (#644)
• Add compose box to the Mastodon theme with @mention autocomplete and a setting to exclude status posts from the main RSS feed. (#646)
• Use ap_actor post ID as account ID in Mastodon API when ActivityPub plugin is active. (#647)
• Remove extra whitespace inside link tags that caused imprecise hover text in templates. (#649)
• Add collapsible mobile panel for compose and search in Mastodon theme. (#650)
• Fix Mastodon theme search autocomplete styling and prevent User_Query from returning non-subscription WordPress users. (#651)

4.0.4

• Mastodon theme: compact mode, mobile sidebar, and profile page cosmetics (#634)

4.0.3

• Fix header image centering in Mastodon theme (#632)
• Fix Mastodon theme design issues (#630)
• Add AJAX feed refresh on the frontend (#631)

4.0.2

• Clean up edit-friend UI: add username field, remove legacy roles (#629)
• Fix crash in admin_edit_user_link for virtual subscriptions (#628)
• Fix fatal error during feed discovery when content is null (#627)
• Strip style tags and convert iframe embeds during feed sanitization (#624)
• Defer theme name translations to avoid early textdomain loading (#625)
• Google Reader: expand single post view, remove comments border (#623)

4.0.1

• Restore Add Friend admin page (#622)
• Rename Subscriptions to Following in the frontend (#616)
• Use Friends avatar for non-reblog posts (#621)
• Fix author page performance regression (#617)
• Make Mastodon theme header non-sticky on mobile (#620)
• Fix avatar rendering in Mastodon theme and always show filters (#615)
• Add ActivityPub subscription status check (#613)
• Remove Spectre CSS and Sass, use plain CSS with native nesting (#614)
• Add header image readability styling to all themes (#612)
• Fix fatal error and stuck Pending migrations (#610)
• Add new themes to the Friends plugin documentation

4.0.0

• Remove Friendship functionality (#515)
• Provide a block theme for the Friends page (#362)
• Move post_tag to a friend_tag taxonomy (#559)
• Implement Dark Mode for Friends Page (#571)
• Improve Compatibility with ActivityPub 7.0 (#574)
• Improve ActivityPub integration and migration UI (#575)
• Use the ActivityPub header image if available (#576)
• Fix the external actor display (#577, #578)
• Improve external mention behavior (#579)
• Fix the links for ActivityPub comments (#580)
• Prevent apostrophes in friend usernames and migrate existing ones (#581)
• Refactor Friend Tag (#583)
• Use preferredUsername instead of display name for ActivityPub suggested-username (#585)
• Don’t convert replies to comments without mentions (#586)
• Fix batch pagination bug in migrations and add undo support (#587)
• Optimize Mastodon API performance (#592)
• Don’t assume WP_HTML_Tag_Processor is available (#553)
• Add News page with update announcements and migration improvements (#598)
• Add subscription folders (#599)
• Fix followers page and add filtering, sorting, and pagination (#600)
• Add Google Reader theme (#601)
• Add subscriptions page with filtering, sorting, and pagination (#603)
• Fix video controls, reaction scroll loss, and PHP warning (#604)
• Add Mastodon-style theme (#605)
• Fix folder support in friend-list widget and block (#607)

3.6.0

• Add support for PeerTube (#546)
• Show as who you’ll follow (#545)
• Add support for following via textbox on Mastodon (#544)
• Fix broken redirect for non-existing friends (#539)
• Don’t use iframes in autogenerated youtube embeds (#540)
• Update function call in ActivityPub (#543)

3.5.2

• Expose following list via ActivityPub (#538)
• Convert query vars serialization to json (#537)
• Don’t replace tags outside of the friends page (#536)
• Use EMA account data for a local user (#535)
• EMA: Fix following number for own user (#534)
• Remove external hover links (#533)
• Plugin Check Fixes (#532)
• Ajaxify Post Count display on the main friends page (#531)
• Always apply replace rules and fix html entity replacing (#530)

3.5.1

• Fix undefined user_id variable (#525)
• Fix broken rewrite rules (#524)

3.5.0

• Prevent friends page running wide in compact view (#522)
• Prevent fatal for boosted post (#521)
• Flush Rewrite Rules later (#520)

3.4.9

• Message fixes (#518, #519)
• Display only images in compact mode (#517)

3.4.8

• Enable Mastodon Apps: Fix wrong reblog attribution (#510)

3.4.7

• Remove profile link from the Activitypub Follower e-mail (#507)
• Add support for Youtube Feeds (#508)
• Enable Mastodon Apps: Fix broken posting experience without ActivityPub plugin (#506)

3.4.6

• EMA: Fix wrong display of blog author for friends posts in subscriptions (#505)
• Allow CORS request for moz-extensions to the frontpage (#501)
• Fix Fatal when accessing the Activitypub outbox (#504)

3.4.5

• Enable Mastodon Apps: Fix user query (#500)

3.4.4

• Friends Page: ensure friends posts can be collapsed / uncollapsed (#496)
• Friends Page: Allow clicking on collapsed links (#497)

3.4.3

• Rerelease of 3.4.2, which got stuck somewhere on WordPress.org

3.4.2

• Many small UI Updates (#494):
  • Added a keyboard shortcut for edit (press e) when you have the capabilities to edit a post (for example in a post collection)
  • Don’t hide the header overflow in mobile anymore
  • Fix reply menu item to open comments on the same page
  • Add a “still loading” text when loading comments takes long
  • Show reply and boost menu links only for ActivityPub posts
  • Show the comment form even if you disabled commenting globally on your WordPress

3.4.1

• DMs: Preview lastest message (#493)
• Fix broken DMs when using the blog user in Activitypub (#492)

3.4.0

• Fix old posts not being deleted for ActivityPub (#476)
• Implement DMs for ActivityPub and EMA (#489)
• Improve Frontend margins (#490)
• Replace string ids for subscriptions with high ints (#483)
• Fix redirect after converting user (#484)
• Fix replying to posts with a different permalink (#478)
• EMA: Implement following endpoint data (#480)
• EMA: Remove old filters (#482)
• Extension: Allow moz-extension as a URL protocol (#477)

3.3.5

• Use Outbox of the upcoming ActivityPub 5.3.0 and fix announce+like bug with Activitypub 5.2.0 (#463)
• Fix editing widgets in a block theme (#475)
• Augment bookmarks and favourites endpoints in EMA (#474)
• Improve the display of boosted posts (#473)

3.3.4

• Reduce the size of the Follow link (#472)
• Fix unfollowing in Enable Mastodon Apps (#471)
• Bring back the collapse button for statuses (#470)
• Update plugins.json by @liviacarolgouvea (#468)
• Don’t rewrite data URLs (#467)
• Prepare for the next Enable Mastodon Update (#466)
• Don’t add domain for mentions (#465)
• Boosting: Show when there is a problem retrieving a URL (#464)
• Fix wrong link in User Notifications (#462)
• Don’t double fetch URL for boosting (#461)
• Prevent 404s for static templates (#452)
• ActivityPub parser: avoid PHP warning by @jeherve (#459)
• Dashboard: make widget title translatable by @jeherve (#457)
• At A Glance messaging: ensure numbers are correctly displayed by @jeherve (#458)
• Prevent error when no summary is set (#453)
• Fix reversed Diff for post updates in the log (#450)

3.3.3

• Remove the setting to change the post formats in the main query loop because it was confusing (#446)
• Protect posts that I have reacted on (#447)
• Fix Typo which prevented unannounces (#443)
• Plugins: Fix the More Details link (#445)
• Check the right user option about the follower e-mail (#444)

3.3.2

• Fixed sending ActivityPub boosts (#440)
• Fixed deleting by global retention number (#439)

3.3.1

• Fix some styling issues (#437)
• Fix FediPress installation (#435)

3.3.0

• Styling Overhaul! (#431)
• Add the FediPress theme (#433)
• Incoming Feed Items: Fix in-article hash links (#426)
• Add more functions for a browser extension (#427)
• Browser Extension: API Key per user (#429)
• Fix parsing Pixelfed’s Image attachments (#430)
• Add the friend’s avatar to the page header (#422)
• Add inline follow link (#432)
• Log the newly supported ActivityPub events to the Friends Log (#423)
• Augment the ActivityPub New Follower E-Mail (#434)

3.2.3

• ActivityPub: Support update of posts and people (#421)
• Add support for ActivityPub Move activity (#420)
• Make tagged Friend Posts accessible (#419)
• Uninstall: Delete more taxonomy entries (#415)
• Standardize REST Error messages (#413)
• Use the ActivityPub blog user as an actor if set to blog profile only (#411)
• Add a Duplicate Remover (#409)

3.2.2

• Move permissions checks into a dedicated permission_callback (#408)
• Add more checks around friendships (#407)

Hoping that this hardening will bring back the plugin to the WordPress.org directory after this issue was reported. While I am unsure it qualified to get the plugin taken down, I’ve done some hardening and bugfixing in the above pull requests. Unfortunately it was not reported in a way that it could be patched in time. If you have a security issue to report, please follow the instructions on https://github.com/akirk/friends/blob/main/SECURITY.md and/or report through https://github.com/akirk/friends/security.

3.2.1

• OPML Import: Support OPMLs without nesting (#403)

3.2.0

• Improve Translate Live compatibility (#401)
• Fix blog follower count in sidebar (#400)

3.1.9

• Fix bug with loading the main theme (#398)

3.1.8

• Fix missing JavaScript on the frontend (#396)

3.1.7

• Add a theme selector (#393)
• Followers: Add Support for ActivityPub plugins blog profile (#394)
• Generate the suggested user login from the display name (#395)

3.1.6

• Site Health: Check if the cron job is enabled (#391)
• Fix starring of a friend (#392)
• Layout improvements props @liviagouvea in (#384)

3.1.5

• Fix next page articles attached in the wrong place (#388)
• Allow an extra redirect when discovering feeds (#389)

3.1.4

• Fix Warning: Undefined variable $account (#385)
• Fixes for Friend Messages (#387)
• Add Podcast Support (#386)

3.1.3

• Add AJAX refreshing of feeds (#382)
• Fix Fatal in the MF2 library (#381)

3.1.2

• Fix support for threads.net (#378)
• Add a warning if a user has not enabled ActivityPub on their threads.net account (#377)
• Upgrade and improve the MF2 library (#374)

3.1.1

• Improve Name Detection (#372)
• Add a Button to the Welcome page (#373)

3.1.0

• Add mark tag CSS to emails to ensure highlighting (#365)
• Only show the dashboard widgets if the user has enough permissions (#368)
• Prevent retrieving the same feed in parallel (#366)
• Add Friend: Use more info from the given URL (#369)
• Log ActivityPub actions and add the publish date to Announcements (#364)
• Improve OPML Support (#370)
• Update blueprints for previewing in WordPress Playground (#371)

3.0.0

• Show Mutual Followers and allow removing of followers (#359)
• Add an e-mail notification for new and lost followers (#358)
• Add the ability to disable notifications per post format and feed parser (#357)
• Fix 404 on the New private post widget props @liviacarolgouvea (#361)
• Improve ghost.org ActivityPub compatibility (#356)