zeertzjq c084ab9f57 vim-patch:9.2.0276: [security]: modeline security bypass (#38657) ...

Problem:  [security]: modeline security bypass
Solution: disallow mapset() from secure mode, set the P_MLE flag for the
          'complete', 'guitabtooltip' and 'printheader' options.

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-8h6p-m6gr-mpw9

75661a66a1

Co-authored-by: Christian Brabandt <cb@256bit.org>
(cherry picked from commit c7604323e3)

2026-04-01 01:52:31 +00:00

..

cjson

feat(stdlib): vim.json.decode() can allow comments #37795

2026-02-11 06:54:57 -05:00

gen

fix(termkey): use terminfo for (shift+)left/right keys

2026-03-31 22:45:08 +00:00

klib

refactor: move StringBuilder to types_defs.h (#33745)

2025-05-01 10:06:08 -05:00

man

feat(logging): rename ".nvimlog" => "nvim.log" #37935

2026-02-18 11:58:34 -05:00

mpack

fix(mpack): boundary values for negative integer encoding #37255

2026-03-21 17:07:33 -04:00

nvim

vim-patch:9.2.0276: [security]: modeline security bypass (#38657)

2026-04-01 01:52:31 +00:00

tee

fix(install): only install "tee" on Windows #36629

2025-11-19 21:00:56 -08:00

xdiff

refactor: the long goodbye

2023-11-05 20:19:06 +01:00

xxd

fix(ux): drop "Sorry" from messages #38318

2026-03-16 07:46:34 -04:00

.luarc.json

refactor: make LuaLS run diagnostics on all files in src/

2026-03-09 21:26:11 +01:00

.valgrind.supp

refactor: rename "process" => "proc" #30387

2024-09-15 12:20:58 -07:00

bit.c

build: bump lua-bitop to 1.0.3 #35063

2025-08-02 15:58:11 -07:00

bit.h

…

build_lua.zig

feat(build.zig): add option to use system dependencies

2026-01-13 22:09:03 -05:00

clint.lua

fix: resolve all remaining LuaLS warnings in src/

2026-03-09 21:47:15 +01:00

coverity-model.c

refactor(treesitter): handle coverity warnings better

2024-03-20 12:22:54 +00:00

nlua0.c

…

nlua0.zig

build: make build.zig generate helptags without running "nvim" binary

2025-08-19 11:14:02 +02:00

uncrustify.cfg

refactor: clint.py => clint.lua

2025-12-08 01:43:02 -05:00