Add `published_at` attribute to preview cards (#26153)
Add report.updated webhook (#24211)
Remove 16:9 cropping from web UI (#26132)
Fix replica being used even if not explicitly defined (#26074)
Add stricter protocol fields validation for accounts (#25937)
Fix not actually connecting to the configured replica (#25977)
Refactor `Status.tagged_with_all` for brakeman SQL injection warning (#25941)
Rails 7.0 update (#25668)
Refactor `Trends::Query` to avoid brakeman sql injection warnings (#25881)
Fix `Style/SlicingWithRange` cop (#25923)
Fix trend calculation working on too many items at a time (#25835)
Admin mailer parameterization (#25759)
Fix processing of media files with unusual names (#25788)
Merge pull request from GHSA-9928-3cp5-93fm
* Fix attachments getting processed despite failing content-type validation
* Add a restrictive ImageMagick security policy tailored for Mastodon
* Fix misdetection of MP3 files with large cover art
* Reject unprocessable audio/video files instead of keeping them unchanged
Revert "Rails 7 update" (#25667)
Fix rails `rewhere` deprecation warning in directories api controller (#25625)
Change account search to match by text when opted-in (#25599)
Co-authored-by: Eugen Rochko <eugen@zeonfederated.com>
Add finer permission requirements for managing webhooks (#25463)