- Fix warnings when using bug preview

- Use the proper mail param here too

- Change the hashing algo

- Save the password sha1()

load/link everything from https

Fixes semantic issue in #45583 and a typo ('sumitting').

- Don't show private related bugs to non allowed people

- Added information about Security bug type as alternative to mailing directly security@...

- Added list of security developers
- Changed bugs_authenticate function
new prototype: (&$user, &$pw, &$logged_in, &$user_flags)

$user_flags:
define('BUGS_NORMAL_USER', 1<<

- Added list of security developers
- Changed bugs_authenticate function
new prototype: (&$user, &$pw, &$logged_in, &$user_flags)

$user_flags:
define('BUGS_NORMAL_USER', 1<<0);
define('BUGS_DEV_USER', 1<<1);
define('BUGS_TRUSTED_DEV', 1<<2);
define('BUGS_SECURITY_DEV', 1<<3);

show more ...

- Added "Security" bug type to control Security bug instead of a package name

- Added field to CVE-ID
- Added support to private report
(When setting the package name to 'Security related', it will turns automatically a private report)

private report: Only t

- Added field to CVE-ID
- Added support to private report
(When setting the package name to 'Security related', it will turns automatically a private report)

private report: Only the original reporter and people behind security@php will can see/edit/comment it.

When the report is ok to be public, anyone from security@php can turn it public.

# Initial commit... :P

show more ...

Fix bug #53189 (Bug reporting from manual does not populate bug type or
reference manpage). Patch by Richard Quadling.

Forgot to update some calls to get_package_mail().

Removed the password requirement on 'Report a bug' for logged in (developer) users.

captcha answer can be 0, so changing empty to isset (thanks Yawk)

Fixed captcha logic to fail without sessions; logged in users need not apply

- Fix reporting bugs for logged in (developers) :)

- Rename to avoid unnecessary symlink