r/a=dylan

Bug 1433400 (CVE-2018-5123) Prevent cross-site image requests from leaking contents of certain fields due to regex search
r=jfearn,a=dylan

the priority on import

Fixes https://bugzilla.mozilla.org/show_bug.cgi?id=1427626
Fixes https://bugzilla.mozilla.org/show_bug.cgi?id=1427638
Fixes https://bugzilla.mozilla.org/show_bug.cgi?id=1427664

Convert jb2bz to use "email" module rather than rfc822, multifile,
mimetools, and StringIO for easier manipulation of the mailbox objects.

This fixed (among other things) 1427626 as the Subject of the email is
now obtained correctly.

Fix the date formatting throughout to always use UTC, which is what
Bugzilla expects for the dates.  This fixed 1427638.

Fix attachment processing, which was using multifile rather than walking
the parts of the email object.  This fixed part of 1427664

Fix the fact that the process_reply_file function never checked for
attachments in any followups.  This fixed part of 1427664

Fix attachment processor to ignore various signatures and message/rfc822
multipart messages.  For the latter, it sets "filename=" values to files
that don't actually exist, which caused attachment processing to bomb.

* Bug 1301887 - File::Slurp triggers warnings on perl 5.24 and it is recommended to not use it (#21)

r=mtyson

* Fix for vrite in aa735d4

* Added https://gitweb.gentoo.org/proj/gentoo-bugzilla.git/commit/?id=ca7bfc9c485c959fad2aee1f7c1dbc0fb484553b

This reverts commit 89cb60fe.

Bug 1310728 - editflagtypes.cgi crashes when classifications are enabled and the user hasn't global editcomponents privs
r/a=dkl

r=dylan

r/a=dylan

r/a=dkl

r/a=dkl

r=dkl

Bug 1250114 - XSS possible in extensions calling global/tabs.html.tmpl if tab.link is user-controlled

Add build.platform = linux64, machine.platform = linux64 to taskgraph.json to remove b2gtest from Treeherder results

r=sgreen a=dkl

r=dkl,a=dkl

r=gerv

r=dkl

r/a=dkl

r/a=dkl

r=gerv

r=gerv

r/a=dkl

r/a=dkl