4bd005bb6f
mod: bump golang.org/x/net from 0.36.0 to 0.38.0
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.36.0 to 0.38.0.
- [Commits](https://github.com/golang/net/compare/v0.36.0...v0.38.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-04-01 10:06:21 +00:00
4acaaac85a
mod: bump golang.org/x/net from 0.34.0 to 0.36.0 ( #7935 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-04 23:27:10 -05:00
e93ced2163
mod: bump modernc.org/sqlite from 1.34.5 to 1.36.0 ( #7929 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-04 23:18:23 -05:00
9672b6dd6c
mod: bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 ( #7931 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-04 23:11:43 -05:00
7a12c8418e
mod: bump golang.org/x/text from 0.21.0 to 0.22.0 ( #7933 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-04 23:11:08 -05:00
2208f17e8e
chore: update Trivy scan config ( #7934 )
2025-03-04 23:07:09 -05:00
46a84fdad5
email: fix unable to override templates in custom directory ( #7905 )
...
Co-authored-by: Joe Chen <jc@unknwon.io>
2025-02-12 21:52:18 -05:00
9c80e6d922
mod: bump modernc.org/sqlite from 1.34.4 to 1.34.5 ( #7906 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-01 23:24:18 -05:00
3a952bd248
mod: bump golang.org/x/net from 0.33.0 to 0.34.0 ( #7908 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-01 23:22:49 -05:00
96d5d622b8
ci: update GitHub Actions version for Code QL
2025-01-01 19:46:13 -05:00
b59e943aa6
Set timeout to explicit 0 in gogs.js ( #7890 )
...
## Describe the pull request
A simple fix in public/js/gogs.js making bug upload not result in a
timeout (added just one line)
Link to the issue: closes https://github.com/gogs/gogs/issues/6149
## Test plan
- Set the max_size of `attachment` to a high number
```toml
[release.attachment]
ENABLED = true
ALLOWED_TYPES = */*
MAX_SIZE = 512
MAX_FILES = 20
```
- Upload a file to releases
It doesn't randomly timeout!
2025-01-01 19:41:24 -05:00
371a6092de
mod: bump modernc.org/sqlite from 1.34.1 to 1.34.4 ( #7893 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-01 11:18:34 -05:00
e6896eb393
mod: bump gorm.io/driver/postgres from 1.5.7 to 1.5.11 ( #7895 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Joe Chen <jc@unknwon.io>
2025-01-01 11:11:51 -05:00
6c04a1ce7c
mod: bump github.com/go-ldap/ldap/v3 from 3.4.8 to 3.4.10 ( #7894 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-01 10:37:55 -05:00
6bdbb88fb8
gogs.service: Remove syslog.target ( #7681 )
...
Remove syslog.target from service file, this target hasn't existed for
over a decade.
6aa8d43ade/NEWS (L72-L73)
2024-12-26 11:55:46 -05:00
6b4e8668a1
Adding '|' to the releases page ( #7631 )
...
Adding '|' to the releases page `templates/repo/release/list.tmpl`
i changed this:
to this:
(yes)
2024-12-26 11:15:44 -05:00
d8f562b6ad
docs: remove `dev/release` directory ( #7884 )
...
[skip ci]
2024-12-23 13:26:07 -05:00
f1e64008fb
cmd: always build with "cert" subcommand ( #7883 )
2024-12-23 12:10:43 -05:00
cfde357824
release: pull back 0.13.1 and move CHANGELOG entries to 0.13.2 ( #7881 )
2024-12-23 10:56:57 -05:00
3459f8df49
Dockerfile: fix up outdated s6-svscan path ( #7880 )
...
## Describe the pull request
Link to the issue: https://github.com/gogs/gogs/issues/7864
2024-12-23 10:53:40 -05:00
c0332ff856
release: update templates ( #7877 )
...
[skip ci]
2024-12-22 21:44:17 -05:00
e1042e7d47
release: cut CHANGELOG entries for 0.13.1 ( #7874 )
...
Part of https://github.com/gogs/gogs/issues/7873
[skip ci]
2024-12-22 17:50:59 -05:00
76831d0d06
dep: update github.com/gogs/git-module to v1.8.4 ( #7872 )
...
## Describe the pull request
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-m27m-h5gj-wwmg by
including https://github.com/gogs/git-module/pull/110
2024-12-22 16:37:51 -05:00
68b3c8f339
repo: ignore unintended Git options for diff preview ( #7871 )
...
## Describe the pull request
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-9pp6-wq8c-3w2c
2024-12-22 15:59:03 -05:00
77a4a945ae
repo: prevent preview and delete files in `.git` directories ( #7870 )
...
## Describe the pull request
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-ccqv-43vm-4f3w
2024-12-22 15:24:18 -05:00
b09f317aa0
database: lock mock properly to avoid data race in tests ( #7869 )
...
Fixes tests data race found in
https://github.com/gogs/gogs/actions/runs/12457230279/job/34771555537
2024-12-22 15:09:42 -05:00
009a1855aa
ssh: make `env` command a passthrough ( #7868 )
...
## Describe the pull request
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-vm62-9jw3-c8w3
2024-12-22 14:56:31 -05:00
fb7812b194
Fix s6-svscan path in Dockerfile ( #7867 )
...
Related to #7864
## Describe the pull request
Fix the path of the s6-svscan binary path in the Dockerfile. As
mentionned in the issue, it is probably to the alpine base image change
(from `3.17` to `3.21`).
Link to the issue:
https://github.com/gogs/gogs/issues/7864#issuecomment-2558323928
Credit to @cryptovaltt
## Test plan
Build the image and check if the application can be ran. E.g.:
```bash
docker build -t gogs:working-7864 -f Dockerfile .
docker run --name=gogs -p 10022:22 -p 10880:3000 -v gogs:working-7864 --rm
```
2024-12-22 10:53:00 -05:00
00bd6081a5
chore: minor fixup on README ( #7866 )
...
[skip ci]
2024-12-21 10:58:38 -05:00
5326b4113a
chore: update minimum Go version to 1.23.4 ( #7865 )
2024-12-21 10:48:17 -05:00
7adac94f1e
Dockerfile: update base image to alpine3.21 and enable trivy scan ( #7863 )
...
## Describe the pull request
Link to the issue: fixes https://github.com/gogs/gogs/issues/6674
2024-12-20 22:33:46 -05:00
c5dff8cdad
chore: update vulnerability report and patch policy
...
[skip ci]
2024-12-16 19:05:53 -05:00
8a39d529d0
mod: bump golang.org/x/crypto from 0.29.0 to 0.31.0 ( #7861 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-14 23:36:29 -05:00
740eba4f70
session: support TLS for Redis provider ( #7860 )
2024-12-14 23:18:46 -05:00
9a9388ace2
api: clean file path for updating repo contents ( #7859 )
...
## Describe the pull request
Link to the issue: closes https://github.com/gogs/gogs/issues/7582
2024-12-14 21:30:34 -05:00
8a3b8198af
chore: update security policy
2024-12-10 22:23:01 -05:00
c94baec9ca
repo/editor: disallow editing symlink while changing file name ( #7857 )
...
## Describe the pull request
Link to the issue: https://github.com/gogs/gogs/issues/7582
2024-12-08 21:12:55 -05:00
25a799ad63
mod: bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.1 ( #7854 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Joe Chen <jc@unknwon.io>
2024-12-01 11:08:42 -05:00
f518abaff1
mod: bump golang.org/x/net from 0.30.0 to 0.31.0 ( #7853 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-01 10:58:39 -05:00
58fa30c7be
mod: bump golang.org/x/text from 0.19.0 to 0.20.0 ( #7856 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-01 10:49:39 -05:00
a02d6a22d6
mod: bump modernc.org/sqlite from 1.33.1 to 1.34.1 ( #7852 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-01 09:49:01 -05:00
7a2dffa95a
ci: push Docker images to DigitalOcean Container Registry ( #7839 )
2024-11-09 19:50:01 -05:00
2541348408
mod: bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 ( #7834 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-03 17:36:50 -05:00
f037c58eee
mod: bump golang.org/x/net from 0.29.0 to 0.30.0 ( #7837 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-02 21:36:24 -04:00
e5e03cba24
mod: bump github.com/urfave/cli from 1.22.15 to 1.22.16 ( #7838 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-01 18:38:05 -04:00
07380780c6
locale: sync from Crowdin ( #7824 )
2024-10-13 20:24:38 -04:00
3a8bd73901
mod: bump github.com/prometheus/client_golang from 1.20.2 to 1.20.4 ( #7818 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-02 21:52:08 -04:00
79bd350ad6
mod: bump modernc.org/sqlite from 1.32.0 to 1.33.1 ( #7816 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-02 08:23:28 -04:00
0700cef63e
mod: bump golang.org/x/net from 0.28.0 to 0.29.0 ( #7814 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-01 20:44:05 -04:00
e34ebac459
install: fix SMTP password config name to save ( #7807 )
2024-09-12 22:10:02 -04:00
dependabot[bot]
Joe Chen
宋子桓🌈
MarcUs7i
Martin
ngn
Alexandre Jacquin
Mobile Mind