2bd9d0b9c8
build(deps): bump github.com/urfave/cli from 1.22.3 to 1.22.4 ( #6055 )
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.3 to 1.22.4.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.3...v1.22.4 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-04-03 00:49:18 +08:00
a603c0f1fc
dep: bump github.com/gogs/git-module from 1.1.0 to 1.1.1 ( #6051 )
2020-04-01 02:03:02 +08:00
5b8ed0add9
build(deps): bump github.com/pkg/errors from 0.8.1 to 0.9.1 ( #6047 )
...
Bumps [github.com/pkg/errors](https://github.com/pkg/errors ) from 0.8.1 to 0.9.1.
- [Release notes](https://github.com/pkg/errors/releases )
- [Commits](https://github.com/pkg/errors/compare/v0.8.1...v0.9.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-31 17:55:33 +08:00
fd7931cd2b
Update CHANGELOG ( #6049 )
...
* Update CHANGELOG.md
* Update CHANGELOG.md
2020-03-31 05:05:34 +08:00
72111e698e
template: better diff handling of rename and deleted files ( #6048 )
...
* dep: bump github.com/gogs/git-module from 1.0.2 to 1.1.0
* template: better diff handling or rename and deleted files
2020-03-31 04:50:59 +08:00
dce70fe6d1
locale: sync from Crowdin ( #6046 )
2020-03-30 01:14:18 +08:00
63ab497f6f
build(deps): bump github.com/prometheus/client_golang from 1.2.… ( #6044 )
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.2.1 to 1.5.1.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.2.1...v1.5.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:38:36 +08:00
afe226cd16
build(deps): bump github.com/lib/pq from 1.2.0 to 1.3.0 ( #6041 )
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/lib/pq/releases )
- [Commits](https://github.com/lib/pq/compare/v1.2.0...v1.3.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:31:47 +08:00
efa9ef78c8
build(deps): bump github.com/go-macaron/binding from 1.0.1 to 1… ( #6045 )
...
Bumps [github.com/go-macaron/binding](https://github.com/go-macaron/binding ) from 1.0.1 to 1.1.0.
- [Release notes](https://github.com/go-macaron/binding/releases )
- [Commits](https://github.com/go-macaron/binding/compare/v1.0.1...v1.1.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:26:25 +08:00
b5a06618fa
build(deps): bump gopkg.in/ini.v1 from 1.54.0 to 1.55.0 ( #6039 )
...
Bumps [gopkg.in/ini.v1](https://github.com/go-ini/ini ) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/go-ini/ini/releases )
- [Commits](https://github.com/go-ini/ini/compare/v1.54.0...v1.55.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:25:55 +08:00
f0f3b8707b
build(deps): bump github.com/sergi/go-diff from 1.0.0 to 1.1.0 ( #6042 )
...
Bumps [github.com/sergi/go-diff](https://github.com/sergi/go-diff ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/sergi/go-diff/releases )
- [Commits](https://github.com/sergi/go-diff/compare/v1.0.0...v1.1.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:25:12 +08:00
045e1670a4
build(deps): bump github.com/niklasfasching/go-org from 0.1.6 t… ( #6043 )
...
Bumps [github.com/niklasfasching/go-org](https://github.com/niklasfasching/go-org ) from 0.1.6 to 0.1.9.
- [Release notes](https://github.com/niklasfasching/go-org/releases )
- [Commits](https://github.com/niklasfasching/go-org/compare/v0.1.6...v0.1.9 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:24:44 +08:00
6298e33b8b
build(deps): bump github.com/json-iterator/go from 1.1.7 to 1.1… ( #6036 )
...
Bumps [github.com/json-iterator/go](https://github.com/json-iterator/go ) from 1.1.7 to 1.1.9.
- [Release notes](https://github.com/json-iterator/go/releases )
- [Commits](https://github.com/json-iterator/go/compare/v1.1.7...v1.1.9 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:23:34 +08:00
a8a6325054
build(deps): bump github.com/go-sql-driver/mysql from 1.4.1 to… ( #6037 )
...
Bumps [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/go-sql-driver/mysql/releases )
- [Changelog](https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-sql-driver/mysql/compare/v1.4.1...v1.5.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-30 00:22:45 +08:00
4cbb43b860
gitutil: simplify mock with `t.Cleanup` ( #6033 )
...
* gitutil: simplify mock with t.Cleanup
* Scope mock to tests only
2020-03-29 20:15:42 +08:00
933206f1fe
gitutil: refactor the way to mock ( #6032 )
...
* Refactor the mock module store
* Only test on 1.14.x
2020-03-29 19:37:28 +08:00
9356231e64
codecov: formalize coverage settings ( #6031 )
...
Co-authored-by: Sourcegraph Bot <campaigns@sourcegraph.com>
2020-03-29 15:34:12 +08:00
a0651b62a7
dep: bump github.com/gogs/git-module from 1.0.1 to 1.0.2 ( #6030 )
2020-03-29 15:24:10 +08:00
470274204e
api: support get releases endpoint ( #6026 )
2020-03-28 21:56:11 +08:00
af0cfe112b
web: rename CSRF header ( #6027 )
2020-03-28 19:17:15 +08:00
0b80578e62
Revert "build(deps): bump xorm.io/builder from 0.3.6 to 0.3.7" ( #6025 )
...
This reverts commit f58ffb3fd4
2020-03-27 22:34:06 +08:00
f58ffb3fd4
build(deps): bump xorm.io/builder from 0.3.6 to 0.3.7 ( #6021 )
...
Bumps xorm.io/builder from 0.3.6 to 0.3.7.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:31:54 +08:00
a0f239495d
build(deps): bump github.com/editorconfig/editorconfig-core-go/… ( #6020 )
...
Bumps [github.com/editorconfig/editorconfig-core-go/v2](https://github.com/editorconfig/editorconfig-core-go ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/editorconfig/editorconfig-core-go/releases )
- [Changelog](https://github.com/editorconfig/editorconfig-core-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/editorconfig/editorconfig-core-go/compare/v2.3.0...v2.3.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:16:06 +08:00
870746791a
build(deps): bump github.com/stretchr/testify from 1.4.0 to 1.5… ( #6019 )
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.4.0 to 1.5.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.4.0...v1.5.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:13:42 +08:00
71edd615ce
README: remove unused badge ( #6024 )
2020-03-27 22:12:26 +08:00
a9dcf4ce74
github: use Actions for CI ( #6022 )
...
* Update golint.yml
* Update README.md
* Update README.md
* Update golint.yml
* Update golint.yml
* Rename golint.yml to go.yml
* Update go.yml
* Update go.yml
* Update go.yml
* Improve tests on Windows
* Delete files
2020-03-27 22:06:29 +08:00
30c047fedd
build(deps): bump github.com/mattn/go-sqlite3 from 1.11.0 to 1.… ( #6017 )
...
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3 ) from 1.11.0 to 1.13.0.
- [Release notes](https://github.com/mattn/go-sqlite3/releases )
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.11.0...v1.13.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:02:21 +08:00
bc309b3ddd
build(deps): bump gopkg.in/macaron.v1 from 1.3.4 to 1.3.5 ( #6016 )
...
Bumps [gopkg.in/macaron.v1](https://github.com/go-macaron/macaron ) from 1.3.4 to 1.3.5.
- [Release notes](https://github.com/go-macaron/macaron/releases )
- [Commits](https://github.com/go-macaron/macaron/compare/v1.3.4...v1.3.5 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:01:51 +08:00
a041601f1f
build(deps): bump github.com/urfave/cli from 1.22.1 to 1.22.3 ( #6015 )
...
Bumps [github.com/urfave/cli](https://github.com/urfave/cli ) from 1.22.1 to 1.22.3.
- [Release notes](https://github.com/urfave/cli/releases )
- [Changelog](https://github.com/urfave/cli/blob/master/docs/CHANGELOG.md )
- [Commits](https://github.com/urfave/cli/compare/v1.22.1...v1.22.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 22:00:46 +08:00
60e93521d5
build(deps): bump github.com/google/go-cmp from 0.3.0 to 0.4.0 ( #6014 )
...
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/google/go-cmp/releases )
- [Commits](https://github.com/google/go-cmp/compare/v0.3.0...v0.4.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-03-27 20:21:56 +08:00
14cd16f1f8
csrf: set cookie HttpOnly and Secure ( #6013 )
2020-03-27 00:08:46 +08:00
5800d78b99
go.mod: update github.com/gogs/git-module ( #6011 )
2020-03-26 00:02:33 +08:00
87053c5369
cmd: backup support exclude mirror repositories ( #6003 )
...
* cmd: backup support exclude mirror repositories
* Apply suggestions from code review
Co-authored-by: ᴜɴᴋɴᴡᴏɴ <u@gogs.io>
2020-03-24 22:03:05 +08:00
e14b6abf9d
http: always set header `X-Content-Type-Options` to `nosniff` ( #6008 )
2020-03-23 22:18:05 +08:00
740f814ce0
locale: sync from Crowdin ( #6006 )
2020-03-23 02:13:05 +08:00
5bcf4292b6
[ImgBot] Optimize images ( #6005 )
...
*Total -- 13.23kb -> 10.21kb (22.85%)
/public/img/dingtalk.png -- 7.86kb -> 5.96kb (24.1%)
/public/img/slack.png -- 5.38kb -> 4.25kb (21.02%)
Signed-off-by: ImgBotApp <ImgBotHelp@gmail.com>
Co-authored-by: ImgBotApp <ImgBotHelp@gmail.com>
2020-03-22 22:36:59 +08:00
ad7d1d4f29
github: rename job name ( #6004 )
...
* Update golint.yml
* Update lsif.yml
2020-03-22 22:23:52 +08:00
22717a1c06
webhook: overhaul route handlers ( #6002 )
...
* Overual route handlers and fixes #5366
* Merge routes for repo and org
* Inject OrgRepoContext
* DRY validateWebhook
* DRY c.HasError
* Add tests
* Update CHANGELOG
2020-03-22 22:07:22 +08:00
82e511ddb1
cmd: init logging before `SetEngine` ( #6001 )
2020-03-22 14:11:52 +08:00
5843038a08
workflows: enable golangci-lint ( #5998 )
...
* Create golint.yml
* Update golint.yml
* Update golint.yml
* Fix errcheck
* Fix gosimple
* Fix staticcheck
2020-03-21 13:39:32 +08:00
958d8b6bb4
admin: use POST to run operations ( #5997 )
...
* admin: use POST to run operations
Fixed CSRF reported by Wenxu Wu of Tencent's Xuanwu Lab.
* Update CHANGELOG
2020-03-21 11:47:42 +08:00
a43fc9ad17
ipynb: sanitize rendered HTML ( #5996 )
...
* ipynb: sanitize rendered HTML
Fixes #5170
* Remove hardcode URL
* Add tests
2020-03-21 00:12:38 +08:00
c69a38652d
locale: sync from Crowdin ( #5991 )
2020-03-16 13:57:46 +08:00
a4de85dc80
util: add tests ( #5989 )
2020-03-16 01:54:08 +08:00
9e9ca66467
refactor: unify error handling in routing layer
2020-03-16 01:22:27 +08:00
82ff0c5852
email: check the owner when set as primary ( #5988 )
...
* email: check the owner when set as primary
Fixes a security issue reported by muxishuihan.
* Update CHANGELOG
2020-03-15 18:58:56 +08:00
07f71e2034
README: update link to local development
...
[CI SKIP]
2020-03-15 03:49:09 +08:00
328c23c5d4
public: make lessc compile minimize CSS ( #5987 )
2020-03-15 03:47:07 +08:00
268c692efd
api: group "/contents" with "" and "/*" #5985 ( #5986 )
...
This PR groups the contents api endpoint with both `""` and `/*` as
valid URL patterns.
When `""` is the URL pattern, this means that no repo path has'nt been
provided, in which case the path would be the default repo path.
When `"/*"` is the URL pattern, then this would return the contents at
the specified path if it's valid.
Github API v3 is conformant to this behavior and have verified it
locally.
2020-03-13 22:37:42 +08:00
434f1ec542
all: clean up dot files ( #5983 )
2020-03-11 03:02:18 +08:00
dependabot-preview[bot]
ᴜɴᴋɴᴡᴏɴ
Philidor Green
imgbot[bot]
Bharat Nallan