Joe Chen
f5262441a0
ssh: make env command a passthrough ( #7868 )
...
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-vm62-9jw3-c8w3
ssh: make `env` command a passthrough (#7868 )
Fixes
https://github.com/gogs/gogs/security/advisories/GHSA-vm62-9jw3-c8w3
2024-12-22 17:04:03 -05:00
Alexandre Jacquin
f6862c1f8b
Fix s6-svscan path in Dockerfile ( #7867 )
...
Related to #7864
## Describe the pull request
Fix the path of the s6-svscan binary path in the Dockerfile. As
mentionned in the issue, it is probably to the alpine base image change
(from `3.17` to `3.21`).
Link to the issue:
https://github.com/gogs/gogs/issues/7864#issuecomment-2558323928
Credit to @cryptovaltt
## Test plan
Build the image and check if the application can be ran. E.g.:
```bash
docker build -t gogs:working-7864 -f Dockerfile .
docker run --name=gogs -p 10022:22 -p 10880:3000 -v gogs:working-7864 --rm
```
2024-12-22 17:01:09 -05:00
Joe Chen
bd84b41843
Dockerfile: update base image to alpine3.21 and enable trivy scan ( #7863 )
...
Link to the issue: fixes https://github.com/gogs/gogs/issues/6674
2024-12-22 17:00:43 -05:00
Joe Chen
c947affcfa
api: clean file path for updating repo contents ( #7859 )
...
## Describe the pull request
Link to the issue: closes https://github.com/gogs/gogs/issues/7582
2024-12-22 16:55:01 -05:00
Joe Chen
40cb106198
repo/editor: disallow editing symlink while changing file name ( #7857 )
...
## Describe the pull request
Link to the issue: https://github.com/gogs/gogs/issues/7582
2024-12-22 16:54:18 -05:00
Mobile Mind
b89da2f6eb
install: fix SMTP password config name to save ( #7807 )
2024-12-22 16:54:02 -05:00
Jiaxin Zhu
75969c92ef
fix(templates): the green color is supposed to be purple ( #7722 )
...
Co-authored-by: jxzhu <zhujiaxin@gmail.com>
2024-12-22 16:53:45 -05:00
bitebyte
e993f1dbff
Fix issue: synchronize the section name[mailer/email] of app.ini ( #7704 )
2024-12-22 16:52:23 -05:00
Joe Chen
8c21874c00
release: remove dev version notion
2023-02-25 20:33:19 +08:00
Joe Chen
540134d443
CHANGELOG: cut entries for 0.13.0 ( #7373 )
...
[skip ci]
2023-02-25 20:31:04 +08:00
Joe Chen
6244daa3ea
chore: update release issue templates ( #7371 )
...
[skip ci]
2023-02-25 20:28:30 +08:00
Joe Chen
689e71ff2c
ci: run Go tests with -shuffle=on ( #7370 )
2023-02-25 16:56:39 +08:00
Joe Chen
361a681225
docs: minor updates ( #7367 )
...
[skip ci]
2023-02-25 16:08:34 +08:00
Joe Chen
73ae88badf
CHANGELOG: cut entries for 0.12.11 ( #7368 )
...
[skip ci]
2023-02-25 13:39:06 +08:00
dependabot[bot]
72d51347ec
mod: bump gorm.io/driver/mysql from 1.4.3 to 1.4.7 ( #7363 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-20 19:28:14 +08:00
dependabot[bot]
dc37bf5794
mod: bump modernc.org/sqlite from 1.20.3 to 1.20.4 ( #7364 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-20 19:15:19 +08:00
dependabot[bot]
9e5fa984f8
mod: bump gorm.io/driver/postgres from 1.4.7 to 1.4.8 ( #7362 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-20 19:14:56 +08:00
Joe Chen
3e3d6eda12
chore: update Go versions in CI ( #7346 )
2023-02-19 18:10:34 +08:00
dependabot[bot]
9110059797
mod: bump golang.org/x/net from 0.6.0 to 0.7.0 ( #7358 )
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-18 22:19:40 +08:00
Joe Chen
15d0d6a94b
fix(db): correctly check Git path on case-insensitive file system ( #7359 )
2023-02-18 22:15:13 +08:00
Joe Chen
0f8c71d3b3
fix(migration): skip v20 if column sha256 already exists ( #7354 )
2023-02-14 22:44:23 +08:00
Joe Chen
8f9895acaf
fix(db): sanitize user full name after find ( #7353 )
2023-02-14 21:46:09 +08:00
Joe Chen
2a375007ee
fix(repo): be tolerant to implicit submodules ( #7352 )
2023-02-14 14:46:29 +08:00
dependabot[bot]
c63448e357
mod: bump github.com/gogs/git-module from 1.7.2 to 1.8.0 ( #7350 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-13 22:46:36 +08:00
dependabot[bot]
5db49a8892
mod: bump gorm.io/driver/postgres from 1.4.6 to 1.4.7 ( #7349 )
...
[ci skip]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-13 22:45:31 +08:00
dependabot[bot]
1a1b50d786
mod: bump golang.org/x/crypto from 0.5.0 to 0.6.0 ( #7347 )
...
[ci skip]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-13 22:43:31 +08:00
Joe Chen
b34ee73497
feat(ssh): support dynamic list of algorithms ( #7345 )
2023-02-12 13:10:41 +08:00
Joe Chen
92f66c9eac
chore: ask for test plan when test cases are not applicable ( #7344 )
...
[ci skip]
2023-02-12 12:47:13 +08:00
Joe Chen
3a28168d41
fix(backup): skip "data" in the custom directory ( #7343 )
2023-02-12 00:14:51 +08:00
Vamsi Atluri
ef1fe1bb3b
conf: add new config option for default branch name ( #7291 )
...
Co-authored-by: Vamsi Atluri <me@vamc19.dev>
Co-authored-by: Joe Chen <jc@unknwon.io>
2023-02-11 16:37:24 +08:00
Joe Chen
8350daf505
refactor(db): merge relation stores into entity stores ( #7341 )
2023-02-08 13:55:54 +08:00
Joe Chen
133b9d9044
refactor(db): finish migrate methods off user.go ( #7337 )
2023-02-07 23:39:00 +08:00
Joe Chen
7c453d5b36
README: update sponsor link ( #7340 )
...
[ci skip]
2023-02-07 20:00:31 +08:00
Joe Chen
b6df33fa72
README: update VPS sponsor ( #7339 )
...
[ci skip]
2023-02-06 23:17:40 +08:00
dependabot[bot]
8d6b964099
mod: bump gorm.io/gorm from 1.24.3 to 1.24.5 ( #7338 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-06 20:08:09 +08:00
Joe Chen
7ff09cf359
refactor(db): migrate methods off user.go ( #7336 )
2023-02-05 16:28:47 +08:00
Joe Chen
3c43b9b21c
locale: sync from Crowdin ( #7335 )
2023-02-04 20:47:53 +08:00
Zachary Walters
5887bc116f
chore: remove usages of the deprecated ioutil ( #7332 )
...
Co-authored-by: Joe Chen <jc@unknwon.io>
2023-02-04 13:43:36 +08:00
Joe Chen
6d220540c1
refactor(db): migrate methods off user.go ( #7334 )
2023-02-04 13:36:00 +08:00
Joe Chen
ed51686240
refactor(db): migrate methods off user.go ( #7333 )
2023-02-04 12:22:37 +08:00
Joe Chen
cc4d4eacad
refactor(db): migrate methods off user.go ( #7331 )
2023-02-04 00:02:34 +08:00
Joe Chen
c53a1998c5
all: replace interface{} with any ( #7330 )
...
Co-authored-by: deepsource-autofix[bot] <62050782+deepsource-autofix[bot]@users.noreply.github.com>
2023-02-02 21:25:25 +08:00
Joe Chen
614382fec0
refactor(db): migrate methods off user.go ( #7329 )
2023-02-02 21:14:27 +08:00
Joe Chen
9df10cb8cc
docker: upgrade base images to alpine:3.17 ( #7043 )
2023-01-30 20:38:53 +08:00
dependabot[bot]
5c47ecfcb8
mod: bump github.com/microcosm-cc/bluemonday from 1.0.21 to 1.0.22 ( #7325 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-30 20:24:06 +08:00
dependabot[bot]
3d8004cf6f
mod: bump modernc.org/sqlite from 1.20.2 to 1.20.3 ( #7321 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Joe Chen <jc@unknwon.io>
2023-01-26 20:20:11 +08:00
dependabot[bot]
a3e2adeda2
mod: bump github.com/urfave/cli from 1.22.10 to 1.22.12 ( #7320 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-24 22:07:28 +08:00
dependabot[bot]
63117f46ee
mod: bump github.com/sergi/go-diff from 1.2.0 to 1.3.1 ( #7312 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-18 10:07:30 +08:00
dependabot[bot]
cf70284de9
mod: bump gorm.io/gorm from 1.24.2 to 1.24.3 ( #7305 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[ci skip]
2023-01-09 23:29:05 +08:00
dependabot[bot]
367f2907df
mod: bump golang.org/x/crypto from 0.4.0 to 0.5.0 ( #7303 )
...
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-09 23:22:47 +08:00
