Nemcio/Gogs
1
0
Fork 0
mirror of https://github.com/gogs/gogs.git synced 2026-02-27 16:50:58 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,185 Commits 8 Branches 96 Tags
release/0.14
Commit Graph

6185 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Joe Chen
5dcb6c64bd release: update version to 0.14.2 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
v0.14.2 v0.14.2-rc.1 		2026-02-18 19:23:48 -05:00
JSS
b4bdb270d1 Fix git reset --end-of-options error on file upload and edit (#8184) 2026-02-18 19:13:57 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
0120bf0c86 js: use safe DOM construction for milestone and assignee selection (#8178) 
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-18 19:12:35 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
094b632182 context: reject access tokens passed via URL query parameters (#8177) 2026-02-18 19:12:23 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
a5c2cc0c6e template: escape untrusted names in locale strings piped through Safe (#8176) 
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-02-18 19:11:55 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
41b186cbfd database: use safe git-module API for tag deletion (#8175) 
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-02-18 19:11:43 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
51cf4cbe7e markup: restrict data URI scheme to safe image MIME types (#8174) 
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-18 19:10:56 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
5e6014c421 lfs: verify content hash and prevent object overwrite (#8166) 
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: deepsource-autofix[bot] <62050782+deepsource-autofix[bot]@users.noreply.github.com>
 2026-02-18 19:10:41 -05:00
Joe Chen
f5c8030c1f Fix up tests v0.14.1 v0.14.1-rc.1 2026-01-31 22:28:11 -05:00
Joe Chen
8c5c0125c4 release: update version to 0.14.1 2026-01-31 22:23:40 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
3f03530042 fix(ssh): git clone via built-in SSH server hangs (#8135) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 22:22:03 -05:00
Joe Chen
36c26c4ccc Update version to 0.14.0 v0.14.0 v0.14.0-rc.1 2026-01-31 16:32:58 -05:00
Joe Chen
b68e6886c6 release: cut CHANGELOG entries for 0.14.0 
[skip ci]
 2026-01-31 16:29:15 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
ac7ba9c8a7 locale: sync from Crowdin (#8131) 2026-01-31 16:07:47 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
dd862ee058 ci(docker): auto-tag minor version for stable releases (#8129) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 15:50:42 -05:00
Joe Chen
f94042ce6f chore: update release templates 
[skip ci]
 2026-01-31 15:17:59 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
628216d588 security: require authentication for attachment uploads (#8128) 
https://github.com/gogs/gogs/security/advisories/GHSA-fc3h-92p8-h36f

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 14:40:39 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
7306b955a9 ci: use external unknwon/send-email-on-failure action (#8127) 2026-01-31 13:29:30 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
fc6d1e2055 ci(release): add email notification on failure for main branch (#8126) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 13:13:51 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
3b01892d85 fix(docker): correct binary path in Dockerfiles(#8125) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 13:02:25 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
7b7e38c880 security: prevent deletion of protected and default branches via web UI (#8124) 
https://github.com/gogs/gogs/security/advisories/GHSA-2c6v-8r3v-gh6p

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 12:51:07 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
bb68c0a042 security: fix cross-repository label modification vulnerability (#8123) 
https://github.com/gogs/gogs/security/advisories/GHSA-cv22-72px-f4gh

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 12:28:30 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
68271e6af0 chore: update vulnerability reporting guidelines 
[skip ci]
 2026-01-31 12:01:23 -05:00
Copilot
4f5b00f8c4 Build artifacts for every commit on main (#8122) 
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: Joe Chen <jc@unknwon.io>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 11:58:45 -05:00
Joe Chen
5d3ffd132b chore: bunch of minor tidy-ups 
[skip ci]
 2026-01-31 09:59:32 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
ee65aa89ca ci: add cross-compilation workflow for releases (#8121) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-31 09:40:32 -05:00
dependabot[bot]
a1a97de76f mod: bump modernc.org/sqlite from 1.38.2 to 1.39.0 (#8038) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-30 23:19:19 -05:00
Matthias Jobst
9963268267 docker: ignore proxy for healthcheck command (#7532) 
Co-authored-by: Joe Chen <jc@unknwon.io>
 2026-01-30 23:12:49 -05:00
dependabot[bot]
49a45290ae mod: bump gopkg.in/macaron.v1 from 1.5.0 to 1.5.1 (#8035) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: ᴊᴏᴇ ᴄʜᴇɴ <jc@unknwon.io>
 2026-01-30 23:10:14 -05:00
Yaroslav Halchenko
3cc8e7aa6d Fix typos throughout the codebase (#7514) 2026-01-30 23:03:05 -05:00
Rajat Jain
9f1499f3ab Support comparing tags in addition to branches (#6493) 
Co-authored-by: Joe Chen <jc@unknwon.io>
Co-authored-by: Claude <noreply@anthropic.com>
 2026-01-30 22:45:03 -05:00
Jeff Li
77dba1b5ea repo: fix 500 error on watchers and stargazers pages using MSSQL (#6386) 
Co-authored-by: Joe Chen <jc@unknwon.io>
Co-authored-by: Claude <noreply@anthropic.com>
 2026-01-30 22:24:43 -05:00
Georg Wicke-Arndt
f70f29fdb0 Show file name in browser tab title when viewing files (#5896) 2026-01-30 22:11:10 -05:00
Joe Chen
ed6109d35d chore: update AGENTS.md 
[skip ci]
 2026-01-30 22:01:02 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
54e08ba678 docker: add image versions instructions 
[skip ci]
 2026-01-30 21:52:31 -05:00
Sino
87c8faaf08 Standardize HTTP status codes (#7851) 
Co-authored-by: Joe Chen <jc@unknwon.io>
 2026-01-30 09:27:59 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
1b226ca48d repo: improve authz for resources (#8119) 
https://github.com/gogs/gogs/security/advisories/GHSA-jj5m-h57j-5gv7
 2026-01-29 20:56:09 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
e3bb4165dc database: impersonate pure-Go SQLite driver as the old "sqlite3" (#8118) 2026-01-29 14:49:36 -05:00
pikomonde
df3d945a2c config: validate and print warnings for invalid options (#7705) 
Co-authored-by: Joe Chen <jc@unknwon.io>
 2026-01-28 11:36:03 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
ae41bab5f2 repo: always list tree entries with verbatim (#8116) 
Co-authored-by: Ali <alicse3@gmail.com>
 2026-01-28 10:11:30 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
2316b09eaf database: fully switch over to pure-Go SQLite driver (#8115) 2026-01-27 22:45:50 -05:00
Copilot
3477bbac0e Add ED25519 test coverage and refactor SSH key parsing tests (#8107) 
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: unknwon <2946214+unknwon@users.noreply.github.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-27 14:04:12 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
bb3cab921b chore: update release template (#8110) 
[skip ci]
 2026-01-24 23:07:27 -05:00
Copilot
1cdeef2ce8 Replace tool.IsMaliciousPath with pathutil.Clean and move IsSameSite to urlutil (#8106) 2026-01-23 21:13:27 -05:00
Joe Chen
a7bc1637db chore: update AGENTS.md 
[skip ci]
 2026-01-23 12:20:51 -05:00
Joe Chen
f1102a7a7c release: cut CHANGELOG entries for 0.13.4 
[skip ci]
 2026-01-23 10:13:11 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
26ef07f60d repo: validate Git server hook name for editing (#8103) 2026-01-23 09:40:36 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
ca59e76a53 api: verify write access to update repo content (#8102) 2026-01-23 09:19:11 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
27f1250d00 api: verify owner access to delete repos (#8101) 2026-01-22 22:52:57 -05:00
ᴊᴏᴇ ᴄʜᴇɴ
560f92ec5f two_factor: verify recovery code ownership upon using (#8100) 2026-01-22 22:30:27 -05:00