Gitea - Package Updates

nebulon

[1.21.3]

• Update Gitea to 1.14.3
• Full changelog
• Encrypt migration credentials at rest (#15895) (#16187)
• Only check access tokens if they are likely to be tokens (#16164) (#16171)
• Add missing SameSite settings for the i_like_gitea cookie (#16037) (#16039)
• Fix setting of SameSite on cookies (#15989) (#15991)

nebulon

[1.21.4]

• Update Gitea to 1.14.4
• Full changelog
• Fix relative links in postprocessed images (#16334) (#16340)
• Fix list_options GetStartEnd (#16303) (#16305)
• Fix API to use author for commits instead of committer (#16276) (#16277)
• Handle misencoding of login_source cfg in mssql (#16268) (#16275)
• Fixed issues not updated by commits (#16254) (#16261)
• Improve efficiency in FindRenderizableReferenceNumeric and getReference (#16251) (#16255)
• Use html.Parse rather than html.ParseFragment (#16223) (#16225)
• Fix milestone counters on new issue (#16183) (#16224)
• reqOrgMembership calls need to be preceded by reqToken (#16198) (#16219)

nebulon

[1.21.5]

• Update Gitea to 1.14.5
• Full changelog
• Hide mirror passwords on repo settings page (#16022) (#16355)
• Update bluemonday to v1.0.15 (#16379) (#16380)
• Retry rename on lock induced failures (#16435) (#16439)
• Validate issue index before querying DB (#16406) (#16410)
• Fix crash following ldap authentication update (#16447) (#16449)
• Redirect on bad CSRF instead of presenting bad page (#14937) (#16378)

girish

[1.21.6]

• Update Gitea to 1.14.6
• Full changelog
• SECURITY
  • Bump github.com/markbates/goth from v1.67.1 to v1.68.0 (#16538) (#16540)
  • Switch to maintained JWT lib (#16532) (#16535)
  • Upgrade to latest version of golang-jwt (as forked for 1.14) (#16590) (#16607)

nebulon

[1.22.0]

• Update Gitea to 1.15.0
• Full changelog

nebulon

[1.22.1]

• Update Gitea to 1.15.1
• Full changelog

nebulon

[1.22.2]

• Update Gitea to 1.15.2
• Add unique constraint back into issue_index (#16938)
• Close storage objects before cleaning (#16934) (#16942)

nebulon

[1.22.3]

• Update Gitea to 1.15.3
• Full changelog
• Add fluid to ui container class to remove margin (#16396) (#16976)
• Add caller to cat-file batch calls (#17082) (#17089)
• Many bug fixes

girish

[1.22.4]

• Update Gitea to 1.15.4
• Full changelog
• Raw file API: don't try to interpret 40char filenames as commit SHA (#17185) (#17272)
• Don't allow merged PRs to be reopened (#17192) (#17271)
• Fix incorrect repository count on organization tab of dashboard (#17256) (#17266)
• Fix unwanted team review request deletion (#17257) (#17264)
• Fix broken Activities link in team dashboard (#17255) (#17258)
• API pull's head/base have correct permission(#17214) (#17245)
• Fix stange behavior of DownloadPullDiffOrPatch in incorect index (#17223) (#17227)
• Upgrade xorm to v1.2.5 (#17177) (#17188)
• Fix missing repo link in issue/pull assigned emails (#17183) (#17184)
• Fix bug of get context user (#17169) (#17172)
• Nicely handle missing user in collaborations (#17049) (#17166)
• Add Horizontal scrollbar to inner menu on Chrome (#17086) (#17164)
• Fix wrong i18n keys (#17150) (#17153)
• Fix Archive Creation: correct transaction ending (#17151)
• Prevent panic in Org mode HighlightCodeBlock (#17140) (#17141)
• Create doctor command to fix repo_units broken by dumps from 1.14.3-1.14.6 (#17136) (#17137)

nebulon

[1.22.5]

• Update Gitea to 1.15.5
• Full changelog
• Upgrade Bluemonday to v1.0.16 (#17372) (#17374)
• Ensure correct SSH permissions check for private and restricted users (#17370) (#17373)
• Prevent NPE in CSV diff rendering when column removed (#17018) (#17377)
• Offer rsa-sha2-512 and rsa-sha2-256 algorithms in internal SSH (#17281) (#17376)
• Don't panic if we fail to parse U2FRegistration data (#17304) (#17371)
• Ensure popup text is aligned left (backport for 1.15) (#17343)
• Ensure that git daemon export ok is created for mirrors (#17243) (#17306)
• Disable core.protectNTFS (#17300) (#17302)
• Use pointer for wrappedConn methods (#17295) (#17296)
• AutoRegistration is supposed to be working with disabled registration (backport) (#17292)
• Handle duplicate keys on GPG key ring (#17242) (#17284)
• Fix SVG side by side comparison link (#17375) (#17391)

nebulon

[1.22.6]

• Update Gitea to 1.15.6
• Full changelog
• Prevent panic in serv.go with Deploy Keys (#17434) (#17435)
• Fix CSV render error (#17406) (#17431)
• Read expected buffer size (#17409) (#17430)
• Ensure that restricted users can access repos for which they are members (#17460) (#17464)
• Make commit-statuses popup show correctly (#17447) (#17466)

girish

[1.23.0]

• Update Gitea to 1.15.7
• Full changelog
• Enable rendering of jupyter notebooks, rst, asciidoc by default
• Only allow webhook to send requests to allowed hosts (#17482) (#17510)
• Fix login redirection links (#17451) (#17473)

girish

[1.23.1]

• Update Gitea to 1.15.8
• Full changelog
• Move POST /{username}/action/{action} to simply POST /{username} (#18045) (#18046)
• Fix delete u2f keys bug (#18040) (#18042)
• Reset Session ID on login (#18018) (#18041)
• Prevent off-by-one error on comments on newly appended lines (#18029) (#18035)
• Stop printing 03d after escaped characters in logs (#18030) (#18034)

nebulon

[1.23.2]

• Update Gitea to 1.15.9
• Full changelog
• Fix wrong redirect on org labels (#18128) (#18134)
• Fix: unstable sort skips/duplicates issues across pages (#18094) (#18095)
• Revert "Fix delete u2f keys bug (#18042)" (#18107)
• Migrating wiki don't require token, so we should move it out of the require form (#17645) (#18104)
• Prevent NPE if gitea uploader fails to open url (#18080) (#18101)
• Reset locale on login (#17734) (#18100)
• Correctly handle failed migrations (#17575) (#18099)
• Instead of using routerCtx just escape the url before routing (#18086) (#18098)
• Quote references to the user table in consistency checks (#18072) (#18073)
• Add NotFound handler (#18062) (#18067)
• Ensure that git repository is closed before transfer (#18049) (#18057)
• Use common sessioner for API and web routes (#18114)

nebulon

[1.23.3]

• Update Gitea to 1.15.10
• Full changelog
• Fix inconsistent PR comment counts (#18260) (#18261)
• Fix release link broken (#18252) (#18253)
• Fix update user from site administration page bug (#18250) (#18251)
• Set HeadCommit when creating tags (#18116) (#18173)
• Use correct translation key for error messages due to max repo limits (#18135 & #18153) (#18152)
• Fix purple color in suggested label colors (#18241) (#18242)
• Bump mermaid from 8.10.1 to 8.13.8 (#18198) (#18206)

nebulon

[1.23.4]

• Update Gitea to 1.16.0
• Full changelog

girish

[1.23.5]

• Update Gitea to 1.16.1
• Full changelog
• Update JS dependencies, fix lint (#18389) (#18540)
• Add dropdown icon to label set template dropdown (#18564) (#18571)
• Comments on migrated issues/prs must link to the comment ID (#18630) (#18637)
• Stop logging an error when notes are not found (#18626) (#18635)
• Ensure that blob-excerpt links work for wiki (#18587) (#18624)
• Only attempt to flush queue if the underlying worker pool is not finished (#18593) (#18620)

girish

[1.23.6]

• Update Gitea to 1.16.2
• Full changelog
• Show fullname on issue edits and gpg/ssh signing info (#18828)
• Immediately Hammer if second kill is sent (#18823) (#18826)
• Allow mermaid render error to wrap (#18791)

nebulon

[1.23.7]

• Update Gitea to 1.16.3
• Full changelog

nebulon

[1.23.8]

• Update Gitea to 1.16.4
• Full changelog
• Restrict email address validation (#17688) (#19085)
• Fix lfs bug (#19072) (#19080)