Overview Repositories Revisions Requests Users Attributes Meta

forgejo

Edit Package forgejo
https://forgejo.org

Forgejo is a self-hosted lightweight software forge.

Take back control of your software development process, self-host your projects and get everyone involved in delivering quality software on the same page.

  • Developed at devel:tools:scm
  • Sources inherited from project openSUSE:Factory
  • 2 derived packages
  • Download package
  • osc -A https://api.opensuse.org checkout openSUSE:Backports:SLE-15-SP4:FactoryCandidates/forgejo && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
_service 0000000308 308 Bytes
apparmor-usr.bin.forgejo 0000002638 2.58 KB
custom-app.ini.patch 0000007875 7.69 KB
forgejo-src-7.0.4.tar.gz 0054935871 52.4 MB
forgejo-src-7.0.4.tar.gz.asc 0000000228 228 Bytes
forgejo.changes 0000010634 10.4 KB
forgejo.fc 0000000220 220 Bytes
forgejo.if 0000004216 4.12 KB
forgejo.keyring 0000002260 2.21 KB
forgejo.service 0000000922 922 Bytes
forgejo.sh 0000001624 1.59 KB
forgejo.spec 0000006158 6.01 KB
forgejo.sysusers 0000000104 104 Bytes
forgejo.te 0000001158 1.13 KB
get-sources.sh 0000001162 1.13 KB
node_modules.obscpio 0185686620 177 MB
node_modules.spec.inc 0000115645 113 KB
package-lock.json 0000477244 466 KB
Latest Revision
Ana Guerrero's avatar Ana Guerrero (anag+factory) accepted request 1181170 from Richard Rahl's avatar Richard Rahl (rrahl0) (revision 8) 
- update to 7.0.4:
  * Fixed: CVE-2024-24789: the archive/zip package's handling of certain types
    of invalid zip files differs from the behavior of most zip implementations.
    This misalignment could be exploited to create an zip file with contents that
    vary depending on the implementation reading the file.
  * the OAuth2 implementation does not always require authentication for public
    clients, a requirement of RFC 6749 Section 10.2
  * forgejo migrate-storage --type actions-artifacts always fails because it picks the wrong path.
  * avatar files can be found in storage while they do not exist in the database.
  * repository admins are always denied the right to force merge and instance admins
    are subject to restrictions to merge that must only apply to repository admins.
  * non conformance with the Nix tarball fetcher immutable link protocol.
  * migrated activities (such as reviews) are mapped to the user who initiated the
    migration rather than the Ghost user, if the external user cannot be mapped to a
    local one. This mapping mismatch leads to internal server errors in some cases.
  *  a v7.0.0 regression causes [admin].SEND_NOTIFICATION_EMAIL_ON_NEW_USER=true to always be ignored.
  * using a subquery for user deletion is a performance bottleneck when using mariadb 10
    because only mariadb 11 takes advantage of the available index.
  * a v7.0.3 regression causes the expanding diffs in pull requests to fail with a 404 error.
  * SourceHut Builds webhook fail when the triggers field is used.
  * the label list rendering in the issue and pull request timeline is displayed on
    multiple lines instead of a single one.
  * Git hooks of this repository seem to be broken." warning when pushing more than one branch at a time.
  * automerge does not happen when the approval count reaches the required threshold.
  * the FORCE_PRIVATE=true setting is not consistently enforced.
  * CSRF validation errors when OAuth is not enabled.
  * headlines in rendered org-mode do not have a margin on the top (forwarded request 1181169 from rrahl0)
Comments 0
openSUSE Build Service is sponsored by
Places