Comparing b83d564113..cc146bfa8a - peezy-tech/jojo - Forgejo: Beyond coding. We forge.

mirror of https://codeberg.org/forgejo/forgejo.git synced 2026-05-13 14:30:25 +00:00

Author	SHA1	Message	Date
Renovate Bot	cc146bfa8a	Update data.forgejo.org/forgejo/forgejo Docker tag to v11.0.14 (forgejo) (#12543 ) Some checks are pending Integration tests for the release process / release-simulation (push) Waiting to run Details / release (push) Waiting to run Details testing-integration / test-unit (push) Waiting to run Details testing-integration / test-sqlite (push) Waiting to run Details testing-integration / test-mariadb (v10.6) (push) Waiting to run Details testing-integration / test-mariadb (v11.8) (push) Waiting to run Details testing / backend-checks (push) Waiting to run Details testing / frontend-checks (push) Waiting to run Details testing / test-unit (push) Blocked by required conditions Details testing / test-e2e (push) Blocked by required conditions Details testing / test-remote-cacher (redis) (push) Blocked by required conditions Details testing / test-remote-cacher (valkey) (push) Blocked by required conditions Details testing / test-remote-cacher (garnet) (push) Blocked by required conditions Details testing / test-remote-cacher (redict) (push) Blocked by required conditions Details testing / test-mysql (push) Blocked by required conditions Details testing / test-pgsql (push) Blocked by required conditions Details testing / test-sqlite (push) Blocked by required conditions Details testing / security-check (push) Blocked by required conditions Details testing / semgrep/ci (push) Waiting to run Details Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12543 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-05-13 08:30:01 +02:00
Mathieu Fenniak	6e5dbfa169	fix: handle boolean workflow inputs correctly before jobparser evaluates with them (#12539 ) Fixes https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/112. Currently boolean `workflow_dispatch` values are being passed as strings during Forgejo's job parsing, causing both true & false to have the same behaviour when evaluated in a condition like this: ``` on: workflow_dispatch: inputs: win32: type: boolean jobs: job1: strategy: matrix: runner: ${{ fromJSON(inputs.win32 == 'true' && '["win32", "win64"]' \|\| '["win64"]') }} steps: # ... ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12539 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-12 22:41:07 +02:00
oliverpool	88ba174119	tests: better factory with forgery package (#11356 ) ### Context Following the feedback in forgejo/discussions#170 (and my ambitious attempt in forgejo/forgejo#10985), it appears that having an easy-to-use factory package would greatly help get rid of the global fixtures. I think that the global fixtures are quite harmful (recent example: https://codeberg.org/forgejo/forgejo/pulls/9906#issuecomment-10826066): - hard to write (contributor must know where to add them) - hard to change (may break some unrelated tests) - hard to review (not located near the test code) - they require the tests to execute sequentially ### Proposed way forward The `forgery` package (the name represents faking/crafting and sounds good with Forgejo) is meant to replace global yaml fixtures with local go factories. The forgery can currently: - create users - create repos - create organisations This allowed me to drop `CreateDeclarativeRepoWithOptions` (and deprecate `CreateDeclarativeRepo`). I think that further changes should be delayed to other PRs (I have a local branch to create `Project`) ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11356 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org>	2026-05-12 20:57:02 +02:00
forgejo-release-manager	0e577ed6c9	chore(release-notes): Forgejo v15.0.2 (#12536 ) https://codeberg.org/forgejo/forgejo/milestone/84479 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12536 Reviewed-by: Beowulf <beowulf@beocode.eu>	2026-05-12 09:10:46 +02:00
forgejo-release-manager	a6e141f805	chore(release-notes): Forgejo v11.0.14 [skip ci] (#12535 ) https://codeberg.org/forgejo/forgejo/milestone/84476 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12535 Reviewed-by: Beowulf <beowulf@beocode.eu>	2026-05-12 09:08:47 +02:00
Nirmal Kumar R	9d37ac68ee	fix(e2e): Missing await on page.goto in org-members tests (#12525 ) These tests are failing in the Last Two Days in the latest test report. Error: ``` 61 \| 62 \| // A modal dialog appears > 63 \| await expect(page.locator('#add-member-modal')).toBeVisible(); \| ^ 64 \| 65 \| // Fill in the name of the user to add 66 \| await page.locator('#search-user-box input').fill('user5'); at /workspace/forgejo/forgejo/tests/e2e/org-members.test.e2e.ts:63:51 ``` The `page.goto` in the tests are unawaited, which leads to the page not fully loaded to proceed with the next lines to check for visibility. The fix is to add `await` on `page.goto()` in all the missing places in this test file - `org-members.test.e2e.ts`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12525 Reviewed-by: Otto <otto@codeberg.org>	2026-05-12 05:05:16 +02:00
Mathieu Fenniak	32b8d732b8	2026-05-12 security patches (#12493 ) - fix: prevent git write to wiki repo from unauthorized user via git HTTP - fix: prevent LFS authorization token from being used for read/write access after user's access is restricted from Forgejo - fix: prevent scoped API access (OAuth tokens, Access tokens) from accessing resources beyond their permitted scope via non-API endpoints (e.g. /user/repo/raw/...) - fix: implementing missing OAuth validation checks, improve protections against race conditions - fix: prevent OAuth redirect URI spoofing via non-ascii case collision - fix: strengthen Actions Artifact V4 signature algorithm against spoofing attacks <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Security bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/12493): <!--number 12493 --><!--line 0 --><!--description MjAyNi0wNS0xMiBzZWN1cml0eSBwYXRjaGVz-->2026-05-12 security patches<!--description--> <!--end release-notes-assistant--> Co-authored-by: Derzsi Dániel <daniel@tohka.us> Co-authored-by: jvoisin <julien.voisin@dustri.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12493	2026-05-12 04:54:25 +02:00
TurtleArmy	5b6c702f41	feat(ui): support Pandoc style code blocks (#12099 ) This resolves https://codeberg.org/forgejo/forgejo/issues/11107. Codeberg doesn't support [Pandoc style code blocks](https://pandoc.org/MANUAL.html#extension-fenced_code_attributes), so only the two of these 3 will have syntax highlighting. \`\`\`haskell qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) \`\`\` \`\`\`haskell {.numberLines} qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) \`\`\` \`\`\`{.numberLines .haskell} qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) \`\`\` ```haskell qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) ``` ```haskell {.numberLines} qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) ``` ```{.numberLines .haskell} qsort [] = [] qsort (x:xs) = qsort (filter (< x) xs) ++ [x] ++ qsort (filter (>= x) xs) ``` This PR adds syntax highlighting to the examples with Pandoc style code blocks. It also adds redundant code to explicitly handle the second case with the trailing attribute syntax, which might be unnecessary since it already works, but I think should be fine to leave in. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12099 Reviewed-by: Ellen Εμίλια Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-12 00:53:09 +02:00
Renovate Bot	88fd372d9a	Update dependency mermaid to v11.15.0 [SECURITY] (forgejo) (#12526 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12526 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 23:54:58 +02:00
Andreas Ahlenstorf	753e289da5	fix: wipe run artifacts before rerun (#12523 ) Forgejo Actions keeps one set of artifacts per workflow run -- those of the latest workflow run. If a particular workflow run is rerun, Forgejo is supposed to remove outdated artifacts. However, it does not do that. As a result, the user is presented a mix of outdated and new artifacts, even within the same archive. This is remedied by wiping the artifacts before each rerun. The same happens when only one or more jobs are rerun, which also matches the behaviour of GitHub Actions. In the example below, when only rerunning `artifacts-two`, `many-artifacts-one` would disappear and a new version of `many-artifacts-two` would be made available. Reproducer: ```yaml on: push: jobs: artifacts-one: runs-on: ubuntu-latest steps: - run: mkdir -p artifacts-one - run: \| if [[ "${{ github.run_attempt}}" == 1 ]] ; then echo "${{ github.run_attempt}}" > artifacts-one/ONE; fi echo "${{ github.run_attempt}}" > artifacts-one/TWO - uses: forgejo/upload-artifact@v4 with: name: many-artifacts-one path: artifacts-one/ artifacts-two: runs-on: ubuntu-latest steps: - run: mkdir -p artifacts-two - run: \| if [[ "${{ github.run_attempt}}" == 1 ]] ; then echo "${{ github.run_attempt}}" > artifacts-two/ONE; fi echo "${{ github.run_attempt}}" > artifacts-two/TWO - uses: forgejo/upload-artifact@v4 with: name: many-artifacts-two path: artifacts-two/ ``` Resolves https://codeberg.org/forgejo/forgejo/issues/12163. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12523 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-11 21:45:56 +02:00
Robert Wolff	efe52db86f	fix(ui): use tab width from `.editorconfig` when editing files (#11418 ) Resolves #11411. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11418 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 20:24:24 +02:00
Marten Lienen	cbaf97b867	feat: render org-mode file links with line numbers (#12496 ) This change renders file links in org-mode like `./module.el::20` as a link to the 20th line, for example. It also strips off other search types that are not currently supported in forgejo like regex search to avoid generating invalid URLs. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12496 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 20:21:29 +02:00
steven.guiheux	ba1c3e0288	feat(api): add admin routes to manage user access tokens (#12323 ) # Feature Request: Admin API route to manage access tokens for any user ## Problem The existing API route to create access tokens (POST /api/v1/users/{username}/tokens) requires Basic authentication (username + password) via the reqBasicOrRevProxyAuth() middleware. This is by design: a token should not be created from another token. However, this creates a blocker for environments where Basic authentication is disabled (ENABLE_BASIC_AUTHENTICATION = false), typically when authentication is delegated to an external SSO provider (e.g., OpenID Connect). In such setups, bot/service accounts are provisioned by an external system that needs to: Create a user via POST /api/v1/admin/users (works fine with an admin token) Create an access token for that user (currently impossible without Basic auth or direct CLI/DB access) The only workaround today is to SSH into the Forgejo server and run: This is not suitable when the provisioning system has no direct access to the Forgejo host. ## Proposed solution Add new admin-only API routes under the existing /api/v1/admin/users/{username} group to manage access tokens: \| Method \| Route \| Description \| \|:-------- \|:--------:\| --------:\| \| GET \| /api/v1/admin/users/{username}/tokens \| List access tokens for a user\| \|POST \| /api/v1/admin/users/{username}/tokens \| Create an access token for a user\| \|DELETE \| /api/v1/admin/users/{username}/tokens/{id} \| Delete an access token for a user\| These routes would: Require a site admin token (reqToken() + reqSiteAdmin()) — no Basic auth needed Use the AccessTokenScopeCategoryAdmin token scope Reuse the existing handler logic from user.CreateAccessToken / user.ListAccessTokens / user.DeleteAccessToken Accept the same request/response payloads as the existing user-facing routes ### Why this belongs in the admin API It follows the existing pattern: admins can already create users, repos, orgs, SSH keys, and emails for any user via the admin API It does not weaken security: only site administrators can call it, and it requires a valid admin-scoped token It fills a gap: the admin CLI command forgejo admin user generate-access-token already provides this capability, but only locally <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/12323): <!--number 12323 --><!--line 0 --><!--description ZmVhdChhcGkpOiBhZGQgYWRtaW4gcm91dGVzIHRvIG1hbmFnZSB1c2VyIGFjY2VzcyB0b2tlbnM=-->feat(api): add admin routes to manage user access tokens<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12323 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-11 16:55:22 +02:00
Andreas Ahlenstorf	03312e4f46	feat: make it possible to remove workflow runs (#12478 ) Add the ability to remove workflow runs, either using the UI or the HTTP API. Workflow runs can only be removed once a workflow run has completed. For security reasons, only a repository administrator or a token with `write:repository` permissions can remove runs. Resolves https://codeberg.org/forgejo/forgejo/issues/2184. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/12478): <!--number 12478 --><!--line 0 --><!--description bWFrZSBpdCBwb3NzaWJsZSB0byByZW1vdmUgd29ya2Zsb3cgcnVucw==-->make it possible to remove workflow runs<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12478 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-11 16:02:36 +02:00
Renovate Bot	2d5dd62cf3	Update renovate Docker tag to v43.170.20 (forgejo) (#12516 )	2026-05-11 06:33:45 +02:00
Renovate Bot	b21b173f6e	Update module golang.org/x/net to v0.54.0 (forgejo) (#12485 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12485 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 05:22:59 +02:00
Nirmal Kumar R	6b516e2721	fix(e2e): Flaky tests on Toggle WIP + Dependency dropdown (#12473 ) There are two test groups in `issue-sidebar.test.e2e.ts` which behaves flaky on CI: - Toggle WIP - Dependency dropdown 1. Toggle WIP: There is a race-condition happening with this test execution, when we toggle the WIP status "Still in progress?" / "Ready for review?", there is a page reload that happens once we select either of the option and when we use window.WaitForLoadState('domcontentloaded')` it just check the state of the current dom and not the reloading of the page. To mitigate this, we need to use a promise call with `page.WaitForEvent('load')` wherever necessary. This change has been applied in the `setTitle` and `toggle_wip_to` helper functions. Also there is a refactor logic where we remove the repetitive call for click and save events on `manual edit` and `maximum_title_length` and consistently use the setTitle. 2. Dependency dropdown There is flakiness with this code: ``` await input.fill('1'); await expect(items.first()).toContainText(first); ``` We register the issues via `postIssue` in the `declare_repo_test.go` file. And the catch is about this issue popping up for the above logic: ``` postIssue(repo, user, 500, "first issue here", "an issue created earlier") postIssue(repo, user, 400, "second issue here (not 1)", "not the right issue, but in the right repo") ``` On each issue creation, the frontend shows the index as `#1`, `#2`, respectively. The issue is when we search for 1, the indexer implementation finds the highest scoring with relevant sorting order. These are the two issues that pops up in the first two results. ``` #1 first issue here #2 second issue here (not 1) ``` In the above results, sometimes the #2 issue will be shown as the first item in the dropdown results because it contains the exact match `1` in (not 1). Hence the solution is to remove the `(not 1)` from the second issue to fix this flakiness behaviour. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12473 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 04:31:13 +02:00
Renovate Bot	3f0a8b4424	Update module golang.org/x/image to v0.40.0 (forgejo) (#12484 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12484 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 03:37:09 +02:00
Renovate Bot	dcf1e7ce09	Update module github.com/fsnotify/fsnotify to v1.10.1 (forgejo) (#12416 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12416 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 03:07:16 +02:00
Renovate Bot	a59879402e	Update dependency @codemirror/view to v6.42.1 (forgejo) (#12514 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12514 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-11 02:38:10 +02:00
Renovate Bot	c25cbd6fc4	Update renovate Docker tag to v43.170.19 (forgejo) (#12513 )	2026-05-11 02:30:23 +02:00
Cameron Radmore	6b75654cc2	chore: enforce RTL-friendly logical CSS properties with a linter (#12491 ) Related issue: https://codeberg.org/forgejo/forgejo/issues/8581 This should be a nice first step towards RTL support. Future PRs can look at updating the tailwind classes, changing some of the icons (arrow left might need to become arrow right in some cases for example, and updating the template files) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12491 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-05-11 00:20:45 +02:00
moritzdietz	a8cae6d511	fix: Disable spellcheck on repo name field (#12506 ) Fairly new to Forgejo but I just ran into this when trying to create a couple repositories. I noticed that the input field for the repository name in several areas of the UI is prone to have annoying auto-capitalization, spellchecking and other browser features which try to correct the user input. I as a user would like to not have the browser interfere with my input especially in dialogs where I want to have something "custom". For fields where the repo name is used to validate an action (Danger Zone) this is even more frustrating. So, to me, this is a quality of live improvement fix. I checked the docs for these three attributes and none of them seem to have a negative side effect for the user: 1. https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Global_attributes/autocorrect 2. https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Global_attributes/autocapitalize 3. https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Global_attributes/spellcheck ## List of URLs where this applies: 1. `/repo/migrate` 2. `/repo/create` 3. `/<user>/<repo slug>/settings` 4. In general things in the "Danger zone" section where the repo name is used to validate the action 5. … Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12506 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2026-05-10 21:42:21 +02:00
Mathieu Fenniak	e5eb5f8e63	feat: allow Authorized Integrations to have multiple values for a claim match (#12482 ) Adds new Authorized Integration claim comparison rules for "in a list" and "in a list of globs", which would be required to permit multiple Forgejo Action events to match a JWT (per [design work](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-14510514), [comment](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-14512185)). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12482 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-10 04:52:02 +02:00
Renovate Bot	a4d623148d	Update dependency forgejo/release-notes-assistant to v1.7.0 (forgejo) (#12501 )	2026-05-10 03:02:17 +02:00
Mathieu Fenniak	0cdbef74f0	chore: PGP sign .well-known/security.txt [skip ci] (#12502 ) Sign the distributed version of `.well-known/security.txt`, just like https://forgejo.org/.well-known/security.txt is signed. ``` $ gpg --verify ./security.txt gpg: Signature made Sat 09 May 2026 05:59:29 PM MDT gpg: using EDDSA key 1B638BDF10969D627926B8D9F585D0F99E1FB56F gpg: Good signature from "Forgejo Security <security@forgejo.org>" [unknown] Primary key fingerprint: 1B63 8BDF 1096 9D62 7926 B8D9 F585 D0F9 9E1F B56F ``` In the future this signature will have to be updated before the key expires; but as the expiry is already documented in the file this isn't significantly different than the current state. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12502 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-10 02:21:17 +02:00
Renovate Bot	3fc3942356	Update CodeMirror (forgejo) (#12498 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12498 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-10 01:32:13 +02:00
Stefan Gehn	d2a7fc1458	fix: Use notify in systemd forgejo.service example [skip-ci] (#10212 ) Use notify as systemd service in the example configuration. Notifying systemd on successful startup is supported since Forgejo 1.20.0 already. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10212 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-10 00:39:51 +02:00
Mathieu Fenniak	9a5d9397a4	chore: update flake.lock; add gnupg as dependency (#12497 ) Add `gnupg` as part of the Nix-based development environment, which is a dependency for a small number of integration tests like `TestInstanceSigning`. Bumps `flake.lock` from its current 2025-11-12 to current 2026-05-05 pin, bringing updated tools referenced in `shell.nix`. ``` $ nix flake update • Updated input 'nixpkgs': 'github:nixos/nixpkgs/c5ae371f1a6a7fd27823bc500d9390b38c05fa55?narHash=sha256-4PqRErxfe%2B2toFJFgcRKZ0UI9NSIOJa%2B7RXVtBhy4KE%3D' (2025-11-12) → 'github:nixos/nixpkgs/549bd84d6279f9852cae6225e372cc67fb91a4c1?narHash=sha256-hGdgeU2Nk87RAuZyYjyDjFL6LK7dAZN5RE9%2BhrDTkDU%3D' (2026-05-05) ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12497 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-09 23:53:35 +02:00
famfo	169ea1d991	fix(activitypub): only return public activities on request (#12382 ) The endpoint returning individual activities was missing access control checks, since IDs are sequential, this is not ideal. Fixes #12333 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12382 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-09 05:02:57 +02:00
limiting-factor	508bb7f2ae	fix: in actions_service cancelJobsForRun is bugous use killRun instead (#12366 ) The cancelJobsForRun function is redundant with the killRun function and has bugs: - It does not use a transaction and may fail in a non-recoverable way - It does not update the commit status of the run - It does not set NeedRemoval to false if needed Remove the cancelJobsForRun function and use killRun instead (fixing forgejo/forgejo#12386). Both calls are covered by existing tests: - TestCancelPreviousJobs - TestCancelPreviousWithConcurrencyGroup A new integration test TestActionsPullRequestTrustPushCancel is added to verify that the NeedApproval field is set to false whenever a run is cancelled (fixing forgejo/forgejo#12350). Closes forgejo/forgejo#12350 Closes forgejo/forgejo#12386 --- Reverting the change fails the test at `b6178e5634/tests/integration/actions_trust_test.go (L520-L533)` with: ``` TAGS='sqlite sqlite_unlock_notify' make 'test-sqlite#TestActionsPullRequestTrustPushCancel' ... actions_trust_test.go:523: Error Trace: /home/limiting-factor/forgejo/tests/integration/actions_trust_test.go:523 /home/limiting-factor/forgejo/tests/integration/git_helper_for_declarative_test.go:98 /home/limiting-factor/forgejo/tests/integration/actions_trust_test.go:476 Error: Should be false Test: TestActionsPullRequestTrustPushCancel ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/12366): <!--number 12366 --><!--line 0 --><!--description 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-->When the author of a pull request is [denied the right to run Actions](https://forgejo.org/docs/next/user/actions/security-pull-request/) by clicking on the "Deny" button on the pull request trust management panel, the workflow runs created for all commits pushed to the pull request are cancelled. Before that, runs that were automatically cancelled because a newer commit was pushed to the pull request [were stuck in a state waiting for approval](https://codeberg.org/forgejo/forgejo/issues/12350).<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12366 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-09 04:46:56 +02:00
Renovate Bot	4e40724199	Update module golang.org/x/tools/cmd/deadcode to v0.45.0 (forgejo) (#12488 )	2026-05-09 04:38:55 +02:00
Andreas Ahlenstorf	92863bb103	feat: expose run_id in ...actions/runners/jobs endpoint (#12480 ) Include `run_id` in the responses emitted by all `...actions/runners/jobs` endpoints. Helps with correlating pending jobs with other jobs and the runs they belong to. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12480 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-09 02:31:03 +02:00
Renovate Bot	0b3192b8af	Update module golang.org/x/crypto to v0.51.0 (forgejo) (#12483 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [golang.org/x/crypto](https://pkg.go.dev/golang.org/x/crypto) \| [`v0.50.0` → `v0.51.0`](https://cs.opensource.google/go/x/crypto/+/refs/tags/v0.50.0...refs/tags/v0.51.0) \| ![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fcrypto/v0.51.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fcrypto/v0.50.0/v0.51.0?slim=true) \| --- > ⚠️ Warning > > Some dependencies could not be looked up. Check the [Dependency Dashboard](issues/2779) for more information. --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjAuNiIsInVwZGF0ZWRJblZlciI6IjQzLjE2MC42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12483 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-09 02:23:00 +02:00
Otto	31621e9b97	fix: colorpicker dialog z-index (#12435 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12435 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-08 13:39:46 +02:00
Gergely Nagy	0295658650	Federated user activity following (#4767 ) This is a implementation of #4277. The core idea is that any activity (where activity is defined as anything that ends up in the `action` table) will be wrapped in an `ap.Note`, and sent to followers. Similarly, the inbox of local users now accepts such Notes. Additionally, there's now a "Feeds" tab on the user profile page, which displays the received notes. # Preview ![Preview](/attachments/9ce6a138-a748-447e-8e8b-d6143564ee4e) # How to Try? The PR can be tried using a single Forgejo instance, but two distinct ones probably shows how it works better. For the sake of simplicity, lets try with a single instance. This is how to get started: 1. Enable federation 2. Subscribe one user to another (or to themselves): ``` curl -s -H "authorization: Bearer ${TOKEN}" -XPOST \ http://localhost:3000/api/v1/user/activitypub/follow \ --json '{"target": "http://localhost:3000/api/v1/activitypub/user-id/1"}' ``` This makes the first user follow themselves. 3. Create a repo, open an issue, or basically do anything that results in an activity recorded. 4. Visit `http://localhost:3000/{username}?tab=feed` to see the feed in action. If you want to try with multiple instances, then it's very similar: you just change the `actor_id` to the IRI of the user you want to follow the first instance's user with, and then you can look at the feed tab of this user on the second instance, after you performed some activity on the first. ## Trying with Mastodon / GoToSocial To try with Mastodon or GoToSocial, you will likely need to bring your Forgejo instance public, and behind https. Once your Forgejo instance is up, you can search for `@yourusername@forgejo.your.domain.example.com`, and simply follow your Forgejo account. Creating any activity will then happily federate to Mastodon & GoToSocial. You can also copy & paste the Forge user's web profile URL (eg, `https://forgejo.your.domain.example.com/yourusername`) into your fedi client of choice, and it will discover the profile that way too. # Testing * test: https://codeberg.org/meissa/federation/src/branch/federated-user-activity-following/doc/user-activity-following/manual-test.md * Proof of gts->forgejo: https://social.meissa-gmbh.de/@meissa/114499541149466596 * Proof of forgejo->gts: https://social.meissa-gmbh.de/@meissa/114505225265720094 ## Architecture decisions There are a number of ways user activity federation could be implemented. One way - which I explored first - is to wrap each activity, and send those, and let the client render it. The advantage of this would be that we'd be able to have references to other objects (comments, repos, etc). The disadvantage is that doing this requires making all of these things addressable, and that's a lot of work. Another disadvantage is that this requires every client to know how to display it. Another way, chosen here, is to send a rendered HTML `ap.Note` instead, with an `AttributedTo` (`ap.Person`) property, which describes the activity that happened in a HTML note. This is much simpler to implement, and has the huge advantage that it is also easier to display. In fact, once we have http signatures, we should be able to federate user activity to Mastodon, too! (Though this also requires figuring out how Mastodon wants to follow a user...) Since user activity federation is mostly cosmetic, as in, it's there for the user to see, rather than for programs to take actions based upon this activity, I believe that sending an `ap.Note` is preferable over a more machine-oriented approach. ## Limitations & TODO ### FederatedUser We should be caching the Avatar in a similar way. For that, though, we also need to store the last activity of a federated user, so we can expire old avatars from the cache. The avatar refresh part will be covered by #4778. ### Notes While sending out notes, the `AttributedTo` property is set to an `ap.Person`, based on the originating local user. This is currently unused. The idea is that once following is implemented properly (see above), we'll be able to link this to a FederatedUser (and thus to ExternalUser & User), which will allow us to display avatars and such, too. ### Display The template used for displaying the received activities is currently incredibly simplistic. That's probably ok, it doesn't need to be fantastic. ### TODO - [x] Fix the crashes on certain ops: - [x] Issue/PR close & reopen - [x] Figure out a better way to implement follows - [x] Store the `AttributedTo` part of the note, too, the ID of it. - [x] Make sure only those activities are sent out that need to be. Currently, pretty much any activity is sent out, even private ones. We should be a bit smarter about that. - [x] Make the ids used in the AP messages deterministic The IDs used in the AP messages are currently UUIDs, and we do not store them, so all the IRIs are "invalid": the objects they refer to don't exist outside of the AP message itself. We should be able to reconstruct the Note objects and Create activities from their IDs. - [x] Make it possible to follow Forgejo account from Mastodon and GtS - [x] Mastodon without `AUTHORIZED_FETCH` works - [x] GoToSocial can follow - [x] Mastodon with `AUTHORIZED_FETCH` can follow - ~~Create a cron job to refresh federated user avatars~~ - [x] Implement unfollowing - [x] Add a `<link rel="alternate" type="application/activity+json" href="...">` to profile pages This lets Mastodon & most other Fedi frontends discover the AP profile just by pasting a Forgejo user's web profile page into a search box, without having to know the corresponding AP actor URL - [x] Make it easier to make a local user follow a remote AP actor - ~~Rebase on top of #4778 by @realaravinth, once that is ready~~ - [x] Create an API endpoint to list the AP feed - [x] Create a DB migration for the new stuff - [x] Make swagger stuff happy - [x] Clean up the commit history - [x] ~~Tests~~ Opting for manual testing for now. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-authored-by: famfo <famfo@famfo.xyz> Co-authored-by: jerger <jerger@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/4767 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: elle <0xllx0@noreply.codeberg.org>	2026-05-08 08:08:10 +02:00
Nirmal Kumar R	49f9cc7c4d	chore: dialog modal max-width rendering failure (#12469 ) The dialog element shrink wrap up to the max-width boundary. The `long-modal` is set to strictly fit the `800px` width in the test. However with Playwright minor font rendering differences makes the dialog modal width resulting in `797px`. Test fails at: [expect(width).toBe(800);](`6132d0e406/tests/e2e/modal.test.e2e.ts (L103)`) The fix is to increase the content of the `#long-model` element in `templates/demo/model.tmpl` to 300 characters length instead of the current `100` characters length ensures that the dialog modal will always hit the `800px` max-width. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12469 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-05-08 08:01:34 +02:00
Thomas Kolar	6132d0e406	fix: Prevent unremovable review requests after submitting pending reviews (#12302 ) Some notes: - I didn't write integration tests because it's a pure bugfix that addresses implementation details of the model layer. - I can see interpretations of "it involves interactions with a live Forgejo server" that would cover this PR, but they don't make sense to me in context. - I didn't add anything to the documentation because it's a pure bugfix - the system should always have worked this way - there's no value in confusing people trying to figure out how the system works now with how it didn't work in the past - However, there IS value in informing people who may have gotten bitten by this in the past, so I think a release note makes sense - These fixes are closely related, and the changes small, so I decided to make just one PR. - From a user perspective, this is just one issue, and I think in terms of release notes, it makes more sense to have just this one. - Technically, fixing only one of the underlying issues would be enough. Since this is a case of invalid states being representable, it makes sense to both try to prevent it happening in the first place, and deal with it gracefully if it does happen. - At the very least, fixing #12245 is required unless we want to live with data generated in the past being broken Fixes #12243 Fixes #12245 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12302 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org>	2026-05-08 05:52:59 +02:00
Thanos Apollo	3a35c5353e	feat: expose AGit topic branch in API PR head label (#12352 ) For Agit-flow pull requests, `head.label` was explicitly set to an empty string. The head branch name (which contains the Agit topic, e.g. `user2/my-topic`) was already populated from `pr.HeadBranch` but then discarded. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12352 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org>	2026-05-08 04:46:57 +02:00
Akashdeep Dhar	ffd10d37a6	fix: ensure moving all commits in a pull request for pagure migration (#12433 ) While the changes were conveyed in the pull request in its entirety, the commit history of a pull request having more than one commit was bugged and the log would have shown just the presence of the most recent commit event, having the entire changes contained in a pull request. This is a problem that was mostly noticed in the closed pull request, so it is not as bad as it looks. Even then, if we are migrating closed pull requests, we should do it the right way. We do not want to retain these pull requests for archival purposes if they are not accurate. Signed-off-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Fixes https://forge.fedoraproject.org/forge/forge/issues/556 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12433 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-08 04:43:33 +02:00
Antonin Delpeuch	115f8594cf	fix: paginate team members list (#12447 ) Fixes #12103. Paginate the list of team members on the page for that team. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12447 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-08 01:52:46 +02:00
famfo	5022be3029	fix(activitypub): cover all routes with signature checks (#12339 ) This changes the ReqHTTPSignature middleware to cover the entire activitypub route group to not miss any new routes again in the future. Further, this adds a tests iterating through all activitypub routes to test that the signature verification is actually done. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12339 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: elle <0xllx0@noreply.codeberg.org>	2026-05-08 00:40:01 +02:00
Gabor Pihaj	f55f3481f2	test: fix flaky integration test (#12441 ) See #12353 for more details ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12441 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-07 22:01:13 +02:00
Renovate Bot	326ae6ad67	Update go toolchain directive to v1.26.3 (forgejo) (#12454 )	2026-05-07 20:04:54 +02:00
Gusted	bf958fa355	fix: make package cleanup work again (#12446 ) - Regression of forgejo/forgejo!11776 (and forgejo/forgejo!11881) - Scope of the transaction is moved to a per-package cleanup rule basis. This is also a enhancement for scaling (already deployed on Codeberg for a while). - Package cleanup is now run with `RetryTx`, because rebuilding repository files runs `RetryTx` and it could indicate to retry the whole transaction. - Previously it would error and say running `RetryTx` in a transaction was not possible, this is now possible. Nested `RetryTx` is always allowed, matching of which errors to retry is still the responsible of the inner `RetryTx`. Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12446 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-07 18:10:02 +02:00
Renovate Bot	69cf1f3333	Lock file maintenance (forgejo) (#12408 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12408 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-06 14:55:06 +02:00
Victor Gonzalez	5ccb9e815a	tests: add e2e test for color picker visibility in new label dialog (#12344 ) Signed-off-by: Victor Gonzalez <victor@vgr.cl>	2026-05-06 14:24:41 +02:00
Victor Gonzalez	8bb8ae30e1	fix: append color picker popup to dialog element (#12344 )	2026-05-06 14:10:50 +02:00
Mathieu Fenniak	1cdef7d39f	chore: upgrade xorm to v1.3.9-forgejo.12 (#12430 ) Upgrading to bring https://code.forgejo.org/xorm/xorm/pulls/106 into Forgejo. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12430 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-06 12:02:58 +02:00
Renovate Bot	09aaa129a2	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.11 (forgejo) (#12429 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.10` → `v3.1.11` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.11`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.10...v3.1.11) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.10...v3.1.11) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjAuNiIsInVwZGF0ZWRJblZlciI6IjQzLjE2MC42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12429 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-06 05:22:06 +02:00
Gabor Pihaj	59787fc2a0	fix: return the error when InitDelegateHooks fail (#12427 ) This pr PR is fixing a type introduced in #10397. In case of an error during the creation of the centralised hooks `git.InitFull` would have returned early, missing some of the configuration steps ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12427 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-06 04:47:15 +02:00
Renovate Bot	4cebc5d1d5	Update module code.forgejo.org/forgejo/runner/v12 to v12.10.1 (forgejo) (#12426 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.10.0` → `v12.10.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.10.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.10.0/v12.10.1?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.10.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.10.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.10.0...v12.10.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1509): <!--number 1509 --><!--line 0 --><!--description ZmVhdDogbWVyZ2UgcmV1c2FibGUgZXhwYW5zaW9uIGNhbGxlcidzICdpZicgaW50byBleHBhbmRlZCBqb2Jz-->feat: merge reusable expansion caller's 'if' into expanded jobs<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1510): <!--number 1510 --><!--line 0 --><!--description Zml4OiB3b3JrZmxvdy1sZXZlbCAnZW52JyBpcyBsb3N0IGR1cmluZyBqb2IgcGFyc2luZw==-->fix: workflow-level 'env' is lost during job parsing<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1511): <!--number 1511 --><!--line 0 --><!--description Y2hvcmU6IHVzZSBzcGVjaWZpYyB2ZXJzaW9uIG9mIGdvZnVtcHQsIG5vdCBsYXRlc3Q=-->chore: use specific version of gofumpt, not latest<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1508): <!--number 1508 --><!--line 0 --><!--description Y2hvcmU6IGluY3JlYXNlIHRoZSBsZW5ndGggb2YgdGhlIGNhY2hlIHRva2VuIGtleQ==-->chore: increase the length of the cache token key<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1504): <!--number 1504 --><!--line 0 --><!--description Y2hvcmU6IHJlbW92ZSBnby1naXQ=-->chore: remove go-git<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1506): <!--number 1506 --><!--line 0 --><!--description cmVmYWN0b3I6IGRyb3AgdW51c2VkIENvbm5lY3RUb05ldHdvcmsgZnJvbSBDb250YWluZXIgaW50ZXJmYWNl-->refactor: drop unused ConnectToNetwork from Container interface<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (` 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjAuNiIsInVwZGF0ZWRJblZlciI6IjQzLjE2MC42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJydW4tZW5kLXRvLWVuZC10ZXN0cyIsInRlc3Qvbm90LW5lZWRlZCJdfQ==--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12426 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-05 22:39:01 +02:00
Mathieu Fenniak	0af17c5f8a	chore(renovate): run end-to-end tests on runner updates (#12423 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12423 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-05-05 17:56:41 +02:00
Gusted	c07ea09050	fix: cleanup data before migration retry (#12370 ) In the case you hit some API error (Github ratelimit was often a problem) or the instance restarted in the middle of your migration, you would be left with data on the disk and/or database. Upon retrying the migration the migration code would (rightfully) fail because it's trying to migrate stuff that already exists. This was hit so often on Codeberg it was better to force people to delete and start whole migration process again: `28ee60c91f` Delete the repository data before retrying to solve this. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12370 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-05 12:41:42 +02:00
Renovate Bot	6f5bef54b0	Update dependency globals to v17.6.0 (forgejo) (#12417 )	2026-05-05 09:43:48 +02:00
Mathieu Fenniak	c1ac671b55	feat: reusable workflow outer job is skipped if 'if:' block skips workflow (#12412 ) Follow-up to https://code.forgejo.org/forgejo/runner/pulls/1509 -- improves the UX in Forgejo when a reusable workflow is skipped, marking the workflow as skipped rather than succeeded. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12412 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-05 02:59:34 +02:00
Mathieu Fenniak	525a377c24	feat: add name & description columns to authorized integration DB table (#12413 ) User interfaces for authorized integrations will benefit from having a name field, to allow a list of authorized integrations to have an identifiable user-entered label. I've also added a "description" column which is a `LONGTEXT` field. My thought for this field is that if I were creating authorized integrations, I'd like to be able to write down where they're used, what they're used for, and how the remote system is configured. For example, if it was an authorized integration to allow AWS -> Forgejo integration, the AWS side can be complicated -- IAM roles which are assumed, resources like EC2 instances or Lambdas that can access the roles -- and this would provide a natural place to make some notes to help me remember how the remote is configured. I expect to represent this as a `<textarea>` in the Authorized Integration, optional, possibly markdown-formatted to allow links & bullet-points. Manually tested migration with PG backend, and manually tested creation of authorized integrations with the CLI updates. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12413 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-05 02:58:47 +02:00
Renovate Bot	0b2415a05a	Update module github.com/redis/go-redis/v9 to v9.19.0 (forgejo) (#12309 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12309 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-04 05:15:07 +02:00
Renovate Bot	ed32a0fb5a	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.10 (forgejo) (#12406 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.9` → `v3.1.10` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.10`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.9...v3.1.10) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.9...v3.1.10) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjAuNiIsInVwZGF0ZWRJblZlciI6IjQzLjE2MC42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12406 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-04 03:50:11 +02:00
Renovate Bot	780526b1a8	Update module github.com/go-sql-driver/mysql to v1.10.0 (forgejo) (#12376 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12376 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-04 02:43:19 +02:00
Renovate Bot	76b83c4467	Update renovate Docker tag to v43.160.6 (forgejo) (#12404 )	2026-05-04 02:05:26 +02:00
Renovate Bot	d27cd9f722	Update dependency postcss to v8.5.13 (forgejo) (#12405 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12405 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-04 00:54:05 +02:00
Mathieu Fenniak	e89312de9b	ci: fix merge conflict in test between #12355 & #12364 (#12401 ) Both #12355 and #12364 passed CIs individually, but when combined a new test added in #12364 was broken by the change in #12355. Fixes the authorized integration test to use the new immutable subject format. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12401 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-03 19:55:40 +02:00
Mathieu Fenniak	9b88e77c19	feat: expose immutable identifiers in Forgejo Actions JWTs (#12355 ) Protect OIDC tokens generated by Forgejo Actions from threats arising when users or repositories are renamed or deleted, freeing their names up for reuse by another user. In this threat environment, relying on the name of users and repositories in validating JWT claims is unsafe because they can change. Adds three new claims to Actions' OIDC tokens: - `actor_id` -- the immutable identifier of the actor who triggered an Action run - `repository_id` -- the immutable identifier of the repository on which the Action is running - `repository_owner_id` -- the immutable identifier of the owner of the repository on which the Action is running Repositories will change their subject (`sub`) OIDC claims to include these immutable identifiers. Existing repositories will not change, in order to maintain compatibility with existing JWT usage. The new format will be applied to new repositories, or can be applied by disabling and enabling the Actions unit. The new format embeds the identifiers: - Existing repos: `repo:my-org/my-repo:ref:refs/heads/main` - New repos: `repo:my-org-123456/my-repo-456789:ref:refs/heads/main` Fixes #12244. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - New fields will be added to documentation soon. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12355 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-03 15:46:58 +02:00
Renovate Bot	d63724ceab	Update module github.com/blevesearch/bleve/v2 to v2.6.0 (forgejo) (#12373 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12373	2026-05-03 07:29:02 +02:00
Gusted	555d88070d	feat: migrate show-modal to native dialogs (#10287 ) Test coverage: \|Modal\|Test\| \|-\|-\| \|admin: adopt unadopted\|missing, not needed\| \|admin: delete unadopted\|missing, not needed\| \|admin: delete user\|e2e added: `Admin: delete a user`\| \|delete package\|missing\| \|new project\|?\| \|edit project col\|?\| \|default project col\|?\| \|delete project col\|?\| \|commit cherry-pick\|?\| \|commit delete note\|?\| \|fork redirect\|?\| \|lock/unlock issue\|?\| \|dismiss PR review\|?\| \|migration delete\|?\| \|migration cancel\|?\| \|lfs delete\|?\| \|convert mirror\|?\| \|convert fork\|?\| \|transfer repo\|?\| \|delete repo\|?\| \|archive repo\|integration present, selectors adjusted\| \|delete wiki\|?\| \|rename wiki branch\|?\| \|push mirror edit\|?\| \|mde: new table\|e2e present, selectors adjusted\| \|mde: new link\|e2e present, selectors adjusted\| \|actions: add secret\|?\| \|actions: edit variable\|?\| Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10287 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-05-03 06:42:14 +02:00
Renovate Bot	e9710af24f	Update module code.forgejo.org/forgejo/runner/v12 to v12.10.0 (forgejo) (#12392 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12392 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-03 06:22:22 +02:00
Renovate Bot	a2557f0f42	Update module github.com/caddyserver/certmagic to v0.25.3 (forgejo) (#12257 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12257 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-03 05:57:54 +02:00
Renovate Bot	743b3b4cd9	Update module github.com/minio/minio-go/v7 to v7.1.0 (forgejo) (#11959 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11959 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-03 05:15:10 +02:00
steven.guiheux	7e205c5718	fix: get tag must return the tag signature instead of commit signature (#12351 ) ## Fix: `GET /api/v1/repos/{owner}/{repo}/git/tags/{sha}` returns empty verification for signed tags ### Problem When an annotated tag is signed (GPG or SSH) but the underlying commit is not signed, the API endpoint `GET /repos/{owner}/{repo}/git/tags/{sha}` returns an empty `verification.signature` field. This is because `ToAnnotatedTag` was calling `ToVerification(ctx, c)` with the commit object, which checks the commit's signature — not the tag's own signature. Since the commit is unsigned, the API returns `signature: ""` and `verified: false`. This causes issues for tools that rely on the tag signature from the API to validate that a tag push event is from a trusted source. ### Fix `ToAnnotatedTag` now checks if the tag has its own signature (`t.Signature != nil`). If so, it uses `ParseTagWithSignature` to verify the tag's signature and populates the `verification` field from the tag. Otherwise, it falls back to the commit signature (existing behavior for unsigned/lightweight tags). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12351 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-03 04:41:12 +02:00
Renovate Bot	ee8ad6581c	Update module github.com/klauspost/compress to v1.18.6 (forgejo) (#12372 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12372 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-03 04:07:02 +02:00
Renovate Bot	8edcb8d4db	Update module github.com/fsnotify/fsnotify to v1.10.0 (forgejo) (#12374 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12374 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-03 04:06:51 +02:00
Renovate Bot	b6658076a9	Update dependency clippie to v4.1.15 (forgejo) (#12371 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12371 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-02 03:07:26 +02:00
Thomas Teixeira	731334e973	fix(web): org projects assignment in issue view (#7999 ) Allows user to assign organization projects to their new issues, using the project sidebar selector, even when repository's projects are disabled. Moreover, the project sidebar selector is now hidden if no projects (repository-wide + organization-wide) are available. Fixes forgejo/forgejo#5666 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7999 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-02 01:29:40 +02:00
Gusted	07a6b6ce82	chore: make use of go1.26 features (#12369 ) Allows us to make use of Go features introduced in v1.26. I require a feature from v1.26 for a PR I want to make later. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12369 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-01 22:51:48 +02:00
Arseniy Terekhin	c1dc213c9b	feat: add missing tooltips in `lfs_pointers.tmpl` (#12139 ) Having tooltip only for `lfs_pointers.accessible` is fine in English, but not in other languages. For other languages the text is truncated. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12139 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-05-01 22:13:38 +02:00
Nils Goroll	9d323c5125	chore: remove #11024 workarounds (#12301 ) remove two workarounds which are not required any more Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12301 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-01 22:10:10 +02:00
Andreas Ahlenstorf	d867b25e72	chore: replace `github.com/robfig/cron/v3` (#12365 ) github.com/robfig/cron is used for parsing cron schedules of scheduled Forgejo Actions workflows. It has not seen an update in roughly six years and looks abandoned. There are multiple code paths that trigger panics instead of errors. It is replaced by github.com/gdgvda/cron, which is one of the few maintained forks. github.com/gdgvda/cron was picked because its behaviour is fully backwards-compatible and the developers are responsive. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12365 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-01 22:07:22 +02:00
Mathieu Fenniak	7fc236c589	feat: allow Forgejo Actions to be used an Authorized Integration in-memory with internal issuer (#12364 ) Allow JWTs that are generated by Forgejo Actions to be validated within Forgejo in-memory. Without any special support for this internal access situation, these problems would occur: 1. Forgejo would need to make an HTTP request to itself to get the valid public key for the JWT, in order to validate its signature. This is a waste of resources, and introduces a self-DoS risk. 2. Forgejo would need to be available via TLS in order for Actions to make service calls to Forgejo with that JWT, due to the TLS requirement for public key fetching. This would be a blocker for writing end-to-end tests for Forgejo, but also would affect users who do not host Forgejo with TLS. 3. Authorized Integrations would need to be saved with the `issuer` URL of Forgejo. If Forgejo's own `setting.AppURL` changed, all the persisted records in the database would become incorrect. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12364 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-05-01 17:42:34 +02:00
Renovate Bot	67250869d3	Update dependency @vitejs/plugin-vue to v6.0.6 (forgejo) (#12360 )	2026-05-01 15:50:41 +02:00
Renovate Bot	cb05be1a09	Update dependency swagger-ui-dist to v5.32.5 (forgejo) (#12363 )	2026-05-01 06:58:54 +02:00
Renovate Bot	b5e7a72e10	Update dependency @vue/test-utils to v2.4.9 (forgejo) (#12361 )	2026-05-01 05:41:56 +02:00
Renovate Bot	948f8cc61a	Update dependency @stoplight/spectral-cli to v6.15.1 (forgejo) (#12359 )	2026-05-01 04:14:12 +02:00
Έλλεν Εμίλια Άννα Zscheile	1acf630dbf	feat(build): Support go "fmt" format strings as masked usage patterns (#12013 ) This idea is perhaps a bit more far-fetched. It implements the ability in `lint-locale-usage` to basically fully handle "printf" invocations by transforming format strings to regexps when "%" wildcards are present. Currently, it doesn't cache the transformation from format string to compiled regex because this doesn't make a performance difference (yet), given that most of these wildcards are only hit once or twice. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12013 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-01 02:46:01 +02:00
Renovate Bot	eb58d6c9d0	Update dependency @axe-core/playwright to v4.11.2 (forgejo) (#12358 )	2026-05-01 01:58:09 +02:00
Mauritz Sjödin	254a44b97b	feat: show breadcrumb path in path filtered commit history view (#12116 ) Resolves forgejo/forgejo#8754 Add the breadcrumb path that already exists when browsing directories to the commit history of files/directories. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12116 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-01 01:53:10 +02:00
Gusted	75cfa31af5	fix: set `repo_id` for migrated attachment (#12357 ) Was not required until `ce0a376723` added extra checks which did require `repo_id` of the attachment to be set correctly. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12357 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-05-01 01:24:32 +02:00
UweKrause	3e74c5224f	chore: rename devcontainer name (#12356 ) I had some trouble getting the devcontainer run. I use docker buildx / BuildKit. Error was: `docker buildx build failed: ERROR: failed to build: invalid tag "gitea_-5cc3cd41d1b58674-features": invalid reference format`. I renamed the container to not contain spaces and then it worked. AI agreement: I asked Claude code (Sonnet 4.6) to analyze the problem and it told me that buildx/BuildKit seems to check more strict for names. So it guided me to the solution to rename the container. I then myself changed the name and verified that the devcontainer starts. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12356 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-05-01 00:20:15 +02:00
jvoisin	cc60e3d693	fix(oauth): only accept refresh tokens as refresh tokens (#12291 ) `handleRefreshToken` never checked `token.Type == TypeRefreshToken`. When `InvalidateRefreshTokens` is disabled, an access token could be submitted as a `refresh_token` and exchanged for a new token pair. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Co-authored-by: jvoisin <julien.voisin@dustri.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12291 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-30 19:24:13 +02:00
minhn	68be312467	fix: `repoGetAllCommits` should allow for the use of `limit` with `path` (#11752 ) Pass down the `limit` value to use in the `rev-list` command. Issue: https://codeberg.org/forgejo/forgejo/issues/11405 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11752 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-30 18:39:01 +02:00
Renovate Bot	e0777227d3	Update module github.com/meilisearch/meilisearch-go to v0.36.2 (forgejo) (#12110 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12110 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-30 18:14:25 +02:00
Mathieu Fenniak	065a3a23f4	chore: extend length of integration test's logUnexpectedResponse (#12348 ) I've observed intermittent failures in [`TestAPIAuthWithAuthorizedIntegration`](https://codeberg.org/forgejo/forgejo/actions/runs/156485/jobs/8/attempt/1#jobstep-5-1950): ``` auth_authorized_integration_test.go:70: Error Trace: /workspace/forgejo/forgejo/tests/integration/integration_test.go:657 /workspace/forgejo/forgejo/tests/integration/auth_authorized_integration_test.go:70 /workspace/forgejo/forgejo/tests/integration/auth_authorized_integration_test.go:117 Error: Not equal: expected: 200 actual : 401 Test: TestAPIAuthWithAuthorizedIntegration/authorization_reducer/specific_repo_access_token Messages: Request: GET /api/v1/repos/user2/repo1/compare/master...master auth_authorized_integration_test.go:70: Response length: 1801 ``` I suspect that the cause is time-related errors in the Authorized Integration JWT, but I can't validate this because I can't reproduce the issue in local testing, and the response isn't displayed, and is just "Response length: 1801". This PR increases the size of responses that the integration tests' `logUnexpectedResponse` will output. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12348 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-30 17:29:39 +02:00
Zachary Spector	25e7a0b91b	feat: support simple JSON API for PyPI package registry (#12095 ) This PR extends Forĝejo's PyPI package index to support [the simple JSON repository API](https://packaging.python.org/en/latest/specifications/simple-repository-api/#json-serialization). Since the existing implementation was for the HTML serialization of the same simple API, no new endpoint has been added. Instead, Forĝejo chooses between serialization schemes based on the "Accept" header in the request. This, together with CORS, will make Forĝejo compatible with [micropip](https://github.com/pyodide/micropip). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/12095): <!--number 12095 --><!--line 0 --><!--description SG9zdGVkIFB5UEkgcGFja2FnZXMgbWF5IGJlIGFjY2Vzc2VkIHZpYSB0aGUgW3NpbXBsZSBKU09OIEFQSV0oaHR0cHM6Ly9wYWNrYWdpbmcucHl0aG9uLm9yZy9lbi9sYXRlc3Qvc3BlY2lmaWNhdGlvbnMvc2ltcGxlLXJlcG9zaXRvcnktYXBpLyNqc29uLXNlcmlhbGl6YXRpb24pIGluIGFkZGl0aW9uIHRvIHRoZSBzaW1wbGUgSFRNTCBBUEkgYWxyZWFkeSBhdmFpbGFibGUu-->Hosted PyPI packages may be accessed via the [simple JSON API](https://packaging.python.org/en/latest/specifications/simple-repository-api/#json-serialization) in addition to the simple HTML API already available.<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12095 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-30 16:58:28 +02:00
Renovate Bot	81c46e4a7c	Update module github.com/mattn/go-sqlite3 to v1.14.44 (forgejo) (#12340 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.42` → `v1.14.44` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.44?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.42/v1.14.44?slim=true) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.44`](https://github.com/mattn/go-sqlite3/compare/v1.14.43...v1.14.44) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.43...v1.14.44) ### [`v1.14.43`](https://github.com/mattn/go-sqlite3/compare/v1.14.42...v1.14.43) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.42...v1.14.43) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuNiIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12340 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-30 16:36:00 +02:00
Beowulf	5c05973994	chore: no longer run renovate on v14 branch [skip ci] (#11975 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11975 Reviewed-by: limiting-factor <limiting-factor@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-04-30 09:26:41 +02:00
Renovate Bot	fd0a2086b0	Update dependency postcss to v8.5.12 (forgejo) (#12337 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12337 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-30 03:31:02 +02:00
Renovate Bot	32c9bbee08	Update data.forgejo.org/forgejo/forgejo Docker tag to v11.0.13 (forgejo) (#12336 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12336 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-30 03:05:44 +02:00
Mathieu Fenniak	bc7c8e3c84	fix: markdown rendering panic when code blocks do not have languages (#12325 ) When attempting to render a markdown code block that does not have a language set in it, Forgejo will fail to render and log an error: ``` 2026/04/29 08:47:47 ...markdown/markdown.go:162:func1() [W] Unable to render markdown due to panic in goldmark: runtime error: invalid memory address or nil pointer dereference ``` This is a regression introduced by #12056. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - pre-release regression Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12325 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-29 19:49:55 +02:00
Mathieu Fenniak	be3fe4ff60	feat: allow Authorized Integrations to authenticate to Forgejo's package registries (#12310 ) Enables and tests the usage of Authorized Integrations to access the package registries. Specific testing includes: - Container registry -- automated testing and manual testing - Generic registry, w/ detailed authorization tests -- automated testing - Conan registry -- automated testing (uses an "authenticate" endpoint that required updates) - npm registry -- manual testing with a Forgejo Action publishing packages For the container & conan registeries, where the client uses an authentication endpoint to request a temporary access token, the expiry of the temporary access token is restricted to the expiry of the authorized integration's JWT for the authorized integration in order to prevent an escalation of privileges. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12310 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-29 19:13:01 +02:00
forgejo-release-manager	993b419fe3	chore(release-notes): Forgejo v15.0.1 (#12314 ) https://codeberg.org/forgejo/forgejo/milestone/76566 Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12314 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-04-29 14:37:45 +02:00
forgejo-release-manager	cc5f118af8	chore(release-notes): Forgejo v14.0.5 [skip ci] (#12313 ) https://codeberg.org/forgejo/forgejo/milestone/75498 Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12313 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-04-29 14:37:20 +02:00
forgejo-release-manager	7d2a9bb0fc	chore(release-notes): Forgejo v11.0.13 [skip ci] (#12312 ) https://codeberg.org/forgejo/forgejo/milestone/75468 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12312 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-04-29 14:36:54 +02:00
Mathieu Fenniak	733a390ecd	fix: verify PR author has write access to head to support allow maintainers edit (#12292 ) When a pull request is opened, the author is able to mark that pull request to "Allow edits from maintainers", which grants the maintainers of the pull request's repo access to edit the pull request branch contents. It is possible to create a pull request where the pull request author does not have the ability to edit the pull request branch. Due to a missing security check for this case, maintainers of the pull request repo would be granted the ability to edit the pull request branch, even if the author of the pull request did not have that ability. By exploiting this missing security check, a user can edit any branch in a repository if they're able to fork that repository. The issue is being fixed by restricting the scope of "Allow edits from maintainers" to only grant that access if the pull request author also had access to edit the branch. Thanks to Arvin Shivram of Brutecat Security for discovering and responsibly disclosing the vulnerability. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12292 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-29 05:26:22 +02:00
Mathieu Fenniak	70f7260e66	feat: add CLI command 'admin user create-authorized-integration' (#12299 ) Allows the creation of an authorized integration as a Forgejo administrator, either for development testing or to support server-automation. Clipping out the CLI config options, looks like: ``` NAME: forgejo admin user create-authorized-integration - Create an authorized integration for a specific user USAGE: forgejo admin user create-authorized-integration [options] OPTIONS: --username string, -u string Username --issuer string JWT issuer ('iss' claim), example: https://forgejo.example.org/api/actions --claim-eq string=string [ --claim-eq string=string ] Zero-or-more claim equality checks, formatted as claim=value, example: "actor=someuser" --claim-glob string=string [ --claim-glob string=string ] Zero-or-more claim glob checks, formatted as claim=value, example: "sub=repo:forgejo/:pull_request" --scope string [ --scope string ] One-or-more scopes to apply to access token, examples: "all", "read:issue", "write:repository" (default: "all") --repo string [ --repo string ] Zero-or-more specific repositories that can be accessed, or "all" to allow access to all repositories, example: "owner1/repo1" (default: "all") ``` As an example, this will create an authorized integration that will permit Codeberg's Forgejo Actions to generate trusted JWTs that can access the local user `mfenniak`: ```bash $ ./forgejo admin user create-authorized-integration \ --username mfenniak \ --issuer https://codeberg.org/api/actions \ --claim-eq sub=repo:mfenniak/forgejo-runner-testrepo:pull_request \ --scope read:user { "message": "Authorized integration was successfully created.", "issuer": "https://codeberg.org/api/actions", "audience": "u:1:c97d83bc-fa4e-4db3-b898-414cd5b6ce33", "claim_rules": [ { "description": "\"sub\" = \"repo:mfenniak/forgejo-runner-testrepo:pull_request\"", "claim": "sub", "compare": "eq", "value": "repo:mfenniak/forgejo-runner-testrepo:pull_request" } ] } ``` The output is a JSON document to aid in use in automation. The `audience` field is the audience generated by Forgejo that must be used by the remote to generate the JWT. Continuing this example to the client-side, a matching Forgejo Action like this in the `mfenniak/forgejo-runner-testrepo` repo, for a `pull_request` event, then it will be able to access the Forgejo server that the authorized integration was created on like this: ```yaml on: pull_request: enable-openid-connect: true jobs: job1: runs-on: docker steps: - name: Fetch JWT id: jwt run: \| set -eux -o pipefail set +x jwt=$(curl --fail \ -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=u:1:c97d83bc-fa4e-4db3-b898-414cd5b6ce33" \ \| jq -r ".value") echo "::add-mask::$jwt" set -x echo "jwt=$jwt" >> $FORGEJO_OUTPUT - name: API call to Forgejo run: \| curl \ -v --fail \ -H "Authorization: bearer ${{ steps.jwt.outputs.jwt }}" \ "https://example.org/api/v1/user" \| jq ``` CLI command is tested manually. Supporting functions have associated unit tests. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. - CLI update should be automatic in docs -- more detailed Authorized Integration documentation is on my project plan. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12299 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-28 21:32:45 +02:00
0ko	abcfb46691	chore: fix rna config (#12304 ) @viceice was getting error 500 trying to post this PR an hour ago. This commit is solely authored by him. Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12304	2026-04-28 18:56:52 +02:00
viceice	6171e7ef7a	chore: support 4 releases (#12303 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12303 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-28 16:15:08 +02:00
Mathieu Fenniak	37412e6a00	feat: cache OIDC metadata & JWKS when read by authorized integration (#12275 ) Enhances authorized integrations (#12261) with a cache of the remote OpenID Connect descriptor file and JSON Web Key Set (JWKS), improving runtime performance and reducing intermittent reliability risks. By default a 10 minute cache is used, configurable through `[authorized_integration].CACHE_TTL`. To mock the cache for testing, mockery code generation is added, and a previous manually generated mock for `AuthorizationReducer` was replaced with the code generation. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - Authorized integrations are not yet exposed to end-users. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12275 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-28 02:13:06 +02:00
Christian Drexler	2425ae7725	feat: enable compression on zip dump (#12296 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12296 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-28 02:11:26 +02:00
Gabor Pihaj	9977df96d5	fix: "Follow symlink" to work with arbitrary links (#12246 ) This change introduces a Path method on the TreeEntry struct, that collects the path by moving upwards in the tree. The existing FollowSymlink(s) methods interface has been changed, the previously returned string has been removed, as after the fix it wasn't used anywhere. Fixes: #9931 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12246 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-27 23:54:21 +02:00
Nils Goroll	93296305f9	fix test: revert unneeded test change with unintended consequences (#12281 ) ... from #11194 / `0034e55965` Revert a test code change left over from an intermediate development step which is not needed, because the LFS JWT config is tested in lfs.TestAuthenticate() Fixes #12263 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [X] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [X] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [X] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [X] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12281 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-27 23:05:18 +02:00
Gabor Pihaj	73b30acbd0	feat: replace repo based server-side hooks with centralised hooks (#10397 ) This PR is replacing repository based hooks hooks with centralised files, this way the files don't need to be copied into every repository, only one line of config need to be added in the repository. Closes: #3523 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10397 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-27 22:34:46 +02:00
0ko	f05ff7ec5b	chore(i18n): move 89 strings to JSON (#12280 ) Previous similar PR: https://codeberg.org/forgejo/forgejo/pulls/11879. Moved strings from INI to JSON. Some directly, some with keys updated to be consistent. The latter was done carefully, making sure all usages are updated, and was tested locally. There are more deletions than insertions because some languages also had some extra empty lines removed. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12280 Reviewed-by: Robert Wolff <mahlzahn@posteo.de>	2026-04-27 16:07:51 +02:00
Renovate Bot	90c4397d57	Update renovate Docker tag to v43.141.6 (forgejo) (#12278 )	2026-04-27 14:58:51 +02:00
0ko	f8eafe8c90	merge commit: i18n: translations update from Codeberg Translate (#12128 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12128 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-27 14:13:26 +02:00
Codeberg Translate	5e5ad79d10	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: AshyPinguin <ashypinguin@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Goudarz Jafari <goudarz.jafari@gmail.com> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Lauri Lepik <laurilepik@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: PatoFlamejanteTV <patoflamejantetv@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: TAGerritsen <tagerritsen@noreply.codeberg.org> Co-authored-by: Tamil <tamil@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: arifpedia <arifpedia@gmail.com> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: augustd <augustd@noreply.codeberg.org> Co-authored-by: fserrador <fserrador@noreply.codeberg.org> Co-authored-by: gallegonovato <gallegonovato@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: rdeavila <rdeavila@noreply.codeberg.org> Co-authored-by: universish <universish@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/mk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fa/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/mk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ta/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-04-27 11:17:47 +00:00
Renovate Bot	94ef440a1c	Lock file maintenance (forgejo) (#12279 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM, only on Monday (`* 0-3 * * 1`) - Automerge - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal*: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzkuMCIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS42IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12279 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-27 02:09:29 +02:00
Mathieu Fenniak	900306e65a	feat: add repo-specific & public-only authz reducers to authorized integrations (#12267 ) Built on #12266; one commit added. Adds the ability to reduce the authorization scope of an authorized integration to public-only resources and repo-specific resources. Backend only -- no frontend created yet. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12267 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-26 23:54:41 +02:00
Mathieu Fenniak	c9d8682f90	test: add API integration testing for authorized integration authentication (#12266 ) Built on #12261; one commit added. Adds an integration test verifying that access to the API can be authenticated by an authorized integration. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12266 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-26 22:06:16 +02:00
Mathieu Fenniak	48218c654b	feat: authorized integrations DB models and authentication implementation (#12261 ) Authorized Integrations is a new feature to allow users to define external systems which can generate JSON Web Tokens (JWTs) that Forgejo will trust in order to perform API access on behalf of that user. This is an authentication mechanism that requires zero preconfiguration of shared secrets, and instead establishes trust through short-lived secrets (JWTs) that are signed by the issuer, signatures are validated by comparison with published public keys, and a public-keys retrieved through well-known HTTP endpoints secured with TLS verification. The primary goal of Authorized Integrations is to support a mechanism for Forgejo Actions to receive elevated, but controlled, additional access to Forgejo. More details as to what the end result will look like are available in the [design proposal](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-13268004) on #3571. This PR adds the core database storage and authentication verification for Authorized Integrations, with these capabilities: - An Authorized Integration is resolved by a unique key of an "issuer" and an "audience". The value of "issuer" is defined by the remote integration, and the value of "audience" will incorporate a unique identifier generated by Forgejo. - Example issuer: `https://token.actions.githubusercontent.com/` is the issuer for GitHub JWTs - Example audience: `https://forgejo.example.org/-/mfenniak/authorized-integration/6cc55ba0` is the expected format for a random audience field that Forgejo will generate. - JWTs can contain any number of claims, which are represented as a JSON object; Forgejo can validate these with a flexible policy. - eg. a claim may be `{"sub": "repo:coolguy/forgejo-runner-testrepo:pull_request"}` indicating that an OIDC token was received from an Actions execution in a specific repo on a specific event. - Authorized Integrations support a `ClaimRules` system which allows claim equal, glob, and nested object inspection. - `{"claim":"sub","comparison":"eq","value":"repo:mfenniak/forgejo-runner-testrepo:pull_request"}` -- would validate that `sub` exactly equals the specific value - `{"claim":"sub","comparison":"glob","value":"repo:mfenniak/forgejo-runner-testrepo:"}` -- would validate that `sub` matches the given string prefix but allow any event - When a JWT is received on an incoming API call, Forgejo retrieves the Authorized Integration from the DB (if present), validates the token signature against a remote JWKS, validates the claims, and grants API access as the user with a permission scope defined on the Authorized Integration. In addition to the unit testing provided here, this PR has been manually integration tested against three JWT issuing systems: Forgejo Actions, GitHub Actions, and AWS STS GetWebIdentityToken. Careful consideration has been made of these security concerns: - SSRF attacks against Forgejo are prevented by: - having a blocklist on remote HTTP validation requests which prevent access to internal network resources, - ensuring that authorized integrations are created by users with matching issuers, before attempting to validate tokens - Resource utilization attacks against Forgejo are reduced by limiting the possible size of external metadata requests; when fetching `/.well-known/openid-configuration` and `jkws_uri`'s from remote, untrusted servers, a maximum response size of 16 kB is enforced - Only well-known secure assymmetric JWT signing algorithms are supported -- in particular, the sketchy `none` JWT algorithm isn't supported. - JWT validation is covered by extensive unit tests, covering validation of all JWT timestamps, validation of the issuers, validation of the issuer's documented supported signing algorithms. This PR serves as a core, and many enhancements are required for this to be a usable system for users. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - Documentation updates for new config entries will be authored. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - Marking not visible as there's no mechanism to interact with this backend yet. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12261 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-26 20:52:42 +02:00
Mathieu Fenniak	b17ed16f31	fix: allow viewing Actions run triggered by deleted user (#12271 ) Fixes #9371. Manually reproduced and tested by setting `action_run.triggering_user_id` to a non-existent user ID. Manually tested that runs can be cancelled in this state as well. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12271 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-26 15:13:32 +02:00
Renovate Bot	0d94308619	Update dependency vue to v3.5.33 (forgejo) (#12264 )	2026-04-26 14:11:23 +02:00
Henry Catalini Smith	cb1cb2c0af	Improve repo file list table semantics for screen readers (second attempt) (#12232 ) Unintentionally fixes forgejo/forgejo#11812 per tip https://codeberg.org/forgejo/forgejo/pulls/12232#issuecomment-13580345 --- This is a second attempt to fix https://codeberg.org/forgejo/forgejo/issues/11116. The [first attempt](https://codeberg.org/forgejo/forgejo/pulls/11846) introduced a [regression](https://codeberg.org/forgejo/forgejo/issues/12082) and needed to be [reverted](https://codeberg.org/forgejo/forgejo/pulls/12088). What's different about this attempt is that several days of extra work have been invested in amending the CSS to ensure that no visual changes slip through as a side-effect of the structural changes to the HTML. This was surprisingly challenging, and I documented much of the journey in https://codeberg.org/henrycatalinismith/forgejo/issues/1. In summary, the existing version of the "latest commit" row leans heavily on global styles that are universally applied to all `thead` elements inside `table` elements with the `ui` and `table` classes. The nature of the structural HTML changes necessary to fix the accessibility bug (this row can't be inside `thead`) is such that those universal styles no longer apply to this element and must be duplicated into new element-specific styles. Similarly, existing styles applying to non-`thead` table content has unwanted effects on this element once it moves into the `tbody` which needed to be counteracted. The original PR already lays out the accessibility impact of this pull request in a good amount of details and so instead I'm going to use the space here to focus on comparing the visuals in the `forgejo` branch with those in this PR. There follow a few pretty boring identical before & after screenshots that are pixel-for-pixel identical with each other. I don't think you'll be able to spot any bugs by glancing at these and am more sharing them to provide an insight into where my attention has been during testing: the 380px wide mobile viewport, a larger desktop viewport, and the "commit message too long to fit in the available space" case. If you know of other troublesome cases for this code that aren't covered by what you see in these images then that could be a good thing to explore here. Before \| After -\|- ![](/attachments/a6f18efd-8b3b-426e-a0dc-70e9eda3fe73) \| ![](/attachments/6297c663-cd5a-4849-a555-061257d59238) ![](/attachments/bbb90da2-afbf-4be5-9293-ec8b3a3dbb3a) \| ![](/attachments/29103640-fce9-42c9-b91a-f9d6f9ba4db0) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12232 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-25 20:47:11 +02:00
Renovate Bot	10643ceb9b	Update dependency htmx.org to v2.0.10 (forgejo) (#12256 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12256 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-25 01:06:51 +02:00
Renovate Bot	9d275907c5	Update dependency @codemirror/view to v6.41.1 (forgejo) (#12219 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12219 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-24 18:36:55 +02:00
Mathieu Fenniak	ef5479af71	refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236 ) Forgejo's `basic` and `oauth2` authentication methods perform five distinct types of authentication: - Username and password authentication - Personal access tokens - OAuth2 access tokens - Forgejo Action's `${{ forgejo.token }}` -- task-based static tokens - Forgejo Action's `${{ env.ACTIONS_RUNTIME_TOKEN }}` JWT, which is the authentication method used for `upload-artifact` (mirroring GitHub's implementation) `basic` and `oauth2` both supported almost all of these methods, resulting in quite a bit of code duplication between them. This PR splits personal access tokens into `access_token.go`, Action's task-based tokens into `action_task_token.go`, and Action's JWT tokens into `action_runtime_token.go`. Note: There is one peculiar side-effect that is worth discussing. Previously, `Authorization: Basic ...` was handled by one complex code path in basic.go, and `Authorization: Bearer ...` was handled by another in oauth2.go, and if authorization failed and a 401 was returned, a single error message would be returned to the user. Now, as multiple authorization methods may look at `Authorization: Basic ...` and provide their own reason why authorization didn't work, a 401 response has multiple reasons for a lack of authorization listed: ``` 401 Unauthorized ... failure to authenticate with oauth2 access token: not a JWT Basic authorization is not allowed while having security keys enrolled access token does not exist [sha: notpassword] task with token "notpassword": resource does not exist ``` A couple tests have been adapted to check that the result contains their expected response, rather than is equal-to or prefixed-with their expected result. This is caused by the "auth group" joining together any "invalid credentials" errors, and, to a certain extent it is useful to understand why the authorization request failed. But it's a bit obscure as well. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - Relying on integration testing for regression checks. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12236 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-24 18:19:58 +02:00
Andreas Ahlenstorf	db622afd87	refactor: delegate to service for run cancellation (#12142 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12142 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-24 04:36:42 +02:00
Renovate Bot	a562140896	Update dependency htmx.org to v2.0.9 (forgejo) (#12248 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12248 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-24 00:46:55 +02:00
Mathieu Fenniak	9f7533c1f1	refactor: clarify four different outputs that authentication methods provide (#12231 ) #12202 began a refactor of Forgejo's authentication implementations by providing structured data on an authentication success. However, error cases were maintained as-is in that refactor, leaving a complex situation: what does returning an error from an authentication method mean?; does it mean that the authentication failed, or that a server error occurred? Can another authentication still be tried? This PR changes authentication methods so that they can return one of four things: - `AuthenticationSuccess` with an authentication result. - `AuthenticationNotAttempted` which indicates that no credentials relevant for this authentication method were presented. If every method returned `AuthenticationNotAttempted`, then you would have an unauthenticated access. - `AuthenticationAttemptedIncorrectCredential` which indicates that credentials were present and failed validation -- a situation indicating a `401 Unauthorized`. - `AuthenticationError` which indicates that an internal server error occurred and failed authentication -- indicating a `500 Internal Server Error`. This paves the way for one more refactor coming next: `basic.go` and `oauth2.go` perform 3-4 different authentications each (access tokens, oauth JWTs, actions tokens, actions JWTs, and username/password). With the capability to return these more precise responses, these authentication methods can be split up into separate logic that isn't intertwined together. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - Relying on existing test suite, with changes for any compile errors -- the next refactor will simplify the auth methods so that they can be unit tested easily. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12231 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-23 02:30:41 +02:00
Robert Wolff	7a86a870c6	fix: compare branches with names `diff` or `patch` (#12227 ) Closes: Codeberg/Community#2538 Regression of: !5385 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12227 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-23 00:35:11 +02:00
Mathieu Fenniak	1ddd5faa5c	refactor: change authentication to return structured data (#12202 ) Currently authentication methods return information in two forms: they return who was authenticated as a `user_model.User`, and then they insert key-values into `ctx.Data` which has critical impact on how the authenticated request is treated. This PR changes the authentication methods to return structured data in the form of an `AuthenticationResult`, with all the key-value information in `ctx.Data` being moved into methods on the `AuthenticationResult` interface. Authentication workflows in Forgejo are a real mess. This is the first step in trying to clean it up and make the code predictable and reasonable, and is both follow-up work that was identified from the repo-specific access tokens (where the `"ApiTokenReducer"` key-value was added), and is pre-requisite work to future JWT enhancements that are [being discussed](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-13268004). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - All changes, at least in theory, are refactors of existing logic and are not expected to have functional deviations -- existing regression tests are the only planned testing. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12202 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-22 21:00:26 +02:00
Mathieu Fenniak	2ed98ac848	fix: resolve outer workflow call to success, not failure, on inner job skip (#12224 ) If one or more of a workflow expansion's inner jobs are status "skipped", consider that as a success, rather than a failure. Fixes https://code.forgejo.org/forgejo/runner/issues/1490. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12224 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org>	2026-04-22 13:41:25 +02:00
Beowulf	1b6fe54e08	fix(e2e): improve org-members, issue-sidebar and runner-management test (#12164 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11848 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12164 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-04-21 21:16:57 +02:00
zokki	4001ab027a	fix: secret name-prefix regex (#12213 ) Fixes: #12212 Sorry for this bug, I introduced it by not testing !10682 better. Now the `forbiddenPrefixPattern`-regex is compliant to the docu: ``` It cannot start with FORGEJO_, GITEA_, GITHUB_, or a number. ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12213 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2026-04-21 19:55:16 +02:00
Renovate Bot	529b14291d	Update dependency clippie to v4.1.14 (forgejo) (#12209 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12209 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-21 19:49:54 +02:00
Nils Goroll	0034e55965	chore: unify signing key configuration across modules (#11194 ) ## Context the three commits in this series are the first step towards the goal of removing the special casing around `JWT_SECRET`, which is used for various modules via `GetGeneralTokenSigningSecret()`. Ultimately, I want to work towards enabling seamless migration away from general use of the common secret. To enable this, we need proper secret/key rotation support, that is, we need to allow for configuration of additional secrets/keys which are accepted for token validation, but not used to issue tokens. I have this _Verifier_ support basically implemented, but this PR is not it. This PR contains cleanup refactoring which I worked on before writing the _Verifier_ support, because I noticed that the existing secret/key handling across modules was inconsistent and required duplicated code. I am submitting this part now to allow for incremental review of not too large a diff, and because these commits remained unchanged during two weeks since I moved on the the next task. ## The problem being addressed Configuration of JWT signing secrets/keys was inconsistent: Under `[oauth2]` the full configuration set was supported: - `JWT_SIGNING_ALGORITHM` configured the algorithm - `JWT_SECRET` configured a literal secret for symmetric algorithms - `JWT_SECRET_URI` configured a `file:` uri of a secret for symmetric algorithms - `JWT_SIGNING_PRIVATE_KEY_FILE` configured a file for asymmetric algorithms For `[server]`, the LFS module only supported `LFS_JWT_SECRET`, and the signing method was hardcoded to `HS256` For `[actions]`, only asymmetric signing methods were supported via `ID_TOKEN_SIGNING_ALGORITHM` and `ID_TOKEN_SIGNING_PRIVATE_KEY_FILE`. ## ini unification The proposed code centralizes ini parsing to always support the following ini keys: - `[pfx]SIGNING_ALGORITHM` determines the algorithm - `[pfx]SECRET` is a literal secret for symmetric algorithms - `[pfx]SECRET_URI` is the uri of a secret for symmetric algorithms - `[pfx]SIGNING_PRIVATE_KEY_FILE` is a file with a private key for asymmetric algorithms `[pfx]` is specific to the module and chosen to support the existing ini keys Centralizing this code and unifying the ini keys will come handy for at least the following reasons: - consistent behavior across modules is easier to understand - less duplicated code - easier to expand later, which is my main motivation ## implementation notes as might be apparent by the _take3_ branch name, this is the third iteration of this patch series. The main reason why I abandoned the other two is that I first tried to move all the key initialization into the code called from settings.go when the ini file is parsed. But that lead to a lot of friction with test cases, because private key files which are configured, but do not exist will get created and hence require a writable `AppDataPath` and additional clean up. To avoid a lot of noise and complications in test cases, I kept the existing two stage process, where - the settings component creates missing symmetric signing keys and writes them to the .ini - the settings component creates a simple configuration struct - which is then used from the module init to create the actual key, which also includes creating a private key file if asymmetric crypto is configured and the key file does not exist. I would have wished this patch was a net negative in terms of LOCs, but I hope it contributes to clarity and many added lines are in test cases. ## Commits Because sometimes PRs are merged as squashes with the PR text remaining, I am repeating here the individual messages of the individual commits for future reference: ### Refactor signing key initalization and oauth2 use of it This commit is the first in a series towards the goal of addressing the FIXME comment in modules/setting/oauth2.go to remove GeneralTokenSigningSecret To do it properly, the task also requires addition of signing secret/key rotation: We ultimately want to be able to change a signing key, but continue to accept the previous one. This is particularly relevant to offer a path from GeneralTokenSigningSecret aka JWT_SECRET to new, specific component key configuration, where it should be possible to add the former JWT_SECRET as a key accepted for verification to enable a seamless transition. This perspective, in turn, calls for refactoring of the existing secret initialization code to centralize the common functions of parsing signing key related configuration directives: The oauth2 module currently is the only component accepting symmetric and asymmetric keys, with the limitation of the symmetric key being also the GeneralTokenSigningSecret. Other components either enforce HS256 or public key algorithms. We should really give the choice of algorithm selection and avoid code duplication in other places, so this commit - generalizes setting parsing into a configuration struct: A prefix can be provided, with which the common configuration directives are processed: - [pfx]SIGNING_ALGORITHM determines the algorithm - [pfx]SECRET is a literal secret for symmetric algorithms - [pfx]SECRET_URI is the uri of a secret for symmetric algorithms - [pfx]SIGNING_PRIVATE_KEY_FILE is a file with a private key for asymmetric algorithms - which is then accepted by jwtx.InitSigningKey() to create an actual signing key The reasons for the two stage process are explained in a long-ish comment in modules/setting/security.go. In short, other options would either violate sensible module boundaries or cause too much friction. These other options have actually been tried, this is take 3 of the proposed changes. ### Refactor services/lfs: Change token code to use SigningKey This now also enables use of token algorithms other than HS256. In this case, signing key initialization also happens during settings initialization, because LFS is also used in CLI commands. ### Refactor api/actions to use new signingkey API This now also enables use of symmetric token algorithms. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11194 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-04-21 19:39:33 +02:00
Robert Wolff	33d6ecfca6	fix(ui): allow creating files with name starting with dash (#12214 ) Closes: #12204 The underlying git option was already changed in git 2.0.0 to use format `<mode>,<object>,<path>`. See `ec160ae12b`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12214 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-04-21 19:13:56 +02:00
Renovate Bot	9c4fc72985	Update module connectrpc.com/connect to v1.19.2 (forgejo) (#12210 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12210 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-21 02:21:52 +02:00
Renovate Bot	23b541ce5a	Update module code.forgejo.org/forgejo/runner/v12 to v12.9.0 (forgejo) (#12211 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.8.2` → `v12.9.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.9.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.8.2/v12.9.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.9.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.9.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.8.2...v12.9.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1488): <!--number 1488 --><!--line 0 --><!--description ZmVhdDogdHJpbSB3aGl0ZXNwYWNlIGFyb3VuZCB0b2tlbiwgdmFsaWRhdGUgaXQ=-->feat: trim whitespace around token, validate it<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1481): <!--number 1481 --><!--line 0 --><!--description Zml4OiBpbnRlcnBvbGF0aW9uIG9mIGB3b3JrZmxvd19jYWxsYCBpbnB1dHM=-->fix: interpolation of `workflow_call` inputs<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1485): <!--number 1485 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1naXQvdjUgdG8gdjUuMTguMCBbU0VDVVJJVFld-->Update module github.com/go-git/go-git/v5 to v5.18.0 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1482): <!--number 1482 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjUuOQ==-->Update dependency go to v1.25.9<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1479): <!--number 1479 --><!--line 0 --><!--description VXBkYXRlIGdvLm9wZW50ZWxlbWV0cnkuaW8vb3RlbC9leHBvcnRlcnMvb3RscC9vdGxwdHJhY2Uvb3RscHRyYWNlaHR0cCAoaW5kaXJlY3QpIHRvIHYxLjQzLjAgW1NFQ1VSSVRZXQ==-->Update go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp (indirect) to v1.43.0 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1478): <!--number 1478 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi44LjI=-->Update forgejo-runner to v12.8.2<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (` 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzIuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12211 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-21 01:50:24 +02:00
ShellWen	a85c527709	feat(api): add REST API endpoints for Actions artifacts (#12140 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (not applicable — Go-only change) ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. ## Summary Add public REST API endpoints under `/api/v1/` for listing, inspecting, downloading, and deleting Actions artifacts. Previously, artifacts could only be accessed through the web UI or the internal runner API. ### New endpoints \| Method \| Path \| Description \| \|--------\|------\|-------------\| \| `GET` \| `/repos/{owner}/{repo}/actions/artifacts` \| List all artifacts for a repository \| \| `GET` \| `/repos/{owner}/{repo}/actions/runs/{run_id}/artifacts` \| List artifacts for a workflow run \| \| `GET` \| `/repos/{owner}/{repo}/actions/artifacts/{artifact_id}` \| Get artifact metadata \| \| `GET` \| `/repos/{owner}/{repo}/actions/artifacts/{artifact_id}/zip` \| Download artifact as zip \| \| `DELETE` \| `/repos/{owner}/{repo}/actions/artifacts/{artifact_id}` \| Delete an artifact \| - List endpoints support `page`, `limit`, and `name` query parameters - Both v1-v3 (multi-file, zip on-the-fly) and v4 (single zip) artifact backends are supported - Expired artifacts are listed with `expired: true` but cannot be downloaded - Delete requires write permission; all other endpoints require read permission Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12140 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: ShellWen <me@shellwen.com> Co-committed-by: ShellWen <me@shellwen.com>	2026-04-20 05:10:54 +02:00
Renovate Bot	f9b3630911	Update renovate Docker tag to v43.132.0 (forgejo) (#12194 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-20 03:37:57 +02:00
Renovate Bot	469cd0847e	Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.6.0 (forgejo) (#12156 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12156 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-20 03:08:30 +02:00
Renovate Bot	d49da9d238	Lock file maintenance (forgejo) (#12195 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12195 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-20 02:28:47 +02:00
Renovate Bot	c37b4d38b1	Update module github.com/go-webauthn/webauthn to v0.16.5 (forgejo) (#12193 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12193 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-20 02:27:49 +02:00
Renovate Bot	8b4aa4478f	Update dependency clippie to v4.1.13 (forgejo) (#12192 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12192 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-20 02:27:24 +02:00
Andreas Ahlenstorf	6cd3f0263d	refactor: move rerun logic to services (#12141 ) Move the logic for handling reruns of Forgejo Action workflows and individual jobs to services. That is a prerequisite for adding the corresponding HTTP API endpoints. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12141 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-19 22:08:00 +02:00
Andreas Ahlenstorf	178a0a25f8	chore: flag suspicious OwnerID comparisons (#12184 ) Resources in Forgejo can also be owned by predefined system users like Ghost or Forgejo Actions. Those have negative user IDs, for example, -2 in the case of Forgejo Actions. `OwnerID` checks oftentimes do not take these users into account, because their existence and how they work isn't well known. A [semgrep](https://semgrep.dev/) check is added that flags such suspicious `OwnerID` checks. See https://codeberg.org/forgejo/forgejo/pulls/12144 for background. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12184 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-19 04:24:09 +02:00
Renovate Bot	99299a5685	Update module github.com/jackc/pgx/v5 to v5.9.2 (forgejo) (#12188 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) \| `v5.9.1` → `v5.9.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fjackc%2fpgx%2fv5/v5.9.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fjackc%2fpgx%2fv5/v5.9.1/v5.9.2?slim=true) \| --- ### Release Notes <details> <summary>jackc/pgx (github.com/jackc/pgx/v5)</summary> ### [`v5.9.2`](https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2) [Compare Source](https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMTEuMCIsInVwZGF0ZWRJblZlciI6IjQzLjExMS4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12188 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-19 04:19:03 +02:00
Renovate Bot	4b8d118cce	Update dependency postcss to v8.5.10 (forgejo) (#12186 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12186 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-19 01:46:45 +02:00
Renovate Bot	f596bd0324	Update dependency swagger-ui-dist to v5.32.3 (forgejo) (#12170 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-19 01:46:09 +02:00
0ko	9ccaf473eb	fix(i18n): don't log harmless missing translations as errors (#12183 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6203 Currently it is logging an error wherever a template is rendered in language that doesn't have all plural strings covered. For example, Esperanto isn't well maintained. Since more plural strings were migrated in v15 to new format, these errors became much more common. However, for all languages but the base one (English) they are completely harmless and just indicate an incomplete translation. However, for base (English) they indicate a bug in either template or en-US.json, which should be still logged as an error. The error is being logged by `LookupPluralByForm`, which is called by `TrPluralStringAllForms` and (`TrPluralString` through `LookupPluralByCount`). I originally intended to just pass log func directly to `LookupPluralByForm` from both, but since `TrPluralString` isn't calling `LookupPluralByForm` directly, it didn't look clean, so I went with passing a flag around instead and implemented logging logic in `LookupPluralByForm` itself. I little concern is with that the so-called "default lang" is configurable, and if it is configured to something with less than 100% completion, it will cause fallback bugs, as well as a lot of logging of this as an error. But this is why changing "default lang" is a bad idea in the first place, and broken fallbacks should be greater concern than junk in the logs. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12183 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-18 23:18:02 +02:00
Renovate Bot	a11d0db2e1	Update dependency webpack to v5.106.1 (forgejo) (#12109 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12109 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-18 14:48:45 +02:00
Renovate Bot	bacd8f365d	Update github.com/go-git/go-git/v5 (indirect) to v5.18.0 [SECURITY] (forgejo) (#12174 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) \| `v5.17.1` → `v5.18.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgo-git%2fgo-git%2fv5/v5.18.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgo-git%2fgo-git%2fv5/v5.17.1/v5.18.0?slim=true) \| --- ### go-git: Credential leak via cross-host redirect in smart HTTP transport [GHSA-3xc5-wrhm-f963](https://github.com/advisories/GHSA-3xc5-wrhm-f963) <details> <summary>More information</summary> #### Details ##### Impact `go-git` may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. If a remote repository responds to the initial `/info/refs` request with a redirect to a different host, go-git updates the session endpoint to the redirected location and reuses the original authentication for subsequent requests. This can result in the credentials (e.g. Authorization headers) being sent to an unintended host. An attacker controlling or influencing the redirect target can capture these credentials and potentially reuse them to access the victim’s repositories or other resources, depending on the scope of the credential. Clients using `go-git` exclusively with trusted remotes (for example, GitHub or GitLab), and over a secure HTTPS connection, are not affected by this issue. The risk arises when interacting with untrusted or misconfigured Git servers, or when using unsecured HTTP connections, which is not recommended. Such configurations also expose clients to a broader class of security risks beyond this issue, including credential interception and tampering of repository data. ##### Patches Users should upgrade to `v5.18.0`, or `v6.0.0-alpha.2`, in order to mitigate this vulnerability. Versions prior to v5 are likely to be affected, users are recommended to upgrade to a supported `go-git` version. The patched versions add support for configuring [followRedirects](https://git-scm.com/docs/git-config#Documentation/git-config.txt-httpfollowRedirects). In line with upstream behaviour, the default is now `initial`, while users can opt into `FollowRedirects` or `NoFollowRedirects` programmatically. ##### Credit Thanks to the 3 separate reports from @celinke97, @N0zoM1z0 and @AyushParkara. Thanks for finding and reporting this issue privately to the `go-git` project. 🙇 #### Severity - CVSS Score: 4.7 / 10 (Medium) - Vector String: `CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N` #### References - [https://github.com/go-git/go-git/security/advisories/GHSA-3xc5-wrhm-f963](https://github.com/go-git/go-git/security/advisories/GHSA-3xc5-wrhm-f963) - [https://github.com/go-git/go-git](https://github.com/go-git/go-git) This data is provided by [OSV](https://osv.dev/vulnerability/GHSA-3xc5-wrhm-f963) and the [GitHub Advisory Database](https://github.com/github/advisory-database) ([CC-BY 4.0](https://github.com/github/advisory-database/blob/main/LICENSE.md)). </details> --- ### Release Notes <details> <summary>go-git/go-git (github.com/go-git/go-git/v5)</summary> ### [`v5.18.0`](https://github.com/go-git/go-git/releases/tag/v5.18.0) [Compare Source](https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0) #### What's Changed - plumbing: transport/http, Add support for followRedirects policy by [@pjbgf](https://github.com/pjbgf) in [#2004](https://github.com/go-git/go-git/pull/2004) Full Changelog: <https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0> ### [`v5.17.2`](https://github.com/go-git/go-git/releases/tag/v5.17.2) [Compare Source](https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2) #### What's Changed - build: Update module github.com/go-git/go-git/v5 to v5.17.1 \[SECURITY] (releases/v5.x) by [@go-git-renovate](https://github.com/go-git-renovate)\[bot] in [#1941](https://github.com/go-git/go-git/pull/1941) - dotgit: skip writing pack files that already exist on disk by [@pjbgf](https://github.com/pjbgf) in [#1944](https://github.com/go-git/go-git/pull/1944) ⚠️ This release fixes a bug ([#1942](https://github.com/go-git/go-git/issues/1942)) that blocked some users from upgrading to `v5.17.1`. Thanks [@pskrbasu](https://github.com/pskrbasu) for reporting it. 🙇 Full Changelog: <https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2> </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - "" - Automerge - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMTEuMCIsInVwZGF0ZWRJblZlciI6IjQzLjExMS4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12174 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-18 05:10:44 +02:00
Gusted	46d890c8e1	fix: always include files set to be detectable for language stats (#11685 ) - The documentation has the correct behavior about `linguist-detectable`: In cases where a file should be considered for language statistics, regardless of its category, the linguist-detectable attribute can be used. - This patch follows that behavior by not skipping the file even if some heuristic would've said to skip the file. - Document the conditions in more natural language. - Resolves forgejo/forgejo#11248 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11685 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-04-18 00:56:08 +02:00
Alec Walsh	83459905d1	Exclude SSH certificate principals from output when viewing user's SSH keys (#12079 ) Fixes #11590 When viewing a user's SSH keys, SSH principals are now excluded from the output. This would previously either result in a panic in [OmitEmail](`cfd4d53e32/models/asymkey/ssh_key.go (L67)`), if the principal name didn't contain any spaces, or truncate the principal name, if it did contain spaces. The TestExportUserSSHKeys test was also updated and fails if the fix(commit `cfcbc33af0`) is reverted. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing - [x] `make test` - [x] `make test-sqlite#TestExportUserSSHKeys` I have also manually tested the change. The full integration tests(`make test-sqlite`) report some errors, but I get the same errors without this PR(tested on commit [`6a5dda7116`](`6a5dda7116`)). I have not tested with the other database backends. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12079 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Alec Walsh <code@alecwalsh.name> Co-committed-by: Alec Walsh <code@alecwalsh.name>	2026-04-17 17:17:29 +02:00
0ko	766c9c64f5	fix(rna): prioritize breaking changes without a feature or bug label over non-breaking changes (#12124 ) Related: https://codeberg.org/forgejo/website/pulls/843#issuecomment-13131897 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12124 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-04-17 15:24:58 +02:00
Renovate Bot	b6b5592e7f	Update Node.js to v24.15.0 (forgejo) (#12157 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12157 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-17 06:59:26 +02:00
Beowulf	00269b3a0b	fix: CodeMirror e2e test (#12151 ) I tried a lot, but this seems to work. I know it is ugly, but checking and waiting after every action seems to make it stable. At least it succeeded five times in a row and the CI seemed to be under load due to the dependency updates. Maybe it is worth a try... Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12151 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-04-17 01:41:56 +02:00
Mathieu Fenniak	c7b5026f59	chore: bump xorm to v1.3.9-forgejo.11 (#12153 ) Should fix intermittent test failures in Forgejo's integration test suite, in [`TestPackageDebianConcurrent`](https://codeberg.org/forgejo-integration/forgejo/actions/runs/16661/jobs/3/attempt/1#jobstep-5-1271), where this error is occurring. Will be backported to v15 as the same test is present there, to keep the LTS tests healthy. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12153 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-16 23:42:08 +02:00
Dominik Zyla	6236a4cc99	feat: allow for getting 2fa enabled users via /api/v1/admin/users (#12091 ) Allow for filtering users with 2fa enabled as admin. So that it is easy to audit users' settings compliance with iso27001, etc. Resolves #11800 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12091 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Dominik Zyla <zylad@noreply.codeberg.org> Co-committed-by: Dominik Zyla <zylad@noreply.codeberg.org>	2026-04-16 19:52:56 +02:00
RahulGautamSingh	39f677c0db	feat(api): add base and head query filters to list pull requests endpoint (#12104 ) Resolves https://codeberg.org/forgejo/forgejo/issues/6919 Add `base` and `head` filter options to the `repoListPullRequests` API operation. Co-authored-by: Rahul Gautam Singh <rere0095@Rahuls-MacBook-Air.local> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12104 Reviewed-by: Ellen Εμίλια Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: RahulGautamSingh <rahultesnik@gmail.com> Co-committed-by: RahulGautamSingh <rahultesnik@gmail.com>	2026-04-16 19:51:46 +02:00
Mathieu Fenniak	a4b575fd75	fix: make /repos/search?uid=-2 return zero results, no repos with that owner (#12144 ) API calls to `.../api/v1/repos/search?uid=-2&archived=false` currently do not apply the filter `uid` because of the negative value. This can occur when APIs are interacting with `${{ forgejo.token }}` and believe they're operating as the Forgejo Actions user, which has UID -2. In combination with the security checks that occur in the `/repos/search` API to validate that repositories accessed are visible to the user, this can result in 500 error responses when a more correct expectation would be to receive no repositories: `da8898822c/routers/api/v1/repo/repo.go (L237-L242)` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12144 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-16 19:26:28 +02:00
Mathieu Fenniak	2c0c48f50e	fix: continued API response processing after error in `/repos/search` API (#12143 ) Prevent continued execution of some APIs with error responses that didn't correctly interrupt execution, resulting in bizarre outputs and possibly leaking secure data: ``` > GET /api/v1/repos/search?uid=-2&archived=false HTTP/2 > Host: example.org > user-agent: curl/7.88.1 > accept: / > authorization: bearer *** > < HTTP/2 500 < server: nginx < date: Thu, 16 Apr 2026 14:20:09 GMT < content-type: application/json;charset=utf-8 < cache-control: max-age=0, private, must-revalidate, no-transform < x-content-type-options: nosniff < x-frame-options: SAMEORIGIN < {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"message":"","url":"https://example.org/api/swagger"} {"ok":true,"data":[{"id":68,"owner":{"id":1,"login":"mfenniak", ... ``` As these errors only occur on situations that shouldn't be reproducible (minus software bugs), test automation isn't practical. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12143 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-16 17:59:37 +02:00
forgejo-release-manager	da8898822c	chore(release-notes): Forgejo v15.0.0 [skip ci] (#12138 ) https://codeberg.org/forgejo/forgejo/milestone/36366 https://codeberg.org/forgejo-release-manager/forgejo/src/branch/release-notes-15.0.0/release-notes-published/15.0.0.md Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12138 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-04-16 14:09:39 +02:00
jaylinski	60332ed111	chore(Dockerfile.rootless): update shadowed env variables (#11720 ) This was missed in https://codeberg.org/forgejo/forgejo/pulls/11098. See https://github.com/go-gitea/gitea/pull/17846 for why this was added in the first place. Note that this is not backwards compatible. For users with a custom `app.ini`-config this won't work. But it also didn't work with the previous config. This change only aligns it with the default app.ini-path. Co-authored-by: Jakob Linskeseder <jakob@linskeseder.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11720 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: jaylinski <jaylinski@noreply.codeberg.org> Co-committed-by: jaylinski <jaylinski@noreply.codeberg.org>	2026-04-16 09:58:57 +02:00
Renovate Bot	eea5ac9639	Update dependency globals to v17.5.0 (forgejo) (#12135 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-16 07:03:44 +02:00
Mathieu Fenniak	8cb776dcac	chore: fix TestMirrorPull on older git (2.34.1) installation (#12134 ) `TestMirrorPull` is currently failing when run on git 2.34.1 in the `testing-integration.yml` workflow: https://codeberg.org/forgejo-integration/forgejo/actions/runs/16661/jobs/1/attempt/1#jobstep-5-2539 Began to fail after #11909 when additional checks on pull mirror configuration was added. This PR addresses the issue and has been manually tested against the same git version: ``` $ git --version git version 2.34.1 $ make test-sqlite#TestMirrorPull 2>&1 ... === TestMirrorPull/migrate_from_repo_config_credentials (tests/integration/mirror_pull_test.go:238) PASS ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12134 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-16 02:08:43 +02:00
Beowulf	922573ba2d	chore: fix cookie name comments in example ini (#12131 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12131 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-04-15 22:13:13 +02:00
Michael Kriese	1cd81146a9	fix: improve runner list and details view (#12113 ) - shrink runner list width (use icons, move details link to runner name) - add owner to runner details on admin view - #11516 removed a lot details which makes it much harder for an admin to find a specific runner --- ### admin list ![image](/attachments/7dd28e5b-6332-48b1-b545-2fc2b83e5368) ### admin org runner details ![image](/attachments/da972377-d401-41fe-8a17-d78824d6d714) ### admin repo runner ![image](/attachments/489e71c2-6087-4441-ad72-695ef0e04161) ### individual list ![image](/attachments/5618b962-0964-415f-a820-e673001f4007) ### individual runner details ![image](/attachments/5799c212-37d5-4047-965f-60952ee7c74c) ### tooltips for edit and delete ![image](/attachments/bcfb9358-0bf3-4d3f-a73c-66fb8e63eb67) ![image](/attachments/63b1c9e5-2fd3-4cc3-9f88-e0a1cf410769) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12113 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-04-15 20:25:23 +02:00
0ko	3fe02a2175	merge commit: i18n: translations update from Codeberg Translate (#11963 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11963 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-15 19:04:26 +02:00
Codeberg Translate	88a0551f54	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Aindriú Mac Giolla Eoin <aindriu80@noreply.codeberg.org> Co-authored-by: AshyPinguin <ashypinguin@noreply.codeberg.org> Co-authored-by: Atalanttore <atalanttore@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Coral Pink <coral.pink@disr.it> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Shadow_Glider <shadow_glider@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Zughy <zughy@noreply.codeberg.org> Co-authored-by: alissonlauffer <alissonlauffer@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: augustd <augustd@noreply.codeberg.org> Co-authored-by: bahrom04 <bahrom04@noreply.codeberg.org> Co-authored-by: bittin <bittin@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: cirilla <cirilla@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kwoot <kwoot@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: michi-onl <michi-onl@noreply.codeberg.org> Co-authored-by: mkljczk <mkljczk@noreply.codeberg.org> Co-authored-by: ospalh <ospalh@noreply.codeberg.org> Co-authored-by: pakus <pakus@noreply.codeberg.org> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kw/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/mk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kw/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/mk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tok/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-04-15 16:24:17 +00:00
0ko	8cdfe1d57a	fix(ui): a few small runners UI fixes (#12115 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11516 The string will be fixed in other languages though Weblate after this PR is merged Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12115 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2026-04-14 18:50:29 +02:00
viceice	1b6e124087	chore(renovate): disable updates on old stable branches (#12122 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12122 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2026-04-14 17:25:48 +02:00
Mathieu Fenniak	179fbdb04e	fix: when reviewing in PRs, make comments relative to viewed base & head, not just viewed head (#12107 ) While developing tests for #12092, I came across a case where making a comment on a single-commit doesn't include the correct diff for the comment. This is because code comment placement occurs between the PR's base and the commit being viewed, but, that diff could be different from the commit's parent to the commit, which is what is being viewed on a single-commit diff. Similar to #12055, this PR changes code comments to be more precise in their diff generation by providing the backend with both the base commit (`before_commit_id`) and head commit (`after_commit_id`) currently being viewed. As a result, the diffs attached to comments should exactly match the diffs being viewed by the user when the comment was placed. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12107 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-14 17:18:14 +02:00
Gusted	0d97b8e9da	chore: don't load settings twice for running `web` (#12111 ) - It's quite hard to determine when and why this was added here, my best guess is that this being the "oldest" subcommand at some point loading the configuration was not unified. Now it is unified in `prepareWorkPathAndCustomConf` which is run before any subcommand is run. It determines the work path, custom path and (custom) config and then loads the settings by calling `LoadCommonSettings`. - Between `prepareWorkPathAndCustomConf` being called and `serveInstalled` being called the `setting.CustomConf` is not changed. There was a possibility this being necessary for install page -> installed, but the install code already ensures that the new config is loaded and used. - Thus calling to load the settings again here is not necessary. There's a small possibility some settings loading code was written to only work after being loaded the second time. That's a bug that needs to be fixed, because all other subcommands does not load the settings twice and would see a different view of the settings in that case. I don't fear such code being present here. - Resolves forgejo/forgejo#11024 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12111 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-04-14 07:25:05 +02:00
Έλλεν Εμίλια Άννα Zscheile	94a55fc666	i18n(mailer): Fix special usage of .Locale in admin_new_user (#12009 ) This PR is in reaction to https://codeberg.org/forgejo/forgejo/issues/1711 . Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12009 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de>	2026-04-14 07:20:16 +02:00
Έλλεν Εμίλια Άννα Zscheile	cf26e4c891	feat(asymkey/llu): Only interpret .Reason as msgid if .Verified=false (#12019 ) Split out from #12013. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12019 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de>	2026-04-14 06:27:39 +02:00
famfo	5f432e32c8	chore(federation): re-enable nilnil lint (#11253 ) First round of patches to re-enable some lints from my side. This PR also refactors the general key fetching code quite a bit due to the way it currently worked with relying on some values being nil sometimes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11253 Reviewed-by: elle <0xllx0@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-04-13 22:05:29 +02:00
Mathieu Fenniak	a797a71dea	fix: display code comments on removed lines-of-code to correct locations in PR view (#12092 ) With the completion of #12015, when a comment is left on a changed line in a pull request, we track the comment against the line of code with `git blame` and then identify where it currently is in any diff with `git blame --reverse`. However, this strategy only works for the modified lines of code -- eg. the `+...` in diffs, and not the `-...` in diffs. The reason is that `git blame --reverse` can't track a line of code's location past the commit that it was removed in. To permit comments that are left on lines of code that are removed to appear correctly in the UI, a separate approach is required for those comments. This PR performs two major changes, which have been complex to figure out, but are reasonably easy to understand: - When a comment is placed on a removed line in a PR, perform a `git blame --reverse` from the PR's base to the currently viewed commit, and use this information to record in the comment: - the last commit that the line of code existed in (stored in the `commit_sha` field) - the line of code as of that commit (stored in the `line` field, negative, to indicate that the comment is on a removal). - the patch where the comment was placed (stored in the field `patch`); existing functionality unchanged in this PR - When viewing any diff in the PR, for each comment on a removal, perform a diff from the `commit_sha` (last commit that the line of code existed in) to the current commit being viewed, and verify that within that diff the left-hand-side line removal still exists at the same line of code in the diff, by comparing the current diff with the stored patch. - If present, place the commit in the UI at the line number. - If the line of code no longer exists in the diff at that point (for example, it was removed, commented upon, and then re-added in a later commit), then the comment is considered outdated and isn't displayed. The algorithm used for marking a comment as "outdated" is also updated to use this approach. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12092 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-13 18:26:53 +02:00
Henry Catalini Smith	86898a7d05	Revert "Improve repo file list table semantics for screen readers (#11846 )" (#12088 ) Fixes https://codeberg.org/forgejo/forgejo/issues/12082 by reverting commit `dd968f147d`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12088 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-04-13 15:06:10 +02:00
Renovate Bot	a1be012c4a	Lock file maintenance (forgejo) (#12101 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12101 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-13 02:25:39 +02:00
Renovate Bot	aad64a9508	Update renovate Docker tag to v43.111.0 (forgejo) (#12100 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-13 02:17:33 +02:00
TurtleArmy	2b42fdaa26	feat(ui): Fix comma separated attributes in code blocks language preventing syntax-highlighting (#12056 ) Currently, forgejo does not support syntax highlighting code-blocks that have comma separated attributes after the language. This is a pattern sometimes seen in Rust code blocks, with tests like this: \`\`\`rust #[test] fn run_this_test() { /* ... / } \`\`\` \`\`\`rust,ignore #[test] fn skip_this_test() { / ... / } \`\`\` Currently, forgejo only does syntax highlighting in the first case: ```rust #[test] fn run_this_test() { / ... / } ``` ```rust,ignore #[test] fn skip_this_test() { / ... */ } ``` An example of this causing problems can be seen in this commit (`5be9c5b7d2`) causing the following issue (https://codeberg.org/zesterer/ariadne/issues/188). This PR fixes fixes the second case not getting proper syntax highlighting. Co-authored-by: TurtleArmy <44322335+TurtleArmyMc@users.noreply.github.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12056 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Ellen Εμίλια Άννα Zscheile <fogti@noreply.codeberg.org> Co-authored-by: TurtleArmy <turtlearmy@noreply.codeberg.org> Co-committed-by: TurtleArmy <turtlearmy@noreply.codeberg.org>	2026-04-12 18:30:30 +02:00
famfo	fd28fd896b	feat: Follow remote users; feed tab (#10380 ) This is hopefully the final part of PR #4767, rebased and squashed. More thorough federation tests are at https://code.forgejo.org/forgejo/end-to-end/pulls/1276 but the mock has been extended to hopefully cover a good chunk as well. Co-authored-by: Gergely Nagy <forgejo@gergo.csillger.hu> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-authored-by: zam <mirco.zachmann@meissa.de> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10380 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-04-12 03:31:03 +02:00
Renovate Bot	9de142eb7f	Update dependency webpack to v5.106.0 (forgejo) (#12093 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12093 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-12 02:38:50 +02:00
Mathieu Fenniak	ca00f99c3f	fix: when reviewing in PRs, make comments relative to the visible code's commit (#12055 ) When performing `git blame` to identify the commit that a line of code came from, limit the blame to the commit that is currently being viewed in the UI. Before this change, the blame always occurred on the current head of the PR, causing these problems: - When you click ➕ to load the comment form, the form that is dynamically loaded would have it's commit field pulled from the current PR head. That may not actually reflect the code that you were viewing at the time you authored the comment -- it could be a newer commit that occurred by the author while you were reviewing. - When viewing a specific commit within a PR and leaving a comment, the blame would occur from the head -- if the file was changed in a later commit and the line-of-code moved up or down, the comment would be misplaced. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/12055): <!--number 12055 --><!--line 0 --><!--description d2hlbiByZXZpZXdpbmcgaW4gUFJzLCBtYWtlIGNvbW1lbnRzIHJlbGF0aXZlIHRvIHRoZSB2aXNpYmxlIGNvZGUncyBjb21taXQ=-->when reviewing in PRs, make comments relative to the visible code's commit<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12055 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-12 01:20:54 +02:00
Mathieu Fenniak	40aa3a5c7d	fix: mark code comments as Outdated based upon line-of-code existence in current PR commit (#12054 ) Currently when a commit is pushed to a branch, code comments are marked as Outdated if a `git blame` on the current commit's code returns the same commit as the `git blame` did when the comment was originally created. This implementation doesn't make sense: - It doesn't handle the case correctly where the same line of code exists unaltered in the new commit, but it has been relocated (eg. new lines entered or removed above the location). - It falsely keeps the commit valid if the line of code that the comment was made upon has been removed, if, coincidentally, the line of code that now exists at the commit came from the same source commit. For example, if the line of code that the comment was on was deleted, but the next line of code came from the same commit, the comment will be kept as valid. This PR uses the logic introduced in #12015, using a `git blame --reverse` -- the commit & line that was identified as having the comment on it is reversed, and if it still exists in the new head, then the comment is considered valid. Otherwise it is marked as outdated. Automated tests are added primarily by revising the automated tests in #12015 -- a comment in an existing test case was marked as outdated, even though it shouldn't have been. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/12054): <!--number 12054 --><!--line 0 --><!--description bWFyayBjb2RlIGNvbW1lbnRzIGFzIE91dGRhdGVkIGJhc2VkIHVwb24gbGluZS1vZi1jb2RlIGV4aXN0ZW5jZSBpbiBjdXJyZW50IFBSIGNvbW1pdA==-->mark code comments as Outdated based upon line-of-code existence in current PR commit<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12054 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-11 23:10:34 +02:00
Renovate Bot	160cd930ff	Update module golang.org/x/net to v0.53.0 (forgejo) (#12069 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12069 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 22:16:09 +02:00
Mathieu Fenniak	9fe0cbee02	fix: relocate PR review comments using `git blame --reverse`, improving comment placement (#12015 ) When a review comment is placed on a PR in Forgejo, Forgejo performs a `git blame` to identify which commit originated the line, and records that commit and line number in the comment's database record. Later when the review is viewed, Forgejo currently makes no effort to place that comment in the correct current location, which may vary -- for example, if a PR had two commits and the comment was made on a line in the first commit, but the second commit changes line numbers in that file, the comment will appear in the incorrect location. This PR adds the usage of `git blame --reverse` to calculate the correct location to display the comment in the current view (whether reviewing the PR commit-by-commit, or "Files changed"). It certainly does not fix all problems with comment placement (see comments). Another major addition in this PR is a test harness for making relatively complex PRs and reviewing the diffs on the per-commit view and PR-diff views. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/12015): <!--number 12015 --><!--line 0 --><!--description cmVsb2NhdGUgUFIgcmV2aWV3IGNvbW1lbnRzIHVzaW5nIGBnaXQgYmxhbWUgLS1yZXZlcnNlYCwgaW1wcm92aW5nIGNvbW1lbnQgcGxhY2VtZW50-->relocate PR review comments using `git blame --reverse`, improving comment placement<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12015 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-11 21:45:39 +02:00
Renovate Bot	92b95414e8	Update module github.com/go-webauthn/webauthn to v0.16.4 (forgejo) (#11958 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11958 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 21:21:46 +02:00
Renovate Bot	bf68be21e7	Update module golang.org/x/image to v0.39.0 (forgejo) (#12068 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12068 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 19:18:59 +02:00
Renovate Bot	d9176897d0	Update module golang.org/x/text to v0.36.0 (forgejo) (#12070 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12070 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 19:18:41 +02:00
Renovate Bot	988d702480	Update module code.superseriousbusiness.org/exif-terminator to v0.11.2 (forgejo) (#12087 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12087 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 04:33:53 +02:00
Renovate Bot	b0267f7d79	Update dependency swagger-ui-dist to v5.32.2 (forgejo) (#12085 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 04:17:47 +02:00
Renovate Bot	e636cd2765	Update dependency postcss to v8.5.9 (forgejo) (#12086 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12086 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 03:29:02 +02:00
Renovate Bot	543c2d93ad	Update data.forgejo.org/forgejo/forgejo Docker tag to v11.0.12 (forgejo) (#12084 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [data.forgejo.org/forgejo/forgejo](https://forgejo.org) ([source](https://codeberg.org/forgejo/forgejo)) \| patch \| `11.0.11` → `11.0.12` \| --- ### Release Notes <details> <summary>forgejo/forgejo (data.forgejo.org/forgejo/forgejo)</summary> ### [`v11.0.12`](https://codeberg.org/forgejo/forgejo/releases/tag/v11.0.12) [Compare Source](https://codeberg.org/forgejo/forgejo/compare/v11.0.11...v11.0.12) See <https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/11.0.12.md> </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMDQuNCIsInVwZGF0ZWRJblZlciI6IjQzLjEwNC40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12084 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-11 02:37:46 +02:00
Renovate Bot	72e57743d9	Update module golang.org/x/tools/cmd/deadcode to v0.44.0 (forgejo) (#12071 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-10 18:03:19 +02:00
Andreas Ahlenstorf	d1b69632aa	fix: prevent jobs with unknown needs from running (#12046 ) If Forgejo encounters an Actions workflow with unknown jobs in a needs definition, Forgejo will ignore those and run the job anyway. That is bad. For example, releases could be published without any testing because the name of the testing job was misspelt. Workflow that demonstrates the problem: ```yaml on: push: workflow_dispatch: jobs: build: runs-on: debian steps: - run: \| echo "OK" test: runs-on: debian needs: [does-not-exist] steps: - run: \| echo "OK" ``` Now, before a workflow is run, Forgejo will check whether all jobs referenced in `needs` exist. If any of them does not, it raises a pre-execution error which fails the workflow immediately. It also displays an appropriate error to the user, for example: ``` Workflow was not executed due to an error that blocked the execution attempt. Job with ID test references unknown jobs in `needs`: does-not-exist. ``` Futhermore, workflows with pre-execution errors can no longer be rerun, which was previously possible. Original issue: https://code.forgejo.org/forgejo/runner/issues/977. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12046 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-10 15:40:08 +02:00
forgejo-release-manager	43075c080a	chore(release-notes): Forgejo v14.0.4 [skip ci] (#12074 ) https://codeberg.org/forgejo/forgejo/milestone/67354 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12074 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-04-10 14:50:59 +02:00
forgejo-release-manager	16fbcff8fa	chore(release-notes): Forgejo v11.0.12 [skip ci] (#12073 ) https://codeberg.org/forgejo/forgejo/milestone/67351 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12073 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-04-10 14:50:29 +02:00
Gusted	6a5dda7116	chore: modernize code (#12065 ) Followup of !11115, it was not checked against the the modernizer linter. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12065 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-04-09 21:34:33 +02:00
abdo	e16dc2ebfd	fix: apply signed-merge checks by merge style (#11403 ) Fixes #6438 When a protected branch requires signed commits and no signing key is available, fast-forward-only merges should still be allowed because they do not create a new commit. This patch applies signing checks by merge behaviour/style instead of one global gate: - pass `mergeStyle` through `CheckPullMergeable(...)` in web/API/automerge paths - require signing for commit-creating styles (`merge`, `rebase`, `rebase-merge`, `squash`) - bypass signing precheck only for `fast-forward-only` - align merge UI options with backend behaviour so signing-dependent styles are unavailable when signing cannot happen - add Go unit tests for merge-style signing requirements - add frontend unit coverage for the no-allowed-merge-styles guard Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11403 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: abdo <dev@abdo.wtf> Co-committed-by: abdo <dev@abdo.wtf>	2026-04-09 20:26:27 +02:00
Florian Pallas	4e6a782a89	feat: add admin views for federation configuration, hosts and users (#11115 ) Fixes #9282 Adds a new admin panel category for federation related administration. Includes views for: - Instance Federation Configuration - List of Federation Hosts - (Per-Instance) List of Federated Users Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11115 Reviewed-by: elle <0xllx0@noreply.codeberg.org> Reviewed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Florian Pallas <mail@fpallas.com> Co-committed-by: Florian Pallas <mail@fpallas.com>	2026-04-09 19:38:33 +02:00
Renovate Bot	65044ca765	Update module github.com/mattn/go-sqlite3 to v1.14.42 (forgejo) (#12051 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.40` → `v1.14.42` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.42?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.40/v1.14.42?slim=true) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.42`](https://github.com/mattn/go-sqlite3/compare/v1.14.41...v1.14.42) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.41...v1.14.42) ### [`v1.14.41`](https://github.com/mattn/go-sqlite3/compare/v1.14.40...v1.14.41) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.40...v1.14.41) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMDQuNCIsInVwZGF0ZWRJblZlciI6IjQzLjEwNC40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12051 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-09 18:01:45 +02:00
Andreas Ahlenstorf	73ad72949a	fix: display runner version on details page (#12059 ) Display the version of Forgejo Runner on the runner's detail page. That is useful for diagnostics. Originally, the version was displayed on the overview page, but removed in https://codeberg.org/forgejo/forgejo/pulls/11516 due to space constraints. It should have been moved to the details page, but that never happened. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12059 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-09 16:51:16 +02:00
Andreas Ahlenstorf	703256e50e	Revert "fix: add challenge for HTTP Basic Authentication to container registry" (#12058 ) This reverts commit `79ed45d39a`. Testing has shown that it breaks Docker 26 which is the version included in Debian Trixie. It was originally introduced with https://codeberg.org/forgejo/forgejo/pulls/11678. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12058 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-09 12:21:44 +02:00
Renovate Bot	b2617cf0bb	Update module golang.org/x/sys to v0.43.0 (forgejo) (#12052 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12052 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-09 09:29:43 +02:00
Renovate Bot	7069203e3e	Update module github.com/mattn/go-isatty to v0.0.21 (forgejo) (#12049 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12049 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-09 09:26:30 +02:00
Renovate Bot	ace9bd2a68	Update dependency katex to v0.16.45 (forgejo) (#12048 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12048 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-09 09:25:26 +02:00
Andreas Ahlenstorf	4b2969ab84	fix: incorrect identification of outdated run attempts (#12021 ) Since https://codeberg.org/forgejo/forgejo/pulls/11750, the attempt number of a Forgejo Actions job is set eagerly. When an job is ultimately not run, for example, because its `needs` weren't satisfied, it leads to discontinuous attempt numbers of completed attempts that the component for viewing action logs could not handle. This has been rectified by actually determining the number of the last attempt. Resolves https://codeberg.org/forgejo/forgejo/issues/11994. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12021 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-08 20:03:10 +02:00
Renovate Bot	64d19661ce	Update dependency minimatch to v10.2.5 (forgejo) (#11937 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11937 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 20:02:23 +02:00
Renovate Bot	3982685c35	Lock file maintenance (forgejo) (#12005 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12005 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 20:01:56 +02:00
Renovate Bot	24af9cf8ee	Update module github.com/go-enry/go-enry/v2 to v2.9.6 (forgejo) (#11989 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11989 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 19:59:58 +02:00
Renovate Bot	c55d7ba9d4	Update dependency esbuild-loader to v4.4.3 (forgejo) (#12003 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12003 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 19:49:28 +02:00
Renovate Bot	503bcf1237	Update dependency vue to v3.5.32 (forgejo) (#12010 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 18:41:12 +02:00
Renovate Bot	8b7327c344	Update module code.forgejo.org/forgejo/runner/v12 to v12.8.2 (forgejo) (#12011 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.8.0` → `v12.8.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.8.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.8.0/v12.8.2?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.8.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.8.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.8.1...v12.8.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1477): <!--number 1477 --><!--line 0 --><!--description Zml4OiByZXR1cm4gZXJyb3Igd2hlbiBgb25lLWpvYmAgcmVjZWl2ZXMgbm8gdGFzaw==-->fix: return error when `one-job` receives no task<!--description--> <!--end release-notes-assistant--> ### [`v12.8.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.8.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.8.0...v12.8.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1476): <!--number 1476 --><!--line 0 --><!--description Zml4OiB1c2UgYF57Y29tbWl0fWAgdG8gYWN0dWFsbHkgbGV0IGByZXYtcGFyc2VgIHJlc29sdmUgdG8gdGhlIGNvbW1pdA==-->fix: use `^{commit}` to actually let `rev-parse` resolve to the commit<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1474): <!--number 1474 --><!--line 0 --><!--description Y2hvcmU6IHVwZ3JhZGUgTW9ja2VyeSB0byB2Mw==-->chore: upgrade Mockery to v3<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM (`* 0-3 * * `) - Automerge - Between 12:00 AM and 03:59 AM (` 0-3 * * `) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMDQuNCIsInVwZGF0ZWRJblZlciI6IjQzLjEwNC40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12011 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 17:13:10 +02:00
Saibotk	8154ea5bea	fix(doctor): remove broken mergebase check (#12023 ) Fixes https://codeberg.org/forgejo/forgejo/issues/6163 Fixes https://codeberg.org/forgejo/forgejo/issues/3343 The merge base doctor check & fix was broken and could introduce irreversible "fixes" to wrong merge bases for PRs using the `fast-forward` and `rebase-and-merge` strategies. The mergebase fix was originally introduced in a migration [0] to fix an existing issue [1] in the merge code in 2020. Later added as a doctor command without explanation [2]. We decided to remove this check, as there is no apparent reason for it to still be necessary or any PR merge base state being out of sync with the current implementation. It does more harm to keep the code in and there is no way to fix `fast-forward` and `rebase-and-merge` PRs, due to their merge implementation. `fast-forward`: The git state inherently cannot reconstruct a merge base in this scenario by design. `rebase-and-merge`: Is rebased on a temporary repository clone and thus might receive a different merge base, depending on how far the target branch is ahead. [0]: `4a2b76d9c8` [1]: `4a2b76d9c8` [2]: `d26885e2bf (diff-84d6d60112991392d6ba2cae4cd919fb3ee8afb8)` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12023 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Saibotk <git@saibotk.de> Co-committed-by: Saibotk <git@saibotk.de>	2026-04-08 16:20:19 +02:00
Mathieu Fenniak	bdd2a1def7	fix: prevent actions workflows from generating OIDC tokens if not authorized in workflow (#12030 ) When using Forgejo's `enable-openid-connect: true`, a URL is generated into the actions under `$ACTIONS_ID_TOKEN_REQUEST_URL` that can be used to generate a JWT for accessing third-party resources authenticated as the action executing in this server on this repo. However, the endpoint of that url (`.../idtoken`) had unintentionally missed a `return` on an internal server error, and was missing a check that the action actually had `enable-openid-connect: true` on it. As a result, it was possible to generate a JWT for accessing third-party resources from an action that wasn't expected to be generating JWTs. In terms of real-world vulnerability, the most likely risk is that the JWT could be generated from a forked pull request. By not using the `$ACTIONS_ID_TOKEN_REQUEST_URL` and instead going directly to the `.../idtoken` endpoint, and parsing a generated JWT response that will be mixed with an error response, it's possible to retrieve a JWT in a forked pull request. It would require a slight misconfiguration on a third-party system to allow that JWT access, but it's a plausible risk. As this is a feature in Forgejo 15 that hasn't been released, it will be fixed in-public. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - Feature is not yet released. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12030 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-08 15:42:39 +02:00
Renovate Bot	8f48841c68	Update dependency go to v1.26.2 (forgejo) (#12025 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12025 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-08 15:30:57 +02:00
Henry Catalini Smith	8a6d76cff4	Preserve focus on star/unstar & watch/unwatch buttons after click (#11932 ) Fixes https://codeberg.org/forgejo/forgejo/issues/11880. Adding `hx-on::after-settle="this.querySelector('button').focus()"` restores focus after the content has been swapped and the DOM has been setled. I tried `hx-on::after-swap` first since it's mentioned more often in https://github.com/bigskysoftware/htmx/issues/1869, but it didn't work. The demo attached in `focus.mp4` runs through a series of repeated clicks on both buttons. You can hear the screen reader announce the button's new label when focus is restored. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11932 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-04-08 02:32:14 +02:00
Henry Catalini Smith	dd968f147d	Improve repo file list table semantics for screen readers (#11846 ) https://codeberg.org/forgejo/forgejo/issues/11116 To understand the impact of this you really need to listen to the before and after screen recordings attached. https://codeberg.org/forgejo/forgejo/issues/11116 is a really great bug report, and I was surprised by how disorienting this actually was when testing manually compared to my expectation after reading the issue. This is an impactful improvement! This is my first time adding new translation strings. Excited to learn more about that if I've guessed wrong about how to do it. To summarise, what we're doing here is as follows. 1. Address the core issue by changing the existing `<th>` elements to `<td>` so that screen readers stop semantically associating them with each row and reading them out for every table cell. 2. Replace them with real `<th>` elements that communicate the true semantic role of each column. 3. Add a `<caption>`. This serves a dual purpose: it gives the table an accessible name which improves the navigability of the page, and it gives us a place to explain to the user that the first row of the table is a little bit different because it's the latest commit rather than a file in the repo. 4. Visually hide the new caption and headings so that only screen reader users get them. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for JavaScript changes - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11846 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-04-08 02:20:35 +02:00
Renovate Bot	0b9e11d96b	Update renovate Docker tag to v43.104.4 (forgejo) (#12002 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-07 06:50:24 +02:00
Andreas Ahlenstorf	92f1b6fdd2	test: fix test that was supposed to test DST behaviour but did not (#12007 ) https://codeberg.org/forgejo/forgejo/pulls/11851 introduced tests that verify the scheduling of Forgejo Actions workflows during daylight saving time (DST) changes. Unfortunately, one test didn't test what it was supposed to because it used a reference time in UTC that was already after the clock change has happened. This change also adds tests that verify that `NewActionScheduleSpec()` respects time zones when calculating the initial execution time of a scheduled workflow. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12007 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-07 05:03:26 +02:00
elbaro	f18873f83b	feat: add /actions/runs/{id}/jobs (#11915 ) This PR is a minimal implementation to add `/actions/runs/{id}/jobs` (#11859). This endpoint is also required by `/actions/jobs/{id}/logs`. The pagination, filtering, custom sorting, more response fields are left to future work. ## Usage ``` curl -X 'GET' \ 'https://hostname/api/v1/repos/{owner}/{repo}/actions/runs/{id}/jobs' \ -H 'accept: application/json' ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Co-authored-by: elbaro <elbaro@users.noreply.github.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11915 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: elbaro <elbaro@noreply.codeberg.org> Co-committed-by: elbaro <elbaro@noreply.codeberg.org>	2026-04-06 03:43:41 +02:00
Mathieu Fenniak	9abc1b0144	refactor: reduce code duplication when accessing `DefaultMaxInSize` (#11999 ) `DefaultMaxInSize` is an internal parameter for limiting the size of `field IN (...)` clauses in DB queries, which is a reasonable thing to do -- in addition to the errors noted when [originally introduced](https://github.com/go-gitea/gitea/pull/4594), there are technical limits that apply to each of PostgreSQL, MySQL, and SQLite which would prevent an unbounded size for a query like this. However: the size is incredibly small at 50, and, the implementation of `DefaultMaxInSize` is really wasteful with copy-and-paste coding. This PR: - introduces `GetByIDs` which fetches a `map[int64]Model` from the database for an array of ID values, while respecting `IN` clause size limits - introduces `GetByFieldIn` which fetches a `map[int64][]Model` from the database for an array of field values, while respecting `IN` clause size limits - uses `slices.Chunk` for other locations where queries are too complex for these implementations - bumps the `DefaultMaxInSize` parameter from 50 to 500, a conservative increase well under known limits, but 10x the current value: - PostgreSQL supports up to 1GB query text size with 65,535 parameters, but I've experienced performance degradation at high value counts - MySQL supports 64MB query text size without known limits of parameter count - SQLite supports 32,766 parameters in a query ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - Refactored functions are assumed to be covered by existing tests to some extent; that assumption is probably wrong but the changes here are relatively easily reviewed for correctness as well. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11999 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-05 22:03:45 +02:00
Mathieu Fenniak	6a879e79df	test: fix intermittent test failure in TestPackageDebianConcurrent (#11997 ) Fixes #11968. Adds deadlocks to the package `RetryTx` operations, and bumps the attempt count to 3. Technically this affects production code, not just test code, but the resulting failure is only likely to occur in highly concurrent operations when uploading packages to the debian registry for the first time for a user, which is more of a test artifact than a production likelihood. Manually tested by modifying the `Makefile` to add the `-test.count=25` option to the test command. This failed consistently on my dev system before this change, failed consistently after the deadlock err was added, and then succeeded consistently (multiple runs) after both changes were combined, giving me confidence that the intermittent failure is squashed. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - Fixing a test failure, so no new tests added, but they already failed. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11997 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-05 18:38:33 +02:00
Mathieu Fenniak	15b4c5efe8	chore(deps): bump xorm to v1.3.9-forgejo.10 (#11992 ) Brings [deadlock error type](https://code.forgejo.org/xorm/xorm/pulls/95), which should allow fixing #11968. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11992 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-05 16:36:57 +02:00
Mathieu Fenniak	e14e220651	perf: bulk load resolvers & reactions on pull request comments (#11988 ) Optimize loading pull request review comments, which currently perform separate database queries for each comment in order to load the resolver of the comment, and the reactions on that comment, and the users on each reaction of the comments. I stumbled across this ugly code, which enticed me to look into this: `80d840c128/routers/web/repo/pull.go (L1107-L1120)` It appeared to load the attachments from each comment on the pull request review page in separate database queries. It turned out to be a noop, as the attachments are already loaded in bulk: `80d840c128/models/issues/comment_code.go (L120-L122)` but the `findCodeComments` method loads the "resolver doer" and the reactions one-by-one for each comment. So I fixed that instead, and removed the ineffective deeply nested for loop. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11988 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-05 14:37:09 +02:00
Renovate Bot	90ca611695	Update dependency mermaid to v11.14.0 (forgejo) (#11990 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [mermaid](https://github.com/mermaid-js/mermaid) \| [`11.13.0` → `11.14.0`](https://renovatebot.com/diffs/npm/mermaid/11.13.0/11.14.0) \| ![age](https://developer.mend.io/api/mc/badges/age/npm/mermaid/11.14.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/mermaid/11.13.0/11.14.0?slim=true) \| --- ### Release Notes <details> <summary>mermaid-js/mermaid (mermaid)</summary> ### [`v11.14.0`](https://github.com/mermaid-js/mermaid/releases/tag/mermaid%4011.14.0) [Compare Source](https://github.com/mermaid-js/mermaid/compare/mermaid@11.13.0...mermaid@11.14.0) Thanks to our awesome mermaid community that contributed to this release: [@ashishjain0512](https://github.com/ashishjain0512), [@tractorjuice](https://github.com/tractorjuice), [@autofix-ci\[bot\]](https://github.com/autofix-ci%5Bbot%5D), [@aloisklink](https://github.com/aloisklink), [@knsv](https://github.com/knsv), [@kibanana](https://github.com/kibanana), [@chandershekhar22](https://github.com/chandershekhar22), [@khalil](https://github.com/khalil), [@ytatsuno](https://github.com/ytatsuno), [@sidharthv96](https://github.com/sidharthv96), [@github-actions\[bot\]](https://github.com/github-actions%5Bbot%5D), [@dripcoding](https://github.com/dripcoding), [@knsv-bot](https://github.com/knsv-bot), [@jeroensmink98](https://github.com/jeroensmink98), [@Alex9583](https://github.com/Alex9583), [@GhassenS](https://github.com/GhassenS), [@omkarht](https://github.com/omkarht), [@darshanr0107](https://github.com/darshanr0107), [@leentaylor](https://github.com/leentaylor), [@lee-treehouse](https://github.com/lee-treehouse), [@veeceey](https://github.com/veeceey), [@turntrout](https://github.com/turntrout), [@Mermaid-Chart](https://github.com/Mermaid-Chart), [@BambioGaming](https://github.com/BambioGaming), Claude ### Releases #### [@mermaid-js/examples](https://github.com/mermaid-js/examples)@1.2.0 ##### Minor Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add new TreeView diagram #### mermaid\@11.14.0 ##### Minor Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - Add Wardley Maps diagram type (beta) Adds Wardley Maps as a new diagram type to Mermaid (available as `wardley-beta`). Wardley Maps are visual representations of business strategy that help map value chains and component evolution. Features: - Component positioning with \[visibility, evolution] coordinates (OWM format) - Anchors for users/customers - Multiple link types: dependencies, flows, labeled links - Evolution arrows and trend indicators - Custom evolution stages with optional dual labels - Custom stage widths using [@boundary](https://github.com/boundary) notation - Pipeline components with visibility inheritance - Annotations, notes, and visual elements - Source strategy markers: build, buy, outsource, market - Inertia indicators - Theme integration Implementation includes parser, D3.js renderer, unit tests, E2E tests, and comprehensive documentation. - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for state diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look support for sequence diagrams with drop shadows, and enhanced styling - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add `randomize` config option for architecture diagrams, defaulting to `false` for deterministic layout - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: Add option to change timeline direction - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - Fix duplicate SVG element IDs when rendering multiple diagrams on the same page. Internal element IDs (nodes, edges, markers, clusters) are now prefixed with the diagram's SVG element ID across all diagram types. Custom CSS or JS using exact ID selectors like `#arrowhead` should use attribute-ending selectors like `[id$="-arrowhead"]` instead. - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for ER diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for requirement diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add theme support for data label colour in xy chart - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for mindmap diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look for mermaid flowchart diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look and themes for class diagram - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add showDataLabelOutsideBar option for xy chart - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look support for timeline diagram with drop shadows, additoinal redux themes and enhanced styling - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look and themes for gitGraph diagram - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add new TreeView diagram ##### Patch Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add link to ishikawa diagram on mermaid.js.org - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - docs: document valid duration token formats in gantt.md - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: ER diagram parsing when using "1" as entity identifier on right side The parser was incorrectly tokenizing the second "1" in patterns like `a many to 1 1:` because the lookahead rule only checked for alphabetic characters after whitespace, not digits. Added a new lookahead pattern `"1"(?=\s+[0-9])` to correctly identify the cardinality alias before a numeric entity name. Fixes [#7472](https://github.com/mermaid-js/mermaid/issues/7472) - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: scope cytoscape label style mapping to edges with labels to prevent console warnings - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: support inline annotation syntax in class diagrams (class Shape <<interface>>) - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Align branch label background with text for multi-line labels in LR GitGraph layout - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: preserve cause hierarchy when ishikawa effect is indented more than causes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - refactor: remove unused createGraphWithElements function and add regression test for open edge arrowheads - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Prevent long pie chart titles from being clipped by expanding the viewBox - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: prevent sequence diagram hang when "as" is used without a trailing space in participant declarations - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: warn when `style` statement targets a non-existent node in flowcharts - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: group state diagram SVG children under single root <g> element - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Allow :::className syntax inside composite state blocks - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) Thanks [@aloisklink](https://github.com/aloisklink), [@BambioGaming](https://github.com/BambioGaming)! - fix: prevent escaping `<` and `&` when `htmlLabels: false` - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: treemap title and labels use theme-aware colors for dark backgrounds - Updated dependencies \[[`efe218a`](`efe218a47f`)]: - [@mermaid-js/parser](https://github.com/mermaid-js/parser)@1.1.0 #### [@mermaid-js/parser](https://github.com/mermaid-js/parser)@1.1.0 ##### Minor Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add new TreeView diagram #### [@mermaid-js/tiny](https://github.com/mermaid-js/tiny)@11.14.0 ##### Minor Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - Add Wardley Maps diagram type (beta) Adds Wardley Maps as a new diagram type to Mermaid (available as `wardley-beta`). Wardley Maps are visual representations of business strategy that help map value chains and component evolution. Features: - Component positioning with \[visibility, evolution] coordinates (OWM format) - Anchors for users/customers - Multiple link types: dependencies, flows, labeled links - Evolution arrows and trend indicators - Custom evolution stages with optional dual labels - Custom stage widths using [@boundary](https://github.com/boundary) notation - Pipeline components with visibility inheritance - Annotations, notes, and visual elements - Source strategy markers: build, buy, outsource, market - Inertia indicators - Theme integration Implementation includes parser, D3.js renderer, unit tests, E2E tests, and comprehensive documentation. - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for state diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look support for sequence diagrams with drop shadows, and enhanced styling - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add `randomize` config option for architecture diagrams, defaulting to `false` for deterministic layout - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: Add option to change timeline direction - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - Fix duplicate SVG element IDs when rendering multiple diagrams on the same page. Internal element IDs (nodes, edges, markers, clusters) are now prefixed with the diagram's SVG element ID across all diagram types. Custom CSS or JS using exact ID selectors like `#arrowhead` should use attribute-ending selectors like `[id$="-arrowhead"]` instead. - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for ER diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for requirement diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add theme support for data label colour in xy chart - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look styling for mindmap diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look for mermaid flowchart diagrams - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look and themes for class diagram - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: add showDataLabelOutsideBar option for xy chart - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look support for timeline diagram with drop shadows, additoinal redux themes and enhanced styling - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - feat: implement neo look and themes for gitGraph diagram - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add new TreeView diagram ##### Patch Changes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - add link to ishikawa diagram on mermaid.js.org - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - docs: document valid duration token formats in gantt.md - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: ER diagram parsing when using "1" as entity identifier on right side The parser was incorrectly tokenizing the second "1" in patterns like `a many to 1 1:` because the lookahead rule only checked for alphabetic characters after whitespace, not digits. Added a new lookahead pattern `"1"(?=\s+[0-9])` to correctly identify the cardinality alias before a numeric entity name. Fixes [#7472](https://github.com/mermaid-js/mermaid/issues/7472) - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: scope cytoscape label style mapping to edges with labels to prevent console warnings - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: support inline annotation syntax in class diagrams (class Shape <<interface>>) - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Align branch label background with text for multi-line labels in LR GitGraph layout - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: preserve cause hierarchy when ishikawa effect is indented more than causes - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - refactor: remove unused createGraphWithElements function and add regression test for open edge arrowheads - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Prevent long pie chart titles from being clipped by expanding the viewBox - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: prevent sequence diagram hang when "as" is used without a trailing space in participant declarations - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: warn when `style` statement targets a non-existent node in flowcharts - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: group state diagram SVG children under single root <g> element - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: Allow :::className syntax inside composite state blocks - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) Thanks [@aloisklink](https://github.com/aloisklink), [@BambioGaming](https://github.com/BambioGaming)! - fix: prevent escaping `<` and `&` when `htmlLabels: false` - [#7526](https://github.com/mermaid-js/mermaid/pull/7526) [`efe218a`](`efe218a47f`) - fix: treemap title and labels use theme-aware colors for dark backgrounds - Updated dependencies \[[`efe218a`](`efe218a47f`)]: - [@mermaid-js/parser](https://github.com/mermaid-js/parser)@1.1.0 </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11990 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-05 02:15:52 +02:00
grangelouis	80d840c128	fix: missing syntax dialog rounded corners (#11945 ) Fixes #11299 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11945 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: grangelouis <grangelouis@noreply.codeberg.org> Co-committed-by: grangelouis <grangelouis@noreply.codeberg.org>	2026-04-04 21:58:16 +02:00
Andreas Ahlenstorf	df86b495dc	feat: support `timezone` in scheduled workflows (#11851 ) GitHub recently added the ability to [specify a time zone for scheduled workflows](https://docs.github.com/en/actions/reference/workflows-and-actions/workflow-syntax#onschedule), thereby making it possible to run scheduled workflows at a certain local time, no matter whether daylight saving time (DST) is currently active or not. Example copied from GitHub's documentation: ```yaml on: schedule: - cron: '30 5 * * 1-5' timezone: "America/New_York" ``` The workflow would run at 05:30 each morning in the America/New_York timezone every Monday through Friday. `timezone` accepts IANA time zone names. If `timezone` is absent, `Etc/UTC` is used. GitHub runs workflows that were scheduled during DST jumps forward, for example, between 2 o'clock and 3 o'clock, directly after the clock jumped forward. In this case, that would be 3 o'clock. Forgejo already supports time zones by prepending cron schedules with `TZ=<zone-id>` or `CRON_TZ=<zone-id>`: ```yaml on: schedule: - cron: 'CRON_TZ=America/New_York 30 5 * * 1-5' ``` However, that capability is not documented. Workflows that are scheduled to run during DST changes are skipped when the clock jumps forward and run twice when it jumps backward. This two-part PR adds support for `timezone` to improve compatibility with GitHub. `TZ` and `CRON_TZ` continue working. When both `timezone` and `TZ` or `CRON_TZ` are present, `timezone` takes precedence. When neither `timezone` nor `TZ` nor `CRON_TZ` are present, `Etc/UTC` is used as before. Because `TZ` and `CRON_TZ` were already supported by Forgejo before GitHub introduced `timezone`, `timezone` behaves during DST changes as previous versions of Forgejo, thereby deviating from GitHub. That means that workflows that are scheduled to run during DST changes are skipped when the clock jumps forward. And they run twice when it jumps backwards. However, it is generally recommended not to schedule workflows during the time of day when DST changes occur. This part of the PR integrates the [workflow validation and parsing of the `timezone` field](https://code.forgejo.org/forgejo/runner/pulls/1454) supplied by Forgejo Runner. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1853 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11851): <!--number 11851 --><!--line 0 --><!--description c3VwcG9ydCBgdGltZXpvbmVgIGluIHNjaGVkdWxlZCB3b3JrZmxvd3M=-->support `timezone` in scheduled workflows<!--description--> <!--end release-notes-assistant--> Co-authored-by: Renovate Bot <bot@kriese.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11851 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-04 18:23:06 +02:00
limiting-factor	2d2029c598	tests: make buffer log writer thread safe (#11962 ) When two goroutines attempt to access the content of the buffer log writer, they must be made thread safe with a write mutex. The buffer log writer is only used in testing. ## Checklist ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11962 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-04-04 16:29:14 +02:00
Mathieu Fenniak	6a99b6b0c1	fix: store pull mirror creds encrypted with keying (#11909 ) Fixes #9629. New pull mirrors have credentials stored encrypted in the database, the same as push mirrors, rather than in the repository's `config` file. `git fetch` on the pull mirror is updated to use the credential store. Pull mirrors will have their credentials migrated to the encrypted storage in the database as they're synced or otherwise accessed via the web UI. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11909 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-04 13:53:22 +02:00
Renovate Bot	e4bd84b574	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.9 (forgejo) (#11980 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.8` → `v3.1.9` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.9`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.8...v3.1.9) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.8...v3.1.9) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11980 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-04 04:32:32 +02:00
Renovate Bot	267f90c97a	Update module code.forgejo.org/go-chi/session to v1.0.4 (forgejo) (#11976 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/go-chi/session](https://code.forgejo.org/go-chi/session) \| `v1.0.3` → `v1.0.4` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fgo-chi%2fsession/v1.0.4?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fgo-chi%2fsession/v1.0.3/v1.0.4?slim=true) \| --- ### Release Notes <details> <summary>go-chi/session (code.forgejo.org/go-chi/session)</summary> ### [`v1.0.4`](https://code.forgejo.org/go-chi/session/compare/v1.0.3...v1.0.4) [Compare Source](https://code.forgejo.org/go-chi/session/compare/v1.0.3...v1.0.4) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11976 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-04 03:54:32 +02:00
Renovate Bot	2027ccd994	Update module github.com/mattn/go-sqlite3 to v1.14.40 (forgejo) (#11977 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.38` → `v1.14.40` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.40?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.38/v1.14.40?slim=true) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.40`](https://github.com/mattn/go-sqlite3/compare/v1.14.39...v1.14.40) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.39...v1.14.40) ### [`v1.14.39`](https://github.com/mattn/go-sqlite3/compare/v1.14.38...v1.14.39) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.38...v1.14.39) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11977 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-04 02:41:07 +02:00
Henry Catalini Smith	1d0503d6b5	Add aria-label="Copy" to copy button (#11895 ) This copy button on the pull request page lacks an accessible name. You can hear the screen reader announce it as just "button" in the screen recording `button.mp4`, and then hear the amended version in `copy.mp4` where it's announced as "copy, button". The most relevant WCAG success criteria here is [1.1.1 Non-text content](https://www.w3.org/WAI/WCAG21/Understanding/non-text-content.html). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11895 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-04-03 16:57:53 +02:00
Andreas Ahlenstorf	ce27a5993c	fix: superfluous increment of ActionTask attempt breaks job view (#11956 ) https://codeberg.org/forgejo/forgejo/pulls/11750 missed a place where the attempt number is incremented independently. This caused the job view to break when running a reusable workflow with workflow expansion. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11956 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-04-03 16:05:09 +02:00
0ko	fd489b6963	chore(i18n): migrate strings to json, unhardcode one, improve plurals (#11879 ) * migrate 17 strings related to repository migrations from INI to JSON * changed templates to get rid of unhelpful prefix `repo` * migrate 4 strings related to counters * also changed templates to get rid of `repo`, but it had to be done anyway to use `TrPluralString` * Unhardcode the header on migraiton type selector page, which I haven't noticed in https://codeberg.org/forgejo/forgejo/pulls/6795 or in two other PRs I did on this template since Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11879 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2026-04-03 14:11:48 +02:00
0ko	3291f06749	merge commit: i18n: translations update from Codeberg Translate (#11810 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11810 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-04-03 13:23:56 +02:00
Codeberg Translate	728936ccd9	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: AndreiSerban <andreiserban@noreply.codeberg.org> Co-authored-by: AshyPinguin <ashypinguin@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Yago Raña Gayoso <yago.rana.gayoso@gmail.com> Co-authored-by: bittin <bittin@noreply.codeberg.org> Co-authored-by: dyniec <dyniec@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: krisfremen <krisfremen@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: main_void <main_void@noreply.codeberg.org> Co-authored-by: markinosags <markinosags@noreply.codeberg.org> Co-authored-by: sindrenm <sindrenm@noreply.codeberg.org> Co-authored-by: vitoravelino <vitoravelino@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/mk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-04-03 10:28:39 +00:00
famfo	2fc3144de4	chore: update github.com/go-ap/activitypub to 902f6cf (#11301 ) Picks the update commit from https://codeberg.org/forgejo/forgejo/pulls/11200 and fixes the new incompatibilities. I ran full end-to-end tests against Forgejo and basic end-to-end tests against GoToSocial which appear to be working. Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11301 Reviewed-by: elle <0xllx0@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-04-02 23:57:13 +02:00
Renovate Bot	4121d5ec85	Update linters (forgejo) (#11938 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-02 20:52:09 +02:00
Eloy	6e8939952c	enh: add suggestion to document reason for repository archival (#11375 ) Fixes #11370 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11375 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Eloy <degeneloy@gmail.com> Co-committed-by: Eloy <degeneloy@gmail.com>	2026-04-02 03:46:55 +02:00
Renovate Bot	c01b13d119	Update dependency @codemirror/view to v6.41.0 (forgejo) (#11939 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11939 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-02 03:45:37 +02:00
Renovate Bot	8fb287f9d8	Lock file maintenance (forgejo) (#11784 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11784 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-02 03:39:28 +02:00
Renovate Bot	f37f794670	Update dependency swagger-ui-dist to v5.32.1 (forgejo) (#11766 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11766 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-02 03:39:15 +02:00
Gusted	77dbc35138	chore: add modernizer linter (#11936 ) - Go has a suite of small linters that helps with modernizing Go code by using newer functions and catching small mistakes, https://pkg.go.dev/golang.org/x/tools/go/analysis/passes/modernize. - Enable this linter in golangci-lint. - There's also [`go fix`](https://go.dev/blog/gofix), which is not yet released as a linter in golangci-lint: https://github.com/golangci/golangci-lint/pull/6385 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11936 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-04-02 03:29:37 +02:00
Renovate Bot	d728fddec5	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.11.4 (forgejo) (#11940 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 23:37:00 +02:00
Renovate Bot	6fa7bf933a	Update module github.com/inbucket/html2text to v1 (forgejo) (#11946 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11946 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 22:21:33 +02:00
Renovate Bot	b09cf32cb9	Update vitest monorepo to v4.1.2 (forgejo) (#11942 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 22:04:54 +02:00
Renovate Bot	5add2e0dee	Update dependency webpack-cli to v7 (forgejo) (#11944 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11944 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 20:43:17 +02:00
Renovate Bot	2469344824	Update module github.com/PuerkitoBio/goquery to v1.12.0 (forgejo) (#11941 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 20:16:03 +02:00
Mathieu Fenniak	8f5dd81537	fix: allow repository deletion when referenced by a repo-specific access token (#11927 ) Fixes #11919. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - Will be a fix before the feature is released, therefore not "visible to users". Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11927 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-04-01 16:05:20 +02:00
Renovate Bot	d23d895220	Update dependency @playwright/test to v1.58.2 (forgejo) (#11928 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 10:17:54 +02:00
Renovate Bot	645b29395c	Update dependency markdownlint-cli to v0.48.0 (forgejo) (#11929 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 09:30:22 +02:00
Renovate Bot	46d2f15c94	Update linters (forgejo) (#11925 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 09:04:13 +02:00
Renovate Bot	26da41171a	Update dependency @vitejs/plugin-vue to v6.0.5 (forgejo) (#11923 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 07:58:08 +02:00
Renovate Bot	8d49d59877	Update dependency vite-string-plugin to v2.0.2 (forgejo) (#11924 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 06:21:07 +02:00
Antonin Delpeuch	3763a88c67	fix: allow modals to be submitted multiple times (#11843 ) Fixes #11842. The `once: true` was likely added to prevent multiple concurrent submissions of the same form. This could still be worth preventing, but I suspect it would require wrapping the supplied `onApprove` callback with the corresponding logic, implemented manually, as I am not aware of any native API to prevent concurrent executions of callbacks. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11843 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2026-04-01 04:23:13 +02:00
Renovate Bot	9e3c3e5d53	Update module github.com/yuin/goldmark to v1.8.2 (forgejo) (#11808 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11808 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 03:35:45 +02:00
Renovate Bot	5803c596b6	Update dependency katex to v0.16.44 (forgejo) (#11901 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11901 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 03:19:27 +02:00
Renovate Bot	34937d9305	Update github.com/google/pprof digest to a15ffb7 (forgejo) (#11920 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11920 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 02:13:47 +02:00
Renovate Bot	7a34a7fc6d	Update dependency @axe-core/playwright to v4.11.1 (forgejo) (#11921 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-04-01 01:57:20 +02:00
Henry Catalini Smith	bfebd42a3d	Fix @mention combobox semantics for screen reader accessibility (#11860 ) Fixes https://codeberg.org/forgejo/forgejo/issues/7668. This was simpler to fix than my theory I posted on https://codeberg.org/forgejo/forgejo/issues/7668 about needing to patch the upstream package. When testing in Firefox with the developer console open and warnings enabled, I noticed a `Empty string passed to getElementById()` warning coming from `@github/combobox-nav` while attempting to manage the `aria-activedescendant` attribute. Then I found this in the [README for that project](https://github.com/github/combobox-nav). > Markup requirements: > - Each option needs to have role="option" and a unique id This was easy to miss, as we're using `@github/text-expander-element` and the combobox-nav package is one of _its_ dependencies. Without a unique ID on each dropdown menu item, `@github/text-expander-element` is unable to set an appropriate `aria-activedescendant` attribute on the textarea. Once that's in place, the screen reader announcements come to life beautifully. While working on it I noticed the emoji picker combobox was affected by the same problem and patched that as well. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11860 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-04-01 00:14:47 +02:00
Henry Catalini Smith	ba6794348e	Make label dropdown menu items with .tw-hidden unselectable (#11858 ) Fixes https://codeberg.org/forgejo/forgejo/issues/9894. The dropdown menu items are being hidden with `.tw-hidden`. The Fomentic dropdown makes items with `.disabled` and `.filtered` unselectable by default but can be [easily configured](https://fomantic-ui.com/modules/dropdown.html#/settings) to broaden this selector. In the before & after GIFs attached, there is an archived label between "duplicate" and "help wanted". In the before GIF, focus disappears momentarily between the two, which is when the hidden, archived label has been programmatically focused by Fomentic. In the after GIF, focus hops instantaneously between the two selectable labels because of the broader `unselectable` selector. ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https - [ ] - [ ] ://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11858 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-03-31 23:22:46 +02:00
Henry Catalini Smith	6726b6e3e9	Add aria-labels to ensure watch and star buttons always have a text label (#11878 ) Fixes https://codeberg.org/forgejo/forgejo/issues/6621. The attached screen recording `before.mp4` demos the problem as described by https://codeberg.org/forgejo/forgejo/issues/6621. And `after.mp4` is the fixed version. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11878 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-03-31 23:22:20 +02:00
Henry Catalini Smith	676940a853	Add aria-current="page" to active navbar items (#11887 ) By setting `aria-current="page"` on the active navbar item we make the information about which one corresponds to the current page available in a non-visual way. Both the attached screen recordings were produced on http://localhost:3000/pulls, so the "Pull requests" link is the active one. In `before.mp4` all the links are announced identically, and in `after.mp4` the "Pull requests" link is announced like this. > current page, visited, link, Pull requests ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11887 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-03-31 23:02:10 +02:00
doasu	a9bd068d00	fix: URL-encode login provider name in the `href` attribute (#10301 ) The authentication provider's name (`$provider.DisplayName`) is not URL-encoded, so any illegal characters (e.g., '/') will be put in the link's href attribute verbatim. For example, if the provider's name is `foo/bar` (valid name), the href attribute will point to `/user/oauth2/foo/bar` instead of `/user/oauth2/foo%2Fbar`, resulting in a "404 Not found" error. This patch fixes this behaviour by URL-encoding the provider's DisplayName before appending it to the href attribute. Signed-off-by: doasu <me@doasu.dev> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10301 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: doasu <me@doasu.dev> Co-committed-by: doasu <me@doasu.dev>	2026-03-31 21:51:57 +02:00
Renovate Bot	939a3ada66	Update dependency vue to v3.5.31 (forgejo) (#11871 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-31 05:02:59 +02:00
Mathieu Fenniak	2176403a8d	fix: unique key violation in first-time concurrent debian package uploads to a user (#11881 ) Fixes an intermittent test failure in `TestPackageDebianConcurrent`, [example](https://codeberg.org/forgejo/forgejo/actions/runs/148747/jobs/9/attempt/1#jobstep-5-981), introduced by testing in #11776. This one is caused by duplicate writes to `user_setting` to store a GPG key (questionable place for that...). Confirmed reproduced in local testing and test now passes: ``` === TestPackageDebianConcurrent (tests/test_utils.go:344) === TestPackageDebianConcurrent/Concurrent_Upload (tests/integration/api_packages_debian_test.go:334) ... other duplicate key violations ... // TestPackageDebianConcurrent/Concurrent_Upload "2026/03/29 10:31:57 ...dels/user/setting.go:210:func1() [E] [Error SQL Query] INSERT INTO \"gtestschema\".\"user_setting\" (\"user_id\",\"setting_key\",\"setting_value\") VALUES ($1,$2,$3) RETURNING \"id\" [2 debian.key.private -----BEGIN PGP PRIVATE KEY BLOCK-----\n\n...snip...\n-----END PGP PRIVATE KEY BLOCK-----] - ERROR: duplicate key value violates unique constraint \"UQE_user_setting_key_userid\" (SQLSTATE 23505)", PASS ``` No additional test required as it is already tripping a test failure. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. (already present and failing) - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11881 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-31 03:54:28 +02:00
Mathieu Fenniak	8387974e2e	ci: prevent usage of live application models & services in migrations (#11872 ) Prevent access to "current" application models and services from migrations via `golangci` config: eg: ``` models/forgejo_migrations/v14a_ap-change-fedi-handle-structure.go:18:2: import 'forgejo.org/models/user' is not allowed from list 'migration-isolation': Migrations must not import application models. Application models will be the most recent schema for Forgejo, while migrations will be operating against the database schema that existed when they were authored. (depguard) user_model "forgejo.org/models/user" ^ models/forgejo_migrations/v14a_ap-change-fedi-handle-structure.go:21:2: import 'forgejo.org/services/user' is not allowed from list 'migration-isolation': Migrations must not import application services. Application services will reference application models which will use the most recent schema for Forgejo, while migrations will be operating against the database schema that existed when they were authored. (depguard) user_service "forgejo.org/services/user" ``` Fixes an existing migration issue where it isn't possible to add a new column to the `User` table ([test errors that occur](https://codeberg.org/forgejo/forgejo/actions/runs/148633/jobs/10/attempt/1#jobstep-5-323)), but also guarantees that future migrations don't stumble into the same issue by inadvertently referencing live application code from historical migrations. Originally identified and draft fix by @codecat w/ proposed fix in #11870. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Co-authored-by: Melissa Geels <melissa@nimble.tools> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11872 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-31 02:56:43 +02:00
Antonin Delpeuch	5c13563682	feat: "Add member" button in org members list (#11848 ) Fixes #1529. This adds an "Add member" button to the list of members of an organization, offering a more intuitive way to add a user to an organization (instead of going through the list of teams). This follows the design proposed in #1529. This PR can already be reviewed as such, but I plan to work on follow-up improvements: - adding a confirmation dialog when adding the new member to the "Owners" team, since they get absolute rights on the org - adding a text input to filter the list of teams, making it easier to select the desired teams when there are many of them - potentially, improving the team creation link so that it brings the user back to the modal dialog once the team is created (but I'm not sure there's a ton of value behind this added complexity, since currently, creating a team will lead the user to the team page, which is a good place to add the member to the team) This new way of adding members does not support issuing email invites, since we decided in #9884 that the invite feature hasn't got good enough of a UX to advertise it yet. Following [this discussion](https://codeberg.org/forgejo/discussions/issues/441), I am planning to work on enabling invites everywhere (potentially even making it the default). ## Checklist ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation I plan to update https://docs.codeberg.org/collaborating/create-organization/#people once we are ready to take final screenshots of the feature. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. ### Screenshots <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11848): <!--number 11848 --><!--line 0 --><!--description IkFkZCBtZW1iZXIiIGJ1dHRvbiBpbiBvcmcgbWVtYmVycyBsaXN0-->"Add member" button in org members list<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11848 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2026-03-31 02:56:12 +02:00
Renovate Bot	7886e74b25	Update github.com/go-git/go-git/v5 (indirect) to v5.17.1 [SECURITY] (forgejo) (#11897 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) \| `v5.17.0` → `v5.17.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgo-git%2fgo-git%2fv5/v5.17.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgo-git%2fgo-git%2fv5/v5.17.0/v5.17.1?slim=true) \| --- ### go-git missing validation decoding Index v4 files leads to panic [CVE-2026-33762](https://nvd.nist.gov/vuln/detail/CVE-2026-33762) / [GHSA-gm2x-2g9h-ccm8](https://github.com/advisories/GHSA-gm2x-2g9h-ccm8) <details> <summary>More information</summary> #### Details ##### Impact `go-git`’s index decoder for format version 4 fails to validate the path name prefix length before applying it to the previously decoded path name. A maliciously crafted index file can trigger an out-of-bounds slice operation, resulting in a runtime panic during normal index parsing. This issue only affects Git index format version 4. Earlier formats (`go-git` supports only `v2` and `v3`) are not vulnerable to this issue. An attacker able to supply a crafted `.git/index` file can cause applications using go-git to panic while reading the index. If the application does not recover from panics, this results in process termination, leading to a denial-of-service (DoS) condition. Exploitation requires the ability to modify or inject a Git index file within the local repository in disk. This typically implies write access to the `.git` directory. ##### Patches Users should upgrade to `v5.17.1`, or the latest `v6` [pseudo-version](https://go.dev/ref/mod#pseudo-versions), in order to mitigate this vulnerability. ##### Credit go-git maintainers thank @kq5y for finding and reporting this issue privately to the `go-git` project. #### Severity - CVSS Score: 2.8 / 10 (Low) - Vector String: `CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L` #### References - [https://github.com/go-git/go-git/security/advisories/GHSA-gm2x-2g9h-ccm8](https://github.com/go-git/go-git/security/advisories/GHSA-gm2x-2g9h-ccm8) - [https://github.com/go-git/go-git](https://github.com/go-git/go-git) This data is provided by [OSV](https://osv.dev/vulnerability/GHSA-gm2x-2g9h-ccm8) and the [GitHub Advisory Database](https://github.com/github/advisory-database) ([CC-BY 4.0](https://github.com/github/advisory-database/blob/main/LICENSE.md)). </details> --- ### go-git: Maliciously crafted idx file can cause asymmetric memory consumption [CVE-2026-34165](https://nvd.nist.gov/vuln/detail/CVE-2026-34165) / [GHSA-jhf3-xxhw-2wpp](https://github.com/advisories/GHSA-jhf3-xxhw-2wpp) <details> <summary>More information</summary> #### Details ##### Impact A vulnerability has been identified in which a maliciously crafted `.idx` file can cause asymmetric memory consumption, potentially exhausting available memory and resulting in a Denial of Service (DoS) condition. Exploitation requires write access to the local repository's `.git` directory, it order to create or alter existing `.idx` files. ##### Patches Users should upgrade to `v5.17.1`, or the latest `v6` [pseudo-version](https://go.dev/ref/mod#pseudo-versions), in order to mitigate this vulnerability. ##### Credit The go-git maintainers thank @kq5y for finding and reporting this issue privately to the `go-git` project. #### Severity - CVSS Score: 5.0 / 10 (Medium) - Vector String: `CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H` #### References - [https://github.com/go-git/go-git/security/advisories/GHSA-jhf3-xxhw-2wpp](https://github.com/go-git/go-git/security/advisories/GHSA-jhf3-xxhw-2wpp) - [https://github.com/go-git/go-git](https://github.com/go-git/go-git) - [https://github.com/go-git/go-git/releases/tag/v5.17.1](https://github.com/go-git/go-git/releases/tag/v5.17.1) This data is provided by [OSV](https://osv.dev/vulnerability/GHSA-jhf3-xxhw-2wpp) and the [GitHub Advisory Database](https://github.com/github/advisory-database) ([CC-BY 4.0](https://github.com/github/advisory-database/blob/main/LICENSE.md)). </details> --- ### Release Notes <details> <summary>go-git/go-git (github.com/go-git/go-git/v5)</summary> ### [`v5.17.1`](https://github.com/go-git/go-git/releases/tag/v5.17.1) [Compare Source](https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1) #### What's Changed - build: Update module github.com/cloudflare/circl to v1.6.3 \[SECURITY] (releases/v5.x) by [@go-git-renovate](https://github.com/go-git-renovate)\[bot] in [#1930](https://github.com/go-git/go-git/pull/1930) - \[v5] plumbing: format/index, Improve v4 entry name validation by [@pjbgf](https://github.com/pjbgf) in [#1935](https://github.com/go-git/go-git/pull/1935) - \[v5] plumbing: format/idxfile, Fix version and fanout checks by [@pjbgf](https://github.com/pjbgf) in [#1937](https://github.com/go-git/go-git/pull/1937) Full Changelog: <https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1> </details> --- ### Configuration 📅 Schedule: Branch creation - "" (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11897 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-31 02:49:54 +02:00
Renovate Bot	3ec8e96646	Update module github.com/mattn/go-sqlite3 to v1.14.38 (forgejo) (#11902 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.37` → `v1.14.38` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.38?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.37/v1.14.38?slim=true) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.38`](https://github.com/mattn/go-sqlite3/compare/v1.14.37...v1.14.38) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.37...v1.14.38) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuOTkuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11902 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-31 02:42:52 +02:00
Renovate Bot	eaceb845ea	Update renovate Docker tag to v43.99.1 (forgejo) (#11889 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 04:17:07 +02:00
Renovate Bot	cacbe76b13	Update https://data.forgejo.org/actions/git-backporting action to v4.9.1 (forgejo) (#11767 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11767 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 01:57:11 +02:00
Renovate Bot	a6ee3e61cc	Update module github.com/urfave/cli/v3 to v3.8.0 (forgejo) (#11834 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11834 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 01:52:22 +02:00
Renovate Bot	edc8e19ab0	Update CodeMirror (forgejo) (#11854 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11854 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 01:11:53 +02:00
Renovate Bot	7d7e75c43f	Update dependency katex to v0.16.43 (forgejo) (#11782 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11782 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 01:08:14 +02:00
Renovate Bot	5afb9467d5	Update dependency happy-dom to v20.8.9 [SECURITY] (forgejo) (#11883 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-30 01:02:38 +02:00
Andreas Ahlenstorf	0a25c2a7fd	feat: use `--token-url` in runner setup instructions (#11874 ) Use `--token-url` instead of `--token` in the runner setup instructions. `--token-url` is more secure. It was also decided [not to implement `--token`](https://code.forgejo.org/forgejo/runner/pulls/1457). The new instructions look as follows: ``` $ echo -n "a3bac733-079f-4917-ae9f-4acb99f1827b" > /path/to/runner-token $ forgejo-runner daemon \ --url http://192.168.178.62:3000/ \ --uuid 5982831f-8ee7-42c7-abcc-49c7d6dba586 \ --token-url file:///path/to/runner-token \ --label docker:docker://node:lts ``` `--label` is also new because Forgejo Runner is inoperable when neither a runner configuration nor `--label` are present. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11874 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-29 18:04:24 +02:00
Renovate Bot	b68caa311f	Update module github.com/klauspost/compress to v1.18.5 (forgejo) (#11764 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11764 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-27 06:51:45 +01:00
Renovate Bot	326809a133	Update dependency happy-dom to v20.8.8 [SECURITY] (forgejo) (#11836 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-27 06:50:09 +01:00
Mathieu Fenniak	e823e8cd69	fix: duplicate key violates unique constraint in concurrent debian package uploads (#11776 ) Fixes #11438. Whenever a "unique constraint violation" error is encountered by package mutation, detect if a `xorm.ErrUniqueConstraintViolation` error occurs. If it does, retry the entire transaction. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11776 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-26 21:50:25 +01:00
Mathieu Fenniak	bdb87ac3d3	chore: remove duplicate release notes from Jan 8 security release (#11791 ) As the security patches in #10719 were backported to [v11](https://codeberg.org/forgejo/forgejo/pulls/10722), [v13](https://codeberg.org/forgejo/forgejo/pulls/10721), and [v14](https://codeberg.org/forgejo/forgejo/pulls/10720), they shouldn't be present in the [v15 release notes](https://codeberg.org/forgejo/forgejo/milestone/36366) as "Security bug fixes", but they presently are: ![image](/attachments/9b0ee1ce-5fcd-4d82-a705-a8f9014c2215) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11791 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-26 19:30:34 +01:00
Mathieu Fenniak	9c41a5f717	fix: out of synchronization error after interrupting a PR merge by user-agent disconnect (#11821 ) If the HTTP request to `/user/repo/pulls/N/merge` is cancelled by the user agent, don't stop work once we've passed validation and started to merge the PR. Go will automatically cancel the context if the user-agent disconnects, but that can leave Forgejo in an inconsistent state -- the `git` command can be cancelled at an arbitrary location, the `branch` database table update may not be completed, timers may not be stopped, cross-references may not be populated, etc. Added test `TestMergeHTTPRequestCancellation` stress-tests the fix by cancelling merge requests, and then verifying that the in-database repository state and in-repository database state are consistent. I've verified that this test fails if the fix is removed -- the in-database commit and commit messages don't match the repository in all PRs. This is a problem that likely affects other Forgejo endpoints. For example, even the PR merge API would be impacted. But this will be one of the most common real-world places for it to occur, so my thought is we'll see how well this fix works and what (if any) side-effects it has. We can apply a similar pattern in other areas if they are identified as problems. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11821 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-26 17:11:10 +01:00
Renovate Bot	7c7c6ba3b7	Update module golang.org/x/image to v0.38.0 [SECURITY] (forgejo) (#11818 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [golang.org/x/image](https://pkg.go.dev/golang.org/x/image) \| [`v0.37.0` → `v0.38.0`](https://cs.opensource.google/go/x/image/+/refs/tags/v0.37.0...refs/tags/v0.38.0) \| ![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fimage/v0.38.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fimage/v0.37.0/v0.38.0?slim=true) \| --- ### OOM from malicious IFD offset in golang.org/x/image/tiff [CVE-2026-33809](https://nvd.nist.gov/vuln/detail/CVE-2026-33809) / [GO-2026-4815](https://pkg.go.dev/vuln/GO-2026-4815) <details> <summary>More information</summary> #### Details A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error. #### Severity Unknown #### References - [https://go.dev/cl/757660](https://go.dev/cl/757660) - [https://go.dev/issue/78267](https://go.dev/issue/78267) This data is provided by [OSV](https://osv.dev/vulnerability/GO-2026-4815) and the [Go Vulnerability Database](https://github.com/golang/vulndb) ([CC-BY 4.0](https://github.com/golang/vulndb#license)). </details> --- ### Configuration 📅 Schedule: Branch creation - "" (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My44Ni4wIiwidXBkYXRlZEluVmVyIjoiNDMuODYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11818 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-26 15:32:35 +01:00
Guangxiong Lin	989804fcc3	fix(api): package name in route not properly unescaped (#11822 ) This pull fixes the issue described in https://codeberg.org/forgejo/forgejo/issues/11427 . The api handler of link/unlink packages use escaped path params to find packages. It causes errors when it comes to npm packages, which contains characters like `@` and `/`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11822 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Guangxiong Lin <hi@gxlin.org> Co-committed-by: Guangxiong Lin <hi@gxlin.org>	2026-03-26 15:30:16 +01:00
Beowulf	8707cc10d0	chore: run renovate on v15 branch (#11823 ) ToDo: After merge schedule a PR to remove v14 when it is EoL Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11823 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-03-26 11:00:37 +01:00
forgejo-release-manager	75906efe93	chore: 15.0.0 is now stable - first commit	2026-03-26 08:40:14 +01:00
forgejo-release-manager	c6a1d64dc1	chore: 15.0.0 is now stable - development tag [skip ci]	2026-03-26 08:40:03 +01:00
Andreas Ahlenstorf	5e1c13f50e	feat: allow runners to request a particular job (#11676 ) Forgejo Runner can optionally ask for a particular job. Example: `forgejo-runner one-job --handle 9d52c7d8-aebe-426b-b015-dd453aacaada`. This change adds the necessary job filtering to Forgejo. See https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/76 for the motivation and design considerations. PR for the extension of the runner protocol: https://code.forgejo.org/forgejo/actions-proto/pulls/18 Related change in Forgejo Runner with usage example: https://code.forgejo.org/forgejo/runner/pulls/1443 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11676): <!--number 11676 --><!--line 0 --><!--description YWxsb3cgcnVubmVycyB0byByZXF1ZXN0IGEgcGFydGljdWxhciBqb2I=-->allow runners to request a particular job<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11676 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-25 17:27:05 +01:00
0ko	30ee20582e	merge commit: i18n: translations update from Codeberg Translate (#11460 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11460 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-25 13:49:12 +01:00
Codeberg Translate	d4fbbf0ac1	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Aindriú Mac Giolla Eoin <aindriu80@noreply.codeberg.org> Co-authored-by: Atalanttore <atalanttore@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Benniest <benniest@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Coral Pink <coral.pink@disr.it> Co-authored-by: EssGeeEich <essgeeeich@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Jean-Christian <jean-christian@noreply.codeberg.org> Co-authored-by: Kenneth Bruen <kenny@kbruen.ro> Co-authored-by: Kyush <kyush@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Martini-141 <martini-141@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: Shihfu Juan <xlion@xlion.tw> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: ThinkRoot <thinkroot@noreply.codeberg.org> Co-authored-by: Ullebe1 <ullebe1@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: adriand <adriand@noreply.codeberg.org> Co-authored-by: alanmena <alanmena@noreply.codeberg.org> Co-authored-by: andreuz <andreu@kindspells.dev> Co-authored-by: anon_ally <anon_ally@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bertof <bertof@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: daltux <daltux@noreply.codeberg.org> Co-authored-by: dsonck <dsonck@noreply.codeberg.org> Co-authored-by: fbausch <fbausch@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: ivanhercaz <ivanhercaz@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: llixon <llixon@noreply.codeberg.org> Co-authored-by: lxcj <lxcj@noreply.codeberg.org> Co-authored-by: makmonty <makmonty@noreply.codeberg.org> Co-authored-by: maydo <maydo@noreply.codeberg.org> Co-authored-by: minh160302 <minh160302@noreply.codeberg.org> Co-authored-by: mou7664 <mou7664@noreply.codeberg.org> Co-authored-by: onkelklo <onkelklo@noreply.codeberg.org> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: pswsm <pswsm@noreply.codeberg.org> Co-authored-by: recreationalprogamer <recreationalprogamer@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: sunwoo1524 <sunwoo1524@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: woolkingx <woolkingx@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: Кнⷫѧⷷ̈зⷮьⷬ Кропоткинъ <kropotkin@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ka/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-03-25 11:27:59 +00:00
Renovate Bot	20f05f748a	Update Node.js to v24.14.1 (forgejo) (#11805 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11805 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-25 06:47:24 +01:00
Renovate Bot	595a4ca303	Update module code.forgejo.org/forgejo/actions-proto to v0.7.0 (forgejo) (#11806 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/actions-proto](https://code.forgejo.org/forgejo/actions-proto) \| `v0.6.0` → `v0.7.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2factions-proto/v0.7.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2factions-proto/v0.6.0/v0.7.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/actions-proto (code.forgejo.org/forgejo/actions-proto)</summary> ### [`v0.7.0`](https://code.forgejo.org/forgejo/actions-proto/releases/tag/v0.7.0) [Compare Source](https://code.forgejo.org/forgejo/actions-proto/compare/v0.6.0...v0.7.0) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/actions-proto--> - features - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/18): <!--number 18 --><!--line 0 --><!--description ZmVhdDogc3VwcG9ydCByZXF1ZXN0aW5nIGEgc3BlY2lmaWMgam9i-->feat: support requesting a specific job<!--description--> - other - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/17): <!--number 17 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuMTEuMw==-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.11.3<!--description--> - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/16): <!--number 16 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuMTEuMg==-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.11.2<!--description--> - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/15): <!--number 15 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuMTAuMA==-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.10.0<!--description--> - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/14): <!--number 14 --><!--line 0 --><!--description Y2k6IHB1Ymxpc2ggcmVsZWFzZXMgKHRha2UyKQ==-->ci: publish releases (take2)<!--description--> - [PR](https://code.forgejo.org/forgejo/actions-proto/pulls/13): <!--number 13 --><!--line 0 --><!--description Y2k6IHB1Ymxpc2ggcmVsZWFzZXM=-->ci: publish releases<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My44Ni4wIiwidXBkYXRlZEluVmVyIjoiNDMuODYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11806 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-25 02:02:33 +01:00
Renovate Bot	3932389bcc	Update module code.forgejo.org/forgejo/runner/v12 to v12.7.3 (forgejo) (#11804 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.7.2` → `v12.7.3` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.3?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.2/v12.7.3?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.7.3`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.7.3) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.7.2...v12.7.3) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1436): <!--number 1436 --><!--line 0 --><!--description ZmVhdDogc2V0IGEgY3VzdG9tIHVzZXItYWdlbnQgaGVhZGVyIGZvciBhbGwgZ1JQQyByZXF1ZXN0cw==-->feat: set a custom user-agent header for all gRPC requests<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1448): <!--number 1448 --><!--line 0 --><!--description Zml4OiByZXBsYWNlIGBsb2dnZXIuUGFuaWNmYCB3aXRoIHBhbmljcyB0aGF0IGhhdmUgYSB1c2VmdWwgZXJyb3IgbWVzc2FnZQ==-->fix: replace `logger.Panicf` with panics that have a useful error message<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1445): <!--number 1445 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMTEuNA==-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.11.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1439): <!--number 1439 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9mb3JnZWpvIERvY2tlciB0YWcgdG8gdjExLjAuMTE=-->Update data.forgejo.org/forgejo/forgejo Docker tag to v11.0.11<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1440): <!--number 1440 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9ydW5uZXIgRG9ja2VyIHRhZyB0byB2MTIuNy4y-->Update data.forgejo.org/forgejo/runner Docker tag to v12.7.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1431): <!--number 1431 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMTEuMw==-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.11.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1434): <!--number 1434 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjcuMg==-->Update dependency forgejo/runner to v12.7.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1435): <!--number 1435 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGVybSB0byB2MC40MS4w-->Update module golang.org/x/term to v0.41.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1433): <!--number 1433 --><!--line 0 --><!--description Rml4IGlzc3VlcyB3aXRoIHRlc3RzIG9uIFdpbmRvd3M=-->Fix issues with tests on Windows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1437): <!--number 1437 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuOA==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.8<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1432): <!--number 1432 --><!--line 0 --><!--description dGVzdDogYWRkIHRlc3QgZm9yIGNvbW1hbmQgb25lLWpvYg==-->test: add test for command one-job<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My44Ni4wIiwidXBkYXRlZEluVmVyIjoiNDMuODYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11804 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-25 01:00:50 +01:00
Mathieu Fenniak	5365720abc	ci: update tests to run debian trixie, remove manual installation from `testing` (#11801 ) Forgejo CI is currently failing due to changes in debian testing packaging that are not compatible with installing `git` from testing onto a bookworm system (https://codeberg.org/forgejo/forgejo/actions/runs/147815/jobs/2/attempt/1#jobstep-3-144). Where `git` was being installed from testing it is replaced with just using trixie's `git 2.47.3`. Where `git-lfs` was being installed, it's been inlined with a simple `update` and `install`. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11801 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-24 21:57:38 +01:00
Mathieu Fenniak	0a8540f52f	chore: link to AI Agreement in PR template (#11789 ) Adds a sentence to the PR template calling attention to the AI Agreement, as noted recently in https://codeberg.org/forgejo/forgejo/pulls/11756#issuecomment-11959350. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11789 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-24 16:33:16 +01:00
Andreas Ahlenstorf	b01278e534	feat: show workflow name for scheduled runs (#11770 ) Previously, a scheduled run would appear like a run triggered by a push. That could be confusing, especially if a scheduled run was unrelated to that particular commit. Now, either the workflow's name (taken from the field `name:`) is displayed or the path to workflow file, matching the behaviour of `workflow_dispatch`. As a side-effect, the description of all run types were improved. They are no longer pieced together from individual translations. `workflow_dispatch` also no longer misattributes commits to the user that triggered the workflow. Resolves https://codeberg.org/forgejo/forgejo/issues/11688. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11770 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-24 01:27:32 +01:00
Renovate Bot	5b83cb5508	Update renovate Docker tag to v43.86.0 (forgejo) (#11781 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-23 17:09:50 +01:00
Mathieu Fenniak	35b872f383	feat(ui): create repo-specific access tokens (#11696 ) Adds a user interface for creating repo-specific access tokens (#11311). When the new option "Specific repositories" is selected, a search option appears. Each repository in the search result has an "Add" button to include it on the access token, and once included, a repository can be removed with the "Remove" button. This is a JS-free form. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/ README.md#end-to-end-tests)). - Technically there are no "JavaScript changes" in this PR, but e2e tests were added for browser interaction testing. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - TODO: planning to create documentation in https://forgejo.org/docs/next/user/token-scope/; there is none for public only tokens but I think this seems like a good place to add both. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11696 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-23 15:29:08 +01:00
Andreas Ahlenstorf	bdbd0b5622	feat: allow renaming and replacing secrets (#11732 ) So far, Forgejo's UI only allowed to create Forgejo Actions secrets. But renaming or replacing their value wasn't possible. With this change, users can do both. The existing secret value is never revealed for security reasons. Additionally, a confusing behaviour is removed. If a user created a new secret whose name matched an existing secret, the existing secret was silently updated. That does no longer happen. The new secret is rejected instead. Resolves https://codeberg.org/forgejo/forgejo/issues/5707. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11732 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-23 03:30:02 +01:00
Renovate Bot	ce1c0dc2cc	Update module github.com/jackc/pgx/v5 to v5.9.1 (forgejo) (#11772 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) \| `v5.8.0` → `v5.9.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fjackc%2fpgx%2fv5/v5.9.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fjackc%2fpgx%2fv5/v5.8.0/v5.9.1?slim=true) \| --- ### Release Notes <details> <summary>jackc/pgx (github.com/jackc/pgx/v5)</summary> ### [`v5.9.1`](https://github.com/jackc/pgx/compare/v5.9.0...v5.9.1) [Compare Source](https://github.com/jackc/pgx/compare/v5.9.0...v5.9.1) ### [`v5.9.0`](https://github.com/jackc/pgx/compare/v5.8.0...v5.9.0) [Compare Source](https://github.com/jackc/pgx/compare/v5.8.0...v5.9.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My43Ni4yIiwidXBkYXRlZEluVmVyIjoiNDMuNzYuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11772 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-22 18:09:42 +01:00
Henry Catalini Smith	181ba05eed	fix(ui): allow label descriptions to wrap in dropdown (#11607 ) https://codeberg.org/forgejo/forgejo/issues/11512 Restoring default whitespace behaviour seems sufficient to resolve this. The `display: block` property is necessary because `<small>` is an inline element and otherwise the `padding-left` only applies to the first line. There's a description in one of the default label packages affected by the issue so I've used that for the before/after screenshots below. \| Before \| After \| \|-\|-\| \| ![Screenshot 2026-03-10 at 07-09-23 #1 - r - henrycatalinismith_test3 - Forgejo Beyond coding. We Forge](/attachments/2c361f11-d71a-464e-8d4a-0aaa97199d39) \| ![Screenshot 2026-03-10 at 07-08-01 #1 - r - henrycatalinismith_test3 - Forgejo Beyond coding. We Forge](/attachments/7a570f99-8687-43d9-8376-98907961bfcf) \| The issue doesn't just affect long descriptions though. In fact even the nice, short defaults are affected. Vision impairment is one of the most common disabilities, and increasing the text size is a typical way in which people adapt their computing environment to accommodate their disability. Even the short default label descriptions are cut off in this use case. \| Before \| After \| \|-\|-\| \| ![Screenshot 2026-03-10 at 06-58-29 New issue - henrycatalinismith_test2 - Forgejo Beyond coding. We Forge](/attachments/741ac088-64ac-49d3-9962-c20905c7750c) \| ![Screenshot 2026-03-10 at 06-59-00 New issue - henrycatalinismith_test2 - Forgejo Beyond coding. We Forge](/attachments/73f1dc1e-242c-4697-8e9d-1288088a2d8c) \| Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11607 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Henry Catalini Smith <henry@catalinismith.se> Co-committed-by: Henry Catalini Smith <henry@catalinismith.se>	2026-03-20 18:55:27 +01:00
Andreas Ahlenstorf	1127aca2d2	fix: set attempt number of action run jobs eagerly (#11750 ) A Forgejo Action job should be uniquely identifiable by its `ID` and `Attempt` number. Each time a particular job is (re-)run, its `Attempt` number is incremented while its `ID` remains static. Unfortunately, `Attempt` is not incremented when the (re-)run is triggered, but right when Forgejo Runner requests the job. That makes identifying a particular run much harder, because the attempt number is changed in the midst of an attempt. Furthermore, it requires taking the job's `Status` into account. This is fixed by setting the correct attempt number right when a (re-)run is triggered. That means that the `Attempt` number remains static for the duration of a single attempt. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11750 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-20 17:23:09 +01:00
Mathieu Fenniak	a27f9a719e	feat: ensure repo-specific access tokens can't perform repo admin operations (#11736 ) Last known backend change for #11311, fixing up some loose ends on the repository APIs related to repo-specific access tokens. Adds automated testing, and aligns permissions where necessary, to ensure that repo-specific access tokens can't change the administrative state of the repositories that they are limited to. Repo-specific access tokens cannot be used to: - convert a mirror into a normal repo, - create a new repository from a template, - transfer ownership of a repository - create a new repository (already protected, but test automation added), - delete a repository (already protected, but test automation added), - editing a repository's settings (already protected, but test automation added). Breaking: The template generation (`POST /repos/{template_owner}/{template_repo}/generate`) and repository deletion (`DELETE /repos/{username}/{reponame}`) APIs have been updated to require the same permission scope as creating a new repository. Either `write:user` or `write:organization` is required, depending on the owner of the repository being created or deleted. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11736 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-20 16:14:36 +01:00
Gusted	dc65408618	Update module code.forgejo.org/go-chi/session to v1.0.3 (forgejo) (#11324 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11324 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-03-20 08:18:51 +01:00
Nils Goroll	6bd8c976b6	chore: polish linter error vs. dead code reporting (#11217 ) This PR improves and clarifies linter error reporting vs. dead code reporting. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11217 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-03-20 07:06:09 +01:00
Renovate Bot	0d879c48ef	Update module github.com/yuin/goldmark to v1.7.17 (forgejo) (#11751 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11751 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-20 07:04:54 +01:00
Gusted	dfbd6e5069	chore: update ingration test No session ID is even send now	2026-03-20 07:00:48 +01:00
hwipl	c317a70b1d	feat: document more status codes in the API (#11717 ) Add more HTTP status codes returned by the API to the API documentation. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11717 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: hwipl <hwipl@noreply.codeberg.org> Co-committed-by: hwipl <hwipl@noreply.codeberg.org>	2026-03-20 02:22:20 +01:00
minh160302	6b2322f110	fix(i18n): hardcoded strings in repository activity graphs (#11735 ) This PR removes hard-coded string from the activities page. Resolves https://codeberg.org/forgejo/forgejo/issues/11680 Co-authored-by: Minh Nguyen <44615298+minh160302@users.noreply.github.com> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11735 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: minh160302 <minh160302@noreply.codeberg.org> Co-committed-by: minh160302 <minh160302@noreply.codeberg.org>	2026-03-19 15:41:33 +01:00
Renovate Bot	04f6645c38	Update Node.js to v24.14.0 (forgejo) (#11745 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11745 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 06:47:57 +01:00
Renovate Bot	47d4595894	Update module golang.org/x/tools/cmd/deadcode to v0.43.0 (forgejo) (#11743 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 05:56:57 +01:00
Beowulf	97a3837215	branding!: make cookies brand independent (#10645 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10645 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-03-19 04:34:27 +01:00
Renovate Bot	d2db9b2691	Update module golang.org/x/oauth2 to v0.36.0 (forgejo) (#11741 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11741 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 04:30:22 +01:00
Renovate Bot	fcf306f6fe	Update module github.com/go-webauthn/webauthn to v0.16.1 (forgejo) (#11674 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11674 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 04:16:19 +01:00
Renovate Bot	de046a9e92	Update module mvdan.cc/xurls/v2 to v2.6.0 (forgejo) (#11744 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11744 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 03:41:21 +01:00
Renovate Bot	a0bbf96ce0	Update module github.com/google/go-licenses to v2 (forgejo) (#11632 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11632 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 02:23:06 +01:00
Renovate Bot	64257d4c95	Update module golang.org/x/net to v0.52.0 (forgejo) (#11740 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11740 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 02:20:44 +01:00
Gusted	ea9f2a236b	fix: only destroy session if exists The virtual session doesn't unconditionally call `Read` of the provider, which means it's possible for a session to not exists (created by the call to `Read`). To avoid that the call to `Destroy` fails with that the session does not exists, do also the exists check for `Destroy`.	2026-03-19 02:18:52 +01:00
forgejo-renovate-action	528877820e	Update dependency clippie to v4.1.10 (forgejo) (#11264 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11264 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: forgejo-renovate-action <forgejo-renovate-action@noreply.codeberg.org> Co-committed-by: forgejo-renovate-action <forgejo-renovate-action@noreply.codeberg.org>	2026-03-19 01:44:35 +01:00
limiting-factor	3c92b40915	fix: comment attachment API is more restrictive than the web UI (#11623 ) The permission check for editing the attachments of a comment (adding or removing them) is changed to be the same as when editing the textual body of the comment. The poster of a comment can always edit it via the web UI, which includes the ability to remove or add attachments. It does not require write permission on the issue or pull unit of the repository. The API is consistent with the web UI in how it [verifies permissions for editing comments][0] when modifying the textual content. However, when adding or removing the attachments of a comment, it [also requires write permissions][1] on the issue or pull unit, which is inconsistent with the web UI and more restrictive. [0]: `a581059606/routers/api/v1/repo/issue_comment.go (L606)` [1]: `a581059606/routers/api/v1/repo/issue_comment_attachment.go (L359)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11623 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-03-19 01:39:29 +01:00
Renovate Bot	4ce44e24d6	Update module github.com/ProtonMail/go-crypto to v1.4.1 (forgejo) (#11738 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11738 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 01:29:29 +01:00
Matthias Riße	04dd8ae525	feat: match on compound filename extensions (#11439 ) Instead of going with a single extension, extracted by `filepath.Ext()`, all possible extensions are now generated for a given filename, by splitting the filename using a "." separator, starting with the longest candidate. Moreover, each extension candidate is matched against the actual set of known renderers (`extRenderers`), and only the longest matching extension is used. Resolves https://codeberg.org/forgejo/forgejo/issues/5190. Co-authored-by: Michael Hanke <michael.hanke@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11439 Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Matthias Riße <matrss@0px.xyz> Co-committed-by: Matthias Riße <matrss@0px.xyz>	2026-03-19 01:25:51 +01:00
hwipl	5b47f1f002	feat: add wiki git info to API (#11589 ) Add information about the git repository for wiki pages to the Repository response in the API: - has_wiki_contents: info whether wiki git repository already exists - wiki_clone_url: the git clone URL of the wiki git repository - wiki_ssh_url: the git SSH URL of the wiki git repository Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11589 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: hwipl <hwipl@noreply.codeberg.org> Co-committed-by: hwipl <hwipl@noreply.codeberg.org>	2026-03-19 01:21:50 +01:00
Renovate Bot	37ec7331ac	Update module golang.org/x/image to v0.37.0 (forgejo) (#11739 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11739 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-19 00:55:17 +01:00
Mathieu Fenniak	aef91ab1a3	ui: move "New access token" to a separate UI page (#11659 ) We are updating the user's personal access token page (`/user/settings/applications`) to allow the creation of repo-specific tokens, adding a third option to "Repository and Organization Access". In preparation for this new UI, this PR moves the creation of access tokens to a new page accessed by "New access token". This also resolves a pet-peeve: the "Select permissions" dropdown on the inline edit form hides a required input for an access token. This section is expanded on the new dedicated page. (The Vue component used here is replaced with a JS-free alternative as well. This form component used to lose selected values when an error occurred, and it didn't make sense as a Vue component, so it has been translated into an HTML template instead.) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11659 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-18 22:33:14 +01:00
Renovate Bot	05272aad99	Update module github.com/urfave/cli/v3 to v3.7.0 (forgejo) (#11713 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11713 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-18 20:23:38 +01:00
Andreas Ahlenstorf	f0657b38a5	fix: prevent container registry headers from leaking into other registries (#11733 ) https://codeberg.org/forgejo/forgejo/issues/11711 discovered that headers from the container registry are leaking into the other registries. That was introduced by https://codeberg.org/forgejo/forgejo/pulls/11393. This PR fixes the problem and adds a regression test to the Maven repository. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11733 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-18 20:17:50 +01:00
Mathieu Fenniak	28e0af25b4	perf: remove redundant & incorrect filters on 'SearchRepoOptions.OwnerID' (#11729 ) Improves the performance of the `/repo/search?uid=N` API call, which is used on the user's dashboard to load a repo list. More detailed notes are in https://codeberg.org/forgejo/forgejo/issues/11702. Removes a redundant query condition (that a user was part of a team in an organization which could see a repo), and a condition that seems incorrect (that a repo could be seen just by being public within a private org, which is incorrect because that doesn't mean the user is a collaborator on the repo). Covered by over 30 test cases in `repo_list_test.go` which did not fail from these changes. Mutation testing (removing the remaining "2." condition) verified that the codepath is covered as tests did fail. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11729 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-18 17:01:44 +01:00
Renovate Bot	d8f1e7a060	Update module golang.org/x/crypto to v0.49.0 (forgejo) (#11728 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11728 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-18 13:42:33 +01:00
Brandon Rothweiler	c987e8e3ce	fix: remove template file from generated repo (#11691 ) This PR fixes a bug where the previously-implemented functionality to delete the `.gitea/template` or `.forgejo/template` file when generating a repository from a template was not working. The issue happened because the code was using `util.Remove()` with a relative path, but this resolves against the process working directory instead of the temporary clone directory. The fix was to use `root.Remove()` which is based on an `os.OpenRoot()` anchored at `tmpDir`. Updated integration tests and verified that they pass with this change and fail without it. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11691 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Brandon Rothweiler <bdr9@noreply.codeberg.org> Co-committed-by: Brandon Rothweiler <bdr9@noreply.codeberg.org>	2026-03-17 23:39:10 +01:00
Artyom Bologov	9a741f7bd5	fix: make repository menu not overflow with JS off (#11614 ) Closes #11400 Overflow is handled by javascript to show a button instead of horizontally scrolling, this is not the case when javascript is disabled. Add CSS to handle overflow, does not interfere with the javascript. ## Testing 1. Go to any repository. 2. Turn off javascript. 3. Make viewport width small. 4. Observe that repository menu under the repository header doesn't overflow. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11614 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Artyom Bologov <git@aartaka.me> Co-committed-by: Artyom Bologov <git@aartaka.me>	2026-03-17 23:03:17 +01:00
0ko	7d2f1c2ee7	feat(ui): use better contrast color for required field indicator (#11677 ) Use purpose-specific variable with better contrast on dark theme with fallback to generic variable, similarly to this rule: `ce73827b7e/web_src/css/base.css (L664-L666)` ### Preview ![](/attachments/eec8cb4f-cd8a-472d-ab98-9c73feaf82ff) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11677 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-03-17 19:45:18 +01:00
Renovate Bot	4643f006d9	Update module github.com/ProtonMail/go-crypto to v1.4.0 (forgejo) (#11709 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11709 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-17 18:55:39 +01:00
Andreas Ahlenstorf	26f401cab4	fix: use CSS class to indicate that runner name is required (#11718 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11516#issuecomment-11634760 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11718 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-17 18:51:29 +01:00
Renovate Bot	178b2efbd2	Update module github.com/pquerna/otp to v1.5.0 (forgejo) (#11700 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11700 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-17 18:47:31 +01:00
Renovate Bot	06272bfdb8	Update module fillmore-labs.com/errortype to v0.0.11 (forgejo) (#11707 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11707 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-17 18:46:08 +01:00
0ko	d7de47ea23	fix(ui): cleanup css deadcode related to stackable menus (#11719 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11597#issuecomment-11486785 We only have two stackable menus in the UI: `c1787d06e2/templates/user/dashboard/navbar.tmpl (L2)` `c1787d06e2/web_src/js/components/DashboardRepoList.vue (L328)` None of them have classes `right` or `pointing`. Not normally, not through JS. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11719 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-17 18:45:50 +01:00
Gusted	1c64bad453	fix: improve OAuth2 experience (#11715 ) - fix: show oauth2 retrieve error - `true` indicates it only should be shown when the page is rendered directly via `ctx.HTML` and not propagated if it redirects. As you can see this always redirects and means the error is not shown. - Has the funny behavior that you get redirected to `/user/login` without any indication what went wrong, no errors in the logs either. - fix: pre-process OAuth2 client ID and secret - Spaces should are not appropriate for these input, remove them. - Manually copying and pasting client ID and secret from Github OAuth2 applications seems prone to introduce whitespaces. - The error of having a incorrect client ID is more noticeable (404 page for the user). - The error of having a incorrect client secret is not noticeable (404 page for the goth library but no mention it's the wrong secret). Reported-by: marijnh Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11715 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-17 18:44:23 +01:00
Gusted	c1787d06e2	fix: add missing deleting beans for organizations (#11699 ) - Delete blocked users entries. - Organization cannot get blocked, it can block other people however. - Delete following entries. - Organization cannot follow, it can be followed by users. - Resolves forgejo/forgejo#11416 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11699 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-17 09:11:52 +01:00
Renovate Bot	075ee9ea88	Update module github.com/mattn/go-sqlite3 to v1.14.37 (forgejo) (#11708 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11708 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-17 03:35:52 +01:00
Andreas Ahlenstorf	d8534ba123	feat: scope-specific headings for list of recent tasks (#11690 ) As requested in https://codeberg.org/forgejo/forgejo/pulls/11516#issuecomment-11430034, the headings of the list of recent tasks that were executed on a particular runner now indicate that only tasks are listed that originated in the current scope. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11690 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-17 03:02:09 +01:00
Andreas Ahlenstorf	120f97a914	feat: expose attempt number of ActionRunJob in HTTP API (#11687 ) Expose the attempt number of `ActionRunJob` in the HTTP API. It is required to uniquely identify a job run. Example: ``` $ curl -u andreas --basic http://192.168.178.62:3000/api/v1/repos/andreas/test/actions/runners/jobs ``` ```json [{"id":63,"attempt":2,"repo_id":1,"owner_id":1,"name":"test","needs":null,"runs_on":["debian"],"task_id":0,"status":"waiting"}] ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11687 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-17 02:58:34 +01:00
Shiny Nematoda	a32b0da87c	test: attempt to fix flaky TestBleveDeleteIssue (#11686 ) Wait till the indexer has been fully initialized Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11686 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2026-03-16 16:48:11 +01:00
Renovate Bot	61fe3bb8ff	Update renovate Docker tag to v43.76.1 (forgejo) (#11692 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-16 04:38:49 +01:00
Renovate Bot	bfeec16d81	Update dependency @google/model-viewer to v4.2.0 (forgejo) (#11697 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11697 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-16 03:15:14 +01:00
Renovate Bot	fab1347511	Update module github.com/go-swagger/go-swagger/cmd/swagger to v0.33.2 (forgejo) (#11695 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11695 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-16 02:29:07 +01:00
Renovate Bot	dda03a2bc6	Update CodeMirror (forgejo) (#11693 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11693 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-16 01:03:30 +01:00
0ko	fd750f39b6	fix(ui): improve consistency in new runner management pages (#11675 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11516 which I didn't have time to review. Some consistency fixes. Haven't done anything with the [actions in the table](https://codeberg.org/attachments/5a7eb4f2-c45c-4189-b952-ca4cd4085eb5) but something will need to be done. Like an ellipsis menu. ## Preview ![1](/attachments/a894648b-51e0-4706-9a83-338868a24970) ![2](/attachments/a8b3dc47-49fc-42d6-a353-a3b2963414d2) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11675 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-15 15:29:01 +01:00
Andreas Ahlenstorf	8fed6bcc9b	fix: add challenge for HTTP Basic Authentication to container registry (#11678 ) After the [first attempt](https://codeberg.org/forgejo/forgejo/pulls/11393) to introduce a separate challenge for HTTP Basic Authentication failed and had to be [backed out](https://codeberg.org/forgejo/forgejo/pulls/11616) because two challenges in a single header field were not widely supported, we're trying it again. This time a second header `WWW-Authenticate` header is emitted. Example: ``` $ curl -v -u andreas --basic http://192.168.178.62:3000/v2 Enter host password for user 'andreas': * Trying 192.168.178.62:3000... * Connected to 192.168.178.62 (192.168.178.62) port 3000 * using HTTP/1.x * Server auth using Basic with user 'andreas' > GET /v2 HTTP/1.1 > Host: 192.168.178.62:3000 > Authorization: Basic ***** > User-Agent: curl/8.15.0 > Accept: / > * Request completely sent off < HTTP/1.1 401 Unauthorized < Content-Length: 50 < Content-Type: application/json < Docker-Distribution-Api-Version: registry/2.0 < Www-Authenticate: Bearer realm="http://192.168.178.62:3000/v2/token",service="container_registry",scope="" Basic authentication problem, ignoring. < Www-Authenticate: Basic realm="Forgejo Container Registry" < Date: Sat, 14 Mar 2026 15:09:50 GMT < {"errors":[{"code":"UNAUTHORIZED","message":""}]} ``` Tested with Docker 29.1.3, Podman 5.8.0, and Apple container 0.9.0. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11678 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-15 15:18:48 +01:00
0ko	a480324595	fix(i18n): reuse string for repository access, fix capitalization consistency (#11683 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/11604 These strings are used in similar contexts and can be reused. Fixed capitalization consistency (`specific_repo_access` inherited capitalization from `repo_and_org_access` which was nearby in the UI) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11683 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-15 15:09:43 +01:00
Mathieu Fenniak	1d99ce0242	fix: incorrect DB error handling in 'POST /users/{username}/tokens' (#11682 ) Came across a coding error from #11504 while working on adding a UI for repo-specific access tokens. I couldn't find a practical way to test this fix as there are no expected error conditions that will be returned here, just database-level errors, and the `SetFaultInjector` capability in testing is only integrated into unit tests, not integration tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11682 Reviewed-by: Cyborus <cyborus@disroot.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-15 07:43:33 +01:00
Renovate Bot	bbf6a957aa	Update dependency @codemirror/view to v6.39.17 (forgejo) (#11672 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11672 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-15 07:27:20 +01:00
Andreas Ahlenstorf	ce73827b7e	feat: add visible flag to HTTP API endpoints that return runners (#11670 ) Add a `visible=true\|false` flag to the HTTP API endpoints that return runners (`/user/actions/runners` and friends). Previously, all endpoints (except the one for admins) only returned the runners owned by the respective repository, user, or organization. The endpoint for admins returned all runners. With this change, all endpoints only return the runners directly owned by the repository, user, organization, or instance by default (`visible=false`). With `visible=true`, the API returns the same runners as the UI. That means, for example, that `/repos/{owner}/{repo}/actions/runners?visible=true` returns all runners owned by the repository, its owner, and the instance. Additionally, the behaviour of the endpoint for getting a single runner was altered. With this change, it permits accessing all _visible_ runners, thereby matching the UI. Previously, only runners directly owned by the repository, user, or organization could be obtained, whereas the admin could obtain all. Furthermore, existence probing is no longer possible. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11670 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-14 04:22:01 +01:00
Andreas Ahlenstorf	e9969afa6b	feat: make it possible to search runners by UUID (#11671 ) Forgejo Runner [identifies runners by their UUID](https://code.forgejo.org/forgejo/runner/pulls/1380), not by their name. That means users should be able to find a runner in Forgejo not only using its name, but also using its UUID. With this change, when a user enters a (partial) UUID into the search bar on top of the list of runners, all matching runners will be found. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11671 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-14 04:12:00 +01:00
Renovate Bot	68702415c3	Update data.forgejo.org/oci/golang Docker tag to v1.26 (forgejo) (#11662 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11662 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-13 08:17:21 +01:00
Renovate Bot	5a64bdb0e7	Update data.forgejo.org/forgejo/forgejo Docker tag to v11.0.11 (forgejo) (#11660 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11660 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-13 08:15:36 +01:00
Renovate Bot	fd41a4c30f	Update dependency mermaid to v11.13.0 (forgejo) (#11663 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11663 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-13 08:10:53 +01:00
Andreas Ahlenstorf	6ff4147688	refactor: replace WithAvailable with WithVisible when fetching runners (#11657 ) When fetching runners, the option `WithAvailable` can be enabled to fetch all runners that can be used by a repository, user, or organization, not only those that are owned by the respective repository, user, or organization. In the instance scope, `WithAvailable` has no meaning. You always get _all_ runners. This means it is impossible to only fetch runners that are owned by the instance, but no others. This PR replaces `WithAvailable` with `WithVisible`. For repositories, users, and organizations, it has the same semantics as `WithAvailable`. For the instance scope, `WithVisible=true` equals today's default behaviour (i.e., return _all_ runners), whereas `WithVisible=false` is new and would only return the runners owned by the instance itself. The advantage of `WithVisible` is that it has a consistent meaning across all scopes. This also lays the groundwork for the introduction of a `with-visible` (tentative name) flag in the HTTP API. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11657 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-13 01:43:32 +01:00
Mathieu Fenniak	ed76e2a114	fix: create repo-specific access token unexpected behaviour with `"repositories": []` (#11653 ) When creating an access token via API, if `"repositories": []`, then it is expected that the intent of the user was to create a repo-specific access token, but the API currently creates an all-access access token instead. `"repositories": []` is expected to be an error, instead of an unexpectedly wide grant. Reported by @aahlenst during testing: https://codeberg.org/forgejo/forgejo/pulls/11604#issuecomment-11569816 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - Bugfix in unreleased feature. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11653 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-12 22:55:12 +01:00
Gusted	8572835160	fix: don't trip deleting attachment with missing permission error (#11642 ) - Deleting attachments are also seen as updating attachments due to the frontend always sending a field to edit the name even if the name didn't change. This was not reflected in the unit tests. - Refactor the updating attachment logic to be more flexible if a attachment does not exist, because it was just deleted or because someone is being malicious. - Resolves forgejo/forgejo#11636 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11642 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-12 20:29:10 +01:00
Renovate Bot	62c32f00e4	Update linters (forgejo) (#11627 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-12 18:27:43 +01:00
Andreas Ahlenstorf	9177e52cf4	chore: deprecate HTTP API endpoints for obtaining the runner registration token (#11650 ) Forgejo Runner is deprecating the runner registration token. It is too powerful, requires tooling, and is unnecessary. https://codeberg.org/forgejo/forgejo/pulls/10677 added an HTTP API for runner registration. https://codeberg.org/forgejo/forgejo/pulls/11516 added the ability to manage runners using Forgejo's web interface and marked the runner registration token in the UI as deprecated. This PR deprecates the HTTP endpoints for obtaining the runner registration token by updating the API documentation. The implementation and all the tests remain in place and untouched. See https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/88 for context. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11650 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-12 16:12:18 +01:00
Mathieu Fenniak	6e804c8b1b	feat(ui): display repositories accessible by repo-specific access tokens (#11604 ) When an access token is repository specific, display the repositories that it can access when expanded in the UI (token test in this screenshot): ![image](/attachments/6d2d539c-7781-4a4f-ba90-a28b7c365c6c) Default, collapsed view is unchanged: ![image](/attachments/a4f0a36d-2f2b-46af-8fa6-c8d445f707e4) Bulk loading of repositories is refactored out of the access token API endpoint into a `BulkGetRepositoriesForAccessTokens` method that can be used in both this UI, and the original API location. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11604 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-12 16:06:38 +01:00
Renovate Bot	8b57cfc152	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.8 (forgejo) (#11644 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.7` → `v3.1.8` \| --- > ⚠️ Warning > > Some dependencies could not be looked up. Check the [Dependency Dashboard](issues/2779) for more information. --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.8`](https://code.forgejo.org/actions/setup-forgejo/releases/tag/v3.1.8) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.7...v3.1.8) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/actions/setup-forgejo--> - other - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/922): <!--number 922 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjcuMg==-->Update dependency forgejo/runner to v12.7.2<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/916): <!--number 916 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuMTEuMw==-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.11.3<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/893): <!--number 893 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuMTEuMg==-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.11.2<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41OS4zIiwidXBkYXRlZEluVmVyIjoiNDMuNTkuMyIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11644 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-12 04:06:50 +01:00
Andreas Ahlenstorf	2963572845	feat: add form-based runner management (#11516 ) Forgejo Runner is deprecating the runner registration token. It is too powerful, requires tooling, and is unnecessary. As a consequence, users need new mechanisms for managing runners in Forgejo. https://codeberg.org/forgejo/forgejo/pulls/10677 added an HTTP API for runner registration. This PR adds the ability to manage runners using Forgejo's web interface. Runners can be added, modified, and deleted. It is also possible to regenerate a runner's token. When a runner is added or a runner's token is regenerated, setup instructions are displayed. They explain how to alter Forgejo Runner's configuration file or how to launch `forgejo-runner daemon` (yet to be implemented). The existing details page has been overhauled and is now accessible to all users that are allowed to use a particular runner. The details page displays additional information that had to be removed from the list of runners due to space constraints. The task list is filtered. That means it only lists jobs of the respective repository, user, or organization. The runner registration token has been marked as deprecated. See https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/88 for context and design considerations. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11516 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-12 02:14:45 +01:00
Renovate Bot	c3908ba349	Update module code.forgejo.org/forgejo/runner/v12 to v12.7.2 (forgejo) (#11639 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.7.1` → `v12.7.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.1/v12.7.2?slim=true) \| --- > ⚠️ Warning > > Some dependencies could not be looked up. Check the [Dependency Dashboard](issues/2779) for more information. --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.7.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.7.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.7.1...v12.7.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1430): <!--number 1430 --><!--line 0 --><!--description Zml4OiBvbmx5IHBpbmcgRm9yZ2VqbyBkdXJpbmcgb2ZmbGluZSByZWdpc3RyYXRpb24gd2hlbiAtLWNvbm5lY3QgaXMgZW5hYmxlZA==-->fix: only ping Forgejo during offline registration when --connect is enabled<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1412): <!--number 1412 --><!--line 0 --><!--description Zml4OiBVUkwgY29tcGFyaXNvbiB3aGVuIGRldGVybWluaW5nIHRva2VuIGF1dGggc3VwcG9ydA==-->fix: URL comparison when determining token auth support<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1428): <!--number 1428 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGltZSB0byB2MC4xNS4w-->Update module golang.org/x/time to v0.15.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1427): <!--number 1427 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvc3lzIHRvIHYwLjQyLjA=-->Update module golang.org/x/sys to v0.42.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1425): <!--number 1425 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMTEuMg==-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.11.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1423): <!--number 1423 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS42LjE=-->Update dependency forgejo/release-notes-assistant to v1.6.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1422): <!--number 1422 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjUuOA==-->Update dependency go to v1.25.8<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1418): <!--number 1418 --><!--line 0 --><!--description VXBkYXRlIGdpdGh1Yi5jb20vY2xvdWRmbGFyZS9jaXJjbCAoaW5kaXJlY3QpIHRvIHYxLjYuMyBbU0VDVVJJVFld-->Update github.com/cloudflare/circl (indirect) to v1.6.3 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1416): <!--number 1416 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuNw==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.7<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1415): <!--number 1415 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi43LjE=-->Update forgejo-runner to v12.7.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41OS4zIiwidXBkYXRlZEluVmVyIjoiNDMuNTkuMyIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11639 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-12 01:37:50 +01:00
Renovate Bot	6237728b71	Update dependency katex to v0.16.38 (forgejo) (#11638 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11638 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-12 01:35:50 +01:00
forgejo-renovate-action	8e41551acb	Update dependency go to v1.26 (forgejo) (#11320 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11320 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: forgejo-renovate-action <forgejo-renovate-action@noreply.codeberg.org> Co-committed-by: forgejo-renovate-action <forgejo-renovate-action@noreply.codeberg.org>	2026-03-12 01:26:23 +01:00
Renovate Bot	7604267a17	Update https://code.forgejo.org/forgejo/upload-artifact action to v5 (forgejo) (#11630 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11630 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-11 06:01:06 +01:00
Renovate Bot	692905a2a3	Update https://data.forgejo.org/forgejo/upload-artifact action to v5 (forgejo) (#11631 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11631 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-11 05:33:18 +01:00
Renovate Bot	a8837bc1ab	Update dependency wrap-ansi to v10 (forgejo) (#11629 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11629 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-11 05:28:18 +01:00
Renovate Bot	3a0c776a07	Update dependency asciinema-player to v3.15.1 (forgejo) (#11605 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11605 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-11 05:18:17 +01:00
Nils Goroll	31fff54e17	Improvement: Do not set session cookie for empty session This is based on https://code.forgejo.org/go-chi/session/pulls/80. The remainder of this message is largely copied from there: For interoperability with reverse proxies and CDNs, setting a session cookie for no good reason (login is a good reason) is a PITA, because it makes caching of content for anonymous (not logged-in) users very hard, requiring all kinds of special casing and error prone workarounds. In particular in an age of exploitative AI bot crawling, being able to serve content for anonymous users from a fast, efficient page cache is an important option. This patch lays a foundation by using an option added to go-chi/session to not create session cookies always, but rather only when the respective session is non-empty. Test cases are included there and omitted here.	2026-03-11 04:18:06 +01:00
Renovate Bot	29e12d4db4	Update module code.forgejo.org/go-chi/session to v1.0.3	2026-03-11 03:55:38 +01:00
Mathieu Fenniak	20388a7bee	chore(deps): bump xorm to v1.3.9-forgejo.8 (#11624 ) Fixes https://codeberg.org/forgejo/forgejo/issues/11608 via https://code.forgejo.org/xorm/xorm/pulls/81. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11624 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-11 03:40:43 +01:00
limiting-factor	d2acd4f14c	chore: split `AddRepository` and `AddTeamMember` to return the inserted value (#11342 ) Split [AddRepository][0] and [AddTeamMember][1] to functions that return the inserted value. These can be used by the F3 driver to obtain the ID of the TeamRepo and TeamUser rows inserted in the database. Add test coverage for both functions and remove a duplicated test. Integration tests also already [make use of AddRepository and AddTeamMember][2] indirectly. [0]: `f8bee35e77/models/org_team.go (L26)` [1]: `f8bee35e77/models/org_team.go (L359)` [2]: `f8bee35e77/tests/integration/api_helper_for_declarative_test.go (L461-L483)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11342 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-03-11 03:40:32 +01:00
Renovate Bot	a581059606	Update dependency globals to v17.4.0 (forgejo) (#11621 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11621 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-11 00:51:58 +01:00
Robert Wolff	296e6a284e	fix(ui): improve Git notes editing (#11365 ) Closes #11355, namely: 1. bug: editing the note does not edit the orginal content, but the rendered content - https://codeberg.org/forgejo/forgejo/pulls/11365/commits/16368c4ccb7c5e4711599abe5a607d0a9da81f9b - edit raw notes instead of rendered notes 2. bug: editing existing note on single-commit PR page leads to 404 page because it sends a POST request to `/OWNER/REPO/pulls/ID/commits/COMMIT_HASH/notes` - https://codeberg.org/forgejo/forgejo/pulls/11365/commits/f036fc55db6b32975f6b0d78d0a7b0e34cd5e866 - add new paths for the actions on pull request pages for `/OWNER/REPO/pulls/ID/commits/COMMIT_HASH/notes` and `/OWNER/REPO/pulls/ID/commits/COMMIT_HASH/notes/remove` 3. feat: both for adding and editing there is no `Cancel` button - https://codeberg.org/forgejo/forgejo/pulls/11365/commits/58d8c7cc872f34ddb092fe2c28d757580d16a320 - moved both the `Cancel` and the `Save`/`Edit` button to the right for better consistency how, e.g., issue comments are edited/created. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11365 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-03-10 23:49:18 +01:00
Andreas Ahlenstorf	f1a08a7ab1	fix: remove second challenge from WWW-Authenticate header (#11616 ) https://codeberg.org/forgejo/forgejo/pulls/11393 introduced a second challenge, one for HTTP Basic Authentication, to the existing `WWW-Authenticate` header sent by Forgejo's container registry in response to missing or invalid credentials. However, that led to unexpected compatibility issues with some clients. For example, it broke Renovate (see https://github.com/renovatebot/renovate/discussions/41774). To be extra-safe, the decision was taken to revert that particular change without introducing a second header field (i.e., sending two `WWW-Authenticate` headers). That effectively restores the old behaviour. ``` $ curl -v -u andreas --basic http://192.168.178.62:3000/v2 Enter host password for user 'andreas': * Trying 192.168.178.62:3000... * Connected to 192.168.178.62 (192.168.178.62) port 3000 * using HTTP/1.x * Server auth using Basic with user 'andreas' > GET /v2 HTTP/1.1 > Host: 192.168.178.62:3000 > Authorization: Basic ***** > User-Agent: curl/8.15.0 > Accept: / > * Request completely sent off < HTTP/1.1 401 Unauthorized < Content-Length: 50 < Content-Type: application/json < Docker-Distribution-Api-Version: registry/2.0 < Www-Authenticate: Bearer realm="http://192.168.178.62:3000/v2/token",service="container_registry",scope="" < Date: Tue, 10 Mar 2026 17:00:21 GMT < {"errors":[{"code":"UNAUTHORIZED","message":""}]} ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11616 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-10 21:07:08 +01:00
oliverpool	1853b7370b	fix: webook/discord: omit empty embeds.footer from the payload for Spacebar compatibility (#11588 ) Fixes #11573 ### Tests for Go changes - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11588 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2026-03-10 16:50:04 +01:00
Mathieu Fenniak	a012b8bf36	refactor: replace ActionRunnerToken.OwnerID & RepoID with optional.Option[int64] (#11601 ) Currently: - In the database, `NULL` is used in `action_runner_token.owner_id` & `.repo_id` to represent an absent value, as required by the foreign key - In the code, `0` is used in `ActionRunnerToken.OwnerID` and `.RepoID` to represent an absent value This PR replaces the `int64` fields with `optional.Option[int64]` which allows a single data type to be used for both cases, and removes the usage of the value `0` as a placeholder. This change has a limited scope -- although `ActionRunnerToken` uses `NULL` values in the database, the related table `ActionRunner` still uses zero-values for `OwnerID` and `RepoID`. This means a lot of code interacting with both of these tables still uses `0` values, such as the UI. The changes here were stopped at a reasonable point to avoid cascading into all places that use the `ActionRunner` table. (I'll continue this work in the future to enable foreign keys on `ActionRunner`, but likely after #11516 is completed to avoid serious conflict resolution problems.) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11601 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-10 03:19:16 +01:00
Mathieu Fenniak	f93d2cb261	ci: detect and prevent empty `case` statements in Go code (#11593 ) One of the security patches released 2026-03-09 [fixed a vulnerability](https://codeberg.org/forgejo/forgejo/pulls/11513/commits/d1c7b04d09f6a13896eaa1322ac690b2021539da) caused by a misapplication of Go `case` statements, where the implementation would have been correct if Go `case` statements automatically fall through to the next case block, but they do not. This PR adds a semgrep rule which detects any empty `case` statement and raises an error, in order to prevent this coding mistake in the future. For example, code like this will now trigger a build error: ```go switch setting.Protocol { case setting.HTTPUnix: case setting.FCGI: case setting.FCGIUnix: default: defaultLocalURL := string(setting.Protocol) + "://" } ``` Example error: ``` cmd/web.go ❯❯❱ semgrep.config.forgejo-switch-empty-case switch has a case block with no content. This is treated as "break" by Go, but developers may confuse it for "fallthrough". To fix this error, disambiguate by using "break" or "fallthrough". 279┆ switch setting.Protocol { 280┆ case setting.HTTPUnix: 281┆ case setting.FCGI: 282┆ case setting.FCGIUnix: 283┆ default: 284┆ defaultLocalURL := string(setting.Protocol) + "://" 285┆ if setting.HTTPAddr == "0.0.0.0" { 286┆ defaultLocalURL += "localhost" 287┆ } else { 288┆ defaultLocalURL += setting.HTTPAddr ``` As described in the error output, this error can be fixed by explicitly listing `break` (the real Go behaviour, to do nothing in the block), or by listing `fallthrough` (if the intent was to fall through). All existing code triggering this detection has been changed to `break` (or, rarely, irrelevant cases have been removed), which should maintain the same code functionality. While performing this fixup, a light analysis was performed on each case and they appeared correct, but with ~65 cases I haven't gone into extreme depth. Tests are present for the semgrep rule in `.semgrep/tests/go.go`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11593 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-10 02:50:28 +01:00
Renovate Bot	c564867439	Update dependency katex to v0.16.37 (forgejo) (#11599 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11599 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-10 02:04:22 +01:00
Michael Kriese	e7d4ecadf3	feat: add more filters to actions run and tasks api (#11584 ) The new filters are especially useful for status monotoring like kuma to have more relevant results. The wrong status check seems to be a regression of #6300 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11584 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-03-10 01:20:00 +01:00
Oliver Eikemeier	d499c3b132	chore: rename `AccessTokenError` to `AccessTokenErrorResponse` (#11595 ) AccessTokenError is never used as a Go error. In fact, it is returned as a *AccessTokenError (which would result in a `nil` error when cast). Rename the struct to a more accurate name and remove the unused `Error() string` method to prevent future confusion. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11595 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Oliver Eikemeier <eikemeier@fillmore-labs.com> Co-committed-by: Oliver Eikemeier <eikemeier@fillmore-labs.com>	2026-03-09 23:36:47 +01:00
Shiny Nematoda	9e67037a3f	fix(issue-search): delete issue from indexer on DeleteIssue (#11585 ) Previously, issues were deleted from the indexer only when the repository was deleted. Individually deleting issues would not remove them from the indexer. Instead, they were merely hidden due to their IDs being absent from the DB. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11585 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2026-03-09 18:51:18 +01:00
wejdross	cf51d3c888	fix: enforce package quota against package owner, not uploader (#11442 ) ## What is broken Quota on packages is not enforced when pushing to an organisation. `enforcePackagesQuota()` calls `EvaluateForUser(ctx.Doer.ID, ...)` — it checks how much space the uploader personally owns, not the org being pushed to. Since packages accumulate under `package.owner_id = org_id`, the uploader always shows 0 bytes used and the check always passes. This also means site admins bypass quota entirely when pushing to orgs (they get the service-layer admin bypass on top of the 0-byte measurement). OCI/container routes (`/v2/...`) have the same problem but worse — `enforcePackagesQuota()` was not called on them at all. ## Fix Check quota against `ctx.Package.Owner.ID` instead of `ctx.Doer.ID`. The package owner (the org or user being pushed to) is already available via `ctx.Package.Owner`, populated by `PackageAssignment()` before this middleware runs. For individual user namespaces nothing changes — `ctx.Package.Owner` is the user themselves. Also wired `enforcePackagesQuota()` into the missing OCI upload routes: `InitiateUploadBlob`, `UploadBlob`, `EndUploadBlob`, `UploadManifest` — both in the named `/{image}` group and the wildcard `/*` handler. ## Tested Kind cluster, org `maw2` with 1 GiB quota, 2.6 GiB of container images already pushed: - pushing a generic package to `maw2` as SA user → was 201, now 413 - pushing a generic package to `maw2` as `gitea_admin` → was 201, now 413 - initiating OCI blob upload to `maw2` as SA user → was 202, now 413 - pushing to own user namespace within quota → still 201 Co-authored-by: azhluwi <lukasz.widera@convotis.ch> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11442 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: wejdross <wejdross@noreply.codeberg.org> Co-committed-by: wejdross <wejdross@noreply.codeberg.org>	2026-03-09 17:14:50 +01:00
Gusted	3934e5fea3	chore: add comment for ap migration (#11144 ) When merging #9254 I didn't make the mental note that v14 is already out and the migration would now apply to v15. Document this mistake. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11144 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-09 17:09:07 +01:00
Renovate Bot	fc82d7319a	Update module github.com/minio/minio-go/v7 to v7.0.99 (forgejo) (#11568 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11568 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-09 16:31:21 +01:00
Renovate Bot	9f6e04c677	Update dependency katex to v0.16.35 (forgejo) (#11576 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11576 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-09 16:30:18 +01:00
Renovate Bot	b2e7f08246	Update dependency webpack to v5.105.4 (forgejo) (#11558 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11558 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-09 16:29:07 +01:00
Michael Kriese	70081c9297	chore: cleanup Makefile (#11587 ) Leftover of #7680 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11587 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-03-09 15:19:28 +01:00
forgejo-release-manager	cfd4d53e32	chore(release-notes): Forgejo v14.0.3 [skip ci] (#11583 ) https://codeberg.org/forgejo/forgejo/milestone/55554 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11583 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-03-09 07:00:32 +01:00
forgejo-release-manager	192052e3e4	chore(release-notes): Forgejo v11.0.11 [skip ci] (#11582 ) https://codeberg.org/forgejo/forgejo/milestone/47802 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11582 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-03-09 06:58:38 +01:00
Beowulf	6dbf72975d	fix: Forgejo Security Patches, 2026-03-09 (#11513 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11513 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-09 05:54:05 +01:00
Mathieu Fenniak	c69ba8b1c1	chore: release notes from #11514 & #11515 backports	2026-03-08 20:07:52 -06:00
0ko	d665904a22	feat(ui): improve visibility of counters inside of switch items (#11472 ) Apply the feature from https://codeberg.org/forgejo/forgejo/pulls/2935 on element from https://codeberg.org/forgejo/forgejo/pulls/6459 (which was applied to notifications page in https://codeberg.org/forgejo/forgejo/pulls/6542). A few small semi-related refactors. One of them (nested CSS commit) actually revealed a hole in testing: there are no test cases for hover in `evaluateSwitchItem`. I would like to address this but this PR already conflicts with https://codeberg.org/forgejo/forgejo/pulls/11341, so I won't do that until either is merged to save on rebase work. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11472 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-08 18:09:13 +01:00
Mathieu Fenniak	d442f83a09	chore: support `Option[T]` as a type on database schema structs (#11553 ) Adds support for `optional.Option[T]` to be used on an xorm schema struct to represent nullable fields. The `optional.None[T]()` value will be stored in the database as `NULL`. ```go type OptionString struct { ID int64 `xorm:"pk autoincr"` StringField optional.Option[string] } ``` Before this change, it is possible to represent a nullable field in two reasonable ways: , or as a `sql.Null[T]` (eg. `StringField sql.Null[string]`). The problems with these are: - as a pointer (eg. `StringField string`) -- but this introduces the risk of panics when `nil` values are dereferenced, and makes it difficult to use literals in structure creation (although `new()` in Go 1.26 would reduce this issue when Forgejo is upgraded to it) - as a `sql.Null[T]` -- but this "leaks" references to the `database/sql` package for anything that interacts with Forgejo models, and it's API is awkward as nothing gates you into checking the `Valid` field before you access and use the `V` field `optional.Option[T]` addresses these points and provides a single way to use an optional primitive type, with a safe check-before-access interface, which can be used consistently throughout model code and other application code. Figuring out the best way to handle this became a blocker to me for [adding foreign keys to nullable fields](https://codeberg.org/forgejo/discussions/issues/385#issuecomment-10218316) in database models, which is what drove me to implement this solution. ## Notes: Filtering on `Option[T]` Fields It is supported and functional to perform queries with xorm beans with non-None `Option` values. For example: ```go cond := &OptionString{ StringField: optional.Some("hello"), } err := db.GetEngine(t.Context()).Find(&arr, cond) ``` will generate a database query `WHERE string_field = 'hello'`, and correctly filter the records. It is not* supported to perform queries with `None` values, for two reasons: - xorm cannot distinguish between an explicit `&OptionString{ StringField: optional.None[string]() }`, and `&OptionString{}`. Both of them have the `StringField` field set to the zero-value of `Option[String]`. - For this SQL query to be formatted correctly, it would require `WHERE string_field IS NOT NULL`, not `WHERE string_field = NULL`. This is not how xorm generated bean-based queries. This is similar to the risk that exists with any other field querying on its zero-value with xorm. It's an unfortunate structural limitation of xorm, and can lead to developers believing database queries are performing filtering that they are not. (perhaps we can mitigate this risk with semgrep or other automated tooling in the future) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11553 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-08 03:36:32 +01:00
Renovate Bot	3770149158	Update module github.com/go-enry/go-enry/v2 to v2.9.5 (forgejo) (#11564 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11564 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-08 03:06:52 +01:00
Renovate Bot	d01fd19c58	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.7 (forgejo) (#11559 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.6` → `v3.1.7` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.7`](https://code.forgejo.org/actions/setup-forgejo/releases/tag/v3.1.7) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.6...v3.1.7) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/actions/setup-forgejo--> - other - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/908): <!--number 908 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjcuMQ==-->Update dependency forgejo/runner to v12.7.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41Mi4wIiwidXBkYXRlZEluVmVyIjoiNDMuNTIuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11559 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-08 02:52:17 +01:00
Renovate Bot	34ae2899ad	Update module code.forgejo.org/forgejo/runner/v12 to v12.7.1 (forgejo) (#11562 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.7.0` -> `v12.7.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.0/v12.7.1?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.7.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.7.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.7.0...v12.7.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1402): <!--number 1402 --><!--line 0 --><!--description Zml4OiBjb3JyZWN0IGV4YW1wbGVzL2RvY2tlci1jb21wb3NlIGZvciBgY3JlYXRlLXJ1bm5lci1maWxlYCBiZWhhdmlvdXIgY2hhbmdl-->fix: correct examples/docker-compose for `create-runner-file` behaviour change<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1393): <!--number 1393 --><!--line 0 --><!--description Zml4OiBpbXBsZW1lbnQgaWRlbXBvdGVudCBGZXRjaFRhc2sgQVBJIGNhbGxzIHRvIHJlZHVjZSByaXNrIG9mIGxvc3QgdGFza3M=-->fix: implement idempotent FetchTask API calls to reduce risk of lost tasks<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1388): <!--number 1388 --><!--line 0 --><!--description Zml4OiBhY2NlcHQgYm9vbGVhbiB3b3JrZmxvd19jYWxsIGlucHV0cyB0aGF0IGFyZSBib29sZWFucw==-->fix: accept boolean workflow\_call inputs that are booleans<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1410): <!--number 1410 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1naXQvdjUgdG8gdjUuMTcuMA==-->Update module github.com/go-git/go-git/v5 to v5.17.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1409): <!--number 1409 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1iaWxseS92NSB0byB2NS44LjA=-->Update module github.com/go-git/go-billy/v5 to v5.8.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1406): <!--number 1406 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3Zla3RyYS9tb2NrZXJ5L3YyIHRvIHYyLjUzLjY=-->Update module github.com/vektra/mockery/v2 to v2.53.6<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1400): <!--number 1400 --><!--line 0 --><!--description cmVmYWN0b3I6IGNsZWFuLXVwIGVycm9yIGhhbmRsaW5nIG9uIHRhc2sgZXhlY3V0aW9u-->refactor: clean-up error handling on task execution<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1394): <!--number 1394 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi43LjA=-->Update forgejo-runner to v12.7.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1397): <!--number 1397 --><!--line 0 --><!--description UmV2ZXJ0ICJSZXBsYWNlIE5vZGUuanMgd2l0aCBkYXRhLmZvcmdlam8ub3JnL29jaS9ub2RlIDI0LXRyaXhpZSAoIzEzOTUpIg==-->Revert "Replace Node.js with data.forgejo.org/oci/node 24-trixie ([#1395](https://github.com/forgejo/runner/issues/1395))"<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1395): <!--number 1395 --><!--line 0 --><!--description UmVwbGFjZSBOb2RlLmpzIHdpdGggZGF0YS5mb3JnZWpvLm9yZy9vY2kvbm9kZSAyNC10cml4aWU=-->Replace Node.js with data.forgejo.org/oci/node 24-trixie<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1396): <!--number 1396 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMTAuMQ==-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.10.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1386): <!--number 1386 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby1ydW5uZXItc2VydmljZS15cSB0byB2NC41Mi40-->Update dependency forgejo-runner-service-yq to v4.52.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1392): <!--number 1392 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS42LjA=-->Update dependency forgejo/release-notes-assistant to v1.6.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1389): <!--number 1389 --><!--line 0 --><!--description dGVzdDogZW5hYmxlIGRpc2FibGVkIHRlc3Rz-->test: enable disabled tests<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1387): <!--number 1387 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuNg==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.6<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41Mi4wIiwidXBkYXRlZEluVmVyIjoiNDMuNTIuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11562 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-08 02:47:21 +01:00
Έλλεν Εμίλια Άννα Zscheile	c357be8b52	chore: rename SafeHTML to TrustHTML (#11481 ) Naming is less confusing this way, might not give the impression this will sanitize HTML to safe HTML. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11481 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de>	2026-03-08 02:41:37 +01:00
Renovate Bot	4b7eb821ff	Update module github.com/blevesearch/bleve/v2 to v2.5.7 (forgejo) (#11563 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11563 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-08 02:30:53 +01:00
Gusted	c738e59dca	fix: modals on small viewport height (#11547 ) - For small modals fomantic tried to add a `scrolling` class using a function that was not implemented, this function is now stubbed. - There's not really a need to conditionally change the behavior of scrolling or not, we can specify `overflow-y: auto` which is more than enough to take care of this. We do add some layout changes to ensure the modal is fully scrollable. - Refactor to nested CSS. - Resolves forgejo/forgejo#10991 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11547 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-08 00:11:31 +01:00
Robert Wolff	bff5c00b80	feat(api): more verbose error messages and swagger comments for posting issue comments (#11368 ) Closes: #11364 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11368 Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-03-07 23:16:20 +01:00
Mathieu Fenniak	2db6210f69	feat: read, create, & delete repo-specific access tokens via API (#11504 ) This PR is part of a series (#11311). Adds support for reading and creating repo-secific access tokens through the API via the `GET /users/{username}/tokens`, `POST /users/{username}/tokens`, and `DELETE /users/{username}/tokens/{id}` APIs. Validation rules are included to [restrict repo-specific access tokens to specific scopes](https://codeberg.org/forgejo/design/issues/50#issuecomment-11093951). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11504): <!--number 11504 --><!--line 0 --><!--description cmVhZCwgY3JlYXRlLCAmIGRlbGV0ZSByZXBvLXNwZWNpZmljIGFjY2VzcyB0b2tlbnMgdmlhIEFQSQ==-->read, create, & delete repo-specific access tokens via API<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11504 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-07 21:55:08 +01:00
Bram Hagens	48d2af5561	fix: skip repo avatar upload when no file is selected (#11335 ) Submitting the repo avatar form without selecting a file shows a raw Go error: `Avatar.Open: open : no such file or directory.`. The existing `nil` check does not prevent this from happening. The user avatar handler already guards against this same problem with [`form.Avatar != nil && form.Avatar.Filename != ""`](`e1cecbd276/routers/web/user/setting/profile.go (L141)`), I've done the same for the repo avatar handler. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11335 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Bram Hagens <bram@bramh.me> Co-committed-by: Bram Hagens <bram@bramh.me>	2026-03-07 20:53:23 +01:00
Renovate Bot	8d330dc9c7	Update code.forgejo.org/forgejo-contrib/go-libravatar digest to add494e (forgejo) (#11486 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11486 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-07 20:03:55 +01:00
anon_ally	950cb098de	feat: Add shortcut to link markdown action (#11466 ) Follow forgejo/forgejo!9110 and add a shortcut to the link action, via ctrl/command + K. Close #11353 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11466 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: anon_ally <ANON_ALLY@noreply.codeberg.org> Co-committed-by: anon_ally <ANON_ALLY@noreply.codeberg.org>	2026-03-07 19:07:10 +01:00
sarge	ae0d0b5b09	fix: RPM registry addrepo instructions (#11478 ) The provided instructions for how to add RPM package repo fail on Fedora 43: ``` Unknown argument "--add-repo" for command "config-manager". Add "--help" for more information about the arguments. ``` The [docs](https://forgejo.org/docs/latest/user/packages/rpm/#configuring-the-package-registry-using-dnf5) contain a different command, which does work. This changes instructions to match docs. Co-authored-by: sarge <ephemeralsarge@example.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11478 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: sarge <sarge@noreply.codeberg.org> Co-committed-by: sarge <sarge@noreply.codeberg.org>	2026-03-07 19:05:29 +01:00
Renovate Bot	4d2eafdd8e	Update dependency tailwindcss to v3.4.19 (forgejo) (#11545 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11545 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-07 19:04:36 +01:00
sarge	54aca2a9ed	feat: Add `HEAD` support for debian repo files (#11489 ) Add `HEAD` handlers for repo index file for debian package registry. Resolves #11488 Co-authored-by: sarge <ephemeralsarge@example.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11489 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: sarge <sarge@noreply.codeberg.org> Co-committed-by: sarge <sarge@noreply.codeberg.org>	2026-03-07 18:59:47 +01:00
Gusted	e3b219ee98	chore: skip sha256 repo for older git versions (#11542 ) - Breaks testing on git versions that don't have SHA256 support. https://codeberg.org/forgejo-integration/forgejo/actions/runs/16172/jobs/1/attempt/1#jobstep-5-2381 ``` // TestLinksLogin "2026/03/06 06:15:20 ...ices/context/repo.go:1007:28() [E] GetBranchCommit: length 64 has no matched object format: 473a0f4c3be8a93681a267e3b1e9a7dcda1185436fe141f7749120a303721813", ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11542 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-07 15:58:31 +01:00
Mathieu Fenniak	eef3111cc7	chore(deps): upgrade xorm to v1.3.9-forgejo.7 (#11538 ) Primarily to gain access to https://code.forgejo.org/xorm/xorm/pulls/67 & https://code.forgejo.org/xorm/xorm/pulls/66 which allows Forgejo to implement a few methods and support `optional.Option[T]` in database beans for nullable fields. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11538 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-07 15:38:53 +01:00
Renovate Bot	0beec59c01	Update dependency uint8-to-base64 to v0.2.1 (forgejo) (#11549 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11549 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-07 15:01:49 +01:00
Renovate Bot	74f8b819c2	Update dependency forgejo/release-notes-assistant to v1.6.1 (forgejo) (#11543 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-07 15:01:41 +01:00
panc	a824a34266	fix(ui): add active background color for menu items in tippy tooltips (#11315 ) Fix #11309 ![image](/attachments/1067134a-e40e-4f21-82bb-fd4324080215) Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11315 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-03-07 05:52:32 +01:00
Andreas Ahlenstorf	3e849b4b50	fix: extend basic auth to /v2, always include WWW-Authenticate header (#11393 ) Forgejo's OCI container registry did not enable basic authentication for the top-level endpoint `/v2`. Furthermore, it did not include the `WWW-Authenticate` header when returning the status code 401 as mandated by [RFC 7235](https://datatracker.ietf.org/doc/html/rfc7235#section-3.1), "Hypertext Transfer Protocol (HTTP/1.1): Authentication", section 3.1. Those deficiencies made it impossible for Apple's [container](https://github.com/apple/container) to log into Forgejo OCI container registry. This has been rectified. The problem did not occur with most other tools because they do not include credentials when sending the initial request to `/v2`. Forgejo's reply then included `WWW-Authenticate` as expected. Enabling basic authentication for `/v2` has the side effect that Apple's container uses username and password for all successive requests and not the bearer token. If that is a problem, it's up to Apple to change container's behaviour. If invalid credentials are passed to `container registry login`, then container enters an infinite loop. The same happens with quay.io, but not ghcr.io (returns 403) or docker.io (returns 401 but _without_ `WWW-Authenticate`). As this is invalid behaviour on container's side, it's up to Apple to change container. Docker and Podman handle it correctly. Login and pushing have been tested manually with Docker 29.1.3, Podman 5.7.1, and Apple's container 0.9.0. Resolves https://codeberg.org/forgejo/forgejo/issues/11297. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11393 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-03-07 03:19:49 +01:00
limiting-factor	851356577c	chore: do not leak global repository unit defaults (#11470 ) The [test disabling the issue unit][0] took care of [reseting the disabled units][1]. However, it overlooked that calling [`LoadUnitConfig`][2] also has a [side effect on `DefaultRepoUnits`][3]. It happens when [`validateDefaultRepoUnits` has a side effect][4] on the array backing the slice, when it is [not recreated][5]. As a result the issue unit is disabled for all tests that run after this one. The subtle side effect is harmless because it only happens in tests, the `LoadUnitConfig` is otherwise only called once. For clarity `LoadUnitConfig` is modified to clone the unit array being validated so that the returned slice is never backed by the same array as the argument. As the global variables used for repository units should be saved and restored as a whole, a dedicated test function (`SaveUnits`) is provided to be used by both integration tests and unit tests. The test of the unit model is refactored to be a blackbox test in order to avoid an import cycle. [0]: `cce5f868ce/tests/integration/repo_settings_test.go (L258)` [1]: `cce5f868ce/tests/integration/repo_settings_test.go (L253)` [2]: `cce5f868ce/models/unit/unit.go (L171)` [3]: `cce5f868ce/models/unit/unit.go (L182)` [4]: `cce5f868ce/models/unit/unit.go (L162)` [5]: `cce5f868ce/models/unit/unit.go (L148)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11470 Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-03-07 02:03:22 +01:00
Renovate Bot	c0d8c3221f	Update dependency minimatch to v10.2.4 (forgejo) (#11523 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11523 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-07 00:49:57 +01:00
Gusted	39078d478a	chore: add unit test	2026-03-06 11:21:07 -07:00
Gusted	5e1a2f9cc4	fix: filter recipients for new release mails Remove recipients that are not active (e.g. done by moderation or organizational reasons) and those that have the permi ssion to read releases on that repository.	2026-03-06 11:21:07 -07:00
Gusted	58d844b320	chore: add integration testing	2026-03-06 11:21:07 -07:00
Gusted	4f464db8a7	chore: add unit tests Unit tests for model functions	2026-03-06 11:21:07 -07:00
Gusted	837557166b	fix: check owner when changing state of project It was sufficiently checked for the repostiory case, but for user/org project it was not checked and you could change the state of any project by there mere knowledge of a ID.	2026-03-06 11:21:07 -07:00
Gusted	0da92e47ca	chore: add integration testing	2026-03-06 11:21:07 -07:00
Gusted	a4fc54830e	chore: unit testing	2026-03-06 11:21:07 -07:00
Gusted	f0e8763867	fix: check the permission of canceling automerge The API already checked the permission sufficiently if auto merge could be cancelled by the doer. The web route did not. Consolidate this check in the function that lives in the services directory.	2026-03-06 11:21:07 -07:00
Gusted	af0173894a	fix: consider more risky redirects After evaluating `..`, it's possible that the resulting path is a risky redirect, as it might be a "browser" special redirect. Detect this case.	2026-03-06 11:21:07 -07:00
Gusted	b55d819a91	chore: add unit test	2026-03-06 11:21:07 -07:00
Gusted	abdac1993a	chore: add unit test	2026-03-06 11:21:07 -07:00
Gusted	ce0a376723	fix: check that attachments belong to correct resource It was possible to hijack attachments during update and create functions to another owner as permissions to check they weren't already attached to another resource and wasn't checked if it belonged to the repository that was being operated on.	2026-03-06 11:21:07 -07:00
Gusted	68b2930caa	chore: add integration testing Modify the existing scopes tests for normal API tokens to OAuth2 tokens.	2026-03-06 11:21:07 -07:00
Gusted	da766f1e19	fix: consider scopes for OAuth2 token via basic login There are two ways to use a OAuth2 token: Via the Authorization header as a Bearer token. Via the Authorization header as a Basic login. For the former the scope was correctly passed through, for the latter it was not and would mean no scope was checked if you used the token via this way.	2026-03-06 11:21:07 -07:00
Gusted	faf448f350	chore: add integration testing Build on the test of forgejo/forgejo!8678 to also verify PKCE works for S256.	2026-03-06 11:21:07 -07:00
Gusted	d1c7b04d09	fix: verify code challenge of S256 We do not know for sure, but it is quite likely someone assumed implicit fallthrough. This meant that if someone used S256 for PKCE, it simply did not verify the code challenge and always accepted it. PKCE only started working recently as it was broken for a long time already, forgejo/forgejo!8678	2026-03-06 11:21:07 -07:00
patdyn	df79ccf7d8	Move Container API processing logic to service (#11432 ) As discussed here: https://codeberg.org/forgejo/discussions/issues/444 the container v2 API logic does need some refactoring for better maintainability. This is a proposition on how to achieve that. My goal was to be able to write unit tests for functions like processImageManifest() which are currently only tested indirectly by TestPackageContainer() in tests/integration/api_packages_container_test.go. A first unit test was implemented that targets ProcessManifest(). I think that test also shows what steps are needed to successfully execute the ProcessManifest() function and hopefully helps understanding that code better. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11432 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org>	2026-03-06 18:56:49 +01:00
Mathieu Fenniak	7fdb31c8ef	chore: add more diagnostic output to dbfs Stat error (#11525 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11525 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-06 06:43:33 +01:00
Renovate Bot	b8dac67364	Update dependency go to v1.25.8 (forgejo) (#11521 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11521 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-06 03:53:06 +01:00
Renovate Bot	c929c50863	Update dependency katex to v0.16.33 (forgejo) (#11520 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11520 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-06 02:22:14 +01:00
Renovate Bot	3b0b13a882	Update dependency dayjs to v1.11.19 (forgejo) (#11519 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11519 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-06 02:21:15 +01:00
Renovate Bot	0f2f5017a0	Update CodeMirror (forgejo) (#11517 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11517 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-06 01:09:08 +01:00
Oliver Eikemeier	757eb2f267	chore: handle error types consistently (#9873 ) Some error types are used inconsistently or wrong: - `forgejo.org/modules/git.ErrNotExist` is meant to be a value error: <[modules/git/error.go#L23](https://codeberg.org/forgejo/forgejo/src/tag/v13.0.2/modules/git/error.go#L23)> - `forgejo.org/models/repo.ErrRepoNotExist` is meant to be a value error: <[models/repo/repo.go#L750](https://codeberg.org/forgejo/forgejo/src/tag/v13.0.2/models/repo/repo.go#L750)> - `errors.Is(logErr, &net.OpError{})` is always `false`: <[services/context/context_response.go#L188](https://codeberg.org/forgejo/forgejo/src/tag/v13.0.2/services/context/context_response.go#L188)> - `forgejo.org/models/issues.ErrIssueContentHistoryNotExist` is used inconsistently: <[models/issues/content_history.go#L211](https://codeberg.org/forgejo/forgejo/src/tag/v13.0.2/models/issues/content_history.go#L211)> Decided to use a value, since the structure is small and to be in line with the above errors. These issued where found with the [errortype](https://codeberg.org/fillmore-labs/errortype) linter and add this to Makefile as part of the linter suite. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9873 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Oliver Eikemeier <eikemeier@fillmore-labs.com> Co-committed-by: Oliver Eikemeier <eikemeier@fillmore-labs.com>	2026-03-06 00:48:06 +01:00
Renovate Bot	06f0788e00	Update module github.com/markbates/goth to v1.82.0 (forgejo) (#11450 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11450 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-05 23:42:14 +01:00
Renovate Bot	c896f480d4	Update dependency mermaid to v11.12.3 (forgejo) (#11385 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11385 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-03-05 21:58:26 +01:00
marijnjh	e47957e24c	fix: replace reference to Monaco with CodeMirror in `app.example.ini` (#11507 ) Just a small fix in a comment in the example config file. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11507 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: marijnjh <marijnjh@noreply.codeberg.org> Co-committed-by: marijnjh <marijnjh@noreply.codeberg.org>	2026-03-05 21:32:13 +01:00
Renovate Bot	df9a9cc5e1	Update dependency svgo to v4.0.1 [SECURITY] (forgejo) (#11508 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11508 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-05 14:26:22 +01:00
Renovate Bot	05d98b9729	Update linters (forgejo) (#11448 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-04 18:23:48 +01:00
Renovate Bot	1d1a5ae5e7	Update dependency @vitest/eslint-plugin to v1.6.9 (forgejo) (#11493 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11493 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-04 16:18:15 +01:00
Mathieu Fenniak	99984dac4d	feat: remove admin-level permissions from repo-specific & public-only access tokens (#11468 ) This PR is part of a series (#11311). If the user authenticating to an API call is a Forgejo site administrator, or a Forgejo repo administrator, a wide variety of permission and ownership checks in the API are either bypassed, or are bypassable. If a user has created an access token with restricted resources, I understand the intent of the user is to create a token which has a layer of risk reduction in the event that the token is lost/leaked to an attacker. For this reason, it makes sense to me that restricted scope access tokens shouldn't inherit the owner's administrator access. My intent is that repo-specific access tokens [will only be able to access specific authorization scopes](https://codeberg.org/forgejo/design/issues/50#issuecomment-11093951), probably: `repository:read`, `repository:write`, `issue:read`, `issue:write`, (`organization:read` / `user:read` maybe). This means that most admin access is not intended to be affected by this because repo-specific access tokens won't have, for example, `admin:write` scope. However, administrative access still grants elevated permissions in some areas that are relevant to these scopes, and need to be restricted: - The `?sudo=otheruser` query parameter allows site administrators to impersonate other users in the API. - Repository management rules are different for a site administrator, allowing them to create repos for another user, create repos in another organization, migrate a repository to an arbitrary owner, and transfer a repository to a prviate organization. - Administrators have access to extra data through some APIs which would be in scope: the detailed configuration of branch protection rules, the some details of repository deploy keys (which repo, and which scope -- seems odd), (user:read -- user SSH keys, activity feeds of private users, user profiles of private users, user webhook configurations). - Pull request reviews have additional perms for repo administrators, including the ability to dismiss PR reviews, delete PR reviews, and view draft PR reviews. - Repo admins and site admins can comment on locked issues, and related to comments can edit or delete other user's comments and attachments. - Repo admins can manage and view logged time on behalf of other users. A handful of these permissions may make sense for repo-specific access tokens, but most of them clearly exceed the risk that would be expected from creating a limited scope access token. I'd generally prefer to take a restrictive approach, and we can relax it if real-world use-cases come in -- users will have a workaround of creating an access token without repo-specific restrictions if they are blocked from needed access. Breaking: The administration restrictions introduced in this PR affect both repo-specific access tokens, and existing public-only access tokens. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - Although repo-specific access tokens are not yet exposed to end users, the breaking changes to public-only tokens will be visible to users and require release notes. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11468 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-04 16:17:41 +01:00
Renovate Bot	0dd594baca	Update github.com/cloudflare/circl (indirect) to v1.6.3 [SECURITY] (forgejo) (#11492 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11492 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-04 16:16:46 +01:00
Gusted	5207594b63	chore: update license test (#11485 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11485 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-03-04 16:16:12 +01:00
Michael Kriese	ad6ab32e96	chore(renovate): update config (#11490 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11490 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-03-04 15:20:24 +01:00
nachtjasmin	b21193ee50	chore: use `signal.NotifyContext` over custom implementation (#10311 ) Go 1.16 added the signal.NotifyContext helper utility. `installSignals` could be further inlined in a future iteration, if needed. When reading the [function documentation](https://pkg.go.dev/os/signal#NotifyContext), it becomes clear that this is doing the exact same thing as the old code. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10311 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2026-03-04 00:45:38 +01:00
0ko	8d6812df25	fix(ui): use overflow:auto to avoid scrollbars when they are not needed (#11469 ) Closes forgejo/forgejo#11407 I looked at related Gitea discussions for when it was implemented and it looks like what to use exactly for `overflow` was not discussed, the intention was just to have overflowing content scroll, not to have irrelevant scrollbars appear at all times. - https://github.com/go-gitea/gitea/pull/31683 - https://github.com/go-gitea/gitea/issues/31667 - https://github.com/go-gitea/gitea/pull/26561 But with `max-height` restrictions that are in place only horizontal scrollbars are ever needed on demand. Vertical ones are not needed. For this `auto` works much better than `scroll`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11469 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-04 00:36:54 +01:00
Robert Wolff	d467c2bed7	chore: update licenses and gitignores [skip ci] (#11158 ) … by simply running `make generate-license` and `make generate-gitignore` (last time: `9d2fabc7d3`) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11158 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-03-03 21:42:13 +01:00
Renovate Bot	607f2bb8d7	Update module github.com/valyala/fastjson to v1.6.10 (forgejo) (#11477 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/valyala/fastjson](https://github.com/valyala/fastjson) \| `v1.6.7` -> `v1.6.10` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fvalyala%2ffastjson/v1.6.10?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fvalyala%2ffastjson/v1.6.7/v1.6.10?slim=true) \| --- ### Release Notes <details> <summary>valyala/fastjson (github.com/valyala/fastjson)</summary> ### [`v1.6.10`](https://github.com/valyala/fastjson/compare/v1.6.9...v1.6.10) [Compare Source](https://github.com/valyala/fastjson/compare/v1.6.9...v1.6.10) ### [`v1.6.9`](https://github.com/valyala/fastjson/compare/v1.6.8...v1.6.9) [Compare Source](https://github.com/valyala/fastjson/compare/v1.6.8...v1.6.9) ### [`v1.6.8`](https://github.com/valyala/fastjson/compare/v1.6.7...v1.6.8) [Compare Source](https://github.com/valyala/fastjson/compare/v1.6.7...v1.6.8) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41LjAiLCJ1cGRhdGVkSW5WZXIiOiI0My41LjAiLCJ0YXJnZXRCcmFuY2giOiJmb3JnZWpvIiwibGFiZWxzIjpbImRlcGVuZGVuY3ktdXBncmFkZSIsInRlc3Qvbm90LW5lZWRlZCJdfQ==--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11477 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-03 21:36:25 +01:00
oliverpool	a0d6970442	fix: prevent panic on gitlab import (releases/issues) (#11282 ) It is unfortunately all mixed up, because refreshing the data, means breaking the tests. And changing the code means needing fresh data. - tests: ignore some more headers and sort the rest when dumping http responses - code: fixed #10234 by requesting the latest issues first. - tests: created a new repo to replace the disappeared repo, needed for the skip-numbers test - refreshed the testdata. - follow-up fixes to get the tests green. - including a cherry-pick of https://github.com/go-gitea/gitea/pull/36295 and #11272 Co-authored-by: Joakim Olsson <joakim@unbound.se> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11282 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: patdyn <patdyn@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2026-03-03 21:36:14 +01:00
Mathieu Fenniak	3d6acf5e8c	ci: add `semgrep` detection for API code ignoring repo-specific access tokens (#11476 ) This PR is part of a series (#11311). Prevents the usage of three internal APIs in the web API code: - `repo_model.SearchRepoOptions{}` without an `AuthorizationReducer` - `organization.SearchTeamRepoOptions{}` without an `AuthorizationReducer` - `access_model.GetUserRepoPermission()`, which doesn't take an `AuthorizationReducer` -- use `GetUserRepoPermissionWithReducer` instead. A couple lingering usages are marked with `// nosemgrep: ...` as they have been inspected and considered correct as-is. The `GetUserRepoPermission` is tested via the `.semgrep/tests` files; the other rules have been tested manually. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11476 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-03 17:55:35 +01:00
forgejo-renovate-action	cfc8a6701a	Update dependency swagger-ui-dist to v5.31.1 (forgejo) (#11374 )	2026-03-03 02:33:46 +01:00
0ko	a0faae2764	fix(ui/mde): inputs in table/link insertion modals (#11341 ) Fixes #11268 Fixes regression of #9614 Calling `initDisabledInputs` wasn't effective for template contents, so inputs in MDEs spawned by repo-legacy.js on comment editing were broken. Now repo-legacy.js also calls it when it spawns a new MDE. Co-authored-by: Gusted <Gusted@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11341 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-02 23:32:40 +01:00
Mathieu Fenniak	6bac9e29e7	Revert "fix: ensure actions logs are transferred when a task is done (#10008 )" (#11462 ) This reverts commit `d4951968f0`, #10008. When Forgejo cancels a job server-side, for example due to an additional push to an open PR, it immediately archives the logs from DBFS to disk due to the changes in #10008. Then, the runner recognizes that the job status is cancelled and it attempts to flush its pending logs to Forgejo, resulting in warnings being logged: ``` forgejo-runner.log:time="2026-02-23T01:32:11+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:11+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:11+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:12+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:13+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:14+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:16+01:00" level=info msg="runner: received shutdown signal" forgejo-runner.log:time="2026-02-23T01:32:16+01:00" level=info msg="runner: shutdown initiated, waiting [runner].shutdown_timeout=0s for running jobs to complete before shutting down" forgejo-runner.log:time="2026-02-23T01:32:16+01:00" level=info msg="[poller] shutdown begin, 1 tasks currently running" forgejo-runner.log:time="2026-02-23T01:32:16+01:00" level=info msg="forcing the jobs to shutdown" forgejo-runner.log:time="2026-02-23T01:32:18+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 forgejo-runner.log:time="2026-02-23T01:32:24+01:00" level=warning msg="uploading final logs failed, but will be retried: already_exists: log file has been archived" task_id=51 ``` This appears to be the cause of the `push-cancel` end-to-end test failing since #10008 was merged. https://code.forgejo.org/forgejo/end-to-end/actions/runs/4985/jobs/8/attempt/1 The `push-cancel` test case itself seems to succeed, but then the test process aborts with `return 1`. Doesn't reproduce locally. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11462 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-03-02 15:34:09 +01:00
Renovate Bot	ddcf37fdfe	Update module golang.org/x/net to v0.51.0 [SECURITY] (forgejo) (#11447 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11447 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-02 13:56:59 +01:00
Renovate Bot	9803d002ce	Update module github.com/SaveTheRbtz/zstd-seekable-format-go/pkg to v0.8.0 (forgejo) (#11451 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11451 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-02 13:37:56 +01:00
jaylinski	cce5f868ce	chore(Dockerfile.rootless): remove legacy config file support (#11098 ) This legacy support was added in version 8. We now have version 14, so this deprecated feature can be confidently removed. See `dad16cd589` for a detailed explanation. Docs PR: https://codeberg.org/forgejo/docs/pulls/1740 Co-authored-by: Jakob Linskeseder <jakob@linskeseder.com> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11098 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: jaylinski <jaylinski@noreply.codeberg.org> Co-committed-by: jaylinski <jaylinski@noreply.codeberg.org>	2026-03-02 06:03:39 +01:00
panc	b921d5bdb3	fix(ui): fix dashboard some style issues (#11461 ) 1. Remove excess left and right margins 2. Remove excess bottom margin 3. Fixed the missing top rounded corner when repo is 0 \| Before \| After \| \|----\|----\| \| ![Screenshot From 2026-02-26 04-02-03](/attachments/37da4f21-ae28-4708-a6be-a3421ebf5717) \| ![Screenshot From 2026-02-26 04-01-39](/attachments/20cd29c4-0cb7-49ec-b7bb-99568364b4b7) \| \| ![Screenshot From 2026-02-26 04-03-02](/attachments/d238275e-f231-4ae3-8de6-9418452ed6eb) \| ![Screenshot From 2026-02-26 04-03-09](/attachments/eed862ef-b1db-46ac-aba0-9ac3089024c7) \| \| ![image](/attachments/157bbc3e-2cdc-45c6-b4ca-236b3620f867) \| ![Screenshot From 2026-03-01 19-50-41](/attachments/f22d963d-86d7-4c17-831a-307f990b1696) \| Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11461 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-03-02 05:04:57 +01:00
AngryDove	44501c80eb	feat: add trace logging for oauth2 callback (#11175 ) This change is to enable some additional trace logging for oauth2. Initial setups can be a real pain to debug, and getting JWT back for debug purpose helps a lot i.e. checking claims, roles, groups. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11175 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: AngryDove <angrydove@noreply.codeberg.org> Co-committed-by: AngryDove <angrydove@noreply.codeberg.org>	2026-03-02 02:08:21 +01:00
Renovate Bot	59447e2171	Update module code.superseriousbusiness.org/exif-terminator to v0.11.1 (forgejo) (#11463 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11463 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-01 23:29:15 +01:00
Renovate Bot	19474cab61	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.10.1 (forgejo) (#11449 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-03-01 23:10:37 +01:00
Mathieu Fenniak	b394e66d5f	docs: add release notes for PR #11458	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	0da4505a49	feat: implement fine-grained access tokens in /repos/issues/search	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	2192184d9b	feat: implement fine-grained access tokens in /repos/search	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	0eca229d15	feat: implement fine-grained access tokens in /teams/{id}/repos *Breaking: /teams/{id}/repos previously allowed read access to private repositories even if a "public-only" access token was in-use. This has been restricted to only return public repositories in this case.	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	cac675bc21	feat: implement fine-grained access tokens on /users/{username}/repos & /orgs/{org}/repos Breaking: when using a public-only access tokens, private repositories were not filtered out by the `/users/{username}/repos` or `/orgs/{org}/repos` APIs. This access has been removed in this change.	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	a309db27f2	feat: implement fine-grained access tokens in /user/repos Breaking: a user's own public-only access tokens were previously visible in the `/users/repos` API. This access has been removed in this change.	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	4bd81d3363	feat: add authorization reducer support to SearchRepoOptions	2026-03-01 10:54:43 -07:00
Mathieu Fenniak	e870b9cb74	docs: add release notes for PR #11457	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	b9be4b7648	feat: implement fine-grained access tokens in /repositories/{id} Breaking: accessing the `/repositories/{id}` API with a public-only access token did not restrict read access to only public repositories. As part of a consolidation of permission logic with repo-specific access tokens, this access has not been restricted.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	bbb7d52fc0	feat: implement fine-grained access tokens in /repos/{owner}/{repo}/pulls/{index}/requested_reviewers	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	f9a2167105	feat: implement fine-grained access tokens in /repos/{owner}/{repo}/pulls & /repos/{owner}/{repo}/compare/{basehead} APIs As these APIs only work on forks, and it's not possible to change the visibility of a fork from its parent, only testing the API access pattern against the head is sufficient. Also it is not a breaking change due to checkTokenPublicOnly middleware already enforcing this for public-only scopes, and the lack of ability to change a fork's visibility.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	94dd94c2c0	feat: implement fine-grained access tokens in issue dependency & blocking modification APIs Breaking: Public-only tokens previously had the capability to make issue dependencies and block issues w/ data from private repositories through these APIs, which has been revoked by this change to support fine-grained access tokens.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	26ffe3106c	feat: implement fine-grained access tokens in /repos/{owner}/{repo}/issues/{index}/blocks Breaking: Public-only tokens previously had the capability to view private repositories through this API, which has been revoked by this change to support fine-grained access tokens.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	e4ee1a2756	feat: implement fine-grained access tokens in /repos/{owner}/{repo}/issues/{index}/dependencies Breaking: Public-only tokens previously had the capability to view private repositories through this API, which has been revoked by this change to support fine-grained access tokens.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	0628776cad	feat: implement fine-grained access tokens in /repos/{owner}/{repo}/issues/{index}/timeline	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	0c2ece0ae7	feat: implement fine-grained access tokens in /teams/{id}/repos/{org}/{repo} *Breaking: /teams/{id}/repos/{org}/{repo} previously allowed read access to private repositories even if a "public-only" access token was in-use. This has been restricted to only return public repositories in this case.	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	c89504d573	feat: implement fine-grained access tokens in /user/subscriptions & /users/{username}/subscriptions	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	9c748e87e1	feat: implement fine-grained access tokens in /user/starred & /users/{username}/starred	2026-03-01 17:05:53 +01:00
Mathieu Fenniak	5582faa0c7	refactor: split AuthorizationReducer into a base RepositoryAuthorizationReducer interface	2026-03-01 17:05:53 +01:00
0ko	7055fb7056	merge commit: i18n: translations update from Codeberg Translate (#11344 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11344 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-03-01 10:32:14 +01:00
Codeberg Translate	77282e9ca1	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Laquin <laquin@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Tamil <tamil@noreply.codeberg.org> Co-authored-by: Vaibhav Sunder <vaibhavswire@gmail.com> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: daltux <daltux@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: hasecilu <hasecilu@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: jlsun <jlsun@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: lanticy <lanticy@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant_HK/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-03-01 08:04:28 +00:00
Mathieu Fenniak	48da8f9888	feat: implement repo-specific access tokens broadly for universal API permission checks (#11437 ) Repository-specific personal access tokens will allow a user's access tokens to be restricted to accessing zero-or-more specific repositories. Currently they can be configured as "All", or "Public only", and this project will add a third configuration option allowing specific repositories. This PR is part of a series (#11311), and builds on the infrastructure work in #11434. In this PR, repository-specific access tokens are implemented on the universal permission checks performed by the API middleware, affecting ~182 API endpoints that perform permission checks based upon repositories referenced in their API path (eg. `/v1/api/repos/{owner}/{repo}/...`). Breaking change: API access with a public-only access token would previously return a `403 Forbidden` error when attempting to access a private repository where the repository is on the API path. As part of incorporating the public-only logic into the centralized permission check, these APIs will now return `404 Not Found` instead, consistent with how repository-specific access tokens, and other permissions checks, are implemented in order to reduce the risk of data probing through error messages. For larger context on the usage and future incoming work, the description of #11311 can be referenced. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - As there is no end-user accessibility to create repo-specific access tokens, this functionality will not be accessible to end-users yet. But the breaking change in error APIs for public-only access tokens will be visible to end-users. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11437): <!--number 11437 --><!--line 0 --><!--description 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-->implement repo-specific access tokens broadly for universal API permission checks. Breaking:* API access with a public-only access token would previously return a `403 Forbidden` error when attempting to access a private repository where the repository is on the API path. As part of incorporating the public-only logic into the centralized permission check, these APIs will now return `404 Not Found` instead, consistent with how most permission checks are implemented in order to reduce the risk of data probing through error messages.<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11437 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-28 19:47:06 +01:00
Mathieu Fenniak	f21955caa5	feat: implement repo-specific access tokens in git operations (#11452 ) Repository-specific personal access tokens will allow a user's access tokens to be restricted to accessing zero-or-more specific repositories. Currently they can be configured as "All", or "Public only", and this project will add a third configuration option allowing specific repositories. This PR is part of a series (#11311), and builds on the infrastructure work in #11434. In this PR, repository-specific access tokens are implemented in `CheckRepoScopedToken`, which is a specific codepath used by git operations to check the permissions of an access token. For larger context on the usage and future incoming work, the description of #11311 can be referenced. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [ ] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - As repo-specific access tokens are not exposed to end-users, this PR does not require release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11452 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-28 18:00:23 +01:00
Renovate Bot	9c8ae0622f	Update dependency minimatch to v10.2.3 [SECURITY] (forgejo) (#11441 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11441 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-02-28 02:11:18 +01:00
Mathieu Fenniak	ccf5a96bb6	test: add integration test utility for fine-grained tokens	2026-02-27 17:17:29 +01:00
Mathieu Fenniak	2f19237a14	feat: add GetUserRepoPermissionWithReducer	2026-02-27 17:17:29 +01:00
Mathieu Fenniak	635f13a07e	feat: add APIContext.Reducer computed from access token	2026-02-27 17:17:29 +01:00
Mathieu Fenniak	44c18465b5	feat: services/authz package for evaluating fine-grained access token	2026-02-27 17:17:29 +01:00
Mathieu Fenniak	a1eff6f0dc	feat: backend DB model for fine-grained repo access tokens	2026-02-27 17:17:29 +01:00
Myers Carpenter	2d4a3e5658	fix(models): deduplicate project sorting values and add unique constraints (#11334 ) Project columns and cards use a sorting field for ordering, but nothing prevents duplicate values from being inserted. This causes unpredictable ordering and makes swap-based reordering unsafe. Additionally, the same issue can be added to a project multiple times, which shouldn't be possible. This PR adds a migration to clean up existing data and enforce three unique constraints: - (project_id, sorting) on project_board — one sorting value per column per project - (project_id, issue_id) on project_issue — one card per issue per project - (project_board_id, sorting) on project_issue — one sorting value per card per column The migration deduplicates existing rows and reassigns sequential sorting values before adding the constraints. Changes - Migration: fix duplicate sorting values in project_board and project_issue, remove duplicate (project_id, issue_id) rows, add three unique constraints - MoveColumnsOnProject: two-phase swap (negate then set) to avoid constraint collisions - MoveIssuesOnProjectColumn: three-phase approach with duplicate validation and sorted lock ordering - UpdateColumn: always persist sorting field (allows setting to 0) - GetDefaultColumn: query max sorting before auto-creating - createDefaultColumnsForProject: explicit sequential sorting - changeProjectStatus: only set ClosedDateUnix when closing ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11334 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Myers Carpenter <myers@maski.org> Co-committed-by: Myers Carpenter <myers@maski.org>	2026-02-27 16:25:20 +01:00
panc	a4821c2bf9	fix(ui): update sort dropdown structure for consistency across templates (#11423 ) Main modified pages `/milestones`, `/issues`, `/pulls` and `/user/repo/projects` \| Before \| After \| \|----\|----\| \| ![image](/attachments/0cbb14b9-2231-4a91-917b-1304663dbc2a) \| ![image](/attachments/2dd5c3d2-a531-450b-a602-14355d9af2a6) \| Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11423 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-02-24 04:21:59 +01:00
Renovate Bot	8531c059f6	Update renovate Docker tag to v43.31.1 (forgejo) (#11409 ) Co-authored-by: Renovate Bot <bot@kriese.eu> Co-committed-by: Renovate Bot <bot@kriese.eu>	2026-02-23 06:54:58 +01:00
0ko	f9a22b335e	fix(ui): hardcode sort options in search syntax hint, improve look (#11381 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9109 Fix issue reported by @mahlzahn that the string was confusing translators and they translated the part that wasn't meant to be translated. Part of this fix was to replace custom IterWithTr with simple dict iteration to allow for placeholders in strings. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11381 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org>	2026-02-23 06:03:23 +01:00
Mathieu Fenniak	0ae6235386	fix: allow Actions runner to recover tasks lost during fetching from intermittent errors (#11401 ) Probably fixes (or improves, at least) https://code.forgejo.org/forgejo/runner/issues/1391, paired with the runner implementation https://code.forgejo.org/forgejo/runner/pulls/1393. When the FetchTask() API is invoked to create a task, unpreventable environmental errors may occur; for example, network disconnects and timeouts. It's possible that these errors occur after the server-side has assigned a task to the runner during the API call, in which case the error would cause that task to be lost between the two systems -- the server will think it's assigned to the runner, and the runner never received it. This can cause jobs to appear stuck at "Set up job". The solution implemented here is idempotency in the FetchTask() API call, which means that the "same" FetchTask() API call is expected to return the same values. Specifically, the runner creates a unique identifier which is transmitted to the server as a header `x-runner-request-key` with each FetchTask() invocation which defines the sameness of the call, and the runner retains the value until the API call receives a successful response. The server implementation returns the same tasks back if a second (or Nth) call is received with the same `x-runner-request-key` header. In order to accomplish this is records the `x-runner-request-key` value that is used with each request that assigns tasks. As a complication, the Forgejo server is unable to return the same `${{ secrets.forgejo_token }}` for the task because the server stores that value in a one-way hash in the database. To resolve this, the server regenerates the token when retrieving tasks for a second time. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11401 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-22 23:24:38 +01:00
Mathieu Fenniak	5486bfa535	Revert "Replace Node.js with data.forgejo.org/oci/node 24-trixie (forgejo) (#11384 )" (#11406 ) This reverts commit `9f3ab71647`. cascade-setup-end-to-end no longer works after this was merged: https://codeberg.org/forgejo/forgejo/actions/runs/140733/jobs/0/attempt/2 ``` /var/run/act/actions/69/9e734ffd2a2ec8ed9c2f818ed272523f52007304147edf2d7efae8d6e0c3a5/cascading-pr.sh:26: repo_curl: forgejo-curl.sh api_json https://codeberg.org/api/v1/repos/forgejo/forgejo/pulls/11401 curl: option -H: error encountered when reading a file curl: try 'curl --help' or 'curl --manual' for more information /var/run/act/actions/69/9e734ffd2a2ec8ed9c2f818ed272523f52007304147edf2d7efae8d6e0c3a5/cascading-pr.sh:1: pr_get_origin: rm -fr /tmp/tmp.nZPEP759PH fail /var/run/act/actions/69/9e734ffd2a2ec8ed9c2f818ed272523f52007304147edf2d7efae8d6e0c3a5/cascading-pr.sh ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11406 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-22 22:31:04 +01:00
Earl Warren	d4951968f0	fix: ensure actions logs are transferred when a task is done (#10008 ) Logs moving out of the database to the filesystem (actions_module.TransferLogsAndUpdateLogInStorage) did not happen in the following cases: - the runner does not send an UpdateLog message with NoMore == true - StopTask is called (canceling from the web.UI, canceling a scheduled task) This is fixed by consistently calling actions_service.TransferLogsAndUpdateLogInStorage when a task is completed by: - UpdateTaskByState if it concludes with Status.IsDone - StopTask Test coverage exists at: - TestActionsDownloadTaskLogs will fail if UpdateTaskByState does not call TransferLogsAndUpdateLogInStorage when when task.Status.IsDone() stat .../tests/integration/gitea-integration-sqlite/data/actions_log/user2/actions-download-task-logs/48/72.log.zst: no such file or directory - TestActionNowDoneNotification will fail if StopTask returns on error when calling TransferLogsAndUpdateLogInStorage Error Trace: .../tests/integration/actions_run_now_done_notification_test.go:142 Refs https://codeberg.org/forgejo/forgejo/issues/9999 --- Note on backporting: it cannot be easily backported to v11.0 because it would require a more involved backport to untangle circular dependencies. It is also not essential in the context of https://codeberg.org/forgejo/forgejo/issues/9999 for instances being polluted by logs that stay in the database. The new [cron job](https://codeberg.org/forgejo/forgejo/pulls/10009) that disposes of them will take care of those daily and they will not be growing the database indefinitely. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10008): <!--number 10008 --><!--line 0 --><!--description ZW5zdXJlIGFjdGlvbnMgbG9ncyBhcmUgdHJhbnNmZXJyZWQgd2hlbiBhIHRhc2sgaXMgZG9uZQ==-->ensure actions logs are transferred when a task is done<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10008 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2026-02-22 05:11:22 +01:00
Michael Kriese	8776ee2491	chore(renovate): prepare for operator (#11392 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11392 Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-02-21 14:47:55 +01:00
Renovate Bot	9df957ec16	Update dependency minimatch to v10.2.1 (forgejo) (#11388 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11388 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-21 11:40:45 +01:00
Renovate Bot	9f3ab71647	Replace Node.js with data.forgejo.org/oci/node 24-trixie (forgejo) (#11384 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11384 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-21 11:39:31 +01:00
Renovate Bot	87a06633ea	Update dependency forgejo/release-notes-assistant to v1.6.0 (forgejo) (#11376 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11376 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-20 08:11:14 +01:00
Antonin Delpeuch	45db3c98a3	feat: link CI job to its defining workflow file (#11216 ) Fixes #11036. This adds a link from a CI run to the file that its workflow was taken from. \| Before \| After \| \|---------\|---------\| \| ![screenshot](/attachments/49741492-c98b-4a9a-b8bf-f6628698e008) \| ![image](/attachments/8ec7dd76-d4ba-4f58-a63a-dd7886e16aae) \| Before: * the `test.yml` link points to the list of other runs (`/org123/repo2/actions?workflow=test.yml`) After: * the `test.yml` link points to the workflow definition (`/org123/repo2/src/commit/55b048363c8cfa7d9e8b5cade5c75681bd0c7328/.forgejo/workflows/test.yml`) * the `all runs` link points to the list of other runs (`/org123/repo2/actions?workflow=test.yml`) I have tried to retain the existing link to the list of workflow runs (moving it to a separate link), but I am not sure if this link should be retained at all and if so how. ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/11216): <!--number 11216 --><!--line 0 --><!--description bGluayBDSSBqb2IgdG8gaXRzIGRlZmluaW5nIHdvcmtmbG93IGZpbGU=-->link CI job to its defining workflow file<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11216 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2026-02-20 03:11:29 +01:00
Renovate Bot	515b27707e	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.6 (forgejo) (#11359 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11359 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-19 06:52:59 +01:00
Renovate Bot	922ecda81f	Update module code.forgejo.org/forgejo/runner/v12 to v12.7.0 (forgejo) (#11363 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.6.4` -> `v12.7.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.7.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.4/v12.7.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.7.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.7.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.6.4...v12.7.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1383): <!--number 1383 --><!--line 0 --><!--description ZmVhdDogaW50cm9kdWNlIHNlY3JldCBVUkxzIHRvIHJ1bm5lciBjb25maWd1cmF0aW9u-->feat: introduce secret URLs to runner configuration<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1380): <!--number 1380 --><!--line 0 --><!--description ZmVhdDogYWxsb3cgY29uZmlnIGBzZXJ2ZXIuY29ubmVjdGlvbnNgIGNvbmZpZyB0byBwb2xsIG11bHRpcGxlIEZvcmdlam8gc2VydmVycyBzaW11bHRhbmVvdXNseQ==-->feat: allow config `server.connections` config to poll multiple Forgejo servers simultaneously<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1378): <!--number 1378 --><!--line 0 --><!--description ZmVhdDogYWRkIGNvbm5lY3Rpb25zIHRvIFJ1bm5lciBjb25maWd1cmF0aW9u-->feat: add connections to Runner configuration<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1381): <!--number 1381 --><!--line 0 --><!--description Zml4OiBkbyBub3QgZW1pdCB3YXJuaW5ncyBpZiBtYXhfcmV0cmllcywgaW5pdGlhbF9kZWxheSBhcmUgYWJzZW50-->fix: do not emit warnings if max\_retries, initial\_delay are absent<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1375): <!--number 1375 --><!--line 0 --><!--description Zml4OiBlbnN1cmUgbG9nIGJ1ZmZlciBmbHVzaCBldmVuIGlmIGEgY29tbWFuZCBlcnJvciBvY2N1cnMgaW4gaG9zdCAmIGx4YyBleGVjdXRvcg==-->fix: ensure log buffer flush even if a command error occurs in host & lxc executor<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1371): <!--number 1371 --><!--line 0 --><!--description Zml4OiBraWxsIGNvbnRhaW5lcnMgZXhwbGljaXRseSwgbWFrZSBQb2RtYW4gYmVoYXZlIGxpa2UgRG9ja2Vy-->fix: kill containers explicitly, make Podman behave like Docker<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1367): <!--number 1367 --><!--line 0 --><!--description Zml4OiBwcmVtYXR1cmUgdGFzayBjb21wbGV0aW9uIHdoZW4gY2hhaW5pbmcgbXVsdGlwbGUgcmV1c2FibGUgd29ya2Zsb3dz-->fix: premature task completion when chaining multiple reusable workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1359): <!--number 1359 --><!--line 0 --><!--description Zml4OiBwZXJtaXQgbGFyZ2VyIHNpbmdsZS1saW5lIG91dHB1dCBzaXplcyB0byBiZSBwYXJzZWQgZnJvbSBGT1JHRUpPX09VVFBVVCBmaWxl-->fix: permit larger single-line output sizes to be parsed from FORGEJO\_OUTPUT file<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1385): <!--number 1385 --><!--line 0 --><!--description cmVmYWN0b3I6IGludHJvZHVjZSBTdHJpbmcoKSBmb3IgTGFiZWw=-->refactor: introduce String() for Label<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1122): <!--number 1122 --><!--line 0 --><!--description aW50cm9kdWNpbmcgZXBoZW1lcmFsLXJ1bm5lcnM=-->introducing ephemeral-runners<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1377): <!--number 1377 --><!--line 0 --><!--description cmVmYWN0b3I6IHNlcGFyYXRlIENvbmZpZyBmcm9tIG9uLWRpc2sgZm9ybWF0-->refactor: separate Config from on-disk format<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1348): <!--number 1348 --><!--line 0 --><!--description dGVzdDogcnVuIGludGVncmF0aW9uIHRlc3RzIHdpdGggcm9vdGxlc3MgUG9kbWFu-->test: run integration tests with rootless Podman<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1364): <!--number 1364 --><!--line 0 --><!--description UHJlYWxsb2NhdGUgc3BhY2UgZm9yIHZhcmlhYmxlcyBpbiBydW5fY29udGV4dA==-->Preallocate space for variables in run\_context<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1373): <!--number 1373 --><!--line 0 --><!--description cmVmYWN0b3I6IHB1bGwgY2FjaGUgc2VydmVyIG1hbmFnZW1lbnQgb3V0IG9mIHJ1bm5lcg==-->refactor: pull cache server management out of runner<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1370): <!--number 1370 --><!--line 0 --><!--description dGVzdDogc2ltcGxpZnkgdGVzdCBvZiBzZXJ2aWNlIGhlYWx0aCBjaGVja3M=-->test: simplify test of service health checks<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1372): <!--number 1372 --><!--line 0 --><!--description cmVmYWN0b3I6IGFkZCAxLXRvLTEgY2xpZW50LXRvLXJ1bm5lciByZWxhdGlvbnNoaXAgaW50byBwb2xsZXI=-->refactor: add 1-to-1 client-to-runner relationship into poller<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1365): <!--number 1365 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1naXQvdjUgdG8gdjUuMTYuNQ==-->Update module github.com/go-git/go-git/v5 to v5.16.5<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1366): <!--number 1366 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGVybSB0byB2MC40MC4w-->Update module golang.org/x/term to v0.40.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1363): <!--number 1363 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvc3lzIHRvIHYwLjQxLjA=-->Update module golang.org/x/sys to v0.41.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1361): <!--number 1361 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9ydW5uZXIgRG9ja2VyIHRhZyB0byB2MTIuNi40-->Update data.forgejo.org/forgejo/runner Docker tag to v12.6.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1362): <!--number 1362 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuNA==-->Update dependency forgejo/runner to v12.6.4<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNS4xIiwidXBkYXRlZEluVmVyIjoiNDMuMTUuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11363 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-19 04:23:56 +01:00
xtex	a72d2c07cf	feat(ui): enable text auto-spacing (#11340 ) See #11020 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11340 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-committed-by: xtex <xtexchooser@duck.com>	2026-02-18 18:58:16 +01:00
Andreas Ahlenstorf	73b96a41bc	chore: remove field ephemeral from runner registration response (#11350 ) Remove the field `ephemeral` from the response to runner registration requests made using the HTTP API (POST to `/repos/{owner}/{repo}/actions/runners` and friends) that was introduced with https://codeberg.org/forgejo/forgejo/pulls/9962. The client already knows that it requested an ephemeral runner. Therefore, the information is redundant. It can be included again should a compelling use case arise. This part of the HTTP API hasn't been released yet. Therefore, it is safe to remove the field. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests for Go changes (can be removed for JavaScript changes) - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I ran... - [x] `make pr-go` before pushing ### Tests for JavaScript changes (can be removed for Go changes) - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11350 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-02-18 16:49:44 +01:00
0ko	8c2bb0f65b	chore(i18n): deduplicate common packages related strings (#11345 ) Our package registries types have many things in common, so they have many shared strings like ```json "packages.installation": "Installation", ``` but not all and not consistently. For example, some packages duplicate these strings: ```json "packages..install": "To install the package, run the following command:", "packages..registry": "Setup this registry from the command line:", "packages..repository": "Repository info", "packages..dependencies": "Dependencies", ``` while other packages have them customized: ```json "packages.cargo.install": "To install the package using Cargo, run the following command:", "packages.composer.install": "To install the package using Composer, run the following command:", "packages.conan.install": "To install the package using Conan, run the following command:", "packages.conda.install": "To install the package using Conda, run the following command:", ``` While it's ok for them to have custom strings, I don't see need to duplicate the same generic strings. Even though Weblate provides tools to simplify maintenance of duplicated strings, our files still end up being bloated. In this PR I deduplicated the strings listed above under a `common` key. There already was a generic shared string for Dependencies, that I just re-used. Also fixed strings in Arch packages, which were saying Depends with meaning of Dependencies. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11345 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-02-18 04:07:14 +01:00
0ko	149f9a9ba9	fix(ui): improve a few English strings (#11343 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11343 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-18 04:06:15 +01:00
0ko	f8bee35e77	fix(i18n): unhardcode label exclusion tooltips (#11333 ) Followup to #10702 where two new strings were hardcoded in the template. ## Changes - added as translatable strings - made the template use a variable to avoid making it a long unreadable - an unrelated change where tests related to this area of the template are moved to a separate file - they were created in Forgejo: `c92b4b12c8`, `192177fc88` ## Testing Testing translations of all individual strings is considered not needed. Added test for tmpl logic which was missing and that I've touched. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11333 Reviewed-by: Luis Adame <luisadame@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-02-17 04:28:27 +01:00
Nils Goroll	a81fc2a290	chore: move backend-checks CI checks to Makefile: `make pr-go` (#11053 ) This is to have a simple and consistent make target for developers to locally run the checks which the CI will also run. The goal is to avoid wasting review cycles on CI failures. To have a single source of truth, the CI is adjusted to call the same make target. Additional checks should no longer be added to the CI workflow, but rather to the makefile. The pull request template is adjusted to remind of running this make target. CI output is improved by using a simple bash script which uses sed to add `##[group]` tags to "make --debug=b" output and filter out messages which usually do not contribute to understanding. While this approach has limits and depends on the specific debug output format of GNU make, it avoids adjusting the makefile itself for additional CI beautification, contributing to maintainability. - no tests needed (this is purely a build change) - docs: hint added to PR template - no release notes needed Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11053 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-02-17 02:41:40 +01:00
limiting-factor	d4de6a4e5c	fix: UserTypeRemoteUser is an eligible organization member (#11326 ) A [safeguard][0] was added to ensure a team member is not an organization. A [discussion][1] concluded that remote users should not yet be allowed to be team members, at least until it is implemented (by F3 or ActivityPub). As [gof3 v3.11.25][2] has support for [teams][3], remote users need to be added as an eligible team member, otherwise compliance tests for the Forgejo internal driver [implementation][4] fail. The IsUserByID function is renamed to IsAnEligibleTeamMemberByID to clarify its purpose. The TestIsUserConsistency is removed because the IsUser function is used in [an entirely different context][5] and there is no reason to ensure both are consistent. A unit test is added for IsAnEligibleTeamMemberByID as a replacement and also verifies organizations are not considered eligible. [0]: https://codeberg.org/forgejo/forgejo/pulls/9757 [1]: https://codeberg.org/forgejo/forgejo/pulls/9757#issuecomment-7802255 [2]: https://code.forgejo.org/f3/gof3/releases/tag/v3.11.25 [3]: https://code.forgejo.org/f3/gof3/pulls/484/files [4]: `9c565a9b37 (diff-241521b6ebc5a1da660421daea23da1dd1086158)` [5]: `b66a76686d/routers/api/v1/api.go (L299-L308)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11326 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-02-17 02:39:46 +01:00
Nils Goroll	f8a8dd2c29	chore: remove `_old_uid` hack (#11277 ) The virtual session code creates an in-memory session, and only upon release does it copy it to the actual session store. This makes a lot of sense to avoid operations on session stores with potentially high cost for I/O. This commit removes a weird hack used in this code: virtual sessions were always created with an _old_uid=0 key/value pair, which was taken into account when checking if the session needed to be persisted. As I could not find _any_ use of _old_uid in the code base, this looks like something worth removing. The first ever mention of _old_uid is `b33f7f792b` and even there it is part of a newly added file with no additional information. So likely code copied over from another project? - no tests to add, remove or change - not relevant for documentation - not relevant for release notes Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11277 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-02-17 00:52:56 +01:00
0ko	32c6f64f39	fix(e2e): use empty user for overflow menu test (#11337 ) Potentially fixes one of the E2E failures that started to occur lately where the last tab (Starred repos) can overflow on user2's profile on CI. Replaced the user by the one that has no counters on the tabs. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11337 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-02-16 23:03:19 +01:00
Manuel Ganter	5b6bbabd74	feat: implement ephemeral runners (#9962 ) As described in [this comment](https://gitea.com/gitea/act_runner/issues/19#issuecomment-739221) one-job runners are not secure when running in host mode. We implemented a routine preventing runner tokens from receiving a second job in order to render a potentially compromised token useless. Also we implemented a routine that removes finished runners as soon as possible. Big thanks to [ChristopherHX](https://github.com/ChristopherHX) who did all the work for gitea! Rel: #9407 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9962 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Manuel Ganter <manuel.ganter@think-ahead.tech> Co-committed-by: Manuel Ganter <manuel.ganter@think-ahead.tech>	2026-02-16 18:56:56 +01:00
0ko	b085be779c	i18n(*): migrate 92 strings to json (#11325 ) Previous migration: https://codeberg.org/forgejo/forgejo/pulls/10979 The white holes in between the red diff lines of the INI files aren't a migration bug: they are orphan strings that weren't cleaned up yet from those files. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11325 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-02-16 17:38:56 +01:00
0ko	7c4f684c68	merge commit: i18n(next): translations update from Codeberg Translate (#10978 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10978 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-02-16 16:41:12 +01:00
Codeberg Translate	0ac16105b8	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: AbelFalcon <abelfalcon@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Benniest <benniest@noreply.codeberg.org> Co-authored-by: Bullbagaren <bullbagaren@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Fnurkla <fnurkla@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: IPv6 <ipv6@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Sagor Islam <sagor_islam@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Victor E. Chocho <vechocho@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: daltux <daltux@noreply.codeberg.org> Co-authored-by: dimiro1 <dimiro1@noreply.codeberg.org> Co-authored-by: hamburger <hamburger@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: hpcfzl <hpcfzl@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: jrosh <jrosh@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kdh8219 <kdh8219@monamo.dev> Co-authored-by: kmpm <kmpm@noreply.codeberg.org> Co-authored-by: lordwektabyte <lordwektabyte@users.noreply.translate.codeberg.org> Co-authored-by: lukesnc <lukesnc@noreply.codeberg.org> Co-authored-by: marlena <marlena@noreply.codeberg.org> Co-authored-by: nikee <nikee@noreply.codeberg.org> Co-authored-by: psenakdotsk <psenakdotsk@noreply.codeberg.org> Co-authored-by: sebastiaanspeck <sebastiaanspeck@noreply.codeberg.org> Co-authored-by: sieni <sieni@noreply.codeberg.org> Co-authored-by: sinsky <sinsky@noreply.codeberg.org> Co-authored-by: sinsky <sinsky@users.noreply.translate.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: stkw0 <stkw0@noreply.codeberg.org> Co-authored-by: tace16 <tace16@noreply.codeberg.org> Co-authored-by: thomasboom <thomasboom@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tok/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bn/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tok/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-02-16 14:30:17 +00:00
panc	e1cecbd276	fix(ui): prevent label overflow in PR CI checks on mobile (#11287 ) fix #11266 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11287 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-02-16 12:59:14 +01:00
Renovate Bot	b66a76686d	Update x/tools to v0.42.0 (forgejo) (#11321 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 08:32:01 +01:00
Renovate Bot	1b0be3d5b3	Update dependency eslint-plugin-unicorn to v63 (forgejo) (#11322 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 08:28:13 +01:00
Renovate Bot	fc9cf6b140	Update dependency postcss-loader to v8.2.1 (forgejo) (#11319 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11319 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 08:27:51 +01:00
Renovate Bot	d5c64889aa	Update dependency asciinema-player to v3.14.15 (forgejo) (#11318 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11318 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 08:27:40 +01:00
Renovate Bot	6bf689fd75	Update module github.com/klauspost/compress to v1.18.4 (forgejo) (#11223 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11223 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 06:45:57 +01:00
Robert Wolff	b8a99f2eb4	feat: support C3 language highlighting in file editor (#11241 ) See https://codeberg.org/Codeberg/Community/issues/2371#issuecomment-10520506 Closes: Codeberg/Community#2371 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11241 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-16 06:40:36 +01:00
Baptiste Daroussin	9762f9ea20	fix: portable error reporting for PAM (#11296 ) Linux PAM reports "Authentication Failure" OpenPAM reports "authentication error" This resulted in forgejo reporting error 500 on FreeBSD when pam authentication failed. Add a sentinel error to make this portable: ErrInvalidCredentials Signed-off-by: Baptiste Daroussin <bapt@FreeBSD.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11296 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Baptiste Daroussin <bapt@FreeBSD.org> Co-committed-by: Baptiste Daroussin <bapt@FreeBSD.org>	2026-02-16 05:57:01 +01:00
famfo	9767cebc42	fix: remove trailing null byte for local connection (#11295 ) Fixes #633 I have written end-to-end tests against HAProxy in https://code.forgejo.org/forgejo/end-to-end/pulls/1578 and also written unit tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11295 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-02-16 05:55:50 +01:00
Florian Pallas	cf17b5fad9	fix: correct malformed `CreateTeamOption` example (#11093 ) The example was not a valid map, which caused issues with some openapi yaml converters. I gave the two options proper values and also added them to the other team structs so the examples are identical. Also sorted them as they are enumerated in the [unit model definition](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/models/unit/unit.go), which is why the diff is a bit ugly. Fixes #9881 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11093 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Florian Pallas <mail@fpallas.com> Co-committed-by: Florian Pallas <mail@fpallas.com>	2026-02-16 05:55:20 +01:00
Nils Philippsen	5589182c54	fix: honor org/user project in new issue (#9906 ) Previously, when a project id was passed into the new issue form as a query parameter, it wouldn’t be selected if the project belonged to the user or organization instead of directly to the repository. Resolves forgejo/forgejo#8489 Signed-off-by: Nils Philippsen <nils@redhat.com> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9906 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Nils Philippsen <nilsph@noreply.codeberg.org> Co-committed-by: Nils Philippsen <nilsph@noreply.codeberg.org>	2026-02-16 05:52:47 +01:00
Renovate Bot	ba2020a333	Update renovate to v43.15.1 (forgejo) (#11302 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-16 05:51:18 +01:00
panc	d6fc66c066	fix: improve alignment of icons in navbar (#11259 ) Add `flex` or `inline-flex` to the direct parent element of the SVG icon in the navigation bar to make the overall alignment look better. Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11259 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-02-15 19:11:43 +01:00
Renovate Bot	e00471b00e	Update dependency webpack to v5.105.1 (forgejo) (#11284 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11284 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-15 18:36:38 +01:00
Renovate Bot	2253d8bf06	Update dependency @codemirror/view to v6.39.14 (forgejo) (#11251 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11251 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-15 18:02:00 +01:00
Renovate Bot	576c49c1f2	Update dependency sortablejs to v1.15.7 (forgejo) (#11293 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11293 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-15 16:22:47 +01:00
Renovate Bot	e811313298	Update dependency vue to v3.5.28 (forgejo) (#11265 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-14 23:39:27 +01:00
Mathieu Fenniak	e325bfe6c3	fix: improve SQLite "database is locked" errors by increasing default `SQLITE_TIMEOUT` (take 2) (#11292 ) Increase the default `SQLITE_TIMEOUT` from 500ms to 60s. In #11179 this was bumped up to 5s. But when that was backported to v14 in #11220, it failed consistently in CI through a couple increases, until it was bumped up further to 60s. This PR updates the `forgejo` branch to the same so that in the future when Forgejo 15 is released, it isn't regressed. `test-sqlite` has been failing on `forgejo` occasionally as well, so this increase is justified on this branch for this reason as well. Putting aside the tests, I think a high value for the timeout (this 60s) is generally safer for production usage than a small timeout. The worst case with a high timeout is a slow request when there is high write contention on the DB. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - Will update* the documentation for the default value if approved. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Other changes without a feature or bug label - [PR](https://codeberg.org/forgejo/forgejo/pulls/11292): <!--number 11292 --><!--line 0 --><!--description aW1wcm92ZSBTUUxpdGUgImRhdGFiYXNlIGlzIGxvY2tlZCIgZXJyb3JzIGJ5IGluY3JlYXNpbmcgZGVmYXVsdCBgU1FMSVRFX1RJTUVPVVRgICh0YWtlIDIp-->improve SQLite "database is locked" errors by increasing default `SQLITE_TIMEOUT` (take 2)<!--description--> <!--end release-notes-assistant--> Co-authored-by: forgejo-backport-action <forgejo-backport-action@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11292 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-02-14 22:34:09 +01:00
0ko	89bff31287	fix(ui): apply navbar min-height correctly, fix jitter on mobile (#11274 ) Replaces https://codeberg.org/forgejo/forgejo/pulls/11271 This rule was problematic and didn't quite make sense: * the intention is to have a navbar that is 48px+1px border * we apply `min-height:49px` to: `#navbar` with intention of making it 49px tall total, with border * but we also apply it to `#navbar .navbar-left/right` * elements `#navbar .navbar-left/right` become 49px tall * their parent `#navbar` becomes 49px+1px border = 50px, overriding what was done in step 2 This height missmatch had an incompatibility with this definition for open menu inside of navbar on mobile, causing jitter when the menu is opened/closed, because it was expecting navbar body to be 48px, but due to the rule that was removed it was actually 49px. ```css #navbar.navbar-menu-open .navbar-left .navbar-mobile-right { min-height: 48px; } ``` The fix is to only apply `min-height` to `#navbar`'s children. At least `.navbar-left` is always expected to be present unconditionally on all pages. This does make the navbar 1px shorter. If we still want a 50px navbar but without the bug let me know and I'll adjust. ### Preview by @panc From https://codeberg.org/forgejo/forgejo/pulls/11271, also applies to this PR. \| Before \| After \| \|----\|----\| \| <video src="/attachments/515fdfc1-cb97-46af-88ac-9bb0e216a996" title="Screencast From 2026-02-13 19-56-32" controls></video> \| <video src="/attachments/133d1499-4660-402d-8082-f407b3644e5c" title="Screencast From 2026-02-13 19-57-29" controls></video> \| Reported-by: panc <panc@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11274 Reviewed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-14 14:57:44 +01:00
Michael Kriese	62ad4669f9	ci: ensure correct node version (#11280 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11280 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-02-13 22:11:26 +01:00
Roberto Vidal	ef7acda8be	fix: return bad request on malformed packages upload input (#10954 ) I noticed that the wrong content type in an `/upload` request can trigger a 500, and I'm guessing it is more appropriate to return 400 instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10954 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Roberto Vidal <roberto.vidal@ikumene.com> Co-committed-by: Roberto Vidal <roberto.vidal@ikumene.com>	2026-02-13 18:04:19 +01:00
panc	cd088f21a8	fix(ui): fix gap consistency between navbar items on mobile (#11262 ) The navigation menu on mobile is divided into two sections, but there is no gap between them. I referred to the following code and set the gap to `gap: .35714286em` ```CSS .ui.secondary.menu { margin-left: 0; margin-right: 0; gap: .35714286em; } ``` \| Before \| After \| \|--------\|-------\| \| ![image](/attachments/b3235ead-d2b2-4383-aae5-fcd7906d8414) \| ![image](/attachments/5136c0c6-85ac-47b3-9a4e-ca12bc19caca) \| \| Before \| After \| \|--------\|-------\| \| ![image](/attachments/f5425f2f-0a07-4127-bfab-5eb53b54df1e) \| ![image](/attachments/86bdfae8-fd6d-429a-b89d-fe83acf37170) \| Another thing to note is that the dot of the stopwatch extends beyond the background. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11262 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: panc <pan0xc@foxmail.com> Co-committed-by: panc <pan0xc@foxmail.com>	2026-02-13 13:19:17 +01:00
wandhydrant	9ea9582c9b	fix: cleanup of multi-platform container images (#11246 ) This change fixes an issue that makes Forgejo clean up too many versions of a container package even though it should keep them according to the rules set for the package. The issue affects multi-platform container images. Forgejo adds a package version for each platform (for example `linux/amd64`, `linux/arm64`) in addition to the actual tag (for example `0.6.0` or `latest`). This results in rows in the table `package_version` similar to this (unimportant columns omitted for brevity): \| lower_version \| created_unix \| \|---\|---\| \| `latest` \| `1768742887`\| \| `0.6.0` \| `1768742886` \| \| `sha256:038e...` \| `1768742886` \| \| `sha256:fc38...` \| `1768742886` \| \| `0.5.0` \| `1768742864` \| \| `sha256:806d...` \| `1768742864` \| \| `sha256:0a19...` \| `1768742864` \| \| `0.4.0` \| `1768742848` \| \| `...` \| `...` \| The code assumes that the first `<keep count>` entries can be ignored and considers every entry after `<keep count>` as eligible for cleanup. That doesn't work for multi-platform container images because, for `<keep count>=5`, it considers version `0.4.0` as eligible. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/11246): <!--number 11246 --><!--line 0 --><!--description Y2xlYW51cCBvZiBtdWx0aS1wbGF0Zm9ybSBjb250YWluZXIgaW1hZ2Vz-->cleanup of multi-platform container images<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11246 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: wandhydrant <wandhydrant@noreply.codeberg.org> Co-committed-by: wandhydrant <wandhydrant@noreply.codeberg.org>	2026-02-12 03:12:32 +01:00
famfo	172bb4cefe	chore(lint): enable nilnil (#11235 ) The general consensus I have gotten from past contributions is that `return nil, nil` is an antipattern in Forgejo, especially because: ```go val, err := Func() if err != nil { return } val.Func() ``` can easily lead to a nil pointer dereference. This PR merely enables the lint and ignores all currently broken files. In addition to this PR, a tracking issue to keep track of re-enabling nilnil linting on the ignored files could be useful. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11235 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-02-11 19:08:24 +01:00
Michael Kriese	a6e1b4fe03	chore(renovate): disable major updates on stable branches by default (#11243 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11243 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-02-11 18:21:25 +01:00
Robert Wolff	7791984040	fix: correct Reviewed-on URL in merge message for subpath deployments (#11240 ) Fixes: #11238 ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Co-authored-by: Diego Díez <diegodiez.ddr@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11240 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-11 18:12:29 +01:00
Andreas Ahlenstorf	c01404a373	chore: remove deprecated auth methods from API docs (#11232 ) Remove the documentation for the deprecated authentication methods Token and AccessToken. The functionality remains in place because it's still in use. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11232 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-02-11 17:59:43 +01:00
Renovate Bot	75d67e8ef2	Update Node.js to v24.13.1 (forgejo) (#11236 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11236 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-11 16:23:00 +01:00
Robert Wolff	5470fd0131	fix(ui): make relative time consistent with other text when selected (#11231 ) Defines new css colours for theming: ```css --color-selection-bg: var(--color-primary-light-1); --color-selection-fg: var(--color-white); ``` which are then used both in the `base.css` and in the relative-time shadow object. This, is how it looks for me when selecting before and after this patch (my Browser’s accent colour used for selection is orange): \| \| Before \| After \| \|---\|---\|---\| \| Forgejo Light \| ![image](/attachments/aaee443e-c921-47bd-8c9f-d7260ef2b45e) \| ![image](/attachments/e3089770-d9bb-40fa-ba68-e263ac2b0a7a) \| \| Forgejo Dark \| ![image](/attachments/cecefff6-39b4-4b8f-977f-773c3ec65297)\| ![image](/attachments/cb6f0882-ad14-4463-952a-1c71505279db) \| \| Gitea Light \| ![image](/attachments/cd4200fa-3a6e-47e2-a1cd-c887dd6c0fbe) \| ![image](/attachments/6294af16-9cf8-4ae7-acf3-6bd35c03e070) \| \| Gitea Dark \| ![image](/attachments/60193699-9b37-498e-b472-f37580c20755) \| ![image](/attachments/42f5d4d1-e39a-424d-a65e-edb312300867) \| Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11231 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-11 15:34:31 +01:00
Renovate Bot	92cb4ca019	Update module github.com/mattn/go-sqlite3 to v1.14.34 (forgejo) (#11233 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11233 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-11 15:03:52 +01:00
Renovate Bot	26d6b484fe	Update module golang.org/x/net to v0.50.0 (forgejo) (#11237 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11237 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-11 07:32:12 +01:00
Robert Wolff	54d952ee66	feat(ui): support additional job status selection in dropdown menu on Actions tab (#11156 ) ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. ### Disclaimer Generative AI (ChatGPT) was used to debug the e2e test, with copied code lines below threshold of originality. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11156 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-11 03:22:53 +01:00
Renovate Bot	ec803eb2d3	Update module golang.org/x/image to v0.36.0 (forgejo) (#11226 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11226 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-10 18:38:05 +01:00
Mathieu Fenniak	51d0188533	refactor: replace `Value()` from Option[T] with `Get()` & `ValueOrZeroValue()` (#11218 ) `Option[T]` currently exposes a method `Value()` which is permitted to be called on an option that has a value, and an option that doesn't have a value. This API is awkward because the behaviour if the option doesn't have a value isn't clear to the caller, and, because almost all accesses end up being `.Has()?` then `OK, use .Value()`. `Get() (bool, T)` is added as a better replacement, which both returns whether the option has a value, and the value if present. Most call-sites are rewritten to this form. `ValueOrZeroValue()` is a direct replacement that has the same behaviour that `Value()` had, but describes the behaviour if the value is missing. In addition to the current API being awkward, the core reason for this change is that `Value()` conflicts with the `Value()` function from the `driver.Valuer` interface. If this interface was implemented, it would allow `Option[T]` to be used to represent a nullable field in an xorm bean struct (requires: https://code.forgejo.org/xorm/xorm/pulls/66). _Note:_ changes are extensive in this PR, but are almost all changes are easy, mechanical transitions from `.Has()` to `.Get()`. All of this work was performed by hand. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11218 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-10 16:41:21 +01:00
Renovate Bot	a53371b103	Update module golang.org/x/crypto to v0.48.0 (forgejo) (#11225 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11225 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-10 15:05:13 +01:00
0ko	bd5685812e	feat(ui): convert org members list to grid (#11127 ) Replaces #10789 Convert the layout from flex-list helpers to a CSS-native grid. This allows to having buttons in different rows aligned to each other while keeping the layout responsive, i.e. looking good on both desktop and mobile. ### Preview (desktop) \|Before\|After\| \|-\|-\| \|![j1](/attachments/85f244bf-0538-4c5d-8300-ae4f6744e5f3)\|![new1](/attachments/a23c60f7-d7a3-4cb7-abc6-657541992204)\| ### Preview (mobile) \|Before\|After\| \|-\|-\| \|![g1](/attachments/32b01933-652f-47e7-b97d-e35262cbbf44)\|![new2](/attachments/927fb458-632c-4699-ba8b-bcb6a73ffe3d)\| ### Preview (Guest) \|Before\|After\| \|-\|-\| \|![i1](/attachments/66d0d62d-5500-4c6d-8913-aad2cf69d1ab)\|![new3](/attachments/0333b14e-2952-4c5b-9051-185840167dca)\| ## Testing Automated tests were added to make sure that actions in this list are still working, and for basic template logic. No tests were added for layout because layout being correct is an abstract concept that is difficult to explain to Playwright. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11127 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org>	2026-02-10 12:50:55 +01:00
Renovate Bot	4ce2212c9f	Update module code.forgejo.org/forgejo/runner/v12 to v12.6.4 (forgejo) (#11222 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.6.3` -> `v12.6.4` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.4?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.3/v12.6.4?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.6.4`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.6.4) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.6.3...v12.6.4) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1231): <!--number 1231 --><!--line 0 --><!--description Zml4OiByZXNwZWN0ICJhdXRvbW91bnQiIGRvY2tlciBzZXR0aW5nIGluIG9uZS1qb2I=-->fix: respect "automount" docker setting in one-job<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1354): <!--number 1354 --><!--line 0 --><!--description Zml4OiBpbnRlcnBvbGF0ZSBqb2IgbmFtZSBhZnRlciBtYXRyaXggZXhwYW5zaW9u-->fix: interpolate job name after matrix expansion<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1333): <!--number 1333 --><!--line 0 --><!--description Zml4OiBJc29sYXRlIHN0ZXAgY29udGFpbmVycyBuZXR3b3JrIG5hbWVzcGFjZSB0byBtYXRjaCBkb2NrZXI6Ly8gYWN0aW9uIHNlbWFudGljcw==-->fix: Isolate step containers network namespace to match docker:// action semantics<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1356): <!--number 1356 --><!--line 0 --><!--description Zml4IEdldE91dGJvdW5kSXAgYXV0by1kZXRlY3Rpb24gb24gaXB2Ni1vbmx5IHN5c3RlbXM=-->fix GetOutboundIp auto-detection on ipv6-only systems<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1352): <!--number 1352 --><!--line 0 --><!--description QWxlcnQgdXNlcnMgdGhhdCBkZWZhdWx0cyBhcmUgdXNlZCB3aGVuIC0tY29uZmlnIGlzIG5vdCBwcm92aWRlZC4=-->Alert users that defaults are used when --config is not provided.<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1349): <!--number 1349 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjUuNw==-->Update dependency go to v1.25.7<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1351): <!--number 1351 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS41LjI=-->Update dependency forgejo/release-notes-assistant to v1.5.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1347): <!--number 1347 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby1ydW5uZXItc2VydmljZS15cSB0byB2NC41Mi4y-->Update dependency forgejo-runner-service-yq to v4.52.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1344): <!--number 1344 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuNA==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1342): <!--number 1342 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9ydW5uZXIgRG9ja2VyIHRhZyB0byB2MTIuNi4z-->Update data.forgejo.org/forgejo/runner Docker tag to v12.6.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1343): <!--number 1343 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMw==-->Update dependency forgejo/runner to v12.6.3<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My40LjMiLCJ1cGRhdGVkSW5WZXIiOiI0My40LjMiLCJ0YXJnZXRCcmFuY2giOiJmb3JnZWpvIiwibGFiZWxzIjpbImRlcGVuZGVuY3ktdXBncmFkZSIsInRlc3Qvbm90LW5lZWRlZCJdfQ==--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11222 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-10 04:38:56 +01:00
Mathieu Fenniak	c0cb271f15	fix: improve SQLite "database is locked" errors by increasing default `SQLITE_TIMEOUT` (#11179 ) As noted in https://codeberg.org/forgejo/forgejo/issues/10900#issuecomment-10339634, `TestAPICreateIssueParallel` is failing intermittently in Forgejo CI. Based upon this intermittent failure, I've made these changes: - Increase the parallel run of the test from 10 instances to 100, which caused this test to fail consistently and reliably on my dev workstation. The test execution time at 100 parallel invocations is only ~4 seconds. - Increase the default `SQLITE_TIMEOUT` from 500ms to 5s, which caused this test to succeed consistently on my dev workstation. Is 5000ms the right setting? 🤷 On local testing, this specific test failed... - 2500ms: failed 1/1 times - 3000ms: failed 1/3 times - 3500ms: failed 0/10 times ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. -- https://codeberg.org/forgejo/docs/pulls/1775 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11179 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-09 21:31:16 +01:00
Renovate Bot	3a61158e1e	Update dependency @codemirror/commands to v6.10.2 (forgejo) (#11201 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11201 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 19:59:16 +01:00
Renovate Bot	79a8e92bec	Update dependency vite-string-plugin to v2 (forgejo) (#11213 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 18:46:35 +01:00
Renovate Bot	520a77f372	Update dependency eslint-plugin-regexp to v3 (forgejo) (#11207 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 18:38:25 +01:00
Andreas Ahlenstorf	f7873ba393	fix: normalize secrets consistently, display accurate help (#11052 ) Forgejo's UI claims that whitespace is removed from the beginning and the end of the values of Forgejo Actions variables and secrets. However, that is not correct. The entered values are stored as-is. Only CRLF is replaced with LF, which is also the desired behaviour. This PR changes the incorrect text which is also no longer displayed as placeholder but as a proper help text below the input fields. Furthermore, tests were added to verify the behaviour. While adding tests, I discovered and fixed another inconsistency. Depending on whether secrets were managed using the UI or the HTTP API, they were treated differently. CRLF in secrets entered in the UI was correctly replaced with LF while secrets created using the HTTP API kept CRLF. Fixes #11003. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11052 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-02-09 17:02:18 +01:00
Luis	dde6c60782	fix: normalize issue title case when matching prefixes (#11190 ) Normalizes the issue/pr title case when searching if it contains any of the wip prefixes, which are also normalized, just in case. Fixes #11189 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11190 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Luis <luis@adame.dev> Co-committed-by: Luis <luis@adame.dev>	2026-02-09 15:38:14 +01:00
Renovate Bot	baca0086d2	Update dependency postcss-nesting to v14 (forgejo) (#11210 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11210 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 08:00:50 +01:00
Renovate Bot	f8c7c312b8	Update renovate to v43 (forgejo) (major) (#11199 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11199 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 06:57:39 +01:00
0ko	ccf61c93bf	feat(ui): consistently use `AppVerNoMetadata` in the footer (#11196 ) Display version without compat metadata for admins too, not just for regular users. It was confusing to some, though I don't remember who got confused. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11196 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-02-09 05:32:34 +01:00
Renovate Bot	0b7ae03be2	Update linters (forgejo) (#11202 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 04:37:25 +01:00
Renovate Bot	c2fcc6fceb	Update x/tools to v0.41.0 (forgejo) (#11203 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-09 03:46:46 +01:00
0ko	31965f2dd7	chore(ui): add integration tests for footer tmpl logic (#11197 ) Slightly related to https://codeberg.org/forgejo/forgejo/pulls/11196, but it has no tests related to the change in that PR. Added tests because I wanted those config options be tested, but haven't found any existing tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11197 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-02-08 23:55:30 +01:00
fauno	b11ceeecaa	fix: only skip explicit >= 0 and leave pessimistic version locking intact (#11153 ) Fixes #11083. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Co-authored-by: f <f@sutty.nl> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11153 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: fauno <fauno@noreply.codeberg.org> Co-committed-by: fauno <fauno@noreply.codeberg.org>	2026-02-08 04:17:55 +01:00
Luis	3f7859f52d	feat: improve label filtering exclusion (#10702 ) Adds a new button on the right side of the label's filter menu items to explicitly exclude labels. The new button is reachable with the keyboard by using the vertical arrow keys to reach the label you want to exclude and then the horizontal arrow keys to select the exclusion button. The new button will only be visible when hovering the menu item or reaching it with the keyboard. Adjusted the alignment of labels when at least one label is selected so that users can clearly discern which labels are selected or not. Resolves #3302 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10702 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Luis <luis@adame.dev> Co-committed-by: Luis <luis@adame.dev>	2026-02-08 00:31:31 +01:00
Shiny Nematoda	239d7168e1	feat: support filtering for issues with multiple assignees (#10552 ) Stores the entire list of AssigneeIDs for each issue in the indexer. This fixes the bug where there were missing entries for issues with assignees while filtering. Note: Will re-index all issues Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10552 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2026-02-07 22:37:33 +01:00
Mathieu Fenniak	cc47a4057f	ci: introduce `semgrep` to prevent using `xorm.Sync()` incorrectly in new migrations (#11142 ) Adds a CI check which detects any usage of xorm's `Sync` method that doesn't include `IgnoreDropIndices: true`, and causes an error. `semgrep` is a semantic grep tool that allows for the relatively easy authoring of linting tools that are customized to a project's specific needs, rather than generic like `golangci` and related tools. Although `semgrep` offers a suite of out-of-the-box rules (and a paid set of rules), neither of those are used here -- only one Forgejo-specific rule is added in `.semgrep/xorm.yaml`. My intent with this change is to introduce the idea and infrastructure of `semgrep` with a single minimal rule. Once in-place, this will become a tool that we can use when we recognize bad coding patterns and wish to correct them permanently, rather than relying on human code review. While generic linting tools do this well for general patterns, this will allow Forgejo to apply domain-specific checks. For example, in #11112, an error indicates that it might be appropriate for us to always use `.StorageEngine("InnoDB")` when using an xorm engine -- if we made that determination, it could be cemented in-place with a `semgrep` rule relatively easily. This specific rule looks for any access for xorm's `Sync` or `SyncWithOptions` methods on the `xorm.Engine` or `xorm.Session`. They are then considered errors if they don't include `IgnoreDropIndices: true`. This is typically correct and safe, but can also be ignored when specifically needed. In the `.semgrep/tests` folder, test code is added which validates that the `semgrep` rule matches the expected patterns; this self-test is run before `semgrep` runs on the PR in CI. As a demonstration, when `IgnoreDropIndices` is removed from a migration, here's an error: https://codeberg.org/forgejo/forgejo/actions/runs/135750/jobs/12/attempt/1 ``` models/forgejo_migrations/v14b_add-action_run-preexecutionerrorcode.go ❯❯❱ semgrep.xorm-sync-missing-ignore-drop-indices xorm Sync operation may drop indices if used on an incomplete bean definition for an existing table. Use SyncWithOptions with IgnoreDropIndices: true instead. 22┆ _, err := x.SyncWithOptions(xorm.SyncOptions{}, new(ActionRun)) ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11142 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-07 21:52:43 +01:00
Renovate Bot	64ff61c046	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.4 (forgejo) (#11104 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.3` → `v3.1.4` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.4`](https://code.forgejo.org/actions/setup-forgejo/releases/tag/v3.1.4) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.3...v3.1.4) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/actions/setup-forgejo--> - other - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/869): <!--number 869 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMw==-->Update dependency forgejo/runner to v12.6.3<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/863): <!--number 863 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2FscGluZSBEb2NrZXIgdGFnIHRvIHYzLjIz-->Update data.forgejo.org/oci/alpine Docker tag to v3.23<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/849): <!--number 849 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL29jaS9kZWJpYW4gRG9ja2VyIHRhZyB3aXRoIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2RlYmlhbg==-->Replace code.forgejo.org/oci/debian Docker tag with data.forgejo.org/oci/debian<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/848): <!--number 848 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL29jaS9hbHBpbmUgRG9ja2VyIHRhZyB3aXRoIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2FscGluZQ==-->Replace code.forgejo.org/oci/alpine Docker tag with data.forgejo.org/oci/alpine<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi45My4xIiwidXBkYXRlZEluVmVyIjoiNDIuOTMuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11104 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-07 20:07:02 +01:00
0ko	7e4619df83	feat(ui): responsive releases list (#11080 ) ## Changes I've made releases list more usable on narrow viewports while trying keep the layout unchanged for desktop viewports. To support these changes large amount of Tailwind classes were converted to regular CSS to be applied conditionally via `@media`. While it was possible to just adjust the Tailwind classes to achieve the same behavior, there's a positive effect which is that the repeating HTML of releases generated by template's range is much less verbose and contains fewer long duplicated lines of Tailwind classes. ## Preview ### Desktop Not much changed, but the dot between tag and release name is no more. \|Before\|After\| \|-\|-\| \|![bd](/attachments/a87bf050-03ba-4035-8a0e-7ab4f6e877a2)\|![2d](/attachments/e0c2e052-01c6-4078-b06e-f8ef7b803690)\| ### Mobile \|Before\|After\| \|-\|-\| \|![bm](/attachments/f63a606f-f3f8-435d-8378-0979e93cf7bd)\|![2m](/attachments/0cb6086d-1def-4a86-bb0e-4131e50aae3b)\| Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11080 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2026-02-07 19:15:14 +01:00
Mathieu Fenniak	f24a97f719	fix: newly expanded dynamic matrix jobs can become stuck in a 'blocked' state (#11184 ) The end-to-end tests are currently failing on v15: https://code.forgejo.org/forgejo/end-to-end/actions/runs/4900/jobs/8/attempt/1#jobstep-4-356 This is a regression from #11164. The cause of this regression is: - When the job emitter emits new jobs, it now sets their `Needs` field correctly, fixed in #11164. - If a job has `needs` set to a non-empty array, it will start as status blocked: `db037fca50/models/actions/run.go (L369-L370)` This got past manual testing and the end-to-end test run in #11164 because it is intermittent. If the runner invokes `UpdateTask` multiple times once the status of the job is settled, then the API will invoke the job emitter multiple times -- a second run would unblock the newly blocked jobs. Podman-based runners do this often due to a long cleanup time, and Docker-based runners (like the end-to-end test) can do it randomly depending on a race condition. `db037fca50/routers/api/actions/runner/runner.go (L241-L244)` The fix for this is to reinvoke the job emitter's logic whenever new jobs are created, so that their new blocked state can be reevaluated to see if it is correct or not. This is treated cautiously by examining if new jobs are present. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. - This will be a fix to an unreleased regression within the milestone, and so won't be user-facing. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11184 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-07 14:36:49 +01:00
Robert Wolff	70865730e6	fix(ui)!: remove squash merge committer trailer admin option (#11096 ) fix(ui)!: Remove the instance configuration option `repository.pull-request.ADD_CO_COMMITTER_TRAILERS` (was enabled by default). It was responsible for addition of unexpected trailers to commit messages in squash merges. These trailers were `Co-authored-by: ` and `Co-committed-by: `. Both used the pull request author as value, who is also assigned as the author of the squash merge commit, which they were just repeating. Furthermore, `Co-committed-by: ` is an uncommon commit trailer, and there is only one committer for a commit. The trailers were being added by Forgejo while performing the merge, bypassing user input in the UI and weren't shown in it. See further description and more examples in [#11097](https://codeberg.org/forgejo/forgejo/issues/11097). Closes: #11097 Closes: Codeberg/Community#2030 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11096 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-02-07 12:58:26 +01:00
Renovate Bot	db037fca50	Update dependency webpack to v5.105.0 (forgejo) (#11183 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11183 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-07 02:06:27 +01:00
Nils Goroll	180bd488e1	chore: Add `JWT()` method for convenience and clarity (#11067 ) This slightly simplifies calling code by centralizing the common 3-liner to create a JWT from claims, signed by a key. But more importantly, it reduces the risk of `key.PreProcessToken()` being forgotten, which will become relevant in upcoming PRs: `key.PreProcessToken()` adds the key id to the JWT header, which is important to efficiently validate tokens when multiple validation keys are supported (that is not the case yet) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11067 Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-02-07 01:01:30 +01:00
Renovate Bot	80161b9fd3	Update dependency @codemirror/view to v6.39.12 (forgejo) (#11136 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11136 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-07 00:39:17 +01:00
xrstf	a40e81b755	ensure consistent sort order in TestFeed fixture (#11176 ) This fixes a flake that my previous PR #10933 introduced. Since no individual feed items were previously asserted in the test, the inconsistent sort order never caused an issue before. Thanks to @mfenniak for pointing me in the right direction. ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11176 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: xrstf <git@xrstf.de> Co-committed-by: xrstf <git@xrstf.de>	2026-02-06 20:19:00 +01:00
Renovate Bot	f9f72f20e5	Update renovate to v42.95.2 (forgejo) (#11129 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-06 19:49:23 +01:00
Gusted	7ed496ea37	fix: reflect allowed username change in profile setting (#11171 ) - When working forgejo/forgejo!8714 I did not touch the UI to remove the note and `disabled` attribute. This was not intentional, and was likely caused by me straight going for testing (as the backend code would allow the username change). - Slightly refactor the context to a common function, don't hard error if `CanUserRename` fails but does default to that you cannot rename in that case (which is the standard behavior of OAuth2 users anyway). I already was aware that it seems !8714 wasn't working on Codeberg but someone at FOSDEM pointed it out again, thus the reason for this bug fix. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11171 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-02-06 17:47:30 +01:00
Renovate Bot	c7f54361be	Update dependency forgejo/release-notes-assistant to v1.5.2 (forgejo) (#11169 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11169 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-06 06:57:06 +01:00
Gusted	7f7c2c0918	feat: show note that user has no SSH keys (#11143 ) - Resolves forgejo/forgejo#11064 - Show a note similar to that of GPG keys, when a user has no SSH keys uploaded through Forgejo. The content is recognized as a comment in SSH authorized files format and ends with a newline. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11143 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-02-06 04:43:17 +01:00
Renovate Bot	d9df2337b0	Update module github.com/go-chi/chi/v5 to v5.2.5 (forgejo) (#11170 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11170 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-06 04:33:10 +01:00
Mathieu Fenniak	c7d23fa6e8	fix: when expanding a dynamic matrix, original 'needs' access was lost (#11164 ) Fixes #11163. When expanding a dynamic matrix (or any other dynamic job), the references to the original `needs` of the jobs are lost. This is manually tested, and moderately covered by an automated test. Will follow-up with an end-to-end test after a regression run is complete. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11164 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-05 22:29:51 +01:00
Nils Goroll	f6ba8bac03	Refactor modules/jwtx: Pull out key creation vs. loading This patch only moves code around and splits out two functions from loadOrCreateAsymmetricKey(). The diff is best viewed with -b to ignore white space (indentation) changes. This is done for two reasons: - For future additions, we will need loadAsymmetricKey() only, without the create - The doubly nested immediately invoked closure construction was not exactly helping clarity	2026-02-05 18:33:41 +01:00
Nils Goroll	ecae2459c7	Polish modules/jwtx: key file open mode There is no reason why we should open a key file being written read/write, use O_WRONLY	2026-02-05 18:15:52 +01:00
Nils Goroll	20c1f699bd	Refactor modules/jwtx: signing method resolution golang-jwt/jwt already has a GetSigningMethod() function which we should use to ensure that our signing methods are actually registered. Yet we should also keep our own check against a set of allowed methods such that we do not accidentally accept methods which we are not prepared to support.	2026-02-05 18:06:49 +01:00
Renovate Bot	3e56296108	Update dependency go to v1.25.7 (forgejo) (#11149 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11149 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-05 11:19:46 +01:00
Mathieu Fenniak	462ad7bb33	fix: don't abandon Action jobs waiting for approval (#11145 ) On an open PR that is waiting for job approval, if jobs haven't been approved by the time the abandon timeout occurs they get marked as cancelled. This doesn't match the expectations of abandoned jobs in my opinion, which is that they were never able to be dispatched to a runner (no matching labels), but these jobs never got a chance. They should remain valid and blocked until approved. Discovered while testing #11125, but unrelated to the behaviour fixed there. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11145 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-04 16:00:18 +01:00
Renovate Bot	13b7bdc741	Update dependency globals to v17.3.0 (forgejo) (#11147 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11147 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-04 06:53:53 +01:00
Renovate Bot	14c0f09b54	Update vitest monorepo to v4.0.18 (forgejo) (#11121 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/main/packages/coverage-v8#readme) ([source](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8)) \| [`4.0.16` → `4.0.18`](https://renovatebot.com/diffs/npm/@vitest%2fcoverage-v8/4.0.16/4.0.18) \| ![age](https://developer.mend.io/api/mc/badges/age/npm/@vitest%2fcoverage-v8/4.0.18?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@vitest%2fcoverage-v8/4.0.16/4.0.18?slim=true) \| \| [vitest](https://vitest.dev) ([source](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest)) \| [`4.0.16` → `4.0.18`](https://renovatebot.com/diffs/npm/vitest/4.0.16/4.0.18) \| ![age](https://developer.mend.io/api/mc/badges/age/npm/vitest/4.0.18?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/vitest/4.0.16/4.0.18?slim=true) \| --- ### Release Notes <details> <summary>vitest-dev/vitest (@vitest/coverage-v8)</summary> ### [`v4.0.18`](https://github.com/vitest-dev/vitest/releases/tag/v4.0.18) [Compare Source](https://github.com/vitest-dev/vitest/compare/v4.0.17...v4.0.18) ##### 🚀 Experimental Features - experimental: Add `onModuleRunner` hook to `worker.init` - by [@sheremet-va](https://github.com/sheremet-va) in [#9286](https://github.com/vitest-dev/vitest/issues/9286) [<samp>(ea837)</samp>](`ea837de7d`) ##### 🐞 Bug Fixes - Use `meta.url` in `createRequire` - by [@sheremet-va](https://github.com/sheremet-va) in [#9441](https://github.com/vitest-dev/vitest/issues/9441) [<samp>(e0572)</samp>](`e057281ca`) - browser: Hide injected data-testid attributes - by [@sheremet-va](https://github.com/sheremet-va) in [#9503](https://github.com/vitest-dev/vitest/issues/9503) [<samp>(f8989)</samp>](`f89899cd8`) - ui: Process artifact attachments when generating HTML reporter - by [@macarie](https://github.com/macarie) in [#9472](https://github.com/vitest-dev/vitest/issues/9472) [<samp>(22543)</samp>](`225435647`) ##### [View changes on GitHub](https://github.com/vitest-dev/vitest/compare/v4.0.17...v4.0.18) ### [`v4.0.17`](https://github.com/vitest-dev/vitest/releases/tag/v4.0.17) [Compare Source](https://github.com/vitest-dev/vitest/compare/v4.0.16...v4.0.17) ##### 🚀 Experimental Features - Support openTelemetry for browser mode - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9180](https://github.com/vitest-dev/vitest/issues/9180) [<samp>(1ec3a)</samp>](`1ec3a8b68`) - Support TRACEPARENT and TRACESTATE environment variables for OpenTelemetry context propagation - by [@Copilot](https://github.com/Copilot), hi-ogawa and [@hi-ogawa](https://github.com/hi-ogawa) in [#9295](https://github.com/vitest-dev/vitest/issues/9295) [<samp>(876cb)</samp>](`876cb84c2`) ##### 🐞 Bug Fixes - Improve asymmetric matcher diff readability by unwrapping container matchers - by [@Copilot](https://github.com/Copilot), sheremet-va, hi-ogawa and [@hi-ogawa](https://github.com/hi-ogawa) in [#9330](https://github.com/vitest-dev/vitest/issues/9330) [<samp>(b2ec7)</samp>](`b2ec724a8`) - Improve runner error when importing outside of test context - by [@sheremet-va](https://github.com/sheremet-va) in [#9335](https://github.com/vitest-dev/vitest/issues/9335) [<samp>(2dd3d)</samp>](`2dd3dd839`) - Replace crypto.randomUUID to allow insecure environments (fix [#9](https://github.com/vitest-dev/vitest/issues/9)… - by [@plusgut](https://github.com/plusgut) in [#9339](https://github.com/vitest-dev/vitest/issues/9339) and [#9](https://github.com/vitest-dev/vitest/issues/9) [<samp>(e6a3f)</samp>](`e6a3f8cc7`) - Handle null options in `addEventHandler` [#9371](https://github.com/vitest-dev/vitest/issues/9371) - by [@ThibautMarechal](https://github.com/ThibautMarechal) in [#9372](https://github.com/vitest-dev/vitest/issues/9372) and [#9371](https://github.com/vitest-dev/vitest/issues/9371) [<samp>(40841)</samp>](`40841ff00`) - Typo in browser.provider error - by [@deammer](https://github.com/deammer) in [#9394](https://github.com/vitest-dev/vitest/issues/9394) [<samp>(4b67f)</samp>](`4b67fc25a`) - browser: - Fix `process.env` and `import.meta.env` defines in inline project - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9239](https://github.com/vitest-dev/vitest/issues/9239) [<samp>(b70c9)</samp>](`b70c96121`) - Fix upload File instance - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9294](https://github.com/vitest-dev/vitest/issues/9294) [<samp>(b6778)</samp>](`b67788c69`) - Fix invalid project token for artifacts assets - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9321](https://github.com/vitest-dev/vitest/issues/9321) [<samp>(caa7d)</samp>](`caa7d73d4`) - Log `ErrorEvent.message` when unhandled `ErrorEvent.error` is null - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9322](https://github.com/vitest-dev/vitest/issues/9322) [<samp>(5d84e)</samp>](`5d84eeb91`) - Support `fileParallelism` on an instance - by [@sheremet-va](https://github.com/sheremet-va) in [#9328](https://github.com/vitest-dev/vitest/issues/9328) [<samp>(15006)</samp>](`150065459`) - coverage: - Remove unnecessary `istanbul-lib-source-maps` usage - by [@AriPerkkio](https://github.com/AriPerkkio) in [#9344](https://github.com/vitest-dev/vitest/issues/9344) [<samp>(b0940)</samp>](`b09405375`) - Apply patch from [istanbuljs/istanbuljs#837](https://github.com/istanbuljs/istanbuljs/issues/837) - by [@AriPerkkio](https://github.com/AriPerkkio) and sapphi-red in [#9413](https://github.com/vitest-dev/vitest/issues/9413) and [#837](https://github.com/vitest-dev/vitest/issues/837) [<samp>(e05ce)</samp>](`e05cedbf4`) - fsModuleCache: - Don't store importers in cache - by [@sheremet-va](https://github.com/sheremet-va) in [#9422](https://github.com/vitest-dev/vitest/issues/9422) [<samp>(75136)</samp>](`751364eec`) - Add importers alongside importedModules - by [@sheremet-va](https://github.com/sheremet-va) in [#9423](https://github.com/vitest-dev/vitest/issues/9423) [<samp>(59f92)</samp>](`59f92d403`) - mocker: - Fix mock transform with class - by [@hi-ogawa](https://github.com/hi-ogawa) in [#9421](https://github.com/vitest-dev/vitest/issues/9421) [<samp>(d390e)</samp>](`d390eb527`) - pool: - Validate environment options when reusing the worker - by [@sheremet-va](https://github.com/sheremet-va) in [#9349](https://github.com/vitest-dev/vitest/issues/9349) [<samp>(a8a88)</samp>](`a8a8836e3`) - Handle worker start failures gracefully - by [@AriPerkkio](https://github.com/AriPerkkio) in [#9337](https://github.com/vitest-dev/vitest/issues/9337) [<samp>(200da)</samp>](`200dadb32`) - reporter: - Report test module if it failed to run - by [@sheremet-va](https://github.com/sheremet-va) in [#9272](https://github.com/vitest-dev/vitest/issues/9272) [<samp>(c7888)</samp>](`c78882985`) - runner: - Respect nested test.only within describe.only - by [@Ujjwaljain16](https://github.com/Ujjwaljain16) in [#9021](https://github.com/vitest-dev/vitest/issues/9021) and [#9213](https://github.com/vitest-dev/vitest/issues/9213) [<samp>(55d5d)</samp>](`55d5dad69`) - typecheck: - Improve error message when tsc outputs help text - by [@Ujjwaljain16](https://github.com/Ujjwaljain16) in [#9214](https://github.com/vitest-dev/vitest/issues/9214) [<samp>(7b10a)</samp>](`7b10ab4cd`) - ui: - Detect gzip by magic numbers instead of Content-Type header in html reporter - by [@Copilot](https://github.com/Copilot), hi-ogawa and [@hi-ogawa](https://github.com/hi-ogawa) in [#9278](https://github.com/vitest-dev/vitest/issues/9278) [<samp>(dd033)</samp>](`dd0331632`) - webdriverio: - Fall back to WebDriver Classic [#9244](https://github.com/vitest-dev/vitest/issues/9244) - by [@JustasMonkev](https://github.com/JustasMonkev) in [#9373](https://github.com/vitest-dev/vitest/issues/9373) and [#9244](https://github.com/vitest-dev/vitest/issues/9244) [<samp>(c23dd)</samp>](`c23dd11bd`) ##### [View changes on GitHub](https://github.com/vitest-dev/vitest/compare/v4.0.16...v4.0.17) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Enabled. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi45My4xIiwidXBkYXRlZEluVmVyIjoiNDIuOTMuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11121 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-03 20:11:03 +01:00
Renovate Bot	2f6c817ae6	Update dependency @stylistic/stylelint-plugin to v4.0.1 (forgejo) (#11118 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-03 13:46:34 +01:00
Renovate Bot	bb153f2bc0	Update dependency @vitest/eslint-plugin to v1.6.6 (forgejo) (#11119 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-03 13:29:40 +01:00
Renovate Bot	a43ab6cee2	Update module github.com/go-enry/go-enry/v2 to v2.9.4 (forgejo) (#11105 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11105 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-03 13:27:39 +01:00
Renovate Bot	c6c77dfe34	Update dependency css-loader to v7.1.3 (forgejo) (#11110 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11110 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-03 13:25:25 +01:00
Ori Hoch	233653bf89	fix searching issues by org labels via api (#11109 ) fixes #9028 - when searching issues via repo api, org labels are ignored added integration test that reproduces the bug Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11109 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ori Hoch <ori@uumpa.com> Co-committed-by: Ori Hoch <ori@uumpa.com>	2026-02-03 04:11:30 +01:00
Renovate Bot	eed8dfc1e7	Update module github.com/golang-jwt/jwt/v5 to v5.3.1 (forgejo) (#11090 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11090 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-02 23:57:26 +01:00
Mathieu Fenniak	283a001bb3	fix: cancel runs pending approval when a PR is closed (#11134 ) Fixes #11125. When a PR is closed, cancel any action runs associated with the pull request that are not approved so that they do not remain in the Actions list as a blocked action. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11134 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-02-02 23:20:41 +01:00
Renovate Bot	0b9b1ec045	Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.6.1 (forgejo) (#11120 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-02-01 10:57:16 +01:00
xrstf	995244895a	fix: use an absolute URL for compare links in atom feed (#10933 ) This PR changes the URL format for `/compare/` links in the RSS/Atom feeds to include the full domain. This makes the links consistent with all other URLs in the feeds. Fixes #10168. I tested this on a local Forgejo build with a sample org and a dummy repository as per the original issue. I then fetched the feed to check: ```bash $ curl http://localhost:3000/helloworld.atom \| grep compare % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 4194 0 4194 0 0 297k <id>10: `ed4090ecc2...412413fd40`</id> 0 -- <link href="`ed4090ecc2...412413fd40`" rel="alternate"></link> ``` ## Checklist ### AI Disclosure I used AI to * ask it how to run a single integration test locally because I didn't know about `make test-sqlite#XXX`. ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10933 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: xrstf <git@xrstf.de> Co-committed-by: xrstf <git@xrstf.de>	2026-02-01 10:00:21 +01:00
Renovate Bot	dd62575d5a	Update dependency globals to v17.2.0 (forgejo) (#11111 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11111 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-31 08:58:00 +01:00
Panagiotis "Ivory" Vasilopoulos	81601eab85	feat(activitypub): use structure `@PreferredUsername@host.tld:port` for actors (#9254 ) This modifies usernames of ActivityPub accounts to use the @example@example.tld format with an additional optional port component (e.g. @user@example.tld:42). This allows accounts from ActivityPub servers with more relaxed username requirements than those of Forgejo's to interact with Forgejo. Forgejo would also follow a "de facto" standard of ActivityPub implementations. By separating different information using @'s, we also gain future opportunities to store more information about ActivityPub accounts internally, so that we won't have to rely on e.g. the amount of dashes in a username as my migration currently does. Continuation of Aravinth's work: https://codeberg.org/forgejo/forgejo/pulls/4778 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9254 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-committed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net>	2026-01-30 23:45:11 +01:00
Renovate Bot	90b3352ed5	Update https://data.forgejo.org/actions/cache action to v5.0.3 (forgejo) (#11103 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/cache](https://github.com/actions/cache) \| action \| patch \| `v5.0.2` → `v5.0.3` \| --- ### Release Notes <details> <summary>actions/cache (https://data.forgejo.org/actions/cache)</summary> ### [`v5.0.3`](https://github.com/actions/cache/releases/tag/v5.0.3) [Compare Source](https://github.com/actions/cache/compare/v5.0.2...v5.0.3) ##### What's Changed - Bump `@actions/cache` to v5.0.5 (Resolves: <https://github.com/actions/cache/security/dependabot/33>) - Bump `@actions/core` to v2.0.3 Full Changelog: <https://github.com/actions/cache/compare/v5...v5.0.3> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi45My4xIiwidXBkYXRlZEluVmVyIjoiNDIuOTMuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11103 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-30 07:51:18 +01:00
Renovate Bot	1fa9430c7b	Update module code.forgejo.org/forgejo/runner/v12 to v12.6.3 (forgejo) (#11088 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.6.2` -> `v12.6.3` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.3?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.2/v12.6.3?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.6.3`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.6.3) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.6.2...v12.6.3) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1340): <!--number 1340 --><!--line 0 --><!--description ZmVhdDogdXNlIGBub2RlOmx0c2AgaW5zdGVhZCBvZiBgbm9kZToyMC1idWxsc2V5ZWAgYXMgZGVmYXVsdCBgZG9ja2VyYCBsYWJlbA==-->feat: use `node:lts` instead of `node:20-bullseye` as default `docker` label<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1317): <!--number 1317 --><!--line 0 --><!--description Zml4OiByZXZlcnQgc3dpdGNoIGZyb20gbHhjLWF0dGFjaCB0byBuc2VudGVy-->fix: revert switch from lxc-attach to nsenter<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1338): <!--number 1338 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMg==-->Update dependency forgejo/runner to v12.6.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1331): <!--number 1331 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuMw==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1337): <!--number 1337 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9ydW5uZXIgRG9ja2VyIHRhZyB0byB2MTIuNi4y-->Update data.forgejo.org/forgejo/runner Docker tag to v12.6.2<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi45My4xIiwidXBkYXRlZEluVmVyIjoiNDIuOTMuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11088 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-29 17:36:53 +01:00
viceice	d8ece4596b	fix: "revert Update module github.com/urfave/cli/v3 to v3.6.2 (forgejo) (#10937 )" (#11095 ) reverts commit `53ee80be9e` Again brokes cli https://codeberg.org/forgejo/docs/actions/runs/7243/jobs/0/attempt/1 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11095 Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2026-01-29 10:42:46 +01:00
forgejo-release-manager	fec8b9efb1	chore(release-notes): Forgejo v14.0.2 [skip ci] (#11092 ) https://codeberg.org/forgejo/forgejo/milestone/47805 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11092 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-29 09:22:00 +01:00
Enrique Sanchez Cardoso	cc40a65c5d	feat: detailed permission denied message on push (#10941 ) Resolves: - #10497 - #10496 - #10499 Update the message Forgejo is showing when an user is not allowed to push to a repo: ``` remote: Forgejo: User 'username' is not allowed to push to 'branchname' in 'repo'. remote: If you instead wanted to create a pull request to the branch 'branchname', please use: remote: git push origin HEAD:refs/for/branchname/choose-a-descriptor remote: You might want to replace 'origin' with the name of your Git remote if it is different from origin. You can freely choose the descriptor to set it to a topic. remote: You can learn about creating pull requests with AGit in the docs: https://forgejo.org/docs/latest/user/agit-support/ ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10941): <!--number 10941 --><!--line 0 --><!--description ZGV0YWlsZWQgcGVybWlzc2lvbiBkZW5pZWQgbWVzc2FnZSBvbiBwdXNo-->detailed permission denied message on push<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10941 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Enrique Sanchez Cardoso <enriqueesanchz@gmail.com> Co-committed-by: Enrique Sanchez Cardoso <enriqueesanchz@gmail.com>	2026-01-29 01:48:46 +01:00
Renovate Bot	53ee80be9e	Update module github.com/urfave/cli/v3 to v3.6.2 (forgejo) (#10937 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10937 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-28 13:08:23 +01:00
Renovate Bot	e28e872c1d	Update renovate to v42.93.1 (forgejo) (#11077 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11077 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-28 12:19:15 +01:00
Antonin Delpeuch	12cfb4beb5	fix: allow test delivery for webhooks not enabled for push events (#11073 ) Webhooks not enabled for push events cannot be tested using the "Test delivery" button, because the built-in test payload corresponds to a push event and is therefore filtered out at delivery time if the webhook isn't configured to trigger for such events. This fixes it by delivering the payload for a push event regardless of the webhook's configuration. This has the downside of delivering a payload which isn't necessarily representative of what the webhook will deliver for real, but it would be a significant effort to implement test payloads for all possible event types. We leave this as a follow-up improvement. Fixes #7934. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11073 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2026-01-27 23:19:34 +01:00
Robert Wolff	37ed0605b7	fix(ui): center-align emojis to neighbouring text (#11057 ) ### Testing 1. Create issue with Emoji next to text, e.g. this is a 🐸 with no ℹ️ Information. 2. Observe that the emoji is not anymore top-aligned to the text. (Here a test string with Forgejo’s [custom emojis](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/public/assets/img/emoji): test TEST Test ) - [x] checked on Chromium and Firefox on Linux (ofc) myself - [x] checked on Firefox on MacOS, https://codeberg.org/forgejo/forgejo/pulls/11057#issuecomment-10182195 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11057 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2026-01-27 22:56:22 +01:00
Renovate Bot	daf2e22563	Update module github.com/meilisearch/meilisearch-go to v0.36.0 (forgejo) (#11062 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11062 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-27 22:43:28 +01:00
Nils Goroll	5440aaea21	chore: avoid `log.Fatal()` for jwtx/signingkey (#11066 ) The module calling `log.Fatal()` (which terminates the process) prevents the calling function to enrich the error message with vital information allowing the user to track down problematic configuration directives. Also this was impeding unit tests. One such case is where the path to the specified key can not be created, as demonstrated in the test case. Here the error message is: ``` Error while loading or creating JWT key: Error generating private key ...: mkdir ...: permission denied ``` `log.Fatal()` is kept for `f.Close()` errors which indicate much more severe but very rare underlying issues. Handling these would require broader changes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11066 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-27 22:42:03 +01:00
Mathieu Fenniak	c198082975	fix: empty dynamic matrix can leave action run hanging incomplete (#11063 ) Fixes #11030. When a `strategy.matrix` needs to be evaluated on the output of another job, it can become evaluated into an empty set of jobs. In this case, and assuming no other jobs in the run are active, the run should reach a settled state. The logic to check the other jobs in the run and determine if this state has been hit needs to be explicitly added to the job emitter. To accomplish this change, this action run state logic was extracted out of `UpdateRunJobWithoutNotification` where it could be reused. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11063 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-27 17:10:59 +01:00
Renovate Bot	02bb3ef7a6	Update dependency globals to v17.1.0 (forgejo) (#11061 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11061 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-27 14:08:44 +01:00
Gusted	a9acd29eff	feat: enable SQLite WAL by default (#11059 ) - In order to avoid a database locked message, you either need shared cache or WAL. Shared cache was disabled in as its deprecrated and could cause more good than trouble. Enable WAL by default, it's only non-desirable in very narrow and select situations (NFS filesystem situation) and is otherwise safe as default. - Resolves forgejo/forgejo#10900 Docs: forgejo/docs!1717 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11059 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-27 13:59:01 +01:00
Renovate Bot	8c59260761	Update renovate to v42.92.4 (forgejo) (#11044 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-27 03:19:31 +01:00
Renovate Bot	9f4f6d2c82	Update module github.com/alecthomas/chroma/v2 to v2.23.1 (forgejo) (#10936 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10936 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-27 01:44:14 +01:00
christopher-besch	d9545c503e	fix: decrease watch count when blocking user (#10882 ) Fixes #10881 Call the proper function for each repository the user watches, so adjusting the watch count can be done properly. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10882 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2026-01-26 22:58:22 +01:00
Christoph Mewes	023a894677	chore: fix typos throughout the codebase (#10753 ) This PR fixes a number of typos throughout the entire repository. Running https://github.com/crate-ci/typos and then changing all occurrences that I naively deemed "safe enough". Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10753 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Christoph Mewes <christoph@kubermatic.com> Co-committed-by: Christoph Mewes <christoph@kubermatic.com>	2026-01-26 22:57:33 +01:00
Nils Goroll	d934e0c9fb	chore: refactor signup logic (#10915 ) This PR is in preparation of, but independent of, an upcoming suggestion for a feature addition: * The first commit moves a tiny bit of logic into a separate function to prepare for extension of that logic, avoiding duplication * The second commit moves checking for disabled registrations earlier, which, I think, has merits in terms of performance and resilience (hopefully not significant, but who knows?) * The third commit adds simple unit tests for SignUp() and SignUpPost() to avoid the long-ish roundtrip over integration tests * The forth commit introduces `ctx.Data["DisableRegistrationReason"]` for the signup template to use as the reason printed if `.DisableRegistration` to prepare for other reasons to be added Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10915 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-26 22:55:30 +01:00
Renovate Bot	126e7879e3	Update dependency @github/text-expander-element to v2.9.4 (forgejo) (#10922 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10922 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-26 22:53:03 +01:00
hwipl	c9f81315d6	feat: add `manage_password` to user disable features (#10541 ) Forgejo supports disabling features for users with the configuration options `USER_DISABLED_FEATURES` and `EXTERNAL_USER_DISABLE_FEATURES`. Add `manage_password` that prevents users from configuring passwords. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10541 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: hwipl <hwipl@noreply.codeberg.org> Co-committed-by: hwipl <hwipl@noreply.codeberg.org>	2026-01-26 18:58:39 +01:00
lily	66d83702a3	fix(i18n): remove unneeded special cases for relative time (#10691 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6154 en-US: two days ago -> 2 days ago two weeks ago -> 2 weeks ago two months ago -> 2 months ago two years ago -> 2 years ago Other locales still require changes to ensure that the relative time numbering is consistent. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10691 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: lily <lesson085@gmail.com> Co-committed-by: lily <lesson085@gmail.com>	2026-01-26 15:30:26 +01:00
Nils Goroll	01fbb1499f	fix: migrations/github: avoid getting the first issues page twice (#10798 ) For the previous code with the Page attribute present in ListCursorOptions for page 1, github would not return an "After" cursor, such that the request for page 2 would request what effectively is the content of page 1 a second time. This would lead to an attempt to insert the same issues twice. Note that this is not the only reason why this can happen with the current code base. We fix this particular issue by not using the Page attribute so github does return an "After" cursor. Fixes #10794 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10798 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-26 15:00:35 +01:00
Nils Goroll	b4412c2206	chore: do not pass the full signing key to template (#10967 ) A template should not get (easy) access to a full signing key to prevent accidents. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10967 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-26 14:47:48 +01:00
Nils Goroll	fb2f666535	fix: Wait & retry when primary rate limit are hit for Github migration (#10846 ) This is a successor to #10805, which simply did not work. It is also much simpler and basically a one line change to enable an existing feature in [go-github](https://github.com/google/go-github). Fixes #10845 With this fix and #10798 in place, a migration of a repo with ~3K issues and ~1.3k pull requests finally completed successfully. ## Patch We use SleepUntilPrimaryRateLimitResetWhenRateLimited to instruct the go-github code to wait until the retry time and retry the request when the primary rate limit gets hit. ## Test case TestGitHubDownloadRepo() has been modified such that 403 rate limit errors are injected every 7 requests with a retry time of one second, resulting in the rate limit condition being hit twice with the current tests. The test case confirms that the migration code itself is in fact unaffected by the rate limit being hit. ## Scope This change does not affect secondary rate limits. If the server is restarted during the wait for the rate limit refresh, the migration likely still fails when retried, because inserts for already present database objects will be attempted. This approach effectively puts the task's goroutine to sleep until the retry time, which implies that the respective resources stay allocated. A better approach might be to add the necessary infrastructure to support restarts of migration tasks at a later time, but this is much more involved, because the migration state would need to be saved and/or re-created based on already pulled data. This would also require adding support for database upserts. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10846 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-26 14:47:08 +01:00
0ko	3cafb7fa6c	chore(ui): change /devtest to /-/demo (#11019 ) It has always been largely used for showcasing UI elements but that name didn't work too well for it. Testing: Some of existing tests depend on these pages, making it redundant to create extra tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11019 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-01-26 13:12:25 +01:00
Renovate Bot	89996009b7	Update module github.com/redis/go-redis/v9 to v9.17.3 (forgejo) (#11045 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11045 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-26 12:12:13 +01:00
Renovate Bot	90364be84a	Lock file maintenance (forgejo) (#11047 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11047 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-26 12:09:14 +01:00
christopher-besch	7408bf9b1e	chore: remove dead code in `WatchIfAuto` and general model documentation (#10880 ) I've been reading through the watch model code and found that the `isWrite` flag is dead code — it isn't used anywhere. To be honest I don't see why we should need that anyways. Therefore, I deleted it. Also I've added some comments for the `WatchMode`. It took me quite some time to figure out why there are four options. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10880 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2026-01-26 12:03:08 +01:00
Renovate Bot	c41e3a014e	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.3 (forgejo) (#11014 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.1.1` → `v3.1.3` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.1.3`](https://code.forgejo.org/actions/setup-forgejo/releases/tag/v3.1.3) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.2...v3.1.3) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/actions/setup-forgejo--> - other - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/860): <!--number 860 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMg==-->Update dependency forgejo/runner to v12.6.2<!--description--> <!--end release-notes-assistant--> ### [`v3.1.2`](https://code.forgejo.org/actions/setup-forgejo/releases/tag/v3.1.2) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.1.1...v3.1.2) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/actions/setup-forgejo--> - other - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/852): <!--number 852 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMQ==-->Update dependency forgejo/runner to v12.6.1<!--description--> - [PR](https://code.forgejo.org/actions/setup-forgejo/pulls/846): <!--number 846 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9ydW5uZXIgdG8gdjEyLjYuMA==-->Update dependency forgejo/runner to v12.6.0<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi44NC4yIiwidXBkYXRlZEluVmVyIjoiNDIuODQuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11014 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-26 06:23:26 +01:00
Renovate Bot	c2859215f1	Update module code.forgejo.org/forgejo/runner/v12 to v12.6.2 (forgejo) (#11015 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.6.0` -> `v12.6.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.0/v12.6.2?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.6.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.6.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.6.1...v12.6.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1336): <!--number 1336 --><!--line 0 --><!--description Zml4OiBpbnB1dHMgY29udGFpbmluZyAnLScgZG9uJ3QgZnVuY3Rpb24gaW4gTFhDIGV4ZWN1dG9y-->fix: inputs containing '-' don't function in LXC executor<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1334): <!--number 1334 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2FscGluZSBEb2NrZXIgdGFnIHRvIHYzLjIz-->Update data.forgejo.org/oci/alpine Docker tag to v3.23<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1330): <!--number 1330 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL29jaS9kb2NrZXIgRG9ja2VyIHRhZyB3aXRoIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2RvY2tlciBkaW5k-->Replace code.forgejo.org/oci/docker Docker tag with data.forgejo.org/oci/docker dind<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1322): <!--number 1322 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL2Zvcmdlam8vZm9yZ2VqbyBEb2NrZXIgdGFnIHdpdGggZGF0YS5mb3JnZWpvLm9yZy9mb3JnZWpvL2Zvcmdlam8=-->Replace code.forgejo.org/forgejo/forgejo Docker tag with data.forgejo.org/forgejo/forgejo<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1325): <!--number 1325 --><!--line 0 --><!--description Rml4IHR5cG9zLCBncmFtbWFyIGlzc3VlcyBhbmQgc3BsaXQgbG9uZyBzZW50ZW5jZSBpbiBjb25maWcuZXhhbXBsZS55YW1s-->Fix typos, grammar issues and split long sentence in config.example.yaml<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1329): <!--number 1329 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL29jaS9jaSBEb2NrZXIgdGFnIHdpdGggZGF0YS5mb3JnZWpvLm9yZy9vY2kvY2kgMQ==-->Replace code.forgejo.org/oci/ci Docker tag with data.forgejo.org/oci/ci 1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1328): <!--number 1328 --><!--line 0 --><!--description UmVwbGFjZSBjb2RlLmZvcmdlam8ub3JnL2Zvcmdlam8vcnVubmVyIERvY2tlciB0YWcgd2l0aCBkYXRhLmZvcmdlam8ub3JnL2Zvcmdlam8vcnVubmVyIDEyLjYuMQ==-->Replace code.forgejo.org/forgejo/runner Docker tag with data.forgejo.org/forgejo/runner 12.6.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1327): <!--number 1327 --><!--line 0 --><!--description UmVwbGFjZSBhbHBpbmUgcGFja2FnZXMgd2l0aCBkYXRhLmZvcmdlam8ub3JnL29jaS9hbHBpbmUgbGF0ZXN0-->Replace alpine packages with data.forgejo.org/oci/alpine latest<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1323): <!--number 1323 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi42LjE=-->Update forgejo-runner to v12.6.1<!--description--> <!--end release-notes-assistant--> ### [`v12.6.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.6.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.6.0...v12.6.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1326): <!--number 1326 --><!--line 0 --><!--description Zml4OiBgUEFUSGAgbW9kaWZpY2F0aW9ucyBhcmUgbG9zdCBpbiBMWEMgZXhlY3V0aW9ucw==-->fix: `PATH` modifications are lost in LXC executions<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1318): <!--number 1318 --><!--line 0 --><!--description Zml4OiBzdXBwb3J0ICJjb250YWluZXIubmV0d29yazogaG9zdCIgd2hlbiB1c2luZyBqb2Igc2VydmljZXM=-->fix: support "container.network: host" when using job services<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1321): <!--number 1321 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi42LjA=-->Update forgejo-runner to v12.6.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1311): <!--number 1311 --><!--line 0 --><!--description cmVmYWN0b3I6IHN1cHBvcnQgbXVsdGlwbGUgY2xpZW50cyBpbiBQb2xsZXIgd2l0aCBpbmRlcGVuZGVudCBmZXRjaCBpbnRlcnZhbHM=-->refactor: support multiple clients in Poller with independent fetch intervals<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi44NC4yIiwidXBkYXRlZEluVmVyIjoiNDIuODQuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11015 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-26 04:15:55 +01:00
oidq	8866bf2781	fix: escape HTML tags in inline code blocks in description (#10897 ) Fix rendering of repository descriptions containing HTML symbols inside Markdown inline code block. This patch escapes content within inline code blocks. Resolves #10770. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10897 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oidq <oidq@oidq.dev> Co-committed-by: oidq <oidq@oidq.dev>	2026-01-25 23:10:56 +01:00
Nils Goroll	6412ee12d0	chore: `require.ErrorContains()` is intended, but `require.Errorf()` is used (#11035 ) The two commits in this PR fix test cases which did not work as intended, because `require.Errorf()` was used where `require.ErrorContains()` was intended. The former formats the error output by the test itself when failing, while the latter is to expect the tested error to contain some expected string. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11035 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-25 19:48:15 +01:00
Nils Goroll	22b5dfdaf1	chore: use `require.Error()` over `require.Errorf()` (#11037 ) Related to #11035, this test case used `require.Errorf()` where it could use `require.Error()` to make it clear that this is not a case of confusion with `require.ErrorContains()` The other cases in the same function already use `require.Error()`, so this clearly looks like a consistency glitch. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11037 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-25 19:36:02 +01:00
Gusted	54017ee5c4	fix: detect renames when using diff-tree (#11038 ) Regression of forgejo/forgejo!9587 `git-diff` will always find renames because it is implied by the `diff.renames` configuration option. Specify `--find-renames` to detect renames again. Resolves forgejo/forgejo#11032 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11038 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-25 15:51:18 +01:00
Shiny Nematoda	217da2ae7f	fix: be case-insensitive when using bleve for issue search (#11022 ) The indexer previously used a `camelcase` filter which could be problamatic for certain queries. This commit removes the faulty filter for bleve, matching the behaviour of the database "indexer". closes !10997 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11022 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2026-01-25 14:44:35 +01:00
Andreas Ahlenstorf	d996dfb476	feat: filter action runs by Git reference (#11013 ) Make it possible to filter action runs returned by `/api/v1/repos/andreas/test/actions/runs` by Git reference. Resolves https://codeberg.org/forgejo/forgejo/issues/10874. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11013 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-01-24 21:25:31 +01:00
Nils Goroll	2d55ad5585	fix NewMockWebServer(): Headers never reached the http client (#11007 ) Found while working on https://codeberg.org/forgejo/forgejo/pulls/10798#issuecomment-10083846: The symptom was that the go-github client never returned a `resp.After`, so I tracked down the root cause, which was that, with the mocked http server ... Mocked headers never reached the calling client, because w.WriteHeader() was called before the headers were set in the response. Fix by moving w.WriteHeader() to the right place just before w.Write(), which writes the body. Test added which fails without the fix and succeeds with it. ### Tests - I added test coverage for Go changes... - [X] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [X] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [X] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11007 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-24 04:51:18 +01:00
Mathieu Fenniak	c52ecd2258	fix: don't clobber authorized_keys file during installation (#10948 ) This PR makes two changes. First, it removes the ability for Forgejo to rewrite ssh authorized_keys during startup. Forgejo previously checked if the application path or config file path had changed from that which is recorded in its database. If either has changed, it would rewrite the SSH `authorized_keys` file, as those paths are embedded into that file. The problem is that if a new installation runs the app and goes through a standard init procedure, it will clobber ~/.ssh/authorized_keys which is a disruptive mistake. Instead, Forgejo will proceed to ssh initialization, and due to the change in #10010 the incorrect application path or config file path will result in a fatal server error that the administrator must resolve. Disabling SSH is added as a plausible option for how to resolve that fatal error. Second, the interactive install UI has been modified to detect this error before the installation proceeds. If a user is attempting to install Forgejo with SSH, and they have an existing `~/.ssh/authorized_keys` file with keys present in it, the installation will fail with an error advising them to use a separate Forgejo user or to disable SSH. (More options are possible to fix this problem, but these are the obvious solutions.) ![image](/attachments/69ef979e-e949-4306-a7e5-2adfb7214199) Fixes #10942. Manually tested. Without the install process change, Forgejo behaves like this: - Configure a typical end-user `~/.ssh/authorized_keys` file with normal keys - Run through a Forgejo initialization process on a new database; run with SQLite, add a new administrator account during the init process. - After initialization, Forgejo will restart and encounter a fatal error: ``` 2026/01/20 10:11:24 routers/init.go:84:syncAppConfForGit() [I] AppPath changed from '' to '/home/mfenniak/Dev/forgejo/forgejo' 2026/01/20 10:11:24 routers/init.go:89:syncAppConfForGit() [I] CustomConf changed from '' to '/home/mfenniak/Dev/forgejo/custom/conf/app.ini' 2026/01/20 10:11:24 routers/init.go:95:syncAppConfForGit() [I] re-sync repository hooks ... 2026/01/20 10:11:24 ...er/issues/indexer.go:155:func2() [I] Issue Indexer Initialization took 9.858336ms 2026/01/20 10:11:24 modules/ssh/init.go:86:Init() [F] An unexpected ssh public key was discovered. Forgejo will shutdown to require this to be fixed. Fix by either: Option 1: Delete the file /home/mfenniak/.ssh/authorized_keys, and Forgejo will recreate it with only expected ssh public keys. Option 2: Permit unexpected keys by setting [server].SSH_ALLOW_UNEXPECTED_AUTHORIZED_KEYS=true in Forgejo's config file. Option 3: If unused, disable SSH support by setting [server].DISABLE_SSH=true in Forgejo's config file. Unexpected key on line 1 of /home/mfenniak/.ssh/authorized_keys Unexpected key on line 2 of /home/mfenniak/.ssh/authorized_keys Unexpected key on line 3 of /home/mfenniak/.ssh/authorized_keys Unexpected key on line 4 of /home/mfenniak/.ssh/authorized_keys ``` With the install process change, the above error screenshot occurs instead. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10948): <!--number 10948 --><!--line 0 --><!--description ZG9uJ3QgY2xvYmJlciBhdXRob3JpemVkX2tleXMgZmlsZSBkdXJpbmcgaW5zdGFsbGF0aW9u-->don't clobber authorized_keys file during installation<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10948 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-23 18:38:09 +01:00
Antonin Delpeuch	0dbd533e42	fix(locale): tooltip for "Owner" role should not imply unique owner (#11004 ) Forgejo organisations can have multiple owners. In issue or PR discussions, the tooltip for the "Owner" role should not imply that a repository has a single owner. Therefore, I am proposing that it says "an owner" instead of "the owner". One choose to keep the tooltip with its current wording for repositories owned by an individual (instead of an organization), but the new tooltip remains correct even if there happens to be a single owner, and I don't think the wording difference warrants a runtime check. #### Before (on Codeberg) ![image](https://codeberg.org/attachments/a20d80af-d93d-410b-919c-265c28921088) #### After (on local instance) ![image](https://codeberg.org/attachments/b676e7ca-d2e6-453a-aa53-3f546e79a584) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11004 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2026-01-23 17:16:53 +01:00
Renovate Bot	65169068b2	Update dependency postcss-html to v1.8.1 (forgejo) (#10889 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10889 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-23 13:36:06 +01:00
Renovate Bot	5b2ba7a98d	Update dependency mini-css-extract-plugin to v2.10.0 (forgejo) (#10934 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10934 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-23 13:35:06 +01:00
Renovate Bot	03d5e515af	Update dependency vue to v3.5.27 (forgejo) (#10998 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-23 12:58:47 +01:00
Renovate Bot	8a54c5c00d	Replace code.forgejo.org/forgejo/forgejo Docker tag with data.forgejo.org/forgejo/forgejo (forgejo) (#11005 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/11005 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-23 12:10:51 +01:00
Renovate Bot	3855eeb6c5	Update module code.forgejo.org/forgejo/runner/v12 to v12.6.0 (forgejo) (#10999 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.5.3` -> `v12.6.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.6.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.3/v12.6.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.6.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.6.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.5.3...v12.6.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1236): <!--number 1236 --><!--line 0 --><!--description ZmVhdDogYWRkICd1c2luZzogZG9ja2VyJyBhY3Rpb24gcHJlIGFuZCBwb3N0LWVudHJ5cG9pbnQgc3VwcG9ydA==-->feat: add 'using: docker' action pre and post-entrypoint support<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1287): <!--number 1287 --><!--line 0 --><!--description Zml4OiBlbGltaW5hdGUgbG9nIGRhdGEgbG9zcyBjYXVzZWQgYnkgTFhDICYgUFRZIGJ1ZmZlcg==-->fix: eliminate log data loss caused by LXC & PTY buffer<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1307): <!--number 1307 --><!--line 0 --><!--description Zml4KGpvYnBhcnNlcik6IGV2YWx1YXRpbmcgbWF0cml4IHZhbHVlcyB3aXRoaW4gcnVucy1vbiByZWZlcmVuY2VzIGZpcnN0IG1hdHJpeCB2YWx1ZSBvbmx5-->fix(jobparser): evaluating matrix values within runs-on references first matrix value only<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1312): <!--number 1312 --><!--line 0 --><!--description dGVzdDogdmVyaWZ5IHRoYXQgY29uZmlndXJhdGlvbiBpcyBsb2FkZWQgY29ycmVjdGx5-->test: verify that configuration is loaded correctly<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1315): <!--number 1315 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9mb3JnZWpvL2Zvcmdlam8tYnVpbGQtcHVibGlzaCBhY3Rpb24gdG8gdjUuNS4x-->Update <https://data.forgejo.org/forgejo/forgejo-build-publish> action to v5.5.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1314): <!--number 1314 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9mb3JnZWpvL2Zvcmdlam8tYnVpbGQtcHVibGlzaCBhY3Rpb24gdG8gdjUuNS4w-->Update <https://data.forgejo.org/forgejo/forgejo-build-publish> action to v5.5.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1290): <!--number 1290 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL21vYnkvZ28tYXJjaGl2ZSB0byB2MC4yLjA=-->Update module github.com/moby/go-archive to v0.2.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1308): <!--number 1308 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuMQ==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1306): <!--number 1306 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3NpcnVwc2VuL2xvZ3J1cyB0byB2MS45LjQ=-->Update module github.com/sirupsen/logrus to v1.9.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1305): <!--number 1305 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi41LjM=-->Update forgejo-runner to v12.5.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1304): <!--number 1304 --><!--line 0 --><!--description VXBkYXRlIGNvZGUuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9mb3JnZWpvIERvY2tlciB0YWcgdG8gdjExLjAuMTA=-->Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.10<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi44NC4yIiwidXBkYXRlZEluVmVyIjoiNDIuODQuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10999 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-23 03:52:56 +01:00
0ko	2f8ae54b0f	fix(ui): tippy menu styles too broad, affecting switch in PR review (#10969 ) The custom styles for tippy-enabled menus had too broad selectors, conflicting with styles of other .item elements in tippy boxes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10969 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-22 23:38:09 +01:00
oliverpool	125a621f79	feat: optimization: use fs.ReadFile (#10987 ) While reviewing cpuprofiles of #10985, I noticed a bunch of slice-grows within this function. Instead of `io.ReadAll` (which does not know the size in advance), use `fs.ReadFile`, which will perform correctly-sized allocations. ### Tests This function is already covered by tests in `modules/assetfs/layered_test.go` ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team. The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10987 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2026-01-22 16:26:18 +01:00
0ko	1978afdb65	i18n(*): migrate ini section [packages] to json (#10979 ) The following strings were skipped because they will need a separate template update for plurals: ```ini [packages] owner.settings.cleanuprules.keep.count.1 owner.settings.cleanuprules.keep.count.n ``` Repro command: ```sh python remap.py --config --write \ --insertion-mode s+p \ --remap [packages]title:packages.title \ --remap [packages]empty:packages.empty \ --remap [packages]empty.documentation:packages.empty.documentation \ --remap [packages]empty.repo:packages.empty.repo \ --remap [packages]registry.documentation:packages.registry.documentation \ --remap [packages]filter.type:packages.filter.type \ --remap [packages]filter.type.all:packages.filter.type.all \ --remap [packages]filter.no_result:packages.filter.no_result \ --remap [packages]filter.container.tagged:packages.filter.container.tagged \ --remap [packages]filter.container.untagged:packages.filter.container.untagged \ --remap [packages]published_by:packages.published_by \ --remap [packages]published_by_in:packages.published_by_in \ --remap [packages]installation:packages.installation \ --remap [packages]about:packages.about \ --remap [packages]requirements:packages.requirements \ --remap [packages]dependencies:packages.dependencies \ --remap [packages]keywords:packages.keywords \ --remap [packages]details:packages.details \ --remap [packages]details.author:packages.details.author \ --remap [packages]details.project_site:packages.details.project_site \ --remap [packages]details.repository_site:packages.details.repository_site \ --remap [packages]details.documentation_site:packages.details.documentation_site \ --remap [packages]details.license:packages.details.license \ --remap [packages]assets:packages.assets \ --remap [packages]versions:packages.versions \ --remap [packages]versions.view_all:packages.versions.view_all \ --remap [packages]dependency.id:packages.dependency.id \ --remap [packages]dependency.version:packages.dependency.version \ --remap [packages]search_in_external_registry:packages.search_in_external_registry \ --remap [packages]alpine.registry:packages.alpine.registry \ --remap [packages]alpine.registry.key:packages.alpine.registry.key \ --remap [packages]alpine.registry.info:packages.alpine.registry.info \ --remap [packages]alpine.install:packages.alpine.install \ --remap [packages]alpine.repository:packages.alpine.repository \ --remap [packages]alpine.repository.branches:packages.alpine.repository.branches \ --remap [packages]alpine.repository.repositories:packages.alpine.repository.repositories \ --remap [packages]alpine.repository.architectures:packages.alpine.repository.architectures \ --remap [packages]arch.pacman.helper.gpg:packages.arch.pacman.helper.gpg \ --remap [packages]arch.pacman.repo.multi:packages.arch.pacman.repo.multi \ --remap [packages]arch.pacman.repo.multi.item:packages.arch.pacman.repo.multi.item \ --remap [packages]arch.pacman.conf:packages.arch.pacman.conf \ --remap [packages]arch.pacman.sync:packages.arch.pacman.sync \ --remap [packages]arch.version.properties:packages.arch.version.properties \ --remap [packages]arch.version.description:packages.arch.version.description \ --remap [packages]arch.version.provides:packages.arch.version.provides \ --remap [packages]arch.version.groups:packages.arch.version.groups \ --remap [packages]arch.version.depends:packages.arch.version.depends \ --remap [packages]arch.version.optdepends:packages.arch.version.optdepends \ --remap [packages]arch.version.makedepends:packages.arch.version.makedepends \ --remap [packages]arch.version.checkdepends:packages.arch.version.checkdepends \ --remap [packages]arch.version.conflicts:packages.arch.version.conflicts \ --remap [packages]arch.version.replaces:packages.arch.version.replaces \ --remap [packages]arch.version.backup:packages.arch.version.backup \ --remap [packages]cargo.registry:packages.cargo.registry \ --remap [packages]cargo.install:packages.cargo.install \ --remap [packages]chef.registry:packages.chef.registry \ --remap [packages]chef.install:packages.chef.install \ --remap [packages]composer.registry:packages.composer.registry \ --remap [packages]composer.install:packages.composer.install \ --remap [packages]composer.dependencies:packages.composer.dependencies \ --remap [packages]composer.dependencies.development:packages.composer.dependencies.development \ --remap [packages]conan.registry:packages.conan.registry \ --remap [packages]conan.install:packages.conan.install \ --remap [packages]conda.registry:packages.conda.registry \ --remap [packages]conda.install:packages.conda.install \ --remap [packages]container.images.title:packages.container.images.title \ --remap [packages]container.details.type:packages.container.details.type \ --remap [packages]container.details.platform:packages.container.details.platform \ --remap [packages]container.pull:packages.container.pull \ --remap [packages]container.digest:packages.container.digest \ --remap [packages]container.multi_arch:packages.container.multi_arch \ --remap [packages]container.layers:packages.container.layers \ --remap [packages]container.labels:packages.container.labels \ --remap [packages]container.labels.key:packages.container.labels.key \ --remap [packages]container.labels.value:packages.container.labels.value \ --remap [packages]cran.registry:packages.cran.registry \ --remap [packages]cran.install:packages.cran.install \ --remap [packages]debian.registry:packages.debian.registry \ --remap [packages]debian.registry.info:packages.debian.registry.info \ --remap [packages]debian.install:packages.debian.install \ --remap [packages]debian.repository:packages.debian.repository \ --remap [packages]debian.repository.distributions:packages.debian.repository.distributions \ --remap [packages]debian.repository.components:packages.debian.repository.components \ --remap [packages]debian.repository.architectures:packages.debian.repository.architectures \ --remap [packages]generic.download:packages.generic.download \ --remap [packages]go.install:packages.go.install \ --remap [packages]helm.registry:packages.helm.registry \ --remap [packages]helm.install:packages.helm.install \ --remap [packages]maven.registry:packages.maven.registry \ --remap [packages]maven.install:packages.maven.install \ --remap [packages]maven.install2:packages.maven.install2 \ --remap [packages]maven.download:packages.maven.download \ --remap [packages]nuget.registry:packages.nuget.registry \ --remap [packages]nuget.install:packages.nuget.install \ --remap [packages]nuget.dependency.framework:packages.nuget.dependency.framework \ --remap [packages]npm.registry:packages.npm.registry \ --remap [packages]npm.install:packages.npm.install \ --remap [packages]npm.install2:packages.npm.install2 \ --remap [packages]npm.dependencies:packages.npm.dependencies \ --remap [packages]npm.dependencies.development:packages.npm.dependencies.development \ --remap [packages]npm.dependencies.bundle:packages.npm.dependencies.bundle \ --remap [packages]npm.dependencies.peer:packages.npm.dependencies.peer \ --remap [packages]npm.dependencies.optional:packages.npm.dependencies.optional \ --remap [packages]npm.details.tag:packages.npm.details.tag \ --remap [packages]pub.install:packages.pub.install \ --remap [packages]pypi.requires:packages.pypi.requires \ --remap [packages]pypi.install:packages.pypi.install \ --remap [packages]rpm.registry:packages.rpm.registry \ --remap [packages]rpm.distros.redhat:packages.rpm.distros.redhat \ --remap [packages]rpm.distros.suse:packages.rpm.distros.suse \ --remap [packages]rpm.install:packages.rpm.install \ --remap [packages]rpm.repository:packages.rpm.repository \ --remap [packages]rpm.repository.architectures:packages.rpm.repository.architectures \ --remap [packages]rpm.repository.multiple_groups:packages.rpm.repository.multiple_groups \ --remap [packages]alt.registry:packages.alt.registry \ --remap [packages]alt.registry.install:packages.alt.registry.install \ --remap [packages]alt.install:packages.alt.install \ --remap [packages]alt.setup:packages.alt.setup \ --remap [packages]alt.repository:packages.alt.repository \ --remap [packages]alt.repository.architectures:packages.alt.repository.architectures \ --remap [packages]alt.repository.multiple_groups:packages.alt.repository.multiple_groups \ --remap [packages]rubygems.install:packages.rubygems.install \ --remap [packages]rubygems.install2:packages.rubygems.install2 \ --remap [packages]rubygems.dependencies.runtime:packages.rubygems.dependencies.runtime \ --remap [packages]rubygems.dependencies.development:packages.rubygems.dependencies.development \ --remap [packages]rubygems.required.ruby:packages.rubygems.required.ruby \ --remap [packages]rubygems.required.rubygems:packages.rubygems.required.rubygems \ --remap [packages]swift.registry:packages.swift.registry \ --remap [packages]swift.install:packages.swift.install \ --remap [packages]swift.install2:packages.swift.install2 \ --remap [packages]vagrant.install:packages.vagrant.install \ --remap [packages]settings.link:packages.settings.link \ --remap [packages]settings.link.description:packages.settings.link.description \ --remap [packages]settings.link.select:packages.settings.link.select \ --remap [packages]settings.link.button:packages.settings.link.button \ --remap [packages]settings.link.success:packages.settings.link.success \ --remap [packages]settings.link.error:packages.settings.link.error \ --remap [packages]settings.delete:packages.settings.delete \ --remap [packages]settings.delete.description:packages.settings.delete.description \ --remap [packages]settings.delete.notice:packages.settings.delete.notice \ --remap [packages]settings.delete.success:packages.settings.delete.success \ --remap [packages]settings.delete.error:packages.settings.delete.error \ --remap [packages]owner.settings.cargo.title:packages.owner.settings.cargo.title \ --remap [packages]owner.settings.cargo.initialize:packages.owner.settings.cargo.initialize \ --remap [packages]owner.settings.cargo.initialize.description:packages.owner.settings.cargo.initialize.description \ --remap [packages]owner.settings.cargo.initialize.error:packages.owner.settings.cargo.initialize.error \ --remap [packages]owner.settings.cargo.initialize.success:packages.owner.settings.cargo.initialize.success \ --remap [packages]owner.settings.cargo.rebuild:packages.owner.settings.cargo.rebuild \ --remap [packages]owner.settings.cargo.rebuild.description:packages.owner.settings.cargo.rebuild.description \ --remap [packages]owner.settings.cargo.rebuild.error:packages.owner.settings.cargo.rebuild.error \ --remap [packages]owner.settings.cargo.rebuild.success:packages.owner.settings.cargo.rebuild.success \ --remap [packages]owner.settings.cargo.rebuild.no_index:packages.owner.settings.cargo.rebuild.no_index \ --remap [packages]owner.settings.cleanuprules.title:packages.owner.settings.cleanuprules.title \ --remap [packages]owner.settings.cleanuprules.add:packages.owner.settings.cleanuprules.add \ --remap [packages]owner.settings.cleanuprules.edit:packages.owner.settings.cleanuprules.edit \ --remap [packages]owner.settings.cleanuprules.none:packages.owner.settings.cleanuprules.none \ --remap [packages]owner.settings.cleanuprules.preview:packages.owner.settings.cleanuprules.preview \ --remap [packages]owner.settings.cleanuprules.preview.overview:packages.owner.settings.cleanuprules.preview.overview \ --remap [packages]owner.settings.cleanuprules.preview.none:packages.owner.settings.cleanuprules.preview.none \ --remap [packages]owner.settings.cleanuprules.pattern_full_match:packages.owner.settings.cleanuprules.pattern_full_match \ --remap [packages]owner.settings.cleanuprules.keep.title:packages.owner.settings.cleanuprules.keep.title \ --remap [packages]owner.settings.cleanuprules.keep.count:packages.owner.settings.cleanuprules.keep.count \ --remap [packages]owner.settings.cleanuprules.keep.pattern:packages.owner.settings.cleanuprules.keep.pattern \ --remap [packages]owner.settings.cleanuprules.keep.pattern.container:packages.owner.settings.cleanuprules.keep.pattern.container \ --remap [packages]owner.settings.cleanuprules.remove.title:packages.owner.settings.cleanuprules.remove.title \ --remap [packages]owner.settings.cleanuprules.remove.days:packages.owner.settings.cleanuprules.remove.days \ --remap [packages]owner.settings.cleanuprules.remove.pattern:packages.owner.settings.cleanuprules.remove.pattern \ --remap [packages]owner.settings.cleanuprules.success.update:packages.owner.settings.cleanuprules.success.update \ --remap [packages]owner.settings.cleanuprules.success.delete:packages.owner.settings.cleanuprules.success.delete \ --remap [packages]owner.settings.chef.title:packages.owner.settings.chef.title \ --remap [packages]owner.settings.chef.keypair:packages.owner.settings.chef.keypair \ --remap [packages]owner.settings.chef.keypair.description:packages.owner.settings.chef.keypair.description ``` In en-US the strings were manually moved lower in the file, before the `actions` section. Weblate proposes strings sequentially to translators, and would be really awkward to start a translation with `packages`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10979 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-01-22 11:42:52 +01:00
Renovate Bot	ce5d13ed02	Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.5.1 (forgejo) (#10980 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10980 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-22 11:37:17 +01:00
Renovate Bot	31e62e81da	Update https://data.forgejo.org/actions/cache action to v5.0.2 (forgejo) (#10890 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10890 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-22 10:56:09 +01:00
Michael Kriese	d34794ab14	ci: add name to step (#10976 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10976 Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-22 10:33:03 +01:00
Michael Kriese	71f2e091b7	ci: use newer forgejo for release simulation (#10975 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10975 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-22 10:21:44 +01:00
0ko	9fd0fc36a0	merge commit: i18n: translations update from Codeberg Translate (#10660 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10660 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-22 10:08:01 +01:00
Codeberg Translate	5c67663706	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Atalanttore <atalanttore@noreply.codeberg.org> Co-authored-by: BKehayov <bkehayov@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Bullbagaren <bullbagaren@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: KWik <kwik@noreply.codeberg.org> Co-authored-by: Klenje <klenje@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Priit Jõerüüt <jrtcdbrg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: aindriu80 <aindriu80@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: atarwn <atarwn@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: hanklank <hanklank@noreply.codeberg.org> Co-authored-by: hugoalh <hugoalh@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: lanticy <lanticy@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: ospalh <ospalh@noreply.codeberg.org> Co-authored-by: retarded-beast <retarded-beast@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: tibfulv <tibfulv@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yookoala <yookoala@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bn/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cy/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fa/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fur/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/is/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/isv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/jbo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ka/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kmr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/la/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/mic/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ml/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/si/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tok/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/yi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant_HK/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant_HK/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-01-22 08:16:37 +00:00
viceice	5978d8d6f0	fix: "revert Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.5.0" (#10977 ) needs newer docker version first Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10977 Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2026-01-22 09:16:32 +01:00
Renovate Bot	4b88854712	Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.5.0 (forgejo) (#10972 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10972 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-22 08:29:11 +01:00
Nils Goroll	7c7d506386	fix typo: say good bye to the singing key (#10966 ) Polish a glitch from #10481 (kinda sad to let go of such a cute name) ### Checklist * no tests to change * no docs to change * not relevant for release notes Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10966 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-22 05:52:31 +01:00
Shiny Nematoda	da7ce17533	fix(ui): add missing translation for code search when keyword is empty string (#10964 ) - `CodeSearchMode` should now be set when keyword is empty - The default value for search mode should be exact, use fuzzy ONLY when fuzziness is enabled in settings Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10964 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2026-01-21 16:42:18 +01:00
Otto Richter	7894e1bb8f	Improve issue templates for new workflow (#10847 ) * Separate documentation about the workflow for better attention. I could imagine that it was not read by everyone, since it was after the trivial 'Please write in English' instructions. * Improve explanations about the workflow, expectations and next steps. * Explicitly mark the Enhancement template to be mostly for contributors. * Disable blank issues. I could not really identify any recent usage of it that was legitimate. * Improve instructions about which details to share about the own Forgejo usage. * Explicitly state in the enhancement template that only issue references should go in there, not noise. * Create a placeholder in problem template to add references to potential solutions later. I hope this resolves some of the issues observed with the new workflow and improves the quality of submitted reports. Also addresses the feedback already received in https://codeberg.org/forgejo/user-research/issues/71 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10847 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Otto Richter <otto@codeberg.org> Co-committed-by: Otto Richter <otto@codeberg.org>	2026-01-21 14:54:15 +01:00
avery	67d62ee456	fix: "disable router log" indicator on configuration summary page (#10356 ) ## Summary Currently, on `{INSTANCE_URL}/admin/config`, the "Disable router log" indicator is completely meaningless, as nothing is assigned to `ctx.Data["DisableRouterLog"]` in [`routers/web/admin/config.go`](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/routers/web/admin/config.go#L121). This makes the indicator useful without changing any Go code by querying the `Loggers` item that has already been dumped to the context. Some pictures :) --- ### Before (always) ![image0](/attachments/451c9742-df4b-451a-8144-9d852dcd139f) ### After (with default log config) ![image0](/attachments/451c9742-df4b-451a-8144-9d852dcd139f) ### After (with `LOGGER_ROUTER_MODE` set to empty) ![image](/attachments/df04e085-9a32-402c-8e56-51a311a2a470) --- ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests As far as I can tell, there aren't tests for TMPL template rendering, if I have overlooked them I'll be happy to add. - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes (I don't really mind) - [x] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10356 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: avery <avery@catpowered.net> Co-committed-by: avery <avery@catpowered.net>	2026-01-20 22:09:11 +01:00
0ko	953c468b32	fix(ui): improve force-push layout alignment (#10939 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7746 Replaces https://codeberg.org/forgejo/forgejo/pulls/10938 grid layout (desktop): give the Compare button a wrapper with same height as the first text line so it stays aligned to it (and to timeline badge) inline layout (mobile): give the Compare button left margin so there's a gap between it and the text line Initial fix for grid was proposed by luisadame. Co-authored-by: Luis <luis@adame.dev> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10939 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-20 19:23:31 +01:00
emilycares	3595e1e830	fix(api): default new release 'title' field to label name, if not provided (#10925 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10925 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: emilycares <emilydoescare@gmail.com> Co-committed-by: emilycares <emilydoescare@gmail.com>	2026-01-20 18:24:46 +01:00
Mathieu Fenniak	374b3d9f4d	fix: remove infinite loop in UpdateRunJobWithoutNotification when run in transaction (#10945 ) #10893 introduced a retry loop to manage concurrent updates when updating the state of `action_run` in the function `UpdateRunJobWithoutNotification`. However, when `UpdateRunJobWithoutNotification` is called from within a transaction, the retry loop continues to read the same data from the DB (due to repeatable read isolation) and loops infinitely. As #10893 was later identified to not be required to fix the target problem (https://code.forgejo.org/forgejo/runner/issues/1302), this PR reverts the change. The only retained change is that the error `ErrActionRunOutOfDate` is a constant rather than `errors.New("run has changed")`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] Reverted the test added for 10893 after confirming that it is the cause of the problem. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10945 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-20 17:34:59 +01:00
Renovate Bot	c17d62569d	Update https://data.forgejo.org/infrastructure/issue-action action to v1.5.0 (forgejo) (#10935 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10935 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-20 06:52:00 +01:00
0ko	10aaef5c7b	feat(perf): remove unused size url parameter for local avatars (#10932 ) Avatars storage handler ignores the size= url parameter, and we don't have any code for creating multiple sizes of the same avatar. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10932 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-01-20 04:59:15 +01:00
Enrique Sanchez Cardoso	7f22f525fc	feat: strip newlines on og image rendering (#10914 ) Replace newlines from the repo description with spaces to match in-app rendering. Related issue: #10823 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10914 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Enrique Sanchez Cardoso <enriqueesanchz@gmail.com> Co-committed-by: Enrique Sanchez Cardoso <enriqueesanchz@gmail.com>	2026-01-19 18:41:20 +01:00
Renovate Bot	70035bc654	Update renovate to v42.84.2 (forgejo) (#10918 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-19 07:42:34 +01:00
Renovate Bot	db98396184	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.1 (forgejo) (#10919 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10919 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-19 06:56:44 +01:00
Renovate Bot	4143678d85	Update CodeMirror (forgejo) (#10892 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10892 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-18 21:27:29 +01:00
Renovate Bot	42754def4c	Update module github.com/urfave/cli/v3 to v3.6.2 (forgejo) (#10912 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-18 16:41:40 +01:00
0ko	bfef19d39d	chore(ui): remove obsolete var --color-nav-text (#10898 ) This variable isn't needed because all themes are setting it to `--color-text`, but the relevant UI elements are already inheriting it from `body`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10898 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-01-18 05:39:28 +01:00
Renovate Bot	a135f0c240	Update module code.forgejo.org/forgejo/runner/v12 to v12.5.3 (forgejo) (#10911 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.5.2` -> `v12.5.3` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.3?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.2/v12.5.3?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.5.3`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.5.3) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.5.2...v12.5.3) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1303): <!--number 1303 --><!--line 0 --><!--description Zml4OiBzdXBwb3J0IEZvcmdlam8gcmV0dXJuaW5nIEFkZGl0aW9uYWxUYXNrcyBidXQgbm90IFRhc2s=-->fix: support Forgejo returning AdditionalTasks but not Task<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1293): <!--number 1293 --><!--line 0 --><!--description Zml4OiBvbmx5IHNraXAgZmV0Y2hpbmcgd2hlbiBhIGNvbW1pdCBleGlzdHMgbG9jYWxseQ==-->fix: only skip fetching when a commit exists locally<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1294): <!--number 1294 --><!--line 0 --><!--description Zml4OiB1bmJyZWFrIHRoZSBidWlsZCBmb3IgcGxhdGZvcm1zIHcvbyBkb2NrZXIgc3VwcG9ydA==-->fix: unbreak the build for platforms w/o docker support<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1277): <!--number 1277 --><!--line 0 --><!--description Zml4OiB0cnkgdG8gZW1wdHkgY2xvbmUgZGlyZWN0b3J5IHRoYXQgaXMgbm90IGVtcHR5-->fix: try to empty clone directory that is not empty<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1301): <!--number 1301 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS41LjE=-->Update dependency forgejo/release-notes-assistant to v1.5.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1299): <!--number 1299 --><!--line 0 --><!--description Y2hvcmU6IGltcHJvdmUgaW50ZXJuYWwgcmVwb3J0ZXIuZ28gbG9nZ2luZw==-->chore: improve internal reporter.go logging<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1298): <!--number 1298 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjUuNg==-->Update dependency go to v1.25.6<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1297): <!--number 1297 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGVybSB0byB2MC4zOS4w-->Update module golang.org/x/term to v0.39.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1295): <!--number 1295 --><!--line 0 --><!--description Y2hvcmU6IGJ1aWxkIHVuc3VwcG9ydGVkIHBsYXRmb3Jtcw==-->chore: build unsupported platforms<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1296): <!--number 1296 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvc3lzIHRvIHYwLjQwLjA=-->Update module golang.org/x/sys to v0.40.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1288): <!--number 1288 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2FscGluZSBEb2NrZXIgdGFnIHRvIHYzLjIz-->Update data.forgejo.org/oci/alpine Docker tag to v3.23<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1286): <!--number 1286 --><!--line 0 --><!--description dGVzdDogYWRkIGFuIExYQyBlbnZpcm9ubWVudCB0ZXN0-->test: add an LXC environment test<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1261): <!--number 1261 --><!--line 0 --><!--description Y2hvcmU6IGVuc3VyZSBhbGwgdGVzdHMgYXJlIHJ1bg==-->chore: ensure all tests are run<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1279): <!--number 1279 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3NwZjEzL2NvYnJhIHRvIHYxLjEwLjI=-->Update module github.com/spf13/cobra to v1.10.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1281): <!--number 1281 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuOC4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.8.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1280): <!--number 1280 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby1ydW5uZXItc2VydmljZS15cSB0byB2NC41MC4x-->Update dependency forgejo-runner-service-yq to v4.50.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1284): <!--number 1284 --><!--line 0 --><!--description dGVzdDogcGluZyBob3N0bmFtZSBpbnN0ZWFkIG9mIGxvY2FsaG9zdA==-->test: ping hostname instead of localhost<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1285): <!--number 1285 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgbHhjLW5vZGUgdG8gdjI0-->Update dependency lxc-node to v24<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1283): <!--number 1283 --><!--line 0 --><!--description VXBkYXRlIE5vZGUuanMgdG8gdjI0-->Update Node.js to v24<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1278): <!--number 1278 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi41LjI=-->Update forgejo-runner to v12.5.2<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi43OC4yIiwidXBkYXRlZEluVmVyIjoiNDIuNzguMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10911 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-18 03:47:28 +01:00
Mathieu Fenniak	230eca13c4	fix: don't return AdditionalTasks from FetchTask if there is no Task (#10899 ) Possible bug that could cause https://code.forgejo.org/forgejo/runner/issues/1302: by picking more tasks after the first `PickTask` didn't find anything, they'll be returned in `AdditionalTasks`. But the runner doesn't act upon additional tasks if there is no "first" task. I can't see a practical way to cover this with an automated test other than mutating the production code to provide a synchronization point between the two operations. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10899 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-17 23:36:30 +01:00
Mathieu Fenniak	9f8dda6325	fix: retry ActionRun updates when optimistic-concurrency-control indicates record changed (#10893 ) When concurrent updates occur to the `action_run` table, fetching a task via `FetchTask` can result in an error: ``` time="2026-01-16T16:02:30Z" level=error msg="failed to fetch task" error="internal: pick task: CreateTaskForRunner: update run 2358339: run has changed" ``` This is an error with no known harm. However, it is more efficient to recover from doing 90% of the work to fetch a task, and complete that work, rather than error out and rollback. Discovered while investigating https://code.forgejo.org/forgejo/runner/issues/1302#issuecomment-73859, although conclusions do not indicate that it is a source of this bug. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10893 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-17 23:09:49 +01:00
Renovate Bot	157a9516f7	Update module github.com/klauspost/compress to v1.18.3 (forgejo) (#10891 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10891 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-17 22:38:23 +01:00
Mathieu Fenniak	009e3c670b	fix: use ALTER TABLE in SQLite DropTableColumns(), allowing unexpected database sources to work better in migrations (#10888 ) The existing implementation of `DropTableColumns()` came from before SQLite had the ability to `ALTER TABLE ... DROP COLUMN ...`. It works by parsing the table definition and rewriting it without the columns that are to be dropped, but it will fail to do this correctly if the table definition is not in the exact expected format. In #10887, a database that had probably come through some migration tool was not exactly formatted the way Forgejo expected, resulting in a migration failure. This replaces `DropTableColumns()`'s hacky SQLite implementation with a more straightforward implementation. Affected indexes touching the target fields are dropped, then the field is dropped. DROP COLUMN is supported on SQLite since [3.35.0, 2021-03-12](https://sqlite.org/releaselog/3_35_0.html). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - Existing `test-sqlite-migration` coverage is relied upon for this change. During development it was proven to exercise the affected code -- in other words, multiple iterations of changes were required due to it failing as I worked on it. - No coverage is added for "database with unexpected schema definition format" as the trigger issue for this change though, a point that can be raised if someone believes it is worthwhile. - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10888 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-17 21:28:35 +01:00
oliverpool	fdf4dfd2a5	feat(ui): dedicated icon for CITATION file (#10873 ) Fix forgejo/forgejo#7864 Screenshot: https://codeberg.org/attachments/62fbd43e-fe08-45dd-97a6-224353fd94a9 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10873 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2026-01-17 10:10:56 +01:00
forgejo-release-manager	a2462adca0	chore(release-notes): Forgejo v14.0.1 [skip ci] (#10895 ) https://codeberg.org/forgejo/forgejo/milestone/46904 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10895 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-17 07:08:33 +01:00
forgejo-release-manager	8f58ed029a	chore(release-notes): Forgejo v13.0.5 [skip ci] (#10896 ) https://codeberg.org/forgejo/forgejo/milestone/45323 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10896 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-17 07:08:24 +01:00
forgejo-release-manager	feb787c3ab	chore(release-notes): Forgejo v11.0.10 [skip ci] (#10894 ) https://codeberg.org/forgejo/forgejo/milestone/45320 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10894 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-17 07:08:16 +01:00
Michael Kriese	3252fd5134	ci: tie go cache to go version and add `Makefile` to key hash (#10883 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10883 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-16 20:24:22 +01:00
Renovate Bot	4d8094cb3d	Update dependency @citation-js/plugin-software-formats to v0.6.2 (forgejo) (#10875 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10875 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-16 16:59:46 +01:00
0ko	05269232b8	fix(release): move reverted v14.0.0 feature line to Included for completeness (#10866 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9409#issuecomment-9894122 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10866 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-16 12:14:27 +01:00
Mathieu Fenniak	1aca323acb	fix: make concurrency group job cancellation effect runs that are failed (#10863 ) When an action's job fails, it marks the entire run as failed. Concurrency group cancellation was only looking for runs that are in a pending state, and therefore after a single job failed in the run, none of the other jobs in the run could be cancelled by a matching cancel-in-progress job. Raised in https://codeberg.org/Codeberg/Community/issues/2315. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10863 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-16 10:54:01 +01:00
Mathieu Fenniak	c78a4198b1	fix: recreate-tables doesn't work on PostgreSQL with multiple Forgejo schemas (#10854 ) Discovered while trying to reproduce #10848 -- when using `forgejo doctor recreate-tables` against a PostgreSQL database with multiple Forgejo schemas in it, it fails. The reason is that when querying for index and sequence information, it begins to get information from the other schemas. ``` 2026/01/15 15:19:15 ...3.6.1/command_run.go:288:run() [I] PING DATABASE postgresschema 2026/01/15 15:19:15 ...igrations/base/db.go:51:func2() [I] Creating temp table: tmp_recreate__external_login_user for Bean: ExternalLoginUser 2026/01/15 15:19:15 ...igrations/base/db.go:108:func2() [I] Copying table external_login_user to temp table tmp_recreate__external_login_user 2026/01/15 15:19:15 ...igrations/base/db.go:120:func2() [I] Dropping existing table external_login_user, and renaming temp table tmp_recreate__external_login_user in its place 2026/01/15 15:19:15 cmd/doctor.go:216:func1() [E] [Error SQL Query] ALTER INDEX "external_login_user_pkey" RENAME TO "external_login_user_pkey" [] - ERROR: relation "external_login_user_pkey" does not exist (SQLSTATE 42P01) 2026/01/15 15:19:15 ...igrations/base/db.go:404:renameTable() [E] Unable to rename external_login_user_pkey to external_login_user_pkey. Error: ERROR: relation "external_login_user_pkey" does not exist (SQLSTATE 42P01) Command error: migrate: ERROR: relation "external_login_user_pkey" does not exist (SQLSTATE 42P01) ``` This is a very niche use-case that is likely to only affect a developer using PostgreSQL and popping back to older releases often enough to keep them around in different DB schemas. I don't think it's worth an automated test, which would require creating a secondary DB schema in a specific migration test. Manually tested on my dev environment. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10854 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-16 10:53:19 +01:00
Michael Kriese	c1c000a833	ci: use rna binary instead of source (#10867 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10867 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-16 10:42:14 +01:00
Renovate Bot	d49137226c	Update dependency forgejo/release-notes-assistant to v1.5.1 (forgejo) (#10865 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10865 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-16 09:52:59 +01:00
Gusted	2a8881c4ca	fix: use `strict-origin` as referrer policy (#10851 ) - Resolves forgejo/forgejo#10849 - Yes, the referrer policy is causing cross-origin protection to fail. Why? Because someone really cared about privacy, the referrer policy was set to no-referrer. So no `Referrer` HTTP header and `Origin` is either omited or set to `null`, because hey the browser isn't allowed to leak it via that header either. The new cross-origin protection relies on Sec-Fetch metadata to determine if the request is same-origin or not. This metadata is only sent to trustworthy origins, and thus not when you visit Forgejo on your intranet. But the new protection has a fallback to compare the Origin to the Host header... but the Origin header was conviently set to `null` to protect the user's privacy. - We now set the referrer policy to strict-origin, which means only for same-origin requests a Origin header is set. For cross-origin the behavior is unchanged and the user's privacy is preserved. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10851 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-16 00:03:07 +01:00
Renovate Bot	2d9422aaec	Update dependency go to v1.25.6 (forgejo) (#10850 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10850 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-15 22:42:10 +01:00
forgejo-release-manager	ad45c652be	chore(release-notes): Forgejo v14.0.0 (#10832 ) https://codeberg.org/forgejo/forgejo/milestone/27583 Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10832 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-15 14:52:18 +01:00
Renovate Bot	e6b13797a2	Update module github.com/minio/minio-go/v7 to v7.0.98 (forgejo) (#10842 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10842 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-15 13:04:48 +01:00
limiting-factor	1a4c5cd690	fix: pin github.com/urfave/cli to v3.5.0 (#10828 ) Upgrading to v3.6.1 breaks `--help` ``` $ forgejo forgejo-cli --help Incorrect Usage: flag provided but not defined: -help ``` ### Testing ``` $ make forgejo $ ./forgejo forgejo-cli --help NAME: forgejo forgejo-cli - Forgejo CLI USAGE: forgejo forgejo-cli [command [command options]] COMMANDS: actions Commands for managing Forgejo Actions f3 F3 ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10828 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-01-15 11:05:02 +01:00
Renovate Bot	635d55043f	Update module github.com/go-chi/chi/v5 to v5.2.4 (forgejo) (#10841 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10841 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-15 06:27:12 +01:00
Mario Minardi	c84cbd56a1	feat: add OIDC workload identity federation support (#10481 ) Add support for OIDC workload identity federation. Add ID_TOKEN_SIGNING_ALGORITHM, ID_TOKEN_SIGNING_PRIVATE_KEY_FILE, and ID_TOKEN_EXPIRATION_TIME settings to settings.actions to allow for admin configuration of this functionality. Add OIDC endpoints (/.well-known/openid-configuration and /.well-known/keys) underneath the "/api/actions" route. Add a token generation endpoint (/_apis/pipelines/workflows/{run_id}/idtoken) underneath the "/api/actions" route. Depends on: https://code.forgejo.org/forgejo/runner/pulls/1232 Docs PR: https://codeberg.org/forgejo/docs/pulls/1667 Signed-off-by: Mario Minardi <mminardi@shaw.ca> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10481 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Mario Minardi <mminardi@shaw.ca> Co-committed-by: Mario Minardi <mminardi@shaw.ca>	2026-01-15 03:39:00 +01:00
0ko	f6ca985739	chore(release): delete 10037 and 9840 release notes (#10837 ) Same as https://codeberg.org/forgejo/forgejo/pulls/10835 but for main branch since release-notes-assistant recently gained ability to search on both branches. It was already announced in release notes of v13 and v11 point releases and shouldn't be in release notes of v14, which this file is causing. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10837 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-01-14 17:30:03 +01:00
Gusted	ca0c354159	fix: proper styling for global time tracker popup (#10827 ) - Resolves forgejo/forgejo#10819 - CSS from tippy is overriding the style specifically for active-stopwatch-popup because of strange/incorrect HTML structure, so override it via `!important`. ## Test 1. Start timer on any issue. 2. See that the styling is okay in the global time tracker popup in the navbar. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10827 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-14 11:14:32 +01:00
Renovate Bot	eb682c3c0b	Update dependency asciinema-player to v3.14.0 (forgejo) (#10759 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10759 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-14 10:21:20 +01:00
Otto Richter	5c8da92a6d	config: Lower default `[database].MAX_OPEN_CONNS` (#10821 ) Resolves https://codeberg.org/forgejo/forgejo/issues/10584 Codeberg mostly uses about 30 connections with rare peaks, so I think it's safe to assume that this value is reasonable even for large Forgejo deployments, and only needs to be adjusted for very busy instances. In practice, the open connections likely remain lower due to the connection lifetime and maximum idle connections (which could maybe also be tuned later). A value of 30 would technically allow 3 full-loaded Forgejo instances to operate on one PostgreSQL instance (30 * 3 = 90 < 97) without conflicting. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10821 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-committed-by: Otto Richter <git@otto.splvs.net>	2026-01-14 10:10:02 +01:00
Beowulf	a8a12241ce	fix(ui): show switch default branch button in branch list only for repo admins (#10814 ) The default braunch is configured in the repo settings. Only users with administrator privileges for the repository can access the repo settings. When the feature was implemented (`72e956b79a`), the button in the branch list was only guarded with a check for repo write permissions. This means the button is shown to too many users. If no an user with write, but not admin permissions clicks on the button, they see just a 404 page. Which is bad UX. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10814 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-01-14 08:15:39 +01:00
Renovate Bot	eedf7fd388	Update Node.js to v24.13.0 (forgejo) (#10822 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10822 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-14 06:58:56 +01:00
zokki	eeb47e3340	fix: actions variable and secret names validation (#10682 ) Fixed action variables and secrets according to [Docu](https://forgejo.org/docs/next/user/actions/basic-concepts/#name-constraints): > Variable names must not start with the FORGEJO_, GITHUB_ or GITEA_ prefix. This wasn't correctly enforced, so I changed the regex ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10682 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2026-01-14 04:19:21 +01:00
Gusted	e3bb1589c3	fix: make lastcommit available for non-signed-in users (#10815 ) - Regression of forgejo/forgejo!9830 - `reqSignIn` means it requires sign-in, but it does not require sign-in (can be hit by visiting large repository) so `ignSignIn` is the better option. - Resulted in behavior of being redirected to `/user/login` when visiting a repository such as comaps or forgejo when not being logged in. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10815 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-13 21:30:59 +01:00
Michael Kriese	1dceb23868	fix: drop sqlite shared cache (#10812 ) Use of sqlite shared cache is discouraged and obsolete. wal mode should be used instead. - https://sqlite.org/sharedcache.html#use_of_shared_cache_is_discouraged Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10812 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-13 21:04:35 +01:00
zokki	5afa5a2b5a	fix: better error message for invalid tokens (#10727 ) Fixes https://codeberg.org/forgejo/forgejo/issues/7514 When a token is used, provide a better error message when that token is not valid. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10727 Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2026-01-13 18:18:40 +01:00
limiting-factor	a71392c6aa	chore: update gof3/v3 v3.11.15 (#10673 ) Update the Forgejo driver for gof3 with modifications for non-backward compatible changes. The changes are isolated behind the f3.Enable flag and not yet functional. The purpose of this upgrade is to not drift from the gof3 implementation while the work continues. The `fix: include remote users when counting users` commit is a functional change to Forgejo itself but does not change the behavior because the remote users are only created in fixtures or by F3. `59c721d26b/models/user/user.go (L65-L66)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10673 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-01-13 16:59:56 +01:00
Nils Goroll	8cf17e3826	chore: Teach Makefile to handle node pre-release versions (#10790 ) Using node head built from source, "make frontend" failed with this confusing message: ``` $ make node-check /bin/sh: 1: printf: 0-pre: not completely converted Forgejo requires Node.js 20.0.0 or greater and npm to build. You can get it at https://nodejs.org/en/download/ make: *** [Makefile:327: node-check] Error 1 ``` The reason is that from this output ``` $ node -v v26.0.0-pre ``` `0-pre` could not be converted to the printf `"%d"` format. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10790 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nils Goroll <nils.goroll@uplex.de> Co-committed-by: Nils Goroll <nils.goroll@uplex.de>	2026-01-13 16:34:27 +01:00
Renovate Bot	79e5a2e8db	Update module golang.org/x/net to v0.49.0 (forgejo) (#10802 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10802 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-13 16:07:20 +01:00
Renovate Bot	14276244d2	Update module code.forgejo.org/forgejo/runner/v12 to v12.5.2 (forgejo) (#10799 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.5.1` -> `v12.5.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.1/v12.5.2?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.5.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.5.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.5.1...v12.5.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1267): <!--number 1267 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2RvY2tlci9kb2NrZXIgdG8gdjI4LjUuMitpbmNvbXBhdGlibGU=-->Update module github.com/docker/docker to v28.5.2+incompatible<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1275): <!--number 1275 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi41LjE=-->Update forgejo-runner to v12.5.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1276): <!--number 1276 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS41LjA=-->Update dependency forgejo/release-notes-assistant to v1.5.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1272): <!--number 1272 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3JoeXNkL2FjdGlvbmxpbnQgdG8gdjEuNy4xMA==-->Update module github.com/rhysd/actionlint to v1.7.10<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi43OC4yIiwidXBkYXRlZEluVmVyIjoiNDIuNzguMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10799 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-13 02:05:59 +01:00
Mathieu Fenniak	0eb0179c1a	feat: add foreign keys to the `action_runner_token` table (#10756 ) In support of adding foreign keys to the `action_runner_token` table, this PR also had to: - Add detection and error if a table with "soft delete" is used with a foreign key, because it causes a tricky to track down foreign key violation - Remove unused xorm "soft delete" capability on the `action_runner_token` table - Change the `RepoID` and `OwnerID` fields to use the value `NULL` to indicate that this scope wasn't valid for the token, rather than the value `0` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10756 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-12 21:59:40 +01:00
Renovate Bot	2cd58c0dde	Update module code.forgejo.org/forgejo/runner/v12 to v12.5.1 (forgejo) (#10795 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.5.0` -> `v12.5.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.0/v12.5.1?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.5.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.5.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.5.0...v12.5.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1268): <!--number 1268 --><!--line 0 --><!--description Zml4OiBwcml2YXRlIHJlcG9zaXRvcnkgY2xvbmluZyB3aXRoIGF1dGhlbnRpY2F0aW9uIHRva2Vu-->fix: private repository cloning with authentication token<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1270): <!--number 1270 --><!--line 0 --><!--description Zml4OiBtaW5pbWl6ZSBsb2cgZGF0YSBsb3NzIGNhdXNlZCBieSBMWEMgJiBQVFkgYnVmZmVy-->fix: minimize log data loss caused by LXC & PTY buffer<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1269): <!--number 1269 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1naXQvdjUgdG8gdjUuMTYuNA==-->Update module github.com/go-git/go-git/v5 to v5.16.4<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1266): <!--number 1266 --><!--line 0 --><!--description VXBkYXRlIGNvZGUuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9mb3JnZWpvIERvY2tlciB0YWcgdG8gdjExLjAuOQ==-->Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.9<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1263): <!--number 1263 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi41LjA=-->Update forgejo-runner to v12.5.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1264): <!--number 1264 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjEuMA==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.1.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1262): <!--number 1262 --><!--line 0 --><!--description UmVwbGFjZSBOb2RlLmpzIHdpdGggZGF0YS5mb3JnZWpvLm9yZy9vY2kvbm9kZQ==-->Replace Node.js with data.forgejo.org/oci/node<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi43OC4yIiwidXBkYXRlZEluVmVyIjoiNDIuNzguMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10795 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-12 21:57:41 +01:00
Renovate Bot	358e04a6a9	Lock file maintenance (forgejo) (#10785 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi43MS4wIiwidXBkYXRlZEluVmVyIjoiNDIuNzEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10785 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-12 17:50:51 +01:00
Renovate Bot	a4ac945e21	Update renovate to v42.78.1 (forgejo) (#10784 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-12 13:34:09 +01:00
Michael Kriese	055973ce8c	fix: correctly compute required commit status (#10747 ) We need to take all matching required status into account to get the desired status because there can be some pending. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10747 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-12 10:53:40 +01:00
Leon Schmidt	fda54d59b8	Auto-link container images to repository (#10617 ) Implements auto-linking container images from the package registry to a repository (closes #2823). This might ease implementing #2699 in the future. Specifically, auto-linking happens on package creation and NOT when publishing updates to the same package. This should prevent "relinking" a manually unlinked package when publishing an update. Linking is performed either via the the Docker label `` (as described here: https://codeberg.org/forgejo/forgejo/issues/2823#issuecomment-8163866) or by naming the image like the repository (supports nested image names). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - ~~[ ] in their respective `*_test.go` for unit tests.~~ _(Not required, since only already tested functions were used)_ - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - ~~I added test coverage for JavaScript changes...~~ _(No changes to JavaScript code)_ ### Documentation - [X] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change: https://codeberg.org/forgejo/docs/pulls/1666 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [X] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10617 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Leon Schmidt <mail@leon.wtf> Co-committed-by: Leon Schmidt <mail@leon.wtf>	2026-01-11 23:50:21 +01:00
Mathieu Fenniak	8cca9317c2	chore: correct spelling error in cleanup-commit-status CLI docs (#10780 ) Fixes a typo that prevents the forgejo docs builds from being updated. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change. - [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change. The decision if the pull request will be shown in the release notes is up to the mergers / release team.* The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10780 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-11 23:36:19 +01:00
Renovate Bot	d9de2833c7	Update dependency globals to v17 (forgejo) (#10775 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10775 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-11 12:23:02 +01:00
Έλλεν Εμίλια Άννα Zscheile	4fd275116d	feat: teach lint-locale-usage about ObjectVerification.Reason (#10755 ) Add special parsing to handle the keys found in the `Reason` field of `ObjectVerification` structs. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10755 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Έλλεν Εμίλια Άννα Zscheile <fogti+devel@ytrizja.de>	2026-01-11 09:40:49 +01:00
Renovate Bot	fdb1d9d762	Update dependency @codemirror/view to v6.39.9 (forgejo) (#10758 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10758 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-11 09:20:42 +01:00
0ko	581227f20a	chore(ui): cleanup PR checks area (#10768 ) Mostly a UI followup to https://codeberg.org/forgejo/forgejo/pulls/9397 with a few fixes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10768 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-10 23:44:42 +01:00
Mathieu Fenniak	270317a3ad	fix: add `forgejo doctor cleanup-commit-status` command (#10686 ) ``` NAME: forgejo doctor cleanup-commit-status - Cleanup extra records in commit_status table USAGE: forgejo doctor cleanup-commit-status DESCRIPTION: Forgejo suffered from a bug which caused the creation of more entries in the "commit_status" table than necessary. This operation removes the redundant data caused by the bug. Removing this data is almost always safe. These reundant records can be accessed by users through the API, making it possible, but unlikely, that removing it could have an impact to integrating services (API: /repos/{owner}/{repo}/commits/{ref}/statuses). It is safe to run while Forgejo is online. On very large Forgejo instances, the performance of operation will improve if the buffer-size option is used with large values. Approximately 130 MB of memory is required for every 100,000 records in the buffer. Bug reference: https://codeberg.org/forgejo/forgejo/issues/10671 OPTIONS: --help, -h show help --custom-path string, -C string Set custom path (defaults to '{WorkPath}/custom') --config string, -c string Set custom config file (defaults to '{WorkPath}/custom/conf/app.ini') --work-path string, -w string Set Forgejo's working path (defaults to the directory of the Forgejo binary) --verbose, -V Show process details --dry-run Report statistics from the operation but do not modify the database --buffer-size int Record count per query while iterating records; larger values are typically faster but use more memory (default: 100000) --delete-chunk-size int Number of records to delete per DELETE query (default: 1000) ``` The cleanup effectively performs `SELECT * FROM commit_status ORDER BY repo_id, sha, context, index, id`, and iterates through the records. Whenever `index, id` changes without the other fields changing, then it's a useless record that can be deleted. The major complication is doing that at scale without bringing the entire database table into memory, which is performed through a new iteration method `IterateByKeyset`. Manually tested against a 455,303 record table in PostgreSQL, MySQL, and SQLite, which was reduced to 10,781 records, dropping 97.5% of the records. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10686 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-10 23:15:21 +01:00
Andreas Ahlenstorf	ba2a6fbc41	fix: disable actions endpoints of repository if actions are disabled (#10726 ) Some HTTP API endpoints related to Actions, like `/api/v1/repos/{owner}/{repository}/actions/runners`, were not disabled if Actions had been disabled on a repository. With this change, all endpoints related to Actions will be disabled if Actions are disabled. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10726 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-01-10 16:40:00 +01:00
Renovate Bot	6eed310ae6	Update https://data.forgejo.org/actions/setup-forgejo action to v3.1.0 (forgejo) (#10761 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10761 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-10 14:07:51 +01:00
oliverpool	970b0da24d	fix: internal server error on a large .gitmodules (#10744 ) Fix #10714 (introduced in #8438) by silently ignoring large .gitmodules files. Additionally: - the limit was bumped from 10KB to 64KB (https://github.com/boostorg/boost/blob/master/.gitmodules has 20KB) - a warning is shown on the .gitmodules view page if this limit is exceeded Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10744 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2026-01-10 10:44:59 +01:00
Renovate Bot	d100b62803	Update module github.com/alecthomas/chroma/v2 to v2.22.0 (forgejo) (#10762 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10762 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-10 10:31:38 +01:00
Renovate Bot	c650039113	Update module github.com/go-enry/go-enry/v2 to v2.9.3 (forgejo) (#10724 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10724 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-10 00:43:35 +01:00
Beowulf	09713ab7a0	[skip ci] chore: Update pull request template regarding the release notes (#10707 ) Closes forgejo/discussions#398 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10707 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-01-10 00:16:08 +01:00
Renovate Bot	586e25bef0	Update module golang.org/x/sys to v0.40.0 (forgejo) (#10740 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10740 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-10 00:06:33 +01:00
elle	534e4e68ac	chore: add @0xllx0 to federation codeowners (#10716 ) Adds @0xllx0 as a maintainer + point-of-contact in the `CODEOWNERS` file for federation-related code. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10716 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: elle <0xllx0@noreply.codeberg.org> Co-committed-by: elle <0xllx0@noreply.codeberg.org>	2026-01-09 23:53:06 +01:00
Mathieu Fenniak	9c6169e868	chore: run renovate on v14 branch, remove v13 (#10752 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10752 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-09 19:33:38 +01:00
Mai-Lapyst	ed63f06d79	Move web app manifest to a own cache-able route and add a setting to set `"display": "standalone"`; Closes #2638 (#5384 ) This PR does three things: - First it moves the inline web app manifest into its own route `/manifest.json` - Secondly, it add a setting `pwa.STANDALONE` that can be set to `true` if one wants users to be allowed to "install" forgejo as an pwa into their browser. This usually means an "install app" button, which essentially just creates an shortcut to use a single-tab window for browsing the app / forgejo. - Thirdly since we have now an extra route, it checks if someone placed a `public/manifest.json` in forgejo's custom path; if yes, it's content is served instead. This allows more customization without the need on our side to completly implement every nuance of web app manifests. This closes issue #2638 ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs/pulls/1669) to explain to Forgejo users how to use this change. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/5384): <!--number 5384 --><!--line 0 --><!--description W2FsbG93IGZvcmdlam8gdG8gcnVuIGFzIGEgcHdhIHN0YW5kYWxvbmUgYXBwbGljYXRpb24gJiBvdmVycmlkZSBvZiB0aGUgd2ViYXBwIG1hbmlmZXN0Lmpzb24gdmlhIHRoZSBhIGN1c3RvbSBmaWxlIGluIGBwdWJsaWMvbWFuaWZlc3QuanNvbmBdKGh0dHBzOi8vY29kZWJlcmcub3JnL2Zvcmdlam8vZm9yZ2Vqby9wdWxscy81Mzg0KQ==-->[allow forgejo to run as a pwa standalone application & override of the webapp manifest.json via the a custom file in `public/manifest.json`](https://codeberg.org/forgejo/forgejo/pulls/5384)<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/5384 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Mai-Lapyst <mai-lapyst@noreply.codeberg.org> Co-committed-by: Mai-Lapyst <mai-lapyst@noreply.codeberg.org>	2026-01-09 17:49:29 +01:00
Renovate Bot	af4442d72d	Update dependency forgejo/release-notes-assistant to v1.5.0 (forgejo) (#10749 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10749 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-09 13:37:35 +01:00
Renovate Bot	95601d1647	Update dependency forgejo/release-notes-assistant to v1.4.3 (forgejo) (#10737 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10737 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-09 06:52:54 +01:00
Renovate Bot	983a7c908c	Update module code.forgejo.org/forgejo/runner/v12 to v12.5.0 (forgejo) (#10738 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.4.0` -> `v12.5.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.5.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.4.0/v12.5.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.5.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.5.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.4.0...v12.5.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1259): <!--number 1259 --><!--line 0 --><!--description ZmVhdDogaW50cm9kdWNlIGV4cGVyaW1lbnRhbCBjb21tYW5kIGNvbm5lY3Qgd2l0aCB0b2tlbiBvcHRpb24=-->feat: introduce experimental command connect with token option<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1232): <!--number 1232 --><!--line 0 --><!--description ZmVhdDogYWRkIE9JREMgd29ya2xvYWQgaWRlbnRpdHkgZmVkZXJhdGlvbiBzdXBwb3J0-->feat: add OIDC workload identity federation support<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1249): <!--number 1249 --><!--line 0 --><!--description ZmVhdDogaW5jbHVkZSBhdXRoIHRva2VuIHdoZW4gY2xvbmluZyBhY3Rpb25zIGZyb20gb3duIGluc3RhbmNl-->feat: include auth token when cloning actions from own instance<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1255): <!--number 1255 --><!--line 0 --><!--description Zml4OiBjbG9uZSBhY3Rpb25zIHdpdGggR2l0IGluc3RlYWQgb2YgZ28tZ2l0-->fix: clone actions with Git instead of go-git<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1257): <!--number 1257 --><!--line 0 --><!--description Zml4OiBob3N0LWJhc2VkIGV4ZWN1dG9yLCBjbGFyaWZ5IGVycm9yIG1lc3NhZ2UgZnJvbSBtaXNzaW5nIHdvcmtpbmctZGlyZWN0b3J5-->fix: host-based executor, clarify error message from missing working-directory<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1250): <!--number 1250 --><!--line 0 --><!--description Zml4OiBzdG9wIGNyZWF0aW9uIG9mIGJyYW5jaCBjYWxsZWQgSEVBRCBkdXJpbmcgZmV0Y2g=-->fix: stop creation of branch called HEAD during fetch<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1252): <!--number 1252 --><!--line 0 --><!--description ZG9jczogcmVtb3ZlICdyZXF1aXJlZCcgZmxhZyBmcm9tIHJldXNhYmxlIHdvcmtmbG93ICdydW5zLW9uJyBmaWVsZA==-->docs: remove 'required' flag from reusable workflow 'runs-on' field<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi43MS4wIiwidXBkYXRlZEluVmVyIjoiNDIuNzEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10738 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-09 02:59:24 +01:00
Michael Kriese	3707f2e338	chore(renovate): use `forgejo-releases` datasource (#10731 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10731 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2026-01-08 16:50:52 +01:00
Renovate Bot	616774969f	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.7 (forgejo) (#10619 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10619 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-08 16:13:08 +01:00
Michael Kriese	e64d3eacca	January 8th security patches (#10719 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10719 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2026-01-08 16:11:47 +01:00
forgejo-release-manager	c50166c28b	chore(release-notes): Forgejo v13.0.4 (#10730 ) https://codeberg.org/forgejo/forgejo/milestone/35397 Co-authored-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10730 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-08 11:22:14 +01:00
forgejo-release-manager	b1e1984556	chore(release-notes): Forgejo v11.0.9 (#10728 ) https://codeberg.org/forgejo/forgejo/milestone/35400 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10728 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2026-01-08 09:56:38 +01:00
Luis	ef6debfc02	fix(ui): actions list layout breakage with long content (#10648 ) Fixes the layout of the actions list specifically when an action name is too long to be displayed within the column's constrained width. I took the opportunity to add some ancillary improvements: - Center elements vertically - Space elements consistently: the error badge didn't have the same margin on the left like the disabled badge. Fixes #4580 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10648 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Luis <luis@adame.dev> Co-committed-by: Luis <luis@adame.dev>	2026-01-06 20:03:58 +01:00
Mathieu Fenniak	9ede81a89f	doc: add release notes for Jan 8 security release	2026-01-06 09:58:20 -07:00
Gusted	6f0d6b51f1	fix: load reviewer for pull review dismiss action notifier This was implicitly loaded during the mail notifications notifier. If you disable mail notifications on Forgejo then this will result in the reviewer not being loaded and NPE.	2026-01-06 09:58:20 -07:00
Gusted	563f4d825b	chore: add integration test Add a integration test that verifies that only the verified key is shown in `{user}.gpg`.	2026-01-06 09:58:20 -07:00
Gusted	e559a5fe6c	fix: use correct GPG key for export `GPGKeyToEntity` incorrectly assumed that within a keyring with multiple keys that the first key is verified and should be exported. Look at all keys and find the one that matches the verified key ID.	2026-01-06 09:58:20 -07:00
Mathieu Fenniak	57766d133c	fix: don't use attachment size as max memory for ParseMultipart	2026-01-06 09:58:20 -07:00
Mathieu Fenniak	4866927e61	fix: incorrect whitespace handling on pre&post receive hooks	2026-01-06 09:58:20 -07:00
Mathieu Fenniak	f7442ac4c7	fix: hide user profile anonymous options on public repo APIs	2026-01-06 09:58:20 -07:00
Onur Cakmak	0fe80e0110	fix: Fix error messages in pull.go (#10715 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Onur Cakmak <occ@occ.me> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10715 Reviewed-by: Cyborus <cyborus@disroot.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Onur Cakmak <occ@noreply.codeberg.org> Co-committed-by: Onur Cakmak <occ@noreply.codeberg.org>	2026-01-06 17:22:37 +01:00
Mathieu Fenniak	66f08baa1a	fix: prevent intermittent test failures caused by uncancellable tasks (#10713 ) Attempt to fix intermittent test failure noted in #10633, detailed technical notes in https://codeberg.org/forgejo/forgejo/issues/10633#issuecomment-9571199. - Failure to cancel the previous processes is now a test error that aborts immediately, preventing 2hr long test runs that won't succeed. - When the process cancellation fails, the stack trace of all goroutines is printed to help diagnose the cause of any failure to cancel tasks. - `context.Background()` referenced in the actions notifier is corrected when opening git repos, which seems to be a cause of failure to cancel the tasks -- git subprocesses are spawned from the repo context, which is the background context, and that prevents the context registered in the process manager from cancelling them. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10713 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-06 15:34:43 +01:00
luisadame	d8501b42fc	fix: don't display pending reviews as participants (#10528 ) Fixes #10155 When participants are displayed, don't include those that only have made a pending review. Those should not yet be revealed as participants. Apart from adding automated tests, this is the manual verification process I've followed: 1. Set up three users 2. User 1 creates a repository, then creates a pull request adding a new file 3. User 2 creates a new code comment but doesn't not publish the review, shows as pending. 4. User 3 creates a new code comment and publishes the review. 5. From everyone's perspective the number of participants is: 2. And, the participants displayed in the list are 1 and 3. User 2, which hasn't yet published the review is not displayed. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10528 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: luisadame <luisadame@noreply.codeberg.org> Co-committed-by: luisadame <luisadame@noreply.codeberg.org>	2026-01-06 10:47:21 +01:00
Myers Carpenter	00b457e291	feat: Add header annotations for accurate API documentation (#9380 ) This will help api packages like https://codeberg.org/Cyborus/forgejo-api to generate clients that expose the header information as well. Currently `forgejo-api` has to edit the swagger json to generate a client crate that knows about headers. - Create separate response types for different endpoint behaviors - CommitList: Base type with only X-Total-Count header - CommitListWithPagination: For GetPullRequestCommits (pagination headers + X-Total-Count) - CommitListWithLegacyPagination: For GetAllCommits (pagination headers + X-Total-Count + deprecated X-Total) - ChangedFileList: Base type with only X-Total-Count header - ChangedFileListWithPagination: For GetPullRequestFiles (pagination headers + X-Total-Count) This ensures swagger documentation accurately reflects which headers each endpoint returns. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9380 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Myers Carpenter <myers@maski.org> Co-committed-by: Myers Carpenter <myers@maski.org>	2026-01-06 10:29:15 +01:00
Renovate Bot	3f994a6e80	Update module github.com/yuin/goldmark to v1.7.16 (forgejo) (#10709 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10709 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-06 10:14:19 +01:00
famfo	d7d7b457e1	chore: add famfo to CODEOWNERS for federation code (#10706 ) I'd like to add myself to the CODEOWNERS for federation code, partly out of personal interest and partly because ActivityPub is easy to hold the wrong way and I unfortunately know a thing or two about this mess by now. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10706 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2026-01-05 19:35:33 +01:00
Mathieu Fenniak	ea421cba4e	fix: retain Forgejo Action's commit_status entries with distinct descriptions (#10696 ) In #10678, I fixed an incorrect codepath that was intended to prevent duplicate redundant entries in `commit_status`. However, the codepath that was repaired didn't take into account changes in the `description` field -- eg. going from `Waiting to run` to `Has started running` both have the `pending` commit status state but are distinct and should be retained. This PR fixes the fix so that changes in description do still cause new entries into the `commit_status` table. This issue was raised due to an end-to-end test failure in the `push-cancel` actions test. I've manually tested that this fixes the end-to-end test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10696 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-05 14:47:27 +01:00
Renovate Bot	acdfb122cb	Update dependency @lezer/highlight to v1.2.3 (forgejo) (#10699 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10699 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-05 08:55:59 +01:00
Renovate Bot	08b961de2c	Update renovate to v42.71.0 (forgejo) (#10698 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-05 08:55:19 +01:00
Renovate Bot	2cede357c2	Update CodeMirror (forgejo) (#10701 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10701 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-05 08:55:09 +01:00
Renovate Bot	80efc34a13	Update module github.com/yuin/goldmark to v1.7.14 (forgejo) (#10700 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10700 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-05 08:54:59 +01:00
Andreas Ahlenstorf	0837c8d8be	feat: add HTTP API endpoint for runner registration (#10677 ) Add an HTTP API endpoint for runner registration. It enables managing the entire runner lifecycle using Forgejo's HTTP API. See https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/78 for background, design considerations, and usage. Example usage: ``` $ curl -X POST -H "Content-Type: application/json" -H "Accept: application/json" -H "Authorization: token 3fc3ef39805b0f811a5d7789cb7b448348d6bfbb" --data '{"name":"api-runner","description":"Lorem ipsum"}' http://localhost:3000/api/v1/user/actions/runners ``` ```json {"id":30,"uuid":"a5e33697-9f58-437d-83c3-551b6c6a6334","token":"cac45fa6726fe4e28f42598773671af28a3be121"} ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10677 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2026-01-05 04:59:04 +01:00
Beowulf	28e0af23fa	feat(ui): replace Monaco with CodeMirror (#10559 ) - Replace the [Monaco Editor](https://microsoft.github.io/monaco-editor/) with [CodeMirror 6](https://codemirror.net/). This editor is used to facilitate the 'Add file' and 'Edit file' functionality. - Rationale: - Monaco editor is a great and powerful editor, however for Forgejo's purpose it acts more like a small IDE than a code editor and is doing too much. In my limited user research the usage of editing files via the web UI is largely for small changes that does not need the features that Monaco editor provides. - Monaco editor has no mobile support, Codemirror is very usable on mobile. - Monaco editor pulls in large dependencies (for language support) and by replacing it with Codemirror the amount of time that webpack needs to build the frontend is reduced by 50% (~30s -> ~15s). - The binary of Forgejo (build with `bindata` tag) is reduced by 2MiB. - Codemirror is much more lightweight and should be more usable on less powerful hardware, most notably the lazy loading is much faster as codemirror uses less javascript. - Because Codemirror is modular it is much easier to change the behavior of the code editor if we wish to. - Drawbacks: - Codemirror is quite modular and as seen in `package.json` and in `codeeditor.ts` we have to supply a lot more of its features to have feature parity with Monaco editor. - Monaco editor has great integrated language support (features that an lsp would provide), Codemirror only has such language support to an extend. - Monaco editor has its famous command palette (known by many as its also available in VSCode), this is not available in code mirror. - Good to note: - All features that was added on top of the monaco editor (such as dynamically changing language support depending on the filename) still works and the theme is based on the VSCode colors which largely resembles the monaco editor. - The code editor is still lazy-loaded (this is painfully clear by reading how imports are passed around in `codeeditor.ts`). - This change was privately tested by a few people, a few bugs were found (and fixed) but no major drawbacks were noted for their usage of the web editor. - There's a "search" button in the top bar, so that search can be used on mobile. It is otherwise only accessible via <kbd>Ctrl</kbd>+<kbd>f</kbd>. Co-authored-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10559 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: Beowulf <beowulf@beocode.eu>	2026-01-04 23:52:33 +01:00
Gusted	1cecec6536	chore: download git-man over TLS (#10692 ) - No need to use http when https is available. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10692 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2026-01-04 05:37:18 +01:00
Renovate Bot	b2bc6e288a	Update dependency forgejo/release-notes-assistant to v1.4.2 (forgejo) (#10683 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10683 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-03 09:18:06 +01:00
Luis	24019ef5e8	fix: pull request merge menu item clipping the auto merge tip (#10652 ) Fixes the auto merge tip not being properly displayed due to an `overflow: hidden` set at the `.item` level. The fix resets that overflow rule if the auto merge button is being hovered and goes back to `hidden` when no longer being hovered. Fixed also a small misalignment between the tip and the button. Resolves #4822 ### Test 1. Go to a pull request that merges into a protected branch that requires status checks to pass. 2. Go to the merge area of that pull request. 3. Click on the "Create merge commit" button. 4. Hover over the clock icon. 5. Observe that some text appears to the right of that clock icon. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10652 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Luis <luis@adame.dev> Co-committed-by: Luis <luis@adame.dev>	2026-01-03 04:45:43 +01:00
Renovate Bot	3c1d5c04fd	Lock file maintenance (forgejo) (#10623 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10623 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-03 04:02:19 +01:00
Mathieu Fenniak	8f63ee9a94	fix: don't duplicate commit status records on workflows with empty name (#10678 ) Fixes #10671. Cleanup for the inflated number of records in this table will come in a near future change. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10678 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-02 19:02:10 +01:00
Mathieu Fenniak	fa5a52b983	fix: simultaneously experiencing a PreExecutionError and unblocking a different job causes error blocking job emitter queue (#10665 ) In a workflow such as: ```yaml jobs: define-matrix: runs-on: docker outputs: array-value: ${{ steps.define.outputs.array }} steps: - id: define run: \| echo 'array=["value 1", "value 2"]' >> "$FORGEJO_OUTPUT" array-job: runs-on: docker needs: define-matrix strategy: matrix: array: ${{ fromJSON(needs.define-matrix.outputs.array-value-oops-i-made-an-error-here) }} steps: # ... other-job: runs-on: docker needs: define-matrix steps: # .... ${{ needs.define-matrix.outputs.array-value }} ``` After the job `define-matrix` is done, an error will be triggered because `array-value-oops-i-made-an-error-here` is not a valid output, and so `array-job` can't be figured out. When the job emitter triggers that error and stores it in the database, it will mark all the jobs in the workflow as failed (`FailRunPreExecutionError()`) in order to ensure that no blocked jobs remain and appear stuck forever. However, `other-job` is also unblocked by `job_emitter.go` because it's dependency of `define-matrix` is now complete. After the error occurs, job emitter will attempt to unblock `other-job` and the conditional `UpdateRunJob` will fail because the condition `"status": StatusBlocked` is no longer true: `0af52cdca2/services/actions/job_emitter.go (L88-L92)` This causes an error, and that error rolls back the transaction in `checkJobsOfRun`, and that causes job emitter's queue to constantly retry the same work which has the same outcome each time. This fix tells `checkJobsOfRun` that an error occurred that prevents all jobs in the run from progressing, and therefore no updates need to proceed. Discovered while authoring https://code.forgejo.org/forgejo/end-to-end/pulls/1367 and causing an error unintentionally. 🤣 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10665 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-02 17:11:12 +01:00
Mathieu Fenniak	9d6ae1471e	fix: re-running an expanded reusable workflow causes duplicate "attempt 1" job (#10666 ) Placeholder tasks, which are used to store the outputs of a reusable workflow, were hard coded to always have attempt 1. If you executed "Re-run all jobs" with a reusable workflow, a second placeholder task would be created with the same attempt, which caused: (a) Forgejo to not know which attempt, and therefore which outputs, were valid, and (b) the UI to be stuck in "You are viewing an out-of-date run of this job..." when viewing the job. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10666 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-02 15:26:11 +01:00
0ko	59c721d26b	i18n(next): convert indention style to tabs: en, editorconfig (#10661 ) Followup to #10659 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10661 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2026-01-02 05:56:48 +01:00
limiting-factor	2faaa4c5b4	chore: move all test blank imports in a single package (#10662 ) - Create `modules/testimport/import.go` to centralize blank import needed for tests (in order to run the `init` function) to simplify maintenance. - Remove the imports that are not needed. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10662 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Co-committed-by: limiting-factor <limiting-factor@posteo.com>	2026-01-02 05:32:32 +01:00
Renovate Bot	84d2df5b08	Update dependency esbuild-loader to v4.4.2 (forgejo) (#10667 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10667 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-02 05:28:14 +01:00
Renovate Bot	cf3fd8fa4c	Update module github.com/mattn/go-sqlite3 to v1.14.33 (forgejo) (#10668 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.32` -> `v1.14.33` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.33?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.32/v1.14.33?slim=true) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.33`](https://github.com/mattn/go-sqlite3/compare/v1.14.32...v1.14.33) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.32...v1.14.33) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42Ni4xMSIsInVwZGF0ZWRJblZlciI6IjQyLjY2LjExIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10668 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2026-01-02 02:54:18 +01:00
Mathieu Fenniak	0af52cdca2	fix: in-progress job icon doesn't rotate on repo's action list (#10656 ) In-progress jobs don't have a rotating status icon on `/org/repo/actions`. Likely a regression from #9444 as the rotation style was in `RepoActionView` which won't be loaded on the action list page. Manually tested and confirmed that the styling is effective on both `/org/repo/actions` and in the action log page (`.../runs/#/jobs/#/attempt/#`). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reported-by: limiting-factor Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10656 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-01 17:36:20 +01:00
Mathieu Fenniak	c2649d4055	fix: dynamic Action jobs can stall by marking themselves blocked (#10658 ) #10647 introduced a regression which was detected by the [matrix-dynamic end-to-end test](`0e0b1429e6/actions/example-matrix-dynamic/.forgejo/workflows/test.yml`), resulting in [test failures](https://code.forgejo.org/forgejo/end-to-end/actions/runs/4608/jobs/2/attempt/1). The cause of this regression was an added code path which is invoked when a job is being reparsed due to being incomplete, in which the original `needs` value of the job is preserved. To describe it in detail, here's an incomplete job... ``` on: [push] jobs: # ... matrix-job: runs-on: docker needs: define-matrix strategy: matrix: ${{ fromJSON(needs.define-matrix.outputs.matrix-value) }} steps: # ... ``` This job is "incomplete" when it is parsed initially because the `define-matrix` job needs to be completed before its matrix can be evaluated into the correct jobs to run. It `needs: define-matrix`. When it is first parsed by Forgejo, `needs: define-matrix` is pulled out of the job definition and stored in the database, in the `action_run_job` table's `needs` column, because Forgejo will be the one managing when it is run by detecting the completion of the `define-matrix` job. During #10647, a change was made which caused new jobs' which have their own `needs` (from reusable workflows) to have their `needs` be merged with the `needs` that were stored in the database. The regression is that when a job is expanded, it will still be considered a blocked job because it has a `needs` list (even though we know that those jobs are complete): `03e2ecfbc4/models/actions/run.go (L369-L370)` As for why it was originally added in #10647? Unfortunately the comment that I left in the code doesn't explain the functional problem it was attempting to solve, and just describes it as-if the original needs are still needed for something. 🙄 It makes perfect sense to me, right now, that we would not keep `needs` values that are already known to be complete. I've run through my new reusable workflow end-to-end test (https://code.forgejo.org/forgejo/end-to-end/pulls/1362) with this codepath removed and it works perfectly fine. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10658 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2026-01-01 14:22:11 +01:00
MayMeow	2566924ff8	feat: Retrieve default merge commit message for pull requests (#10022 ) Closes #7719 Co-authored-by: kukolos <91948790+kukolos@users.noreply.github.com> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10022 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: MayMeow <maymeow@noreply.codeberg.org> Co-committed-by: MayMeow <maymeow@noreply.codeberg.org>	2026-01-01 11:45:43 +01:00
0ko	b8e7d7c9d8	merge commit: i18n(next): convert indention to tabs (#10659 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10659 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-01 11:45:11 +01:00
Codeberg Translate	9c6821c06f	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bn/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cy/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fa/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/is/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/isv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/jbo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ka/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kmr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/la/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/mic/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ml/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/si/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sr_SP/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tok/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/yi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant_HK/ Translation: Forgejo/forgejo-next	2026-01-01 10:10:10 +00:00
0ko	3f358608cd	merge commit: i18n: update of translations from Codeberg Translate (#10599 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10599 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2026-01-01 10:06:26 +01:00
Codeberg Translate	f6399a0d25	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Arthur Zamarin <arthurzam@gentoo.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: killawabbit <killawabbit@noreply.codeberg.org> Co-authored-by: m-casanova <m-casanova@noreply.codeberg.org> Co-authored-by: nykula <nykula@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2026-01-01 08:27:08 +00:00
Renovate Bot	03e2ecfbc4	Update module code.forgejo.org/forgejo/runner/v12 to v12.4.0 (forgejo) (#10655 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.3.1` -> `v12.4.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.4.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.3.1/v12.4.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.4.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.4.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.3.1...v12.4.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1247): <!--number 1247 --><!--line 0 --><!--description ZmVhdDogaW5jbHVkZSBhbGwgaW50ZWdyYXRpb24gdGVzdHMgaW4gYG1ha2UgaW50ZWdyYXRpb24tdGVzdGA=-->feat: include all integration tests in `make integration-test`<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1238): <!--number 1238 --><!--line 0 --><!--description ZmVhdChkb2NrZXJfcnVuKTogYWRkIHN1cHBvcnQgZm9yIHVzZXIgYW5kIGdyb3VwLWFkZCBqb2Igb3B0aW9ucw==-->feat(docker\_run): add support for user and group-add job options<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1245): <!--number 1245 --><!--line 0 --><!--description ZmVhdDogcmVxdWVzdCB1cCB0byBgY2FwYWNpdHlgIGpvYnMgZnJvbSBGb3JnZWpvIGluIG9uZSBBUEkgY2FsbA==-->feat: request up to `capacity` jobs from Forgejo in one API call<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1240): <!--number 1240 --><!--line 0 --><!--description Zml4OiByZW1vdmUgYGNtZGAgYW5kIGBwb3J0c2AgZnJvbSBjb250YWluZXIgc2NoZW1h-->fix: remove `cmd` and `ports` from container schema<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1244): <!--number 1244 --><!--line 0 --><!--description Zml4OiBldmFsdWF0ZSBqb2JzLjxqb2JfaWQ+LmNvbnRhaW5lci52b2x1bWVz-->fix: evaluate jobs.\<job\_id>.container.volumes<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1251): <!--number 1251 --><!--line 0 --><!--description Zml4OiByZS1wYXJzaW5nIGluY29tcGxldGUgam9icyBtdXN0IHVzZSBvbi53b3JrZmxvd19jYWxsLmlucHV0cywgbm90IGdsb2JhbCBpbnB1dHM=-->fix: re-parsing incomplete jobs must use on.workflow\_call.inputs, not global inputs<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1246): <!--number 1246 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBjb2RlLmZvcmdlam8ub3JnL2Zvcmdlam8vYWN0aW9ucy1wcm90byB0byB2MC42LjA=-->Update module code.forgejo.org/forgejo/actions-proto to v0.6.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1242): <!--number 1242 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMi4zLjE=-->Update forgejo-runner to v12.3.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1241): <!--number 1241 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjU=-->Update dependency go to v1.25<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42Ni4xMSIsInVwZGF0ZWRJblZlciI6IjQyLjY2LjExIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10655 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-31 19:20:17 +01:00
Mathieu Fenniak	75cb38faa6	feat: support reusable workflow expansion when `with` or `strategy.matrix` contains ${{ needs... }} (#10647 ) This change allows the `with:` field of a reusable workflow to reference a previous job, such as `with: { some-input: "${{ needs.other-job.outputs.other-output }}" }`. `strategy.matrix` can also reference `${{ needs... }}`. When a job is parsed and encounters this situation, the outer job of the workflow is marked with a field `incomplete_with` (or `incomplete_matrix`), indicating to Forgejo that it can't be executed as-is and the other jobs in its `needs` list need to be completed first. And then in `job_emitter.go` when one job is completed, it checks if other jobs had a `needs` reference to it and unblocks those jobs -- but if they're marked with `incomplete_with` then they can be sent back through the job parser, with the now-available job outputs, to be expanded into the correct definition of the job. The core functionality for this already exists to allow `runs-on` and `strategy.matrix` to reference the outputs of other jobs, but it is expanded upon here to include `with` for reusable workflows. There is one known defect in this implementation, but it has a limited scope -- if this code path is used to expand a nested reusable workflow, then the `${{ input.... }}` context will be incorrect. This will require an update to the jobparser in runner version 12.4.0, and so it is out-of-scope of this PR. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - end-to-end test:* will require the noted "known defect" to be resolved, but tests are authored at https://code.forgejo.org/forgejo/end-to-end/compare/main...mfenniak:expand-reusable-workflows-needs ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10647 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-31 19:04:35 +01:00
0ko	0a6a5cb73e	chore: remove obsolete code from button-legacy.css (#10581 ) Fixes #10580 Remove obsolete styles so that people do not trip over them. I went through the codebase with `rg` and made sure that the only elements which had potential to use such mix of classes were doing so accidentally, and removed all the unused code. ### A small fix for Forgejo themes Ref https://codeberg.org/forgejo/forgejo/pulls/10581#issuecomment-9245399. The missing variable was used in one place outside of devtest. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10581 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-31 03:13:05 +01:00
John Moon	69f9d50745	feat: add Forgejo server version to runner context (#10642 ) Currently, there's no way for actions runners to know what version of Forgejo is running on the server side. This makes it difficult/impossible to know which features are available and can make maintaining compatibility tricky. Let's add the Forgejo server version to the context. See associated PR in the runner repo: https://code.forgejo.org/forgejo/runner/pulls/1249 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10642 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: John Moon <john.moon@vts-i.com> Co-committed-by: John Moon <john.moon@vts-i.com>	2025-12-30 22:39:34 +01:00
Valentine Briese	51ac1bf45f	feat: improve Discord webhook message formatting (#10626 ) This pull request escapes the dash before the author when a Discord webhook is triggered by a push event and formats the commit hash as code. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). No tests were added, but the existing test for Discord webhooks passed. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10626 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Valentine Briese <valentinegb@icloud.com> Co-committed-by: Valentine Briese <valentinegb@icloud.com>	2025-12-30 18:01:17 +01:00
Mathieu Fenniak	9b2f7c557b	feat: support jobs.<job_id>.secrets with reusable workflow expansion (#10627 ) Follow-up to #10525; adds support for `jobs.<job_id>.secrets` to expanded reusable workflows (when no `runs-on` is specified in a job that `uses: ...` another workflow). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - end-to-end testing*: [prepared, PR n](https://code.forgejo.org/forgejo/end-to-end/pulls/1351) ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] Doc to be created - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10627 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-30 17:33:21 +01:00
Earl Warren	d8a5ee81fb	chore(release-notes): teach release-notes-assistant that v11.0 is LTS (#10638 ) This needs to be updated every time a LTS is published because the release-notes-assistant has no notion of what a LTS is. ## Tests - After it is merged - Trigger https://codeberg.org/forgejo/forgejo/actions?workflow=release-notes-assistant-milestones.yml - See that v11.0.9 milestone contains only the relevant pull requests https://codeberg.org/forgejo/forgejo/milestone/35400 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10638 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-12-30 10:00:22 +01:00
Mathieu Fenniak	42114d2627	fix: build-release workflow stops its own end-to-end checks when run concurrently (#10632 ) `build-release.yml` attempts to run an end-to-end check with a cascading PR, but it doesn't target the currently building branch. When two releases build simultaneously (eg. `forgejo/v14.0` and `forgejo`), whichever one starts the end-to-end test first is then "cancelled" by the second one as it pushes an update to the same branch. This will be a bit of an experimental change due to the difficulty in setting up a test environment. After merge, I intend to watch a v14 and forgejo build and verify that they are independent, and, that both are actually tested with the correct target build. This introduces a need to backport any changes to `.forgejo/cascading-release-end-to-end` in the future to maintain cascading functionality in all active releases. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10632 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-30 02:31:23 +01:00
Beowulf	82624a2a8c	fix: process dynamically added content via htmx (#10572 ) When new content is added via JS and htmx is not used for this change, htmx need to be informed that DOM changes happened and that it needs to reprocess the DOM (or at least the changed parts). When a diff is really large, it is hidden by default. The user can press a button to load the diff, which then will be added via JS. The diff contains buttons to expand it, which are using htmx behind the scenes. Therefore a reprocessing via htmx needs to be triggered after adding the large diff. Fixes #10570 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10572 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-12-29 20:54:49 +01:00
Beowulf	4b0130584f	fix: don't stretch activity top author image (#10556 ) This is a followup to !10524. In addition I changed that the tooltip triggers for the whole height, instead for only the bar height, because otherwise it is esp for small bars nearly impossible to get the tooltip to open. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10556 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-12-29 20:04:47 +01:00
Mathieu Fenniak	f7d2f51bf7	feat: support workflow inputs on expanded reusable workflows (#10614 ) Follow-up to #10525; adds support for `on.workflow_call.inputs` to expanded reusable workflows (when no `runs-on` is specified in a job that `uses: ...` another workflow). The majority of the work for this is done by the `jobparser` library which evaluates inputs automatically when the job is being parsed and stores those inputs on the expanded jobs as the "default" value in `on.workflow_call.inputs`. Forgejo's role here is just to to ensure that `forgejo.event_name` is set to `"workflow_call"` when a job is dispatched, which causes the runner to use the inputs that are stored -- `34c20aa50f/act/runner/expression.go (L452-L467)`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - end-to-end testing*: https://code.forgejo.org/forgejo/end-to-end/pulls/1323 ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1664 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10614): <!--number 10614 --><!--line 0 --><!--description c3VwcG9ydCB3b3JrZmxvdyBpbnB1dHMgb24gZXhwYW5kZWQgcmV1c2FibGUgd29ya2Zsb3dz-->support workflow inputs on expanded reusable workflows<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10614 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-29 15:37:44 +01:00
Bram Hagens	60fb59a7a0	fix: display orphan branches separately in commit graph (#10484 ) Fixes #2705. Fixes #7635. This PR fixes the commit graph showing false connections for orphan/root commits. Connection lines are now shown only when a parent/child relationship exists. Visible relationships are determined using `git log`'s `%P` output by the new `ComputeGlyphConnectivity` function. The SVG template is adapted to render vertical lines conditionally. Unit tests for `ComputeGlyphConnectivity` cover regular linear commit history, orphan commits, merge commits, and non-commit glyphs (`\|`, `/`, `\`). Unit tests also cover the changes to the `git log` parsing. The SVG template was verified manually. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10484 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Bram Hagens <bram@bramh.me> Co-committed-by: Bram Hagens <bram@bramh.me>	2025-12-29 02:53:54 +01:00
Mathieu Fenniak	81cce58a48	migration: update existing foreign key migrations to automatically fix inconsistencies (#10568 ) Changes foreign key database inconsistency handling so that inconsistent records are automatically deleted with an administrator warning during migration. As noted in discussion: https://codeberg.org/forgejo/discussions/issues/385#issuecomment-9175566 Intended for backport to v14 to eliminate pain during upgrades. Because these migrations are now deleting data, rather than allowing the administrator to do it, all migrations have been covered with an integration test that verifies expected data is deleted. This is particularly interesting with nullable fields. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10568 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-29 02:50:20 +01:00
Renovate Bot	be33ac7b8b	Update renovate to v42.66.11 (forgejo) (#10618 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-29 02:38:05 +01:00
Mathieu Fenniak	f25f4447ac	feat: provide multiple tasks to Runner in one FetchTask when requested (#10602 ) Permits the Forgejo to return multiple tasks to the Runner in one API call, if requested. Fixes #8917. Related runner PR: https://code.forgejo.org/forgejo/runner/pulls/1245 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10602 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-28 22:49:49 +01:00
Mathieu Fenniak	fb35abb7e1	feat: support workflow outputs on expanded reusable workflows (#10578 ) Follow-up to #10525; adds support for `on.workflow_call.outputs` to expanded reusable workflows (when no `runs-on` is specified on a job that `uses: ...` another workflow). When all the inner jobs of a workflow call complete, `on.workflow_call.outputs` is evaluated and the related outputs are stored on the outer job's `ActionTask`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - end-to-end testing*: https://code.forgejo.org/forgejo/end-to-end/pulls/1322 ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1661 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10578): <!--number 10578 --><!--line 0 --><!--description c3VwcG9ydCB3b3JrZmxvdyBvdXRwdXRzIG9uIGV4cGFuZGVkIHJldXNhYmxlIHdvcmtmbG93cw==-->support workflow outputs on expanded reusable workflows<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10578 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-28 20:05:13 +01:00
Beowulf	85dacd8e50	fix(ui): improve rendering of commit links (#10530 ) This commit changes the commit link rendering (link to a single commit, a diff, a PR, etc): 1. If it is a link to something on the local instance: 1.1. If it is to the same org and repo, the link is just e.g. the commit hash 1.2. If it is to another repo, the link is the org/repo/commit hash 2. If the link is to another instance: The link is the domain/optional sub path/org/repo/commit hash This change is made to keep the link as short as possible, while not hiding that the link may go to an external instance. Followup to !9146 Closes #10241 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10530 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-12-28 17:18:51 +01:00
Renovate Bot	fe5d10d6d7	Update module code.forgejo.org/forgejo/actions-proto to v0.6.0 (forgejo) (#10610 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/actions-proto](https://code.forgejo.org/forgejo/actions-proto) \| `v0.5.3` -> `v0.6.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2factions-proto/v0.6.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2factions-proto/v0.5.3/v0.6.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/actions-proto (code.forgejo.org/forgejo/actions-proto)</summary> ### [`v0.6.0`](https://code.forgejo.org/forgejo/actions-proto/compare/v0.5.3...v0.6.0) [Compare Source](https://code.forgejo.org/forgejo/actions-proto/compare/v0.5.3...v0.6.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42NC4xIiwidXBkYXRlZEluVmVyIjoiNDIuNjQuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10610 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 14:24:10 +01:00
Renovate Bot	6d82f2874c	Update dependency @vitest/eslint-plugin to v1.6.4 (forgejo) (#10607 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 09:48:43 +01:00
Renovate Bot	ea5fc2a767	Update renovate to v42.66.9 (forgejo) (#10605 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 07:58:41 +01:00
Renovate Bot	b76e69615b	Lock file maintenance (forgejo) (#10608 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10608 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 06:42:09 +01:00
Renovate Bot	17b14b3d51	Update dependency typescript-eslint to v8.50.1 (forgejo) (#10606 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 06:27:32 +01:00
Renovate Bot	0a1452f8ba	Update module github.com/go-openapi/spec to v0.22.3 (forgejo) (#10579 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10579 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-28 04:06:14 +01:00
Mathieu Fenniak	e959014c8c	test: remove diagnostic output in 'copy to experimental' (#10591 ) Cleans up diagnostic output added in #10586. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10591 Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-27 17:23:47 +01:00
Mathieu Fenniak	e86f5ef7d4	fix: allow Actions trust management on conflicted PRs (#10594 ) Fixes #10589. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10594 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-27 15:57:25 +01:00
0ko	c53ea1ba2f	merge commit: i18n: update of translations from Codeberg Translate (#10417 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10417 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-27 15:56:32 +01:00
Codeberg Translate	cc11e56483	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: AYT04 <ayt04@noreply.codeberg.org> Co-authored-by: Arthur Zamarin <arthurzam@gentoo.org> Co-authored-by: Astrak <astrak@noreply.codeberg.org> Co-authored-by: Baempaieo <baempaieo@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Kenneth Bruen <kenny@kbruen.ro> Co-authored-by: Kyush <kyush@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Nimplex <nimplex@noreply.codeberg.org> Co-authored-by: Priit Jõerüüt <jrtcdbrg@noreply.codeberg.org> Co-authored-by: Schmerling <schmerling@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: WithLithum <withlithum@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Zughy <zughy@noreply.codeberg.org> Co-authored-by: adam <me@adamperkowski.dev> Co-authored-by: adriand <adriand@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: vmtj <vmtj@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/mic/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-12-27 14:06:04 +00:00
Renovate Bot	6be2c43d74	Update module github.com/jackc/pgx/v5 to v5.8.0 (forgejo) (#10596 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) \| `v5.7.6` -> `v5.8.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fjackc%2fpgx%2fv5/v5.8.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fjackc%2fpgx%2fv5/v5.7.6/v5.8.0?slim=true) \| --- ### Release Notes <details> <summary>jackc/pgx (github.com/jackc/pgx/v5)</summary> ### [`v5.8.0`](https://github.com/jackc/pgx/compare/v5.7.6...v5.8.0) [Compare Source](https://github.com/jackc/pgx/compare/v5.7.6...v5.8.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42NC4xIiwidXBkYXRlZEluVmVyIjoiNDIuNjQuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10596 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-27 02:27:51 +01:00
Mathieu Fenniak	663acf102a	fix: ListTrackedTimes API has no defined record ordering (#10588 ) API call `GET /repos/{owner}/{repo}/issues/{index}/times` has no defined ordering implemented in it, causing PostgreSQL to have intermittent test failures on `TestAPIGetTrackedTimes` which expected records to be returned in ID order. ID order is reasonable enough, so this PR adds that ordering. Fixes #10577. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10588 Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-26 20:03:12 +01:00
Mathieu Fenniak	9244ed3b1c	test: fix intermittent PostgreSQL failure in TestAdminViewRepos (#10587 ) Intermittent test failure ([example](https://codeberg.org/forgejo/forgejo/actions/runs/125874/jobs/9/attempt/1)): ``` === TestAdminViewRepos (tests/test_utils.go:327) --- FAIL: TestAdminViewRepos (0.39s) testlogger.go:411: 2025/12/26 15:21:27 ...les/storage/local.go:33:NewLocalStorage() [I] Creating new Local Storage at /workspace/forgejo/forgejo/tests/gitea-lfs-meta testlogger.go:411: 2025/12/26 15:21:27 ...eb/routing/logger.go:102:func1() [I] router: completed POST /user/login for test-mock:12345, 303 See Other in 4.7ms @ auth/auth.go:178(auth.SignInPost) testlogger.go:411: 2025/12/26 15:21:27 ...eb/routing/logger.go:102:func1() [I] router: completed GET /admin/repos for test-mock:12345, 200 OK in 75.1ms @ admin/repos.go:29(admin.Repos) admin_repo_test.go:29: Error Trace: /workspace/forgejo/forgejo/tests/integration/admin_repo_test.go:29 Error: Not equal: expected: 1 actual : 0 Test: TestAdminViewRepos admin_repo_test.go:30: Error Trace: /workspace/forgejo/forgejo/tests/integration/admin_repo_test.go:30 Error: Not equal: expected: "repo49" actual : "" Diff: --- Expected +++ Actual @@ -1 +1 @@ -repo49 + Test: TestAdminViewRepos ``` Cause: the page is displaying 50 out of 65 repos in the fixture with a default sort of "recently updated"; on PostgreSQL that is occasionally causing the target link not to appear on the first page. As a fix, I've switched the test to load with reverse alphabetical order which should cause it to consistently appear on the first page. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10587 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-26 20:02:27 +01:00
Mathieu Fenniak	5261e86fad	fix: use RUNNER_TEMP in build-release.yml (#10586 ) Second pass at fixing the issue documented in #10583, as it contains to fail: https://codeberg.org/forgejo-integration/forgejo/actions/runs/14694/jobs/0/attempt/1#jobstep-13-7. Hoping that it is failing because RUNNER_TEMP is different than expected in the LXC environment, but additional `git` output commands should clarify the issue if this doesn't work. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10586 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-26 16:12:17 +01:00
Mathieu Fenniak	e3b4c960da	fix: experimental releases are not being copied to forgejo-experimental (#10583 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10583 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-26 09:26:28 +01:00
Andreas Ahlenstorf	49c3b3f70e	refactor: update Actions Runner admin API endpoint URLs to be consistent w/ other levels (#10573 ) Align the URLs of admin API endpoints for runner management with other levels like organizations. It enables using the same URL schema (`/actions/runners`) for managing all kinds of runners. The old API endpoints that use `/admin/runners` have been deprecated but are retained for compatibility reasons for the foreseeable future. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Other changes without a feature or bug label - [PR](https://codeberg.org/forgejo/forgejo/pulls/10573): <!--number 10573 --><!--line 0 --><!--description cmVmYWN0b3I6IHVwZGF0ZSBBY3Rpb25zIFJ1bm5lciBhZG1pbiBBUEkgZW5kcG9pbnQgVVJMcyB0byBiZSBjb25zaXN0ZW50IHcvIG90aGVyIGxldmVscw==-->refactor: update Actions Runner admin API endpoint URLs to be consistent w/ other levels<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10573 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-25 05:09:10 +01:00
Mathieu Fenniak	71623b1ab1	feat: expand reusable workflow calls into their inner jobs (#10525 ) Previously, Forgejo's behaviour for an Actions reusable workflow was to send the entire job to one specific Forgejo Runner based upon its required `runs-on` label, and that single Runner would then read the workflow file and perform all the jobs inside simultaneously, merging their log output into one output (#9768). This PR begins an implementation of expanding reusable workflows into their internal jobs. In this PR, the most basic support is implemented for expanding reusable workflows: - If a `runs-on` field is provided on the workflow, then the legacy behaviour of sending the reusable workflow to a runner is maintained. - If the `runs-on` field is omitted, then the job may be expanded, if: - If the `uses:` is a local path within the repo -- expanded - If the `uses:` is a path to another repo that is on the same Forgejo server -- expanded - If the `uses:` is a fully-qualified URL -- not expanded Because this is an "opt-in" implementation by omitting `runs-on`, and all existing capability is retained, I've omitted some features from this PR to make the scope small and manageable for review and testing. These features will be implemented after the initial support is landed: - Workflow input variables - Workflow secrets - Workflow output variables - "Incomplete" workflows which require multiple passes to evaluate -- any job within a reusable workflow where the `with`, `runs-on`, or `strategy.matrix` fields contain an output from another job with `${{ needs... }}` Although this implementation has restrictions with missing features, it is intended to fix #9768. Replaces PR #10448. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - end-to-end testing: https://code.forgejo.org/forgejo/end-to-end/pulls/1316 ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1648 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10525 Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-24 20:47:21 +01:00
Renovate Bot	a946887af6	Update module code.forgejo.org/forgejo/runner/v12 to v12.3.1 (forgejo) (#10575 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.3.0` -> `v12.3.1` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.3.1?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.3.0/v12.3.1?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.3.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.3.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.3.0...v12.3.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1239): <!--number 1239 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBzZXBhcmF0ZSB0aGUgY29uY2VwdCBvZiBhbiBpbnN0YW5jZSAmIGV4dGVybmFsIHJldXNhYmxlIHdvcmtmbG93-->feat(jobparser): separate the concept of an instance & external reusable workflow<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1237): <!--number 1237 --><!--line 0 --><!--description Zml4OiBzZWNvbmQtbGF5ZXIgcmV1c2FibGUgd29ya2Zsb3dzIGxvc2luZyB0aGVpciBpbnB1dHMgd2hlbiBleHBhbmRlZA==-->fix: second-layer reusable workflows losing their inputs when expanded<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42NC4xIiwidXBkYXRlZEluVmVyIjoiNDIuNjQuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10575 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-24 18:38:36 +01:00
Andreas Ahlenstorf	57a40f4bcd	feat: increase default limit of dispatch inputs to 100 (#10563 ) Raise the default value for LimitDispatchInputs from 10 to 100. 100 should be plenty while offering some protection against excessively large inputs. Note that the limit only applies to the number of submitted inputs, not the total number of inputs defined in a workflow. See https://codeberg.org/forgejo/forgejo/pulls/10368 for background and motivation. The change also prevents the dispatch menu in the UI from becoming too large. Before: ![dispatch-before](/attachments/b335c5b8-ad1a-44fc-bbd2-99c975c2a5e5) Afterwards (scrollbars are invisible, unfortunately): ![dispatch-after](/attachments/9934e92c-ce0d-41e5-8e57-fb453cb2736e) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10563 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-23 17:49:47 +01:00
0ko	973ff28f44	chore(test): separate and move around i18n testing (#10539 ) Closes #10534 The primary code change is that `TestMissingTranslationHandling` was converted to a unit test. However translation unit tests were a mix of mostly unrelated old (INI) and new (JSON) code with unclear licensing. It was cleaned up with help of Git history. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10539 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-12-23 04:39:26 +01:00
Shiny Nematoda	b1adc7d931	chore: minor code cleanup in search (#10549 ) Minor code cleanup for code/issue search. Mostly breaking up the common functionality into separate functions :) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10549 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-12-23 00:38:51 +01:00
Andreas Ahlenstorf	537a802125	chore: document and test pagination of `/runners` API endpoint (#10551 ) Document the pagination of all the `/runners` API endpoints and add tests for them. Follow-up of https://codeberg.org/forgejo/forgejo/pulls/10450. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10551 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-22 23:15:55 +01:00
Shiny Nematoda	2db37153fb	port(gitea): Fix password leak in log messages (go-gitea/gitea!35584) (#10550 ) Link to original PR: https://github.com/go-gitea/gitea/pull/35584 Original Author: https://github.com/shashank-netapp Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10550 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-12-22 22:53:17 +01:00
Renovate Bot	dc8ae4253f	Update dependency stylelint-value-no-unknown-custom-properties to v6.1.0 (forgejo) (#10547 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-22 18:14:20 +01:00
Renovate Bot	b2f16a53bd	Update dependency @vitest/eslint-plugin to v1.5.4 (forgejo) (#10546 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-22 17:56:02 +01:00
Renovate Bot	1afd5f56f1	Update dependency esbuild-loader to v4.4.1 (forgejo) (#10545 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10545 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-22 17:54:12 +01:00
Gusted	4e83f85b75	feat: use `keying` for webhook secrets (#10059 ) - Follow up of forgejo/forgejo!5041, forgejo/forgejo!6074, forgejo/forgejo!8692, forgejo/forgejo!9923 - The `webhook` table contains a encrypted header authorization. - Use `keying` to safely store this secret and bound them to the table, column and row id - The migration isn't spectacular but does closely follow what we learned in the previous three migrations: use a transaction and delete records when you can't decrypt them. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10059 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-12-22 15:51:37 +01:00
JohnnyJayJay	aa4a597b21	fix(ui): add dynamic aria-label to monospace button in markdown editor (#8244 ) The aria-label now changes dynamically depending on whether the monospace font is enabled or disabled. Greetings from GPN :) Fixes #7669. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8244 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: JohnnyJayJay <johnny@leftfold.tech> Co-committed-by: JohnnyJayJay <johnny@leftfold.tech>	2025-12-22 13:59:50 +01:00
BtbN	fa230a1964	fix: always search for issue posters by user and full name (#10394 ) Previously searching for posters would use full name or username depending on the `[ui].DEFAULT_SHOW_FULL_NAME` setting, now it searches for both of them regardless of the setting. This also a fixes a bug when `[ui].DEFAULT_SHOW_FULL_NAME=true` that users without a full name where not able to searched for. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10394 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-12-22 12:59:37 +01:00
Beowulf	21f1bd21b6	fix(ui): avatar for dismissed review is stretched if not square (#10524 ) The timeline event for a dismissed review didn't used the `AvatarUtils` until now. The `AvatarUtils` also adds classes to the img tag, which makes sure the avatar is correctly styled and not stretched. This PR replaces the img tag with the expected call to the `AvatarUtils`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10524 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-12-22 09:06:30 +01:00
Mathieu Fenniak	34af1330c2	refactor: split `ActionJobStepList` out of `RepoActionView` (#10537 ) Continuing refactor work to split functionality out of `RepoActionView` and into more testable, more manageable sub-components. #9768 will eventually result in some updates to this view for new functionality, and before more complexity is added I'd like to clean it up to a more maintainable state. Previous refactor step: #10366 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10537 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-22 04:14:11 +01:00
James Anderson	50b0075266	fix: linking commit hashes with leading or trailing punctuation (#8643 ) Recognize commit hashes if they have leading or trailing punctuation, `ccc33dd2dfcd8e9d81c7e91f74acf92114a61ea0...` will not be recognized properly. The restriction of two punctuation characters on either side has been lifted. Resolves #8602 Co-Authored-By: Beowulf <beowulf@beocode.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8643 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: James Anderson <james@jamesa.me> Co-committed-by: James Anderson <james@jamesa.me>	2025-12-22 02:32:40 +01:00
Renovate Bot	5244253fb9	Update dependency webpack to v5.104.1 (forgejo) (#10538 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10538 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-22 02:14:23 +01:00
Renovate Bot	a0d54c8366	Update dependency vue to v3.5.26 (forgejo) (#10504 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-22 00:26:52 +01:00
Renovate Bot	a34275dd84	Update module code.forgejo.org/forgejo/runner/v12 to v12.3.0 (forgejo) (#10535 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.2.0` -> `v12.3.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.3.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.2.0/v12.3.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.3.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.3.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.2.0...v12.3.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1234): <!--number 1234 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBleHBvc2UgSm9iIHRvIHJldXNhYmxlIHdvcmtmbG93IGZldGNoZXJz-->feat(jobparser): expose Job to reusable workflow fetchers<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1227): <!--number 1227 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBhZGQgdHJhY2tpbmcgSURzIGZvciBvdXRlci9pbm5lciBqb2JzIGluIHJldXNhYmxlIHdvcmtmbG93cw==-->feat(jobparser): add tracking IDs for outer/inner jobs in reusable workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1228): <!--number 1228 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBpZ25vcmUgYF9fbWV0YWRhdGFgIGluIHdvcmtmbG93IHNjaGVtYSB2YWxpZGF0aW9u-->feat(jobparser): ignore `__metadata` in workflow schema validation<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1229): <!--number 1229 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBleHBvc2UgQVBJIGZvciBgRXZhbHVhdGVXb3JrZmxvd0NhbGxTZWNyZXRzYA==-->feat(jobparser): expose API for `EvaluateWorkflowCallSecrets`<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1210): <!--number 1210 --><!--line 0 --><!--description ZmVhdChydW5uZXIpOiBza2lwIHNlcnZpY2UgY29udGFpbmVycyB3aXRoIGVtcHR5IGltYWdlIGFmdGVyIGludGVycG9sYXRpb24=-->feat(runner): skip service containers with empty image after interpolation<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1235): <!--number 1235 --><!--line 0 --><!--description Zml4KGpvYnBhcnNlcik6IHByZXNlcnZlIHdvcmtmbG93X3BhcmVudF9pZCBvbiByZXBhcnNpbmcgaW5jb21wbGV0ZSB3b3JrZmxvd3M=-->fix(jobparser): preserve workflow\_parent\_id on reparsing incomplete workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1230): <!--number 1230 --><!--line 0 --><!--description Zml4OiBhY2NlcHQgZW52IHJlZmVyZW5jZXMgaW4gc2VydmljZSBkZWZpbml0aW9ucw==-->fix: accept env references in service definitions<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi42NC4xIiwidXBkYXRlZEluVmVyIjoiNDIuNjQuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10535 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-21 19:21:27 +01:00
Andreas Ahlenstorf	ddd4cf0d28	chore: revise runner REST API endpoints (#10450 ) In https://codeberg.org/forgejo/forgejo/pulls/9409, REST API endpoints were added to manage runners. The REST API endpoints were modelled after GitHub's REST API. That comes at the cost of introducing methods and fields that Forgejo does not and is unlikely to support in the future, like label IDs or label types. But Forgejo would have to maintain them for a very long time. The introduced endpoints have been revised and aligned with existing Forgejo REST API endpoints: * POST for `/registration-token` has been removed because it was only an alias of GET. * `/runners` returns a list of `ActionRunner` instead of a wrapper object. `total_count` was replaced with the header `x-total-count` that is used throughout Forgejo. * `status` in `ActionRunner` was converted to an enum that is documented. * `busy` in `ActionRunner` was combined with `status`. A single enum is easier to extend and consume. * `labels` in `ActionRunner` was converted to a list of strings to match existing Forgejo REST API endpoints. * `ephemeral` has been removed from `ActionRunner` because ephemeral runners have not been merged, yet. * `ActionRunner` received a number of new fields: `uuid`, `version`, `description`, `owner_id`, and `repo_id`. In addition to those structural changes, the test coverage was enhanced and the API documentation polished. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10450 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-21 17:21:02 +01:00
Beowulf	81baf75636	feat(ui): show cancel button until all jobs are finished (#9261 ) Change that the Cancel button is shown until all jobs are finished and do not hide it, when the first job failed. Additionally the wrapping of the header was changed. \| Before \| After \| \| :--: \| :----: \| \| ![grafik](/attachments/26ee51ab-9a46-4c91-a866-e01cb0e97b28) \| ![grafik](/attachments/eda3769b-e555-4964-9644-06f772046247) \| Fixes #8922 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9261 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Andreas Ahlenstorf <aahlenst@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-12-21 17:09:22 +01:00
Renovate Bot	252b7756bc	Update https://data.forgejo.org/actions/cache action to v5 (forgejo) (#10517 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10517 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-21 07:22:40 +01:00
Renovate Bot	b0d6786522	Update https://data.forgejo.org/actions/checkout action to v6 (forgejo) (#10518 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10518 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-21 05:38:37 +01:00
Beowulf	d436de90b1	Add to html button in markdown `type="button"` (#10520 ) This is for preventing that a markdown button is recognized as button for submission in a html form. Buttons can't be stripped from the markdown due to: https://codeberg.org/forgejo/forgejo/pulls/7670#issuecomment-4086608 There is no issue with buttons if they always have `type="button"`, so this should be fine. This is a "follow-up" to !7670. Fixes #7656 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10520 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-12-21 05:21:27 +01:00
Beowulf	e04ae29d0d	fix: add missing space before 'Commit' back (#10521 ) Regression from `8039240c26` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10521 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-12-21 04:44:40 +01:00
Renovate Bot	1619038085	Lock file maintenance (forgejo) (#10519 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10519 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-21 02:58:37 +01:00
Renovate Bot	ea71a9aa64	Update renovate to v42.64.1 (forgejo) (#10514 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-21 02:54:23 +01:00
Renovate Bot	b90eda6ed7	Update vitest monorepo to v4.0.16 (forgejo) (#10507 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 21:36:37 +01:00
Renovate Bot	925549d521	Update x/tools to v0.40.0 (forgejo) (#10511 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:58:51 +01:00
Renovate Bot	1ef8f33683	Update module github.com/PuerkitoBio/goquery to v1.11.0 (forgejo) (#10510 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:58:31 +01:00
Renovate Bot	deafea3612	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.7.2 (forgejo) (#10509 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:58:28 +01:00
Renovate Bot	8650f05f31	Update dependency markdownlint-cli to v0.47.0 (forgejo) (#10508 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:58:25 +01:00
Renovate Bot	22d4103cd0	Update go-openapi packages (forgejo) (#10505 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10505 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:57:53 +01:00
Renovate Bot	3744b2866d	Update linters (forgejo) (#10506 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:57:19 +01:00
Renovate Bot	d0686f4a12	Update dependency @vitejs/plugin-vue to v6.0.3 (forgejo) (#10503 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 19:56:09 +01:00
Renovate Bot	39189baa17	Update module github.com/alecthomas/chroma/v2 to v2.21.1 (forgejo) (#10479 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10479 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 17:13:12 +01:00
Renovate Bot	42c8470d07	Update dependency webpack to v5.104.0 (forgejo) (#10492 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10492 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 15:44:47 +01:00
Bram Hagens	9d824142e4	feat: show update time when sorting by recently updated (#10488 ) Fixes #4712 Fixes #7783 When filtering issues or PRs by "Recently updated" or "Least recently updated", the last updated time is shown. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10488 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Bram Hagens <bram@bramh.me> Co-committed-by: Bram Hagens <bram@bramh.me>	2025-12-20 15:37:27 +01:00
Andreas Ahlenstorf	0e6f9439ee	chore: increase test coverage of runner management (#10490 ) Ensures that admins, users, etc. see the runners they are allowed to see. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10490 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-20 15:29:40 +01:00
Bram Hagens	8ef34a56d1	fix: ignore private .profile repo on user profile page (#10486 ) Fixes #4202 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10486 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Bram Hagens <bram@bramh.me> Co-committed-by: Bram Hagens <bram@bramh.me>	2025-12-20 06:08:49 +01:00
Renovate Bot	6041598369	chore: update dependency asciinema-player to v3.13.5 (forgejo) (#10491 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [asciinema-player](https://github.com/asciinema/asciinema-player) \| [`3.13.4` -> `3.13.5`](https://renovatebot.com/diffs/npm/asciinema-player/3.13.4/3.13.5) \| ![age](https://developer.mend.io/api/mc/badges/age/npm/asciinema-player/3.13.5?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/asciinema-player/3.13.4/3.13.5?slim=true) \| --- ### Release Notes <details> <summary>asciinema/asciinema-player (asciinema-player)</summary> ### [`v3.13.5`](https://github.com/asciinema/asciinema-player/releases/tag/v3.13.5): 3.13.5 [Compare Source](https://github.com/asciinema/asciinema-player/compare/v3.13.4...v3.13.5) - Fixed rendering of shaded blocks (u2591, u2592, u2593) and quadrants (u2596, u2597, u2598) ([#302](https://github.com/asciinema/asciinema-player/issues/302)) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4zOS4yIiwidXBkYXRlZEluVmVyIjoiNDIuMzkuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10491 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-20 05:31:20 +01:00
Bram Hagens	23e10b2e42	fix(ui): align due date icon in issue list (#10489 ) Flattened nested `<span>` tags for the calender icon in the issue list, to fix the vertical alignment Before: ![image](/attachments/f5049acb-41dc-438e-9256-ef30542e168d) After: ![image](/attachments/c4d8bc64-0474-4a3e-9061-9e2bca6abff9) ![image](/attachments/0b2c4d9c-7d34-4627-be55-2099ed32dd19) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10489 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Bram Hagens <bram@bramh.me> Co-committed-by: Bram Hagens <bram@bramh.me>	2025-12-20 05:15:17 +01:00
Baptiste Daroussin	5b73467d02	feat: allow to add pam source from command line (#10388 ) The forgejo admin command line allows to deal with all the propose auth mecanism but pam, this PR adds full support for adding and updating pam auth mecanism via the command line without limitation. Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10388 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Baptiste Daroussin <bapt@FreeBSD.org> Co-committed-by: Baptiste Daroussin <bapt@FreeBSD.org>	2025-12-19 15:20:52 +01:00
0ko	7a1935795d	chore: 13.0 is now stable (#10482 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10482	2025-12-19 12:43:47 +01:00
Otto Richter	867665596a	New issue templates (#10054 ) Related to https://codeberg.org/forgejo/discussions/issues/415 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10054 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-committed-by: Otto Richter <git@otto.splvs.net>	2025-12-19 09:41:28 +01:00
Renovate Bot	afd38ae64a	Update module github.com/editorconfig/editorconfig-core-go/v2 to v2.6.4 (forgejo) (#10478 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10478 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-19 01:55:58 +01:00
Gusted	b069daf2ec	fix: don't push LFS when using SSH authentication (#10475 ) We would need to understand LFS over SSH, which is not implemented. Ref: forgejo/forgejo#5925 Skip pushing LFS when SSH authentication is used. Resolves: Codeberg/Community#2156 Add a test to verify that you can push mirror a LFS repository Documentation: forgejo/docs!1639 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10475 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-12-18 23:23:07 +01:00
Renovate Bot	8473d08445	Update dependency swagger-ui-dist to v5.31.0 (forgejo) (#10441 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10441 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 22:53:20 +01:00
danez	001ebb8e39	feat: Add support for loading db password from file via PASSD_URI (#10421 ) Adds a new PASSWD_URI ini setting similar to all the other secrets Fixes #9365 Fixes #6530 Co-authored-by: Daniel Tschinder <231804+danez@users.noreply.github.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10421 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: danez <danez@noreply.codeberg.org> Co-committed-by: danez <danez@noreply.codeberg.org>	2025-12-18 20:55:56 +01:00
Andreas Ahlenstorf	ca32cd3f8a	fix(actions): replace hardcoded with dynamically determined workflow directory (#10411 ) When manually triggering a Forgejo Actions workflow, Forgejo always assumed the workflow directory to be `.forgejo/workflows`, even if the workflows were found in `.gitea/workflows` or `.github/workflows`. As a consequence, the executed workflows were misidentified in the UI. Furthermore, the context variable `${{ forgejo.workflow_ref }}`, which contains the full path to the workflow file, pointed to a non-existent file. The workflow directory is now determined dynamically. Existing database entries are left unmodified. The screenshot shows the old behaviour for run 3 and the new, correct behaviour for run 4. ![workflow-dispatch](/attachments/563557a5-9cff-4c81-aec3-ffb18c831b52) The PR is marked as WIP because it requires https://codeberg.org/forgejo/forgejo/pulls/10276 to be merged first. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10411): <!--number 10411 --><!--line 0 --><!--description Zml4KGFjdGlvbnMpOiByZXBsYWNlIGhhcmRjb2RlZCB3aXRoIGR5bmFtaWNhbGx5IGRldGVybWluZWQgd29ya2Zsb3cgZGlyZWN0b3J5-->fix(actions): replace hardcoded with dynamically determined workflow directory<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10411 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@disroot.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-18 18:33:23 +01:00
Renovate Bot	8ca4440cb1	Update data.forgejo.org/oci/alpine Docker tag to v3.23 (forgejo) (#10326 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10326 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:21:39 +01:00
Renovate Bot	06f7717052	Update Node.js to v24.12.0 (forgejo) (#10400 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10400 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:19:32 +01:00
Renovate Bot	366751eef4	Update module google.golang.org/protobuf to v1.36.11 (forgejo) (#10415 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10415 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:17:16 +01:00
Renovate Bot	49638b6087	Update https://data.forgejo.org/actions/git-backporting action to v4.8.7 (forgejo) (#10409 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10409 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:16:43 +01:00
Renovate Bot	bb144e7fa4	Update dependency katex to v0.16.27 (forgejo) (#10399 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10399 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:16:17 +01:00
Renovate Bot	c89d46f753	Update module github.com/redis/go-redis/v9 to v9.17.2 (forgejo) (#10317 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10317 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:16:07 +01:00
Renovate Bot	3136da3d80	Update dependency asciinema-player to v3.13.4 (forgejo) (#10471 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10471 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-18 15:00:39 +01:00
Andreas Ahlenstorf	af1eda733c	feat(actions): make GITHUB_WORKFLOW_REF available (#10276 ) Make the variable `GITHUB_WORKFLOW_REF` available in Forgejo Action workflows. It is the ref path to the workflow and looks like `testowner/testrepo/.forgejo/workflows/test-workflow.yaml@refs/heads/main` ([GitHub documentation](https://docs.github.com/en/actions/reference/workflows-and-actions/variables)). GitHub Actions like [gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) rely on its presence. See https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/56 for additional details. `GITHUB_WORKFLOW_REF` cannot be generated easily during an action run. Either the path to workflow file has to be hardcoded or inferred by replicating the logic Forgejo uses to determine it. That is further complicated by the fact that Forgejo supports multiple search paths, namely `.forgejo/workflows`, `.gitea/workflows`, and `.github/workflows`. It is also the reason that the workflow directory is now stored in the database alongside the name of the workflow file. Partial implementation is required in Forgejo Runner, see https://code.forgejo.org/forgejo/runner/pulls/1197. Example workflow: ```yaml on: push: workflow_dispatch: schedule: - cron: "* * * * " jobs: test: runs-on: ubuntu-latest steps: - run: \| echo "FORGEJO_WORKFLOW_REF=$FORGEJO_WORKFLOW_REF" echo "GITHUB_WORKFLOW_REF=$GITHUB_WORKFLOW_REF" echo "forgejo.workflow_ref=${{ forgejo.workflow_ref }}" echo "github.workflow_ref=${{ github.workflow_ref }}" ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10276 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-17 23:15:26 +01:00
0ko	1ef5496055	feat: use AppDomain for key verification (#10429 ) Fixes #10416 Followup to a hardcoded string in [gitea#17743](https://github.com/go-gitea/gitea/pull/17743) * instead of using a hardcoded namespace, use the configured application domain * `ssh-keygen` refuses to work with empty namespace, but `Domain` falls back to `localhost`: `95dca7ff57/modules/setting/server.go (L192)` * since `VerifySSHKey` verifies the namespace, I think that using a mostly-unique string instead of a hardcoded one doesn't hurt. Here's what `man ssh-keygen` says on the topic: > An additional signature namespace, used to prevent signature confusion across different domains of use (e.g. file signing vs email signing) must be provided via the -n flag. Namespaces are arbitrary strings, and may include: “file” for file signing, “email” for email signing. For custom uses, it is recommended to use names following a NAMESPACE@YOUR.DOMAIN pattern to generate unambiguous namespaces. ## Testing There's a test `TestFromOpenSSH` but it uses a hardcoded default namespace `file`: `95dca7ff57/models/asymkey/ssh_key_test.go (L334)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10429 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-17 17:01:14 +01:00
famfo	e7f5c492f3	fix(user): set ActivityPub users to ProhibitLogin (#10434 ) * sets all cached ActivityPub users to ProhibitLogin * creates a new UserType to uniquely identify users from ActivityPub This has the side effect that ActivityPub users will no longer be listed in the admin view. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10434 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-12-17 15:38:32 +01:00
Shiny Nematoda	cdc27b0d62	feat: add support to opt-in for fuzzy search (#10378 ) The rationale for keeping it behind a flag is due to fuzzy search being computationally intensive #5261 Admins may opt-in by setting the `[indexer].REPO_INDEXER_FUZZY_ENABLED` flag to true. Closes #10331 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10378 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-12-17 13:51:48 +01:00
Gabor Pihaj	32429c0b13	chore: use interactive sqlite via nix (#10439 ) This nix config change improves experience when using sqlite3 cli to explore the test DB. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10439 Reviewed-by: famfo <famfo@famfo.xyz> Reviewed-by: elle <0xllx0@noreply.codeberg.org> Co-authored-by: Gabor Pihaj <gabor.pihaj@gmail.com> Co-committed-by: Gabor Pihaj <gabor.pihaj@gmail.com>	2025-12-17 13:20:33 +01:00
Earl Warren	50ff61ba05	chore(security): update security.txt with new expiration date (#10447 ) Same as https://forgejo.org/.well-known/security.txt Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10447 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-12-17 12:32:42 +01:00
Renovate Bot	c9e9ae9372	Update github.com/go-ap/jsonld digest to e38fa66 (forgejo) (#10452 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10452 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-17 11:55:52 +01:00
0ko	5088d3ab12	fix(ui/buttons): implement .disabled class (#10410 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9359. `templates/repo/issue/list.tmpl` had buttons changed which had `.disabled` on them conditionally. * adjust devtest page to have such buttons * implement `.disabled` for the newer buttons that does the same thing as the `.ui` buttons do: apply custom opacity, disable pointer events * this is the most boring way of implementing this Reported-by: @Gusted Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10410 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-12-16 14:18:08 +01:00
Renovate Bot	5862d930a1	Update dependency asciinema-player to v3.13.2 (forgejo) (#10440 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10440 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-16 01:56:35 +01:00
Nikita Karamov	a22e5f86c6	fix: Allow SHA-256 in PR commit URLs (#10309 ) Closes #9129. I decided to try myself in contributing to Forgejo after having found this bug mentioned on Fedi. I have also added a basic test for this behaviour, but this means that this PR adds a SHA-256 repo to the fixture set, so it can be reused in other tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10309 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Nikita Karamov <me@kytta.dev> Co-committed-by: Nikita Karamov <me@kytta.dev>	2025-12-16 00:45:00 +01:00
Renovate Bot	0398fa85e1	Update module github.com/valyala/fastjson to v1.6.7 (forgejo) (#10385 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10385 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-16 00:24:56 +01:00
Renovate Bot	351863cf0b	Update module code.forgejo.org/forgejo/runner/v12 to v12.2.0 (forgejo) (#10438 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.1.2` -> `v12.2.0` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.2.0?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.1.2/v12.2.0?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.2.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.2.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.1.2...v12.2.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1216): <!--number 1216 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBhbGxvdyBhY2Nlc3MgdG8gdGhlIG91dHB1dHMgb2YgYSByZXVzYWJsZSB3b3JrZmxvdw==-->feat(jobparser): allow access to the outputs of a reusable workflow<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1209): <!--number 1209 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBzdXBwb3J0IGV4cGFuZGluZyByZXVzYWJsZSB3b3JrZmxvd3MgaW50byBtdWx0aXBsZSBuZXcgam9icw==-->feat(jobparser): support expanding reusable workflows into multiple new jobs<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1221): <!--number 1221 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBhbGxvdyBhY2Nlc3NpbmcgYCR7eyBuZWVkcy4uLiB9fWAgd2hlbiBleHBhbmRpbmcgcmV1c2FibGUgd29ya2Zsb3dz-->feat(jobparser): allow accessing `${{ needs... }}` when expanding reusable workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1220): <!--number 1220 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBhbGxvdyBtYXRyaXggZXhwYW5zaW9uIG9uIGNhbGxlciBvZiByZXVzYWJsZSB3b3JrZmxvd3M=-->feat(jobparser): allow matrix expansion on caller of reusable workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1217): <!--number 1217 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiByZXdyaXRlIHJldXNhYmxlIHdvcmtmbG93ICduZWVkcycgcmVmZXJlbmNlcyBiZXR3ZWVuIGpvYnM=-->feat(jobparser): rewrite reusable workflow 'needs' references between jobs<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1215): <!--number 1215 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBwb3B1bGF0ZSAnbmVlZHMnIGluIHJldXNhYmxlIHdvcmtmbG93IGV4cGFuc2lvbg==-->feat(jobparser): populate 'needs' in reusable workflow expansion<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1211): <!--number 1211 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBtYXAgJ3dpdGgnIGZyb20gY2FsbGVlIGludG8gJ2lucHV0cycgb2YgcmV1c2FibGUgd29ya2Zsb3cgZXhwYW5zaW9u-->feat(jobparser): map 'with' from callee into 'inputs' of reusable workflow expansion<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1197): <!--number 1197 --><!--line 0 --><!--description ZmVhdDogYWRkIHZhcmlhYmxlIHdvcmtmbG93X3JlZiB0byBnaXRodWIgY29udGV4dA==-->feat: add variable workflow\_ref to github context<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1225): <!--number 1225 --><!--line 0 --><!--description Zml4KGpvYnBhcnNlcik6IGFsbG93IGFjY2VzcyB0byAnaW5wdXRzJyBjb250ZXh0IHdoZW4gZXZhbHVhdGluZyB3b3JrZmxvdyBjYWxsIG91dHB1dHM=-->fix(jobparser): allow access to 'inputs' context when evaluating workflow call outputs<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1224): <!--number 1224 --><!--line 0 --><!--description Zml4KGpvYnBhcnNlcik6IHRyYWNrIHJldXNhYmxlIHdvcmtmbG93IHJlY3Vyc2lvbiBsaW1pdHMgYWNyb3NzIHJlLWV4cGFuc2lvbg==-->fix(jobparser): track reusable workflow recursion limits across re-expansion<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1223): <!--number 1223 --><!--line 0 --><!--description Zml4KGpvYnBhcnNlcik6IGlubmVyIGpvYiBpbiBhIHJldXNhYmxlIHdvcmtmbG93IGNhbid0IHJlZmVyZW5jZSAke3sgbmVlZHMuLi4gfX0gaW4gYHdpdGhg-->fix(jobparser): inner job in a reusable workflow can't reference ${{ needs... }} in `with`<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1222): <!--number 1222 --><!--line 0 --><!--description Zml4OiB1bnJlY292ZXJhYmxlIGVycm9ycyBpbiBhcnRpZmFjdGNhY2hlIHNob3VsZCBoYXZlIG5vbi16ZXJvIGV4aXQgY29kZQ==-->fix: unrecoverable errors in artifactcache should have non-zero exit code<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1214): <!--number 1214 --><!--line 0 --><!--description Zml4OiByZWxhdGl2ZSByZXVzYWJsZSB3b3JrZmxvdyB3LyBIVFRQIChub3QgSFRUUFMpIGdpdGh1YiBpbnN0YW5jZSB1cmw=-->fix: relative reusable workflow w/ HTTP (not HTTPS) github instance url<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1213): <!--number 1213 --><!--line 0 --><!--description Zml4OiBkb3VibGUgcHJvdG9jb2wgcHJlZml4IGluIHJldXNhYmxlIHdvcmtmbG93IGNsb25lIFVSTHM=-->fix: double protocol prefix in reusable workflow clone URLs<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4zOS4yIiwidXBkYXRlZEluVmVyIjoiNDIuMzkuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10438 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-15 23:36:28 +01:00
0ko	95dca7ff57	merge commit: i18n: update of translations from Codeberg Translate (#10249 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10249 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-13 14:17:10 +01:00
Codeberg Translate	e23b3770ce	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: 11xx <11xx@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kenneth Bruen <kenny@kbruen.ro> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Yushu <yushu@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: dobrvlskyi <dobrvlskyi@noreply.codeberg.org> Co-authored-by: enderice2 <enderice2@noreply.codeberg.org> Co-authored-by: faoquad <faoquad@noreply.codeberg.org> Co-authored-by: harryxi <harryxi@noreply.codeberg.org> Co-authored-by: jimkats <jimkats@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: nikee <nikee@noreply.codeberg.org> Co-authored-by: shadowmaru <shadowmaru@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: tace16 <tace16@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-12-13 12:31:52 +00:00
Rodrigo Villablanca	ebc36a9ec7	fix(10359): Count releases correctly when using filters (q) (#10387 ) This PR fixes the issue https://codeberg.org/forgejo/forgejo/issues/10359 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10387): <!--number 10387 --><!--line 0 --><!--description Zml4KDEwMzU5KTogQ291bnQgcmVsZWFzZXMgY29ycmVjdGx5IHdoZW4gdXNpbmcgZmlsdGVycyAocSk=-->fix(10359): Count releases correctly when using filters (q)<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10387 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Rodrigo Villablanca <villa061004@gmail.com> Co-committed-by: Rodrigo Villablanca <villa061004@gmail.com>	2025-12-11 05:13:21 +01:00
Corentin	505ab87ae0	fix: allow for merge message template with empty message (#9930 ) Fixes #2691 This is changing the trimming of the merge message template to allow first empty line to be considered as empty message (also referred as title in frontend). 2 unit tests were added to check for proper behavior and possible edge case (simple template with only 2 lines, not trimming needed). Also a former unit test with 3 empty lines at the beginning of the template was changed. The behavior with this patch is: * splitting first `\n` to separate message from body * trim remaining `\n` from body if `\n` was present or take template as is as message (no trim necessary as no `\n` is present in the template) As this is an old issue the expected behavior might have changed from when the issue was triaged. I additionally manually testes on the next.forgejo.org and locally built binary from this branch, I am attaching both screenshot of final result. The test PR can be seen at [https://v13.next.forgejo.org/kajika/merge_template_issue_2691/pulls/1](https://v13.next.forgejo.org/kajika/merge_template_issue_2691/pulls/1) and, in case the next repository is deletate the content of `.forgejo/default_merge_message/MERGE_TEMPLATE.md` is (first line is empty): ``` This is the description of the merge from "${HeadBranch}" to "${BaseBranch}" ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9930 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Corentin <corentin@ayo.tokyo> Co-committed-by: Corentin <corentin@ayo.tokyo>	2025-12-10 19:57:19 +01:00
hollac1	7794da7e81	fix: correct token summary in swagger to specify the used user. (#10367 ) After `f93ee5937b`. Ref: https://codeberg.org/forgejo/forgejo/issues/10332#issuecomment-8787096 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10367 Reviewed-by: Cyborus <cyborus@disroot.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: hollac1 <corneel.vanholland@kadaster.nl> Co-committed-by: hollac1 <corneel.vanholland@kadaster.nl>	2025-12-10 17:13:07 +01:00
floss4good	0ef51b24ab	fix: 'More actions' (⋯) dropdown from moderation reports overview page (#10339 ) Follow-up of !8716 (and !9951) A _More actions_ (`⋯`) dropdown (where content related actions are available) was added with !8716 for the moderation reports overview page. Until that PR was merged another PR (!9951) changed the structure of JS-less dropdowns and adjusted the CSS rules. This PR adds the missing `.content` container for the dropdown added with !8716 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10339 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-12-10 17:09:59 +01:00
Baptiste Daroussin	48c7bda95d	fix: rename a file with typo STMP -> SMTP (#10389 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10389 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Baptiste Daroussin <bapt@FreeBSD.org> Co-committed-by: Baptiste Daroussin <bapt@FreeBSD.org>	2025-12-10 14:20:05 +01:00
Adora	f11d72a8a5	fix: issues and pulls route permitted extra characters (#10185 ) Fix a issue where the `/{owner}/{repo}/issues` and `/{owner}/{repo}/pulls` routes permitted the addition of extra characters in the URL. Resolves forgejo/forgejo#9954. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10185 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Adora <me@adora.codes> Co-committed-by: Adora <me@adora.codes>	2025-12-10 01:21:38 +01:00
Akashdeep Dhar	be43dbfcfb	feat: Add YYYY-MM-DD date format support for Pagure milestone migration (#10299 ) The change migrates the milestone's deadline in a semantic time format understood by the database. Please note that this change is in addition to that of !10169. Fixes https://forge.fedoraproject.org/forge/forge/issues/306 Signed-off-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10299 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Co-committed-by: Akashdeep Dhar <akashdeep.dhar@gmail.com>	2025-12-09 21:06:29 +01:00
Renovate Bot	91575ca285	Update module golang.org/x/crypto to v0.46.0 (forgejo) (#10374 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10374 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-09 16:06:02 +01:00
Michael Jerger	9cff7ebde5	log instrumentation & test package (#10371 ) This PR is part of #4767. It contains * add log to federation services * separat test package for test (fix dependency cycles) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10371 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-12-09 15:37:50 +01:00
floss4good	590104b5ca	feat: render a link to poster profile next to the ID within shadow copy details (#10194 ) Closes #10078 and includes another small improvement (for comments and issues/PRs the title from report/s details page already included the poster name; now it will clickable, opening the poster profile page). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10194 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-12-09 15:19:10 +01:00
Renovate Bot	610e143e9b	Update module golang.org/x/oauth2 to v0.34.0 (forgejo) (#10377 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10377 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-09 14:42:07 +01:00
0ko	2bde157a0d	feat(i18n): translate system status data units in runtime (#10358 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/2528 Instead of storing translated strings in memory, store raw numbers and translate at template rendering time. Our implementation of `TrSize` is not very efficient and is more expensive than just the underlying `humanize.IBytes`, but for me on localhost both ways render response to HTMLX's request to `/admin/system_status` in 0-1 ms. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10358 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-09 14:38:40 +01:00
Renovate Bot	7cfa6ef670	Lock file maintenance (forgejo) (#10365 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10365 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-09 14:34:25 +01:00
nachtjasmin	70166de15a	chore(lint): Add exceptions for dbfs_model and unittest (#10275 ) Thanks a lot to @floss4good who pointed this out in the comments of #10253! Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10275 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2025-12-09 14:34:06 +01:00
Mathieu Fenniak	f43d48d5c8	refactor: extract ActionJobStep from RepoActionView (#10366 ) The `RepoActionView` Vue component attempts to do almost everything in the action log view in one Vue component, including data management & fetching new logs, rendering the list of jobs, rendering the list of steps, rendering the logs, etc. As part of #9768, this view is expected to receive some significant new features to display nested jobs within steps. Before that work commences, I'm refactoring the component. This refactor step moves the rendering of the step header, expansion of the step, and rendering of the logs, into a smaller component `ActionJobStep`. Tests for the functionality of the new component are added, and some tests have been moved from `RepoActionView` where they only touched log rendering. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10366 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-08 15:58:49 +01:00
Renovate Bot	cd441a54a7	Update renovate to v42.39.2 (forgejo) (#10364 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-08 07:02:38 +01:00
0ko	fe53015fe4	fix(ui): do not wrongly highlight devtest link in navbar menu (#10357 ) Fix copypaste induced bug. Followup to https://codeberg.org/forgejo/forgejo/pulls/10263. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10357 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: floss4good <floss4good@noreply.codeberg.org>	2025-12-07 17:44:28 +01:00
Andreas Ahlenstorf	ff4038970d	fix: display action run attempt status instead of job status (#10321 ) On the page displaying the logs of an action run attempt, the header directly above the logs always showed the status of the job. That resulted in the wrong status being displayed for previous run attempts. Fixes https://codeberg.org/forgejo/forgejo/issues/10236. ![wrong-run-attempt](/attachments/d4f54cc7-a52b-4399-a7cd-efd71f5ebfa7) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10321): <!--number 10321 --><!--line 0 --><!--description ZGlzcGxheSBhY3Rpb24gcnVuIGF0dGVtcHQgc3RhdHVzIGluc3RlYWQgb2Ygam9iIHN0YXR1cw==-->display action run attempt status instead of job status<!--description--> <!--end release-notes-assistant--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10321 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-12-07 15:10:47 +01:00
Renovate Bot	9dec4c2888	Update module code.forgejo.org/forgejo/runner/v12 to v12.1.2 (forgejo) (#10354 ) This PR contains the following updates: \| Package \| Change \| [Age](https://docs.renovatebot.com/merge-confidence/) \| [Confidence](https://docs.renovatebot.com/merge-confidence/) \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.1.1` -> `v12.1.2` \| ![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.1.2?slim=true) \| ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.1.1/v12.1.2?slim=true) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.1.2`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.1.2) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.1.1...v12.1.2) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1204): <!--number 1204 --><!--line 0 --><!--description Zml4OiAiaW5jb3JyZWN0IGNvbnRhaW5lciBwbGF0Zm9ybSBvcHRpb24gJ2FueSciIG9uIGRvY2tlciA+MjguMSB3LyByZW1vdGUgZG9ja2VyIGFjdGlvbnM=-->fix: "incorrect container platform option 'any'" on docker >28.1 w/ remote docker actions<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4yNy41IiwidXBkYXRlZEluVmVyIjoiNDIuMjcuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10354 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-07 01:54:24 +01:00
Renovate Bot	99c5f0ae70	Update dependency mermaid to v11.12.2 (forgejo) (#10338 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10338 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-06 12:59:57 +01:00
Renovate Bot	5f99d2cb23	Update module github.com/blevesearch/bleve/v2 to v2.5.6 (forgejo) (#10307 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10307 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-06 12:44:32 +01:00
Mathieu Fenniak	ffbd500600	feat(actions): support referencing `${{ needs... }}` variables in `runs-on` (#10308 ) Allows referencing the outputs of previously executed jobs in the `runs-on` field directly by a `${{ needs.some-job.outputs.some-output }}`, and also indirectly through the job's `strategy.matrix`. At its most complicated, supports a workflow with dynamic matrices like this: ```yaml jobs: define-matrix: runs-on: docker outputs: array-value: ${{ steps.define.outputs.array }} steps: - id: define run: \| echo 'array=["debian-bookworm", "debian-trixie"]' >> "$FORGEJO_OUTPUT" runs-on-dynamic-matrix: needs: define-matrix strategy: matrix: my-runners: ${{ fromJSON(needs.define-matrix.outputs.array-value) }} runs-on: ${{ matrix.my-runners }} steps: - run: uname -a ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. - Documentation already (incorrectly) states that `jobs.<job-id>.runs-on` can access the `needs` context. 😛 https://forgejo.org/docs/latest/user/actions/reference/#availability ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10308): <!--number 10308 --><!--line 0 --><!--description ZmVhdChhY3Rpb25zKTogc3VwcG9ydCByZWZlcmVuY2luZyBgJHt7IG5lZWRzLi4uIH19YCB2YXJpYWJsZXMgaW4gYHJ1bnMtb25g-->feat(actions): support referencing `${{ needs... }}` variables in `runs-on`<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10308 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-05 18:14:43 +01:00
Mathieu Fenniak	0ecc6ef632	fix(actions): improve errors when `${{ needs... }}` is used in `strategy.matrix` incorrectly (#10298 ) Three fixes are presented together in this PR: - When a `strategy.matrix` entry in an Action job contains `${{ needs.some-job.outputs.some-output }}`, if that output never becomes available, different error messages will be presented if `some-job` isn't found or if `some-output` isn't found. This clarifies an error message that was previously "it could be this, or it could be this". - In the error case described in the previous point, other jobs in the workflow could continue running or could be left "blocked" forever. A centralized `FailRunPreExecutionError` function ensures that all incomplete jobs in the run are failed in this case. - In a rare error case when a job referenced another job in `strategy.matrix` but no other jobs were defined in the workflow, the job would be marked as blocked forever because the `job_emitter` code would never be invoked to detect this case. A new `consistencyCheckRun` function for a newly created `ActionRun` adds a location to perform a pre-execution check for this case so that the run can be failed. These fixes are all interconnected around the refactor for the `FailRunPreExecutionError`, causing them to be bundled rather than individual PRs. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - These are fixes to an unreleased feature and don't require release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10298 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-05 17:17:37 +01:00
Renovate Bot	7e74d142d6	Update module code.forgejo.org/forgejo/runner/v12 to v12.1.1 (forgejo) (#10333 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10333 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-05 16:23:42 +01:00
Mathieu Fenniak	ac487e93d9	fix: reduce runtime of container cleanup by relying on mass digest cleanup (#10297 ) The package cleanup routine checks every container version for whether it is referenced by a multi-platform manifest, which appears to be a performance problem indicated by CPU profiling collected in #9358 on SQLite systems. This PR removes that check completely, which isn't necessary since #4698 added a much more performant mass-cleanup of these dangling platform versions. May fix #9358 completely, but it leaves fundamental scalability concerns with SQLite due to long-running transactions. The transactions will be shorter with this change. Requires end-user testing to confirm if sufficiently fixed. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10297): <!--number 10297 --><!--line 0 --><!--description cmVkdWNlIHJ1bnRpbWUgb2YgY29udGFpbmVyIGNsZWFudXAgYnkgcmVseWluZyBvbiBtYXNzIGRpZ2VzdCBjbGVhbnVw-->reduce runtime of container cleanup by relying on mass digest cleanup<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10297 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-12-05 15:45:47 +01:00
floss4good	d5fa12ded1	feat: add admin moderation actions for abuse reports and for reported abusive content (#8716 ) - Implementation of milestone 6. from Task F. Moderation features: Reporting (part of [amendment of the workplan](https://codeberg.org/forgejo/sustainability/src/branch/main/2022-12-01-nlnet/2025-02-07-extended-workplan.md#task-f-moderation-features-reporting) for NLnet 2022-12-035): `6. Forgejo admins can perform common actions on the listed reports (content deletion, locking of user account)` --- Follow-up of !7905 (and !6977) --- This adds some action buttons within the _Moderation reports_ section (/admin/moderation/reports) within the _Site administration_ page, so that administrators can: - mark a report as Handled or as Ignored (without performing any action on the reported content); - mark a user account as suspended (set `prohibit_login` = true); - delete (and purge) a user / organization and mark the linked reports as Handled; - delete a repository and mark the linked reports as Handled; - delete an issue / pull request and mark the linked reports as Handled; - delete a comment and mark the linked reports as Handled; The buttons were added on the sight side of each report from the overview, below the existing counter (that show how many times the content was reported and opens the details page). Only the buttons for updating the status of the report are directly visible - as `✓` and `✗` icons with some tooltips - while the content actions are hidden under a `⋯` dropdown. The implementation was done using HTMX so that the page is not refreshed after each action. Some discussions regarding the UI/UX started with https://codeberg.org/forgejo/design/issues/30#issuecomment-5958634 ### Manual testing - First make sure that moderation in enabled ([moderation] ENABLED config is set as true within app.ini). - Report multiple users, organizations, repositories, issues, pull requests and comments. - Go to _Moderation reports_ overview section section and make sure the buttons are visible; - The `✓` and `✗` should be available for each shown report; - The horizontal dropdown menu (`⋯`) should not be visible for reports linked to already deleted content. - The actions available within the dropdown menu should correspond to the reported content type (e.g. 'Suspend account' and 'Delete account' for users/organizations, 'Delete repository' for repositories, etc.). - When an action is successful a flash message should be displayed above the overview. - Warnings should be displayed (as flash messages) when trying to suspend or delete your account (in case someone reported you) or an organization. - An info (flash message) should be displayed when trying to suspend a user that is already suspended. - Mark a report as Handled / Ignored and observe that a success flash message confirms the action and the report is removed from the list without reloading the page; - Refresh the page to make sure the report will not be loaded again (also check in the DB that the status was updated and the resolved timestamp is correctly set). - Suspend a user account and make sure the report remains in the list (it is not resolved); - Make sure the above user gets the 'Suspended account' notice after login. - Delete a user account and observe that a success flash message confirms the action and the report is removed from the list without reloading the page; - Make sure that all owned organizations and repositories as well as all the issues, PRs and comments posted in other repositories were deleted; - Make sure the linked abuse reports are marked as Handled (and resolved timestamp is set). - Delete an organization and make sure that owned repositories were also deleted. - Similarly, delete a repository / issue / PR / comment and check that the contents are not available any more and the linked reports are resolved. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8716 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-12-03 20:07:32 +01:00
Renovate Bot	6035d6c825	Update dependency eslint-plugin-unicorn to v62 (forgejo) (#10296 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-03 17:46:30 +01:00
Renovate Bot	a17475c124	Update dependency @playwright/test to v1.57.0 (forgejo) (#10294 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10294 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-03 16:53:37 +01:00
elle	f790d4dfe0	bug: signature: modify URL after error check (#10204 ) Modifies the parsed URL after the error check. Avoids a potential `nil`-pointer de-reference if an invalid URL string argument is provided. No current code path triggers the `nil`-pointer de-reference. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10204 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: elle <0xllx0@noreply.codeberg.org> Co-committed-by: elle <0xllx0@noreply.codeberg.org>	2025-12-03 16:53:19 +01:00
Renovate Bot	655def254f	Update dependency @vitejs/plugin-vue to v6.0.2 (forgejo) (#10289 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10289 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-03 16:50:52 +01:00
Renovate Bot	26e49ce011	Update linters (forgejo) (#10295 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-03 16:22:00 +01:00
famfo	420621d2d4	fix(api/activitypub): simplify signature requirements (#10189 ) Some ActivityPub implementations, for example Mastodon, fetch the outbox when initially populating a user. Mastodon specifically uses the instance to sign the request for this. Further, some implementations sign moderation reports using the instance when delivering them to an actor inbox to protect the privacy of the reporting person to the remote instance. --- ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10189 Reviewed-by: jerger <jerger@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-12-03 16:18:15 +01:00
Renovate Bot	d3f4c4c5e7	Update dependency vite-string-plugin to v1.4.9 (forgejo) (#10291 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-03 01:59:25 +01:00
Renovate Bot	61a2d64f7a	Update dependency go to v1.25.5 (forgejo) (#10302 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.25.4` -> `1.25.5` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4yNy41IiwidXBkYXRlZEluVmVyIjoiNDIuMjcuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10302 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-02 21:55:05 +01:00
Akashdeep Dhar	c4c2b8c1fb	fix: handle empty dates in pagure milestone migration (#10169 ) Don't panic during pagure migration if a milestone has no date. Fixes https://forge.fedoraproject.org/forge/forge/issues/281 ### Manual testing Here's how to confirm that the change is working. Simply migrate a repository having milestones with deadlines from Pagure over to Forgejo to test. At the source namespace, https://pagure.io/protop2g-test-srce/roadmap This change assumes that the milestone's deadline is stored in Pagure in Unix time format (the default). At the destination namespace, check that the due date is correct. Signed-off-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10169 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Co-committed-by: Akashdeep Dhar <akashdeep.dhar@gmail.com>	2025-12-02 07:34:50 +01:00
Renovate Bot	ba778097ee	Update dependency vue to v3.5.25 (forgejo) (#10292 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-02 07:00:22 +01:00
Renovate Bot	42db8d2d54	Update vitest monorepo to v4.0.14 (forgejo) (#10293 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-02 06:43:28 +01:00
Renovate Bot	49066fd27a	Update dependency happy-dom to v20.0.11 (forgejo) (#10290 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-02 06:40:47 +01:00
Renovate Bot	bc7f1d8b63	Update github.com/google/pprof digest to 4902fdd (forgejo) (#10288 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10288 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-02 06:40:10 +01:00
Renovate Bot	80a113e048	Update renovate to v42.27.5 (forgejo) (#10278 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-01 20:36:55 +01:00
Renovate Bot	eeffeefa0d	Update module github.com/klauspost/compress to v1.18.2 (forgejo) (#10280 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10280 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-01 20:36:09 +01:00
Renovate Bot	28ceb827b1	Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.6.0 (forgejo) (#10281 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-01 20:35:07 +01:00
Renovate Bot	4577ea1961	Lock file maintenance (forgejo) (#10220 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10220 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-12-01 17:29:15 +01:00
famfo	b428d47aaa	fix: add stub outboxes to actors (#10120 ) Mastodon doesn't create actors locally if the outbox is not found. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10120 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-12-01 16:51:35 +01:00
0ko	3f207017a8	feat(ui): improve admin dashboard cron list (#10270 ) * in both `/admin` and `/admin/cron`: use new buttons, they are slightly more compact, which i think fits this place well as currently rows here feel too tall * in `/admin/cron`: use `octicon-play` consistently with `/admin` instead of `octicon-triangle-right` * in `/admin`: replace verbose template HTML with Range-based generator * added integration test to verify page content <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10270): <!--number 10270 --><!--line 0 --><!--description ZmVhdCh1aSk6IGltcHJvdmUgYWRtaW4gZGFzaGJvYXJkIGNyb24gbGlzdA==-->feat(ui): improve admin dashboard cron list<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10270 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-01 15:19:36 +01:00
thezzisu	e31d67e0aa	feat: allow sync quota groups with oauth2 auth source (#8554 ) Implements synchronizing an external user's quota group with provided OAuth2 claim. This functionality will allow system administrators to manage user's quota groups automatically. Documentation is at forgejo/docs#1337 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8554 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: thezzisu <thezzisu@gmail.com> Co-committed-by: thezzisu <thezzisu@gmail.com>	2025-12-01 14:12:00 +01:00
0ko	1000a0da3a	chore(ui): cleanup reviews css, improve consistency (#10268 ) * show/hide resolved: got rid of classes `ui labeled button` - ignoring them overriding each other, they were contributing three useful CSS properties in total: ```css padding: 0; background: none; font-weight: 500; ``` and were also contributing an undesired margin: ![](/attachments/4774be16-2989-4b69-bcdb-86e1acae2a85) * also fixed inconsistent font size between two views * additionally got rid of verbose fomantic classes since there was already a rule that could accept their properties * got rid of unused class `add-code-comment-right` * added testing for the hide/show/resolve/unresolved buttons, but not related to CSS, just thought it might be useful <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface changes without a feature or bug label - [PR](https://codeberg.org/forgejo/forgejo/pulls/10268): <!--number 10268 --><!--line 0 --><!--description Y2hvcmUodWkpOiBjbGVhbnVwIHJldmlld3MgY3NzLCBpbXByb3ZlIGNvbnNpc3RlbmN5-->chore(ui): cleanup reviews css, improve consistency<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10268 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-12-01 01:30:25 +01:00
pat-s	c39a4368af	refactor: migrate from `lib/pq` to `jackc/pgx` (#10219 ) This PR migrates the unmaintaiend `lib/pq` library to `jackc/pgx`, which is the de-facto standard lib in go for postgres connections these days. Some implementation notes: We register both `pgx` and `postgresschema` driver names (for backward comp). We can't register `postgres` as this one is still used by `lib/pq` imported by `go-chi/session`, which is in use when users go for the "postgres" session type in the "Session config. It is questionable if anyone is really using the "postgres" driver option in the session config - but for consistency, it would be good to also migrate to `pgx` there, especially as the code lives within Forgejo under [go-chi/session](https://code.forgejo.org/go-chi/session). `pgx` supports multi-host notation in the connection string. New tests have been added therefore. `pgx` also allows for connection string parameters such as `?default_query_exec_mode=simple_protocol`. This should possibly allow running with `pgbouncer` "transaction" mode instead of "session", which could substantially enhance Postgres query handling. ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10219 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-11-30 17:47:45 +01:00
Magnus Jason	36ea60023a	fix(ui): fix width of attached fomantic segments (#10240 ) The REAME on a repositories home page is 2px wider than the other elements in the main container. 1px on each side. There appear to be at least 330 files that have one of these styles, I have tried to go through the UI and look for any regressions, but I may have missed some. ```sh rg '(?=.\bui\b)(?=.\battached\b)(?=.\bheader\b)' --pcre2\|wc 275 rg '(?=.\bui\b)(?=.\battached\b)(?=.\bsegment\b)' --pcre2\|wc 330 rg '(?=.\bui\b)(?=.\battached\b)(?=.\btable\b)' --pcre2\|wc 56 ``` I tried to track down the origin. I found the following information. The behavior originates in semantic-ui, and was carried on in the fomantic-ui fork. It looks like the author was trying to achieve a 1px box-shadow look, but decided to implement it using a border after poor results with box-shadow. attachedHorizontalOffset introduced, `a623e4411c` * attachedHorizontalOffset used for the margin on `.ui.segment.attached`, `5c7d5f13d8 (diff-ce37074faff5ddf9591ee8fd88818b6e99376519ce9e6e451cdb7db20dcbecf6R449)` I also found some upstream issues raised about the same bug: * https://github.com/Semantic-Org/Semantic-UI/issues/3592 * https://github.com/Semantic-Org/Semantic-UI/issues/4248 * https://github.com/Semantic-Org/Semantic-UI/issues/6763 * https://github.com/fomantic/Fomantic-UI/issues/1401 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10240 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Magnus Jason <magnus@magnusjason.com> Co-committed-by: Magnus Jason <magnus@magnusjason.com>	2025-11-30 17:13:23 +01:00
0ko	d4068e6bcf	feat: improve devtest, link to it from user menu (#10263 ) Addition to the user menu in navbar: * display a link to `/devtest` if the instance run mode is dev instead of prod * I think this is useful because: * devtest pages are in general useful in development, but are not easy to discover by newcomers * if the instance uses incorrect run mode, this entry should annoy it's admin into fixing the issue Improvements to `/devtest`: * fix error pages links * add a few headers and explanation for what this page is for Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10263 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-30 17:03:22 +01:00
nachtjasmin	8ee4a7d658	chore: ensure consistent import aliasing for services and models (#10253 ) To make sure that the code stays maintainable, I added the `importas` linter to ensure that the imports for models and services stay consistent. I realised that this might be needed after finding some discrepancies between singular/plural naming, and, especially in the case of the `forgejo.org/services/context` package, multiple different aliases like `gitea_ctx`, `app_context` and `forgejo_context`. I decided for `app_context`, as that seems to be the most commonly used naming. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10253 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2025-11-30 17:00:57 +01:00
Mathieu Fenniak	993da59ad4	i18n: translate Actions PreExecutionError for viewer (#10267 ) Identified in code review https://codeberg.org/forgejo/forgejo/pulls/10244#issuecomment-8576643, the `PreExecutionError` field in `ActionRun` isn't well implemented as it translates the error at action runtime rather than later when the action is viewed in the UI. This PR adds an error code and error details column that can be more correctly translated. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10267 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-30 13:16:41 +01:00
0ko	6edfeb60f9	ui: improve release editing (#9940 ) Converted 8 buttons, fixed a few bugs with markdown editor, added some testing for template logic. The fixes are not auto-testable within reasonable effort and the changes like button conversion have nothing specific to be tested for. ### Convert form buttons to new buttons \|Before\|After\| \|-\|-\| \|![](/attachments/2e372363-4997-4831-9edb-e1a2c4839eb7)\|![](/attachments/31c7be64-8f70-4287-b889-9055bc4a7a42)\| ### Justify "Delete release" button away from other buttons \|Before\|![](/attachments/e55124ee-b6e0-4098-ac06-d5ad8ada671f)\| \|-\|-\| \|After\|![](/attachments/22ea09b5-c6e2-4a02-ae77-d92e1dbe7a72)\| \|Before\|![](/attachments/2ad14280-676b-4341-ae85-a7036ea5ace2)\| \|-\|-\| \|After\|![](/attachments/6cbe7c70-8efd-4b35-bb12-21a19eaafa67)\| ### Fix markdown editor on mobile \|Before\|After\| \|-\|-\| \|![](/attachments/21ed3b55-ea88-446f-b074-6242b07a38e1)\|![](/attachments/d033b67f-c8bb-42e7-96a9-de48289e1ba2)\| ### Buttons preview on mobile \|Before\|After\|Before\|After\| \|-\|-\|-\|-\| \|![](/attachments/2795d62c-e909-457d-9e52-81a76ab6531f)\|![](/attachments/af6e534e-5300-42d6-93c3-4b763039e2ae)\|![](/attachments/7812d273-c371-4ed1-8054-a80c0cfc2518)\|![](/attachments/a98e8ad3-818d-4254-b9cd-70c81dd40fb9)\| Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9940 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-11-30 05:08:24 +01:00
Gusted	9bca858c42	fix: path escape browse further URL (#10265 ) - Resolves forgejo/forgejo#10214 - The renamed file can be any value, so escape it properly for usage in a URL path. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10265 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-30 02:58:15 +01:00
patdyn	c9e9494bff	fix: translate Gitlab merge requests references during migration (#10077 ) Resolves https://codeberg.org/forgejo/forgejo/issues/1869. Converts descriptions that mentions merge requests to point to the new index (Forgejo like Github, uses a unified index while Gitlab has two separate indexes for issues and merge requests). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10077 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org>	2025-11-29 23:13:34 +01:00
Gusted	d1cef852ee	feat: rework `notification` table (#9926 ) This change is motivated by `5e300a2a87` - Drop the `updated_by` and `commit_id` column, they are unused and have a index for no reason. - Drop the index on `status` and `created_unix` and make a index on `(user_id, status)`. ## Test 1. Run migration. 2. Confirm the migration succeeds. 3. Check that `notification` table has the correct indexes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9926 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-29 23:03:56 +01:00
Mathieu Fenniak	482ba3a4e5	feat(actions): support referencing ${{ needs... }} variables in `strategy.matrix` (#10244 ) https://code.forgejo.org/forgejo/forgejo-actions-feature-requests/issues/71 requires partial implementation in runner, and partial in Forgejo; this is the Forgejo implementation. Allows for the definition of dynamic job matrixes in Forgejo Actions, where an earlier job provides and output that is used in `strategy.matrix` for a later job that requires it. For example, adapted from the GitHub Actions example for this feature: ```yaml name: shared matrix on: push: workflow_dispatch: jobs: define-matrix: runs-on: docker outputs: colors: ${{ steps.colors.outputs.colors }} steps: - name: Define Colors id: colors run: \| echo 'colors=["red", "green", "blue"]' >> "$GITHUB_OUTPUT" produce-artifacts: runs-on: docker needs: define-matrix strategy: matrix: color: ${{ fromJSON(needs.define-matrix.outputs.colors) }} steps: - name: Define Color env: color: ${{ matrix.color }} run: \| echo "$color" > color - name: Produce Artifact uses: https://data.forgejo.org/forgejo/upload-artifact@v4 with: name: ${{ matrix.color }} path: color consume-artifacts: runs-on: docker needs: - define-matrix - produce-artifacts strategy: matrix: color: ${{ fromJSON(needs.define-matrix.outputs.colors) }} steps: - name: Retrieve Artifact uses: https://data.forgejo.org/forgejo/download-artifact@v4 with: name: ${{ matrix.color }} - name: Report Color run: \| cat color ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1607 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/10244): <!--number 10244 --><!--line 0 --><!--description ZmVhdChhY3Rpb25zKTogc3VwcG9ydCByZWZlcmVuY2luZyAke3sgbmVlZHMuLi4gfX0gdmFyaWFibGVzIGluIGBzdHJhdGVneS5tYXRyaXhg-->feat(actions): support referencing ${{ needs... }} variables in `strategy.matrix`<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10244 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-29 17:49:04 +01:00
nachtjasmin	20dd01908c	chore(lint): Remove unnecessary depguard rules (#10256 ) * github.com/unknwon/com is no longer importe * ioutil is no longer used (and covered by Go's own vetting rules) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10256 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2025-11-29 17:30:44 +01:00
0ko	3bf4f0275a	chore(e2e): use expect().toBeCloseTo instead of Math.round (#10257 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6799, https://codeberg.org/forgejo/forgejo/pulls/9057 toBeCloseTo() recently popped in autocomplete suggestions and it seems like a cleaner way than using Math.round Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10257 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-29 16:59:17 +01:00
Sandro Santilli	7a6d53cb65	chore(ui): mention proc-receive in text for dashboard.resync_all_hooks func (#10182 ) That hook is the one required for AGit workflow, or clients will get: remote: error: cannot find hook 'proc-receive' Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10182 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Sandro Santilli <strk@kbt.io> Co-committed-by: Sandro Santilli <strk@kbt.io>	2025-11-29 06:20:32 +01:00
Renovate Bot	6d986e086f	Update module code.forgejo.org/forgejo/runner/v12 to v12.1.0 (forgejo) (#10258 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v12](https://code.forgejo.org/forgejo/runner) \| `v12.0.1` -> `v12.1.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv12/v12.0.1/v12.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v12)</summary> ### [`v12.1.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.1.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.0.1...v12.1.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1188): <!--number 1188 --><!--line 0 --><!--description ZmVhdDogZXZhbHVhdGUgdmFyaWFibGVzIGluIHN0cmF0ZWd5Lm1hdHJpeCBkdXJpbmcgam9iIHBhcnNpbmc=-->feat: evaluate variables in strategy.matrix during job parsing<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1190): <!--number 1190 --><!--line 0 --><!--description ZmVhdChqb2JwYXJzZXIpOiBzdXBwb3J0IHJlZmVyZW5jaW5nICR7eyBuZWVkcy4uLiB9fSB2YXJpYWJsZXMgaW4gYHN0cmF0ZWd5Lm1hdHJpeGA=-->feat(jobparser): support referencing ${{ needs... }} variables in `strategy.matrix`<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1184): <!--number 1184 --><!--line 0 --><!--description ZmVhdDogcnVuIGhvc3QgY2hpbGQgcHJvY2Vzc2VzIGluIGdyb3Vwcw==-->feat: run host child processes in groups<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1182): <!--number 1182 --><!--line 0 --><!--description ZmVhdDogYWRkIHN1cHBvcnQgZm9yIGAtLXBsYXRmb3JtYCBpbiBjb250YWluZXIgb3B0aW9ucw==-->feat: add support for `--platform` in container options<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1185): <!--number 1185 --><!--line 0 --><!--description Zml4OiBgZm9yZ2UucnVuX2F0dGVtcHRgIGlzIGFsd2F5cyAx-->fix: `forge.run_attempt` is always 1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1178): <!--number 1178 --><!--line 0 --><!--description Zml4OiBleGFtcGxlcy9seGMtc3lzdGVtZDogZ2l0IGlzIGEgZGVwZW5kZW5jeSBvZiBydW5uZXIgdjEy-->fix: examples/lxc-systemd: git is a dependency of runner v12<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1172): <!--number 1172 --><!--line 0 --><!--description QWRkIGV4YW1wbGUgdGhhdCBkZW1vbnN0cmF0ZXMgb24gZGVtYW5kIHJ1bm5lcnM=-->Add example that demonstrates on demand runners<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1191): <!--number 1191 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMiAobWFqb3Ip-->Update forgejo-runner to v12 (major)<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1183): <!--number 1183 --><!--line 0 --><!--description Rml4IHRlc3QgZmFpbHVyZSBvbiBXaW5kb3dzIGR1ZSB0byBtb3JlIHN0cmljdCBmaWxlIGxvY2sgaGFuZGxpbmc=-->Fix test failure on Windows due to more strict file lock handling<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1181): <!--number 1181 --><!--line 0 --><!--description dGVzdDogcnVuIGBsaW50LWNoZWNrYCBkdXJpbmcgQ0ksIGFkZCBmb3JiaWRpZ28sIGNsZWFudXAgbGludGVyIGV4Y2x1c2lvbnM=-->test: run `lint-check` during CI, add forbidigo, cleanup linter exclusions<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4xMS4wIiwidXBkYXRlZEluVmVyIjoiNDIuMTEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10258 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-28 21:45:15 +01:00
0ko	79c47c2e50	feat(ui): improve modal width rules (#10246 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9636, https://codeberg.org/forgejo/forgejo/pulls/8859#issuecomment-6651595. 1. Due to lack of `min-width`, currently the new consistent dialogs can get disproportionally small to the screen. This PR adds a min-width of 400px. No deep consideration went into choosing this particular width. * To make the test not depend on modals we have in the UI with some arbitrary widths a devtest page was added instead 2. Use more horizontal space on narrow screens Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10246 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-11-28 19:38:50 +01:00
nachtjasmin	f7eb4918d4	chore: move code for manual merges into merge_manual.go (#10141 ) This is merely a small refactoring, aimed to reduce the diff size of #10129. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10141 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2025-11-28 07:57:31 +01:00
polyfloyd	5130d926ef	chore: Add diagnostic log for LDAP logins that expect groups (#9807 ) Adds a little hint as to why an LDAP login could fail. See my related comment here: https://codeberg.org/forgejo/forgejo/issues/9546#issuecomment-7853243 I hope this will save the next person running into this a lot of hair pulling 😬 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9807 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: polyfloyd <floyd@polyfloyd.net> Co-committed-by: polyfloyd <floyd@polyfloyd.net>	2025-11-28 07:28:55 +01:00
0ko	d02db83bbb	merge commit: i18n: update of translations from Codeberg Translate (#10131 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10131 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-28 07:26:52 +01:00
Codeberg Translate	959e4cf138	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kropotkin <kropotkin@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Priit Jõerüüt <jrtcdbrg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Yushu <yushu@noreply.codeberg.org> Co-authored-by: anorprogrammer <anorprogrammer@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: futsuuu <futsuuu@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: luthkur <luthkur@noreply.codeberg.org> Co-authored-by: nitromelon <nitromelon@noreply.codeberg.org> Co-authored-by: rchk <rchk@noreply.codeberg.org> Co-authored-by: tace16 <tace16@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: γλωσσολαλιά <glossolalia@noreply.codeberg.org> Co-authored-by: Кнⷫѧⷷ̈зⷮьⷬ Кропоткинъ <kropotkin@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/isv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/la/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/isv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/la/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-11-28 05:41:40 +00:00
nachtjasmin	b8126d7f38	fix(ui): use octicon-repo-forked in repo list (#10227 ) Closes: #10153 ![Screenshot of the fixed icon](/attachments/38559840-9cd0-4e37-9a25-106d21db8a42) Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10227 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: nachtjasmin <nachtjasmin@posteo.de> Co-committed-by: nachtjasmin <nachtjasmin@posteo.de>	2025-11-26 11:21:20 +01:00
Renovate Bot	70df33c321	Update dependency webpack to v5.103.0 (forgejo) (#10197 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10197 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-25 23:26:33 +01:00
Erki Aring	6cae1b4bf3	feat: place user names into inline code blocks for Slack (#10147 ) Committer names in Slack/Mattermost messages trigger notifications to the corresponding users if they have configured notifications for messages containing their names. These notifications are intended to alert users when someone else mentions them. However, for Git-related messages, users may receive notifications triggered by their own actions. To prevent this, BitBucket, for example, places names in inline code blocks. This pull request adds a similar feature for the Forgejo Slack webhook. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10147 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Erki Aring <erki@example.ee> Co-committed-by: Erki Aring <erki@example.ee>	2025-11-25 23:24:05 +01:00
Andreas Ahlenstorf	ac9c4282bd	fix: download logs of currently displayed Action run attempt (#10225 ) While the page `/{owner}/{repo}/actions/runs/{run}/jobs/{job}/attempt/{attempt}` offers a button to download the logs of the currently displayed Action run attempt, it always sent the logs of the last attempt. For example, if there were two attempts, it was impossible to download the logs of the first attempt. With this fix, the user receives the logs of the attempt currently being displayed. Users that have the page open while Forgejo is being upgraded will not be able to download logs until they have refreshed the page. Fixes https://codeberg.org/forgejo/forgejo/issues/10221. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10225): <!--number 10225 --><!--line 0 --><!--description ZG93bmxvYWQgbG9ncyBvZiBjdXJyZW50bHkgZGlzcGxheWVkIEFjdGlvbiBydW4gYXR0ZW1wdA==-->download logs of currently displayed Action run attempt<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10225 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-25 04:54:29 +01:00
Cyborus	4e4c818b74	fix(api): `adminDEleteQuotaRule` typo (#10217 ) Just a minor capitalization typo. `DELETE /admin/quota/rules/{quotarule}`'s operation ID was `adminDEleteQuotaRule` where it should be `adminDeleteQuotaRule`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10217 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@disroot.org> Co-committed-by: Cyborus <cyborus@disroot.org>	2025-11-24 00:44:49 +01:00
Renovate Bot	d2bde42347	Update module code.forgejo.org/forgejo/runner/v11 to v12 (forgejo) (#10213 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v11](https://code.forgejo.org/forgejo/runner) \| `v11.3.1` -> `v12.0.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v12.0.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.3.1/v12.0.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v11)</summary> ### [`v12.0.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.0.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v12.0.0...v12.0.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1175): <!--number 1175 --><!--line 0 --><!--description Zml4OiAnZmFpbGVkIHRvIHJlYWQgYWN0aW9uJyBlcnJvcnMgd2hlbiB1c2luZyByZWxhdGl2ZSB3b3JrZGlyX3BhcmVudA==-->fix: 'failed to read action' errors when using relative workdir\_parent<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1176): <!--number 1176 --><!--line 0 --><!--description Y2hvcmU6IGJ1bXAgdmVyc2lvbiB0byB2MTI=-->chore: bump version to v12<!--description--> <!--end release-notes-assistant--> ### [`v12.0.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v12.0.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.3.1...v12.0.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes Breaking change: This release is a major version bump due to a system requirement change, requiring a git installation. This requirement is included in the OCI containers, but may require the installation of a supported package, or packaging changes from redistributors of Forgejo Runner. Access to a `git` binary is now required to access reusable actions and workflows, such as `use: action/checkout@v5` -- before this release, access was performed using an internal library that avoided an external dependency. [PR](https://code.forgejo.org/forgejo/runner/pulls/1162) * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1173): <!--number 1173 --><!--line 0 --><!--description ZmVhdDogYWRkIGNvbmZpZyB2YWx1ZXMgdG8gb3ZlcnJpZGUgdGFzayBmaW5hbGl6YXRpb24gcmV0cnk=-->feat: add config values to override task finalization retry<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1160): <!--number 1160 --><!--line 0 --><!--description ZmVhdDogc2tpcCBmZXRjaGluZyByZW1vdGUgYWN0aW9uIHJlcG8gd2hlbiB1c2luZyBmdWxsIHNoYSBhbHJlYWR5IGZldGNoZWQ=-->feat: skip fetching remote action repo when using full sha already fetched<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1162): <!--number 1162 --><!--line 0 --><!--description ZmVhdDogdXNlIGdpdCB3b3JrIHRyZWVzIGZvciByZW1vdGUgZ2l0IGFjdGlvbnMgJiB3b3JrZmxvd3M=-->feat: use git work trees for remote git actions & workflows<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1170): <!--number 1170 --><!--line 0 --><!--description Zml4OiBpbXByb3ZlIGxvZ2dpbmcgb24gZmluYWwgbG9nICYgc3RhdHVzIHRyYW5zbWlzc2lvbiBhbmQgcmV0cmllcw==-->fix: improve logging on final log & status transmission and retries<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1135): <!--number 1135 --><!--line 0 --><!--description Zml4OiBlbmFibGUgYnVpbGRpbmcgZm9yIG9wZW5ic2QsIGRyYWdvbmZseSwgYW5kIHNvbGFyaXMvaWxsdW1vcw==-->fix: enable building for openbsd, dragonfly, and solaris/illumos<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1136): <!--number 1136 --><!--line 0 --><!--description Zml4OiBpbml0aWFsaXplIHdvcmtmbG93LWxldmVsIGVudiBjb250ZXh0IGJlZm9yZSBzdGFydGluZyBqb2IgY29udGFpbmVy-->fix: initialize workflow-level env context before starting job container<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1137): <!--number 1137 --><!--line 0 --><!--description Zml4OiBhbGxvdyAnZW52JyBjb250ZXh0IGluIGpvYnMuPG5hbWU+Lmlm-->fix: allow 'env' context in jobs.<name>.if<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1145): <!--number 1145 --><!--line 0 --><!--description Zml4OiByZW1vdGUgcmV1c2FibGUgd29ya2Zsb3dzIGJ5IHJlbGF0aXZlIFVSTCB1c2UgZGVmYXVsdF9hY3Rpb25zX3VybA==-->fix: remote reusable workflows by relative URL use default\_actions\_url<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1156): <!--number 1156 --><!--line 0 --><!--description Zml4OiBVc2UgZ2l0IHJlc2V0IC0taGFyZCBpbnN0ZWFkIG9mIHB1bGwgYW5kIGNoZWNrb3V0IGZvciBhY3Rpb25z-->fix: Use git reset --hard instead of pull and checkout for actions<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1163): <!--number 1163 --><!--line 0 --><!--description Zml4OiBydW4gaW1hZ2VzIHdpdGggZXhwbGljaXQgcGxhdGZvcm0gdGFncywgZml4ZXMgcHVsbGVkIGltYWdlIGFyY2hpdGVjdHVyZSBtaXNtYXRjaA==-->fix: run images with explicit platform tags, fixes pulled image architecture mismatch<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1165): <!--number 1165 --><!--line 0 --><!--description Zml4OiBpbXByb3ZlIGxvZ2dpbmcgJiBkaXNwbGF5IG9mIGVycm9ycyBkdXJpbmcgd29ya2Zsb3cgZXZhbHVhdGlvbg==-->fix: improve logging & display of errors during workflow evaluation<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1171): <!--number 1171 --><!--line 0 --><!--description Zml4OiBlbnN1cmUgaHR0cC5DbGllbnQgYWx3YXlzIGhhcyBhIHRpbWVvdXQgZm9yIEZvcmdlam8gYWNjZXNz-->fix: ensure http.Client always has a timeout for Forgejo access<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1139): <!--number 1139 --><!--line 0 --><!--description Zml4OiBwYXNzIG9zIGFyZ3VtZW50IHRvIGBseGMtaGVscGVycy5zaGAgaGVscGVyIGZybSBgZm9yZ2Vqby1ydW5uZXItc2VydmljZS5zaGA=-->fix: pass os argument to `lxc-helpers.sh` helper frm `forgejo-runner-service.sh`<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1155): <!--number 1155 --><!--line 0 --><!--description dGVzdDogYWxsb3cgb3ZlcnJpZGluZyB0aGUgdGVzdCBEb2NrZXIgc29ja2V0IHVzaW5nIERPQ0tFUl9IT1NU-->test: allow overriding the test Docker socket using DOCKER\_HOST<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1152): <!--number 1152 --><!--line 0 --><!--description V2luZG93cyBjb21wYXRpYmlsaXR5IGZpeGVz-->Windows compatibility fixes<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1159): <!--number 1159 --><!--line 0 --><!--description Y2hvcmU6IHJlbW92ZSB1bnVzZWQgYW5kIGluY29tcGxldGUgQWN0aW9uQ2FjaGUgcmV3cml0ZQ==-->chore: remove unused and incomplete ActionCache rewrite<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1168): <!--number 1168 --><!--line 0 --><!--description VXBkYXRlIGdvbGFuZy5vcmcveC9jcnlwdG8gKGluZGlyZWN0KSB0byB2MC40NS4wIFtTRUNVUklUWV0=-->Update golang.org/x/crypto (indirect) to v0.45.0 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1141): <!--number 1141 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2RvY2tlci9jbGkgdG8gdjI4LjUuMitpbmNvbXBhdGlibGU=-->Update module github.com/docker/cli to v28.5.2+incompatible<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1154): <!--number 1154 --><!--line 0 --><!--description VXBkYXRlIGdvbGFuZy5vcmcveC9jcnlwdG8gKGluZGlyZWN0KSB0byB2MC40My4wIFtTRUNVUklUWV0=-->Update golang.org/x/crypto (indirect) to v0.43.0 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1149): <!--number 1149 --><!--line 0 --><!--description Y2koY2FzY2FkZS1mb3JnZWpvKTogdXNlIHRtcGZzIGZvciBidWlsZGluZyB0byBzcGVlZHVwIGNvbXBpbGF0aW9u-->ci(cascade-forgejo): use tmpfs for building to speedup compilation<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1148): <!--number 1148 --><!--line 0 --><!--description Y2hvcmUocmVub3ZhdGUpOiBhbGxvdyB1cGRhdGluZyBtb3JlIGZvcmdlam8tcnVubmVyLXNlcnZpY2UgZGVwcw==-->chore(renovate): allow updating more forgejo-runner-service deps<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1142): <!--number 1142 --><!--line 0 --><!--description Y2k6IGFsbG93IGdvIHRvIGRvd25sb2FkIHJlcXVpcmVkIHRvb2xjaGFpbiBmb3IgY2FzY2FkZQ==-->ci: allow go to download required toolchain for cascade<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1132): <!--number 1132 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWdvIGFjdGlvbiB0byB2Ng==-->Update <https://data.forgejo.org/actions/setup-go> action to v6<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1140): <!--number 1140 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjAuNQ==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.0.5<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1133): <!--number 1133 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9kb2NrZXIvYnVpbGQtcHVzaC1hY3Rpb24gYWN0aW9uIHRvIHY2-->Update <https://data.forgejo.org/docker/build-push-action> action to v6<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1134): <!--number 1134 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9kb2NrZXIvc2V0dXAtYnVpbGR4LWFjdGlvbiBhY3Rpb24gdG8gdjM=-->Update <https://data.forgejo.org/docker/setup-buildx-action> action to v3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1131): <!--number 1131 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2NoZWNrb3V0IGFjdGlvbiB0byB2NQ==-->Update <https://data.forgejo.org/actions/checkout> action to v5<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1130): <!--number 1130 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMS4zLjE=-->Update forgejo-runner to v11.3.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4xMS4wIiwidXBkYXRlZEluVmVyIjoiNDIuMTEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10213 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-23 15:58:57 +01:00
floss4good	a93fa287f4	fix: make sure the details page is still rendered correctly even if the poster of reported comment was deleted (#10199 ) When opening the report details page of a reported comment who's poster was meanwhile deleted, the title was wrongly saying that _Reported content with type 4 and id ... no longer exists_ (on the overview page the title was correctly showing the content reference). This PR fixes the issue and adds some tests for this case. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10199 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-11-21 23:04:09 +01:00
0ko	de3f376882	feat(ui): convert disable/enable workflow menu to JS-less dropdown (#10133 ) * convert the dropdown (overflow menu) to the JS-less one * the "link" still relies on JS to make a POST, changing this is not in scope of this PR * fixed the weird behavior where opener changes it's color when hovering over the "link" * the bug where the script that refreshes the list once in a while closes an open dropdown is not fixed and is not in scope of this PR * use border in the opener * it might not look as sleek but it is easier to see and better for the user to be able to understand that this is an active intractable element * global dropdown improvements * add rounding rules for dropdowns with only one item - the first such case * add testing for rounding rules * added a devtest page to play with the dropdown component on Preview B: https://codeberg.org/forgejo/forgejo/attachments/1462cdda-71f5-45d0-a206-33bb17740cb8 A: https://codeberg.org/forgejo/forgejo/attachments/d3c265cb-6b77-40c8-9944-d9327f3bec65 B: https://codeberg.org/forgejo/forgejo/attachments/17f17c29-4dcd-4015-b5b9-6d438bd2eb0b A: https://codeberg.org/forgejo/forgejo/attachments/d94e196c-725e-47de-b4de-ed97b148ceb6 B: https://codeberg.org/forgejo/forgejo/attachments/1813ded9-f619-47d9-bf15-ad4bcd3535ab A: https://codeberg.org/forgejo/forgejo/attachments/09042e58-331e-414d-ac8f-0f1091033b7f Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10133 Reviewed-by: Otto <otto@codeberg.org>	2025-11-21 16:59:01 +01:00
Nils Philippsen	f4e3c0aaac	chore: fix typo (#10188 ) Signed-off-by: Nils Philippsen <nils@redhat.com> Co-authored-by: Nils Philippsen <nils@redhat.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10188 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Nils Philippsen <nilsph@noreply.codeberg.org> Co-committed-by: Nils Philippsen <nilsph@noreply.codeberg.org>	2025-11-21 12:36:28 +01:00
forgejo-release-manager	74926bdbea	chore(release-notes): Forgejo v11.0.8 (#10201 ) https://codeberg.org/forgejo/forgejo/milestone/29558 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10201 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-11-21 12:02:51 +01:00
forgejo-release-manager	abec41fcbe	chore(release-notes): Forgejo v13.0.3 (#10200 ) https://codeberg.org/forgejo/forgejo/milestone/29561 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10200 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-11-21 11:55:33 +01:00
0ko	499ef1e599	fix(i18n/en): improve search syntax hints (#10187 ) Followup to https://codeberg.org/forgejo/forgejo/issues/9109. Fixed a few confusing ones: * "Filter by reviewed user" sounded more related to "requested review", but it is really about users who already left one, even if it wasn't requested * "Filter by sort type" only does sorting, not filtering Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10187 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-11-21 10:09:17 +01:00
Renovate Bot	956b58736b	Update x/tools to v0.39.0 (forgejo) (#10198 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-21 09:21:44 +01:00
Renovate Bot	8f85835434	Update go-openapi packages (forgejo) (#10195 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10195 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-21 08:29:02 +01:00
Mathieu Fenniak	6c43dcbe0a	2025-11-21 combined security patches (#10037 ) [CVSS 5.3 Medium](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N) -- The `/repos/{owner}/{repo}/issues/{index}/dependencies` APIs allow a user to link an issue in one repository as "depending upon" an issue in another repository. Forgejo's implementation had an incorrect permission check which would verify only that the user had write permissions on the issue being modified, and not on the issue it was linking to. Due to the incorrect permission check, it was possible to view limited information (the existence of, and title of) an issue in a private repository that the user does not have access to view. The permission check has been corrected to take into account visibility of the remote repository. [CVSS 5.3 Medium](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N) -- Fetching information about a release via the `/repos/{owner}/{repo}/releases/tag/{tag}` API endpoint did not check whether the release was a draft, allowing accessing to information about a draft release to users who could predict an upcoming release tag but didn't have access to view it. The missing check has been added, returning a 404 response when the release is not published. [CVSS 6.3 Medium](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N) -- Forgejo's web interface allows deleting tags on a git repository through a form post. The endpoint for this form post had misconfigured middleware handlers which enforce security rights, allowing an anonymous user, or a logged-in user without the correct permissions, to delete tags on repositories that they did not own by injecting arbitrary internal tag identifiers into the form. The middleware handler configuration has been corrected. [CVSS 2.1 Low](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N) -- When the head branch of a pull request matches a branch protection rule, the head branch should be able to be merged or rebased only according to the "Push" rules defined in the protection rule. An implementation error checked those branch protection rules in the context of the base repository rather than the head repository, allowing users with write access to the base repository to be considered able to push to the branch, bypassing the "Enable push" option's expected security control. [CVSS 2.1 Low](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N) -- An issue owner can manipulate form inputs to delete the content history of comments they did not create, as long as those comments are on issues that they own. Although comment content is not affected, the history of edits on the comment can be trimmed. The validation in the form handler was corrected. [CVSS 5.1 Medium](https://www.first.org/cvss/calculator/4-0#CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N) -- When a repository is configured with tag protection rules, it should not be possible for a user that is outside the whitelisted users or teams from modifying the protected tags. An incorrect parameter being passed to a security verification method allowed a user with write access to the repo to delete tags even if they were protected, as long as the tag was originally created by a user who is still authorized by the protection rules. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Security bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 0 --><!--description Zml4KGFwaSk6IGZpeCBkZXBlbmRlbmN5IHJlcG8gcGVybXMgaW4gQ3JlYXRlL1JlbW92ZUlzc3VlRGVwZW5kZW5jeQ==-->fix(api): fix dependency repo perms in Create/RemoveIssueDependency<!--description--> - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 1 --><!--description Zml4KGFwaSk6IGRyYWZ0IHJlbGVhc2VzIGNvdWxkIGJlIHJlYWQgYmVmb3JlIGJlaW5nIHB1Ymxpc2hlZA==-->fix(api): draft releases could be read before being published<!--description--> - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 2 --><!--description bWlzY29uZmlndXJlZCBzZWN1cml0eSBjaGVja3Mgb24gdGFnIGRlbGV0ZSB3ZWIgZm9ybQ==-->misconfigured security checks on tag delete web form<!--description--> - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 3 --><!--description aW5jb3JyZWN0IGxvZ2ljIGluICJVcGRhdGUgUFIiIGRpZCBub3QgZW5mb3JjZSBoZWFkIGJyYW5jaCBwcm90ZWN0aW9uIHJ1bGVzIGNvcnJlY3RseQ==-->incorrect logic in "Update PR" did not enforce head branch protection rules correctly<!--description--> - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 4 --><!--description aXNzdWUgb3duZXIgY2FuIGRlbGV0ZSBhbm90aGVyIHVzZXIncyBjb21tZW50J3MgZWRpdCBoaXN0b3J5IG9uIHNhbWUgaXNzdWU=-->issue owner can delete another user's comment's edit history on same issue<!--description--> - [PR](https://codeberg.org/forgejo/forgejo/pulls/10037): <!--number 10037 --><!--line 5 --><!--description dGFnIHByb3RlY3Rpb24gcnVsZXMgY2FuIGJlIGJ5cGFzc2VkIGR1cmluZyB0YWcgZGVsZXRlIG9wZXJhdGlvbg==-->tag protection rules can be bypassed during tag delete operation<!--description--> <!--end release-notes-assistant--> Co-authored-by: Joshua Rogers <MegaManSec@users.noreply.github.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10037 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-21 05:23:43 +01:00
Renovate Bot	01399f13d9	Update module github.com/go-ldap/ldap/v3 to v3.4.12 (forgejo) (#9501 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9501 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-21 03:27:53 +01:00
Renovate Bot	0fe2229266	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.6.2 (forgejo) (#10196 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-21 02:14:01 +01:00
Renovate Bot	6c575203b7	Update module golang.org/x/crypto to v0.45.0 (forgejo) (#10173 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10173 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-20 16:07:31 +01:00
viceice	c98a68d84d	chore(renovate): support `.forgejo/renovate.json` (#10180 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10180 Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2025-11-20 16:07:27 +01:00
viceice	2e8a59754a	chore: pin node version (#10179 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10179 Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2025-11-20 16:07:22 +01:00
oliverpool	dc5580525e	fix: support git clone when /tmp has noexec (#10146 ) Resolves #9733 (alternative to #10136) Instead of setting `GIT_ASKPASS`, instruct git to use the credential-store helper with a dedicated file. The tests have been adjusted accordingly. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10146 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-11-19 16:36:34 +01:00
Roman K.	5f706fa562	fix: typo in Actions.SkipWorkflowStrings ini tag (#10165 ) Fix a typo in the `ini` struct tag for `Actions.SkipWorkflowStrings` in the actions settings. Because of this, the config loader does not recognize the tag, and the `SKIP_WORKFLOW_STRINGS` option from the `[actions]` section in the config file is ignored. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10165 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Roman K. <devops@syncstack.net> Co-committed-by: Roman K. <devops@syncstack.net>	2025-11-19 16:20:45 +01:00
Gabor Pihaj	861272b0e9	test: compare file list instead of byte length in gzipped repo archive test (#10161 ) As discussed on matrix, on my NixOS machine and in a Ubuntu distrobox container these tests were failing, as the byte length of the response was different: ``` api_repo_archive_test.go:43: Error Trace: /home/vdx/workspace/personal/forgejo/tests/integration/api_repo_archive_test.go:43 Error: "[31 139 8 0 0 0 0 0 0 3 237 212 177 106 195 48 16 6 224 155 253 20 134 238 237 201 146 78 237 208 161 144 140 93 250 2 193 178 165 52 16 71 70 113 32 143 95 26 111 134 180 29 18 135 146 255 91 14 36 129 164 59 157 250 250 184 90 111 147 175 183 171 207 80 183 33 211 229 49 51 139 200 41 50 243 52 50 139 33 165 89 180 21 167 156 35 102 101 172 86 180 166 25 28 246 67 157 137 57 167 52 252 180 238 183 249 233 229 254 9 91 149 77 234 186 176 27 94 197 70 229 99 229 124 163 125 116 28 197 136 117 98 159 69 219 32 194 47 38 180 190 241 166 45 110 125 102 184 156 28 250 164 158 174 155 209 239 126 112 206 158 239 127 230 105 255 87 170 210 100 105 6 119 222 255 99 253 63 150 111 139 247 229 99 215 94 101 143 241 255 55 231 235 175 101 90 127 109 88 209 44 73 188 243 250 63 148 167 23 80 20 139 176 111 242 166 31 54 105 87 198 148 199 225 91 159 14 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 232 15 190 0 14 221 99 58 0 40 0 0]" should have 266 item(s), but has 264 ``` Instead of comparing the byte length of the gzipped archive, it's is probably an improvement to check the list of directories and files in the archive instead. The content of these files could be checked as well, as they are relatively small, but in general it might not always be feasible. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10161 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Gabor Pihaj <gabor.pihaj@gmail.com> Co-committed-by: Gabor Pihaj <gabor.pihaj@gmail.com>	2025-11-19 16:14:44 +01:00
Kevin Schoon	363a712aa2	chore: do not clobber ~/.ssh/authorized_keys in certain tests (#10163 ) The running of `make test` without any additional options will result in the tampering with of ~/.ssh/authorized_keys. This ensures that the tests use a temporary directory by setting SSH.RootPath consistent with other tests in this codebase. Resolves forgejo/forgejo#10164 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10163 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Kevin Schoon <me@kevinschoon.com> Co-committed-by: Kevin Schoon <me@kevinschoon.com>	2025-11-19 16:14:16 +01:00
Shiny Nematoda	255ed593d3	feat(issue-search): support query syntax (#9109 ) List of currently supported filters: - `is:open` (or `-is:closed`) - `is:closed` (or `-is:open`) - `is:all` - `author:<username>` - `assignee:<username>` - `review:<username>` - `mentions:<username>` - `modified:[>\|<]<date>`, where `<date>` is the last update date. - `sort:<by>:[asc\|desc]`, where `<by>` is among - created - comments - updated - deadline Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9109 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-11-19 16:05:42 +01:00
Calixte Pernot	4d0c7db6cd	feat: show link to pull requests targeting a non-default branch when pushing (#10079 ) This resolves #10057 by showing a list of links to pull requests with the head branch being the one just pushed. Since there may be multiple pull requests with different base branches, we find all of them and print them. Here is a comparison table for pushing to the `feature` branch when having 2 pull requests: `feature -> dev`, and `feature -> prod`. `main` being the default branch. ## Before remote: remote: Create a new pull request for 'feature': remote: http://localhost:3000/user1/repo1/compare/main...feature remote: ## After remote: remote: Create a new pull request for 'feature': remote: http://localhost:3000/user1/repo1/compare/main...feature remote: Visit the existing pull requests: remote: http://localhost:3000/user1/repo1/pulls/1 merges into dev remote: http://localhost:3000/user1/repo1/pulls/3 merges into prod remote: Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10079 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Calixte Pernot <cpernot@praksys.net> Co-committed-by: Calixte Pernot <cpernot@praksys.net>	2025-11-19 14:59:13 +01:00
Renovate Bot	37f8fcf66d	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.6 (forgejo) (#10162 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10162 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-19 07:00:12 +01:00
Cyborus	25eb3f640a	add myself to `CODEOWNERS` for the API (#10160 ) I have been looking at this part of the codebase a lot lately, and have spent plenty of time using the API for a while now. I feel I have a good understand of it, and also have interest in keeping up with changes to it, so would like to be added as a `CODEOWNER` for it. :) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10160 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-11-18 23:19:39 +01:00
Earl Warren	238ecfdeb8	fix: garbage collect lingering actions logs (#10009 ) If, for any reason (e.g. server crash), a task is recorded as done in the database but the logs are still in the database instead of being in storage, they need to be collected. The log_in_storage field is only set to true after the logs have been transfered to storage and can be relied upon to reflect which tasks have lingering logs. A cron job collects lingering logs every day, 3000 at a time, sleeping one second between them. In normal circumstances there will be only a few of them, even on a large instance, and there is no need to collect them as quickly as possible. When there are a lot of them for some reason, garbage collection must happen at a rate that is not too hard on storage I/O. Refs https://codeberg.org/forgejo/forgejo/issues/9999 --- Note on backports: the v11 backport is done manually because of minor conflicts. https://codeberg.org/forgejo/forgejo/pulls/10024 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10009): <!--number 10009 --><!--line 0 --><!--description Z2FyYmFnZSBjb2xsZWN0IGxpbmdlcmluZyBhY3Rpb25zIGxvZ3M=-->garbage collect lingering actions logs<!--description--> <!--end release-notes-assistant--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10009 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-11-18 18:59:01 +01:00
Mathieu Fenniak	dea9ef6706	fix: realign indexes on the 'action' table (#10040 ) Fixes #9963. This realigns all the indexes on the `action` table to best match their intended usages. New: - `IDX_action_created_unix (created_unix)` - Intended for usage in `DeleteOldActions`. - `IDX_action_repo_id_created_unix (repo_id, created_unix)` - Intended for usage when fetching action feeds for a repo and a team, with the same logic as that described below in `IDX_action_user_id_created_unix`. - `IDX_action_repo_id_op_type (repo_id, op_type)` - Intended for `DeleteIssueActions` when it searches for CreateIssue & CreatePullRequest actions for cleanup. Could be optimized further with a denormalization of the issue identifier into a field, but there's no current evidence that this is required. Replaced: - `IDX_action_c_u (created_unix, user_id)` - Replaced with `IDX_action_user_id_created_unix (user_id, created_unix)`. When action feeds are created w/ `ORDER BY created_unix DESC LIMIT 20`, an index beginning with `created_unix` will have to index scan until it can satisfy 20 records; the `user_id` portion of the index is effectively useless until two records appear at the same time. By inverting the order, the database will be able to identify the records created by a user and then pop the most recent 20 from the index order. - At the scale of database I have access to, the performance difference is unmeasurable. This change is supported by theoretical grounds and the findings of #9963, but no experimental evidence. Removed: - `IDX_action_user_id (user_id)` - Redundant with the new `IDX_action_user_id_created_unix`. - `IDX_action_r_u (repo_id, user_id)` - No clear consumer for this index. Retained with no modification: - `IDX_action_comment_id (comment_id)` - Used in `DeleteIssueActions`. - `IDX_action_au_r_c_u (act_user_id, repo_id, created_unix, user_id)` - Heat map generation. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10040 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-18 18:34:25 +01:00
Gusted	afbd05c398	fix: get new session from enginegroup instead of masterengine (#10140 ) Within Codeberg we are looking into distributing the database queries, we tried forgejo/forgejo!7212 on several occasions but never got it to work. After a long debugging session in a staging environment I was able to find two bugs that made it impossible for this feature to work: forgejo/docs!1587 which resulted in replica engines never being configured and used if you followed the documentation. The other bug is what this patch intends to fix. In order to do some database operation, you need the database engine - it will first look if one is set for the context (only useful for transactions) and otherwise create a new session of the engine from the master engine `x`. The problem is that `x` is explicitly set to be the master engine and not the engine group (that includes the replica engines) - Unless the code uses `DefaultContext`, which is almost nowhere used after some great refactoring in Gitea to use the passed context, it did not use the replica engines. Get engine from the `DefaultContext` (which is set to the enginegroup) and create a new session from that. `20f8572b92/models/db/engine.go (L220-L231)` And `SetDefaultEngine` is called from `20f8572b92/models/db/engine.go (L212)` Where `eng` is the engine group. ## Test 1. Configure database replicas. 2. Start Forgejo. 3. Verify Forgejo loads. 4. Stop the database replicas. 5. Verify Forgejo shows 500 errors. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10140 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-17 14:42:56 +01:00
Renovate Bot	4f793eb562	Update renovate to v42.11.0 (forgejo) (#10142 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-17 10:33:18 +01:00
christopher-besch	be6d96b9f6	chore: Dead Code: `DeleteIssue` Notify Topic (#10046 ) My analysis (https://chris-besch.com/articles/forgejo_pub_sub_pattern_history) shows that the `DeleteIssue` notify topic is sent by the `services/issue` package but not received by anyone. Thus, this is dead we want to delete. The topic is only used in https://codeberg.org/forgejo/forgejo/src/branch/forgejo/services/issue/issue.go#L201 and handled in https://codeberg.org/forgejo/forgejo/src/branch/forgejo/services/notify/notify.go#L79-L84 . closes #9990 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10046 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2025-11-17 02:13:38 +01:00
Mathieu Fenniak	a9452d11d0	fix: possible cause of invalid issue counts; cache invalidation occurs before a active transaction is committed (#10130 ) Although #9922 was deployed to Codeberg, it was reported on Matrix that a user observed a `-1` pull request count. @Gusted checked and verified that the stats stored in redis appeared incorrect, and that no errors occurred on Codeberg that included the repo ID (eg. deadlocks, SQL queries). ``` 127.0.0.1:6379> GET Repo:CountPulls:924266 "1" 127.0.0.1:6379> GET Repo:CountPullsClosed:924266 "2" ``` One possible cause is that when `UpdateRepoIssueNumbers` is invoked and invalidates the cache key for the repository, it is currently in a transaction; the next request for that cached count could be computed before the transaction is committed and the update is visible. It's been verified that `UpdateRepoIssueNumbers` is called within a transaction in most interactions (I put a panic in it if `db.InTransaction(ctx)`, and most related tests failed). This PR fixes that hole by performing the cache invalidation in an `AfterTx()` hook which is invoked after the transaction is committed to the database. (Another possible cause is documented in #10127) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10130 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-17 01:07:29 +01:00
Mathieu Fenniak	20f8572b92	test: fix modules/queue tests to use TEST_REDIS_SERVER when present (#10139 ) `modules/queue` tests are intended to be running against a redis server in the test-remote-cacher workflow action, but they are not running because the tests always try to start a redis server by running a `redis-server` subprocess. If that subprocess fails to start, the tests are skipped. This change forces the tests to execute whenever `TEST_REDIS_SERVER` is present, and removes the unnecessary Forgejo-managed redis server during testing. This change is tested manually; if `TEST_REDIS_SERVER` is set to an invalid value, the tests fail, when previously it could be set to any value and the tests would always be skipped. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10139 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-16 21:51:32 +01:00
Mathieu Fenniak	b464f76931	fix: possible cause of invalid issue counts; cache module doesn't guarantee concurrency safety (#10127 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10127 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-11-16 19:14:07 +01:00
Mathieu Fenniak	5af2ebd5bd	fix: prevent Remove(key)...Get*(key) from returning a value computed before the Remove(key)	2025-11-16 08:53:37 -07:00
Mathieu Fenniak	5aeecefbf3	test: introduce cache concurrency safety test	2025-11-16 08:53:37 -07:00
Mathieu Fenniak	b7106b7250	feat: add MutexMap to caching module	2025-11-16 08:53:27 -07:00
Mathieu Fenniak	f70815a034	fix: make cache module in test-remote-cacher run against remote redis	2025-11-16 08:53:27 -07:00
RaymondKroon	81f20a69b6	fix: do casefolding in OAuth2 account autolinking (#10072 ) Resolves #9992. Creating new users will make sure to avoid creating duplicate users where the only difference is a casing. Error handling did not handle this correctly, resulting in 500. This is fixed by searching for LowerName in the error handling. Co-authored-by: Raymond Kroon <raymond.kroon@kadaster.nl> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10072 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: RaymondKroon <raymondkroon@noreply.codeberg.org> Co-committed-by: RaymondKroon <raymondkroon@noreply.codeberg.org>	2025-11-16 16:39:06 +01:00
Melissa Geels	bd26fdac36	fix: SSH key verification instructions for Windows cmd (#10106 ) Resolves #10102 Adjust the SSH key verification instructions for Windows CMD to make it work. ## Test 1. Use Windows. 2. Go to the user settings. 3. Go to "SSH / GPG keys" 4. Add a SSH key. 5. Click on the "Verify" button for the SSH key. 6. Use the Windows CMD command to verify. 7. Verify that this generates a signature that is accepted by Forgejo. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10106 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Melissa Geels <melissa@nimble.tools> Co-committed-by: Melissa Geels <melissa@nimble.tools>	2025-11-16 15:00:16 +01:00
0ko	f0b4e3b943	feat(ui): JS-less dropdowns in navbar (#10025 ) Replaced dropdowns in the navbar with JS-less ones from https://codeberg.org/forgejo/forgejo/pulls/7906. Also made some changes to the dropdown component: * fixed variable name * painted backgrounds (hover, focus) are now consistently applied to the actual interactive items (`<a>`, `<button>`), not to `<li>`. This is consistent with how backgrounds are conditionally applied to pre-selected (`.active`) items and is better, as it allows to place additional things to `<li>`... * ...`<hr>` can now be placed in some `<li>` instead of requiring splitting into multiple `<ul>`. This is simpler in code and I am guessing this should be better for a11y as screen readers can cast one continuous list instead of multiple ones. But have no hard proof that this is actually better. My main motivation was to avoid ugly mistake-prone tmpl logic where unconditional `<ul>` was getting closed and reopened inside of a condition. I should note that on mobile all items, including these dropdowns, are hidden in another dropdown, and it stays JS-dependand for now. So this PR only makes this part of the UI JS-less for desktop. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10025 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-16 14:56:42 +01:00
oliverpool	67df538958	feat: cache derived keys for faster keying (#10114 ) Currently `DeriveKey` is called every time that a secret must be encoded/decoded. Since this function is deterministic, its result can be cached to allow a 250x speedup (the original took less than half a microsecond, so this more of a micro-optimization...). ``` go test -bench=. goos: linux goarch: amd64 pkg: forgejo.org/modules/keying cpu: Intel(R) Core(TM) Ultra 5 125H BenchmarkExpandPRK-18 2071627 564.2 ns/op BenchmarkExpandPRKOnce-18 541438192 2.206 ns/op PASS ok forgejo.org/modules/keying 2.369s ``` ## Other changes - Since the keys can be constructed once, it simplifies a bit the callsites (`keying.TOTP.Encrypt(...)` instead of `keying.DeriveKey(keying.ContextTOTP).Encrypt(...)`) - All `Encrypt`/`Decrypt` calls will panic forever if called before `Init` has been called (current it panics as long as `Init` has not been called) - Calling `Init` twice with different keys will trigger a panic (currently racy) - Calling `Decrypt` with a short ciphertext does not panic anymore (like when calling with long-enough garbage) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10114 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-11-16 14:29:14 +01:00
Robert Wolff	2900a4c43a	fix(ui): fix color of hovering over menu buttons in top nav bar (#10125 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10125 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-11-16 09:50:20 +01:00
0ko	094f42f6b7	merge commit: i18n: update of translations from Codeberg Translate (#9917 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9917 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-16 06:12:05 +01:00
Codeberg Translate	1eb35114d9	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Arthur Zamarin <arthurzam@gentoo.org> Co-authored-by: Atthaphinya <atthaphinya@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Bullbagaren <bullbagaren@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Haris <harisdotparis@noreply.codeberg.org> Co-authored-by: Iced-Codeda07a60a554bc40d1 <iced-codeda07a60a554bc40d1@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Mykyta Shcherbyna <mshcherbyna99@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Tin <hntin@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: andreuz <andreu@kindspells.dev> Co-authored-by: aviallon <aviallon@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: fluere <fluere@noreply.codeberg.org> Co-authored-by: gingermusketeer <gingermusketeer@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: liilliil <liilliil@noreply.codeberg.org> Co-authored-by: m13o <m13o@noreply.codeberg.org> Co-authored-by: narodr <narodr@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: tace16 <tace16@noreply.codeberg.org> Co-authored-by: tct123 <tct123@noreply.codeberg.org> Co-authored-by: victordargallo <victordargallo@noreply.codeberg.org> Co-authored-by: volkan <volkan@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sr_SP/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sr_SP/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-11-16 04:38:49 +00:00
0ko	ed4be8bf54	fix(test): improve reliability of E2E "Button text replaced by JS" (#10075 ) Potentially addresses https://codeberg.org/forgejo/forgejo/pulls/9959#issuecomment-8214671 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10075 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: mfenniak <mfenniak@noreply.codeberg.org>	2025-11-16 04:45:20 +01:00
Mathieu Fenniak	3cdf0010fe	chore: bump nixpkgs in flake.lock (#10128 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10128 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-16 01:18:26 +01:00
Mathieu Fenniak	df8d0cf9f2	fix: redis & valkey images immediately shutdown	2025-11-15 15:18:54 -07:00
Mathieu Fenniak	a9a813cc44	fix: provide correct TEST_REDIS_SERVER env for test-remote-cacher	2025-11-15 14:40:36 -07:00
Gusted	691dd023ff	chore: unify the usage of `CryptoRandomString` (#10110 ) - Similair spirit of forgejo/forgejo!7453. - Refactor the code in such a way that it always succeeds. - To avoid doing mathematics if you use this function, define three security level (64, 128 and 256 bits) that correspond to a specific length which has that a security guarantee. I picked them as they fit the need for the existing usages of the code. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10110 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-15 13:24:53 +01:00
Gusted	6ca1656f93	chore: two small refactors in git module (#10109 ) Move the function to the repository struct. There is no need to have it as a separate function, move it to the Repository struct. Add extra unit tests. --- Remove a field from a struct. It has nothing to do with git, it is not the right place to have that field in the git `Tag` struct. Get this value when it's converted to the API struct. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10109 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-15 13:24:00 +01:00
Mathieu Fenniak	2ea5a8d22b	fix: workflow dispatch shouldn't include empty fields in inputs (#10123 ) Fix behaviour change from #10089. Empty inputs used to hit a `continue` statement and skip, and are now fired to a workflow. It isn't likely this is a functional bug, but it does change the behaviour unexpectedly. Detected by end-to-end test failure (https://code.forgejo.org/forgejo/end-to-end/actions/runs/4360/jobs/2/attempt/1): ``` { - number2: "" - tags: "" } ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10123 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-15 12:58:48 +01:00
Renovate Bot	ae6e18c518	Update module golang.org/x/net to v0.47.0 (forgejo) (#10112 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10112 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-15 08:28:10 +01:00
dawe	efd4d2d8f5	fix(ui): document token validity in key verification view (#9002 ) Document that the token is only valid for a minute. Add a link to get a new token. Resolves #8048 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9002 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: dawe <dawedawe@posteo.de> Co-committed-by: dawe <dawedawe@posteo.de>	2025-11-14 23:40:03 +01:00
Renovate Bot	bcd03d0e0d	Update go-openapi packages (forgejo) (#10111 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10111 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-14 23:26:27 +01:00
0ko	a51a8d5701	chore(test): cleanup NewRequest which no longer supply CSRF values (#10119 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9830, which greatly simplified the tests that previously had to supply a csrf token in values map, but left behind the more complex funcs with empty maps. Also fixed a few typos which popped up in the diff. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10119 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-14 23:21:10 +01:00
oliverpool	8f28cdefe0	feat(ui): add switch between formats when previewing CITATION.{cff,bib} files (#9103 ) See #8222 for context (loosely related to #4595). ## Implemented changes The conversion logic is kept in the frontend and the related npm libraries are lazy-loaded (unchanged). ### Show some tabs on the preview of the `CITATION.*` file to switch between the formats: ![image](/attachments/be02656f-d906-4191-aa84-d666ee5a90ba) ![image](/attachments/240384e3-dec8-4f02-94e6-261143193541) ### Convert the "Cite repository" to a simple link to the citation file So that this change can be considered non-breaking ## Current state (before this PR) The last non-test call of `git.Blob.GetBlobContent` is made to retrieve the content of an eventual CITATION file. This is available in the `...` menu near the clone URL: ![image](/attachments/ef79128d-ee3f-4e43-a74d-a00e4dcfe6b4) And is displayed as a popup: ![image](/attachments/7aa930f9-0766-47b9-8145-cbebb5b051b0) Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9103 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-11-14 14:39:20 +01:00
Gusted	0737196842	chore: remove webkit and mobile safari from playwright (#10103 ) Webkit and Mobile safari are comically unreliable, will fail for unexplainable reasons and are very hard to run locally in comparison with the other supported platforms. I do not remember the last time where these two platforms were able to catch a regression where the other platforms did not. I would like to stress, for the historical record, that many hours has been devoted into adjusting the tests and following best practices to make these two platforms more stable but despite those, IMO wasted, efforts these two platforms are causing many hours of wasted CPU time simply because they are flaky and make (new) contributors nervous if their change contains a regression or not. To my knowledge, the tests are not broken for these two platforms. If you go to the issue tracker you will not find issues by users that use these two platforms and report that Forgejo is broken. It does not reflect reality. This is the sunk cost fallacy, bite the bullet and agree that these platforms will not contribute positively to Forgejo's excellent test suite. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10103 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-13 17:23:08 +01:00
Andreas Ahlenstorf	8fea4c5829	fix: accept `true` as input in workflow_dispatch (#10089 ) Previously, when triggering workflows with `workflow_dispatch`, Forgejo only interpreted `on` as boolean `true`. Everything else, including `true`, was treated as `false`. This behaviour does not match the [Forgejo documentation](https://forgejo.org/docs/v13.0/user/actions/reference/#onworkflow_dispatch) that states that `true` and `false` are permitted values. It is also outside the [YAML 1.2 specification of booleans](https://yaml.org/spec/1.2.2/#10212-boolean) that only permits `true` and `false`. After this change, only `true` and `false` have the desired effect. `on` (converted to `true`) is kept for compatibility reasons to give people time to upgrade. This problem only affected users of the Forgejo API, because the UI sent the expected values. Resolves forgejo/forgejo#10070 by fixing the documentation mismatch. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10089 Reviewed-by: klausfyhn <klausfyhn@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-13 15:57:55 +01:00
Renovate Bot	35fa852406	Update Node.js to v24 (forgejo) (#10092 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10092 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-13 15:28:31 +01:00
Gusted	8fa32bd3ff	fix: make `Fetch` work with git < 2.41 (#10095 ) `git fetch --porcelain` was introduced in 2.41, add a fallback for older git clients. Resolves forgejo/forgejo#10080 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10095 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-13 13:22:09 +01:00
Renovate Bot	84c931f0ca	Update module golang.org/x/image to v0.33.0 (forgejo) (#10085 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10085 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-13 00:05:26 +01:00
Gusted	b2c1a4067c	Update NPM constraint (#10096 ) Ref: https://codeberg.org/forgejo/forgejo/pulls/10092 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10096 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-12 23:13:29 +01:00
Renovate Bot	dde6a05e8a	Update module golang.org/x/crypto to v0.44.0 (forgejo) (#10084 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10084 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-12 22:02:02 +01:00
Renovate Bot	53cef3b39e	Update module github.com/blevesearch/bleve/v2 to v2.5.5 (forgejo) (#10082 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10082 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-12 21:26:28 +01:00
Renovate Bot	221eae71ab	Update Node.js to v24 (forgejo) (#10091 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10091 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-12 19:41:48 +01:00
Robert Wolff	494ed3d39c	chore: branding usage of generate command (#10068 ) - s/Gitea/Forgejo/ for the 'generate' subcommand. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10068 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-11-11 11:42:49 +01:00
Renovate Bot	b29641a357	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.6.1 (forgejo) (#10053 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10053 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-11 07:04:35 +01:00
Gusted	b387a1ce4a	fix: less restrictive matrix room_id pattern (#10056 ) - Matrix room v12 made the room ID domain-less. - The exact format varies across room versions, so don't try to give a new regular expression, simply require the input starts with `!`. - Resolves forgejo/forgejo#9341 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10056 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-11 04:45:15 +01:00
Andreas Ahlenstorf	72b35c5a73	feat: display detailed action run diagnostics (#9966 ) Forgejo Actions allows variables in `jobs.<job_id>.runs-on`. However, the action list [skips checking whether a suitable runner](`c3412d0579/routers/web/repo/actions/actions.go (L114-L148)`) is available if an expression contains variables. That hampers a user's ability to figure out whether an expression was evaluated correctly and why a job might not be picked up by an available runner. This PR adds the ability to surface more complex and additional diagnostic information on the action view screen. Previously, only a job's status (waiting, running, ...) was displayed. Now, extended messages like "Waiting for a runner with the following labels: docker, trixie" are displayed with the possibility to show multiple messages simultaneously. How it looked before: ![old](/attachments/019e4e83-d44e-4143-8df0-7fceb611a3bd) How it looks after updating Forgejo without reloading the window: ![old-after-update](/attachments/e909af81-cf9e-4f44-a011-75585a2d1950) How it looks afterwards with a single label: ![new-single-label](/attachments/72f4a862-e23d-4ab5-9f96-09545954f982) How it looks afterwards with multiple labels: ![new-multiple-labels](/attachments/53036d7b-3589-4eeb-bad1-4da4cd5ff4b5) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9966): <!--number 9966 --><!--line 0 --><!--description ZGlzcGxheSBkZXRhaWxlZCBhY3Rpb24gcnVuIGRpYWdub3N0aWNz-->display detailed action run diagnostics<!--description--> <!--end release-notes-assistant--> Co-authored-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9966 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-11 04:39:02 +01:00
Andreas Ahlenstorf	b3f1f115f7	fix: include variable values in /repos/.../actions/variables API response (#10036 ) Previously, the variable value was empty when asking for a list of all repository variables. I have extended the test coverage of all related endpoints and made the existing tests independent of each other. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Other changes without a feature or bug label - [PR](https://codeberg.org/forgejo/forgejo/pulls/10036): <!--number 10036 --><!--line 0 --><!--description aW5jbHVkZSB2YXJpYWJsZSB2YWx1ZXMgaW4gL3JlcG9zLy4uLi9hY3Rpb25zL3ZhcmlhYmxlcyBBUEkgcmVzcG9uc2U=-->include variable values in /repos/.../actions/variables API response<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10036 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-10 23:07:32 +01:00
Gusted	5b77ddb050	feat: Use `receive.hideRefs` (#10015 ) In forgejo/forgejo!2834 and forgejo/forgejo!5307 it was made so it's no longer possible to modify and delete internal reference, not having this restriction lead to broken pull requests when people used something like `git push --mirror`. However it now still leads to problem with that command as the git client tries to delete such references. We can solve this by using git's `receive.hideRefs` to make this ref read-only and avoid advertising it when someone does `git push --mirror`. Resolves forgejo/forgejo#9942 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10015 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-10 14:36:15 +01:00
0ko	5c9a909c03	feat(ui): arrow key navigation in dropdown (#10033 ) Addresses https://codeberg.org/forgejo/forgejo/pulls/7906#issuecomment-5455662, https://codeberg.org/forgejo/forgejo/pulls/10025#issuecomment-8182184 Add arrow navigation to the JS-less/JS-enchanced dropdown component. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10033 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-10 13:35:38 +01:00
Renovate Bot	53fcf182c5	Update renovate to v42 (forgejo) (major) (#10042 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10042 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-10 08:39:17 +01:00
Renovate Bot	8c02c96e45	Update module golang.org/x/sys to v0.38.0 (forgejo) (#10032 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10032 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-09 17:10:25 +01:00
voltagex	b0b7e00230	gitea_downloader: fix typos (#10035 ) Signed-off-by: voltagex <git@voltagex.org> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10035 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: voltagex <git@voltagex.org> Co-committed-by: voltagex <git@voltagex.org>	2025-11-09 15:51:04 +01:00
Gusted	dd83b834f6	chore: adjust failing E2E tests (#10028 ) Adjust the E2E tests to fail less often. See individual commits. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10028 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-09 05:56:38 +01:00
Renovate Bot	7ad3d07910	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.5 (forgejo) (#10029 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.0.4` -> `v3.0.5` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.0.5`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.4...v3.0.5) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.4...v3.0.5) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNjkuMSIsInVwZGF0ZWRJblZlciI6IjQxLjE2OS4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10029 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-09 05:51:14 +01:00
Mathieu Fenniak	ce93a16557	feat: allow/disallow users to run workflows when pushing to a pull request from a fork (#9397 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9397 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2025-11-09 01:40:29 +01:00
mfenniak	99dd35d3e4	feat: ensure only expected ssh public keys are in authorized_keys file (#10010 ) A security vulnerability that was fixed in #9840 had the potential to corrupt the `authorized_keys` file that Forgejo is managing to allow ssh access. In the event that it was corrupted, the existing behaviour of Forgejo is to maintain the contents that it finds in the `authorized_keys` file, potentially making an exploit of a Forgejo server persistent despite attempts to rewrite the key file. This feature adds a new layer of security resiliency in order to prevent persistent ssh key corruption. When Forgejo starts up, if relevant, Forgejo will read the `authorized_keys` file and validate the file's contents. If any keys are found in the file that are not expected, then Forgejo will terminate its startup in order to signal to the server administrator that a critical security risk is present that must be addressed: ``` 2025/11/07 10:13:50 modules/ssh/init.go:86:Init() [F] An unexpected ssh public key was discovered. Forgejo will shutdown to require this to be fixed. Fix by either: Option 1: Delete the file /home/forgejo/.ssh/authorized_keys, and Forgejo will recreate it with only expected ssh public keys. Option 2: Permit unexpected keys by setting [server].SSH_ALLOW_UNEXPECTED_AUTHORIZED_KEYS=true in Forgejo's config file. Unexpected key on line 1 of /home/forgejo/.ssh/authorized_keys Unexpected key on line 2 of /home/forgejo/.ssh/authorized_keys Unexpected key on line 3 of /home/forgejo/.ssh/authorized_keys Unexpected key on line 4 of /home/forgejo/.ssh/authorized_keys Unexpected key on line 5 of /home/forgejo/.ssh/authorized_keys ``` As noted in the log message, the server administrator can address this problem in one of two ways: - If they delete the file that contains the unexpected keys, Forgejo will regenerate it containing only the expected keys from the Forgejo database. - If they would like to run their server with ssh keys that are not managed by Forgejo (for example, if they're reusing a `git` ssh user that is accessed through `git@server` and does not invoke Forgejo's ssh handlers), then they can disable the new security check by setting `[server].SSH_ALLOW_UNEXPECTED_AUTHORIZED_KEYS = true` in their `app.ini`. This is a breaking change: the default behaviour is to be restrictive in the contents of `authorized_keys` in order to ensure that server administrators with unexpected keys in `authorized_keys` are aware of those keys. If `SSH_ALLOW_UNEXPECTED_AUTHORIZED_KEYS=false`, then the behaviour when Forgejo rewrites the `authorized_keys` file is changed to not maintain any unexpected keys in the file. If the value is `true`, then the old behaviour is retained. The `doctor check` subcommand is updated to use the new validity routines: ``` [4] Check if OpenSSH authorized_keys file is up-to-date - [E] Unexpected key on line 1 of /home/forgejo/.ssh/authorized_keys - [E] Key in database is not present in /home/forgejo/.ssh/authorized_keys: ... - [E] authorized_keys file "/home/forgejo/.ssh/authorized_keys" contains validity errors. Regenerate it with: "forgejo admin regenerate keys" or "forgejo doctor check --run authorized-keys --fix" ERROR ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - Documentation updates required*; pending initial reviews of this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10010 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: mfenniak <mfenniak@noreply.codeberg.org> Co-committed-by: mfenniak <mfenniak@noreply.codeberg.org>	2025-11-09 01:06:04 +01:00
Cyborus	a68791d707	fix: prevent orgs from being added as members of orgs (#9757 ) Resolves #4167 Changes it to check that the user being added is `User` or `Bot` type before allowing it Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9757 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-11-08 22:05:21 +01:00
0ko	2f6ca55a1c	fix(ui): replace obsolete gt- helpers (#9964 ) Resolved a few obsolete (no longer functional) `gt-` helpers that were not converted into other classes at some point. `gt-interact-bg` was replaced by `interact-bg`. The remaining one was on action view page in a gear icon, which lacked proper background change on hover. `gt-font-18` & `gt-font-normal` were remaining in the repo name on repo page. I left out the `*-font-18` one out and kept fixed the font-weight, but also made the `/` use normal font-weight instead of semibold, which looks better. Preview Before: https://codeberg.org/attachments/e52d5ebc-7fa8-4057-8e4b-05d219525092 Gitea: https://codeberg.org/attachments/a9a50928-6e0e-483c-82fe-73b6c244f4d5 After: https://codeberg.org/attachments/fd04d5b1-1965-478f-9d45-97c5d994c780 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9964 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-11-08 18:21:05 +01:00
Renovate Bot	859caa35c5	Update dependency clippie to v4.1.9 (forgejo) (#10016 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10016 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-08 12:37:52 +01:00
Renovate Bot	5b087f767d	Update dependency sharp to v0.34.5 (forgejo) (#10017 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10017 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-08 12:37:43 +01:00
Leni Kadali	f883715638	chore: Remove IsDeleted from action (activity) table (#9829 ) Fixes [#3525](https://codeberg.org/forgejo/forgejo/issues/3525) and supersedes [#9586](https://codeberg.org/forgejo/forgejo/pulls/9586) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9829): <!--number 9829 --><!--line 0 --><!--description Y2hvcmU6IFJlbW92ZSBJc0RlbGV0ZWQgZnJvbSBhY3Rpb24gKGFjdGl2aXR5KSB0YWJsZQ==-->chore: Remove IsDeleted from action (activity) table<!--description--> <!--end release-notes-assistant--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9829 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Leni Kadali <lenikadali@noreply.codeberg.org> Co-committed-by: Leni Kadali <lenikadali@noreply.codeberg.org>	2025-11-08 04:20:05 +01:00
Renovate Bot	3531b16aa2	Update module code.forgejo.org/forgejo/runner/v11 to v11.3.1 (forgejo) (#10018 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v11](https://code.forgejo.org/forgejo/runner) \| `v11.3.0` -> `v11.3.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.3.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.3.0/v11.3.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v11)</summary> ### [`v11.3.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.3.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.3.0...v11.3.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1128): <!--number 1128 --><!--line 0 --><!--description Zml4OiBub3RpZnkgdGhlIEZvcmdlam8gaW5zdGFuY2UgdGhhdCB0aGUgbG9ncyBvZiBhIHRhc2sgY2FuIGJlIHRyYW5zZmVycmVkIGZyb20gdGhlIGRhdGFiYXNlIHRvIHN0b3JhZ2U=-->fix: notify the Forgejo instance that the logs of a task can be transferred from the database to storage<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1126): <!--number 1126 --><!--line 0 --><!--description Y2hvcmU6IGZpeCB0eXBvIGluIGludGVycGV0ZXIuZ28ncyBmaWxlIG5hbWU=-->chore: fix typo in interpeter.go's file name<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1127): <!--number 1127 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL29wZW5jb250YWluZXJzL3NlbGludXggdG8gdjEuMTMuMCBbU0VDVVJJVFld-->Update module github.com/opencontainers/selinux to v1.13.0 \[SECURITY]<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1125): <!--number 1125 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuMTA=-->Update dependency go to v1.24.10<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1121): <!--number 1121 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMS4zLjA=-->Update forgejo-runner to v11.3.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1120): <!--number 1120 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuNi4x-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.6.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNjkuMSIsInVwZGF0ZWRJblZlciI6IjQxLjE2OS4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10018 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-08 04:00:23 +01:00
Renovate Bot	432693c527	Update dependency vue to v3.5.23 (forgejo) (#9988 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-08 00:43:49 +01:00
zokki	dc0a63efe2	fix: endless redirection loop between /user/settings/change_password and /user/settings/security (#10002 ) Fixes forgejo/forgejo#9980 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/10002): <!--number 10002 --><!--line 0 --><!--description ZW5kbGVzcyByZWRpcmVjdGlvbiBsb29wIGJldHdlZW4gL3VzZXIvc2V0dGluZ3MvY2hhbmdlX3Bhc3N3b3JkIGFuZCAvdXNlci9zZXR0aW5ncy9zZWN1cml0eQ==-->endless redirection loop between /user/settings/change_password and /user/settings/security<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/10002 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-11-07 21:12:47 +01:00
Cyborus	fb9839f16d	fix(api): set all hook event types (#9997 ) The `addHook` function (and subsequently all endpoints that add a webhook) did not set the `Package`, `ActionRunFailure`, `ActionRunRecover`, or `ActionRunSuccess` event types on the newly created webhook. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9997 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-11-07 07:04:21 +01:00
Alexander Bokovoy	e7ef2eb370	fix: add required headers to pagure migration (#9973 ) See https://pagure.io/fedora-infrastructure/issue/12886 for details. Resolves https://codeberg.org/forgejo/forgejo/issues/9974 ## Test 1. Go to https://dev.gusted.xyz/repo/migrate?service_type=10 2. Fill in https://pagure.io/slapi-nis 3. Migrate. 4. Verify the migration succeeded. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9973 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Alexander Bokovoy <ab@samba.org> Co-committed-by: Alexander Bokovoy <ab@samba.org>	2025-11-06 13:57:31 +01:00
Gusted	f9a6460cec	chore: simplify `GetNote` (#9985 ) Return the Note object (avoid C-style functions). Motivation to refactor this function is to avoid the function that uses last commit cache for git-notes, because it is not needed at the scale of git-notes. In the worst case it can be considered to make a patch to git to get the message and commitID, because git seems to have efficient code to do this (for getting messages, but does not expose the commit id). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9985 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-06 13:23:35 +01:00
Earl Warren	57f986c7b1	feat: UI for the pull request trust management panel See the documentation pull request for a description https://codeberg.org/forgejo/docs/pulls/1567 https://forgejo.codeberg.page/@docs_pull_1567/docs/next/user/actions/security-pull-request/	2025-11-06 11:07:39 +01:00
Earl Warren	465d057fae	chore(docs): a team member who can write actions can delegate trust	2025-11-06 11:07:39 +01:00
Earl Warren	daa161ca9b	chore: remove the approve endpoint for runs It will be replaced with a link to the trust panel in the pull request.	2025-11-06 11:07:39 +01:00
Earl Warren	e41bcf5048	feat: add task to cleanup the ActionUser table weekly test coverage is provided by TestAPICron which runs registerCleanupActionUser()	2025-11-06 11:07:39 +01:00
Earl Warren	917d0e9fa0	feat: cancel all pull requests runs when blocking a user	2025-11-06 11:07:39 +01:00
Earl Warren	3fa7ceeb76	chore(refactor): replace ifNeedApproval with trust management What previously handled by ifNeedApproval is replaced with two calls implemented in trust.go: - getPullRequestCommitAndApproval when workflows are collected and before runs are generated from them, figure out if - they need approval - they should run from the base or the head - setRunTrustForPullRequest when a pull request run is created from a detected workflow, set the information it will need for trust management	2025-11-06 11:07:39 +01:00
Earl Warren	6a99709a1c	chore(refactor): detectWorkflow process pull_request_target first Collecting pull_request_target workflows before the others changes nothing. They will be first in the list but there is no guarantee or need for ordering. This is in preparation of a future commit that needs to know the base commit before detecting workflows that are not pull_request_target.	2025-11-06 11:07:39 +01:00
Earl Warren	e6522c1ecc	feat: trust management for runs created from a forked pull request - UpdateTrustedWithPullRequest - cancels or approves runs and keep track of posters that are to always be trusted - GetPullRequestUserIsTrustedWithActions - logic to determine if a user is to be implicitly trusted (e.g. the admin of the instance), explicitly trusted (i.e. it is in the ActionUser table) or not at all. - PullRequestCancel & PullRequestApprove will either cancel or approve all runs of a given pull request. - RevokeTrust is almost the same as PullRequestCancel except it operates as if revoking all pull requests of a given poster, cancelling ongoing jobs. This is expected to be used when blocking a user. - AlwaysTrust is almost the same as PullRequestApprove except it operates as if allways approving all pull requests of a given poster, switching their jobs to waiting. - SetRunTrustForPullRequest helper to set the fields of ActionRun - CleanupActionUser - get rid of unused trust records	2025-11-06 11:07:38 +01:00
Earl Warren	71439965d6	feat: add the actions CancelRun and ApproveRun helpers CancelRun Cancels all the jobs of a given run. It is very similar to the less generic web/repo/actions/view.go with two differences: - It updates NeedApproval - The commit status are created within the transaction It is also very similar to cancelJobsForRun in services/actions/schedule_tasks.go Keeping those DRY would require a small refactor that does not feel necessary at this moment. ApproveRun Approves all the jobs of a given run.	2025-11-06 11:07:38 +01:00
Earl Warren	5da1d8dcd7	feat: add model pull request IsForkPullRequest helper So the logic by which a pull request is considered to be a fork from a security standpoint is in one place.	2025-11-06 11:07:38 +01:00
Earl Warren	14e329b33c	chore(tests): allow actions.InsertRun to be used when no job exists It will never happen in production but is convenient when unit testing.	2025-11-06 11:07:38 +01:00
Earl Warren	bf7c63a2ae	feat: add ActionUser model & fields to ActionRun ActionUser is to keep track of pull requests posters that are permanently trusted. It has a used field to track when it was last used so records can be expired instead of accumulating forever. ActionRun has new fields to make it possible to look them up given either the pull request ID or the poster ID.	2025-11-06 11:07:38 +01:00
Earl Warren	86e08f4e1b	chore(refactor): split actions notify function in three There is no functional change, code reorganization or variable names changes. Two distinct code blocks from the notify function are moved to the functions: - getGitRepoAndCommit - detectWorkflows The intent is to help with unit testing each of them individually.	2025-11-06 11:07:38 +01:00
Earl Warren	0989a2495e	chore(refactor): move actions_service.jobParser to actions_module.jobParser	2025-11-06 07:28:16 +01:00
Earl Warren	7fccc2676b	chore(refactor): add fixture helper testActionsNotifierPullRequest All pull request related notifier tests use a similar pattern to create runs and jobs. Move them to a helper to keep it DRY and cut the size of the number of lines in the test file by 20%.	2025-11-06 07:28:16 +01:00
Cyborus	54b3066e45	fix: paginate `GET /api/v1/admin/hooks` response (#9915 ) Fixes #9911 The endpoint was documented as taking `page` and `limit` parameters but did not actually use then and just returned the full list. Now it does use them! Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9915 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-11-06 00:08:13 +01:00
Earl Warren	59f68b9469	chore(typo): s/Copyright 20124/Copyright 2024/	2025-11-05 23:43:13 +01:00
Andreas Ahlenstorf	9ae926b330	test: Ensure jobs.<job_id>.runs-on works with vars (#9982 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9982 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-05 22:55:02 +01:00
Renovate Bot	51f944e49d	Update dependency go to v1.25.4 (forgejo) (#9984 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9984 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-05 22:54:33 +01:00
Andreas Ahlenstorf	addc393e71	Allow referencing inputs in jobs.<job_id>.runs-on (#9950 ) This PR is a follow-up to https://code.forgejo.org/forgejo/runner/pulls/1117. That PR has to be merged before this one can proceed. The objective is to allow referencing the `inputs` context in `jobs.<job_id>.runs-on`. That enables users to enter a label in the Forgejo UI during `workflow_dispatch`. Example: ```yaml name: test on: workflow_dispatch: inputs: image: required: true type: string jobs: test: runs-on: ${{ inputs.image }} steps: - run: echo "Running on ${{ inputs.image }}" ``` Using `inputs` with reusable workflows does not work. I haven't changed `schedule_tasks.go` because the `schedule` trigger does not support `inputs`. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9950): <!--number 9950 --><!--line 0 --><!--description QWxsb3cgcmVmZXJlbmNpbmcgaW5wdXRzIGluIGpvYnMuPGpvYl9pZD4ucnVucy1vbg==-->Allow referencing inputs in jobs.<job_id>.runs-on<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9950 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-11-05 20:41:05 +01:00
Mathieu Fenniak	df30277369	fix: admin repo page error on NumIssues (#9983 ) Fixes #9978. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9983 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-05 18:16:35 +01:00
fnoopv	b98c8f696c	fix: /api/forgejo/v1/version Content-Type error (#9897 ) fix: #9782 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9897 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Cyborus <cyborus@noreply.codeberg.org> Co-authored-by: fnoopv <fnoopv@noreply.codeberg.org> Co-committed-by: fnoopv <fnoopv@noreply.codeberg.org>	2025-11-05 17:35:50 +01:00
Earl Warren	ec7dc193b4	chore: use code.forgejo.org/forgejo/actions-proto (#9981 ) instead of code.gitea.io/actions-proto-go It is a hard fork of code.gitea.io/actions-proto-go which has been used by the runner in the past few months. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9981 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-11-05 16:10:52 +01:00
0ko	d05002fbfb	fix(ui): prevent JS from removing icon from close/reopen button (#9959 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9598. A bug surfaced. When typing text in, JS was updating button's `textContent`, which also affected the icon included in the button. To avoid complex rebuilding of the button element in JS I just placed the text it it's own span, `textContent` of which is now updated by JS instead of the whole button. Preview Normal state from template: https://codeberg.org/attachments/f504bcc3-c1bc-4b10-96ae-e8b666c4a828 https://codeberg.org/attachments/5e72109c-04c7-49b0-ba05-e8f17c949fcb After editing text, without the fix: https://codeberg.org/attachments/2c61b02f-b36a-4b80-8816-98bed3fc48e0 https://codeberg.org/attachments/923d4419-97ee-48c6-b60d-9719e36ae6ff With the fix: https://codeberg.org/attachments/458c1f6a-549e-4ef7-8822-8529351b7bc4 https://codeberg.org/attachments/839032f7-2f4a-488a-a8a5-d3fbfc45504b Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9959 Reviewed-by: Otto <otto@codeberg.org>	2025-11-05 05:02:52 +01:00
0ko	382c3c3228	feat(ui): allow dropdown to contain not just items (#9951 ) Currently the dropdown component only supports having one `<summary>` and one `<ul>` (with interactive items) in it. This PR refactors it to add a `.content` container so that it is possible for the dropdown to contain things the more complex dropdowns do like `<hr>` and a searchbar. Also adds an `<hr>` to user actions as a little demo. Preview B: https://codeberg.org/attachments/8dfb98d2-52be-4c3c-8fc0-8fe470f34703 A: https://codeberg.org/attachments/53f2acfb-2e61-4420-b616-13d563f5c257 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9951 Reviewed-by: Otto <otto@codeberg.org>	2025-11-05 05:00:15 +01:00
Renovate Bot	07d6663748	Update module code.forgejo.org/forgejo/runner/v11 to v11.3.0 (forgejo) (#9969 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v11](https://code.forgejo.org/forgejo/runner) \| `v11.2.0` -> `v11.3.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.2.0/v11.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v11)</summary> ### [`v11.3.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.3.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.2.0...v11.3.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1117): <!--number 1117 --><!--line 0 --><!--description ZmVhdDogYWxsb3cgaW5wdXRzIGluIHJ1bnMtb24=-->feat: allow inputs in runs-on<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1101): <!--number 1101 --><!--line 0 --><!--description Zml4OiB3aW5kb3dzIGNvbXBpbGF0aW9u-->fix: windows compilation<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1098): <!--number 1098 --><!--line 0 --><!--description Zml4OiBlbmZvcmNlIExYQyBib290c3RyYXAgbG9ja3M=-->fix: enforce LXC bootstrap locks<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1104): <!--number 1104 --><!--line 0 --><!--description Zml4OiBseGNfZXhpc3RzX2FuZF9hcHRfbm90X29sZCBtdXN0IGJlIGluIGEgdHJhbnNhY3Rpb24=-->fix: lxc\_exists\_and\_apt\_not\_old must be in a transaction<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1108): <!--number 1108 --><!--line 0 --><!--description Zml4OiAke3sgZW52LlZBUiB9fSBpcyBhbGxvd2VkIGluIGNvbnRhaW5lcg==-->fix: ${{ env.VAR }} is allowed in container<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1119): <!--number 1119 --><!--line 0 --><!--description Y2hvcmU6IHJlbmFtZSBOZXdJbnRlcnBldGVyIHRvIE5ld0ludGVycHJldGVy-->chore: rename NewInterpeter to NewInterpreter<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1115): <!--number 1115 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuNi4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.6.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1113): <!--number 1113 --><!--line 0 --><!--description VXBkYXRlIGNvZGUuZm9yZ2Vqby5vcmcvZm9yZ2Vqby9mb3JnZWpvIERvY2tlciB0YWcgdG8gdjExLjAuNw==-->Update code.forgejo.org/forgejo/forgejo Docker tag to v11.0.7<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1100): <!--number 1100 --><!--line 0 --><!--description Y2hvcmUoY2kpOiB1c2UgY29kZS5mb3JnZWpvLm9yZy9vY2kvYWxwaW5lOmxhdGVzdA==-->chore(ci): use code.forgejo.org/oci/alpine:latest<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1110): <!--number 1110 --><!--line 0 --><!--description VXBkYXRlIGRhdGEuZm9yZ2Vqby5vcmcvb2NpL2dvbGFuZyBEb2NrZXIgdGFnIHRvIHYxLjI1-->Update data.forgejo.org/oci/golang Docker tag to v1.25<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1106): <!--number 1106 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9seGMtaGVscGVycyB0byB2MS4xLjM=-->Update dependency forgejo/lxc-helpers to v1.1.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1103): <!--number 1103 --><!--line 0 --><!--description UmV2ZXJ0ICJjaG9yZShjbGVhbnVwKTogbHhjLWhlbHBlcnMgZG9lcyBub3QgbmVlZCBhIGdsb2JhbCBsb2NrICgjMTA0Nyki-->Revert "chore(cleanup): lxc-helpers does not need a global lock ([#1047](https://github.com/forgejo/runner/issues/1047))"<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNjkuMSIsInVwZGF0ZWRJblZlciI6IjQxLjE2OS4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9969 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-05 03:43:58 +01:00
Renovate Bot	bfe398a806	Update dependency vue-chartjs to v5.3.3 (forgejo) (#9952 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9952 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-04 23:37:12 +01:00
Renovate Bot	4941a8f742	Update dependency globals to v16.5.0 (forgejo) (#9946 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9946 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-03 13:46:17 +01:00
0ko	0932c3ad71	chore(ui): remove unused css of id create-page-form (#9933 ) `create-page-form` is currently only referenced in CSS files. I've tried researching this with `git log -S 'create-page-form'` and here are the results: * `80701d45bb` - first mention. Introduced `create-page-form` as a Less function/inclusion or something * `8e0a69f86a` - added another usage of it in Less * `4465c58f4b` - seemingly added usage of it as of an actual ID to `gogs.css` (later renamed to `index.css`), still no use in templates * `045f14fbd0` - unrelated mention in minified bundle * `3d3faa2624` - ditto + did one property change to it like if it actually changed anything * `d9c67a8c90` - removed built bundle * `202803fc69` - turned the strange Less thing into a proper pack of `#create-page-form` like if it was used, for some reason, duplicated the new code twice * `ee9e83b230` - removed some of the unused selectors by retiring the `.captcha-field` class, likely not knowing that nothing under `#create-page-form` is used Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9933 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-03 13:45:51 +01:00
Gusted	0c11e9a43a	feat: use `keying` for task secrets (#9923 ) - Follow up of forgejo/forgejo!5041, forgejo/forgejo!6074, forgejo/forgejo!8692 - The `task` table contains three secrets: clone address (with credentials), auth password and auth token. These secrets are stored for migrating repositories (also the only usage of this table, although it allows for more usages). - Use `keying` to safely store these secrets and bound them to the table, column, row id and JSON field name. - The migration isn't spectacular but does closely follow what we learned in the previous two migrations: use a transaction and delete records when you can't decrypt them. We also learned about `db.Iterate` not being happy when updating records but it has since been fixed. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9923 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-03 13:42:32 +01:00
Gusted	d6f7e154a1	fix: Use mock server for `TestBreakConditions` (#9948 ) - Follow up of forgejo/forgejo!9274 - The test does not call to Gitea for fetching comments, but when initializing the Gitea client it does check the API version and some settings. Mock these responses so this test can be run without a network connection. - Resolves forgejo/forgejo#9928 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9948 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-11-03 09:33:51 +01:00
Renovate Bot	604a96107c	Update renovate to v41.169.1 (forgejo) (#9944 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-11-03 09:22:04 +01:00
0ko	b7460058ce	feat(ui): add a little padding-top to form .help (#9932 ) Ever since some forms were refactored into the new style I felt like the help texts were too close to the fields. So today I got to fixing this. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9932 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-11-03 03:22:31 +01:00
Mathieu Fenniak	78c98911a3	perf: update concurrency group query to be index-capable for status (#9943 ) When `concurrency.cancel-in-progress: false` is set on a Forgejo Action run, the run will be queued behind other runs of the same concurrency group. This requires a complex query to identify when a run can be dispatched to a runner. During a refactoring of this code in #9927, @earl-warren noted that the query was using a `status NOT IN (...)` clause, which we had discussed in another issue as a possible performance concern -- an index on `status` cannot be used to fulfill that query clause. This PR inverts the clause allowing an index to be used. Covered by existing automated tests in `tests/integration/actions_concurrency_group_queue_test.go` -- a minor commented-out section was removed in these tests while reviewing for this change. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - Minor implementation change for a feature that is new in the v14 release; not relevant for the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9943 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-03 00:01:51 +01:00
Mathieu Fenniak	1d02b74f62	fix: prevent deadlocks updating repo.num_action_runs/num_closed_action_runs (#9927 ) Fixes #9846. The number of open action runs on a repo is not precomputed and stored on the repo, but is computed as needed and cached. The computation is faster than the update because it only calculates the smaller set of which action runs are not completed (as opposed to counting all of them). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9927 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-02 22:24:56 +01:00
Alex619829	c3412d0579	fix(alt): handle package names with dots in ALT repository (#9763 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6351 Previously, ALT RPM repository did not match packages with dots in their names, causing 404 errors. Updated the regexp to correctly parse these paths. Co-authored-by: Aleksandr Gamzin <gamzin@altlinux.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9763 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Alex619829 <alex619829@noreply.codeberg.org> Co-committed-by: Alex619829 <alex619829@noreply.codeberg.org>	2025-11-02 16:18:56 +01:00
Mathieu Fenniak	40b06af048	test: concurrent merges targeting separate branches proceed without errors (#9925 ) Follow-up to #9868, #9916, #9922, adding an automated test that verifies no deadlocks occur when concurrently merging PRs in the same repo, with the same labels, and same milestone. Different base and head branches are used to ensure there are no git conflicts. Resolves #9785. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9925 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-11-01 15:10:16 +01:00
Mathieu Fenniak	a3c6c78e08	fix: reduce deadlocks merging PRs by using caching for repo issue count stats (#9922 ) The `repository` table has quite a few "count of related objects" fields on it, including the number of issues, closed issues, pull requests, and closed pull requests. These fields specifically will cause deadlocks during concurrent PR merges as documented in #9785. These fields are not used in database queries. In order to eliminate the deadlock possibility on them, I've moved them to be calculated on-demand with caching, with the cache being invalidated in the same places that the recalc used to be triggered. I've supplemented the already in-place automated testing with manual testing performing simple close & reopen of issues & PRs, and the counts which are used in the tabs at the top of the repo page are updated correctly as expected. Near future work: - Similar change can probably be performed to fix #9846 - Last known deadlock identified from #9785; I'm hoping to incorporate the synthetic deadlock test in a near future PR to prevent regressions ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - Tests were already in-place covering these fields; they've been adjusted from using the fields to the new accessor methods. - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9922): <!--number 9922 --><!--line 0 --><!--description cmVkdWNlIGRlYWRsb2NrcyBtZXJnaW5nIFBScyBieSB1c2luZyBjYWNoaW5nIGZvciByZXBvIGlzc3VlIGNvdW50IHN0YXRz-->reduce deadlocks merging PRs by using caching for repo issue count stats<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9922 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-31 23:50:05 +01:00
BtbN	6298ee4d3a	fix: pull request review comment position (#9914 ) ## Checklist This PR contains both #9889 and #9912, since it depends on the one, and the other provides a test for it. The exact reasoning behind its logic is described here: https://codeberg.org/forgejo/forgejo/issues/9473#issuecomment-7976186 This PR should return the behaviour back to how it was before a PR to Gitea changed it. Only the resulting Database-Entry will reference the line blamed commit, now also with the correct adjusted line. While the context diff view is pulled from the commit the commenter actually commented on. ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9914 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-10-31 16:17:23 +01:00
Mathieu Fenniak	327cdc1787	fix: reduce deadlocks merging PRs w/ async milestone stat recalcs (#9916 ) Continuing the pattern from #9868, fixes another deadlock discovered in synthetic testing of #9785. This modifies the `milestone` table to have the `num_issues`, `num_closed_issues`, and `completeness` statistics be calculated asynchronously. An optional `updateTimestamp` field was added to the stats queue to support the conditional updating of the milestone's modification date, retaining existing functionality. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9916 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-31 15:53:45 +01:00
Gusted	0869e0e08a	fix: don't show ConEmu OSC escape sequences (#9875 ) - Remove all [ConEMU OSC commands](https://conemu.github.io/en/AnsiEscapeCodes.html#ConEmu_specific_OSC) from the output of Forgejo action logs when rendering. - The regex is constructed as followed: Match the prefix `ESC ] 9 ;`. Then matches any number of digits, then match everything up to and including `ST` (this is either `ESC\` or `BELL`). - Resolves forgejo/forgejo#9244 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9875 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-31 07:24:23 +01:00
Gusted	975e9d6636	fix: set tag message on tag addition (#9913 ) - When `SyncReleasesWithTags` is called, the code that synchronizes new tags to the database did not set the Note of the release to the tag's message. This was particularly noticeable when using the migration feature that tags have a empty description. - Resolves forgejo/forgejo#7647 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9913 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-31 07:04:28 +01:00
Mathieu Fenniak	9e07bb07be	fix: reduce deadlocks merging PRs w/ async label stat recalcs (#9868 ) The intent of this change is to reduce the scope of deadlock issues identified in #9785. I've identified other deadlock issues from synthetic testing, so this is not a complete fix, but it's a partial fix. This design was discussed in #9785 and this is the most basic implementation, with a very small scope of work converted to use it. Introduces a new `forgejo.org/services/stats` module which allows for the queuing and routing of recalc requests for object stats; in this case, the "number of issues" that are assigned to a label, and the number of closed issues that are assigned to a label. The reasons that these calculations are performed asynchronously through a queue are: - User operations that are common and performance-sensitive don't have to wait for recalculations that don't need to be exactly up-to-date at all times. For example, merging a pull request will be a faster operation; as it closes an issue, it needs to recalculate `label.num_closed_issues` for every label attached to the PR. - Database deadlocks that can occur between concurrent operations -- for example, if you were holding a lock on an issue while recalculating a label's count of open issues -- can be broken by making the recalculation occur outside of the transaction. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. - Internal developer documentation is present. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9868 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-31 02:12:36 +01:00
Gusted	2a3d852e46	feat: convert create/rename branch and create tag to native dialog (#9760 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8859, https://codeberg.org/forgejo/forgejo/pulls/9636. Convert the create branch and rename branch modals in the branch list to native dialogs and convert the create branch and create tag in the commit view to native dialogs. The dialogs in the commit view have been simplified and no longer uses javascript to construct the data in the dialog (thus would be eligible for nojs modals). The dialogs have footer styled actions. The rename branch modal now has a 'branch name' label to indicate the field is required. E2E testing is added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9760 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-30 21:06:14 +01:00
erik	aed579b9ee	fix: stuck gitea/forgejo migration due to API pagination bug (#9274 ) The Gitea API responds with the full number of issue comments, when the `/repos/{owner}/{repo}/issues/{index}/comments` endpoint is hit. Originally the number of comments is expected to paginated, so in the end it should always be lower than `MAX_RESPONSE_ITEMS` when the last page is hit. However, due to the bug, this can never happen and so there will be an infinite loop. This problem was inherited also into the Forgejo codebase. That means the same problem can occur when migrating from Forgejo to Forgejo. Some fixes for the Forgejo API have been proposed for the Forgejo codebase see https://codeberg.org/forgejo/forgejo/issues/5177 and https://codeberg.org/codeberg/community/issues/1542 An integration test was written which reproduces the exact behaviour. A more future proof solution was created that checks the relevant cases and decides whether the bug is still there or not. It might be necessary to further distinguish between Gitea downloader and Forgejo downloader if we decide to update the Forgejo API. So we'll probably have to implement functionality and tests directly for the Forgejo downloader instead of just inheriting all the methods. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9274 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: erik <erik_se@posteo.de> Co-committed-by: erik <erik_se@posteo.de>	2025-10-30 17:32:55 +01:00
Earl Warren	6b4d5966bf	i18n: update of translations from Codeberg Translate (#9804 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9804 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-30 11:00:57 +01:00
Codeberg Translate	7f3255a2f7	i18n: update of translations from Codeberg Translate Co-authored-by: Atthaphinya <atthaphinya@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: VaiTon <vaiton@noreply.codeberg.org> Co-authored-by: X1SystemError0X <x1systemerror0x@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: joxeankoret <joxeankoret@noreply.codeberg.org> Co-authored-by: m13o <m13o@noreply.codeberg.org> Co-authored-by: pgmtx <pgmtx@noreply.codeberg.org> Co-authored-by: tace16 <tace16@noreply.codeberg.org> Co-authored-by: victordargallo <victordargallo@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/th/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ta/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/th/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-10-30 09:21:06 +00:00
Gusted	a4642af51a	feat: replace cross origin protection (#9830 ) Replace the anti-CSRF token with a [cross origin protection by Go](https://go.dev/doc/go1.25#nethttppkgnethttp) that uses a stateless way of verifying if a request was cross origin or not. This allows is to remove al lot of code and replace it with a few lines of code and we no longer have to hand roll this protection. The new protection uses indicators by the browser itself that indicate if the request is cross-origin, thus we no longer have to take care of ensuring the generated CSRF token is passed back to the server any request by the the browser will have send this indicator. Resolves forgejo/forgejo#3538 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9830 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-29 22:43:22 +01:00
Renovate Bot	15a2d300d7	Update dependency minimatch to v10.1.1 (forgejo) (#9890 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9890 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-29 17:47:48 +01:00
Gusted	d4693941df	fix: construct project links in timeline better (#9872 ) - When a issue sees a modification regarding to which project they are assigned, then a timeline event is created for this. The link to the project that is constructed for this timeline event incorrectly assumes the project is a repository project. - Use the `Link` function to construct the link to the project, this will correctly take into account if the project is a org, user or repo project. - Resolves forgejo/forgejo#9817 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9872 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-29 17:46:13 +01:00
Gusted	1f4488215b	fix: make edit label dialog work again (#9899 ) - The E2E code did not actually assert that the functionality worked (`expect` was missing). - Regression of forgejo/forgejo!9636 - Resolves forgejo/forgejo#9893 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9899 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-29 16:43:22 +01:00
John Moon	3e25980784	fix: update devcontainer tag to go:1.25-trixie (#9888 ) In a recent commit (`188810c9e9`), the devcontainer base image was moved to 2.0-bullseye. This tag only includes Go 1.24. With the recent move to Go 1.25, this results in the following build failure when downloading deps: ``` /usr/local/go/bin/go mod download go: go.mod requires go >= 1.25.0 (running go 1.24.6; GOTOOLCHAIN=local) ``` Let's set this to `1.25-trixie` to match our current Go version and fix this error. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9888 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: John Moon <john.moon@vts-i.com> Co-committed-by: John Moon <john.moon@vts-i.com>	2025-10-29 10:25:30 +01:00
Mathieu Fenniak	cf13d34293	fix: replace limit/offset pagination in debian SearchPackages (#9892 ) Last case identified from code analysis of "bad" iteration using LIMIT/OFFSET, as occurred in https://codeberg.org/forgejo/discussions/issues/404 -- debian `SearchPackages`. This function is covered by existing automated testing in `TestSearchPackages`. As with some of the other LIMIT/OFFSET cases, I'm marking this as a bug/confirmed because we know this pattern is problematic, but a specific problem has not been reproduced. This case is less problematic than others due to the use of sorting, but it's still not fully defined to a unique key, and performance problems would exist with the OFFSET approach if a large number of package files are returned. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9892 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-29 09:57:55 +01:00
Mathieu Fenniak	84eb766e35	feat: add foreign keys to forgejo_auth_token (#9886 ) Adds a foreign key to the table `forgejo_auth_token` (`AuthorizationToken` in go code). A review has shown that most capabilities around auth tokens seem to be well covered by test automation, but supplemented with manual testing around user deletion as well. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9886 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-29 01:09:06 +01:00
Ryan Lerch	027fd3658a	feat: Add admin individual user email management endpoints (#9594 ) AI Disclosure: This work was produced with the assistance of an artificial intelligence tool ## feat: Add admin endpoints for individual user email management Add GET and DELETE endpoints at `/admin/users/{username}/emails` to allow administrators to list and delete individual email addresses for users. These API endpoints provide programmatic access to functionality that is currently only available through the web UI: - http://forgejo.example/admin/emails (delete individual email addresses) - http://forgejo.example/admin/users/1 (view individual user's emails) The new endpoints follow existing admin API naming patterns such as `/admin/users/{username}/keys`, `/admin/users/{username}/orgs`, and `/admin/users/{username}/quota`, providing consistent resource management under the `/admin/users/{username}` namespace. This complements the existing `/admin/emails` endpoint which lists all emails across all users, providing administrators with granular control over individual user email management. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9594 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Co-committed-by: Ryan Lerch <rlerch@redhat.com>	2025-10-28 15:52:37 +01:00
Andreas Ahlenstorf	f20bb27a4c	feat: return all pending jobs if labels parameter is absent (#9839 ) The API endpoints to query pending jobs require the presence of the query parameter `labels`, for example, `http://localhost:3000/api/v1/user/actions/runners/jobs?labels=ubuntu`. If the query parameter is absent, no jobs are returned. This PR lifts that requirement and makes the respective API endpoints return all pending jobs if the `labels` parameter is absent. If the parameter `labels` is empty, it only returns jobs without any labels. This change simplifies writing programs that ask Forgejo for the presence of pending jobs without having to know all labels. It helps with #9670, too. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9839 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch> Co-committed-by: Andreas Ahlenstorf <andreas@ahlenstorf.ch>	2025-10-28 15:01:59 +01:00
Gusted	230519bd89	feat: migrate add/remove repositories in team to native dialog (#9877 ) - Migrate add/remove org repositories for teams to a native dialog. - Is potential to be fully no-js, as javascript no longer constructs the modal. - Resolves forgejo/forgejo#9801 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9877 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-28 14:29:34 +01:00
erik	bda6048713	fix: github issue migration failing for large datasets (#9348 ) As mentioned in https://codeberg.org/forgejo/forgejo/issues/8131 and https://codeberg.org/forgejo/forgejo/issues/9018: The github API changed and they now use cursor based pagination. So migration of issues could fail if there were about 10k resources to migrate. What was done: * Added a test for reproduction of the bug * Updated the go-github library to v74 * Update api usage for Reactions * Added a struct to GithubDownloaderV3 which holds cursorPagination related info * Updated GetIssues to use cursorPagination Caveats: * So far, only listing issues supports the cursor method * The test requires a valid access token to github as we need to access a repository with a lot of issues to test the issue * We may want to skip this test in the pipeline Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9348 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: erik <erik_se@posteo.de> Co-committed-by: erik <erik_se@posteo.de>	2025-10-28 13:57:12 +01:00
Renovate Bot	5d0ba6209e	Update dependency mermaid to v11.12.1 (forgejo) (#9878 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9878 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-28 13:35:00 +01:00
oliverpool	d60bdc6f6e	fix: minor typos (#9880 ) While implementing #8222, a couple of typos slept through. This fixes them. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9880 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-10-28 13:31:29 +01:00
0ko	c13f3cae95	feat(ui): improve new buttons, use in more areas (#9863 ) * Make danger buttons brighter - followup https://codeberg.org/forgejo/forgejo/pulls/9652#issuecomment-7803875 The new lightness 0.26 is same as lightness of --color-box-body instead of being darker than it, so the form controls aren't darker than the background they're on which might look bad. Looks pretty good, the calculated contrast is fine. * Apply new buttons to avatar upload/removal forms * Better responds to overflowing * Consistently apply medium font-weight to all buttons - followup https://codeberg.org/forgejo/forgejo/pulls/9652#issuecomment-7783718 * This improves readability a lot. The previous normal weight was only chosen because some of the buttons had it, which wasn't a good excuse. We also have buttons with medium, and they are easier to read. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9863 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-10-28 00:10:38 +01:00
Gusted	4cb72644d3	feat: show spinner when loading content history menu (#9874 ) - When clicking on the content history menu "edited" item, show a spinner animation as before the dropdown is show can take a measurable amount of time. - We cannot rely on fomantic adding the loading indicator (although it does have this capability), it only adds this indicator when waiting for the network request. For a fast Forgejo instance waiting for the network response is faster than what fomantic is doing to prepare the dropdown. - Resolves forgejo/forgejo#9841 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9874 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-27 22:04:04 +01:00
Renovate Bot	346f87d7a2	Lock file maintenance (forgejo) (#9867 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNTIuOSIsInVwZGF0ZWRJblZlciI6IjQxLjE1Mi45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9867 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-27 08:34:00 +01:00
Renovate Bot	5ea886e9f9	Update renovate to v41.159.4 (forgejo) (#9866 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-27 08:31:27 +01:00
forgejo-release-manager	b60b5cd757	chore(release-notes): Forgejo v13.0.2 (#9859 ) https://codeberg.org/forgejo/forgejo/milestone/29156 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9859 Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-10-26 07:26:56 +01:00
forgejo-release-manager	3ddbc2cf75	chore(release-notes): Forgejo v11.0.7 (#9858 ) https://codeberg.org/forgejo/forgejo/milestone/27340 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9858 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-10-26 07:26:49 +01:00
Earl Warren	b795c25747	chore: add release notes for backports of v11 and v13 [skip ci] (#9857 ) Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9857 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2025-10-26 04:51:04 +01:00
Mathieu Fenniak	6b6081b9ec	fix: 2025-10-26 Security Patches (#9840 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9840 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-26 04:39:30 +01:00
Mathieu Fenniak	bf03ab1cce	fix: add release notes 9840.md	2025-10-25 20:40:50 -06:00
Renovate Bot	c69c051083	Update dependency htmx.org to v2.0.8 (forgejo) (#9855 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9855 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-26 02:44:08 +02:00
Earl Warren	9144f3e6b3	fix: return on error if an LFS token cannot be parsed Extracted from https://github.com/go-gitea/gitea/pull/35708	2025-10-25 10:41:49 -06:00
Mathieu Fenniak	77cab5dbe2	fix: prevent .forgejo/template from being out-of-repo content	2025-10-25 10:41:49 -06:00
Mathieu Fenniak	7be431da88	fix: prevent writing to out-of-repo symlink destinations while evaluating template repos	2025-10-25 10:41:36 -06:00
Cyborus	11144a24fd	docs: don't suggest setting default cargo registry (#9834 ) It's possible to specify which registry to pull from for each dependency individually, setting the default registry just for a single crate seems excessive. Corresponding docs change: forgejo/docs#1562 ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9834 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-10-25 04:11:27 +02:00
Mathieu Fenniak	675eb9b9e6	fix: prevent commit API from leaking user's hidden email address on valid GPG signed commits	2025-10-24 11:35:51 -06:00
Mathieu Fenniak	33723dbdfd	feat: add foreign keys to table pull_request (#9832 ) Adds foreign keys to the table pull_request which are covered by the doctor's db consistency check: - issue_id -> issue - base_repo_id -> repository Note that other fields that look like references -- `head_repo_id` and `merger` -- are not covered by the db consistency check and therefore out-of-scope for the first phase of foreign keys. They're on my list for future more detailed evaluation. In addition to running automated tests (and making a few tweaks to get them to pass), I performed manual testing of: - Deleting the base repo of a pull request -- the repo is deleted without error and the pull request is deleted as well. - Deleting the issue behind a PR via an issue delete API call -- this code-path handles deleting a PR correctly. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9832 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-24 18:02:14 +02:00
Mathieu Fenniak	fb7188e690	fix: replace bad pagination to cleanup branch protection rules on user delete (#9833 ) (Slowly continuing follow-up work from https://codeberg.org/forgejo/discussions/issues/404) Removes an incorrectly implemented pagination using OFFSET/LIMIT and no ORDER BY, with `db.Iterate`. Added automated tests covering branch protection cleanup which were absent. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9833): <!--number 9833 --><!--line 0 --><!--description cmVwbGFjZSBiYWQgcGFnaW5hdGlvbiB0byBjbGVhbnVwIGJyYW5jaCBwcm90ZWN0aW9uIHJ1bGVzIG9uIHVzZXIgZGVsZXRl-->replace bad pagination to cleanup branch protection rules on user delete<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9833 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-24 08:49:53 +02:00
Mathieu Fenniak	73afeb6e64	chore: update go target language version to v1.25.0 (#9822 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9822 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-23 19:05:04 +02:00
Renovate Bot	1745350204	Update data.forgejo.org/oci/golang Docker tag to v1.25 (forgejo) (#9823 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [data.forgejo.org/oci/golang](https://hub.docker.com/_/golang) ([source](https://github.com/docker-library/golang)) \| stage \| minor \| `1.24-alpine3.22` -> `1.25-alpine3.22` \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNTIuOSIsInVwZGF0ZWRJblZlciI6IjQxLjE1Mi45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9823 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-23 17:50:35 +02:00
Renovate Bot	5b31d2d33b	Update module github.com/urfave/cli/v3 to v3.5.0 (forgejo) (#9818 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/urfave/cli/v3](https://github.com/urfave/cli) \| `v3.4.1` -> `v3.5.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2furfave%2fcli%2fv3/v3.5.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2furfave%2fcli%2fv3/v3.4.1/v3.5.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>urfave/cli (github.com/urfave/cli/v3)</summary> ### [`v3.5.0`](https://github.com/urfave/cli/releases/tag/v3.5.0) [Compare Source](https://github.com/urfave/cli/compare/v3.4.1...v3.5.0) #### What's Changed - Update mkdocs reqs by [@meatballhat](https://github.com/meatballhat) in [#2190](https://github.com/urfave/cli/pull/2190) - Allow the user to stop processing flags after seeing N args by [@adrian-thurston](https://github.com/adrian-thurston) in [#2163](https://github.com/urfave/cli/pull/2163) - chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by [@dependabot](https://github.com/dependabot)\[bot] in [#2194](https://github.com/urfave/cli/pull/2194) - chore(deps): bump mkdocs-material from 9.6.16 to 9.6.18 in the python-packages group by [@dependabot](https://github.com/dependabot)\[bot] in [#2195](https://github.com/urfave/cli/pull/2195) - chore(deps): bump actions/setup-go from 5 to 6 by [@dependabot](https://github.com/dependabot)\[bot] in [#2198](https://github.com/urfave/cli/pull/2198) - chore(deps): bump actions/setup-node from 4 to 5 by [@dependabot](https://github.com/dependabot)\[bot] in [#2199](https://github.com/urfave/cli/pull/2199) - chore(deps): bump actions/setup-python from 5 to 6 by [@dependabot](https://github.com/dependabot)\[bot] in [#2200](https://github.com/urfave/cli/pull/2200) - chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by [@dependabot](https://github.com/dependabot)\[bot] in [#2197](https://github.com/urfave/cli/pull/2197) - chore(deps): bump mkdocs-material from 9.6.18 to 9.6.19 in the python-packages group by [@dependabot](https://github.com/dependabot)\[bot] in [#2201](https://github.com/urfave/cli/pull/2201) - chore(deps): bump mkdocs-material from 9.6.19 to 9.6.20 in the python-packages group by [@dependabot](https://github.com/dependabot)\[bot] in [#2202](https://github.com/urfave/cli/pull/2202) - feat: add name of argument into error message when parsing fails by [@oprudkyi](https://github.com/oprudkyi) in [#2203](https://github.com/urfave/cli/pull/2203) - chore(deps): bump mkdocs-material from 9.6.20 to 9.6.21 in the python-packages group by [@dependabot](https://github.com/dependabot)\[bot] in [#2204](https://github.com/urfave/cli/pull/2204) - add space between arguments usage by [@dimfu](https://github.com/dimfu) in [#2207](https://github.com/urfave/cli/pull/2207) - chore(deps): bump mkdocs-material from 9.6.21 to 9.6.22 in the python-packages group by [@dependabot](https://github.com/dependabot)\[bot] in [#2213](https://github.com/urfave/cli/pull/2213) - Fix: Make DefaultText behaviour consistent by [@dearchap](https://github.com/dearchap) in [#2214](https://github.com/urfave/cli/pull/2214) #### New Contributors - [@adrian-thurston](https://github.com/adrian-thurston) made their first contribution in [#2163](https://github.com/urfave/cli/pull/2163) - [@oprudkyi](https://github.com/oprudkyi) made their first contribution in [#2203](https://github.com/urfave/cli/pull/2203) - [@dimfu](https://github.com/dimfu) made their first contribution in [#2207](https://github.com/urfave/cli/pull/2207) Full Changelog: <https://github.com/urfave/cli/compare/v3.4.1...v3.5.0> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNTIuOSIsInVwZGF0ZWRJblZlciI6IjQxLjE1Mi45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9818 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-23 06:36:50 +02:00
Renovate Bot	c79a553b17	Update vitest monorepo to v4 (forgejo) (major) (#9814 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-23 01:47:14 +02:00
Renovate Bot	1f66991079	Update module mvdan.cc/gofumpt to v0.9.2 (forgejo) (#9811 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-23 01:11:32 +02:00
Gusted	545e46649a	chore: remove two Git settings (#9815 ) Remove `DisableCoreProtectNTFS`, it was removed in `9dea54a9d6` Remove `LargeObjectThreshold`, it was removed in `a21128a734` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9815 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-23 00:38:47 +02:00
Renovate Bot	d9d711d0d9	Update dependency @axe-core/playwright to v4.11.0 (forgejo) (#9812 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-22 23:02:35 +02:00
Renovate Bot	ee77e37a93	Update module github.com/blevesearch/bleve/v2 to v2.5.4 (forgejo) (#9780 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9780 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-22 22:25:17 +02:00
Renovate Bot	f70f93c9c6	Update linters (forgejo) (#9813 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-22 21:22:51 +02:00
Renovate Bot	a117fe14ef	Update dependency happy-dom to v20.0.8 (forgejo) (#9810 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-22 20:54:14 +02:00
polyfloyd	3d13a1ccb8	refactor: Simplify flake.nix (#9805 ) This is a small change to remove numtide/flake-utils from flake.nix. It is not really needed, a more novel way is to map over `nixpkgs.legacyPackages`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9805 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: famfo <famfo@famfo.xyz> Co-authored-by: polyfloyd <floyd@polyfloyd.net> Co-committed-by: polyfloyd <floyd@polyfloyd.net>	2025-10-22 19:09:11 +02:00
famfo	85ce3e0a47	fix(workflows/coverage): use correct forgejo openldap image (#9808 ) I tested this change with `podman pull`, I did NOT run the action locally to test if it works correctly now. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9808 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-10-22 19:08:59 +02:00
Earl Warren	8e7f6bc592	i18n: update of translations from Codeberg Translate (#9696 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9696 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-22 09:08:50 +02:00
Codeberg Translate	aad2efdbd6	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Bullbagaren <bullbagaren@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: X1SystemError0X <x1systemerror0x@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: nykula <nykula@noreply.codeberg.org> Co-authored-by: stanek <stanek@noreply.codeberg.org> Co-authored-by: victordargallo <victordargallo@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-10-22 06:37:10 +00:00
Mathieu Fenniak	f53077ae8f	fix: don't drop unexpected indexes in Forgejo startup (#9796 ) In response to the issue #9755, @Gusted had manually created an index on `action_task` in preparation for the v13 migration of Codeberg. The restart of v13 dropped the index because `Sync`'s default behaviour is to do so. I'm inclined to think this doesn't make sense... Manually tested: - Confirmed that index with `IDX_...` prefix will be dropped if present and unexpected - Confirmed that index is not dropped w/ this patch ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9796 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-21 19:31:22 +02:00
Mathieu Fenniak	ed605a78c8	fix(perf): add missing index on action_task table (#9789 ) Fixes #9755, performance regression from #9017. Manually tested by application to a development database and verification that the index is used on `select * from action_task where job_id = 11 and attempt = 1`. I've made the index here cover just the `job_id` field, as the set of values for `attempt` is expected to be very small. Will backport via just the `models/actions/task.go` change (allowing `SyncAllTables` to create it) to avoid a schema migration during the backport (complicated due to the new schema migration module in v14). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9789): <!--number 9789 --><!--line 0 --><!--description Zml4KHBlcmYpOiBhZGQgbWlzc2luZyBpbmRleCBvbiBhY3Rpb25fdGFzayB0YWJsZQ==-->fix(perf): add missing index on action_task table<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9789 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-21 16:40:40 +02:00
Renovate Bot	df0dc33b5b	Update citation-js monorepo to v0.7.21 (forgejo) (#9779 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9779 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-21 12:39:03 +02:00
Renovate Bot	2289adec6f	Update module github.com/klauspost/compress to v1.18.1 (forgejo) (#9786 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/klauspost/compress](https://github.com/klauspost/compress) \| `v1.18.0` -> `v1.18.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fklauspost%2fcompress/v1.18.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fklauspost%2fcompress/v1.18.0/v1.18.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>klauspost/compress (github.com/klauspost/compress)</summary> ### [`v1.18.1`](https://github.com/klauspost/compress/releases/tag/v1.18.1) [Compare Source](https://github.com/klauspost/compress/compare/v1.18.0...v1.18.1) #### What's Changed - zstd: Fix incorrect buffer size in dictionary encodes by [@klauspost](https://github.com/klauspost) in [#1059](https://github.com/klauspost/compress/pull/1059) - s2: check for cap, not len of buffer in EncodeBetter/Best by [@vdarulis](https://github.com/vdarulis) in [#1080](https://github.com/klauspost/compress/pull/1080) - zstd: Add simple zstd EncodeTo/DecodeTo functions by [@klauspost](https://github.com/klauspost) in [#1079](https://github.com/klauspost/compress/pull/1079) - zlib: Avoiding extra allocation in zlib.reader.Reset by [@travelpolicy](https://github.com/travelpolicy) in [#1086](https://github.com/klauspost/compress/pull/1086) - gzhttp: remove redundant err check in zstdReader by [@ryanfowler](https://github.com/ryanfowler) in [#1090](https://github.com/klauspost/compress/pull/1090) - Run modernize. Deprecate Go 1.22 by [@klauspost](https://github.com/klauspost) in [#1095](https://github.com/klauspost/compress/pull/1095) - flate: Simplify matchlen by [@klauspost](https://github.com/klauspost) in [#1101](https://github.com/klauspost/compress/pull/1101) - flate: Add examples by [@klauspost](https://github.com/klauspost) in [#1102](https://github.com/klauspost/compress/pull/1102) - flate: Use exact sizes for huffman tables by [@klauspost](https://github.com/klauspost) in [#1103](https://github.com/klauspost/compress/pull/1103) - flate: Faster load+store by [@klauspost](https://github.com/klauspost) in [#1104](https://github.com/klauspost/compress/pull/1104) - Add notice to S2 about MinLZ by [@klauspost](https://github.com/klauspost) in [#1065](https://github.com/klauspost/compress/pull/1065) #### New Contributors - [@wooffie](https://github.com/wooffie) made their first contribution in [#1069](https://github.com/klauspost/compress/pull/1069) - [@vdarulis](https://github.com/vdarulis) made their first contribution in [#1080](https://github.com/klauspost/compress/pull/1080) - [@travelpolicy](https://github.com/travelpolicy) made their first contribution in [#1086](https://github.com/klauspost/compress/pull/1086) - [@ryanfowler](https://github.com/ryanfowler) made their first contribution in [#1090](https://github.com/klauspost/compress/pull/1090) Full Changelog: <https://github.com/klauspost/compress/compare/v1.18.0...v1.18.1> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNTIuOSIsInVwZGF0ZWRJblZlciI6IjQxLjE1Mi45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9786 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-21 08:23:40 +02:00
Mathieu Fenniak	4d9977fe4f	fix: suppress false-positive error log when PR is already in the automerge queue (#9784 ) Prevent an error from being logged when a PR is added to the automerge queue and already present; I get this error a few times a day in my logs from routine Renovate activity: ``` Error adding pullID: 1206 to the automerge queue already in queue ``` Exemption for this error is commonly used in other places where the queue infrastructure is in-use, such as: `434f946590/modules/indexer/issues/util.go (L178-L179)` Testing: Not sure the exact activity that causes this error, and so I haven't been able to reproduce it. The change is low risk, but I've performed no testing (other than build & lint). Will follow-up with more detailed work if the error continues after this change. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9784 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-21 08:19:33 +02:00
Mathieu Fenniak	434f946590	fix: strict error handling on corrupted DB migration tracking tables (#9773 ) For both `forgejo_version` and `version`, updates the migration to require one-and-only-one record in the table with `id = 1`. Intended to detect situations such as #9771 and block Forgejo running, preventing a long period of missing migration applications due to data corruption. In addition to automated tests, I manually corrupted my `forgejo_version` and `version` table to test the behaviours. Backports to v11 & v13 planned, although both will require manual backports due to #9561 reorganizing these files. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9773): <!--number 9773 --><!--line 0 --><!--description c3RyaWN0IGVycm9yIGhhbmRsaW5nIG9uIGNvcnJ1cHRlZCBEQiBtaWdyYXRpb24gdHJhY2tpbmcgdGFibGVz-->strict error handling on corrupted DB migration tracking tables<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9773 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-20 18:03:30 +02:00
Renovate Bot	abc803d45a	Lock file maintenance (forgejo) (#9761 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9761 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-20 17:33:22 +02:00
zokki	7910ffdb67	fix: `GLOBAL_TWO_FACTOR_REQUIREMENT=all` prevents actions/checkout from cloning repositories (#9764 ) Resolves: #9738 Integration test added Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9764 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-10-20 16:41:28 +02:00
Mathieu Fenniak	e66100dc8d	chore: enable email notifications on pull_request workflows (#9731 ) Added `enable-email-notifications: true` to the workflows that could most plausibly fail on new PRs, `testing.yml` and `build-release-integration.yml`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9731 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-20 15:35:58 +02:00
0ko	693e73b25f	fix(ui/dropdown): ensure same height for all items (#9762 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7906. Depending on type (`a`, `button`) the height could have been different because of default styles: * `base.css` supplies `body {line-height: 20px;}` which applies to `a` * `normalize.css` supplies `button {line-height: 1.15;}`, making `button` shorter than `a` To avoid this I refactored dropdown items' properties in the same way as I did to switch in `web_src/css/modules/switch.css` `min-height` is now used while `padding-block` is 0. Preview B: https://codeberg.org/forgejo/forgejo/attachments/29d9d9aa-bfb6-46a6-a368-23137e1ac60b A: https://codeberg.org/forgejo/forgejo/attachments/026a0af2-9481-4335-930c-9c92ad00ef03 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9762 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-20 12:05:03 +02:00
0ko	22771fad30	fix(ui): remove extra helpers from statuspages (#9753 ) These helpers are harmless for the normal Forgejo UI but are causing the viewport to break if the page is taller than the screen, causing overflow scroll in both directions. Example: 404 page on Codeberg breaks because Codeberg is making the content of all pages full screen height before footer. Originally added in `bb50ab2861` but were likely made unused by some change at a later point, maybe in `91b5aa0e5f`. I was not able to find a viewport where toggling this class via devtools would make any visual difference. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9753 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-10-20 12:03:58 +02:00
0ko	b1ba9b06b2	feat(ui): dangerous buttons (#9652 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9359: * add dangerous buttons type * they will be replacing `red` and `negative` buttons and don't have some of their problems: * they aren't as eye-catching and bright like `red` on dark and `negative` on both themes * they aren't as bland as `red` on light theme * ...they are consistent! * added them to the danger zone of repo settings for this initial PR Preview: - https://codeberg.org/attachments/e4d71f45-9455-4435-ab99-6e1bd2628d05 - https://codeberg.org/attachments/3056d3e1-d7b0-4417-8f2c-8fa34b399911 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9652 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org>	2025-10-20 12:03:17 +02:00
Renovate Bot	203fca6d8e	Update renovate to v41.152.7 (forgejo) (#9758 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-20 08:12:04 +02:00
Renovate Bot	cac113f36e	Update module code.forgejo.org/forgejo/runner/v11 to v11.2.0 (forgejo) (#9759 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v11](https://code.forgejo.org/forgejo/runner) \| `v11.1.2` -> `v11.2.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.2.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.1.2/v11.2.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v11)</summary> ### [`v11.2.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.2.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.1.2...v11.2.0) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1079): <!--number 1079 --><!--line 0 --><!--description ZmVhdDogYWxsb3cgLS1tZW1vcnkgaW4gd29ya2Zsb3cgY29udGFpbmVyIG9wdGlvbnM=-->feat: allow --memory in workflow container options<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1076): <!--number 1076 --><!--line 0 --><!--description ZmVhdDogZGlzYW1iaWd1YXRlIGNsb3VkIGVtb2pp-->feat: disambiguate cloud emoji<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1063): <!--number 1063 --><!--line 0 --><!--description ZmVhdDogaW1wcm92ZSByZWFkYWJpbGl0eSBvZiBlcnJvciBtZXNzYWdlcyBmcm9tIFBhcnNlUmF3T24=-->feat: improve readability of error messages from ParseRawOn<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1088): <!--number 1088 --><!--line 0 --><!--description Zml4OiB1c2UgYXV0b21hdGljIElQIGRldGVjdGlvbiBpbnN0ZWFkIG9mIGNhY2hlIHByb3h5IGhvc3QgY29uZmlnIHZhbHVlIGZvciBpbnRlcm5hbCBjYWNoZSBzZXJ2ZXI=-->fix: use automatic IP detection instead of cache proxy host config value for internal cache server<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1081): <!--number 1081 --><!--line 0 --><!--description Zml4OiBwcmV2ZW50IHByZW1hdHVyZSB0b2tlbiByZXZvY2F0aW9uIGluIHJldXNhYmxlIHdvcmtmbG93cw==-->fix: prevent premature token revocation in reusable workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1083): <!--number 1083 --><!--line 0 --><!--description Zml4OiBkb24ndCBwcmVwZW5kIHNlcnZlciBVUkwgd2l0aCBodHRwczovLyBpZiBpdCdzIGFuIGVtcHR5IHN0cmluZw==-->fix: don't prepend server URL with https\:// if it's an empty string<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1080): <!--number 1080 --><!--line 0 --><!--description Zml4OiBhbGxvdyBtYXBwaW5nIGludG8gZW52IHZhcmlhYmxlIElOUFVUX04gZnJvbSAke3sgaW5wdXRzLm4gfX0=-->fix: allow mapping into env variable INPUT\_N from ${{ inputs.n }}<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1067): <!--number 1067 --><!--line 0 --><!--description Zml4OiBkb24ndCBwYW5pYyBvbiBjYWNoZXByb3h5IHN0YXJ0dXAgZmFpbHVyZQ==-->fix: don't panic on cacheproxy startup failure<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1057): <!--number 1057 --><!--line 0 --><!--description Zml4OiBsb2cgZXJyb3IgZm9yIHdoeSBjYWNoZSBjb3VsZG4ndCBiZSBzdGFydGVk-->fix: log error for why cache couldn't be started<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1054): <!--number 1054 --><!--line 0 --><!--description Zml4OiByZW1vdmUgTFhDIGJhY2tlbmQgbGVmdG92ZXJzIHdoZW4gdGhlIGpvYiBjb21wbGV0ZXM=-->fix: remove LXC backend leftovers when the job completes<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1049): <!--number 1049 --><!--line 0 --><!--description Zml4OiBtYWtlIHRoZSBjcmVhdGlvbiBvZiBMWEMgdGVtcGxhdGVzIGF0b21pYyBzbyB0aGV5IGNhbm5vdCBiZSBpbnRlcnJ1cHRlZCB3aGlsZSBidWlsZGluZw==-->fix: make the creation of LXC templates atomic so they cannot be interrupted while building<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1094): <!--number 1094 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGltZSB0byB2MC4xNC4w-->Update module golang.org/x/time to v0.14.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1092): <!--number 1092 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2F2YXN0L3JldHJ5LWdvL3Y0IHRvIHY0LjcuMA==-->Update module github.com/avast/retry-go/v4 to v4.7.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1089): <!--number 1089 --><!--line 0 --><!--description Y2hvcmU6IGxvZyByZWFzb24gcmV2ZXJzZSBwcm94eSBjYW4ndCBiZSBzdGFydGVk-->chore: log reason reverse proxy can't be started<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1065): <!--number 1065 --><!--line 0 --><!--description Y2hvcmU6IGFkZCBhZGRpdGlvbmFsIGxvZ2dpbmcgdG8gY2FjaGVwcm94eQ==-->chore: add additional logging to cacheproxy<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1087): <!--number 1087 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuOQ==-->Update dependency go to v1.24.9<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1086): <!--number 1086 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGVybSB0byB2MC4zNi4w-->Update module golang.org/x/term to v0.36.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1085): <!--number 1085 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2RvY2tlci9kb2NrZXIgdG8gdjI4LjUuMStpbmNvbXBhdGlibGU=-->Update module github.com/docker/docker to v28.5.1+incompatible<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1084): <!--number 1084 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3JoeXNkL2FjdGlvbmxpbnQgdG8gdjEuNy44-->Update module github.com/rhysd/actionlint to v1.7.8<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1082): <!--number 1082 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBjb2RlLmZvcmdlam8ub3JnL2Zvcmdlam8vYWN0aW9ucy1wcm90byB0byB2MC41LjM=-->Update module code.forgejo.org/forgejo/actions-proto to v0.5.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1078): <!--number 1078 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBjb25uZWN0cnBjLmNvbS9jb25uZWN0IHRvIHYxLjE5LjE=-->Update module connectrpc.com/connect to v1.19.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1072): <!--number 1072 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2RvY2tlci9jbGkgdG8gdjI4LjUuMStpbmNvbXBhdGlibGU=-->Update module github.com/docker/cli to v28.5.1+incompatible<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1069): <!--number 1069 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuOA==-->Update dependency go to v1.24.8<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1066): <!--number 1066 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2RvY2tlci9jbGkgdG8gdjI4LjUuMCtpbmNvbXBhdGlibGU=-->Update module github.com/docker/cli to v28.5.0+incompatible<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1062): <!--number 1062 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLWdpdC9nby1naXQvdjUgdG8gdjUuMTYuMw==-->Update module github.com/go-git/go-git/v5 to v5.16.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1059): <!--number 1059 --><!--line 0 --><!--description Y2hvcmUoZG9jcyk6IGNsYXJpZnkgdGhlIGJlaGF2aW9yIG9mIGBbY29udGFpbmVyXS5kb2NrZXJfaG9zdGA=-->chore(docs): clarify the behavior of `[container].docker_host`<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1058): <!--number 1058 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb29nbGUuZ29sYW5nLm9yZy9wcm90b2J1ZiB0byB2MS4zNi4xMA==-->Update module google.golang.org/protobuf to v1.36.10<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1053): <!--number 1053 --><!--line 0 --><!--description Y2hvcmU6IHRlYWNoIHJlbm92YXRlIGFib3V0IGV4YW1wbGUtbHhjLXN5c3RlbWQueW1s-->chore: teach renovate about example-lxc-systemd.yml<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1055): <!--number 1055 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMS4xLjI=-->Update forgejo-runner to v11.1.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1047): <!--number 1047 --><!--line 0 --><!--description Y2hvcmUoY2xlYW51cCk6IGx4Yy1oZWxwZXJzIGRvZXMgbm90IG5lZWQgYSBnbG9iYWwgbG9jaw==-->chore(cleanup): lxc-helpers does not need a global lock<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1050): <!--number 1050 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9seGMtaGVscGVycyB0byB2MS4xLjE=-->Update dependency forgejo/lxc-helpers to v1.1.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule*: Branch creation - Between 12:00 AM and 03:59 AM ( 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNDYuMCIsInVwZGF0ZWRJblZlciI6IjQxLjE0Ni4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9759 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-20 03:21:38 +02:00
0ko	bf80842b4f	chore(ui): a few consistency improvements for modals (#9746 ) A bucket of water for a lake of acidic modal inconsistencies but this PR exists. ## Change 1 Followup to https://codeberg.org/forgejo/forgejo/pulls/9636/files#diff-ed78a3f2bb5b010be9410d4a6be8ab08e50df2c4. Remove a few extra `center` wraps from the HTML. They are no longer doing anything anymore. No visual changes. ## Change 2 Improve a few titles: Preview: - https://codeberg.org/attachments/4216f29f-687c-4b88-8a56-246282ae699b - https://codeberg.org/attachments/14c493d1-21f2-4433-ac4d-fc2e985239b0 - https://codeberg.org/attachments/d18bd923-a46e-427c-9132-4e60a8ba0a9d Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9746 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-10-19 18:35:25 +02:00
0ko	609ce8c268	feat: improve tooltips and aria-labels of stars/forks/watchers links (#9754 ) Followup: https://codeberg.org/forgejo/forgejo/pulls/2634, https://codeberg.org/forgejo/forgejo/pulls/2862 * i18n: migrate aria-label counters `n stars`, `n forks` to JSON in effort to eliminate the use of the old-style plurals * previous such migration https://codeberg.org/forgejo/forgejo/pulls/9625 * testing: present, inherited from other changes * a11y: add these aria-labels to usercards links on repo homepages * add a new one for `n watchers` * testing: present, minimal * ui: re-use the counters in the tooltips so that they include a measurement unit and look better * testing: present, minimal * ui: pretty-print the numbers in the tooltips * but not in aria labels * testing: missing: IDK how to work around the condition `{{if ge .NumStars 1000}}` * but `PrettyNumber` it relies on has test coverage, so it seems fine Preview: - https://codeberg.org/attachments/6d726bbd-fd84-4ca0-9aa4-cd5492512305 - https://codeberg.org/attachments/686eb429-93a7-4268-98d7-84863d6eb5ee Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9754 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-19 18:33:26 +02:00
Mathieu Fenniak	8caea1062c	fix: replace buggy limit/offset pagination in DoctorUserStarNum (#9752 ) Unsafe pagination with LIMIT/OFFSET and no ordering in `DoctorUserStarNum`, which is used during the `doctor check --run recalculate-stars-number --fix` command. Replaced with a single `UPDATE` statement to perform the work in bulk, rather than user-by-user. Marking this as "Bug / Confirmed" based upon the theoretical limit/offset risks, not reproduced risks. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests `TestDoctorUserStarNum` is slightly tested by `TestDoctorUserStarNum`, verifying it runs with no errors. I've also performed manual testing, corrupting my `user.num_stars` and then using the doctor to recalc it. Further automated tests probably aren't justified because tracking the number of stars a user has outstanding doesn't seem like important functionality anyway... it's just part of a few API responses on a user. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9752 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-19 08:13:57 +02:00
Gusted	0a7e438e43	feat: simplify `GetPullRequestFiles` (#9740 ) `GetPullRequestFiles` is the API route handler to get the files that are changed in a pull request, it has to know the start commit and end commit to diff for (so it can gather the changed file and other information). The end commit is clear, the pr ref (`ref/pull/xxx/head`). However the start commit has to be computed, it is the merge base commit between the base branch and pr ref. However if the pr was merged, then we should use the `pr.MergeBase` as it's possible the `pr.BaseBranch` no longer exists. Instead of doing this computation via `GetCompareInfo` that also does some other computations, compute the merge base directly ourselves in this function, if no merge base exists then fallback to the base reference (this is the same behavior as in `GetCompareInfo`). The only difference is that in the case of the fallback we don't convert the base ref to a commit ID, this is not necessary as the call to `git-diff` will accept any valid reference. So technically we could drop the call to `baseGitRepo.GetRefCommitID()` as well, but that's left for another time to keep the change minimal. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9740 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-18 08:03:47 +02:00
Gusted	6726861e49	feat: dont set merge-base on pull request creation (#9734 ) This will be computed by [`NewPullrequest` via `testPatch`](`3f1731a765/services/pull/pull.go (L40-L46)`) before the pull request is inserted into the database: `4adec07103/services/pull/patch.go (L169-L177)` The AGit codepath already didn't set the mergebase. Tests are added to confirm that merge-base is still indeed set upon pull request creation via the web route and API route. There's no immediate benefit, this is in preparation of trying to do less `git` commands on certain web/API routes. The enhancement thus here being `compareInfo` is not used from `parseCompareInfo` and could potentially in the future no longer have to be computed or could be skipped to compute for this API route, similar for removing a dependency on `ci.CompareInfo`. The `compareInfo` is relatively _heavy_ to compute and is not used in all codepaths. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9734 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-18 08:03:29 +02:00
Mathieu Fenniak	c54cfa3af8	chore(deps): upgrade xorm to remove access to unsafe BufferSize() (#9744 ) Ensuring that we don't have access to the unsafe `bufferIterate` in xorm, which was removed in xorm 1.3.9-forgejo.3 (https://code.forgejo.org/xorm/xorm/pulls/39). This isn't used, so this isn't a functional change; just a protective upgrade. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9744 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-18 07:43:32 +02:00
Mathieu Fenniak	3f5a01e42b	feat: add foreign keys to table collaboration (#9724 ) This appears to be as easy as a foreign-key addition possibly could be; no automated tests required adjustments. Manual testing conducted: - Added collaborator to a repo - Removed collaborator from a repo - Deleted a repo with a collaborator on it - Deleted a user that is a collaborator - Verified database definitions to ensure foreign keys are present. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9724): <!--number 9724 --><!--line 0 --><!--description YWRkIGZvcmVpZ24ga2V5cyB0byB0YWJsZSBjb2xsYWJvcmF0aW9u-->add foreign keys to table collaboration<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9724 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-18 02:50:50 +02:00
forgejo-release-manager	3f1731a765	chore(release-notes): Forgejo v13.0.1 (#9732 ) https://codeberg.org/forgejo/forgejo/milestone/29090 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9732 Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-10-17 19:51:30 +02:00
Laxystem	c22ec65856	feat: Prioritize Noto Sans over Roboto and Noto Sans Hebrew over Arial (#6931 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6931 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Laxystem <the@laxla.quest> Co-committed-by: Laxystem <the@laxla.quest>	2025-10-17 14:40:51 +02:00
Earl Warren	bc0568b3ee	chore(release-notes): Forgejo v13.0.0 (followup 1) (#9722 ) Resolves forgejo/forgejo#9718 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9722 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-10-16 19:31:21 +02:00
Dirk	e20c674560	fix; replace Gitea -> Forgejo in app.example.ini where easily possible (#9721 ) This PR changes the mentions of Gitea to Forgejo in the `app.example.ini` file if it is easily possible, like where the application itself is named, or where the binary is referenced. Corresponding issue: https://codeberg.org/forgejo/forgejo/issues/9715 Things that are explicitly not changed and are not in the scope of this PR: * URLs where there is no equivalent for Forgejo * Names of variables * Default values of variables ## Checklist ### Tests - No testable code was changed ### Documentation - No user-facing documentation was changed ### Release notes * Is it worth mentioning? I don’t know, I leave this up to the release team. - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9721 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Dirk <dirk@0x7be.de> Co-committed-by: Dirk <dirk@0x7be.de>	2025-10-16 18:44:13 +02:00
VewDev	5b13c6e024	fix: release email links (#9690 ) Use correct links (instance.com/owner/repo/archive/tag.extension) links in release emails, instead of the (/owner/repo) incomplete links. Fixes #9482 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). #### Manual test screenshots ![image](/attachments/f00fb1f9-17f2-4df8-bc0d-3e8f215020cb) ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9690 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: VewDev <vewdev@noreply.codeberg.org> Co-committed-by: VewDev <vewdev@noreply.codeberg.org>	2025-10-16 16:12:32 +02:00
Mathieu Fenniak	fe4a2ae7c1	fix: empty DBs create tables in an ungoverned order resulting in future foreign key errors (#9709 ) Discovered while testing #9708: Fresh install databases, which is also a process used by the integration tests, create tables by using `SyncAllTables`. The order that tables are created is ungoverned -- it occurs based upon the order that Go calls each module's `init` to register their schema models. With the current foreign keys in the database, this does not yet cause an error. But it will shortly. I've manually tested this fix in this way: - The correct order to create tables is that indicated by `foreignKeySortInsert`. This creates tables that are referenced by foreign keys before creating tables that do the referencing (eg. `user` before `tracked_time`). - If I modify this PR and sort the keys the opposite way `foreignKeySortDelete`, then integration tests fail: ``` ??? [TestLogger] 2025/10/15 22:37:58 models/db/engine.go:270:InitEngineWithMigration() [E] [Error SQL Query] CREATE TABLE IF NOT EXISTS "gtestschema"."tracked_time" ("id" BIGSERIAL PRIMARY KEY NOT NULL, "issue_id" BIGINT NULL, "user_id" BIGINT NULL, "created_unix" BIGINT NULL, "time" BIGINT NOT NULL, "deleted" BOOL DEFAULT false NOT NULL, CONSTRAINT "tracked_time_issue_id_fkey" FOREIGN KEY ("issue_id") REFERENCES "gtestschema"."issue" ("id"), CONSTRAINT "tracked_time_user_id_fkey" FOREIGN KEY ("user_id") REFERENCES "gtestschema"."user" ("id")); [] - pq: relation "gtestschema.issue" does not exist ??? [TestLogger] 2025/10/15 22:37:58 routers/common/db.go:36:InitDBEngine() [E] ORM engine initialization attempt #1/10 failed. ``` Therefore this PR which doesn't appear to fix anything today fixes a latent bug that will occur shortly (possibly in #9397, possibly when another foreign key is added, possibly if Go changes the order in which `init` functions are invoked). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9709 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-16 16:02:49 +02:00
Mathieu Fenniak	affadc359e	fix: integration tests & empty DB creation will fail as soon as forgejo_migrations accesses an existing table (#9708 ) Integration tests and new Forgejo installations work in a manner that I didn't expect, and didn't come up during testing of #9561. - They run the migrations (gitea migrations -> forgejo migrations legacy -> forgejo migrations). - The gitea & forgejo migrations detect if the `version` and `forgejo_version` table are empty, because they are on an empty DB and the tables were just created - When they hit this case, they pretend all the migrations are applied by setting the version to the highest version number - And then they rely on the DB engine executing `SyncAllTables` to actually create the schema. The new `forgejo_migrations` module was not doing this. So, it would attempt to execute migrations and find that dependent database tables didn't exist, causing unexpected errors in running the integration tests (or starting forgejo on an empty database): https://codeberg.org/forgejo/forgejo/pulls/9397#issuecomment-7745969 This fixes the issue by following the same pattern in `forgejo_migrations`; relying on `SyncAllTables` for initial schema creation. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9708 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-16 16:02:30 +02:00
Bojidar Marinov	8ed95dc4c6	fix: use `scrollHeight` for rendered iframe if `offsetHeight` is unavailable (#9508 ) Fixes #9421. Added integration test. Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9508 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com> Co-committed-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com>	2025-10-16 15:51:57 +02:00
forgejo-release-manager	e56fdf1ec5	chore(release-notes): Forgejo v13.0.0 (#9442 ) https://codeberg.org/forgejo/forgejo/milestone/21377 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9442 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-10-16 15:40:05 +02:00
Leni Kadali	52454651ea	fix: Repo migrate API endpoint returning 200 when it crashes (#9435 ) Fixes #8158 Make the repo migrate API to return a 500 error when a panic occurs. ## Testing 1. Add a panic line as shown at `560da47efc/routers/api/v1/repo/migrate.go (L224-L225)`. 2. Attempt the migrate action via the API. It should throw a 500 error instead of a 200. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9435 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Leni Kadali <lenikadali@noreply.codeberg.org> Co-committed-by: Leni Kadali <lenikadali@noreply.codeberg.org>	2025-10-15 23:23:18 +02:00
Renovate Bot	4d7b59a9f9	Update x/tools to v0.38.0 (forgejo) (#9702 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 22:51:29 +02:00
Mathieu Fenniak	ee7a4a827a	fix: OpenGraph cards for some issues show wrong timestamp (#9705 ) Fixes #9693. Image contents are not part of automated testing, so I manually tested this by: - Mutating the `created` field to `NULL` for a target card, verifying image generated without a cache - Double-checking by mutating the `created_unix` field for a target card, verifying image generated to correct updated date (checking my cache busting) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9705 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-15 21:38:51 +02:00
Mathieu Fenniak	6db2e23078	test: introduce TruncateBeansCascade test helper to support data cleanup of foreign-key referenced tables (#9684 ) Noted in #9557 -- as more foreign keys are added, a couple test locations (`reverseproxy_test.go` and `cmd_admin_test.go`) that truncate fixture data have a growing list of impacted tables. This PR introduces a new `TruncateBeansCascade` which can be used for tests, as well as enhancing some helper functions that I expect will be used later to support automatic operation ordering. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. (Implicitly tested* by virtue of usage in a test.) - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9684 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-15 20:26:41 +02:00
Renovate Bot	46e491f05e	Update go-openapi packages (forgejo) (#9701 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9701 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:47:44 +02:00
Renovate Bot	d2604ab313	Update https://data.forgejo.org/actions/setup-node action to v6 (forgejo) (#9704 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9704 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:41:12 +02:00
Renovate Bot	ad70b09eea	Update dependency happy-dom to v20 (forgejo) (#9703 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:38:53 +02:00
Renovate Bot	c5b292b635	Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.4.1 (forgejo) (#9700 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:37:30 +02:00
Renovate Bot	b818a028a1	Update linters (forgejo) (#9699 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:37:21 +02:00
Renovate Bot	87380722b5	Update module github.com/dsoprea/go-exif/v3 to v3.0.1 (forgejo) (#9682 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/dsoprea/go-exif/v3](https://github.com/dsoprea/go-exif) \| `v3.0.0-20210625224831-a6301f85c82b` -> `v3.0.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fdsoprea%2fgo-exif%2fv3/v3.0.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fdsoprea%2fgo-exif%2fv3/v3.0.0-20210625224831-a6301f85c82b/v3.0.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNDYuMCIsInVwZGF0ZWRJblZlciI6IjQxLjE0Ni4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9682 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 17:29:45 +02:00
Renovate Bot	e777b59673	Update https://data.forgejo.org/tj-actions/changed-files action to v47 (forgejo) (#9616 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9616 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-15 15:30:32 +02:00
Earl Warren	d2d388bdcd	i18n: update of translations from Codeberg Translate (#9597 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9597 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-15 11:57:29 +02:00
Codeberg Translate	5494d8b3cd	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: anorprogrammer <anorprogrammer@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: emansije <emansije@noreply.codeberg.org> Co-authored-by: nykula <nykula@noreply.codeberg.org> Co-authored-by: pgmtx <pgmtx@noreply.codeberg.org> Co-authored-by: victordargallo <victordargallo@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-10-15 09:09:35 +00:00
Earl Warren	ed0bec9aa9	refactor: developer-friendly database schema migration registration (#9561 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9561 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org>	2025-10-15 10:54:20 +02:00
Mathieu Fenniak	1c7e189dd0	chore(e2e): address another flakey failure in webauthn.test.e2e.ts (#9688 ) Had another random failure in `webauthn.test.e2e.ts`: ``` Retry #1 ─────────────────────────────────────────────────────────────────────────────────────── TimeoutError: locator.click: Timeout 3000ms exceeded. Call log: - waiting for getByText('Sign out') - waiting for" http://localhost:3003/user/settings/security" navigation to finish... - navigated to "http://localhost:3003/user/settings/security" - locator resolved to <a href="" tabindex="-1" role="menuitem" id="_aria_auto_id_10" data-url="/user/logout" class="item link-action">…</a> - attempting click action 2 × waiting for element to be visible, enabled and stable - element is not visible - retrying click action - waiting 20ms 2 × waiting for element to be visible, enabled and stable - element is not visible - retrying click action - waiting 100ms 6 × waiting for element to be visible, enabled and stable - element is not visible - retrying click action - waiting 500ms 41 \| // Logout. 42 \| await page.locator('div[aria-label="Profile and settings…"]').click(); > 43 \| await page.getByText('Sign out').click(); \| ^ 44 \| await expect(async () => { 45 \| await page.waitForURL(`${workerInfo.project.use.baseURL}/`); 46 \| }).toPass(); at /workspace/forgejo/forgejo/tests/e2e/webauthn.test.e2e.ts:43:36 ``` While attempting to click `Sign out`, playwright waited for page navigation to `http://localhost:3003/user/settings/security` to complete, and then the `Sign out` button never became visible. This suggests to me that the test: - Clicked `Add security key` - There was a race between the browser, which began reloading `/user/settings/security`... - And the test clicked on `Profile and settings…` immediately before the new page loaded, since that was visible and available on the old page - Therefore `Sign out` never appeared on the new page to be clicked This PR addresses the race by ensuring that after the security key is added, the page with the security key added is visible (specifically the Remove button). This should prevent the click on "Profile and settings" and "Sign out" from potentially occurring on different pages (as would happen if the reload occurred between the two clicks). I have not been able to reproduce this exact failure locally, but I have tricked my e2e testing situation into reproducing other errors in this test by introducing a synthetic 100ms wait on every web request in the gitea server. After adding this fix, the test does not fail in that scenario. (🤷 Probably good, but no guarantee that we're not going to see another issue.) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9688 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-15 09:50:53 +02:00
Ryan Lerch	626ff29545	feat: Add support for administrators to set email visibility on user accounts (#9668 ) feat: Add support for administrators to set email visibility on user accounts This feature allows administrators to control user email privacy settings through both the API and web interface. note: This was originally part of #9594 but is now split out into it's own PR ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9668): <!--number 9668 --><!--line 0 --><!--description QWRkIHN1cHBvcnQgZm9yIGFkbWluaXN0cmF0b3JzIHRvIHNldCBlbWFpbCB2aXNpYmlsaXR5IG9uIHVzZXIgYWNjb3VudHM=-->Add support for administrators to set email visibility on user accounts<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9668 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Co-committed-by: Ryan Lerch <rlerch@redhat.com>	2025-10-15 03:21:15 +02:00
Mathieu Fenniak	558e9bdf5f	feat: developer friendly migration registration	2025-10-14 14:51:50 -06:00
Renovate Bot	c3d64da23c	Update module github.com/mholt/archives to v0.1.5 (forgejo) (#9683 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9683 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-14 22:46:18 +02:00
Mathieu Fenniak	709c315bc4	chore: add new functions to container.Set	2025-10-14 14:40:49 -06:00
Mathieu Fenniak	49bcd792cd	chore: rename 'forgejo_migrations' to 'forgejo_migrations_legacy'	2025-10-14 14:40:49 -06:00
Mathieu Fenniak	a0be0f22fc	chore: rename 'migrations' to 'gitea_migrations'	2025-10-14 14:40:49 -06:00
Gusted	56d9b4b14d	chore: make renovate work on v13 forgejo (#9679 ) v13 is going to be released soon, v12 is EOL in a few days. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9679 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-14 10:43:22 +02:00
Mathieu Fenniak	82ad5189fe	feat: add foreign keys to the `access` table (#9557 ) Adds two foreign keys: - `access.user_id` -> `user` - `access.repo_id` -> `repository` Testing: - Existing automated test suite - Minor adjustments required to `reverseproxy_test.go` - Test failures caused a reorganization of delete operations in `DeleteRepositoryDirectly` - Manually tested - On "user" and "repo" Collaborator page, added, removed, and changed the access-level of collaborators ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9557): <!--number 9557 --><!--line 0 --><!--description YWRkIGZvcmVpZ24ga2V5cyB0byB0aGUgYGFjY2Vzc2AgdGFibGU=-->add foreign keys to the `access` table<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9557 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-14 05:39:47 +02:00
Renovate Bot	adc01a086a	Update dependency chart.js to v4.5.1 (forgejo) (#9677 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9677 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-14 03:31:05 +02:00
Gabor Pihaj	67a9b80c51	feat: include non-conventional headers in payload for git signatures (#9558 ) This patch is meant to fix #8255, by adding all (even unknown) git commit headers to the payload. Unit test is added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9558 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Gabor Pihaj <gabor.pihaj@gmail.com> Co-committed-by: Gabor Pihaj <gabor.pihaj@gmail.com>	2025-10-14 02:18:01 +02:00
Renovate Bot	c009f450a6	Update dependency go to v1.25.3 (forgejo) (#9676 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9676 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-14 02:12:45 +02:00
Mathieu Fenniak	906e2e7c4a	fix: false error logging "Render JSON failed" from workflow dispatch via API (#9675 ) When making a `POST` to start a workflow dispatch, and not specifying the option `"return_run_info": true`, the API handler attempts to render a `nil` as a JSON body to a `204 No Content` response. This results in an error being logged to the console, as this status code does not permit a body. ``` Render JSON failed: http: request method or response status code does not allow body ``` There is no functional impact except for a false error log, as `ctx.JSON` just logs a `Render JSON failed` error if it fails. I could not find any existing code which allows integration tests to intercept or inspect log output, which would be required for an automated test verifying this is fixed. If anyone could advise an existing test that performs log interception, or any hints on how such a mechanism would be created, I don't mind adding it... but it may not be warranted for such a tiny bug either. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9675 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-14 02:10:46 +02:00
Mathieu Fenniak	78d92aafd7	feat: strip EXIF information from uploaded avatars (#9638 ) Strips EXIF information from uploaded avatars (excluding the orientation tag), affecting both user & repo avatars. Adds a new subcommand `forgejo admin avatar-strip-exif` to perform a retroactive update of avatar files. Fixes #9608. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9638): <!--number 9638 --><!--line 0 --><!--description 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-->Uploaded avatar images can sometimes contain unexpected metadata such as the location where the image was created, or the device the image was created with, stored in a format called EXIF. Forgejo now removes EXIF data when custom user and repository images are uploaded in order to reduce the risk of personally identifiable information being leaked unexpectedly. A new CLI subcommand `forgejo doctor avatar-strip-exif` can be used to strip EXIF information from all existing avatars; we recommend that administrators run this command once after upgrade in order to minimize this risk for existing stored files.<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9638 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-13 23:16:17 +02:00
Gusted	8eb8f49581	feat: move more modals to native dialogs (#9636 ) Follow up of forgejo/forgejo#8859 Move the following modals to native dialogs: - Admin notice. - Edit label. - New label. - Update email in admin's email list. Each has a E2E test to screenshot the modal and test functionality. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9636 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-13 17:48:49 +02:00
Gusted	d0a6f93f9e	fix: avoid jumping to begin of page on edit comment action (#9645 ) When you edit a comment and the comment already has a markdown editor, then the code will click on the 'Write' tab, in case you canceled editting the comment when you were at the 'Preview' tab. In forgejo/forgejo#2681 I added `href="#"` to the tab items, this causes that when the 'Write' tab is being clicked by the code the page is jumped the beginning of the page. Instead of being clever and trying to make this item interactive via another way or via javascript avoid this jumping, we do better and make this element a button. This item is not a link, it's a button that will perform a action. This entirely avoids the issue of jumping and it's still interactive. Resolves forgejo/forgejo#9542 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9645 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-13 17:46:35 +02:00
Renovate Bot	0a8b6a9429	Lock file maintenance (forgejo) (#9666 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNDYuMCIsInVwZGF0ZWRJblZlciI6IjQxLjE0Ni4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9666 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-13 08:49:53 +02:00
Mathieu Fenniak	92684b6208	chore(e2e): test flakiness in issue-comment-dropzone.test.e2e.ts (#9660 ) Flaky e2e test failure: ``` 1) [Mobile Chrome] › tests/e2e/issue-comment-dropzone.test.e2e.ts:74:1 › Re-add images to dropzone on edit Error: expect(locator).toHaveCount(expected) failed Locator: locator('.dropzone').locator('.dz-preview') Expected: 1 Received: 0 Timeout: 3000ms Call log: - Expect "toHaveCount" with timeout 3000ms - waiting for locator('.dropzone').locator('.dz-preview') 7 × locator resolved to 0 elements - unexpected value "0" 87 \| await expect(dropzone.locator('.files').first()).toHaveCount(1); 88 \| const preview = dropzone.locator('.dz-preview'); > 89 \| await expect(preview).toHaveCount(1); \| ^ 90 \| await expect(preview.locator('.dz-filename')).toHaveText('foo.png'); 91 \| await expect(preview.locator('.octicon-copy')).toBeVisible(); 92 \| await assertCopy(page, workerInfo, '![foo]('); at /workspace/forgejo/forgejo/tests/e2e/issue-comment-dropzone.test.e2e.ts:89:25 ``` Observed on chromium and Mobile Chrome. I haven't been able to reproduce this test failure in local testing, but in examining the playwright test artifacts I noted that the browser is getting a `404 Not Found` error attempting to load a URL `(test server url)/uploading...` (where `...` is literally present in the URL). My theory is that the test is firing the paste event in `pasteImage` and not waiting for the XMLHttpRequest to complete the upload, and then saving the issue comment with the placeholder URL `uploading...` in the Markdown, causing a later failure. This patch adds two `waitForResponse` calls -- one when pasting the image to wait for the upload to complete, and one which is probably redundant which waits for the `/attachments` GET while editing the comment. If this test continues to be flaky, it may at least have a different error revealing more about its cause. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9660 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-13 08:43:29 +02:00
Renovate Bot	15cb5cc6c1	Update dependency katex to v0.16.24 (forgejo) (#9665 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9665 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-13 03:12:19 +02:00
Renovate Bot	19c9f6194b	Update renovate to v41.146.0 (forgejo) (#9664 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-13 03:03:00 +02:00
Mathieu Fenniak	a80f8f9d01	chore(e2e): test flakiness in webauthn.test.e2e.ts (#9662 ) Test failure: ``` 1) [chromium] › tests/e2e/webauthn.test.e2e.ts:14:1 › WebAuthn register & login flow ───────────── Error: page.goto: Navigation to "http://localhost:3003/user/login" is interrupted by another navigation to "http://localhost:3003/" Call log: - navigating to "http://localhost:3003/user/login", waiting until "load" 46 \| 47 \| // Login. > 48 \| response = await page.goto('/user/login'); \| ^ 49 \| expect(response?.status()).toBe(200); 50 \| 51 \| await page.getByLabel('Username or email address').fill(username); at /workspace/forgejo/forgejo/tests/e2e/webauthn.test.e2e.ts:48:25 ``` I have not been able to reproduce this locally. What seems to be happening is that the current code is clicking the "Sign out" menu option, and then while the browser is busy (navigating to `/logout`, redirecting to `/`), the test attempts to navigate directly to `/user/login`. The two navigations are racey, depending on how fast they work they may result in this error. The proposed fix is to wait for the sign-out operation to complete by waiting for the URL to land on `/`, before then proceeding with the rest of the test with the second login. Normally this would be just a `waitForURL` call. But because of the redirect on logout, I've encountered the below error if the code is just invoking `waitForURL`. So I put the `waitForURL` invocation into an `expect(...).toPass()`. This isn't technically the correct usage of `toPass` which is intended for assertions which will eventually become successful, whereas this is attempting to retry a wait... but... a wait shouldn't need a retry. (I'd argue this is a Playwright bug.) ``` Error: page.waitForURL: net::ERR_ABORTED; maybe frame was detached? ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9662 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-13 01:01:42 +02:00
Renovate Bot	1a93e211e4	Update dependency asciinema-player to v3.12.1 (forgejo) (#9647 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9647 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-12 23:54:50 +02:00
Mathieu Fenniak	79f6f8e508	fix: db.Iterate can miss records, can return records twice (#9657 ) Fixes #9644. Rewrites `db.Iterate` so that it performs DB queries in this format: - First: `SELECT ...columns... FROM table ORDER BY id LIMIT ...buffer-size...` - Subsequent buffer fills: adding a `WHERE id > ...last-id-from-previous...` This approach: - Prevents records from being missed or returned twice - Returns records in a predictable order - Should be faster, by virtue of using database indexes on the primary key to perform the query - Doesn't rely on any unpredictable database behaviour when using `LIMIT` and `OFFSET` without an `ORDER BY` - (Downside: does require reflection to read field values off Go structures for the primary key value) Expands the automated tests to include the predicted failure case identified in #9644, which verified the previous broken behaviour, as well as verifying that the `cond` parameter is applied which was previously not covered by test automation. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9657 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-12 21:47:26 +02:00
Renovate Bot	ee34e3a317	Update github.com/rhysd/actionlint (indirect) to v1.7.8 (forgejo) (#9655 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/rhysd/actionlint](https://github.com/rhysd/actionlint) \| `v1.7.7` -> `v1.7.8` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2frhysd%2factionlint/v1.7.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2frhysd%2factionlint/v1.7.7/v1.7.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>rhysd/actionlint (github.com/rhysd/actionlint)</summary> ### [`v1.7.8`](https://github.com/rhysd/actionlint/blob/HEAD/CHANGELOG.md#v178---2025-10-11) [Compare Source](https://github.com/rhysd/actionlint/compare/v1.7.7...v1.7.8) - Support `models` permission in `permissions` section. ([#531](https://github.com/rhysd/actionlint/issues/531), thanks [@muzimuzhi](https://github.com/muzimuzhi)) - Support `job.check_run_id` property. ([#576](https://github.com/rhysd/actionlint/issues/576), thanks [@muzimuzhi](https://github.com/muzimuzhi) for fixing the type at [#577](https://github.com/rhysd/actionlint/issues/577)) - Support `node24` runtime at `using` section in action metadata. ([#561](https://github.com/rhysd/actionlint/issues/561), thanks [@salmanmkc](https://github.com/salmanmkc)) - Add support for the following runner labels - [`macos-26` and `macos-26-large`](https://github.blog/changelog/2025-09-11-actions-macos-26-image-now-in-public-preview/) ([#572](https://github.com/rhysd/actionlint/issues/572), thanks [@muzimuzhi](https://github.com/muzimuzhi)) - [`macos-15`](https://github.blog/changelog/2025-09-19-github-actions-macos-13-runner-image-is-closing-down/#what-you-need-to-do) ([#572](https://github.com/rhysd/actionlint/issues/572), thanks [@muzimuzhi](https://github.com/muzimuzhi)) - Drop support for the following runner labels. - [`ubuntu-20.04`](https://github.com/actions/runner-images/issues/11101) ([#534](https://github.com/rhysd/actionlint/issues/534), thanks [@shogo82148](https://github.com/shogo82148)) - [`windows-2019`](https://github.blog/changelog/2025-04-15-upcoming-breaking-changes-and-releases-for-github-actions/#windows-server-2019-is-closing-down) ([#572](https://github.com/rhysd/actionlint/issues/572), thanks [@muzimuzhi](https://github.com/muzimuzhi)) - Support [`deprecationMessage`](https://docs.github.com/en/actions/reference/workflows-and-actions/metadata-syntax#inputsinput_iddeprecationmessage) in action inputs. ([#540](https://github.com/rhysd/actionlint/issues/540), thanks [@saansh45](https://github.com/saansh45)) - Support [`windows-11-arm` runner](https://github.blog/changelog/2025-04-14-windows-arm64-hosted-runners-now-available-in-public-preview/). ([#542](https://github.com/rhysd/actionlint/issues/542), thanks [@trim21](https://github.com/trim21)) - Handle `ubuntu-latest` runner label as `ubuntu-24.04` and `macos-latest` runner label as `macos-15`. - Report mixing Intel Mac labels and Arm Mac labels as error. - Add new types to `issues` and `pull_request_target` webhooks. - Update the popular actions data set to the latest and add more actions to it (thanks [@sethvargo](https://github.com/sethvargo) for fixing the `go generate` scripts) - `actions/create-github-app-token` - `actions/attest-sbom` - `actions/ai-inference` - `peter-evans/create-or-update-comment` - `release-drafter/release-drafter` - `SamKirkland/FTP-Deploy-Action` - Fix the version value in `actionlint -version` can be empty. - Fix outdated URL links in some error messages and documents. - [Homebrew formula in this repository](https://github.com/rhysd/actionlint/blob/main/HomebrewFormula/actionlint.rb) is deprecated and [Homebrew cask](https://github.com/rhysd/actionlint/blob/main/Casks/actionlint.rb) is newly added instead because [GoReleaser no longer supports Homebrew formula update](https://goreleaser.com/deprecations/#brews). Note that Homebrew's official `actionlint` formula is still maintained. Please read the [documentation](https://github.com/rhysd/actionlint/blob/main/docs/install.md#homebrew) for more details. - Drop support for Go 1.23 and earlier because they are no longer maintained officially. Go 1.24 and later are supported to build actionlint. - Replace [`go-yaml/yaml@v3`](https://github.com/go-yaml/yaml) package with [`yaml/go-yaml@v4`](https://github.com/yaml/go-yaml) package. `go-yaml/yaml` was used for parsing workflow files however it was unmaintained. `yaml/go-yaml` is a successor of the library officially maintained by YAML organization. ([#575](https://github.com/rhysd/actionlint/issues/575)) - Improve error messages on parsing workflow and action metadata files. \[Changes]\[v1.7.8] <a id="v1.7.7"></a> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9655 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-12 14:50:03 +02:00
0ko	f200d53eb1	refactor(ui): re-implement icon colors but for all thin elements (#9643 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/3702. * replace `--color-icon-` with `--color-thin-` * use proper fallbacks instead of variables just referencing other variables * Forgejo dark: * fix contrast of red and green texts (also purple if they exist) * improve contrast of orange texts * normalize chroma/lightness properties of all colors with `oklch` Diff stats B: https://codeberg.org/attachments/76c54dda-a6ac-4d87-b174-54eb97a71643 A: https://codeberg.org/attachments/7852d2f2-7db1-4480-91b1-ca809ffcd03e Repo activity B: https://codeberg.org/attachments/beb6ab5b-bcdb-464f-8d7d-038c1a082492 A: https://codeberg.org/attachments/b12be151-4ab3-4471-b6fb-ea60653580a5 Due date B: https://codeberg.org/attachments/cdffc5bc-3379-451d-b99f-587d56821a26 A: https://codeberg.org/attachments/cf610300-f7aa-4c4f-ba11-0cd973ef8c94 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9643 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-12 10:01:24 +02:00
0ko	e9528ec4a8	chore(e2e): disable webkit/safari in some tests (#9642 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9599#issuecomment-7670890. I analyzed a bunch more recent runs and adding skipping for ones that fail very often. Coincidentally all of the most failing tests were already skipped for either Webkit or Safari, just not for both. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9642 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2025-10-11 16:08:23 +02:00
Renovate Bot	e972a5bf49	Update module golang.org/x/image to v0.32.0 (forgejo) (#9605 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/image](https://pkg.go.dev/golang.org/x/image) \| [`v0.31.0` -> `v0.32.0`](https://cs.opensource.google/go/x/image/+/refs/tags/v0.31.0...refs/tags/v0.32.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fimage/v0.32.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fimage/v0.31.0/v0.32.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9605 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-11 14:06:42 +02:00
0ko	e13da8aae3	chore: remove branding from application run helper (#9640 ) Rel: https://codeberg.org/forgejo/forgejo/pulls/9628. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9640 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-11 12:14:13 +02:00
Renovate Bot	e588a8642b	Update module golang.org/x/net to v0.46.0 (forgejo) (#9606 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/net](https://pkg.go.dev/golang.org/x/net) \| [`v0.45.0` -> `v0.46.0`](https://cs.opensource.google/go/x/net/+/refs/tags/v0.45.0...refs/tags/v0.46.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fnet/v0.46.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fnet/v0.45.0/v0.46.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9606 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-11 11:20:39 +02:00
Cyborus	079c73635c	fix(ui): add `markup` class to project descriptions (#9634 ) Fixes #9630 ### Project page Before ![project-page-before](/attachments/1a6b15e6-6959-4ec2-978b-241a31958f1c) After ![project-page-after](/attachments/50fe81a7-6c29-49e5-8336-a8261171c77c) ### Projects list Before ![project-list-before](/attachments/ec92a7f5-de76-4c36-90b4-4f8951ad14b7) After ![project-list-after](/attachments/f1d82688-3030-45d6-8ca5-6d601f5cbc8f) --- ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). I'm unsure if this change is substantial enough to warrant that? ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9634): <!--number 9634 --><!--line 0 --><!--description Zml4KHVpKTogYWRkIGBtYXJrdXBgIGNsYXNzIHRvIHByb2plY3QgZGVzY3JpcHRpb25z-->fix(ui): add `markup` class to project descriptions<!--description--> <!--end release-notes-assistant--> Co-authored-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9634 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Cyborus <cyborus@cyborus.xyz> Co-committed-by: Cyborus <cyborus@cyborus.xyz>	2025-10-11 11:19:33 +02:00
0ko	688a83e405	chore(ui): remove unused class .small-menu-items (#9639 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8399/files. That PR turned `small-menu-items` completely unused. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9639 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-11 10:39:43 +02:00
0ko	edc6072da2	fix(ui): make it possible to post issues and comments w/o JS (#9614 ) Fix regression of https://codeberg.org/forgejo/forgejo/pulls/5589 & https://codeberg.org/forgejo/forgejo/pulls/7006. Both added invisible input fields with `required` attribute into the forms used for creating issues and adding comments via `combomarkdowneditor.tmpl`. These fields were not related to the form and were only used for the modal dialogs. * When JS is on, modals are moved out of the form to the bottom of the page by JS that handles modals * When JS is off, the forms are stuck with invisible inputs preventing form submission * Another side effect is that request data contains these unwanted fields This was fixed by adding attribute `disabled` to unwanted inputs. Then JS removes it on initialization. Thanks to @Beowulf for helping with choosing the approach! When a field is `disabled`, the browser doesn't consider it in form validation and doesn't even include it in the request data. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9614 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-10-11 10:38:48 +02:00
0ko	03d77fd465	fix(ui/releases): strech elements apart when no search bar (#9626 ) Fix minor visual defect, which is a regression of https://codeberg.org/forgejo/forgejo/pulls/8399. When viewing individual releases, there's no search bar. B: https://codeberg.org/attachments/5621e544-6d18-4f58-b4f5-f15bf2c10e3b A: https://codeberg.org/attachments/f6ebc7bb-9168-4a3f-86ba-0b526c2ede89 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9626 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2025-10-11 05:39:10 +02:00
Renovate Bot	4841b310d8	Update dependency monaco-editor-webpack-plugin to v7.1.1 (forgejo) (#9632 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9632 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-11 05:35:55 +02:00
Renovate Bot	f250195256	Update module golang.org/x/oauth2 to v0.32.0 (forgejo) (#9635 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9635 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-11 04:55:20 +02:00
0ko	9a35b6ba77	chore: remove branding from context imports (#9628 ) Kind of followup to https://codeberg.org/forgejo/forgejo/pulls/7337. With cherry-picking being no more, this shouldn't cause too much chaos. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9628 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-10-11 01:52:51 +02:00
0ko	220c8d173b	chore(i18n): migrate download counts to json (#9625 ) Previous such PR: https://codeberg.org/forgejo/forgejo/pulls/9463 As long as changes here do not conflict with https://codeberg.org/forgejo/forgejo/pulls/9597 it is safe to merge without merging that one first. * removals from the INI are included to preserve traceability of strings being moved around * in non-base items are prepended to the top to avoid conflict with Weblate * in English insertion happened in a semi-random place to avoid conflict with PRs that append strings at the end Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9625 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-10-10 22:15:36 +02:00
Renovate Bot	188810c9e9	Update mcr.microsoft.com/devcontainers/go Docker tag to v2 (forgejo) (#9617 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-10 20:00:57 +02:00
Earl Warren	4adec07103	chore(ci): limit LDAP service container memory usage to 500M (#9611 ) This is a noop and will be silently ignored until Forgejo runner v11.2.0 is servicing this repository with https://code.forgejo.org/forgejo/runner/pulls/1079 --- Resolves forgejo/forgejo#9406 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9611 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-10-10 16:26:34 +02:00
Gusted	89469d14e9	feat: avoid remote for codeowner's merge base (#9610 ) The codeowner features computes the mergebase (I'm not exactly sure why, because this should be stored in the database in `merge_base` column, but if there's no harm to compute it again as that will always be the correct answer) in order to get the changed files between the merge base and the head commit. To do this a function was used that adds a remote... my best reasoning is that this was done because the only function that that was exported on the repository struct had this requirement. Add a new function that simply computes the merge base without requiring a remote. The main benefit of not using a remote is that within Codeberg we are frequently seeing `config.lock` being lingered around (see forgejo/forgejo#1946) so its best to avoid modifying the config when possible - in this case it was completely unnecessary. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9610 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-10 15:50:38 +02:00
Gusted	b529b80132	feat: run tsc in CI (#9574 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9574 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-10 15:48:45 +02:00
0ko	39f389eb17	fix(e2e): disable webkit/safari in tests where they are too falky (#9599 ) These tests often appear as failing with one failed retry in e2e logs for either browsers. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9599 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Otto <otto@codeberg.org>	2025-10-10 15:36:21 +02:00
Earl Warren	2189b35545	Update module connectrpc.com/connect to v1.19.1 (forgejo) (followup) (#9612 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9612 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-10-10 15:22:56 +02:00
Renovate Bot	ee41e6eead	Update module golang.org/x/crypto to v0.43.0 (forgejo) (#9604 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9604 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-10 15:09:55 +02:00
Renovate Bot	71257fff2c	Update module connectrpc.com/connect to v1.19.1 (forgejo) (#9567 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9567 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-10 14:33:57 +02:00
Gusted	419eb0a4a2	feat: improve getting shortstat (#9587 ) Refactor the existing functions to get shortstat of commit and between two commits to use performant alternatives, mainly `git-diff-tree` and `git-diff-index`. Resolves forgejo/forgejo#9551 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9587 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-10 14:15:38 +02:00
0ko	84e9b566a0	feat(ui): improve close/reopen/comment buttons (#9598 ) Related: https://codeberg.org/forgejo/forgejo/issues/2650, https://codeberg.org/forgejo/forgejo/pulls/6044 * improve consistency by getting rid of the less usual button kinds * same as changes to profile buttons in https://codeberg.org/forgejo/forgejo/pulls/9359 * transparent outline button is now secondary * bulb-bright red button is now secondary * I think that actions like Close and Reopen shouldn't attract much attention, so they are secondary * add icons to better visually indicate the action * yes this is inspired by GitHub * unlike in GitHub, the icons are monochrome: * colored icons had bad contrast due to buttons being brighter than the usual areas with colored icons * they are not at all common inside of buttons in our UI * convert the buttons to the new CSS * differences are described in https://codeberg.org/forgejo/forgejo/pulls/9359 * a few general CSS improvements * prevent 1px vertical padding on `<button>` provided by browser defaults * wasn't noticed before because no `<buttons>` were converted yet * increased the default gap (for buttons with such icons) to 0.5rem * looks much better than Fomantic's 0.25rem * I took this opportunity because no buttons with icons were converted yet, so there's no blast radius to worry about yet Preview B: https://codeberg.org/attachments/3cdb2fc8-3887-4e82-8213-45dde42a5b33 A: https://codeberg.org/attachments/133b59c2-470f-4f97-8e85-e374e0a0b52e B: https://codeberg.org/attachments/d814d2dc-d2a2-4daf-ba65-70d9097bb046 A: https://codeberg.org/attachments/2f2e0214-33e5-4ca9-a315-21252dc27525 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9598 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-10 07:11:53 +02:00
0ko	2b4754c1d7	feat(ui): JSfree sorting on /explore/{users,organizations} (#9556 ) This PR replaces the sort dropdowns on Users and Organizations pages of Explore with the one we've got earlier in two other areas. Previous such replacement happened in #8572. This implies a few positive changes such as: * larger font size * larger clickable area for coarse cursor * it is possible to use while scripts are still loading * it is possible to use w/o JS Some refactors were made to support this change and as general improvements. Desktop, closed B: https://codeberg.org/attachments/354f7194-b247-4ecd-8875-2e95dadc7445 A: https://codeberg.org/attachments/0fa49cf5-e8e5-4c15-b2b0-7d13e8505945 Desktop, open B: https://codeberg.org/attachments/b01b75d1-dbe4-458c-abd5-64cd8c121bc1 A: https://codeberg.org/attachments/94baccc4-fe36-4ae1-ace0-9b4d5fbd9f42 Mobile, open B: https://codeberg.org/attachments/f868720a-ec71-4829-87f7-a1cfab860e37 A: https://codeberg.org/attachments/bbe72710-6824-4107-8086-d2bd50897038 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9556 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-10-09 14:33:33 +02:00
Renovate Bot	07bff8143e	Update linters (forgejo) (#9578 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 13:29:12 +02:00
Gusted	fc9db11c56	feat: avoid updating all columns (#9572 ) This patch contains two fixes/enhancements to two functions that were updating all columns of the `access_token` and `repository` table when they were only updating a select few columns. Within Codeberg we saw these two queries quite often when something problematic with the database was going on, likely because of this all columns update pattern. `UpdateAccessToken` is removed and a new function `UpdateLastUsed` was added, for `updateRepoRunsNumbers` we can simply add which columns we want to have updated in that query. It's likely there are more of such queries, but these were the ones being executed often. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9572 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-09 13:22:29 +02:00
Renovate Bot	a5abeba442	Update dependency @vitest/eslint-plugin to v1.3.16 (forgejo) (#9575 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9575 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 13:13:36 +02:00
Renovate Bot	c79793be88	Update module mvdan.cc/gofumpt to v0.9.1 (forgejo) (#9580 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [mvdan.cc/gofumpt](https://github.com/mvdan/gofumpt) \| `v0.8.0` -> `v0.9.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/mvdan.cc%2fgofumpt/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/mvdan.cc%2fgofumpt/v0.8.0/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>mvdan/gofumpt (mvdan.cc/gofumpt)</summary> ### [`v0.9.1`](https://github.com/mvdan/gofumpt/blob/HEAD/CHANGELOG.md#v091---2025-09-07) [Compare Source](https://github.com/mvdan/gofumpt/compare/v0.9.0...v0.9.1) This is a bugfix release to address a regression in detecting comment directives with special characters such as `//golangcitest:config_path`. ### [`v0.9.0`](https://github.com/mvdan/gofumpt/blob/HEAD/CHANGELOG.md#v090---2025-09-02) [Compare Source](https://github.com/mvdan/gofumpt/compare/v0.8.0...v0.9.0) This release is based on Go 1.25's gofmt, and requires Go 1.24 or later. A new rule is introduced to "clothe" naked returns for the sake of clarity. While there is nothing wrong with naming results in function signatures, using lone `return` statements can be confusing to the reader. Go 1.25's `ignore` directives in `go.mod` files are now obeyed; any directories within the module matching any of the patterns are now omitted when walking directories, such as with `gofumpt -w .`. Module information is now loaded via Go's [`x/mod/modfile` package](https://pkg.go.dev/golang.org/x/mod/modfile) rather than executing `go mod edit -json`, which is way faster. This should result in moderate speed-ups when formatting many directories. </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Enabled. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9580 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 12:16:59 +02:00
Renovate Bot	5281ac76cb	Update https://data.forgejo.org/actions/setup-node action to v5 (forgejo) (#9585 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9585 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 11:20:31 +02:00
Renovate Bot	3897001cec	Update https://data.forgejo.org/actions/checkout action to v5 (forgejo) (#9583 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/checkout](https://data.forgejo.org/actions/checkout) \| action \| major \| `v4` -> `v5` \| --- ### Release Notes <details> <summary>actions/checkout (https://data.forgejo.org/actions/checkout)</summary> ### [`v5`](https://data.forgejo.org/actions/checkout/compare/v4...v5) [Compare Source](https://data.forgejo.org/actions/checkout/compare/v4...v5) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9583 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 10:50:46 +02:00
Renovate Bot	815857cfc0	Update registry.redict.io/redict Docker tag to v7.3.6 (forgejo) (#9576 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| registry.redict.io/redict \| service \| patch \| `7.3.5-scratch` -> `7.3.6-scratch` \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9576 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 10:40:48 +02:00
Earl Warren	08cb52a768	i18n: update of translations from Codeberg Translate (#9465 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9465 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-09 09:40:22 +02:00
Codeberg Translate	d5742c31fb	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Ricky-Tigg <ricky-tigg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vaibhav Sunder <vaibhavswire@gmail.com> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: X1SystemError0X <x1systemerror0x@noreply.codeberg.org> Co-authored-by: arifpedia <arifpedia@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: dyniec <dyniec@noreply.codeberg.org> Co-authored-by: erral <erral@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: m13o <m13o@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: talu <talu@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-10-09 07:02:21 +00:00
Renovate Bot	a28526a521	Update dependency happy-dom to v19 (forgejo) (#9582 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 01:18:56 +02:00
Renovate Bot	098cb0786d	Update dependency @playwright/test to v1.56.0 (forgejo) (#9577 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-09 01:05:02 +02:00
Renovate Bot	9db4e2f38f	Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.4.0 (forgejo) (#9579 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 23:07:05 +02:00
Renovate Bot	1fa23c219f	Update https://data.forgejo.org/actions/setup-go action to v6 (forgejo) (#9584 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9584 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 21:58:10 +02:00
Renovate Bot	f80a5e7445	Update x/tools to v0.37.0 (forgejo) (#9581 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 21:48:19 +02:00
Mathieu Fenniak	68bf916acd	fix!: detect extra cmdline args and emit errors (#9458 ) Fixes #9433. ``` $ ./gitea admin user create --username blah --must-change-password false Hint: boolean false must be specified as a single arg, eg. '--restricted=false', not '--restricted false' Command error: unexpected arguments: false ``` Breaking: CLI sub-commands that only have flags would previously ignore anything that might be considered an "extra" argument, and would proceed without any errors. I've manually tested this change on the single `admin user create` command with positive (ensuring cmd still works) and negative (ensuring errors are reported) test cases. I've attempted to ensure the change is applied only to commands which don't use the CLI `Args()` and avoided touching them, including: - `admin user must-change-password` takes a list of users - `doctor recreate-tables` takes a list of tables - `embedded [list/view/extract]` use a pattern of resources to operate upon - git repo hook subcommands, and the ssh serv command, use arguments and have been omitted from the change ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9458 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-08 18:20:28 +02:00
0ko	563291579e	fix(ui/mde): fix switch height and buttons alignment (#9545 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9359. The custom height override for the switch in MDE was not taken into account in that PR. * How it used to be: constant height + variable padding for different scenarios * How it works now: there's no padding, just variable height After the change the override that was supposed to decrease the padding started increasing it from 0, making the switch too tall. Also two of the buttons on the toolbar used to have a completely unused `button` class, which detonated them after it was globally implemented, so it was removed. First time a button with this class was added in `4615891b9d`, then it was duplicated in `6dad457552`. Modals do not depend on presence of this class: `6610eb1dbf/web_src/js/features/common-global.js (L441)` Preview: B: https://codeberg.org/attachments/5d10ac6e-45b3-4cd3-8083-f446824d4310 A: https://codeberg.org/attachments/93a00f69-56a6-4c02-93d8-6080f51d273f Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9545 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-10-08 17:53:50 +02:00
Renovate Bot	94c068e91e	Update dependency go to v1.25 (forgejo) (#8908 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8908 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 15:57:37 +02:00
Renovate Bot	b5e9b26ae0	Update dependency webpack to v5.102.1 (forgejo) (#9564 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9564 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 14:15:02 +02:00
Renovate Bot	5ed86bf257	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.5.0 (forgejo) (#9563 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 13:15:33 +02:00
Renovate Bot	5ac21c69aa	Update dependency go to v1.24.8 (forgejo) (#9559 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.24.7` -> `1.24.8` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9559 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 12:37:33 +02:00
Renovate Bot	2ba873cbff	Update module github.com/go-swagger/go-swagger/cmd/swagger to v0.33.1 (forgejo) (#9562 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/go-swagger/go-swagger/cmd/swagger](https://github.com/go-swagger/go-swagger) \| `v0.31.0` -> `v0.33.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgo-swagger%2fgo-swagger%2fcmd%2fswagger/v0.33.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgo-swagger%2fgo-swagger%2fcmd%2fswagger/v0.31.0/v0.33.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>go-swagger/go-swagger (github.com/go-swagger/go-swagger/cmd/swagger)</summary> ### [`v0.33.1`](https://github.com/go-swagger/go-swagger/compare/v0.33.0...v0.33.1) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.33.0...v0.33.1) ### [`v0.33.0`](https://github.com/go-swagger/go-swagger/compare/v0.32.3...v0.33.0) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.32.3...v0.33.0) ### [`v0.32.3`](https://github.com/go-swagger/go-swagger/compare/v0.32.2...v0.32.3) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.32.2...v0.32.3) ### [`v0.32.2`](https://github.com/go-swagger/go-swagger/compare/v0.32.1...v0.32.2) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.32.1...v0.32.2) ### [`v0.32.1`](https://github.com/go-swagger/go-swagger/compare/v0.32.0...v0.32.1) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.32.0...v0.32.1) ### [`v0.32.0`](https://github.com/go-swagger/go-swagger/compare/v0.31.0...v0.32.0) [Compare Source](https://github.com/go-swagger/go-swagger/compare/v0.31.0...v0.32.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNSIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9562 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-08 12:10:51 +02:00
Renovate Bot	16e415ebf1	Update dependency asciinema-player to v3.11.1 (forgejo) (#9524 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9524 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-07 22:14:42 +02:00
Ryan Lerch	7ce74a31e2	fix!: prevent forked .profile repositories from displaying profile content (#9513 ) This PR fixes an issue where forked `.profile` repositories were unexpectedly displaying profile content on user profile pages. The fix ensures that only regular `.profile` repositories (not forks) are used to populate user profiles. Fixes #9235 ### Problem When a user forked a repository named `.profile` without having created their own `.profile` repository, the content from the forked repository was unexpectedly displayed on their public profile page. This could lead to users' profiles displaying content they did not intentionally create for that purpose. This issue was particularly problematic on instances where users had repository creation limits (-1) and would inappropriately use forked `.profile` repositories to obtain profile customization. ### Solution Modified the `FindUserProfileReadme()` function in `routers/web/shared/user/header.go` to check if the `.profile` repository is a fork (`profileDbRepo.IsFork`) and return early if it is, preventing forked repositories from being used for profile content. For existing users: - Users with forked `.profile` repositories will no longer see unexpected profile content - No action required unless they want to keep the content For users who want to use forked content: - Can convert the fork to a regular repository in Repository Settings → "Danger Zone" → "Convert fork" - This preserves the content while making it available for profile display ### Testing - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). Tests:* Added comprehensive integration test `forked-profile-repo` that verifies: - Original `.profile` repositories still work correctly - Forked `.profile` repositories do not display profile content - Forked repositories remain accessible via direct repository URLs - Fork relationships are maintained correctly ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. Docs PR is here: https://codeberg.org/forgejo/docs/pulls/1525 ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Release Notes available at `release-notes/9235.md` --- More at: https://codeberg.org/fedora/forgejo-deployment/issues/167 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9513): <!--number 9513 --><!--line 0 --><!--description Zml4ITogUHJldmVudCBmb3JrZWQgYC5wcm9maWxlYCByZXBvc2l0b3JpZXMgZnJvbSBkaXNwbGF5aW5nIHByb2ZpbGUgY29udGVudC4gV2hlbiBhIHVzZXIgZm9ya2VkIGEgcmVwb3NpdG9yeSBuYW1lZCBgLnByb2ZpbGVgIHdpdGhvdXQgaGF2aW5nIGNyZWF0ZWQgdGhlaXIgb3duIGAucHJvZmlsZWAgcmVwb3NpdG9yeSwgdGhlIGNvbnRlbnQgZnJvbSB0aGUgZm9ya2VkIHJlcG9zaXRvcnkgd2FzIHVuZXhwZWN0ZWRseSBkaXNwbGF5ZWQgb24gdGhlaXIgcHVibGljIHByb2ZpbGUgcGFnZS4gVGhpcyBjb3VsZCBsZWFkIHRvIHVzZXJzJyBwcm9maWxlcyBkaXNwbGF5aW5nIGNvbnRlbnQgdGhleSBkaWQgbm90IGludGVudGlvbmFsbHkgY3JlYXRlIGZvciB0aGF0IHB1cnBvc2UuIEZvcmtlZCBgLnByb2ZpbGVgIHJlcG9zaXRvcmllcyBhcmUgbm93IHRyZWF0ZWQgYXMgc3RhbmRhcmQgcmVwb3NpdG9yaWVzIGFuZCBkbyBub3QgcG9wdWxhdGUgdGhlIHVzZXIncyBwdWJsaWMgcHJvZmlsZSBwYWdlLiBVc2VycyB3aG8gd2lzaCB0byB1c2UgdGhlIGNvbnRlbnQgZnJvbSBhIGZvcmtlZCBgLnByb2ZpbGVgIHJlcG9zaXRvcnkgY2FuIGNvbnZlcnQgdGhlIGZvcmsgdG8gYSByZWd1bGFyIHJlcG9zaXRvcnkgaW4gdGhlICJEYW5nZXIgWm9uZSIgc2VjdGlvbiBvZiBSZXBvc2l0b3J5IHNldHRpbmdzLiBUaGlzIGlzc3VlIHdhcyBwYXJ0aWN1bGFybHkgcHJvYmxlbWF0aWMgb24gaW5zdGFuY2VzIHdoZXJlIHVzZXJzIGhhZCByZXBvc2l0b3J5IGNyZWF0aW9uIGxpbWl0cyAoLTEpIGFuZCB3b3VsZCBpbmFwcHJvcHJpYXRlbHkgdXNlIGZvcmtlZCBgLnByb2ZpbGVgIHJlcG9zaXRvcmllcyB0byBvYnRhaW4gcHJvZmlsZSBjdXN0b21pemF0aW9uLiA=-->fix!: Prevent forked `.profile` repositories from displaying profile content. When a user forked a repository named `.profile` without having created their own `.profile` repository, the content from the forked repository was unexpectedly displayed on their public profile page. This could lead to users' profiles displaying content they did not intentionally create for that purpose. Forked `.profile` repositories are now treated as standard repositories and do not populate the user's public profile page. Users who wish to use the content from a forked `.profile` repository can convert the fork to a regular repository in the "Danger Zone" section of Repository settings. This issue was particularly problematic on instances where users had repository creation limits (-1) and would inappropriately use forked `.profile` repositories to obtain profile customization.<!--description--> <!--end release-notes-assistant--> Co-authored-by: mfenniak <mfenniak@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9513 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Co-committed-by: Ryan Lerch <rlerch@redhat.com>	2025-10-07 18:53:57 +02:00
Renovate Bot	b71df03e35	Update dependency esbuild-loader to v4.4.0 (forgejo) (#9538 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9538 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-07 14:39:22 +02:00
thubrecht	6610eb1dbf	fix(ui): Don't use the subtle color for log text (#9507 ) This improves the contrast from the background, especially when ansi escape sequences are used in the logs. Co-authored-by: Tom Hubrecht <tom@hubrecht.ovh> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9507 Reviewed-by: patka <patka@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: thubrecht <thubrecht@noreply.codeberg.org> Co-committed-by: thubrecht <thubrecht@noreply.codeberg.org>	2025-10-06 16:34:14 +02:00
Renovate Bot	86dbec6b57	Update renovate to v41.135.5 (forgejo) (#9537 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [data.forgejo.org/renovate/renovate](https://renovatebot.com) ([source](https://github.com/renovatebot/renovate)) \| container \| minor \| `41.131.9` -> `41.135.5` \| \| [renovate](https://renovatebot.com) ([source](https://github.com/renovatebot/renovate)) \| \| minor \| `41.131.9` -> `41.135.5` \| --- ### Release Notes <details> <summary>renovatebot/renovate (data.forgejo.org/renovate/renovate)</summary> ### [`v41.135.5`](https://github.com/renovatebot/renovate/releases/tag/41.135.5) [Compare Source](https://github.com/renovatebot/renovate/compare/41.135.4...41.135.5) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.52.4 (main) ([#38383](https://github.com/renovatebot/renovate/issues/38383)) ([80ae9b5](`80ae9b5846`)) ##### Miscellaneous Chores - deps: update dependency lint-staged to v16.2.2 (main) ([#38379](https://github.com/renovatebot/renovate/issues/38379)) ([24f2d11](`24f2d112e4`)) - deps: update dependency lint-staged to v16.2.3 (main) ([#38382](https://github.com/renovatebot/renovate/issues/38382)) ([a43bb66](`a43bb66ff7`)) ### [`v41.135.4`](https://github.com/renovatebot/renovate/releases/tag/41.135.4) [Compare Source](https://github.com/renovatebot/renovate/compare/41.135.3...41.135.4) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.52.3 (main) ([#38377](https://github.com/renovatebot/renovate/issues/38377)) ([4789c55](`4789c5536d`)) ##### Miscellaneous Chores - deps: update dependency memfs to v4.47.0 (main) ([#38376](https://github.com/renovatebot/renovate/issues/38376)) ([4b81d2b](`4b81d2bfa7`)) ### [`v41.135.3`](https://github.com/renovatebot/renovate/releases/tag/41.135.3) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.5...41.135.3) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.52.2 (main) ([#38370](https://github.com/renovatebot/renovate/issues/38370)) ([c8bd276](`c8bd2768d3`)) ##### Documentation - change `yes` to `no` for dependabot dashboard in comparison ([#38197](https://github.com/renovatebot/renovate/issues/38197)) ([ba31dc1](`ba31dc1ebe`)) - mend-hosted: clarify the API ([#38318](https://github.com/renovatebot/renovate/issues/38318)) ([2029695](`202969590d`)), closes [#38315](https://github.com/renovatebot/renovate/issues/38315) - remove encrypted secrets deprecation announcement ([#38316](https://github.com/renovatebot/renovate/issues/38316)) ([c3cd184](`c3cd1846fa`)) ##### Miscellaneous Chores - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.14.9 (main) ([#38369](https://github.com/renovatebot/renovate/issues/38369)) ([f1633b0](`f1633b0f26`)) ### [`v41.132.5`](https://github.com/renovatebot/renovate/releases/tag/41.132.5) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.4...41.132.5) ##### Bug Fixes - deps: update dependency mkdocs-material to v9.6.21 (main) ([#38301](https://github.com/renovatebot/renovate/issues/38301)) ([fe308e7](`fe308e77c3`)) ##### Miscellaneous Chores - deps: update dependency tar to v7.5.0 (main) ([#38295](https://github.com/renovatebot/renovate/issues/38295)) ([5da6c91](`5da6c913f2`)) - deps: update dependency tar to v7.5.1 (main) ([#38297](https://github.com/renovatebot/renovate/issues/38297)) ([17c700c](`17c700c808`)) ### [`v41.132.4`](https://github.com/renovatebot/renovate/releases/tag/41.132.4) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.3...41.132.4) ##### Bug Fixes - github-actions: uses-with action versions for ruby, deno, bun) ([#38294](https://github.com/renovatebot/renovate/issues/38294)) ([804f9ae](`804f9aefcc`)) ### [`v41.132.3`](https://github.com/renovatebot/renovate/releases/tag/41.132.3) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.2...41.132.3) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.51.2 (main) ([#38292](https://github.com/renovatebot/renovate/issues/38292)) ([8489251](`8489251c5c`)) ### [`v41.132.2`](https://github.com/renovatebot/renovate/releases/tag/41.132.2) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.1...41.132.2) ##### Build System - deps: update dependency better-sqlite3 to v12.4.1 (main) ([#38289](https://github.com/renovatebot/renovate/issues/38289)) ([07e86d7](`07e86d757f`)) ### [`v41.132.1`](https://github.com/renovatebot/renovate/releases/tag/41.132.1) [Compare Source](https://github.com/renovatebot/renovate/compare/41.132.0...41.132.1) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.51.1 (main) ([#38287](https://github.com/renovatebot/renovate/issues/38287)) ([9dbfaf0](`9dbfaf068a`)) ### [`v41.132.0`](https://github.com/renovatebot/renovate/releases/tag/41.132.0) [Compare Source](https://github.com/renovatebot/renovate/compare/41.131.12...41.132.0) ##### Features - deps: update ghcr.io/renovatebot/base-image docker tag to v10.51.0 (main) ([#38286](https://github.com/renovatebot/renovate/issues/38286)) ([447a2db](`447a2dbf81`)) ##### Miscellaneous Chores - deps: update dependency pnpm to v10.17.1 (main) ([#38283](https://github.com/renovatebot/renovate/issues/38283)) ([351a7da](`351a7da443`)) - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.14.4 (main) ([#38285](https://github.com/renovatebot/renovate/issues/38285)) ([c2c15b0](`c2c15b0db0`)) ### [`v41.131.12`](https://github.com/renovatebot/renovate/releases/tag/41.131.12) [Compare Source](https://github.com/renovatebot/renovate/compare/41.131.11...41.131.12) ##### Build System - deps: update dependency nanoid to v5.1.6 (main) ([#38281](https://github.com/renovatebot/renovate/issues/38281)) ([1d358a1](`1d358a1516`)) ### [`v41.131.11`](https://github.com/renovatebot/renovate/releases/tag/41.131.11) [Compare Source](https://github.com/renovatebot/renovate/compare/41.131.10...41.131.11) ##### Bug Fixes - deps: update ghcr.io/renovatebot/base-image docker tag to v10.50.3 (main) ([#38279](https://github.com/renovatebot/renovate/issues/38279)) ([c5b5d6f](`c5b5d6fa30`)) ### [`v41.131.10`](https://github.com/renovatebot/renovate/releases/tag/41.131.10) [Compare Source](https://github.com/renovatebot/renovate/compare/41.131.9...41.131.10) ##### Documentation - update references to renovate/renovate (main) ([#38268](https://github.com/renovatebot/renovate/issues/38268)) ([30ff725](`30ff7252d0`)) ##### Miscellaneous Chores - deps: lock file maintenance (main) ([#38269](https://github.com/renovatebot/renovate/issues/38269)) ([3de37e6](`3de37e65e4`)) - deps: update containerbase/internal-tools action to v3.13.10 (main) ([#38272](https://github.com/renovatebot/renovate/issues/38272)) ([a07089a](`a07089a057`)) - deps: update containerbase/internal-tools action to v3.13.9 (main) ([#38270](https://github.com/renovatebot/renovate/issues/38270)) ([3629662](`3629662b9e`)) - deps: update dependency [@containerbase/eslint-plugin](https://github.com/containerbase/eslint-plugin) to v1.1.12 (main) ([#38271](https://github.com/renovatebot/renovate/issues/38271)) ([d57ffc4](`d57ffc4df6`)) - deps: update dependency lint-staged to v16.2.0 (main) ([#38276](https://github.com/renovatebot/renovate/issues/38276)) ([80265fb](`80265fb9d6`)) - deps: update dependency renovatebot/github-action to v43.0.14 (main) ([#38274](https://github.com/renovatebot/renovate/issues/38274)) ([8a2c174](`8a2c174aae`)) - deps: update dependency tar to v7.4.4 (main) ([#38273](https://github.com/renovatebot/renovate/issues/38273)) ([b95e136](`b95e136321`)) - deps: update dependency vite to v7.1.7 (main) ([#38275](https://github.com/renovatebot/renovate/issues/38275)) ([328b561](`328b5610a7`)) - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.14.3 (main) ([#38277](https://github.com/renovatebot/renovate/issues/38277)) ([95e6584](`95e6584789`)) ##### Build System - deps: update dependency better-sqlite3 to v12.3.0 (main) ([#38278](https://github.com/renovatebot/renovate/issues/38278)) ([657b7be](`657b7be250`)) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Enabled. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJmb3JnZWpvL2NpIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9537 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-06 06:33:06 +02:00
Renovate Bot	643cd4fa6e	Lock file maintenance (forgejo) (#9539 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9539 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-06 06:31:11 +02:00
Robert Wolff	aa9006bca0	fix(ui): reworked file preview placement towards better HTML validity, take 2 (#9534 ) Closes: forgejo/forgejo#9472. Followup of: forgejo/forgejo#9181 Examples with render panic on code.forgejo.org: - https://code.forgejo.org/forgejo/runner/issues/485#issue-6254 - https://code.forgejo.org/forgejo-helm/forgejo-helm/issues/705#issuecomment-37753 ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9534 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-10-06 05:35:26 +02:00
0ko	abd69183ea	feat(ui): responsive, JS-free repo language stats panel (#9532 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6700 & https://codeberg.org/forgejo/forgejo/pulls/9429 ## Testing Test coverage is already present in `tests/e2e/repo-home.test.e2e.ts` - there are no changes in behavior, so just selectors were updated. ## Changes * Re-make stats using details+summary: it now works without JS, works immediately after page is displayed, responds to clicking more quickly * Make the clickable bar taller on coarse screens * Fix broken overflowing on narrow screens Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9532 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-10-05 20:36:35 +02:00
Earl Warren	fcf2b0a187	chore(release-notes): add chroma updates for v13, v12, v10, v8 (#9533 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9533 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-05 16:27:15 +02:00
Earl Warren	068e318629	feat: Actions jobs that can't be understood display a technical error in the UI, not just server-side logs (#9530 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9530 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-05 16:09:07 +02:00
0ko	f8d25228ce	chore(release-notes): add chroma update to v13.0.0 release notes	2025-10-05 17:50:35 +05:00
0ko	fd08eba8d2	chore(release-notes): add chroma update to v12.0.0 release notes There were no chroma updates in v11.	2025-10-05 17:43:06 +05:00
0ko	f2570811a4	chore(release-notes): add chroma update to v10.0.0 release notes	2025-10-05 17:24:51 +05:00
0ko	1e113fd8dc	chore(release-notes): fix release notes of chroma update in v8.0.0	2025-10-05 17:10:38 +05:00
Mathieu Fenniak	0a02ffd355	feat(email): reference the commit closing the issue (#9522 ) Preview-on: https://codeberg.org/attachments/0016d106-0353-43d2-953e-4f2ae1a0d166 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9522 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-05 05:56:45 +02:00
0ko	9a29241cde	feat(ui): implement new buttons for better cohesiveness (#9359 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9317#issuecomment-7214470. Summary of changes: - implement new CSS for buttons that doesn't have problems Fomantic buttons have: - button height doesn't depend on it's content - `min-height:` is used instead of `padding-{top,bottom}:` - no margins to fit right in with the other elements while relying on `display:flex` and `flex-gap:` - other `.button` changes compared to `.ui.button`: - no semi-bold black text for now, I think it looks just as fine with normal weight - no variable `font-size` - should give better readability compared to existing `.small` and `.tiny` buttons - variable height depending on specified size (currently normal or `.small`) and on `@media (pointer: )` - apply the new buttons to areas where there are switches or dropdown openers near them Before: - https://codeberg.org/forgejo/forgejo/attachments/8d9a3941-8889-4420-8f4f-f44cb8c3726f - https://codeberg.org/forgejo/forgejo/attachments/e5804fae-a71f-43ba-918b-20d4f742124c - https://codeberg.org/forgejo/forgejo/attachments/65d4e31c-01b7-4050-89a1-4afe74aa574c - https://codeberg.org/forgejo/forgejo/attachments/c8057262-a834-4b61-a87f-70dab60b5506 - https://codeberg.org/forgejo/forgejo/attachments/aa9508e3-dca1-4ffe-913e-9cbddbb0d6ff - https://codeberg.org/forgejo/forgejo/attachments/4b2daa07-e0ca-4b44-8795-1609dff8968f - https://codeberg.org/forgejo/forgejo/attachments/93f7803f-1338-44dc-a428-e44e26231517 After: - https://codeberg.org/forgejo/forgejo/attachments/ca5426c4-d75e-493d-8b29-64eee1e1c9de - https://codeberg.org/forgejo/forgejo/attachments/f21c7219-6880-4a2e-9117-6267d46b3081 - https://codeberg.org/forgejo/forgejo/attachments/da3ee771-b5d5-4b4f-8c88-9a8de11b1a45 - https://codeberg.org/forgejo/forgejo/attachments/56f974c3-f72e-4f80-9bbd-5bc785a4a624 - https://codeberg.org/forgejo/forgejo/attachments/17f6e360-dfe5-4bb6-a6b5-dd747dbc2af8 - https://codeberg.org/forgejo/forgejo/attachments/91cd10e1-6c5e-4134-be4c-18223ed2a4f4 - https://codeberg.org/forgejo/forgejo/attachments/f0322c5c-ee9d-4889-9840-0c46838566cc - https://codeberg.org/forgejo/forgejo/attachments/96560fe7-3436-46dc-8456-c43bfaee2daf - https://codeberg.org/forgejo/forgejo/attachments/273cf795-6bb4-479f-804f-f40010fae825 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9359 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-10-05 05:22:32 +02:00
Mathieu Fenniak	02ea77c6a0	display pre-execution errors in action view UI	2025-10-04 19:56:38 -06:00
Mathieu Fenniak	25ba696b6a	don't execute workflows when event parsing fails; create a pre-execution error instead	2025-10-04 18:47:57 -06:00
Mathieu Fenniak	152b98da90	save pre-execution errors to the DB when workflow execution is prevented by user data	2025-10-04 18:47:51 -06:00
Renovate Bot	877d4ae833	Update dependency katex to v0.16.23 (forgejo) (#9523 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9523 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-04 23:29:58 +02:00
Mathieu Fenniak	c434b963b4	feat: implement "concurrency" block in Forgejo Actions at the workflow level (#9434 ) Currently references a pre-release version of `code.forgejo.org/forgejo/runner/v11`, pending release of https://code.forgejo.org/forgejo/runner/pulls/1026. Fixes #5914. This PR is quite large, but it can be reviewed commit-by-commit in relatively small, logical chunks. Adds support for workflows with a `concurrency` block, and submembers `group` and `cancel-in-progress`. For example: ``` on: workflow_dispatch: jobs: rust-checks: runs-on: debian-latest steps: - run: sleep 300 concurrency: group: ${{ github.workflow }}-${{ github.ref }} cancel-in-progress: false ``` The concurrency block effectively ends up with four supported behaviors that users will want to choose from: - Backwards compatibility / default -- if omitted completely, the existing Forgejo behavior will be implemented. That behavior is that push and pull request synchronize events will cancel all previous runs on the same repository, branch, and workflow. - Unlimited concurrency -- if the `cancel-in-progress` value is set to `false` and no `group` is provided, then the previously described Forgejo behavior will be disabled and an unlimited number of workflows can be executed simultaneously (to the maximum supported by the Forgejo Runner capacity). - Queue-behind -- if a `group` is provided and `cancel-in-progress: false` is set, then every new action run with in the same repository with the same group value will be queued behind previous workflow runs, allowing only one workflow to execute at a time in the group, but allowing all workflows to finish naturally. - Cancel-in-progress -- if a `group` is provided and `cancel-in-progress: true` is set, then every new action run with in the same repository with the same group value will cause previously queued or running runs to be cancelled, allowing only one workflow to execute at a time in the group, but preferring execution of the most recent workflow. Both the `group` and `cancel-in-progress` values can access values from the `github`, `inputs` and `vars` context for dynamic behavior. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - https://codeberg.org/forgejo/docs/pulls/1513 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9434): <!--number 9434 --><!--line 0 --><!--description aW1wbGVtZW50ICJjb25jdXJyZW5jeSIgYmxvY2sgaW4gRm9yZ2VqbyBBY3Rpb25zIGF0IHRoZSB3b3JrZmxvdyBsZXZlbA==-->implement "concurrency" block in Forgejo Actions at the workflow level<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9434 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-03 18:43:02 +02:00
Earl Warren	0cf3030d7b	chore: add unit test for `SearchPointerBlobs` (#9519 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9519 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-10-03 15:14:40 +02:00
Gusted	112ad8d1da	chore: add unit test for `SearchPointerBlobs`	2025-10-03 14:37:24 +02:00
Otto Richter	f87b76160e	e2e: Selective screenshots (#9499 ) * Add some test that only snapshot relevant content * Allow adding marging around the element in case the environment is relevant (e.g. the location of an element relative to the parent, but excluding the environment of the parent) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9499 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-committed-by: Otto Richter <git@otto.splvs.net>	2025-10-03 13:45:08 +02:00
Renovate Bot	cb7d2057ce	Update module google.golang.org/protobuf to v1.36.10 (forgejo) (#9510 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) \| `v1.36.9` -> `v1.36.10` \| [![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fprotobuf/v1.36.10?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fprotobuf/v1.36.9/v1.36.10?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>protocolbuffers/protobuf-go (google.golang.org/protobuf)</summary> ### [`v1.36.10`](https://github.com/protocolbuffers/protobuf-go/releases/tag/v1.36.10) [Compare Source](https://github.com/protocolbuffers/protobuf-go/compare/v1.36.9...v1.36.10) Full Changelog: <https://github.com/protocolbuffers/protobuf-go/compare/v1.36.9...v1.36.10> Bug fixes: [CL/704415](https://go-review.googlesource.com/c/protobuf/+/704415): reflect/protodesc: edition-2024-specific properties should not be lost when converting FileDescriptorProto to protoreflect.FileDescriptor Maintenance: [CL/708555](https://go-review.googlesource.com/c/protobuf/+/708555): internal/race\_test: add missing impl.LazyEnabled() t.Skip [CL/703295](https://go-review.googlesource.com/c/protobuf/+/703295): proto: add more invalid group encoding test cases [CL/703276](https://go-review.googlesource.com/c/protobuf/+/703276): internal/impl: verify lazy unmarshal on Deterministic encoding [CL/703275](https://go-review.googlesource.com/c/protobuf/+/703275): internal/impl: stop using deprecated .Field in lazy\_test.go [CL/702795](https://go-review.googlesource.com/c/protobuf/+/702795): all: update to latest github.com/google/go-cmp </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9510 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-03 09:02:14 +02:00
Gusted	8c6f572615	chore: add LFS test repo 3 commits, with LFS pointers.	2025-10-03 08:27:32 +02:00
Gusted	8bd5169c5f	fix: allow unactivated users to send recovery mails (#9504 ) With forgejo/forgejo#9075 the `GetUserByEmail` now actually only used activated emails. This however broke sending recovery mails to unactivated users, as their email are not yet activated. Use the newly introduced function `GetUserByEmailSimple` to not care about this activated email requirement and also avoid the no-reply address being a valid email address for this functionality. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9504 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-03 07:16:24 +02:00
David Rotermund	957a76df3b	feat: Drag and drop nested directories (#6687 ) Adds the ability for the drag and drop file upload to handle subdirectories. You drag and drop and it preserves your sub-folder substructure. Nothing more, nothing less. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/6687): <!--number 6687 --><!--line 0 --><!--description RHJhZyBhbmQgZHJvcCBuZXN0ZWQgZGlyZWN0b3JpZXM=-->Drag and drop nested directories<!--description--> <!--end release-notes-assistant--> Co-authored-by: David Rotermund <davrot@neuro.uni-bremen.de> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-authored-by: Beowulf <beowulf@beocode.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6687 Reviewed-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: David Rotermund <davrot@noreply.codeberg.org> Co-committed-by: David Rotermund <davrot@noreply.codeberg.org>	2025-10-03 00:16:40 +02:00
Ryan Lerch	32c187e5bb	fix(ui): improve Pagure migrator private issues clarity (#9502 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8513 More at https://codeberg.org/fedora/forgejo-deployment/issues/186 Related: https://codeberg.org/forgejo/forgejo/pulls/8513#issuecomment-6075304, https://codeberg.org/forgejo/forgejo/pulls/8513/files#issuecomment-6075322 Previously, users were getting confused about the token/private issues behavior in the Pagure migrator, as the UI didn't clearly explain the two-repository workflow or the security implications of using an API token. This commit updates the Pagure migration template to make the behavior clearer by: - Adding a collapsible details section for private issues functionality to reduce UI clutter since this feature is not expected to be used frequently - Replacing inline help text with proper Fomantic UI message boxes (blue info for description, red warning for security notice) - Providing clear explanations of the two-step migration process (public content first, then private issues archive) - Adding prominent security warnings about repository visibility when importing private content The private issues section is now hidden by default in a collapsible element, making the standard migration flow cleaner while still providing access to advanced functionality when needed. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9502 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Co-committed-by: Ryan Lerch <rlerch@redhat.com>	2025-10-02 15:40:19 +02:00
Renovate Bot	25233f8aad	Lock file maintenance (forgejo) (#9460 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9460 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-02 15:34:08 +02:00
Renovate Bot	c37ccaeff1	Update dependency typescript to v5.9.3 (forgejo) (#9505 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9505 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-02 10:41:19 +02:00
Renovate Bot	ac6555f3fd	Update dependency webpack to v5.102.0 (forgejo) (#9477 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9477 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-02 08:44:12 +02:00
Renovate Bot	cbf13d73d4	Update dependency tailwindcss to v3.4.18 (forgejo) (#9500 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9500 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-02 03:13:16 +02:00
Renovate Bot	5c9211f381	Update dependency @vitest/eslint-plugin to v1.3.13 (forgejo) (#9491 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-01 23:50:37 +02:00
Renovate Bot	d24ee72e42	Update dependency @playwright/test to v1.55.1 (forgejo) (#9488 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-01 23:48:49 +02:00
Gusted	8db9870295	chore: add npm version constraint to renovate (#9496 ) Renovate uses the latest npm version, however this is now causing a issue where the latest npm version is diverging from the npm version packaged with node v22 (version the CI uses) in terms of what the `package-lock.json` should contain (!9477) (some `"peer": true` lines). Constrain renovate to use npm v10 to avoid this mismatch issue. Thank you @viceice for helping with this patch. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9496 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-10-01 17:29:56 +02:00
Earl Warren	8435a8eb16	chore: remove not working PREFERRED_TIMESTAMP_TENSE setting (#9490 ) It was only partially implemented about two years ago and never completed. Resolves forgejo/forgejo#8938 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9490 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-10-01 15:16:01 +02:00
zokki	bfee082c01	fix(ui): make "Token name"-input a real required-field (#8877 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Before: ![image](/attachments/f957bab5-7a8f-4642-8528-6b82f38dd329) After: ![image](/attachments/80620a95-3828-479a-8ae3-61e34e0d8c40) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8877 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-10-01 12:07:30 +02:00
Renovate Bot	ec172f2d0e	Update github.com/google/pprof digest to 9e5a51a (forgejo) (#9487 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/google/pprof](https://github.com/google/pprof) \| require \| digest \| `6e76a2b` -> `9e5a51a` \| --- ### Configuration 📅 Schedule: Branch creation - On day 1 of the month, every 3 months ( * * 1 /3 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9487 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-01 10:06:50 +02:00
Jordan Atwood	796f129b8d	fix(ui): improve markdown editor indentation counting (#9403 ) Previously, the markdown editor would count instances of indentation text (ie. 4 spaces, tabs, and "> ") from anywhere in the line, rather than only counting those at the start of the line, so attempting to indent a line of text containing those strings in other locations could fail when it ought to be indented. This commit replaces the previous regex implementation with a function to count indents at the start of the line instead. Fixes #9339 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9403): <!--number 9403 --><!--line 0 --><!--description Zml4KHVpKTogaW1wcm92ZSBtYXJrZG93biBlZGl0b3IgaW5kZW50YXRpb24gY291bnRpbmc=-->fix(ui): improve markdown editor indentation counting<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9403 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Jordan Atwood <nightfirecat@nightfirec.at> Co-committed-by: Jordan Atwood <nightfirecat@nightfirec.at>	2025-10-01 10:03:32 +02:00
anthony-unicare	10e976699a	fix: replace "Gitea" with "Forgejo" in button label (#9494 ) The button label was "View in Gitea". This commit changes it to "View in Forgejo". ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9494 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: anthony-unicare <anthony-unicare@noreply.codeberg.org> Co-committed-by: anthony-unicare <anthony-unicare@noreply.codeberg.org>	2025-10-01 09:56:25 +02:00
Mubelotix	7b1ed4d723	fix: replace the plus sign to confirm a new due date on issues with a check mark (#9486 ) Closes #7428 A previous PR (#7464) was closed because of lack of response from its author but it was already RFR This PR is the same except I will answer Before: ![Screenshot from 2025-09-30 23-07-30](/attachments/66ed0ce2-7981-49b2-a6f0-ddd5be58f4b6) After: ![Screenshot from 2025-09-30 23-07-52](/attachments/ca68403a-a3a8-416d-ae61-953d2daad066) ## Testing - Open an issue - Change the due date - Click on the check mark to validate the change ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9486 Co-authored-by: Mubelotix <mubelotix@gmail.com> Co-committed-by: Mubelotix <mubelotix@gmail.com>	2025-10-01 09:50:43 +02:00
Renovate Bot	e4779f32c5	Update module code.forgejo.org/f3/gof3/v3 to v3.11.1 (forgejo) (#9492 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/f3/gof3/v3](https://code.forgejo.org/f3/gof3) \| `v3.11.0` -> `v3.11.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2ff3%2fgof3%2fv3/v3.11.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2ff3%2fgof3%2fv3/v3.11.0/v3.11.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>f3/gof3 (code.forgejo.org/f3/gof3/v3)</summary> ### [`v3.11.1`](https://code.forgejo.org/f3/gof3/releases/tag/v3.11.1) [Compare Source](https://code.forgejo.org/f3/gof3/compare/v3.11.0...v3.11.1) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/f3/gof3--> - features - [PR](https://code.forgejo.org/f3/gof3/pulls/204): <!--number 204 --><!--line 0 --><!--description ZmVhdDogZ2VuZXJpYzogTG9va3VwTWFwcGVkSUQgaXMgcHJvdmlkZWQgZjMuSW50ZXJmYWNlIGluc3RlYWQgb2YgaWQ=-->feat: generic: LookupMappedID is provided f3.Interface instead of id<!--description--> - bug fixes - [PR](https://code.forgejo.org/f3/gof3/pulls/234): <!--number 234 --><!--line 0 --><!--description Zml4OiBleHByZXNzaW9ucyBpbiB3b3JrZmxvd3MgaGF2ZSBzdHJpbmdzIGluIHNpbmdsZSBxdW90ZXM=-->fix: expressions in workflows have strings in single quotes<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/205): <!--number 205 --><!--line 0 --><!--description Zml4KGNvc21ldGljKTogL3ssZm9yZ2V9Ly4uLiBzaG91bGQgYmUgL2ZvcmdlLy4uLg==-->fix(cosmetic): /{,forge}/... should be /forge/...<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/202): <!--number 202 --><!--line 0 --><!--description Zml4OiBmb3JnZWpvOiBhdHRhY2htZW50cyBhcmUgbm90IGFsd2F5cyBwdWJsaWM=-->fix: forgejo: attachments are not always public<!--description--> - other - [PR](https://code.forgejo.org/f3/gof3/pulls/253): <!--number 253 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnby51YmVyLm9yZy9tb2NrL21vY2tnZW4gdG8gdjAuNi4w-->Update module go.uber.org/mock/mockgen to v0.6.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/257): <!--number 257 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNw==-->Update dependency go to v1.24.7<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/256): <!--number 256 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9nb2Z1bXB0IHRvIHYwLjkuMQ==-->Update module mvdan.cc/gofumpt to v0.9.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/255): <!--number 255 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL3NldHVwLWZvcmdlam8gZGlnZXN0IHRvIGQzMDdkYjE=-->Update tests/setup-forgejo digest to [`d307db1`](`d307db1`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/252): <!--number 252 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xNDMuMg==-->Update module gitlab.com/gitlab-org/api/client-go to v0.143.2<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/251): <!--number 251 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDliMTdmNTE=-->Update tests/end-to-end digest to [`9b17f51`](`9b17f51`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/243): <!--number 243 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2VkaXRvcmNvbmZpZy1jaGVja2VyL2VkaXRvcmNvbmZpZy1jaGVja2VyL3YzL2NtZC9lZGl0b3Jjb25maWctY2hlY2tlciB0byB2My40LjA=-->Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.4.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/249): <!--number 249 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDY0NTU4OTY=-->Update tests/end-to-end digest to [`6455896`](`6455896`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/250): <!--number 250 --><!--line 0 --><!--description VXBkYXRlIGdpdGxhYi9naXRsYWItY2UgRG9ja2VyIHRhZyB0byB2MTcuMTEuNy1jZS4w-->Update gitlab/gitlab-ce Docker tag to v17.11.7-ce.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/248): <!--number 248 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL3NldHVwLWZvcmdlam8gZGlnZXN0IHRvIGJjYmFkY2U=-->Update tests/setup-forgejo digest to [`bcbadce`](`bcbadce`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/247): <!--number 247 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xMzkuMg==-->Update module gitlab.com/gitlab-org/api/client-go to v0.139.2<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/246): <!--number 246 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuNC4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.4.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/245): <!--number 245 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xMzguMA==-->Update module gitlab.com/gitlab-org/api/client-go to v0.138.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/244): <!--number 244 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDIwZjE3MGQ=-->Update tests/end-to-end digest to [`20f170d`](`20f170d`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/237): <!--number 237 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMy4x-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/242): <!--number 242 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3VyZmF2ZS9jbGkvdjMgdG8gdjMuNC4x-->Update module github.com/urfave/cli/v3 to v3.4.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/241): <!--number 241 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM2LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.36.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/240): <!--number 240 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvY3J5cHRvIHRvIHYwLjQxLjA=-->Update module golang.org/x/crypto to v0.41.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/239): <!--number 239 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNg==-->Update dependency go to v1.24.6<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/238): <!--number 238 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4y-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.7.2<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/236): <!--number 236 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4x-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.7.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/235): <!--number 235 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgU3BlY3RvTGFicy9ob3ZlcmZseSB0byB2MS4xMS4z-->Update dependency SpectoLabs/hoverfly to v1.11.3<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/229): <!--number 229 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvY3J5cHRvIHRvIHYwLjQwLjA=-->Update module golang.org/x/crypto to v0.40.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/233): <!--number 233 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4w-->Update <https://data.forgejo.org/actions/forgejo-release> action to v2.7.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/227): <!--number 227 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNQ==-->Update dependency go to v1.24.5<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/232): <!--number 232 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMy4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/228): <!--number 228 --><!--line 0 --><!--description VXBkYXRlIGdpdGxhYi9naXRsYWItY2UgRG9ja2VyIHRhZyB0byB2MTcuMTEuNi1jZS4w-->Update gitlab/gitlab-ce Docker tag to v17.11.6-ce.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/226): <!--number 226 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDQ3ZjUwZDM=-->Update tests/end-to-end digest to [`47f50d3`](`47f50d3`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/225): <!--number 225 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL3NldHVwLWZvcmdlam8gZGlnZXN0IHRvIDIwMjZjNTk=-->Update tests/setup-forgejo digest to [`2026c59`](`2026c59`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/224): <!--number 224 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xMzcuMA==-->Update module gitlab.com/gitlab-org/api/client-go to v0.137.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/231): <!--number 231 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM1LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.35.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/230): <!--number 230 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMi4y-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.2<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/221): <!--number 221 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDA3YjkzMTg=-->Update tests/end-to-end digest to [`07b9318`](`07b9318`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/223): <!--number 223 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xMzEuMA==-->Update module gitlab.com/gitlab-org/api/client-go to v0.131.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/222): <!--number 222 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL3NldHVwLWZvcmdlam8gZGlnZXN0IHRvIDhhOGQ5NDQ=-->Update tests/setup-forgejo digest to [`8a8d944`](`8a8d944`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/220): <!--number 220 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMi4x-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/218): <!--number 218 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIGQwNTc3MTE=-->Update tests/end-to-end digest to [`d057711`](`d057711`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/219): <!--number 219 --><!--line 0 --><!--description VXBkYXRlIGdpdGxhYi9naXRsYWItY2UgRG9ja2VyIHRhZyB0byB2MTcuMTEuNS1jZS4w-->Update gitlab/gitlab-ce Docker tag to v17.11.5-ce.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/217): <!--number 217 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDFiOWYxYWY=-->Update tests/end-to-end digest to [`1b9f1af`](`1b9f1af`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/216): <!--number 216 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgU3BlY3RvTGFicy9ob3ZlcmZseSB0byB2MS4xMS4y-->Update dependency SpectoLabs/hoverfly to v1.11.2<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/215): <!--number 215 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3VyZmF2ZS9jbGkvdjMgdG8gdjMuMy44-->Update module github.com/urfave/cli/v3 to v3.3.8<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/213): <!--number 213 --><!--line 0 --><!--description VXBkYXRlIGdpdGxhYi9naXRsYWItY2UgRG9ja2VyIHRhZyB0byB2MTcuMTEuNC1jZS4w-->Update gitlab/gitlab-ce Docker tag to v17.11.4-ce.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/214): <!--number 214 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRsYWIuY29tL2dpdGxhYi1vcmcvYXBpL2NsaWVudC1nbyB0byB2MC4xMzAuMQ==-->Update module gitlab.com/gitlab-org/api/client-go to v0.130.1<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/211): <!--number 211 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIDI0ZjAyMTA=-->Update tests/end-to-end digest to [`24f0210`](`24f0210`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/212): <!--number 212 --><!--line 0 --><!--description VXBkYXRlIGdpdGVhL2dpdGVhIERvY2tlciB0YWcgdG8gdjEuMjQ=-->Update gitea/gitea Docker tag to v1.24<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/210): <!--number 210 --><!--line 0 --><!--description VXBkYXRlIHRlc3RzL2VuZC10by1lbmQgZGlnZXN0IHRvIGFhYjQ3NmI=-->Update tests/end-to-end digest to [`aab476b`](`aab476b`)<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/209): <!--number 209 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM0LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.34.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/208): <!--number 208 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvY3J5cHRvIHRvIHYwLjM5LjA=-->Update module golang.org/x/crypto to v0.39.0<!--description--> - [PR](https://code.forgejo.org/f3/gof3/pulls/207): <!--number 207 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNA==-->Update dependency go to v1.24.4<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - On day 1 of the month, every 3 months ( * * 1 /3 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzEuOSIsInVwZGF0ZWRJblZlciI6IjQxLjEzMS45IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9492 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-10-01 05:02:30 +02:00
Lucas Schwiderski	7530e8a941	feat(ui): improve rendering commit links for PR commits, external repos and diffs (#9146 ) - fix links to PR commits, e.g. `!7979 (commit `4d968c08e0`)` - show the repo slug for links other than the current repository, e.g. `forgejo/docs@498bd80133` - truncate long `diff-...` fragments, e.g. ``600be26638` (diff-953bb4f01)` - show `files` query values for compare links, e.g. `8bbac4c679...e2278e5a38 (options/locale/locale_fi-FI.ini)` Closes: #7980 Closes: #9130 Closes: #8023 Ref: #5901 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9146): <!--number 9146 --><!--line 0 --><!--description ZmVhdCh1aSk6IGltcHJvdmUgcmVuZGVyaW5nIGNvbW1pdCBsaW5rcyBmb3IgUFIgY29tbWl0cywgZXh0ZXJuYWwgcmVwb3MgYW5kIGRpZmZz-->feat(ui): improve rendering commit links for PR commits, external repos and diffs<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9146 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-10-01 05:00:41 +02:00
Antonin Delpeuch	6d1818ffdb	feat: allow PRs between common forks of the same base repository (#9045 ) Fixes #6185. ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. I also tested the changes manually. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9045 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-10-01 04:58:12 +02:00
Matej Focko	0145621e8d	docs: add back warning as a commit status (#8935 ) `warning` has been originally removed, but it caused issues with the CIs and therefore the removal has been reverted. However the docs have not been properly updated, the warning option is supported on the backend, but it's not mentioned anywhere in the generated docs / API. (Removal and revert has been propagated from the Gitea) Fixes #8934 Signed-off-by: Matej Focko <me@mfocko.xyz> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8935 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Matej Focko <me@mfocko.xyz> Co-committed-by: Matej Focko <me@mfocko.xyz>	2025-10-01 04:52:16 +02:00
Beowulf	1cd0c5e99b	fix: prevent page jumps due to textarea auto resizing (#7569 ) The change prevents unnecessary resizing of the text field. ## Testing - Compose some text e.g. in an issue - Enter a lot of lines, until the compose field is as big as possible - Move the screen up, the top of the compose field should leave the screen, but the last e.g. 5 lines should still be visible on the screen - Append some text - Make sure the textfield just gets bigger, but doesn't jump to the bottom of the page Fixes #7522 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7569 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-10-01 03:47:19 +02:00
Mathieu Fenniak	dcd431b0d4	fix: ensure deleted Debian package does not remain referenced in the apt repository files (#9386 ) Introduces a new `Notifier` which listens for `PackageDelete` events and triggers a rebuild of the `Packages` & `Release` files which are stored in the debian package repository. Fixes #9369. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9386 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-01 03:11:03 +02:00
Daniel Sy	7939521a10	feat: add support for ephemeral runners compatible with autoscaling tools (#9409 ) PR for #9407 Endpoints compliant with github api spec: https://docs.github.com/en/rest/actions/self-hosted-runners?apiVersion=2022-11-28 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Manuel Ganter <manuel.ganter@think-ahead.tech> Co-authored-by: Martin McCaffery <martin.mccaffery@think-ahead.tech> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9409 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Daniel Sy <Daniel.Sy@telekom.de> Co-committed-by: Daniel Sy <Daniel.Sy@telekom.de>	2025-10-01 00:38:35 +02:00
Mathieu Fenniak	187ad99f3c	feat: add foreign keys to stopwatch & tracked_time tables (#9373 ) Adds four foreign keys: - stopwatch -- issue_id -> issue, user_id -> user - tracked_time -- issue_id -> issue, user_id -> user The majority of work encompassed in this PR is updating testing and support infrastructure to support foreign keys: - `models/db/foreign_keys.go` adds new capabilities to sort registered tables into the right insertion order to avoid violating foreign keys - `RecreateTables`, used by migration testing and the `doctor recreate-table` CLI, has been updated to support tables with foreign keys; new restrictions require that FK-related tables be rebuilt at the same time - test fixture data is inserted in foreign-key order, and deleted in the reverse An upgrade to xorm v1.3.9-forgejo.2 is incorporated in this PR, as two unexpected behaviors in the foreign key schema management were discovered during development of the updated `RecreateTables` routine. Work in this PR is laid out to be reviewed easier commit-by-commit. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9373 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-10-01 00:31:38 +02:00
Earl Warren	ee4f9b02f9	chore: release-notes-assistant: there may be three supported releases (#9480 ) After a release branch is cut and before it is released, there are three supported releases. For instance: - v11.0 LTS - v12.0 not yet EOL - v13.0 not yet released ## Testing ```sh time ../release-notes-assistant/release-notes-assistant --verbose --workdir /tmp/rna-milestone-11 --config .release-notes-assistant.yaml --forgejo-url https://codeberg.org --repository forgejo/forgejo --storage-location /tmp/rna-v11.txt --token $RNA_TOKEN release v11.0.7 ``` <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9468) ([backported](https://codeberg.org/forgejo/forgejo/pulls/9469)): <!--number 9469 --><!--line 0 --><!--description Zml4OiBwYWNrYWdlIGNsZWFuZWQgcnVsZSBmYWlscyBpZiB0aGUga2VlcCBjb3VudCBpcyB0b28gaGlnaA==-->fix: package cleaned rule fails if the keep count is too high<!--description--> - Included for completeness but not user-facing (chores, etc.) - [PR](https://codeberg.org/forgejo/forgejo/pulls/9417) ([backported](https://codeberg.org/forgejo/forgejo/pulls/9418)): <!--number 9418 --><!--line 0 --><!--description Zml4OiB1cGdyYWRlIHRvIHRoZSBsZGFwIHZlcnNpb24gdXNlZCBmb3IgdGVzdGluZyB0byAyLjU=-->fix: upgrade to the ldap version used for testing to 2.5<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9480 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-30 14:20:22 +02:00
Earl Warren	debf12f6c5	fix: markup rendering panic must not abort the process (#9478 ) It must return on error instead, and log a stack trace for forensic analysis. Refs https://codeberg.org/forgejo/forgejo/issues/9472 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9478 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-30 09:39:34 +02:00
Ellen Εμιλία Άννα Zscheile	5687a8ef65	feat(build): add support for the base.Messenger, $.locale.Tr, Form structs to lint-locale-usage (#9095 ) - Move a file around to avoid a circular dependency. - Make lint-locale-usage aware of `base.Messenger`, form struct tags and `$.locale.Tr`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9095 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Εμιλία Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Εμιλία Άννα Zscheile <fogti+devel@ytrizja.de>	2025-09-30 03:25:45 +02:00
Earl Warren	710600f459	fix: package cleaned rule fails if the keep count is too high (#9468 ) If the keep count of a cleanup rule is greater than the number of available packages, it fails with: ``` panic(boundsError{x: int64(x), signed: true, y: y, code: boundsSliceB}) .../packages/packages.go:175 .../routers/web/org/setting_packages.go:108 ``` Regression of https://codeberg.org/forgejo/forgejo/pulls/9219/files Refs https://codeberg.org/forgejo/forgejo/issues/9461 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9468): <!--number 9468 --><!--line 0 --><!--description cGFja2FnZSBjbGVhbmVkIHJ1bGUgZmFpbHMgaWYgdGhlIGtlZXAgY291bnQgaXMgdG9vIGhpZ2g=-->package cleaned rule fails if the keep count is too high<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9468 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-29 16:28:43 +02:00
Gusted	52925c44c7	fix: add vue data to `createApp` instead `mount` (#9467 ) - Regression of forgejo/forgejo#9444 - Resolves forgejo/forgejo#9462 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9467 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-29 15:44:01 +02:00
DasLixou	f30fc08468	fix: don't enlarge the clone-panel on mobile (#9447 ) This is a short CSS fix for "mobile" devices (being screen-width < 390px) where the clone panel would not get smaller than 370px and thus causes an ugly overflow which also leads to the page being wider than view when loaded and thus causes the page to weirdly bounce a bit left and right when scrolling. The 390px mark was chosen because that's exactly the point where, with padding, the panel stops having a usable size. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9447 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: DasLixou <einlixou@gmail.com> Co-committed-by: DasLixou <einlixou@gmail.com>	2025-09-29 15:43:22 +02:00
famfo	98073ac28d	feat: ability to filter listed accounts by type in admin dashboard (#9455 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9455 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-09-29 15:35:40 +02:00
Renovate Bot	c271c73e53	Update renovate to v41.131.9 (forgejo) (#9456 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-29 09:37:12 +02:00
0ko	16e66254c6	chore(i18n): move some plural strings to json (#9463 ) * move two strings to json so they have good culture aware plurals * move formatting tags out of the strings * simplify keys * add basic testing Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9463 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-09-29 09:27:50 +02:00
0ko	b470c6c454	merge commit: i18n: update of translations from Codeberg Translate (#9423 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9423 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-09-29 09:14:20 +02:00
Codeberg Translate	cd7a8f4546	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: 11xx <11xx@noreply.codeberg.org> Co-authored-by: Baturax <baturax@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Xinayder <xinayder@noreply.codeberg.org> Co-authored-by: matheusgomesms <matheusgomesms@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: thecoolcats <thecoolcats@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-09-29 06:34:48 +00:00
Mathieu Fenniak	0b923a03b4	test: fix 'Missing required prop' warning during RepoActionView frontend tests (#9454 ) Fixes warnings in the `RepoActionView.test.js`, introduced in #9444 but caused by the frontend tests not providing all required properties to the component. ``` stderr \| web_src/js/components/RepoActionView.test.js > processes ##[group] and ##[endgroup] [Vue warn]: Missing required prop: "runIndex" at <RepoActionView jobIndex="1" attemptNumber="1" initialJobData= { state: { run: { status: 'success', commit: [Object] }, currentJob: { steps: [Array] } }, logs: { stepsLog: [] } } ... > at <VTUROOT> ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9454 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-28 18:53:18 +02:00
0ko	0a18c04a4b	feat(ui): add legends to storage overview (#9429 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6602 * added nontransparent background to the empty part of the bar * the rule is now a `details` with a legend that can be opened so it is easier to see categories that take up space: 1. when they are tiny 2. when on touchscreen where tooltips are less easy to use 3. when a better overview is needed instead of checking one tooltip at a time 4. when having JS disabled so tooltips aren't available * made the bars slightly taller (0.714285714rem -> 0.75rem) * made them more taller for coarse pointer Preview-on: https://codeberg.org/attachments/54065bf8-5e7b-46cd-ad8f-57e8278f59a3 Preview-on: https://codeberg.org/attachments/a3d57a76-a607-4e8b-8112-fe83c9db4026 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9429 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-09-28 10:35:07 +02:00
Gusted	c8ec9bc2cc	feat(ui): lazy-load all Vue components (#9444 ) Some Vue components were already lazy-loaded, but not all. There are three main changes: 1. Move init scripts outside Vue code. 2. Make the init scripts lazy-load the Vue components. 3. Deal with vue linters, because apparently if you do `export default` then some Vue linters will notice that's vue sfc. The rationale for this pull requests is that this reduces the size of the `index.js` file. - Uncompressed: 1.24 MB -> 954.40 kB - Compressed (gzip, via `reverse_proxy` of Caddy): 400.45 kB -> 298.95 kB - Compressed (zstd, via `bindata` tag): 363.75 kB -> 274.22 kB Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9444 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-28 05:40:40 +02:00
Max Günther	5da9c6ce64	fix: replace "All pull requests" in repo issue filter (#9401 ) When on the issue page, show "All issues" instead of "All pull requests" inside the "Type" filter. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9401 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Max Günther <code-mg@mailbox.org> Co-committed-by: Max Günther <code-mg@mailbox.org>	2025-09-27 17:11:45 +02:00
danielep	fd27fceacb	fix(ui): strike through deleted comment revisions (#8458 ) Resolves #8403 There's a issue with the comment history items that are deleted, they can be deleted by the author of the comment or by those that have write access. However when the item is deleted, it shows that the one who wrote that revision of the comment deleted it, which is not always true. Strike-through the item instead. Co-authored-by: Daniele Pintore <daniele.pintore1@gmail.com> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8458 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: danielep <danielep@noreply.codeberg.org> Co-committed-by: danielep <danielep@noreply.codeberg.org>	2025-09-27 13:23:10 +02:00
Antonin Delpeuch	64cfb3580d	feat: display the PR editable status in the right-hand side menu (#9392 ) Fixes #9332. I decided to leave the "Editable" badge next to the PR branch name, because I think it doesn't hurt to have it there, especially if some users have already learned to look for it there. For those more familiar with the Github UI and not knowing to look for the "Editable" badge, this patch will also put the information in a more familiar place. Unfortunately the changes to the existing test had to be more involved because the existing test used a PR which was made with the same head repo as the base repo (whereas the editable setting is only offered for PRs from forks). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9392 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-09-27 13:08:38 +02:00
Earl Warren	152fd11bc6	fix: revert update of connectrpc.com/connect from v1.19.0 to v1.18.1 (#9438 ) It does not break the CI but breaks the releases: 19.38 CGO_CFLAGS="-O2 -g -DSQLITE_MAX_VARIABLE_NUMBER=32766" /usr/local/go/bin/go build -trimpath -tags 'netgo osusergo bindata timetzdata sqlite sqlite_unlock_notify' -ldflags '-linkmode external -extldflags "-static" -buildid= -s -w -X "main.ReleaseVersion=14.0-test" -X "main.MakeVersion=GNU Make 4.4.1" -X "main.Version=14.0.0-dev-2-42097bc0cb+gitea-1.22.0" -X "main.Tags=bindata timetzdata sqlite sqlite_unlock_notify" -X "main.ForgejoVersion=14.0.0-dev-2-42097bc0cb+gitea-1.22.0"' -o gitea 41.39 # connectrpc.com/connect 41.39 /go/pkg/mod/connectrpc.com/connect@v1.19.0/envelope.go:378:24: math.MaxUint32 (untyped int constant 4294967295) overflows int 99.47 make: *** [Makefile:851: static-executable] Error 1 There is a regression at https://github.com/connectrpc/connect-go/issues/886 This reverts commit `42097bc0cb`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9438 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-27 06:30:21 +02:00
Renovate Bot	42097bc0cb	Update module connectrpc.com/connect to v1.19.0 (forgejo) (#9425 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [connectrpc.com/connect](https://github.com/connectrpc/connect-go) \| `v1.18.1` -> `v1.19.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/connectrpc.com%2fconnect/v1.19.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/connectrpc.com%2fconnect/v1.18.1/v1.19.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>connectrpc/connect-go (connectrpc.com/connect)</summary> ### [`v1.19.0`](https://github.com/connectrpc/connect-go/releases/tag/v1.19.0) [Compare Source](https://github.com/connectrpc/connect-go/compare/v1.18.1...v1.19.0) This release introduces the highly requested "simple" flag for code generation, making Connect significantly more ergonomic for everyday RPC development. The new simple flag in protoc-gen-connect-go generates cleaner, more intuitive client and handler interfaces that eliminate request/response wrappers for most use cases. This addresses community feedback about verbosity and provides a more straightforward API. When enabled, metadata (headers/trailers) can be passed through context instead of explicit wrapper objects, optimizing for the common case where developers don't need direct access to HTTP headers. #### What's Changed ##### Enhancements - Add simple flag for more ergonomic generated code by [@bufdev](https://github.com/bufdev) and [@smaye81](https://github.com/smaye81) in [#851](https://github.com/connectrpc/connect-go/pull/851) - Update Go to v1.24 and document http.Protocol use removing the dependency on `golang.org/x/net/http2` by [@maxbrunet](https://github.com/maxbrunet) in [#873](https://github.com/connectrpc/connect-go/pull/873), [#877](https://github.com/connectrpc/connect-go/pull/877) - Add support for Edition 2024 by [@emcfarlane](https://github.com/emcfarlane) in [#878](https://github.com/connectrpc/connect-go/pull/878) ##### Bugfixes - Include valid spec and headers when calling recover handler for streaming RPCs by [@jhump](https://github.com/jhump) in [#817](https://github.com/connectrpc/connect-go/pull/817) ##### Other changes - Go version support updated to latest two instead of three by [@jhump](https://github.com/jhump) in [#837](https://github.com/connectrpc/connect-go/pull/837) - CI testing improvements by [@pkwarren](https://github.com/pkwarren) and [@jhump](https://github.com/jhump) in [#838](https://github.com/connectrpc/connect-go/pull/838), [#839](https://github.com/connectrpc/connect-go/pull/839) - Code quality improvements by [@mattrobenolt](https://github.com/mattrobenolt) and [@bufdev](https://github.com/bufdev) in [#841](https://github.com/connectrpc/connect-go/pull/841), [#867](https://github.com/connectrpc/connect-go/pull/867) - Documentation improvements by [@adlion](https://github.com/adlion) and [@stefanvanburen](https://github.com/stefanvanburen) in [#821](https://github.com/connectrpc/connect-go/pull/821), [#880](https://github.com/connectrpc/connect-go/pull/880) #### New Contributors - [@adlion](https://github.com/adlion) made their first contribution in [#821](https://github.com/connectrpc/connect-go/pull/821) - [@maxbrunet](https://github.com/maxbrunet) made their first contribution in [#873](https://github.com/connectrpc/connect-go/pull/873) - [@stefanvanburen](https://github.com/stefanvanburen) made their first contribution in [#880](https://github.com/connectrpc/connect-go/pull/880) Full Changelog: <https://github.com/connectrpc/connect-go/compare/v1.18.1...v1.19.0> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMjIuMyIsInVwZGF0ZWRJblZlciI6IjQxLjEyMi4zIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9425 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-26 09:49:48 +02:00
forgejo-release-manager	b29ab34338	chore: 13.0.0 is now stable - first commit	2025-09-25 15:19:52 +02:00
forgejo-release-manager	7863af5ead	chore: 13.0.0 is now stable - development tag [skip ci]	2025-09-25 15:19:45 +02:00
Earl Warren	8e5f0d1e82	fix: upgrade to the ldap version used for testing to 2.5 (#9417 ) The LDAP server ontainer image used for tests is pre-populated with: - https://github.com/rroemhild/docker-test-openldap/tree/v2.5.0/rootfs/ - https://code.forgejo.org/forgejo/forgejo-test-openldap/src/branch/main/rootfs (adds files) --- use https://code.forgejo.org/forgejo/forgejo-test-openldap with ldap 2.5 instead of a stretch based image with ldap 2.4 that cannot be rebuilt. - user sshuser exists specifically to test sshKey sync instead of a modified hermes user - user bender was different from the base image for no useful purpose (accent in the name), remove the accent - the port is 10389 by default instead of 389 Refs https://codeberg.org/forgejo/forgejo/issues/9406 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9417 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-25 14:14:49 +02:00
Earl Warren	ecea06f853	i18n: update of translations from Codeberg Translate (#9347 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9347 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-09-25 09:09:01 +02:00
Codeberg Translate	4ac038af66	i18n: update of translations from Codeberg Translate Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Laurent FAVOLE <lfavole@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vaibhav Sunder <vaibhavswire@gmail.com> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: fbausch <fbausch@noreply.codeberg.org> Co-authored-by: recreationalprogamer <recreationalprogamer@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/vi/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-09-25 06:35:13 +00:00
Jordan Atwood	8931588849	fix(ui): apply background color to wiki content (#9400 ) Applying a distinct background color to wiki content ensures that content with a background color (eg. code blocks) actually stands out against the background. Fixes #9391. Before: - https://codeberg.org/forgejo/forgejo/attachments/72c2530b-a79b-45e7-8980-db0b33a4ca85 - https://codeberg.org/forgejo/forgejo/attachments/3195cc83-1f8b-46c8-8eb8-2b1ceb0bce28 - https://codeberg.org/forgejo/forgejo/attachments/8922db5a-c57b-44e5-a4de-9cfbd0ba207f - https://codeberg.org/forgejo/forgejo/attachments/5815022f-f03a-476b-9dec-b224c4c14f12 After: - https://codeberg.org/forgejo/forgejo/attachments/f3a0cb17-b829-4bc6-ae07-f06d111a103e - https://codeberg.org/forgejo/forgejo/attachments/e1cf97e5-44a0-4dce-85ab-a594c4474ab8 (same) - https://codeberg.org/forgejo/forgejo/attachments/7edd5163-186c-488a-a6c1-b093edc0be43 - https://codeberg.org/forgejo/forgejo/attachments/5815022f-f03a-476b-9dec-b224c4c14f12 (same) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9400 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Jordan Atwood <nightfirecat@nightfirec.at> Co-committed-by: Jordan Atwood <nightfirecat@nightfirec.at>	2025-09-24 17:47:53 +02:00
0ko	21798fa0d0	feat(ui): improve display of repo topics (#9402 ) * removed unused class `label-list` * introduced a new class `repo-topics` to better maintain consistency across two different places - explore and repo overview * fixed vertical gap via flex on on explore * decreased usage of Tailwind in overview, decreased gaps - usually where topics or more often labels are shown in the UI they are quite dense and it makes sense as they also have padding Explore - normal (desktop) - no changes Before: https://codeberg.org/attachments/a4ea53b2-c38c-4dd8-adcc-bc6a3804dfe8 After: https://codeberg.org/attachments/94209a72-8b5f-45d7-b24a-5fa13ced3157 Explore - overflowing (mobile or too many tags) - fixed vertical margin Before: https://codeberg.org/attachments/bad9531f-d4c7-4043-ac94-e57895c45b67 After: https://codeberg.org/attachments/269c39b8-939b-4dbb-af6a-938c2c2fd820 Repo - normal - decreased gap Before: https://codeberg.org/attachments/74ce2114-7aea-47ec-883d-4115d81a96b4 After: https://codeberg.org/attachments/551ba599-a87d-4538-82c4-761e0c3098c9 Repo - overflowing - decreased gap while maintaining good gap for the manage button Before: https://codeberg.org/attachments/a2ab2cd2-3080-475f-875a-8885981a554d After: https://codeberg.org/attachments/8a33fe42-57e1-4aba-9e7c-da79bfe7d776 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9402 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org>	2025-09-24 17:45:31 +02:00
0ko	a0011375b7	fix(ui): fix alignment of items in tag signature (#9398 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8984. (`62f2515138`) Before: https://codeberg.org/attachments/01a29d33-adae-4e6f-971b-d4871341bd9c After: https://codeberg.org/attachments/c11b7391-aeab-4451-a5be-00f700bf3746 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9398 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org>	2025-09-24 14:54:24 +02:00
Arnout Engelen	02cd96856f	fix: clarify description of deploy keys (#9395 ) Helps with #1712. There's an "Enable write access" checkbox further down the page. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9395 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Arnout Engelen <arnout@bzzt.net> Co-committed-by: Arnout Engelen <arnout@bzzt.net>	2025-09-24 08:37:11 +02:00
Renovate Bot	25fa794d26	Update renovate to v41.122.2 (forgejo) (#9381 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-22 10:41:50 +02:00
Renovate Bot	00ff39f5df	Lock file maintenance (forgejo) (#9383 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTMuMyIsInVwZGF0ZWRJblZlciI6IjQxLjExMy4zIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9383 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-22 09:21:27 +02:00
patka	ff888dbee3	chore: remove redundant code (#9378 ) Found this while working on !9360. Making sure that the dir doesn't exist is already done a few lines above. The removed parameter was always set to false, since the function is only called in a single place. (it smells like this code was refactored at some point, but some stuff was forgotten) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9378 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patka <patka@patka.dev> Co-committed-by: patka <patka@patka.dev>	2025-09-22 09:18:19 +02:00
Mathieu Fenniak	2dd333f8fb	docs: update example config docs for MAX_CREATION_LIMIT (#9376 ) Follow-up to include information from https://codeberg.org/forgejo/docs/pulls/1501 into the app.example.ini file. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9376 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-21 09:09:40 +02:00
patka	668e9bb2ac	fix: check target repo limit instead of user repo limit (#9360 ) Fixes https://codeberg.org/forgejo/forgejo/issues/9344 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9360 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: patka <patka@patka.dev> Co-committed-by: patka <patka@patka.dev>	2025-09-21 08:47:10 +02:00
Jordan Atwood	01419d9c36	chore(ui): replace repo-code jQuery use, convert file to typescript (#9337 ) This PR moves repo-code.js to repo-code.ts (with appropriate changes for the JS -> TS conversion), adds e2e tests for file folding and file line permalink copying to fully cover the features implemented in repo-code, then removes the jQuery usage in the file in favor of vanilla JS. * chore(ui): replace jQuery uses in repo-code.ts * chore(ui): add copy line permalink test * chore(ui): add file folding test * chore(ui): convert repo-code to ts This commit additionally removes the use of `document.selection` for IE8 support, as we no longer offer support for the browser. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9337 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Jordan Atwood <nightfirecat@nightfirec.at> Co-committed-by: Jordan Atwood <nightfirecat@nightfirec.at>	2025-09-21 08:08:47 +02:00
BtbN	c08bdaacdb	fix: use correct commit when fetching patch view for review comments (#9264 ) This is effectively a clean revert of `e7a77d32cc`, which for some reason broke this logic. Yes, always having the latest code shown in the diff is nice, but doing this mismatches the commitID and the line number the comment is being posted on, which very easily and frequently leads to reviews that show a completely nonsensical patch above them, cause the code it's referring too shifted by several lines since the time the review was started and the time it was posted. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9264 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-09-20 22:47:52 +02:00
Gusted	aa345c9e0c	feat: first native dialog for modal (#8859 ) - The current implementation for modals is provided by fomantic UI. - This patch introduces a new implementation that relies on the `<dialog>` element to provide modal, whereby the heavy lifting is done by the browser. - This implementation is considerably simpler, accessible (although untested) and lightweight. It is capable of replacing fomantic UI's modal implementation + our dimmer implementation (~2k lines of code and CSS).[^1] As a first step the empty content modal is migrated. - This brings in the CSS needed to display `<dialog>` and a helper function that hides some boilerplate code that's needed to show `<dialog>` as a modal. - Add a E2E test that shows the modal's cancel and approve button works. [^1]: The heavy work has already been done by me in a local branch, but reviewing that gigantic patch in one PR is not doable. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8859 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-20 20:09:17 +02:00
Renovate Bot	c00c5d9c48	Update dependency mermaid to v11.12.0 (forgejo) (#9353 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9353 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-20 17:47:10 +02:00
Renovate Bot	0d71bacd08	Update dependency sharp to v0.34.4 (forgejo) (#9338 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9338 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-20 17:42:40 +02:00
Renovate Bot	177c711b80	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.4 (forgejo) (#9366 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.0.3` -> `v3.0.4` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.0.4`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.3...v3.0.4) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.3...v3.0.4) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTMuMyIsInVwZGF0ZWRJblZlciI6IjQxLjExMy4zIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9366 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-20 09:05:26 +02:00
forgejo-release-manager	bccf6cd9bb	chore(release-notes): Forgejo v12.0.4 (#9368 ) https://codeberg.org/forgejo/forgejo/milestone/26795 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9368 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-09-20 08:51:49 +02:00
forgejo-release-manager	27b4648c63	chore(release-notes): Forgejo v11.0.6 (#9367 ) https://codeberg.org/forgejo/forgejo/milestone/26792 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9367 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-09-20 08:51:43 +02:00
Earl Warren	e24e975ce8	fix: do not display the title of unsubscribed issues or pull requests in the notification web page (#9362 ) Do not display the title of unsubscribed issues or pull requests in the notification web page . The title of some random issues or pull requests from repositories were accidentally displayed in the notifications of a user. It was a rare occurrence, caused by an incorrect comparison of two unrelated unique identifiers that are unlikely to match (the id of the notification and the id of a repository). If the issue or the pull request belonged to a private repository to which the user had no read access, only the title was leaked. The user was denied permission to view the issue or the pull request when clicking on the link displayed in the notifications web page. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Security bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9362): <!--number 9362 --><!--line 0 --><!--description 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-->Do not display the title of unsubscribed issues or pull requests in the notification web page . The title of some random issues or pull requests from repositories were accidentally displayed in the notifications of a user. It was a rare occurrence, caused by an incorrect comparison of two unrelated unique identifiers that are unlikely to match (the id of the notification and the id of a repository). If the issue or the pull request belonged to a private repository to which the user had no read access, only the title was leaked. The user was denied permission to view the issue or the pull request when clicking on the link displayed in the notifications web page.<!--description--> <!--end release-notes-assistant--> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9362 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-09-19 22:32:06 +02:00
Renovate Bot	0564a6fea9	Update dependency @playwright/test to v1.55.0 (forgejo) (#9356 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-19 09:40:49 +02:00
Renovate Bot	0020d5aa49	Update module code.forgejo.org/forgejo/runner/v11 to v11.1.1 (forgejo) (#9354 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/runner/v11](https://code.forgejo.org/forgejo/runner) \| `v11.0.0` -> `v11.1.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv11/v11.0.0/v11.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/runner (code.forgejo.org/forgejo/runner/v11)</summary> ### [`v11.1.1`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.1.1) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.1.0...v11.1.1) - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1017): <!--number 1017 --><!--line 0 --><!--description Zml4OiBvdXRwdXRzIGFyZSBvbmx5IHNldCB3aGVuIHRoZSBqb2IgaXMgc3VjY2Vzc2Z1bA==-->fix: outputs are only set when the job is successful<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1015): <!--number 1015 --><!--line 0 --><!--description Zml4KHByZS1jb21taXQpOiBkb27igJl0IGRlZmF1bHQgYHZlcmJvc2VgIHRvIG9u-->fix(pre-commit): don’t default `verbose` to on<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1013): <!--number 1013 --><!--line 0 --><!--description Y2hvcmU6IGRvY3VtZW50IHRoYXQgRE9DS0VSX0hPU1Qgc2hvdWxkIGJlIHVzZWQgaW5zdGVhZCBvZiAtLWNvbnRhaW5lci1kYWVtb24tc29ja2V0-->chore: document that DOCKER\_HOST should be used instead of --container-daemon-socket<!--description--> <!--end release-notes-assistant--> ### [`v11.1.0`](https://code.forgejo.org/forgejo/runner/releases/tag/v11.1.0) [Compare Source](https://code.forgejo.org/forgejo/runner/compare/v11.0.0...v11.1.0) > Warning Upgrade to v11.1.1 instead. A [regression was found](https://code.forgejo.org/forgejo/runner/issues/1016) that crashed the runner on skipped or failed jobs. - [User guide](https://forgejo.org/docs/next/user/actions/overview/) - [Administrator guide](https://forgejo.org/docs/next/admin/actions/) - [Container images](https://code.forgejo.org/forgejo/-/packages/container/runner/versions) Release Notes * <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/runner--> - features - [PR](https://code.forgejo.org/forgejo/runner/pulls/1002): <!--number 1002 --><!--line 0 --><!--description ZmVhdDogYWRkIHByZS1jb21taXQgaG9vayBmb3IgdmFsaWRhdG9y-->feat: add pre-commit hook for validator<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1008): <!--number 1008 --><!--line 0 --><!--description ZmVhdDogdmFsaWRhdGUgLS1kaXJlY3RvcnkgYWx0ZXJuYXRpdmUgdG8gLS1yZXBvc2l0b3J5IHRvIG5vdCBjbG9uZQ==-->feat: validate --directory alternative to --repository to not clone<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/999): <!--number 999 --><!--line 0 --><!--description ZmVhdDogdGhlIGZvcmdlam8gY29udGV4dCBpcyBlcXVpdmFsZW50IHRvIHRoZSBnaXRodWIgY29udGV4dA==-->feat: the forgejo context is equivalent to the github context<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/997): <!--number 997 --><!--line 0 --><!--description ZmVhdDogYWRkIHN1cHBvcnQgZm9yIGEgRGViaWFuIEdOVS9MaW51eCBMWEMgYmFja2VuZCBiYXNlZCBvbiB0cml4aWUgKGUuZy4gdHJpeGllLWx4YzpseGM6Ly9kZWJpYW46dHJpeGllKQ==-->feat: add support for a Debian GNU/Linux LXC backend based on trixie (e.g. trixie-lxc:lxc://debian:trixie)<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/runner/pulls/1012): <!--number 1012 --><!--line 0 --><!--description Zml4OiBzY2hlbWEgdmFsaWRhdGlvbiBtdXN0IGFjY2VwdCBhbGlhc2VzIGFuZCBtZXJnZXM=-->fix: schema validation must accept aliases and merges<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1009): <!--number 1009 --><!--line 0 --><!--description Zml4OiBmb3JnZWpvLXJ1bm5lciB2YWxpZGF0ZSBleGl0IHdpdGggZXJyb3Igd2hlbiB2YWxpZGF0aW9uIGZhaWxz-->fix: forgejo-runner validate exit with error when validation fails<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1006): <!--number 1006 --><!--line 0 --><!--description Zml4OiBkbyBub3Qgc2F2ZSAucnVubmVyIHVubGVzcyBpdCBpcyBtb2RpZmllZA==-->fix: do not save .runner unless it is modified<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1003): <!--number 1003 --><!--line 0 --><!--description Zml4OiByZW1vdmUgTFhDIHdvcmtpbmcgZGlyZWN0b3J5IHdoZW4gaXQgY29tcGxldGVz-->fix: remove LXC working directory when it completes<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/995): <!--number 995 --><!--line 0 --><!--description Zml4OiBzZW5kIGpvYiBvdXRwdXRzICYgam9iIHJlc3VsdCB0byBGb3JnZWpvIGluIHN5bmMgd2l0aCBlYWNoIG90aGVy-->fix: send job outputs & job result to Forgejo in sync with each other<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/986): <!--number 986 --><!--line 0 --><!--description Zml4OiBpZiB0aGUgRm9yZ2VqbyBpbnN0YW5jZSBmYWlsZWQgYSBqb2IsIGNhbmNlbCBpdA==-->fix: if the Forgejo instance failed a job, cancel it<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/982): <!--number 982 --><!--line 0 --><!--description Zml4OiBlbmZvcmNlIGpvYi48am9iLWlkPi50aW1lb3V0LW1pbnV0ZXM=-->fix: enforce job.<job-id>.timeout-minutes<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/972): <!--number 972 --><!--line 0 --><!--description Zml4OiB1c2UgYSBmaXhlZCBydW5uZXIgbmFtZSBmb3Igb2xkICg8PSB2MS4yMCkgRm9yZ2VqbyBpbnN0YW5jZXM=-->fix: use a fixed runner name for old (<= v1.20) Forgejo instances<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/965): <!--number 965 --><!--line 0 --><!--description Zml4OiBkb2NrZXItY29tcG9zZSBleGFtcGxlOiBhbGxvdyB0aGUgcnVubmVyIHRvIGtlZXAgaXRzIGxhYmVscw==-->fix: docker-compose example: allow the runner to keep its labels<!--description--> - other - [PR](https://code.forgejo.org/forgejo/runner/pulls/1001): <!--number 1001 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9seGMtaGVscGVycyB0byB2MS4xLjA=-->Update dependency forgejo/lxc-helpers to v1.1.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/1000): <!--number 1000 --><!--line 0 --><!--description Y2hvcmU6IG1pbmltYWwgaW50ZWdyYXRpb24gdGVzdCBmb3IgdGhlIExYQyBiYWNrZW5k-->chore: minimal integration test for the LXC backend<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/993): <!--number 993 --><!--line 0 --><!--description Y2hvcmU6IHVuaWZ5IGFjdGlvbnMgVVJMcyBpbiAuZm9yZ2Vqby93b3JrZmxvd3M=-->chore: unify actions URLs in .forgejo/workflows<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/992): <!--number 992 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Nhc2NhZGluZy1wciBhY3Rpb24gdG8gdjIuMy4w-->Update <https://data.forgejo.org/actions/cascading-pr> action to v2.3.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/990): <!--number 990 --><!--line 0 --><!--description Y2hvcmU6IGRhdGEuZm9yZ2Vqby5vcmcvYWN0aW9ucy9jYXNjYWRpbmctcHIgaXMgdGhlIGNhbm9uaWNhbCBsb2NhdGlvbg==-->chore: data.forgejo.org/actions/cascading-pr is the canonical location<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/989): <!--number 989 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZm9yZ2Vqby9yZWxlYXNlLW5vdGVzLWFzc2lzdGFudCB0byB2MS40LjE=-->Update dependency forgejo/release-notes-assistant to v1.4.1<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/988): <!--number 988 --><!--line 0 --><!--description Y2hvcmU6IHdhaXQgNCB0aW1lcyBsb25nZXIgZm9yIHRoZSBmb3JnZWpvIGNhc2NhZGUgcHVsbCByZXF1ZXN0IHRvIGNvbXBsZXRl-->chore: wait 4 times longer for the forgejo cascade pull request to complete<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/985): <!--number 985 --><!--line 0 --><!--description UmVtb3ZlIHdpbmRvd3MgYnVpbGQvdGVzdCBwaXBlbGluZSBmb3IgR2l0SHVi-->Remove windows build/test pipeline for GitHub<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/981): <!--number 981 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBjb2RlLmZvcmdlam8ub3JnL2Zvcmdlam8vYWN0aW9ucy1wcm90byB0byB2MC41LjI=-->Update module code.forgejo.org/forgejo/actions-proto to v0.5.2<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/969): <!--number 969 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL3NldHVwLWZvcmdlam8gYWN0aW9uIHRvIHYzLjAuMw==-->Update <https://data.forgejo.org/actions/setup-forgejo> action to v3.0.3<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/975): <!--number 975 --><!--line 0 --><!--description VXBkYXRlIGZvcmdlam8tcnVubmVyIHRvIHYxMSAobWFqb3Ip-->Update forgejo-runner to v11 (major)<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/973): <!--number 973 --><!--line 0 --><!--description Y2k6IHVwZGF0ZSBmb3JnZWpvIHZlcnNpb24gZm9yIHJlbGVhc2UgaW50ZWdyYXRpb24=-->ci: update forgejo version for release integration<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/970): <!--number 970 --><!--line 0 --><!--description Y2hvcmU6IGx4Yy1zeXN0ZW1kIG1heSBuZWVkIG1vcmUgdGltZSB0byBzdGFydCBvbiBzbG93IG1hY2hpbmVz-->chore: lxc-systemd may need more time to start on slow machines<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/966): <!--number 966 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdGVybSB0byB2MC4zNS4w-->Update module golang.org/x/term to v0.35.0<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/964): <!--number 964 --><!--line 0 --><!--description Y2hvcmU6IGNhbGwgdGhlIHJlbGVhc2Ugbm90ZXMgYXNzaXN0YW50IHdoZW4gb3BlbmluZyBhIG5ldyBwdWxsIHJlcXVlc3Q=-->chore: call the release notes assistant when opening a new pull request<!--description--> - [PR](https://code.forgejo.org/forgejo/runner/pulls/954): <!--number 954 --><!--line 0 --><!--description Y2hvcmU6IHNraXAgcmVsZWFzZS1ub3Rlcy1hc3Npc3RhbnQgZm9yIGRlcGVuZGVuY3kgdXBkYXRlcw==-->chore: skip release-notes-assistant for dependency updates<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTMuMyIsInVwZGF0ZWRJblZlciI6IjQxLjExMy4zIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9354 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-19 06:33:16 +02:00
Mathieu Fenniak	ff84ab2014	chore: replace xorm v1.3.9 with v1.3.9-forgejo.1, preparation for foreign key additions (#9326 ) Prepares for the addition of foreign keys to Forgejo tables by bringing xorm over to https://code.forgejo.org/xorm/xorm/releases/tag/v1.3.9-forgejo.1. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9326 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-19 06:30:04 +02:00
Renovate Bot	3b44a7f317	Update module github.com/go-webauthn/webauthn to v0.14.0 (forgejo) (#9301 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9301 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-18 20:53:12 +02:00
Earl Warren	3fafca69bc	i18n: update of translations from Codeberg Translate (#9259 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9259 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-09-18 07:36:51 +02:00
Codeberg Translate	11dee00c73	i18n: update of translations from Codeberg Translate Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fs00 <fs00@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: dyniec <dyniec@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: nebras <nebras@noreply.codeberg.org> Co-authored-by: nykula <nykula@noreply.codeberg.org> Co-authored-by: recreationalprogamer <recreationalprogamer@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/vi/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-09-18 04:48:38 +00:00
0ko	98f2d40599	feat(ui): improve the global noJS notice (#9336 ) - added centering - added padding so the message cannot touch the end of the viewport on narrow screens - made text less bright, to make it less annoying Preview Before: https://codeberg.org/attachments/85f91678-f2b9-4187-8d2d-9bdd918af994 After: https://codeberg.org/attachments/a8351624-e6fe-45c2-82aa-3e6f06ad8368 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9336 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-09-18 06:48:28 +02:00
Gusted	be274b43a6	chore: add SQL fault injector testing (#9314 ) TL;DR we can test if transactions are actually working. Forgejo has many helper functions to test various aspects of the database state, however one aspect it is not able to test is transactions. As this would require that some random SQL query fails to indeed observe that the whole transaction is being rollbacked. So how do we make a random SQL query fail? Via a fault injector hook, which is always added to xorm (during unittest) and can be enabled on demand to say after how many SQL queries it should start returning a error (fault injecting). This allows a test to do the following: after two SQL queries lets call it a day and then execute the function that starts a transaction and does a few SQL query. It can then observe that indeed the function was fault injected (`ErrFaultInjected` is returned) and after querying the database it can observe that nothing was changed and thus can conclude the transaction was rollbacked. --- To demonstrate how the fault injector test helper can be used, lets add a test to a function I really wanted to test but couldn't because the fault injector didn't exist. `NewTwoFactor` was recently made into a transaction (`a8c61532d2`) and although it would not be catastrophic it would be really bad if records were being inserted if for some reason setting the secret failed. The test that's added demonstrates that the function uses a transaction and rollbacks correctly. Weirdly enough the fault injector can be viewed as testing a specification, because it assumes nothing about how the function does it (and you could even design a function that purposely doesn't work but succeeds this test), it merely assumes there's a transaction and within that transaction some SQL queries will be done. However it also needs a certain amount of knowledge about how the function is implemented because the developer needs to tell after how many SQL queries you want to inject a fault and you want to do at a point where there's already a observable change happening in the transaction and not fault inject if the transaction only contains `SELECT` queries. I'm sure you could design a smart fault injector that can do such guess work (although it sounds like a topic for a PhD thesis) and you could design a helper function that can then guide the fault injector to find every interesting place to do a fault injection and ensure the transaction always falls back; as a first prototype having the programmer tell after how many SQL queries a fault should be injected is sufficient for a lot of the transaction we are going to test in Forgejo. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9314 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-18 00:39:06 +02:00
0ko	cddfc7749b	chore(ui): improve dropdown opener visibility (#9317 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7906. This part of Mastodon default web ui theme was used as inspiration: https://codeberg.org/attachments/f8d41c67-24df-48e5-8bf7-ed023b92ff34 Screenshots of changes are below: Profile Before: https://codeberg.org/attachments/c758f98e-b4a4-45cb-b3bf-eb22ffbe2a39 After: https://codeberg.org/attachments/1f2880b6-339c-4e18-86cf-9caadfde3430 Org homepage Before: https://codeberg.org/attachments/b8606ead-f282-4149-97c9-c28765a25c5d After: https://codeberg.org/attachments/87169d58-2ada-49f0-a349-acde22598c7e Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9317 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-09-17 20:29:52 +02:00
Renovate Bot	334fbc3440	Update module github.com/mholt/archives to v0.1.4 (forgejo) (#9327 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9327 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-17 16:17:03 +02:00
0ko	f9f50ac382	merge commit: refactor init & clearing of panel forms without jQuery (#9062 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9062 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-09-17 14:56:30 +02:00
Jordan Atwood	4dcec32505	feat(ui): clear panel form inputs when closed This commit replaces the SSH key-specific code in favor of resetting panel forms when closed, which thus carries the same behavior over to the GPG key field.	2025-09-16 15:49:02 -07:00
Earl Warren	bdc99aef87	chore: document that [i18n].LANGS must contain en-US (#9319 ) It is used for some non user facing messages that are needed for instance when logging errors server side. Resolves forgejo/forgejo#9316 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9319 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-16 18:43:07 +02:00
Mathieu Fenniak	89e0323351	fix: respect UI DEFAULT_SHOW_FULL_NAME setting in email From: headers (#9307 ) Changes email's `From` field to respect the server's `DEFAULT_SHOW_FULL_NAME` setting, bringing consistency between seeing an email from a user, opening the related issue, and seeing a different name in Forgejo's web UI. Manually tested by varying the `DEFAULT_SHOW_FULL_NAME` server property, enabling and disabling it: ![image](/attachments/234b26b5-da8a-4220-955e-f20c61e418e8) Fixes #9149. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - Performed manual testing with ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9307 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-16 15:19:06 +02:00
Gusted	548cd0c059	feat: avoid expensive SQL for org home (#9309 ) This change comes from Codeberg's Forgejo fork and has been in deployed in production for a month now. (`de372975c7`) What we noticed on Codeberg is that navigating to the organisation's home was quite slow, for example https://codeberg.org/forgejo, this was caused by searching for the repositories that is owned by the organisation. The expensive part of this SQL was that it tried to show repositories where the organisation is a collaborator of... which is none as you cannot add organisations as a collaborator. Not doing this made the SQL query very fast again. There's no test associated with this, as it's essentially a no-op before and after. So no testing would fail without this change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9309 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-16 08:54:14 +02:00
Robert Wolff	30413435d8	fix: failing backend tests (#9310 ) The tests introduced by #9181 are updated to match the new behaviour of #9182. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9310 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-09-15 23:54:56 +02:00
Robert Wolff	14c5462019	fix(ui): reworked file preview placement towards better HTML validity (#9181 ) ### What? - fixes HTML nodes placement for inline previews - (breaking?) disallows file previews in headings (`<h1>`, …), striked out (`<del>`), `<summary>` and other environments - allows them in `<span>`, `<em>` and `<strong>` environments, but without extra formatting - allows them in `<div>`, `<li>`, `<th>`, `<td>` and `<details>` (not in `<summary>`) environments following the parent’s formatting - improves overall HTML validity, but only to the extend of the direct parent nodes (but not a big issue, as modern browsers tend to ignore invalid HTML and still parse it) - fix #9136 See examples of strangely formatted file previews at https://v13.next.forgejo.org/mahlzahn/test/issues/4. ### How is it implemented? For links in `<p>`, `<span>`, `<em>` and `<strong>` parent nodes it inserts the file preview and following text as siblings to the parent node. `<em>before LINK after</em>` → `<em>before </em>PREVIEW<em> after</em>` For links in `<div>`, `<li>`, `<th>`, `<td>` and `<details>` parent nodes it inserts the file preview and following text as siblings to the text node. `<div>before LINK after</div>` → `<div>before PREVIEW after</div>` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9181 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-09-15 15:57:52 +02:00
Gusted	389b32f51a	feat: make upload URL compatible with GitHub API (#9285 ) Adds new a function, `AcceptsGithubResponse`, to the API router context struct to check if the requests accepts a Github response. Although Forgejo API will never be compatible with the Github API, historically Forgejo's API has been designed to follow that of Github closely and we know that a lot of tooling that uses the Github API can be used against the Forgejo API with little to no problem. As a meet in the middle solution, this function can be used to respond with a more appropriate response that follows the Github API. This allows Forgejo to avoid breaking compatibility with existing users of the API and allows the API to be oh so slightly more compatible with that of Github for API clients that expect a Github response. Because the `upload_url` field was added purely to match the Github API (forgejo/forgejo#580), it is fair to actually make it compatible with how the Github API intended it to be and that is by adding `{?name,label}` which is used by Github's Oktokit. Only add `{?name,label}` when Forgejo knows the request accepts a Github response. This avoids breaking the API compatibility with non-Github API clients. Resolves Codeberg/Community#2132 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9285 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-15 15:53:35 +02:00
toras9000	5c6645a8af	Update Swagger annotations to reflect actual behavior (#9138 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. ---- This is a fix for the Swagger annotations reported in #8918. Most of the changes are corrections to annotation comments, with some additions of wrapper struct definitions for Swagger auto‑generation. Co-authored-by: toras9000 <toras9000@example.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9138 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: toras9000 <toras9000@noreply.codeberg.org> Co-committed-by: toras9000 <toras9000@noreply.codeberg.org>	2025-09-15 11:55:49 +02:00
Renovate Bot	b755f09e95	Lock file maintenance (forgejo) (#9302 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9302 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-15 08:17:24 +02:00
Renovate Bot	9def32985b	Update renovate to v41.113.3 (forgejo) (#9299 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-15 08:01:07 +02:00
Mathieu Fenniak	eb21dd17b8	fix: loading action logs on a task that isn't fetched yet, fails when the job is fetched (#9293 ) Discovered a regression caused by #9017. Steps to reproduce: - Disable the forgejo-runner that will pick up a workflow - Trigger any workflow to run - Through the Actions list, click on the new workflow that is pending a runner to fetch it - You'll be redirected to /user/repo/actions/runs/73/jobs/0/attempt/0 (attempt = 0) - The UI will appear normal with the job "Waiting"... - Startup the forgejo-runner to pick up the workflow - The UI will begin to have errors: - JavaScript promise rejection: JSON.parse: unexpected keyword at line 1 column 1 of the JSON data. Open browser console to see more details. (5) The cause is that the redirect to `/attempt/0` occurs for a job that hasn't been started, but once the job is started attempt 0 is not a valid attempt and errors will occur when polling for data. This fix corrects the problem by redirecting to the attempt that will be present (attempt 1) when the job is fetched. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9293 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-14 14:30:02 +02:00
mactynow	0b1942150f	feat: Add converting mirror repos to normal to the API (#8932 ) - Add `POST /repos/{owner}/{repo}/convert` to the API to allow mirror repositories to be converted to normal repositories. - Resolves forgejo/forgejo#7733 Co-authored-by: Charles Martinot <charles.martinot@protonmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8932 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: mactynow <mactynow@noreply.codeberg.org> Co-committed-by: mactynow <mactynow@noreply.codeberg.org>	2025-09-14 14:25:05 +02:00
Renovate Bot	8767613338	Update module github.com/meilisearch/meilisearch-go to v0.34.0 (forgejo) (#9275 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9275 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-14 13:22:15 +02:00
Renovate Bot	c0e4624c81	Update module golang.org/x/oauth2 to v0.31.0 (forgejo) (#9295 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/oauth2](https://pkg.go.dev/golang.org/x/oauth2) \| [`v0.30.0` -> `v0.31.0`](https://cs.opensource.google/go/x/oauth2/+/refs/tags/v0.30.0...refs/tags/v0.31.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2foauth2/v0.31.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2foauth2/v0.30.0/v0.31.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9295 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-14 08:55:41 +02:00
Renovate Bot	69a9be0513	Update module golang.org/x/net to v0.44.0 (forgejo) (#9294 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/net](https://pkg.go.dev/golang.org/x/net) \| [`v0.43.0` -> `v0.44.0`](https://cs.opensource.google/go/x/net/+/refs/tags/v0.43.0...refs/tags/v0.44.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fnet/v0.44.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fnet/v0.43.0/v0.44.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9294 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-14 06:06:25 +02:00
Renovate Bot	f7de5f2684	Update module golang.org/x/image to v0.31.0 (forgejo) (#9291 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9291 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-14 02:52:36 +02:00
Renovate Bot	30b4bca5a6	Update module golang.org/x/crypto to v0.42.0 (forgejo) (#9278 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/crypto](https://pkg.go.dev/golang.org/x/crypto) \| [`v0.41.0` -> `v0.42.0`](https://cs.opensource.google/go/x/crypto/+/refs/tags/v0.41.0...refs/tags/v0.42.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fcrypto/v0.42.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fcrypto/v0.41.0/v0.42.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9278 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-13 08:01:37 +02:00
0ko	3780b93fad	feat(ui): improve display of tags in commit list (#9257 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8759, https://codeberg.org/forgejo/forgejo/pulls/9251. Addresses first part of https://codeberg.org/forgejo/forgejo/issues/9231. * further polish up the looks of the labels * restore IsRelease logic to only give accent border to tags with releases * for the preview I purposefully created a release for existing tag 5.13.1 * change height from 25px to 21.6px (https://codeberg.org/forgejo/forgejo/pulls/9257#issuecomment-7119712) Preview: - before: https://codeberg.org/attachments/6974996a-9c54-4f05-8742-31fb5f373448 - after: https://codeberg.org/attachments/18c99315-e968-4a09-a2d6-0403f23a1d4f Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9257 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-09-12 14:31:08 +02:00
Renovate Bot	f004adc51d	Update https://data.forgejo.org/actions/cascading-pr action to v2.3.0 (forgejo) (#9266 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/cascading-pr](https://code.forgejo.org/actions/cascading-pr) \| action \| minor \| `v2.2.1` -> `v2.3.0` \| --- ### Release Notes <details> <summary>actions/cascading-pr (https://data.forgejo.org/actions/cascading-pr)</summary> ### [`v2.3.0`](https://code.forgejo.org/actions/cascading-pr/compare/v2.2.1...v2.3.0) [Compare Source](https://code.forgejo.org/actions/cascading-pr/compare/v2.2.1...v2.3.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9266 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-12 07:33:46 +02:00
Renovate Bot	3aadf346ff	Update dependency forgejo/release-notes-assistant to v1.4.1 (forgejo) (#9265 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| minor \| `v1.3.6` -> `v1.4.1` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.4.1`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.4.1) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.4.0...v1.4.1) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/release-notes-assistant--> - other - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/115): <!--number 115 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4z-->Update https://data.forgejo.org/actions/forgejo-release action to v2.7.3<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/114): <!--number 114 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9nb2Z1bXB0IHRvIHYwLjkuMQ==-->Update module mvdan.cc/gofumpt to v0.9.1<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/113): <!--number 113 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNw==-->Update dependency go to v1.24.7<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/112): <!--number 112 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9nb2Z1bXB0IHRvIHYwLjkuMA==-->Update module mvdan.cc/gofumpt to v0.9.0<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/110): <!--number 110 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3N0cmV0Y2hyL3Rlc3RpZnkgdG8gdjEuMTEuMA==-->Update module github.com/stretchr/testify to v1.11.0<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/109): <!--number 109 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuNC4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.4.0<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/108): <!--number 108 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM2LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.36.0<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/107): <!--number 107 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNg==-->Update dependency go to v1.24.6<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/106): <!--number 106 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4y-->Update https://data.forgejo.org/actions/forgejo-release action to v2.7.2<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/105): <!--number 105 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMy4x-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.1<!--description--> <!--end release-notes-assistant--> ### [`v1.4.0`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.4.0) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.6...v1.4.0) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/release-notes-assistant--> - features - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/104): <!--number 104 --><!--line 0 --><!--description ZmVhdDogc3VwcG9ydCBmZXRjaGluZyBmcm9tIHByaXZhdGUgcmVwb3NpdG9yaWVz-->feat: support fetching from private repositories<!--description--> - bug fixes - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/102): <!--number 102 --><!--line 0 --><!--description Zml4KHNlY3VyaXR5KTogcmVtb3ZlIHVzZXIgLyBwYXNzd29yZCBmcm9tIHRoZSBVUkw=-->fix(security): remove user / password from the URL<!--description--> - other - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/93): <!--number 93 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMy4w-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.0<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/103): <!--number 103 --><!--line 0 --><!--description Y2hvcmUoY2kpOiBkbyBub3QgcnVuIHRlc3RzIG9uIHJlbm92YXRlIGJyYW5jaGVz-->chore(ci): do not run tests on renovate branches<!--description--> - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/101): <!--number 101 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4x-->Update https://data.forgejo.org/actions/forgejo-release action to v2.7.1<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9265 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-12 07:33:03 +02:00
Gusted	b816bf9232	fix: ignore existence of commits for force pushes (#9262 ) - Because we wish to show the status of the old and new commit of a force push, ignore that the commit doesn't exist and return a commit with only its ID filled. This is enough to still show the CI status of this commit although the commit itself is no longer reachable. - Add unit test. - Add integration test. - Resolves forgejo/forgejo#9250 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9262 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-12 07:27:15 +02:00
Brook	60cab1bafd	fix: `[quota.default].TOTAL` config setting supports unit suffixes (#9252 ) Bring the code in line with the documentation that claims the `[quota.default].TOTAL` option supports unit suffixes. Resolves forgejo/forgejo#8996 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9252 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Brook <brook@noreply.codeberg.org> Co-committed-by: Brook <brook@noreply.codeberg.org>	2025-09-12 00:44:09 +02:00
BtbN	fd849bb9f2	Reject password reset attempts for OAuth2 users without a current password (#9060 ) Currently, if a user signed up via OAuth2 and then somehow gets their E-Mail account compromised, their Forgejo account can be taken over by requesting a password reset for their Forgejo account. This PR changes the logic so that a password reset request is denied for a user using OAuth2 if they do not already have a password set. Which should be the case for all users who only ever log in via their Auth-Provider. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9060 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-09-12 00:08:29 +02:00
Renovate Bot	ceb96734b7	Update github.com/go-ap/jsonld digest to 8480b0f (forgejo) (#9194 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9194 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-11 20:34:36 +02:00
zokki	8cb7c19bf4	feat(log): better parseable and configurable ssh-logs (#9056 ) To audit access to our forgejo-instance we currently need to enable debug ssh-logs. It turns out a single log become multiple events in a k8s/container setup. To have our log-collectors properly join these events, we would like to indent them similar to what some stacktraces look like. This PR would change ``` 2025/09/08 07:18:53 ...eb/routing/logger.go:102:func1() [I] Serv Results: IsWiki: %t DeployKeyID: %d KeyID: %d KeyName: %s UserName: %s UserID: %d OwnerName: %s RepoName: %s RepoID: %d ``` to ``` 2025/09/08 07:18:53 ...eb/routing/logger.go:102:func1() [I] Serv Results: IsWiki: %t DeployKeyID: %d KeyID: %d KeyName: %s UserName: %s UserID: %d OwnerName: %s RepoName: %s RepoID: %d ``` Furthermore to standardize user configuration of ssh-logs I have added `LOGGER_SSH_MODE` . It can be configured like router-logger. By doing so we can change the log-LEVEL to debug for ssh without changing other loggers. This would deprecate `ENABLE_SSH_LOG`. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9056): <!--number 9056 --><!--line 0 --><!--description ZmVhdChsb2cpOiBiZXR0ZXIgcGFyc2VhYmxlIGFuZCBjb25maWd1cmFibGUgc3NoLWxvZ3M=-->feat(log): better parseable and configurable ssh-logs<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9056 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-09-11 18:59:24 +02:00
Renovate Bot	a440e3ec15	Update dependency htmx.org to v2.0.7 (forgejo) (#9212 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9212 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-11 18:35:24 +02:00
pat-s	204ab32f82	chore(ui): improvements to tag label display (#9251 ) ref #9231 Removed the conditional inclusion of the `primary` class as this one is unneeded after the use of the dedicated class Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9251 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-09-11 17:29:49 +02:00
Brook	4e1d4caf98	fix: quotas double counting repo size when calculating size:all (#9234 ) Resolves forgejo/forgejo#7860 Reviewed-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9234 Co-authored-by: Brook <brook@noreply.codeberg.org> Co-committed-by: Brook <brook@noreply.codeberg.org>	2025-09-11 16:30:04 +02:00
0ko	62f2515138	fix(ui): improve signature box responsiveness (#8984 ) This PR improves the row/box with signature information used on commit and tag pages: [commit example](`096a03eb42`), [tag example](https://codeberg.org/forgejo/forgejo/releases/tag/v1.4.0-rc2). It improves padding consistency, mainly on mobile, and cleans up code a bit. Instead of relying on min-height the box now uses paddings so overflown text is never too close to borders. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8984 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-09-11 16:20:36 +02:00
Renovate Bot	f8c1617e25	Update dependency mermaid to v11.11.0 (forgejo) (#9246 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9246 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-11 15:01:28 +02:00
Renovate Bot	32ca0f5d63	Update dependency globals to v16.4.0 (forgejo) (#9245 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9245 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-11 07:02:00 +02:00
Earl Warren	597cfe3abf	i18n: update of translations from Codeberg Translate (#9108 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9108 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-09-11 06:53:02 +02:00
Codeberg Translate	601afedee0	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Anonymous <anonymous@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: D3fau4 <d3fau4@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: EssGeeEich <essgeeeich@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Fs00 <fs00@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Killercat103 <killercat103@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Laurent FAVOLE <lfavole@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Moonshadow <moonshadow@noreply.codeberg.org> Co-authored-by: N4ta <codeberg@n4ta.anonaddy.me> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: X1SystemError0X <x1systemerror0x@noreply.codeberg.org> Co-authored-by: anorprogrammer <anorprogrammer@noreply.codeberg.org> Co-authored-by: butterflyoffire <butterflyoffire@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: etherportly <etherportly@noreply.codeberg.org> Co-authored-by: ikks <ikks@noreply.codeberg.org> Co-authored-by: lnxgr <lnxgr@noreply.codeberg.org> Co-authored-by: m13o <m13o@noreply.codeberg.org> Co-authored-by: stanek <stanek@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: zaid1442011 <zaid1442011@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/kab/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uz/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-09-11 04:17:35 +00:00
Renovate Bot	9232f08ee3	Update module code.forgejo.org/forgejo/runner/v9 to v11 (forgejo) (#9218 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| code.forgejo.org/forgejo/runner/v9 \| `v9.1.1` -> `v11.0.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v11.0.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v9.1.1/v11.0.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9218 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-10 22:02:55 +02:00
Earl Warren	46bcf4efc0	chore: fix transient error in TestPatchStatus tests (take 2) (#9241 ) AssertExistsAndLoadBean has a side effect on its argument. When retrying in a loop, it must use the non modified argument, otherwise it is bound to return the same row as the first failure and render the retry useless. Refs forgejo/forgejo#9236 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9241 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-10 20:48:46 +02:00
Earl Warren	9420945daa	chore: fix transient error in TestPatchStatus tests (#9236 ) wait on all pull requests before checking their conflict status because there is no guarantee one will be dealt with before another Refs https://codeberg.org/forgejo/forgejo/issues/8221#issuecomment-6849601 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9236 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-10 18:07:15 +02:00
Renovate Bot	7f41b1d172	Update registry.redict.io/redict Docker tag to v7.3.5 (forgejo) (#9229 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| registry.redict.io/redict \| service \| patch \| `7.3.0-scratch` -> `7.3.5-scratch` \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9229 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-10 11:46:39 +02:00
kevinhikaruevans	8038d8b44d	fix: update action quick start url (#9211 ) Minor fix. I think this might've been an old link, but it was going to the incorrect page. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9211 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: kevinhikaruevans <kevinhikaruevans@noreply.codeberg.org> Co-committed-by: kevinhikaruevans <kevinhikaruevans@noreply.codeberg.org>	2025-09-10 10:44:19 +02:00
zokki	262a2253aa	fix(ui): make unicode escape work in wiki (#8923 ) Fixes #4118 - Unicode escape now works in wiki - edit and escape buttons are better placed - edit icon is now under the warning Before: https://codeberg.org/attachments/4414f0cb-776a-4e62-a3b5-99de0914bf26 After: https://codeberg.org/attachments/93aad13f-e36b-42f9-a827-7ff7259da581 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8923 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-09-10 08:10:23 +02:00
Renovate Bot	55f0feb874	Update module google.golang.org/protobuf to v1.36.9 (forgejo) (#9228 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) \| `v1.36.8` -> `v1.36.9` \| [![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fprotobuf/v1.36.9?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fprotobuf/v1.36.8/v1.36.9?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>protocolbuffers/protobuf-go (google.golang.org/protobuf)</summary> ### [`v1.36.9`](https://github.com/protocolbuffers/protobuf-go/releases/tag/v1.36.9) [Compare Source](https://github.com/protocolbuffers/protobuf-go/compare/v1.36.8...v1.36.9) Full Changelog: https://github.com/protocolbuffers/protobuf-go/compare/v1.36.8...v1.36.9 User-visible changes: [CL/699715](https://go-review.googlesource.com/c/protobuf/+/699715): cmd/protoc-gen-go: add test for "import option" directive [CL/699115](https://go-review.googlesource.com/c/protobuf/+/699115): internal/editionssupport: declare support for edition 2024 [CL/697595](https://go-review.googlesource.com/c/protobuf/+/697595): editions: Fix spelling mistake in panic message </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9228 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-10 07:27:11 +02:00
Renovate Bot	f0d4e898d7	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.3 (forgejo) (#9227 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.0.2` -> `v3.0.3` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.0.3`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.2...v3.0.3) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.2...v3.0.3) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9227 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-10 07:22:05 +02:00
Andrew Cassidy	252efbda5c	fix: LFS GC is never running because of a bug in the parsing of the INI file (#9202 ) After https://github.com/go-gitea/gitea/pull/22385 introduced LFS GC, it never worked due to a bug in the INI library: fields in structs embedded more than one level deep are not populated from the INI file. This PR fixes the issue by replacing the multi-level embedded struct with a single-level struct for parsing the cron.gc_lfs configuration. Added a new test for retrieving cron settings to demonstrate the bug in the INI package. --- Fix #9048 by cherrypicking the fix from Gitea Gitea PR: https://github.com/go-gitea/gitea/pull/35198 Confirmed to work on my own instance, I now see the cron schedule for gc_lfs listed in the site admin menu where it was empty before <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9202): <!--number 9202 --><!--line 0 --><!--description TEZTIEdDIGlzIG5ldmVyIHJ1bm5pbmcgYmVjYXVzZSBvZiBhIGJ1ZyBpbiB0aGUgcGFyc2luZyBvZiB0aGUgSU5JIGZpbGU=-->LFS GC is never running because of a bug in the parsing of the INI file<!--description--> <!--end release-notes-assistant--> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9202 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Andrew Cassidy <drewcassidy@me.com> Co-committed-by: Andrew Cassidy <drewcassidy@me.com>	2025-09-09 22:32:49 +02:00
Michael Kriese	c697de9517	fix: package cleanup rules are not applied when there are more than 200 packages (depends on `MAX_RESPONSE_ITEMS`) (#9219 ) Before it has only processed the newest 200 (or 50 for default `MAX_RESPONSE_ITEMS: 50`) versions. After it processes all versions. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9219): <!--number 9219 --><!--line 0 --><!--description cGFja2FnZSBjbGVhbnVwIHJ1bGVzIGFyZSBub3QgYXBwbGllZCB3aGVuIHRoZXJlIGFyZSBtb3JlIHRoYW4gMjAwIHBhY2thZ2VzIChkZXBlbmRzIG9uIGBNQVhfUkVTUE9OU0VfSVRFTVNgKQ==-->package cleanup rules are not applied when there are more than 200 packages (depends on `MAX_RESPONSE_ITEMS`)<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9219 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-09-09 17:39:35 +02:00
Michael Kriese	7217965542	chore(renovate): don't use go proxy for forgejo-code (#9217 ) - closes #9215 - `f30b1f04c6` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9217 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-09-09 11:25:09 +02:00
iQ	2aa73a8fad	refactored for lazy evaluation of MIGRATION_PACKAGES and GO_TEST_PACKAGES (#9208 ) solves: 9204 ## About the PR In the original Makefile, the variables `GO_TEST_PACKAGES` and `MIGRATION_PACKAGES` have been evaluated always and for every target. See issue 9204 This Change moves the evaluation of these Variables into a dedicated new make-target. This target then is added as dependency only to the other targets, that require/access these variables at all, so targets that don't require the variables don't do an evaluation of them. ### Note on the new Makefile Dependencies I'm using Order-Only Prerequisites in the `Makefile`because, its good habit to only impose the least force necessary. As we're only going for `.PHONY` targets here, See: https://www.gnu.org/software/make/manual/make.html#Prerequisite-Types - We need to ensure that the variable computation targets (compute-go-test-packages, compute-migration-packages) run before the targets that use those variables. This is purely about execution ordering - we need the variables to be defined before they're used. - We don't need the timestamp-based rebuild logic that comes with normal dependencies. Normal dependencies say "if the dependency is newer than the target, rebuild the target." But we don't want the variable computation to trigger rebuilds - we only want it to ensure the variables are available. - It's about minimal constraint - only imposing the constraints you actually need. Order-only prerequisites express our intent more precisely: we want sequencing without timestamp dependency. This makes the Makefile more semantically correct and future-proof. Even though in this specific case (with PHONY targets) the practical difference is minimal, using order-only prerequisites is better engineering practice because it accurately represents the relationship we want between these targets. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - [x] I tested the results of the affected targets and some other targets before and after the change: - [x] `make help` -- before: slow, called git and downloaded -- after: fast, direct result - [x] `make clean` -- before: slow, called git and downloaded -- after: fast, direct result - [x] `make clean-all ` -- before: slow, called git and downloaded -- after: fast, direct result - [x] `make frontend` -- before: called git and downloaded -- after: fast, frontend build succeeded - [x] `make go-check` -- before: called git and downloaded -- after: faster, go check succeeded - [x] `make generate-backend` -- before: called git and downloaded -- after: fast, backend generated successfully - [x] `make static-executable` -- before: called git and downloaded -- after: fast, executable generated - [x] `make build` -- before: called git and downloaded -- after: fast, build succeeded - [x] 'test-backend' -- before: succeeded -- after succeeded. - [x] 'test' -- before: succeeded -- after succeeded. - [x] `migrations.individual.mysql.test' -- before: succeeded -- after succeeded. - [x] 'test' -- before: succeeded -- after succeeded. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: iQ <iq@in6-addr.net> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9208 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: iQ <iq@noreply.codeberg.org> Co-committed-by: iQ <iq@noreply.codeberg.org>	2025-09-09 09:48:20 +02:00
deadkittens	6d5bdce9dd	fix(api): set default pagination and Link header for `repoListTags` (#9201 ) - Set default pagination, so the API allows cases like `?limit=1`. - Set the Link header when there are more items, but not shown because of pagination. - Resolves forgejo/forgejo#8828 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9201 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: deadkittens <montage_inches78@icloud.com> Co-committed-by: deadkittens <montage_inches78@icloud.com>	2025-09-09 02:24:07 +02:00
Renovate Bot	1d8fb306d7	Update dependency wrap-ansi to v9.0.2 (forgejo) (#9213 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9213 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-09 02:12:12 +02:00
Earl Warren	39cf3f6868	chore: build-release must close the cascading pull request (#9205 ) otherwise it will linger until it is removed and will not get updated when the end-to-end tests changes. That was manually done weekly before but it is best done automatically. ## Testing - After it is merged - Wait 24h - Verify the https://codeberg.org/forgejo-integration/forgejo/actions?workflow=build-release.yml passes - Verify the corresponding pull request similar to https://code.forgejo.org/forgejo/end-to-end/pulls/922 is closed Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9205 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-08 14:58:38 +02:00
Mathieu Fenniak	512b3fad5b	feat: support Markdown editor bold & italic keyboard shortcuts (#9110 ) Ctrl/Cmd-B & Ctrl/Cmd-I are implemented in the markdown editor to allow bolding & italicizing of text. The shortcut defers to the toolbar for implementation, and so should have the exact same behavior as clicking B or I. Fixes #7549 (Partially addresses #3604) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9110 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-08 11:44:21 +02:00
Brook Miles	9354efceb1	fix: quota evaluation rules not working properly (#9033 ) This patch is mainly intended to fix forgejo/forgejo#7721, and to fix forgejo/forgejo#9019. It also changes the evaluation of 0 limits to prevent all writes, instead of allowing one write and then failing on subsequent writes after the limit has been exceeded. This matches the expectation of the existing tests, and I believe it will better match the expectations of users. Tests have been updated accordingly where necessary, and some additional test coverage added. The fixes in this PR depend on each other in order for the quota system to function correctly, so I'm submitting them as a single PR instead of individually. ## Test Cases ### Quota subjects not covered by their parent subjects Before enabling quotas, create a test user and test repository for that user. Enable quotas, and set a default total to some large value. (Do not use unit suffixes forgejo/forgejo#8996) ```ini [quota] ENABLED = true [quota.default] TOTAL = 1073741824 ``` With the test user, navigate to "Storage overview" and verify that the quota group "Global quota" is the only group listed, containing the rule "Default", and displays the configured limit, and that the limit has not been exceeded (eg. `42 MiB / 1 GiB`). The default quota rule has the subject `size:all`, so any write action should be allowed. #### Attempt to create a new repository. Expected result: Repository is created. Actual result: Error 413, You have exhausted your quota. #### Attempt to create a new file in the existing repository. Expected result: File is created. Actual result: Error 413, You have exhausted your quota. #### Create an issue on the test repository, and attempt to upload an image to the issue. Expected result: Image is uploaded. Actual Result: Quota exceeded. Displays error message: `JavaScript promise rejection: can't access property "submitted", oi[ji.uuid] is undefined. Open browser console to see more details.` ### Unlimited quota rules incorrectly allow all writes With quotas enabled, [Use the API](https://forgejo.org/docs/latest/admin/advanced/quota/#advanced-usage-via-api) to create a quota group containing a single rule with a subject of `sizelfs`, and a limit of `-1` (Unlimited). Add the test user to this group. ```json { "name": "git-lfs-unlimited", "rules": [ { "name": "git-lfs-unlimited", "limit": -1, "subjects": ["sizelfs"] } ] } ``` With the test user, navigate to "Storage overview" and verify that the user has been added to this group, that it is the only group the user is assigned to, and that the rule limit displays as "Unlimited". The user should only have the ability to write to Git LFS storage, all other writes should be denied. #### Attempt to create a new repository. Expected result: Error 413, You have exhausted your quota. Actual result: Repository is created. #### Attempt to create a new file in the test repository. Expected result: Error 413, You have exhausted your quota. Actual result: File is created. #### Create an issue on the test repository, and attempt to upload an image to the issue. Expected Result: Quota exceeded. Actual result: Image is uploaded. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9033 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Brook Miles <brook@noreply.codeberg.org> Co-committed-by: Brook Miles <brook@noreply.codeberg.org>	2025-09-08 01:05:55 +02:00
Renovate Bot	bafdd4a56e	Update dependency eslint-plugin-unicorn to v61 (forgejo) (#9198 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-07 14:55:32 +02:00
Renovate Bot	b602d58161	Update postcss (forgejo) (#9197 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9197 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-07 13:19:41 +02:00
0ko	2cf5eb65a3	feat(ui): improve subscriptions screen filters (#9192 ) Refreshed the screen at `/notifications/subscriptions` a little. General improvements: - Use the new switch style Notable mobile usability improvements: - Add a minimum gap between the Subscriptions/Watching switch and the Notifications button - Add a minimum h gap between the All/Open/Closed switch and the dropdown filters - Let the second row overflow instead of breaking the viewport Preview: - https://codeberg.org/attachments/1e5d2d2e-9f36-4117-a2bc-dd237aba0091 - https://codeberg.org/attachments/8c337739-3c8a-424a-ada8-20718800fe3b - https://codeberg.org/attachments/d72027a1-5fe1-440c-9112-3a7fe7020b39 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9192 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-09-07 05:52:19 +02:00
Robert Wolff	c6a2b7e0a6	feat(ui): render ordered checkbox lists with numbers (#9184 ) Addresses #6332. This allows ``` 1. [ ] task1 2. [ ] task2 ``` to be rendered with numbers. It also fixes a little alignment issue between items from unordered checkbox and other lists. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9184 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-09-06 16:23:06 +02:00
Bojidar Marinov	81d90e1b0d	fix: Fix invisible iframes with RENDER_CONTENT_MODE=iframe (#8378 ) `b01dce2a6e` added support for `RENDER_CONTENT_MODE=iframe` which used `onload="this.height=this.contentWindow.document.documentElement.scrollHeight"` to set the height of the iframe to the height of the embedded document. Unfortunately, while this might have worked at some point, with `sandbox="allow-scripts"`, the document embedded in the iframe is counted as a cross-origin document, and browsers prevent any access to cross-origin documents. [The solution](https://stackoverflow.com/questions/8223239/how-to-get-height-of-iframe-cross-domain) is to instead use `window.postMessage` to pass the height from the embedded document back to the embedding page. Would appreciate a review of the privacy implications of this change—I feel it's probably "okay", but I'm not convinced my analysis is perfect. Resolves #7586 Manual test: 1. Add the following snippet to your `app.ini`: ```ini [markup.html] ENABLED = true FILE_EXTENSIONS = .html RENDER_COMMAND = cat RENDER_CONTENT_MODE = iframe NEED_POSTPROCESS = false ``` 2. Create a file in a repository with the name `test.html` and with the following contents: ```html <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"/> </head> <body> Hi from iframe! Here is a random number: <script>document.write(Math.random())</script>. </body> </html> ``` 3. Go to the file. 4. Observe the HTML is rendered and that the height is not larger than it needs to be (38 pixels). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8378 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com> Co-committed-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com>	2025-09-06 16:23:01 +02:00
Renovate Bot	c7f35f00b8	Update https://data.forgejo.org/infrastructure/next-digest action to v1.2.2 (forgejo) (#9189 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/infrastructure/next-digest](https://data.forgejo.org/infrastructure/next-digest) \| action \| patch \| `v1.2.0` -> `v1.2.2` \| --- ### Release Notes <details> <summary>infrastructure/next-digest (https://data.forgejo.org/infrastructure/next-digest)</summary> ### [`v1.2.2`](https://data.forgejo.org/infrastructure/next-digest/compare/v1.2.1...v1.2.2) [Compare Source](https://data.forgejo.org/infrastructure/next-digest/compare/v1.2.1...v1.2.2) ### [`v1.2.1`](https://data.forgejo.org/infrastructure/next-digest/compare/v1.2.0...v1.2.1) [Compare Source](https://data.forgejo.org/infrastructure/next-digest/compare/v1.2.0...v1.2.1) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9189 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-06 15:33:00 +02:00
Robert Wolff	6dd18d3f58	fix(ui): unescape file names in commit hash links (#9182 ) ### What? - `eeb243c339/path/to/file #.txt` instead of `eeb243c339/path/to/file%20%23.txt`, see [example on v13.next](https://v13.next.forgejo.org/mahlzahn/test/issues/3) ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9182 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-09-06 13:19:43 +02:00
dawe	ac96bd1788	feat: extend options in bug-reports regarding reproducibility on the Forgejo test instance (#9178 ) ## Checklist ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Fixes #9107 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9178 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: dawe <dawedawe@posteo.de> Co-committed-by: dawe <dawedawe@posteo.de>	2025-09-06 13:17:50 +02:00
forgejo-release-manager	eaa83f52f2	chore(release-notes): Forgejo v12.0.3 (#9187 ) https://codeberg.org/forgejo/forgejo/milestone/26356 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9187 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-09-06 08:49:02 +02:00
forgejo-release-manager	a806e63863	chore(release-notes): Forgejo v11.0.5 (#9186 ) https://codeberg.org/forgejo/forgejo/milestone/26353 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9186 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-09-06 08:48:22 +02:00
Mathieu Fenniak	e311aa7cae	fix: action view 'Re-run all jobs' leaves UI on the last attempt, not the new attempt (#9172 ) In #9017, the ability to view older logs of an action run was added. However, the 'Re-run all jobs' button was not updated in any way. When viewing the logs for attempt 1 and clicking 'Re-run all jobs', the UI would continue to show the logs for attempt 1. Before #9017 the behavior would have begun to view the logs from the re-run operation. There are two commits in this PR: - Update the `Rerun` view handler so that it redirects the user to the next attempt number for the job. - The next attempt number isn't actually persisted to the DB until the rerun is picked up from a worker. By pure coincidence, viewing an out-of-range attempt number was fully functional because it also happened to be viewing a job that wasn't picked up by a worker, and fell into those code paths. However, as there were no automated tests around this codepath and it felt fragile, new tests have been added around the template render, backend data fetch, and frontend UI component, to ensure it continues to work in this corner-case in the future. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. (_Note_: This is a fix for an unreleased regression, no need for release notes.) - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9172 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-05 19:31:22 +02:00
Earl Warren	a13ba09a8e	chore: cascading pr action input is close, not close-merge (#9175 ) Without this argument, the action leaves pull requests open when running end-to-end tests and they need to be manually cleaned up. ## Testing After this pull request is merged, o - open a test pull requst - set the `run-end-to-end-test` label - after it completes, close the pull request - verify the pull requests opened in https://code.forgejo.org/actions/setup-forgejo and https://code.forgejo.org/forgejo/end-to-end were closed Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9175 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-05 08:59:21 +02:00
Mathieu Fenniak	a082555c04	fix: prevent initial 'blank' display of action logs view, remove unnecessary API calls (#9099 ) When you access Actions logs, there is a momentary render of a partially blank screen such as this: ![actions-log-blank](/attachments/6cd7d97d-edf6-453b-8fe4-2ed7f4339ac4) This is caused by the `RepoActionView` Vue component having no data. It then performs a fetch to two APIs in parallel (shown here as `/0` and `/artifacts`) to retrieve the steps and artifacts for the action run, and then it renders the page. And then, even if the job is complete and the user hasn't yet interacted to expand any logs, it performs the same API calls a second time. ![actions-logs-network-completed-task](/attachments/58044542-eb89-453b-a3f6-d02c9079db44) This PR fixes both problems by: - Injecting the initial data for the Action's steps & Artifacts into the initial page render, and using that data into the `RepoActionView` to serve as its initial data load. - No longer unconditionally starting a second invocation of `loadJob` 1 second later, as the initial data can be used to determine whether the job is still running and requires an interval refresh. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests WIP - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9099): <!--number 9099 --><!--line 0 --><!--description cHJldmVudCBpbml0aWFsICdibGFuaycgZGlzcGxheSBvZiBhY3Rpb24gbG9ncyB2aWV3LCByZW1vdmUgdW5uZWNlc3NhcnkgQVBJIGNhbGxz-->prevent initial 'blank' display of action logs view, remove unnecessary API calls<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9099 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-05 06:55:32 +02:00
Daniel Laguna	e0d6705b71	chore: add missing gotestsum to nix dev shell (#9169 ) This PR adds `gotestsum` to the nix dev shell. Running the tests without having`gotestsum` systemwide installed works now. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9169 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Daniel Laguna <labellson@fastmail.com> Co-committed-by: Daniel Laguna <labellson@fastmail.com>	2025-09-05 01:24:45 +02:00
Nirmal Kumar R	46c3814a4a	test(e2e): Fix and refactor repo-settings flaky test (#9036 ) Refactor: --- Hooks should be placed before the tests such that it is obvious that you read what is set in hooks before reading the tests. Here, test.afterEach is placed at the top of test describe. Uncomment the Mobile Safari browser, it has to work and is working. Fixes: --- On the afterEach hook, we were deleting the rules and waiting for the page load, with await page.waitForLoadState('domcontentloaded') which behaves unreliably or being flaky on multiple runs. In order to fix this, we can simply go for the selector count expectation to be 0 that is not present. In this case, the delete button should not be present after the rule is successfully deleted. Also, avoid using page.getByText instead use page.locator with selectors, because getByText will lead to problems when you have the text present elsewhere in the same page. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9036 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Nirmal Kumar R <mysticmode@yahoo.com> Co-committed-by: Nirmal Kumar R <mysticmode@yahoo.com>	2025-09-05 00:25:23 +02:00
Lucas Schwiderski	82728d903d	fix(ui): show participants in mention suggestions in pr review (#8363 ) Closes: #5035 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8363 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-09-04 23:29:34 +02:00
Robert Wolff	18705e2fe0	feat(ui): improve multiline file preview and anchor detection (#9145 ) This PR solves some little annoyance for me by allowing line ranges for inline file previews and source links to be of the form `L1-9` instead of necessarily `L1-L9`. For links to source files it allows also `n1-9` or `n1-n9` in agreement with already allowed single line anchors `n1`. ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9145 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-09-04 22:51:22 +02:00
Mathieu Fenniak	8e813902c5	feat: ability to view previous logs for Actions runs that have been retried (#9017 ) Adds a new dropdown to the job logs, visible only when a job has been retried at least once: ![action-with-dropdown](/attachments/9669b47e-2239-4f07-b823-2759dd99a4fb) When an older run attempt from the dropdown is selected, displays the older run's logs: ![historical-action-logs](/attachments/8b737386-63fb-4f3f-b5b5-ac38c62ed648) Context on implementation & design decisions: - It is important that when a URL from an Action's log is shared, the person on the other side sees the exact same logs that were being viewed. For this reason, all log views are automatically redirected to a fully-qualified URL (including the run, job, and attempt), so that when they are shared there is a guarantee of stability in the viewed logs. - Individual jobs can be rerun any number of times independent of other jobs in the same workflow. This means there isn't a "set" of related jobs that were executed at the same time, and this led me to remove the display of current status of jobs on the left-hand side of the view. There isn't a logical set of job statuses to display here. Fixes #1043. Based upon @gmem's original work in #1416. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/9017): <!--number 9017 --><!--line 0 --><!--description YWJpbGl0eSB0byB2aWV3IHByZXZpb3VzIGxvZ3MgZm9yIEFjdGlvbnMgcnVucyB0aGF0IGhhdmUgYmVlbiByZXRyaWVk-->ability to view previous logs for Actions runs that have been retried<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9017 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-09-04 22:46:22 +02:00
Gusted	b8906423df	fix: do better parsing of file modes (#9161 ) - No longer hardcode the file modes we expect, parse them as numbers and do bitmask tricks that Git does so we allow a more variety of _weird_ file modes that can happen in the wild. - Ref: https://codeberg.org/forgejo/forgejo/pulls/8900#issuecomment-6429175 - Resolves Codeberg/Community#2111 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9161 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-09-04 21:58:12 +02:00
Renovate Bot	cee204b5a5	Update dependency vue to v3.5.21 (forgejo) (#8991 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8991 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 15:43:57 +02:00
Renovate Bot	39581232a1	Update dependency dayjs to v1.11.18 (forgejo) (#9159 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9159 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 15:06:59 +02:00
Renovate Bot	055bd9181b	Update module github.com/go-chi/chi/v5 to v5.2.3 (forgejo) (#9163 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9163 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 15:05:36 +02:00
Renovate Bot	985b77f137	Update module github.com/ulikunitz/xz/cmd/gxz to v0.5.15 (forgejo) (#9164 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9164 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 13:35:01 +02:00
Renovate Bot	f66b2eeef8	Update dependency mermaid to v11.10.1 (forgejo) (#9160 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [mermaid](https://github.com/mermaid-js/mermaid) \| [`11.10.0` -> `11.10.1`](https://renovatebot.com/diffs/npm/mermaid/11.10.0/11.10.1) \| [![age](https://developer.mend.io/api/mc/badges/age/npm/mermaid/11.10.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/mermaid/11.10.0/11.10.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>mermaid-js/mermaid (mermaid)</summary> ### [`v11.10.1`](https://github.com/mermaid-js/mermaid/releases/tag/mermaid%4011.10.1) [Compare Source](https://github.com/mermaid-js/mermaid/compare/mermaid@11.10.0...mermaid@11.10.1) ##### Patch Changes - [#6886](https://github.com/mermaid-js/mermaid/pull/6886) [`e0b45c2`](`e0b45c2d2b`) Thanks [@darshanr0107](https://github.com/darshanr0107)! - fix: Handle arrows correctly when auto number is enabled </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9160 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 08:31:04 +02:00
Earl Warren	0e25815b1f	fix: Actions log view stops refreshing after the displayed job is finished, even if other jobs are still running (#9158 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9158 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-09-04 08:25:54 +02:00
Quentin BETTOUM	676fb7e0a7	chore: fix a few typos in the documentation (#9134 ) Hello, just a few typos Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9134 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Quentin BETTOUM <quentin@bettoum.fr> Co-committed-by: Quentin BETTOUM <quentin@bettoum.fr>	2025-09-04 01:53:40 +02:00
Renovate Bot	648b6a52ea	Update dependency go to v1.24.7 (forgejo) (#9156 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.24.6` -> `1.24.7` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9156 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 01:50:26 +02:00
Renovate Bot	03bf9c982b	Update module github.com/ulikunitz/xz to v0.5.15 [SECURITY] (forgejo) (#9150 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9150 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 00:43:58 +02:00
Renovate Bot	bc3227c9ff	Update dependency mermaid to v11.10.0 [SECURITY] (forgejo) (#9151 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9151 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-04 00:43:43 +02:00
Mathieu Fenniak	49a28ba554	add TestActionsViewViewPost to unit test Done change	2025-09-03 15:57:41 -06:00
Mathieu Fenniak	cb17e7542c	Convert anonymous structs in ViewResponse into named structs for unit testing	2025-09-03 15:20:55 -06:00
Mathieu Fenniak	13142acf60	fix: refresh Action Log view until entire workflow run is completed	2025-09-03 15:18:15 -06:00
Renovate Bot	7af04391a3	Update https://data.forgejo.org/infrastructure/next-digest action to v1.2.0 (forgejo) (#9157 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/infrastructure/next-digest](https://data.forgejo.org/infrastructure/next-digest) \| action \| minor \| `v1.1.0` -> `v1.2.0` \| --- ### Release Notes <details> <summary>infrastructure/next-digest (https://data.forgejo.org/infrastructure/next-digest)</summary> ### [`v1.2.0`](https://data.forgejo.org/infrastructure/next-digest/compare/v1.1.0...v1.2.0) [Compare Source](https://data.forgejo.org/infrastructure/next-digest/compare/v1.1.0...v1.2.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9157 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-09-03 22:25:08 +02:00
Earl Warren	36875e1859	chore: fix renovate.json format error (#9148 ) ``` INFO: Repository has invalid config (repository=forgejo/forgejo) "error": { "validationSource": "renovate.json", "validationError": "Invalid JSON (parsing failed)", "validationMessage": "Syntax error near ],\n ", "message": "config-validation", "stack": "Error: config-validation\n at checkForRepoConfigError (/usr/local/renovate/lib/workers/repository/init/merge.ts:173:17)\n at mergeRenovateConfig (/usr/local/renovate/lib/workers/repository/init/merge.ts:213:3)\n at getRepoConfig (/usr/local/renovate/lib/workers/repository/init/config.ts:14:12)\n at initRepo (/usr/local/renovate/lib/workers/repository/init/index.ts:58:12)\n at Object.renovateRepository (/usr/local/renovate/lib/workers/repository/index.ts:70:14)\n at attributes.repository (/usr/local/renovate/lib/workers/global/index.ts:184:11)\n at start (/usr/local/renovate/lib/workers/global/index.ts:169:7)\n at /usr/local/renovate/lib/renovate.ts:19:22" } ``` Refs https://codeberg.org/forgejo/forgejo/actions/runs/100552#jobstep-2-101 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9148 Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-09-03 21:42:56 +02:00
zokki	4247c37300	fix(api): deactivate issue api for disabled or external issue-tracker (#8829 ) - When the issue unit is disabled for a repository, don't allow issue related APIs. - Added integration tests. - Resolves #8408 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8829 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-09-03 16:13:40 +02:00
Antonin Delpeuch	8f4ebab023	tests: increase `checkAccessibility` timeout to 2s (#9137 ) Because the flakiness of this check seems to be also present in Firefox, this is an attempt at reducing the flakiness, as an alternative to #9118. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9137 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-09-02 16:08:58 +02:00
charles25565	cba500459f	fix: casing of URL for Pagure migration page (#9127 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9127 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: charles25565 <c4a@monocles.eu> Co-committed-by: charles25565 <c4a@monocles.eu>	2025-09-02 09:50:42 +02:00
Jordan Atwood	654c02a8dd	chore: Refactor global buttons init This commit rewrites `initGlobalButtons()` to remove jQuery usage.	2025-09-01 15:00:12 -07:00
zokki	9162c82150	fix: preserved 'Custom access' even after no permissions (#8943 ) fixes #5382 Co-authored-by: Otto <otto@codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8943 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-09-01 15:19:17 +02:00
patdyn	9a423c0e67	Fix migration failing when importing either issues or PRs but not the other (#8892 ) Related to https://codeberg.org/Codeberg/Community/issues/1944 * Allowed the githubdownloaderv3 to know whether issues and, or PRs are requested to migrate * Used this information to decide to filter for "/pulls/" or "/issues" * Or not to filter at all if issues == true && prs == true * Added isolated test for the downloader and for the uploader * Created a new test_repo in github.com/forgejo and set it up properly together with @Gusted * Updated github_downloader_test with the new URLs and test data from the repo * Recorded the API calls for local testing * Added a minimal gitbucket test (which uses the github downloader under the hood) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8892 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: patdyn <patdyn@noreply.codeberg.org> Co-committed-by: patdyn <patdyn@noreply.codeberg.org>	2025-09-01 14:05:10 +02:00
Maxim Slipenko	ed3b70cbb9	feat: allow any README for `.profile` (#8798 ) closes #1624 Co-authored-by: Maxim Slipenko <maks1ms@altlinux.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8798 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Maxim Slipenko <maks1ms@noreply.codeberg.org> Co-committed-by: Maxim Slipenko <maks1ms@noreply.codeberg.org>	2025-09-01 13:58:00 +02:00
dawe	a87153b089	fix(ui): clear fields when canceling adding ssh key (#8990 ) - Add javascript to clear fields upon clicking the cancel button inside the panel for adding new SSH keys. - Add E2E test. - Resolves #8915 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8990 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: dawe <dawedawe@posteo.de> Co-committed-by: dawe <dawedawe@posteo.de>	2025-09-01 09:24:42 +02:00
forgejo-release-manager	bd59fa4df3	chore(release-notes): Forgejo v11.0.4 (#9105 ) https://codeberg.org/forgejo/forgejo/milestone/22043 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9105 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-08-31 14:48:38 +02:00
forgejo-release-manager	6ae943758f	chore(release-notes): Forgejo v12.0.2 (#9104 ) https://codeberg.org/forgejo/forgejo/milestone/22489 Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9104 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-08-31 14:48:32 +02:00
0ko	af7066de64	chore(i18n): migrate migration descriptions to json (#9041 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8987 * migrate strings, get rid of the `repo.` prefix * simplify template and test Followup to https://codeberg.org/forgejo/forgejo/pulls/8736#issuecomment-6801385 * restore lost translations Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9041 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-31 08:19:19 +02:00
0ko	9b54852aad	merge commit: i18n: update of translations from Codeberg Translate (#9013 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9013 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-31 07:23:10 +02:00
Codeberg Translate	436402a91e	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: EifionLlwyd <eifionllwyd@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: bespinas <bespinas@noreply.codeberg.org> Co-authored-by: chlorine <chlorine@noreply.codeberg.org> Co-authored-by: ikks <ikks@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: oatbiscuits <oatbiscuits@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: zaid1442011 <zaid1442011@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-08-31 04:51:49 +00:00
Mathieu Fenniak	5596cd8d7a	fix: very long commit messages cause pushed commits to fail to display on the action feed on MySQL (#9098 ) When adding "user pushed to ..." and "user synced commits to ..." messages to the activity feed, the `actionNotifier` currently records the entire commit message into the `action.content` field, but when displaying the commit in the activity feed only the first line of the message is displayed. This change tweaks the JSON `Message` field to be abbreviated using the `abbreviatedComment` function, which will include only the first 200 characters of the first line of the commit message. This will reduce wasted storage in the `action` table to persist duplicated messages that aren't fully displayed in the UI anyway. Fixes #8447, which is an error that occurs in this method due to the 64K character limit in `TEXT` fields in MySQL and the possibility of syncing FEED_MAX_COMMIT_NUM (default 5) long commit messages and exceeding this limit. Automated testing is bolted onto existing tests. I've cloned the entire structures before mutating them to ensure the mutations don't affect the webhook notifier. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9098 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-30 22:23:43 +02:00
0ko	654b6bf041	fix(i18n/en): update a few source strings (#9092 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/9064 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9092 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-30 19:50:03 +02:00
0ko	18cd9b5efa	feat(ui): implement hover for switch (#9057 ) Followup to https://codeberg.org/forgejo/forgejo/issues/6459 Preview: - https://codeberg.org/attachments/cc12a227-c6eb-4ab5-91ad-0ef967f88c7a - https://codeberg.org/attachments/a13c8cb6-f654-430c-a6c6-990a2a7f0911 Changes: - hovered items now have background painted with transition - added E2E testing: mostly for CSS logic introduced in this PR but also a bit for existing functionality - variable --color-active is now consistently non-transparent: it already was in forgejo-dark but is now in all themes - some code improvements in switch.css Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9057 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-30 18:54:11 +02:00
Earl Warren	9ed225b100	fix: delete old auth token upon replacing primary email (#9076 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9076 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-30 13:16:37 +02:00
Earl Warren	48e29ff861	fix: ensure GetUserByEmail only considers validated emails (#9075 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9075 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:16:03 +02:00
Earl Warren	1b13fda06b	fix: email comments are removed from email addresses (#9074 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9074 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-30 13:15:30 +02:00
Earl Warren	39607fca1d	fix: consistently enforce 2FA on OpenID 2.0 (#9073 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9073 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:14:54 +02:00
Earl Warren	b982fde455	fix: only redirect to a new owner (organization or user) if the user has permissions to view the new owner (#9072 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9072 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-30 13:14:06 +02:00
Earl Warren	608f9ee8e6	fix: validate CSRF on non-safe methods (#9071 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9071 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:13:29 +02:00
Earl Warren	c064ce4ad0	fix: require password login for creation of new token (#9070 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9070 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:12:54 +02:00
Earl Warren	829062808a	fix: use credentials helpers for git clones (#9067 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9067 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:12:11 +02:00
Earl Warren	3bf52efe63	fix: don't allow credentials in migrate/push mirror URL (#9064 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9064 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-30 13:11:15 +02:00
Gusted	d2a6e2362a	chore: add delete old auth token unit test Also make use of subtests to make reading this test a tad easier.	2025-08-30 09:54:38 +02:00
Gusted	5ce1b564dc	fix: delete old auth token upon replacing primary email	2025-08-30 09:54:32 +02:00
Gusted	7287495064	chore: add user by email unit tests	2025-08-30 09:50:29 +02:00
Gusted	e746cc80a4	fix: generate correct SQL query for `GetUserByEmail` xorm ignores any boolean values that are set in the struct given via `Get`: `7654b7b749/internal/statements/statement.go (L384-L390)`	2025-08-30 09:50:23 +02:00
famfo	a511e37572	chore: add email blocklist unit test	2025-08-30 09:45:19 +02:00
famfo	cf1fda81f6	fix: properly validate email containing comments Originally reported by jomo (https://jomo.tv). A malicious actor could register with an email address containing a comment, for example "attacker@evil (comment@broken)". This commit fixes this issue by only operating on normalized email addresses. Signed-off-by: famfo <famfo@famfo.xyz>	2025-08-30 09:45:14 +02:00
Gusted	90e974cd24	fix: do 2FA on OpenID connect	2025-08-30 09:41:20 +02:00
Gusted	1fc1f24cad	chore: add repo redirect unit test	2025-08-30 09:37:38 +02:00
Gusted	ca7fcacddc	fix: do permission check for repository redirect	2025-08-30 09:37:34 +02:00
Gusted	50837322cc	chore: add unit test	2025-08-30 09:37:30 +02:00
Gusted	4019b99217	fix: do visibility check for user redirect lookup	2025-08-30 09:37:25 +02:00
Gusted	5fdd6ce9a6	chore: add integration test Verify that PUT/DELETE requests return invalid CSRF token when no CSRF token is given with the request.	2025-08-30 09:32:49 +02:00
Gusted	4dfb3facb4	fix: validate CSRF on non-safe methods - CSRF has to be validated for any request that can change the state, in practice this means any HTTP request where the method isn't GET/HEAD/OPTIONS. - The code only considered POST to be a state-changing request. - Forgejo has several PUT/DELETE (that changes state) routes for which no CSRF was being validated. - Change the code to validate CSRF for all non-"safe" methods.	2025-08-30 09:32:43 +02:00
Gusted	7bf7c0cb61	chore: add integration test Add a test that verifies that you cannot create new tokens via basic OAuth2 and basic access token.	2025-08-30 09:27:33 +02:00
Gusted	85e839e21d	fix: require password login for creation of new token - The creation of new API tokens for users via the API is guarded behind a extra check. This extra makes sure the user is authorized via the reverse proxy method (if enabled) or via basic authorization. - For, what seems to me, historical reasons the basic authorization also handles logging in via the API token. - This results in a API token (with `write:user` scope) or OAuth2 token being able to create a new API token with escalated privileges. - Add a new condition to this check to ensure the user logged in via password. - Change error to better indicate what went wrong.	2025-08-30 09:27:28 +02:00
Gusted	f7fb1226a4	chore: unbreak existing tests Because the user:password is no longer automatically set as upstream origin, we have to set it manually if we want push to work.	2025-08-30 08:52:34 +02:00
Gusted	9fb75a141d	chore: add migration credentials integration test	2025-08-30 08:52:29 +02:00
Gusted	1c66c4e11a	chore: add extra shell escape tests	2025-08-30 08:52:25 +02:00
Gusted	900ea0ce5a	chore: add clone credential unit test Verify it still works and the askpass file implementation is employed by Git.	2025-08-30 08:52:20 +02:00
Gusted	f7f7d086e4	fix: use credentials helpers for git clones - When cloning with credentials is used, don't set the credentials in the URL and pass that to Git, instead use Git credential helper to pass the credential. This avoids the credentials to be leaked through the process list.	2025-08-30 08:52:15 +02:00
Gusted	374a29fd35	chore: add integration test Demonstrate that the it's not possible to migrate or add a push mirror from a URL that contains credentials.	2025-08-30 08:07:26 +02:00
Gusted	9f955b300b	fix: don't allow credentials in migrate/push mirror URL Do not allow credentials to be present in the URLs that are provided for migrations and push mirrors. They have to be given via the dedicated input fields. Give a error when this happens. There's nothing wrong with trying have the backend "correct" this, but would be a larger patch than necessary in the context of a security fix. This can be done in public.	2025-08-30 08:07:23 +02:00
Gusted	d00200dc3e	chore: add integration test Demonstrate that the credential isn't shown in the flash message	2025-08-30 08:07:21 +02:00
Gergely Nagy	145dea59bb	fix: sanitize OriginalURL before displaying it While `repo.OriginalURL` is supposed to be sanitized, with username and passwords removed, it appears that is not always the case, and sometimes we may encounter original URLs that aren't sanitized. While that is possibly a historical artifact, we should still treat it with care. As such, before displaying `repo.OriginalURL` as an info flash when syncing a pull repository, sanitize the URL first, to be on the safe side. Signed-off-by: Gergely Nagy <forgejo@gergo.csillger.hu>	2025-08-30 08:07:17 +02:00
BtbN	9828aca733	feat: github compatability for removing label from issue API (#8831 ) On GitHub, `DELETE /repos/{owner}/{repo}/issues/{index}/labels/{id}` takes the label name, not id: https://docs.github.com/en/rest/issues/labels?apiVersion=2022-11-28#remove-a-label-from-an-issue This breaks workflows and actions that interact with labels and delete them. It also makes the API quite difficult to use, always having to query the ID first before deleting a label from an issue, potentially with two API calls, because it could be a repo or org label. For backwards compatibility, if no label with the given name is found, and the name converts to an int without error, it'll still be looked up by ID. The API on GitHub also does not return 204, but 200, with the label it just removed from the issue as content. So this is returned when `application/vnd.github+json` is set in the `Accept` request header. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8831 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-08-30 03:29:23 +02:00
Mathieu Fenniak	86ce1477c1	test(e2e): improve reliability of workflow list dynamic refresh test (#9059 ) The "refresh does not break interacting with open drop-downs" is flaky. It attempts to verify that a refresh of the "Actions" list page does not occur when the user is currently navigating the dropdowns on the page, as htmx would replace their dropdowns mid-action. It does this by clicking on the dropdowns, verifying the dropdown text is visible, simulating a refresh, and verifying that the dropdown text is still visible. Example failure log: ``` 1) [chromium] › tests/e2e/actions.test.e2e.ts:173:3 › workflow list dynamic refresh › refresh does not break interacting with open drop-downs Error: Timed out 3000ms waiting for expect(locator).toBeVisible() Locator: getByText('Waiting') Expected: visible Received: hidden Call log: - Expect "toBeVisible" with timeout 3000ms - waiting for getByText('Waiting') 7 × locator resolved to <a class="item" href="?workflow=test-dispatch.yml&actor=0&status=5">↵⇆⇆⇆⇆⇆⇆⇆Waiting↵⇆⇆⇆⇆⇆⇆</a> - unexpected value "hidden" 194 \| await expect(page.getByText('Failure')).toBeVisible(); 195 \| await simulatePollingInterval(page); > 196 \| await expect(page.getByText('Waiting')).toBeVisible(); \| ^ 197 \| await expect(page.getByText('Failure')).toBeVisible(); 198 \| 199 \| // Actor dropdown at /workspace/forgejo/forgejo/tests/e2e/actions.test.e2e.ts:196:45 ``` The dropdown list stops refreshes if there are any `[aria-expanded=true]` elements on the page: `ab6ea6a743/templates/repo/actions/list.tmpl (L31-L33)` But fomantic doesn't set the `aria-expanded` attribute immediately on mouseup; it delays for up to 100ms: `f8a332c2e6/web_src/js/modules/fomantic/dropdown.js (L241-L246)` The easiest fix is to align the test's expectations with the underlying code, which is to verify that the `aria-expanded=true` element is present in the test before proceeding with the simulated refresh. Before this change, this test would fail as frequently as 10-out-of-10 in local runs, but usually more around 70% (albeit closer to 0% in a playwright ui). After this change, I've executed the test with zero failures in 100 back-to-back runs with `npx playwright test ./tests/e2e/actions.test.e2e.ts --project chromium --repeat-each 100`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9059 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-30 01:38:38 +02:00
Mathieu Fenniak	11218ac43c	fix(ui): don't allow comment boxes to stretch outside diff boundries on small device UI (#9052 ) The context menu of the comment box was not always available on a mobile-sized device, because it would escape its container, overlap other elements, and be unable to be clicked. To address this, I've made the comment box constrained to the width of the diff box. This allows Playwright to interact with the element without ambiguity of the click targets, avoiding any "intercepts pointer events". Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9052 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-29 21:32:50 +02:00
0ko	ab6ea6a743	fix(ui): restore code search types (#9053 ) Fix regression of https://codeberg.org/forgejo/forgejo/pulls/8736 Preview Before: https://codeberg.org/attachments/d46743e7-beb3-404e-a103-ea8068760171 After: https://codeberg.org/attachments/0d9dcdb7-7b4f-4bbc-8776-67fd364e26a9 Reported-by: Antonin Delpeuch <antonin@delpeuch.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9053 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org>	2025-08-29 18:56:54 +02:00
Mathieu Fenniak	6ac0ab3549	test(e2e): improve resiliency of accessibilityCheck (#9051 ) In the helper method `accessibilityCheck`, accessibility checks are performed on the page including measurements of contrast between elements, and the theme is transitioned from the `light` to `dark` theme and back between two checks (with a hard-coded 100ms wait). Experimentally this is proven to result in false-positive failures of the accessibilityCheck. I believe the cause of these failures are CSS transitions that are occurring either between the theme transition, or from operations that have occurred before the `accessibilityCheck` method is called. For example, one test `Markdown insert link` pops open the `Add a link` dialog box which has a CSS transition applied as the background is greyed out. To fix this, I've wrapped both accessibility scans within `accessibilityCheck` in a `expect(...).toPass({ timeout: 1000 })` to allow Playwright to retry the assertions over the next second. 1 second exceeds the time that I've observed of any CSS transition in the project (max found was 0.3 seconds). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9051 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-29 07:33:59 +02:00
Antonin Delpeuch	9d896028bd	tests: Disable `Create review from commit` flaky e2e test (#9049 ) This test fails on unrelated changes (see for instance https://codeberg.org/forgejo/forgejo/actions/runs/98626/jobs/3 or #9047). This defeats the purpose of such a test and hinders development for all Forgejo contributors, so I am proposing to disable it. I have notified PR #7155 (which introduced it) about the need to fix it. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9049 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-08-28 12:50:23 +02:00
Ellen Εμιλία Άννα Zscheile	f447661345	feat(build): improve lint-locale-usage further (#8736 ) Print out a list of all unused msgids Handle Go files that make calls to translation. Handle `models/unit/unit.go`, which stores msgids in `$Unit.NameKey` Handle .locale.Tr in templates Handle simple dynamically constructed `Tr("msgid-prefix." + SomeFunctionCall())`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8736 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Εμιλία Άννα Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Εμιλία Άννα Zscheile <fogti+devel@ytrizja.de>	2025-08-27 23:47:34 +02:00
Beowulf	e101a8e2dd	fix: hide edit button on tag releases, improve ghost user display, fix tag signature banner (#7703 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7703 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-27 22:33:17 +02:00
Lucas Schwiderski	20f6639f11	Hide edit button on tag releases When the release is "just" a tag, there is no release object to edit. Closes: #3589	2025-08-27 19:29:12 +02:00
Lucas Schwiderski	33b9bf20bc	Consolidate tag release user display with issue comments Increase consistency of rendering the ghost user, by re-using the same template. Also add a tooltip to the shared template, to explain the ghost user. Closes: #5630	2025-08-27 19:29:11 +02:00
Lucas Schwiderski	dfe64e53d0	Fix verified logo used with unverified signature	2025-08-27 19:29:09 +02:00
Lucas Schwiderski	6ad7d5759d	Fix release signature border Closes: #7322	2025-08-27 19:29:08 +02:00
Earl Warren	558b79aa9c	fix: use run ID instead of run Index in artifacts download web views (#9023 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9023 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org>	2025-08-27 18:21:13 +02:00
Earl Warren	b047a60a09	fix!: use run ID instead of run Index in artifacts download web views - the run ID used to download artifacts is absolute (ID) instead of being relative to the repository (Index) for compatibility with the url built and returned as `artifact-url` by the the upload-artifact@v4 action. - this is a breaking change because URLs to download artifacts previous saved/bookmarked and not yet expired expired are no longer working, they need to be looked up again by visiting the job web page. - add unit tests for getRunByID(). - RepoActionView.test.js verifies the download URL is built using the run ID. - lAdd integration tests to verify the RunID is set as expected in the template used by RepoActionView.vue. Refs https://code.forgejo.org/forgejo/runner/issues/187	2025-08-27 08:53:20 +02:00
Earl Warren	f7b0eb16c8	chore: refactor the web UI tests for the actions run - create tests/integration/actions_view_test.go - extract TestActionsArtifactDeletion from actions_route_test.go - extract tests misplaced in - api_actions_artifact_test.go - api_actions_artifact_v4_test.go - add a tests for the /{owner}/{repo}/actions/runs/{run_index}/artifacts because it is useful for debugging	2025-08-27 08:34:19 +02:00
Earl Warren	014bf73db8	chore: prefix all Actions related integration tests with TestActions (#9035 ) So they can conveniently be run all together with: `make 'test-sqlite#TestActions'` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9035 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-27 08:32:47 +02:00
Earl Warren	3d4536286b	fix: use mocked HTTP response for pagure migration (#9039 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9039 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-27 08:23:20 +02:00
psii	a8490e6637	Markdown: generate unique per comment HTML IDs for footnotes and headers (#8880 ) This PR fixes the duplicate HTML ID issue (#8778) that can occur when rendering an issue page. An issue page contains multiple renderings of Markdown elements (the issue description and issue comments). When there is more than one Markdown rendering that uses footnotes we have an ID collision because the footnote ID count starts anew for each rendering. This PR adds a `Metas["scope"]` entry to the `RenderContext` and sets it to "comment-{index}" when rendering Markdown for a comment. `Metas["scope"]` gets used as suffix during ID generation. Fixes #8778. ## Additional Notes - ID collision also happens if there are multiple header elements with the same ID. It does not seem to impact users because there are no links referencing headers. However, to err on the safe side, this PR also adds scope to the header IDs. - `Metas["scope"]` might be useful for other Markdown renderings beside comments, e.g. multiple Markdown renderings are possible on Wiki pages. - We apply `Metas["scope"]` as suffix instead of prefix because there are several places in the code that expect `user-content-` to be the ID's prefix. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [X] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [X] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8880 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: psii <psii@posteo.de> Co-committed-by: psii <psii@posteo.de>	2025-08-27 08:14:52 +02:00
0ko	cd08265406	ui: refactor display of review threads on pr view (#8138 ) * refactored to untangle comment headers of different styles of comments from each other * fixed misalignments * improved consistency * fixed missing avatar rounding * made reactions aligned with content * fixed text in the "Outdated" label overflowing into the toggle icon Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8138 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-27 06:02:56 +02:00
Ruud van Asseldonk	995dba14ec	feat: search in the `docs` directory for issue and pull request templates (#8863 ) For pull request templates, Forgejo currently does not look in the `docs` directory, but [GitHub does](https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/creating-a-pull-request-template-for-your-repository#adding-a-pull-request-template). By making Forgejo also look there, it becomes possible to have the same repository work on both sites, without the need for vendor-specific paths. There was duplication in the list of accepted file paths. On the one hand it’s nice for greppability that they are all spelled out, but it does mean adding 6 variants, I thought it would be more maintainable to deduplicate the Cartesian product. I added one fully spelled out path in the comment to still maintain some greppability. Resolves forgejo/forgejo#8284 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8863 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ruud van Asseldonk <dev@veniogames.com> Co-committed-by: Ruud van Asseldonk <dev@veniogames.com>	2025-08-26 22:08:10 +02:00
Gusted	9d8a740c6a	fix: use mocked HTTP server for authorized migration Skip it, as the mocked HTTP responses does not look sufficient to run this test.	2025-08-26 21:57:25 +02:00
Gusted	3f7f977834	fix: generate response via mock server	2025-08-26 21:47:09 +02:00
Gusted	6c506fc2f0	fix: Use mocked HTTP request	2025-08-26 21:45:14 +02:00
Leni Kadali	0606f05707	chore: Use common SetCaptchaData in link account (#8592 ) Fixes [#7990](https://codeberg.org/forgejo/forgejo/issues/7990) This PR upstreams commit [2bf3621c99](`2bf3621c99`) which fixes `SetCaptcha` not being called when it is typically used in other places. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8592 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Leni Kadali <lenikadali@noreply.codeberg.org> Co-committed-by: Leni Kadali <lenikadali@noreply.codeberg.org>	2025-08-26 20:30:18 +02:00
Earl Warren	7d3fcde71c	chore: collect coverage using GOCOVERDIR (#9004 ) - run all unit tests and integration tests in sequence in the same job - upload the coverage data as an artifact to the run - only run via dispatch because it is very long - arguments are used to select which unit or integration tests to focus on Refs https://go.dev/blog/integration-test-coverage ### Testing - Run this workflow via workflow_dispatch (see https://codeberg.org/forgejo-integration/forgejo/actions/runs/11889) - Download the coverage information (see https://codeberg.org/forgejo-integration/forgejo/actions/runs/11889/artifacts/coverage) - Download the coverage information from an end-to-end cascade test (see https://code.forgejo.org/forgejo/end-to-end/actions/runs/3961) - Unzip them in a the `coverage/data` sub-directory at the root of the Forgejo source tree ```sh $ ls coverage/data actions coverage-actions.zip coverage-federation.zip coverage-tests.zip coverage-upgrade.zip federation tests upgrade ``` - Display the coverage percentage ``` $ make coverage-show-percentage ... forgejo.org/services/wiki/wiki_path.go:96: WebPathToGitPath 81.8% forgejo.org/services/wiki/wiki_path.go:113: GitPathToWebPath 90.0% forgejo.org/services/wiki/wiki_path.go:129: WebPathToUserTitle 71.4% forgejo.org/services/wiki/wiki_path.go:140: WebPathToURLPath 100.0% forgejo.org/services/wiki/wiki_path.go:144: WebPathFromRequest 100.0% forgejo.org/services/wiki/wiki_path.go:151: UserTitleToWebPath 80.0% forgejo.org/services/wiki/wiki_path.go:163: ToWikiPageMetaData 100.0% forgejo.org/tests/integration/api_repo_file_helpers.go:18: createFileInBranch 100.0% ... total: (statements) 63.9% ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9004 Reviewed-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-26 10:10:46 +02:00
Earl Warren	ff03a4eff6	chore: make migration tests relative to the root of the repository (#8999 ) This is a noop refactor. It is on the path of each integration tests and this is why it needs no additional testing. It makes it possible to run the migration tests using `go test` (which runs from the root) instead of building a test binary with `go test -c` that runs in the target directory, which is what the current tests are doing. This will be put to use to extract coverage in a unified way. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8999 Reviewed-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-26 07:36:00 +02:00
BtbN	cf0e697d13	fix: Actions workflows triggered by comments or labels to pull requests may access secrets (#9003 ) This avoids issue_comment events on pull requests to get that flag set and subsequently not get access to secrets. ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9003): <!--number 9003 --><!--line 0 --><!--description QWN0aW9ucyB3b3JrZmxvd3MgdHJpZ2dlcmVkIGJ5IGNvbW1lbnRzIG9yIGxhYmVscyB0byBwdWxsIHJlcXVlc3RzIG1heSBhY2Nlc3Mgc2VjcmV0cw==-->Actions workflows triggered by comments or labels to pull requests may access secrets<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9003 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-08-25 20:11:45 +02:00
Earl Warren	c258003be9	feat: artifacts can be downloaded using their id instead of their name (#8957 ) The web endpoint `/{owner}/{repo}/actions/runs/{run_id}/artifacts/{artifact_name_or_id}` can be used with either the artifact name used when it is uploaded or the instance wide unique number of the artifact, if it is not found. For instance: `/root/myrepo/actions/run/3/artifacts/my_artifact_name` or `/root/myrepo/actions/run/3/artifacts/42` The `upload-artifact@v4` output value `artifact-url` is built in this way and is now a valid URL to access the artifact. Refs https://codeberg.org/forgejo/forgejo/issues/6147 Refs https://code.forgejo.org/forgejo/runner/issues/187 Refs https://code.forgejo.org/forgejo/upload-artifact/src/tag/v4#outputs ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8957): <!--number 8957 --><!--line 0 --><!--description YXJ0aWZhY3RzIGNhbiBiZSBkb3dubG9hZGVkIHVzaW5nIHRoZWlyIGlkIGluc3RlYWQgb2YgdGhlaXIgbmFtZQ==-->artifacts can be downloaded using their id instead of their name<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8957 Reviewed-by: Mathieu Fenniak <mfenniak@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-25 15:51:26 +02:00
Gusted	8bfb9d210f	fix: parse extra weird tree mode value (#8900 ) - It also seems possible `040775` to be a valid tree mode. - Ref: https://codeberg.org/Codeberg/Community/issues/2086 - As this is 'officially' not possible I cannot make a small reproducer without importing a existing repository. ## Testing 1. Import https://codeberg.org/GeekRuthie/Dist-Zilla-PluginBundle-Author-GEEKRUTH via the migration tool (either git or github type) 2. Observe that there's no error when viewing the migrated repository. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8900 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-24 16:17:30 +02:00
Earl Warren	0a8d7826a4	feat: improve custom emojis (#8855 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8855 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-24 16:16:46 +02:00
Renovate Bot	0447117b6b	Update dependency webpack to v5.101.3 (forgejo) (#8947 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [webpack](https://github.com/webpack/webpack) \| [`5.101.1` -> `5.101.3`](https://renovatebot.com/diffs/npm/webpack/5.101.1/5.101.3) \| [![age](https://developer.mend.io/api/mc/badges/age/npm/webpack/5.101.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/webpack/5.101.1/5.101.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>webpack/webpack (webpack)</summary> ### [`v5.101.3`](https://github.com/webpack/webpack/releases/tag/v5.101.3) [Compare Source](https://github.com/webpack/webpack/compare/v5.101.2...v5.101.3) ##### Fixes - Fixed resolve execution order issue from extra await in async modules - Avoid empty block for unused statement - Collect only specific expressions for destructuring assignment ### [`v5.101.2`](https://github.com/webpack/webpack/releases/tag/v5.101.2) [Compare Source](https://github.com/webpack/webpack/compare/v5.101.1...v5.101.2) ##### Fixes - Fixed syntax error when comment is on the last line - Handle var declaration for `createRequire` - Distinguish free variable and tagged variable </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8947 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-24 12:00:16 +02:00
0ko	3f58c4de33	chore(i18n): clean up orphans (#9011 ) Orphan strings are the ones left in non-en locale files after being removed from `en-US`. Weblate removes them automatically from JSONs but not from INIs. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9011 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-24 10:55:02 +02:00
0ko	b17d81c1e9	merge commit: i18n: update of translations from Codeberg Translate (#8977 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8977 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-24 10:53:10 +02:00
Codeberg Translate	1dacb0b1be	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Languages add-on <noreply-addon-languages@weblate.org> Co-authored-by: Priit Jõerüüt <jrtcdbrg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: brano <brano@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sk/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-08-24 08:22:25 +00:00
Shiny Nematoda	ecda48307d	fix(code-search): fix broken pagination. (#9000 ) Missing parameters for: - repo: path and mode - user: mode - explore: mode resolves forgejo/forgejo!8997 and codeberg/community!2098 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/9000): <!--number 9000 --><!--line 0 --><!--description Zml4KGNvZGUtc2VhcmNoKTogZml4IGJyb2tlbiBwYWdpbmF0aW9uLg==-->fix(code-search): fix broken pagination.<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/9000 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-08-23 13:06:41 +02:00
0ko	f58f84562a	fix(ui): use correct string for pagure description (#8987 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8513 As we already got translated strings w/ incorrect key, I prefer to not touch them and teach the UI a workaround. Maybe later all related INI strings will be migrated to JSON without the prefix, too. Preview Before: https://codeberg.org/forgejo/forgejo/attachments/8e603325-bb2b-4e32-a9bc-f1fa20b6c40b After: https://codeberg.org/forgejo/forgejo/attachments/38e8afeb-5214-4085-bd6c-3ba8ff3894cd Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8987 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-08-22 12:00:08 +02:00
Renovate Bot	82fabb3df0	Update module google.golang.org/protobuf to v1.36.8 (forgejo) (#8992 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) \| `v1.36.7` -> `v1.36.8` \| [![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fprotobuf/v1.36.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fprotobuf/v1.36.7/v1.36.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>protocolbuffers/protobuf-go (google.golang.org/protobuf)</summary> ### [`v1.36.8`](https://github.com/protocolbuffers/protobuf-go/releases/tag/v1.36.8) [Compare Source](https://github.com/protocolbuffers/protobuf-go/compare/v1.36.7...v1.36.8) Maintenance: [CL/696316](https://go-review.googlesource.com/c/protobuf/+/696316): all: set Go language version to Go 1.23 [CL/696315](https://go-review.googlesource.com/c/protobuf/+/696315): types: regenerate using latest protobuf v32 release </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8992 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-22 07:14:25 +02:00
Earl Warren	f15cffb737	chore: depguard gopkg.in/yaml.v3 (#8980 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8980 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-21 14:17:43 +02:00
Renovate Bot	a8029b7282	Update module code.forgejo.org/forgejo/runner/v9 to v9.1.1 (forgejo) (#8975 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| code.forgejo.org/forgejo/runner/v9 \| `v9.0.3` -> `v9.1.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v9.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v9.0.3/v9.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS43Ni4wIiwidXBkYXRlZEluVmVyIjoiNDEuNzYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8975 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-21 09:04:32 +02:00
Earl Warren	2d011ae6bc	i18n: update of translations from Codeberg Translate (#8891 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8891 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-21 07:20:40 +02:00
Codeberg Translate	db3bdbdbc1	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Laurent FAVOLE <lfavole@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: fr0zi <fr0zi@noreply.codeberg.org> Co-authored-by: iago <iago@noreply.codeberg.org> Co-authored-by: oscarotero <oscarotero@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-08-21 04:37:12 +00:00
dawe	ccc0b16251	chore: update value of allowTemplateLiterals (#8953 ) Before ``` $ make lint-frontend npx eslint --color --max-warnings=0 [@stylistic/eslint-plugin]: You are using deprecated value(boolean) for "allowTemplateLiterals" in "quotes", please use "always"/"never" instead. ``` After ``` $ make lint-frontend npx eslint --color --max-warnings=0 ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8953 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: dawe <dawe@noreply.codeberg.org> Co-committed-by: dawe <dawe@noreply.codeberg.org>	2025-08-21 02:22:45 +02:00
Earl Warren	af5df243d4	chore: replace gopkg.in/yaml.v3 with go.yaml.in/yaml/v3 (#8956 ) - gopkg.in/yaml.v3 is archived and unmaintained - go.yaml.in/yaml/v3 is a compatible fork under the umbrella of https://yaml.org/ ### Tests There is no need for more tests than already provided: it is like an upgrade to a minor version, only from a fork. I browsed the changes and there are some bug fixes. They all seem reasonably minimal. It is not one of those forks that went crazy with breaking changes 😁 And there is a non zero chance that [a bug that matters to Forgejo Actions](https://github.com/yaml/go-yaml/issues/76) is fixed there. It is rare and can wait but it did happen on Codeberg. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8956 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-20 15:31:12 +02:00
Renovate Bot	58c27fda89	Update gomock monorepo to v0.6.0 (forgejo) (#8948 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8948 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-19 20:41:07 +02:00
Earl Warren	b0b6bd3658	fix: a corrupted Forgejo Actions scheduled workflow is disabled (#8942 ) The following errors are specific to the scheduled workflow being handled. They do not imply the remaining scheduled workflows cannot be scheduled successfully. - Failure to create a scheduled task which is most likely caused by an invalid YAML file. - Failure to parse the scheduling specs which can be caused by a number of formating errors. Instead of returning on error, the corrupted workflow is disabled. Also display more informative error messages so that the failed workflow can be identified from the logged error. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8942): <!--number 8942 --><!--line 0 --><!--description YSBjb3JydXB0ZWQgRm9yZ2VqbyBBY3Rpb25zIHNjaGVkdWxlZCB3b3JrZmxvdyBpcyBkaXNhYmxlZA==-->a corrupted Forgejo Actions scheduled workflow is disabled<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8942 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-18 22:45:10 +02:00
Earl Warren	f6bc8f7cd7	chore: do not impose merge requirements to cascading pull requests (#8936 ) they are not meant to be merged and only exist for the purpose of verifying the CI passes should a pull request be merged in the Forgejo runner (or any other dependency for which such a cascading actions was defined). Refs https://code.forgejo.org/forgejo/runner/issues/881 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8936 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-18 15:20:40 +02:00
Hailey Somerville	cb4ffd29cf	fix: allow Actions tokens to access repos readable by signed in users (#8889 ) This is an alternate take on https://codeberg.org/forgejo/forgejo/pulls/8808 which allows Actions tokens to access other repos which are readable by by signed in users. In practise this means public repos belonging to public or limited owners. This PR is split into two commits to aid review of the security-sensitive changes I've made: * The first commit is a refactor _which is not intended to change behaviour_. It extracts the permission logic for Actions tokens from the githttp handler and moves it to `repo_permission.go` alongside the permission logic for regular users. The new function, `GetActionRepoPermission` returns a `Permission` object just like `GetUserRepoPermission`. Only code unit access is currently allowed in the interest of keeping this commit from changing any access logic. * The second commit is the broadening of access: this commit changes the logic in `GetActionRepoPermission` to give actions tokens access to repos readable by signed in users. cc @earl-warren ref https://codeberg.org/forgejo/forgejo/issues/5877 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8889): <!--number 8889 --><!--line 0 --><!--description YWxsb3cgQWN0aW9ucyB0b2tlbnMgdG8gYWNjZXNzIHJlcG9zIHJlYWRhYmxlIGJ5IHNpZ25lZCBpbiB1c2Vycw==-->allow Actions tokens to access repos readable by signed in users<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8889 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Hailey Somerville <hailey@hails.org> Co-committed-by: Hailey Somerville <hailey@hails.org>	2025-08-18 14:40:07 +02:00
Renovate Bot	99f93beada	Update renovate to v41.76.0 (forgejo) (#8925 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-18 07:00:12 +02:00
Renovate Bot	d0b301aae6	Lock file maintenance (forgejo) (#8927 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS42MS4wIiwidXBkYXRlZEluVmVyIjoiNDEuNjEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8927 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-18 06:58:49 +02:00
sim	b9bd821fb2	feat: enable H2C for the HTTP server (#8861 ) This PR adds HTTP/2 Cleartext (H2C) support for the HTTP server, this allows for reverse proxies to use HTTP/2 instead. ## Test 1. Start Forgejo. 2. Run `curl --http2-prior-knowledge http://localhost:3000`. 3. Observe it doesn't return a error. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8861 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: sim <git@sgougeon.fr> Co-committed-by: sim <git@sgougeon.fr>	2025-08-16 21:00:20 +02:00
Mathieu Fenniak	f9a6657248	fix: minio initialization can freeze indefinitely if misconfigured (#8897 ) Fixes #8893 by using a 30 second initialization timeout on the minio storage. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8897 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-15 21:03:51 +02:00
Renovate Bot	3382cd31a9	Update x/tools to v0.36.0 (forgejo) (#8910 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-15 14:38:06 +02:00
jank1619	011e876f5c	fix: use correct format for pull request references (#8890 ) Use `!` instead of `#` for references in the sidebar of pull requests. This is useful when the repository uses a external issue tracker to avoid it being redirected to the external issue tracker. Resolves forgejo/forgejo#8713 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8890 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: jank1619 <jank1619@noreply.codeberg.org> Co-committed-by: jank1619 <jank1619@noreply.codeberg.org>	2025-08-15 14:18:00 +02:00
Mathieu Fenniak	b0c453902b	fix: comment starting with a mermaid block displays error in activity feed (#8896 ) In the event a comment starts with a fenced code block, don't display a blank block (or a mermaid error) in the activity feed. Instead, do not display an abbreviated comment text at all, and just display the issue/PR title. ![image](/attachments/6d45bcef-4cf8-40c6-9ed4-ee52332fa299) Handles one more case identified in #8781, posted by @skedastically in https://codeberg.org/forgejo/forgejo/issues/8781#issuecomment-6274957. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8896 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-15 11:31:23 +02:00
Renovate Bot	079e67da48	Update https://data.forgejo.org/actions/setup-forgejo action to v3.0.2 (forgejo) (#8902 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| patch \| `v3.0.1` -> `v3.0.2` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.0.2`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.1...v3.0.2) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.1...v3.0.2) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS42MS4wIiwidXBkYXRlZEluVmVyIjoiNDEuNjEuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8902 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-15 11:25:35 +02:00
zokki	d6838462b8	feat: Global 2FA enforcement (#8753 ) resolves #8549 This PR add a config to enforce 2FA for the whole Forgejo instance. It can be configured to `none`, `admin` or `all`. A user who is required to enable 2FA is like a disabled user. He can only see the `/user/settings/security`-Page to enable 2FA, this should be similar to a user which needs to change his password. Also api and git-commands are not allowed. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. I will do it, if the general idea of this PR is a good feature. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Security features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8753): <!--number 8753 --><!--line 0 --><!--description R2xvYmFsIDJGQSBlbmZvcmNlbWVudA==-->Global 2FA enforcement<!--description--> <!--end release-notes-assistant--> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8753 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-08-15 10:56:45 +02:00
Earl Warren	ff99331225	chore(docs): add instructions to run S3 tests locally (#8895 ) Also fix the existing instructions that were missing a `-e` flag. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8895 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-15 08:54:09 +02:00
Renovate Bot	b361ce7733	Update module github.com/mattn/go-sqlite3 to v1.14.32 (forgejo) (#8903 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8903 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-15 05:27:41 +02:00
Renovate Bot	a9950f2fbe	Update dependency webpack to v5.101.1 (forgejo) (#8878 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8878 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-14 10:18:29 +02:00
Earl Warren	d259ce6c48	i18n: update of translations from Codeberg Translate (#8826 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8826 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-14 08:03:35 +02:00
Codeberg Translate	aa99751314	i18n: update of translations from Codeberg Translate Co-authored-by: Artiman <artiman@noreply.codeberg.org> Co-authored-by: Atalanttore <atalanttore@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kenneth Bruen <kenny@kbruen.ro> Co-authored-by: Priit Jõerüüt <jrtcdbrg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vaibhav Sunder <vaibhavswire@gmail.com> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: adriand <adriand@noreply.codeberg.org> Co-authored-by: alextecplayz <alextecplayz@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fa/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/si/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-08-14 05:29:43 +00:00
Gusted	748da95b48	fix: compare week as numbers and not as strings (#8882 ) The repository contributors graph received the stats for each author for each week, these weeks are stored as unix milis values, `Object.entries` converted these values to strings and `sort()` would thus sort them as strings - this worked without a problem for most repository. If a repository has commits from before 'Sun Sep 9 03:46:40 AM CEST 2001', it meant that the weeks when those commits were made would be sorted towards the end because "1000000000" > "999999999" (when compared as strings) and would thus be silently cut from the data. This edge-case was seen by the curl repository (https://mastodon.social/@bagder/115018271785548165) Sort them as numbers to avoid this problem, it being stored as strings is otherwise not a problem. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8882 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-13 22:28:12 +02:00
Earl Warren	c922ac5f38	fix: de-duplicate Forgejo Actions job names when needed (#8864 ) The status of two jobs by the same name shadow each other, they need to be distinct. If two jobs by the same name are found, they are made distinct by adding a `-<occurence number>` suffix. Resolves forgejo/forgejo#8648 For a given workflow, `jobparser.Parse` will generate one "single" (as opposed to a workflow that can be interpreted to generate multiple jobs) workflow for each job and then insert them (marshalled as yaml) in the database. `e3bfa5133f/models/actions/run.go (L237-L260)` The name associated with this single workflow is what the runner will receive and it is what will be used to associate the job status with a commit. Resolves forgejo/forgejo#8648 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8864): <!--number 8864 --><!--line 0 --><!--description ZGUtZHVwbGljYXRlIEZvcmdlam8gQWN0aW9ucyBqb2IgbmFtZXMgd2hlbiBuZWVkZWQ=-->de-duplicate Forgejo Actions job names when needed<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8864 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-13 06:52:44 +02:00
Squel	4abf9e9db4	feat: show CI status on force-pushes (#8655 ) If a change is part of a force-push and the commit(s) have a CI status, this will now be shown after the hashes. `interactiveBorder` has been lowered as it was possible to activate the hover state for both commits. It would be unreasonable to test this within Playwright and thus this needs to be manually tested. On a pull request page that contains a force-push you will notice: a) the (de)activation area for force-pushes is now smaller, and; b) it is not possible to activate the hover state/popup for both commits. ExecuteTemplate function from @gusted https://codeberg.org/forgejo/forgejo/pulls/5168 https://codeberg.org/forgejo/forgejo/pulls/2884 Close #4932 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8655 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Squel <squeljur+git@gmail.com> Co-committed-by: Squel <squeljur+git@gmail.com>	2025-08-13 03:29:36 +02:00
Renovate Bot	bff92cb5a3	Update module github.com/urfave/cli/v3 to v3.4.1 (forgejo) (#8879 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8879 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-13 03:19:13 +02:00
zokki	fb1095d141	fix: redirect from /{username}/{reponame}/pulls/{index} to issue if index is a issue (#8874 ) Redirection from issue to pull is already working, but from pull to issue is not working. This is now fixed. Resolves forgejo/forgejo#7386 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8874 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-08-12 20:50:46 +02:00
Renovate Bot	e3bfa5133f	Update module github.com/urfave/cli/v3 to v3.3.9 (forgejo) (#8870 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-12 04:42:14 +02:00
Mathieu Fenniak	da9bedc967	test: fix failure in relative-time tests in US/Canada DST-aware timezones (#8858 ) When running relative-time tests on my local system, the tests fail. I've verified this failure does occur when the local system time is configured to use these timezones: - America/Edmonton - America/Boise - America/Goose Bay But the tests pass if the local system time is in these timezones: - America/Phoenix (has no DST) - Europe/Berlin (different DST rules) "7 months ago" (the existing test case output) is accurate considering the offsets used in the test, but internally dayjs calculates it to be 7.99 months when the system TZ is in the "success" TZs, and 8.0001 months in the "failure" TZs. I believe the source of the difference is that... - dayjs takes timestamps with offsets, applies the offset, and then treats them as local times... - Summer Time ended on Oct 27 (the "now" date under test) in Europe, but did not end until November 3rd in the US/Canada... - In Europe there would have been one hour less between those local timestamps than there would be in US/Canada. My proposed fix is to perform the diff calculations after converting the timestamps to UTC values. This provides consistent successful output regardless of the local system TZ. As the tests are sensitive to system timezone, I've modified the CI build to run the frontend tests twice with two different TZ environment variables. This is a pretty coarse way to exercise the problem and I'm open to improvements. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8858 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-12 02:47:58 +02:00
iamyaash	4eac7adcc9	fix(ui): Make 'Clear milestone' work with HTMX (#8266 ) Disable the 'clear milestone' button in the issue sidebar when no milestone is set and update this state after a milestone is set or cleared. Fixes #7949 Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8266 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: iamyaash <iamyaash@outlook.com> Co-committed-by: iamyaash <iamyaash@outlook.com>	2025-08-11 20:10:10 +02:00
Akashdeep Dhar	b8f15e4ea0	Add support for migrating from Pagure (#8513 ) Add support for migrating Pagure repositories (including metadata) to Forgejo via the migration tool. One 'discrepancy' with migration from other forges is how privates issues are handled, they are migrated when a API token is set for the migration, in that case users are advised to set their repositories visibility to private to avoid leaking such private issues. Co-authored-by: Akashdeep Dhar <akashdeep.dhar@gmail.com> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8513 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-committed-by: Akashdeep Dhar <akashdeep.dhar@gmail.com>	2025-08-11 16:56:26 +02:00
Earl Warren	68295b2e00	fix: prevent pull requests from being merged multiple times (#8842 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8842 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-11 14:39:56 +02:00
BtbN	fa5011b988	fix: CreateDeclarativeRepo should allow merging PRs when PRs are enabled	2025-08-11 12:55:25 +02:00
BtbN	0b552407fe	fix: prevent pull requests from being merged multiple times	2025-08-11 12:55:25 +02:00
Renovate Bot	445e2b1344	Update renovate to v41.61.0 (forgejo) (#8856 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-11 07:49:28 +02:00
Remo Senekowitsch	ae785c1aa2	fix: make ssh key verification command more robust (#8821 ) This is a follow-up to `a13414341b`. There are two situations where the previous verification command could fail: * The user has an SSH key in a normal file, but no running SSH agent. * The user uses a special SSH agent, but it's not specified via the SSH_AUTH_SOCK variable. To fix that, we provide two separate commands to copy-paste. One for file-based keys and one for agent-based keys. People using file-based keys with a path other than the standard `~/.ssh/id_ed25519` should notice themselves what to change. People using an SSH agent get a little hint to make sure the SSH_AUTH_SOCK variable is set. See also: https://codeberg.org/Codeberg/Community/issues/2066 (no test or documentation changes) ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. ## Testing * `pr=8821 ; git fetch forgejo +refs/pull/$pr/head:refs/heads/wip-pr-$pr` * `git checkout wip-pr-$pr` * `make TAGS='sqlite sqlite_unlock_notify' watch` * login * visit /user/settings/keys and add an ssh key * click verify * see a CLI sample is displayed ![image](/attachments/7350cbe5-4a78-47a7-821f-575dd0a43e0e) * run the command matching your setup (file-based SSH key or agent-provided one), copy paste the output and submit it * check that the verification is successful ![image](attachments/20074f32-e06f-42fd-9732-32171016c47e) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8821 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Remo Senekowitsch <remo@buenzli.dev> Co-committed-by: Remo Senekowitsch <remo@buenzli.dev>	2025-08-11 07:44:27 +02:00
Mathieu Fenniak	9524b8c370	fix: PR review dismissals were not appearing in activity feed (#8853 ) Discovered that `NotifyPullRevieweDismiss` was dead code while working on another issue; it should have been `PullReviewDismiss` when originally implemented. Related fixes to the activity feed view which were incomplete as well. Dismissing a PR review now appears on the activity feed: ![image](/attachments/99bd37c5-218d-4ecf-a74c-d01451ceae17) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8853 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-11 07:39:17 +02:00
Mathieu Fenniak	a1451655eb	fix: standardize truncation of user-entered comment text in activity feed (#8854 ) Currently long-form comments in the activity feed are truncated in three different ways... - Comment on issue/PR: to 200 characters, with an ellipsis, potentially splitting the middle of multi-line markdown blocks - PR review: first line of text in the review comment - PR review dismissed: no truncation on comment text... - Although this feed entry doesn't work currently (#8853) and the UI doesn't really lend itself to long comments anyway. For the sake of consistency, and to fix #8781, this PR fixes the implementation so that all truncation occurs by grabbing the first line of text and then truncating it to 200 characters if necessary. This fixes #8781 by not ever truncating in the middle of a markdown block; it's still possible to trigger some unexpected behavior such as: - Truncate in the middle of markdown structures like a link, causing raw markdown to render in the feed - Provide an image embed on the first line of a comment, causing an image to appear in the feed; if it's a large image it could disrupt browsing a nice brief activity feed But these behaviors seem acceptable edge cases until they're identified to cause any significant user impact. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8854): <!--number 8854 --><!--line 0 --><!--description c3RhbmRhcmRpemUgdHJ1bmNhdGlvbiBvZiB1c2VyLWVudGVyZWQgY29tbWVudCB0ZXh0IGluIGFjdGl2aXR5IGZlZWQ=-->standardize truncation of user-entered comment text in activity feed<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8854 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-11 06:56:31 +02:00
Renovate Bot	dfbba28d7c	Lock file maintenance (forgejo) (#8857 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8857 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-11 03:52:58 +02:00
Gusted	b1a6d66cf5	chore: add e2e test Check that emoji suggestion still work and that it is aware of custom emojis.	2025-08-10 23:16:42 +02:00
Gusted	4237603dd6	chore: add JS unit test Add a test to show that `matchEmoji` is aware of custom emojis. Also changes how aliases are handled (aliases are no longer correlated to each other and there's no preference for the main alias).	2025-08-10 23:11:41 +02:00
Gusted	fe5f16205f	feat: make text expander aware of custom emojis The old MDE editor is aware of custom emojis and shows them as suggestions, but the new text expander is not aware of them and seems to re-implement some logic. Simplify it by using what `emoji.js` already provides. Custom emojis require a bit more work to get shown correctly (HTML and adding a `gap` to fake a space).	2025-08-10 23:11:41 +02:00
Gusted	9a8bdc6cbd	chore: add integration test Check that the correct value ends up in `window.config`.	2025-08-10 23:11:41 +02:00
Gusted	1a466def75	chore: add javascript unit test Verify that the operations in `emoji.js` still function correctly with normal, custom and non-existing emojis.	2025-08-10 23:11:39 +02:00
Earl Warren	745bc4b58b	fix: allow Forgejo Actions environment variables starting with CI (#8850 ) Resolves forgejo/forgejo#6039 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8850): <!--number 8850 --><!--line 0 --><!--description YWxsb3cgRm9yZ2VqbyBBY3Rpb25zIGVudmlyb25tZW50IHZhcmlhYmxlcyBzdGFydGluZyB3aXRoIENJ-->allow Forgejo Actions environment variables starting with CI<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8850 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-10 22:56:16 +02:00
Gusted	a9d09e5019	chore: remove goroutine PID logging (#8851 ) - It was possible for Forgejo adminstrators to configure the logger to log the goroutine PID that made the `Log` call. - The need for the goroutine PID to be logged is that it might give insight which request or otherwise process made the log call by correlating the PID with other logs. However even for a single request I cannot make correlations between the goroutine PIDs and it seems that this particular need cannot be fulfilled by the current implementation. - The gathering of this PID is discouraged, https://go.dev/doc/faq#no_goroutine_id, and the current implementation is a hack and can break in future Go releases; it has broken before in `61e21d7ded`. - If the need arise, we instead should make the logger implementation context aware and use a PID that's associated with the context, which is guarantees to be consistent (this is also the more idiomatic way to achieve this functionality). <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Other changes without a feature or bug label - [PR](https://codeberg.org/forgejo/forgejo/pulls/8851): <!--number 8851 --><!--line 0 --><!--description Y2hvcmU6IHJlbW92ZSBnb3JvdXRpbmUgUElEIGxvZ2dpbmc=-->chore: remove goroutine PID logging<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8851 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-10 22:54:29 +02:00
Gusted	da635229bf	chore: simplify storing and sending custom emoji's - Using a map to store the CustomEmojis is unncessary, the values can be derived by the key easily. We still need to know if a certain name is custom emoji, so store the custom emojis in a `Set`. - Instead of constructing a map in `window.config`, construct a `Set` and reconstruct the value in `emoji.js`. This has the main benefit of reducing the amount of text being sent for each request, which is quite noticable if a Forgejo instance has many (>1000) custom emojis. - Remove the default value of `CustomEmojisMap`, it will be constructed anyway.	2025-08-10 21:45:55 +02:00
0ko	04e04b7073	fix(ui): move file rename notice to before pagination (#8818 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/1442 Move the rename notice to a more suitable place. Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8818 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-08-10 21:35:34 +02:00
Mathieu Fenniak	1f2bbbd4aa	fix: prevent user-entered text with \| characters from being truncated in activity feed (#8844 ) Prevents a variety of user-entered texts that can contain `\|` characters from being truncated in the activity feed, affecting: issue & PR titles, comment content, review comments, and review dismissal comments. Where `action.content` was containing a pipe-separated list of UI data fields before, it now uses a JSON-encoded string array. The old format is still supported for reading from the feed. In some places where `action.content` was not using this format, or where user-generated text was not inserted, the old format is retained. Fixes part of the cause behind #8781, allowing small mermaid graphs to be rendered in the feed (for now...) -- ![image](/attachments/4de98825-4fb7-4b5d-87c3-bd54d6f0a1d1) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8844 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-08-10 19:48:46 +02:00
Gusted	f1cfd152e2	feat: update broken git hook error (#8820 ) - The "Git hooks of this repository seem to be broken" error is currently shown if for whatever reason the database doesn't agree with Git on what the commitID for a branch is. This can happen for a variety of reasons, but usually is just a transient error. - Saying that the git hooks of the repository "looks broken" is very likely to be correct in some contexts, but I have not yet seen that case and in those cases; other stuff would also be broken and would indicate that Forgejo is not functioning correctly. - Replace this warning with a more helpful message that contains a easy fix that works in the cases where it was a transient error - push another commit (so the git hooks get run again). If the warning persists contact the instance admins and they will figure out the git hooks are broken or contact Forgejo about this problem. - Moreover removes a link to Gitea documentation. - A potential improvement (if people will run into this problem, and we then know what they ran into), we could show a specific warning to instance admins that contains troubleshooting steps or point to our own documentation. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8820 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-10 14:26:07 +02:00
oliverpool	b78c1bd998	fix(test): TestActionsArtifactOverwrite needs ordered query for pgsql (#8847 ) Should fix failures like: https://codeberg.org/forgejo/forgejo/actions/runs/94872/jobs/9 ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8847 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-08-10 13:54:27 +02:00
oliverpool	d84a5217ee	Update module github.com/minio/minio-go/v7 to v7.0.95 (#8816 ) Fixes #8529, supersedes #8597 Reverts the workaround of #8541 (while keeping the test) and ignore Close error (like #8527 did). https://github.com/minio/minio-go/pull/2137 makes the test pass without the `io.NopCloser`: ``` docker run --rm -e MINIO_DOMAIN=minio -e MINIO_ROOT_USER=123456 -e MINIO_ROOT_PASSWORD=12345678 -p 9000:9000 data.forgejo.org/oci/bitnami/minio:2024.8.17 ``` ``` TEST_MINIO_ENDPOINT=localhost:9000 go test -v -run ^TestMinioStorageIterator$ ./modules/storage ``` Wrapping the `io.Reader` in an `io.NopCloser` also hides all other methods (like `WriteTo` or `Seek`), so is not ideal. As a further "line of defense", the Close error is ignored (if saveAsPackageBlob was succesful, we don't really care if Close fails). Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8816 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-08-10 10:17:55 +02:00
Renovate Bot	64ad2a53bb	Update module github.com/mholt/archives to v0.1.3 (forgejo) (#8834 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8834 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-10 02:26:23 +02:00
Gusted	03d4073cdd	fix(ui): wrap items in gitignore dropdown (#8830 ) - Resolves forgejo/forgejo#2639 - Simple E2E test to check that it doesn't overflow Preview: - https://codeberg.org/attachments/0466343b-7684-407b-bf97-311512bc5793 - https://codeberg.org/attachments/95626222-2f7c-4d56-9089-4fb4b7cac6ad Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8830 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-09 19:33:18 +02:00
Renovate Bot	eb719691b1	Update linters (forgejo) (#8832 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8832 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-09 03:39:02 +02:00
Renovate Bot	a1f04ddca1	Update module golang.org/x/crypto to v0.41.0 (forgejo) (#8824 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8824 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-08 10:06:25 +02:00
Renovate Bot	ea3b4ed6ac	Update module google.golang.org/protobuf to v1.36.7 (forgejo) (#8822 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8822 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-08 10:06:06 +02:00
Renovate Bot	52e1c84e2c	Update module golang.org/x/image to v0.30.0 (forgejo) (#8825 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8825 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-08 08:18:56 +02:00
Dmitrii Sharshakov	b8f92b6a26	feat: Replace mholt/archiver/v3 with mholt/archives (#7025 ) Resolves #6266 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7025 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Dmitrii Sharshakov <d3dx12.xx@gmail.com> Co-committed-by: Dmitrii Sharshakov <d3dx12.xx@gmail.com>	2025-08-08 06:53:20 +02:00
Squel	dd653c4784	feat: show timestamp on release attachments (#8757 ) - Show the `created_unix` timestamp as relative time for each non-external release attachment. - The details section of the release attachment can become quite long in width, for smaller screens it's now shown as columns. - Integration test added. Close #7600 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8757 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Squel <squeljur+git@gmail.com> Co-committed-by: Squel <squeljur+git@gmail.com>	2025-08-08 03:19:28 +02:00
Gusted	72bac98365	feat: require `data-modal-id` for delete buttons (#8711 ) All instances should have a `data-modal-id` now. Throw a user-friendly error if this is not the case (custom templates, or missed cases). Checked via `rg -P -e '^(?=.*delete-button)' \| grep -v "data-modal-id"` Removed two instances of delete modals and one case of simplified logic. ## Rationale I am currently surveying the existing modals in Forgejo in the context of eventually replacing the modals implementation with our own modal implementation. This refactor fixes one of the many inconsistencies that the current usage of modals has. It should explicitly specify which modal should be used to avoids any problems if new modals are introduced on the page (for example via https://codeberg.org/forgejo/forgejo/pulls/8662). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8711 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-08 01:53:23 +02:00
BtbN	c872758c05	feat: improve `mysqlGetNextResourceIndex` to use modern MariaDB features (#8691 ) MariaDB supports "INSERT ... RETURNING ..." since 10.5.0, so this patch makes `mysqlGetNextResourceIndex` use that, provided the query is run on MariaDB of a sufficient version. If it's not supported it proceeds as it always did. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8691 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: BtbN <btbn@btbn.de> Co-committed-by: BtbN <btbn@btbn.de>	2025-08-08 01:51:55 +02:00
viceice	4e2908ff9d	ci: fix mariadb path (#8815 ) Ref: forgejo/forgejo#8810 https://hub.docker.com/_/mariadb#where-to-store-data Signed-off-by: viceice <michael.kriese@gmx.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8815 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2025-08-08 01:43:32 +02:00
Earl Warren	6f3c4a5466	i18n: update of translations from Codeberg Translate (#8744 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8744 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-07 17:27:16 +02:00
Codeberg Translate	c0a1a604e6	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Ikuyo <searinminecraft@outlook.ph> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vaibhav Sunder <vaibhavswire@gmail.com> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-08-07 14:01:05 +00:00
Robert Wolff	a2b73b7b11	fix(ui): wrong org dashboard links when switching dashboard context (#8688 ) Regression of !8239 Closes #8685 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8688 Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-08-07 14:32:55 +02:00
Shiny Nematoda	a1dd77d115	chore(dep): Update module meilisearch to v0.33 (#8788 ) Fixes the breakages with the version update... Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8788 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-08-07 14:28:52 +02:00
Renovate Bot	6faaf807ff	Update dependency go to v1.24.6 (forgejo) (#8807 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.24.5` -> `1.24.6` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS41MS4xIiwidXBkYXRlZEluVmVyIjoiNDEuNTEuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8807 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-07 06:49:30 +02:00
Gusted	bc0c2b7d0d	chore: add MariaDB to daily tests (#8810 ) - Add the oldest and newest supported version of MariaDB to the daily tests to be run against the integration tests. - Ref: https://codeberg.org/forgejo/forgejo/pulls/8691 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8810 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-07 06:46:53 +02:00
Gusted	b51f97e97d	feat: add option to allow non-local users to change usernames (#8714 ) Add a new config option for OAuth2 authentication sources: allow users to change their username. In the case where OAuth2 is more like a social OAuth2 login there's no need to not allow users to change their username. The information how the user is linked to the authentication source is stored in different fields. Resolves forgejo/forgejo#687 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8714 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-06 20:25:13 +02:00
Earl Warren	16a0c97fbf	fix: correct release link in feed (#8802 ) Resolves forgejo/forgejo#8793 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8802): <!--number 8802 --><!--line 0 --><!--description Y29ycmVjdCByZWxlYXNlIGxpbmsgaW4gZmVlZA==-->correct release link in feed<!--description--> <!--end release-notes-assistant--> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8802 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-08-06 17:51:36 +02:00
Michael Jerger	c081f20776	Sent user activities to distant federated server (#8792 ) This PR is part of #4767. It contains * a refactoring of validation error messages * adds the ability to send user-activities to distant federated servers Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8792 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-08-06 16:16:13 +02:00
Renovate Bot	6b6fa21b25	Update module github.com/caddyserver/certmagic to v0.24.0 (forgejo) (#8796 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8796 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-06 16:10:19 +02:00
Earl Warren	542eb40b9b	Update module code.forgejo.org/forgejo/runner/v9 to v9.0.3 (forgejo) (#8795 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8795 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-08-06 15:51:01 +02:00
Earl Warren	7b76e5510b	Update module code.forgejo.org/forgejo/runner/v9 to v9.0.3 (update licenses)	2025-08-06 14:59:10 +02:00
hazycora	73dac787a3	fix: trim trailing slash in WebFinger OIDC issuer link (#8794 ) As stated in a comment: https://codeberg.org/forgejo/forgejo/issues/8634#issuecomment-6136933 > `routers/web/webfinger.go` was left unchanged, so it still includes the trailing slash, no longer matching the issuer specified in other endpoints. > > ... > > From the [OpenID Connect Discovery specification](https://openid.net/specs/openid-connect-discovery-1_0.html#IssuerDiscovery): > > > The Issuer location MUST be returned in the WebFinger response as the value of the href member of a links array element with rel member value http://openid.net/specs/connect/1.0/issuer. > > This sounds to me like the `href` should be the issuer location exactly. > > Using Forgejo for OIDC for auth with Tailscale is one instance of this change breaking something - signing up to Tailscale with OIDC now gives an error. Unsure what happens for existing accounts. In summary, since !8028, trailing slashes have been removed from the OIDC issuer locations specified by Forgejo everywhere except in WebFinger responses at `/.well-known/webfinger`, which still includes a trailing slash and so no longer matches the issuer as specified elsewhere (such as at `/.well-known/openid-configuration`). ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8794 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: hazycora <git@hazy.gay> Co-committed-by: hazycora <git@hazy.gay>	2025-08-06 14:50:51 +02:00
pat-s	b6046c17a1	feat: add tag label to commit list view (#8759 ) Mainly a port of https://github.com/go-gitea/gitea/pull/31082. closes #3573 ## Screenshots ![image](/attachments/a1ba8729-e7f3-4d3d-ab20-04593b119c3f) ![image](/attachments/13790703-8a71-41a0-a875-9c087da989f8) --- ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8759): <!--number 8759 --><!--line 0 --><!--description YWRkIHRhZyBsYWJlbCB0byBjb21taXQgbGlzdCB2aWV3-->add tag label to commit list view<!--description--> <!--end release-notes-assistant--> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8759 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-08-06 14:47:51 +02:00
Renovate Bot	56f4671c82	Update module code.forgejo.org/forgejo/runner/v9 to v9.0.3	2025-08-06 00:04:22 +00:00
Renovate Bot	5294cff95f	Update module github.com/alecthomas/chroma/v2 to v2.20.0 (forgejo) (#8783 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8783 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-06 01:30:20 +02:00
John Moon	0a444a374e	fix: add .forgejo/CODEOWNERS support (#8773 ) Currently, the documentation mention that a CODEOWNERS file can be located in .forgejo for code owner PR review assignment, but this does not work. Add support for this location. Resolves #8746 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8773 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: John Moon <john.moon@vts-i.com> Co-committed-by: John Moon <john.moon@vts-i.com>	2025-08-05 17:00:35 +02:00
Renovate Bot	cc31b744d1	Update dependency mini-css-extract-plugin to v2.9.3 (forgejo) (#8782 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8782 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-05 02:41:36 +02:00
Renovate Bot	eb18fccac5	Lock file maintenance (forgejo) (#8777 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40My41IiwidXBkYXRlZEluVmVyIjoiNDEuNDMuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8777 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-04 09:21:41 +02:00
Renovate Bot	f2ffae12cf	Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.4.1 (forgejo) (#8776 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/forgejo/forgejo-build-publish](https://data.forgejo.org/forgejo/forgejo-build-publish) \| action \| minor \| `v5.3.5` -> `v5.4.1` \| --- ### Release Notes <details> <summary>forgejo/forgejo-build-publish (https://data.forgejo.org/forgejo/forgejo-build-publish)</summary> ### [`v5.4.1`](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.4.0...v5.4.1) [Compare Source](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.4.0...v5.4.1) ### [`v5.4.0`](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.3.5...v5.4.0) [Compare Source](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.3.5...v5.4.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40My41IiwidXBkYXRlZEluVmVyIjoiNDEuNDMuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8776 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-04 09:16:38 +02:00
Renovate Bot	15231669e6	Update renovate to v41.51.1 (forgejo) (#8775 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-04 07:24:16 +02:00
Gusted	e50cfc8499	fix: migrate new Github release assets (#8771 ) - It seems that mid-May (according to some system notices in Codeberg) Github started (or converted all) release asssets to be made available under `https://release-assets.githubusercontent.com/`. - Update the migration code to allow this baseURL for Github release assets. - Resolves Codeberg/Community#2061 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8771 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-03 22:14:13 +02:00
Michael Jerger	7566ebfba7	Add ActivityPub Person follow from distant (#8720 ) This PR is part of #4767. It 1. adds the ability to follow a local person from a distant federation server (see tests/integration/api_activitypub_person_inbox_follow_test.go) 2. streamlines the router code (refactor the person conversion & handling of inbox requests in service direction, unifies service call signature & error handling) 3. introduces queues for decoupling outgoing communication (delivery retry to cope network issues or distant service downtimes) and 4. adds minor fixes to integration tests (test timeout & invalid inbox activities) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8720 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-08-03 11:55:01 +02:00
zokki	64193310ee	fix(ui): compare branches even with pull requests disabled (#8496 ) Resolves #8428 Its currently showing the diff of two branches, even if the PR-unit is disabled. But the POST to create the PR is still returning an error when the unit is disabled, so its only a change for UI. Preview: https://codeberg.org/attachments/610d6b81-a50f-4c43-91c2-db4c38e7b701 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8496 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-08-03 06:19:45 +02:00
0ko	4392dee96d	chore(ui): improve hashbox (#8721 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7822 * Fix signaturebox's background breaking out of hashbox and thus breaking it's rounded corners * Fix a bug where an extra right margin was applied to signbox's avatar on pull request overview by unrelated rule * Untangle hashbox's CSS from .label - it was not a good partnership between them. Some extra properties, some that we had to override * Move CSS out of "repo.css" to a separate file - it's clearly not only related to repos Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8721 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-08-03 05:49:24 +02:00
Renovate Bot	2269831c9f	Update module code.forgejo.org/forgejo/runner/v9 to v9.0.2 (forgejo) (#8762 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| code.forgejo.org/forgejo/runner/v9 \| `v9.0.1` -> `v9.0.2` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v9.0.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2frunner%2fv9/v9.0.1/v9.0.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40My41IiwidXBkYXRlZEluVmVyIjoiNDEuNDMuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8762 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-03 04:17:41 +02:00
Renovate Bot	cdb6296d58	Update dependency eslint-plugin-unicorn to v60 (forgejo) (#8766 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-03 03:41:36 +02:00
Renovate Bot	a8ef6af0fd	Update dependency @stylistic/stylelint-plugin to v4 (forgejo) (#8765 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-03 03:39:00 +02:00
Renovate Bot	7af647025a	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.1 (forgejo) (#8763 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-03 03:37:09 +02:00
Renovate Bot	a2d6b79195	Update dependency @playwright/test to v1.54.2 (forgejo) (#8761 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-03 03:36:45 +02:00
Gusted	648a75e687	fix: correctly get stats for API commits (#8756 ) - Instead of generating a patch and parsing its contents, use a faster and simple way to get it via `--shortstat`. - Resolves forgejo/forgejo#8725 - Regression of forgejo/forgejo#7682 - Adds unit test. - Adds integration test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8756 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-08-02 13:06:04 +02:00
Renovate Bot	e4cd25057f	Update dependency @vitejs/plugin-vue to v6.0.1 (forgejo) (#8749 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-01 22:33:27 +02:00
Renovate Bot	1331a7f75c	Update module github.com/golang-jwt/jwt/v5 to v5.3.0 (forgejo) (#8739 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8739 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-01 21:01:58 +02:00
Renovate Bot	d539fe7bf7	Update module github.com/mattn/go-sqlite3 to v1.14.30 (forgejo) (#8738 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8738 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-01 21:01:54 +02:00
Michael Kriese	f185a4ce67	feat(logger): rename settings for consistency and remove obsolete settings (#8667 ) - [x] rename logger settings: `logger.<name>.MODE` -> `LOGGER_<NAME>_MODE` - [x] dropped legacy logger settings - [ ] create a docs PR to update documentation I used Github Copilot for some auto completion of code. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8667): <!--number 8667 --><!--line 0 --><!--description ZmVhdChsb2dnZXIpOiByZW5hbWUgc2V0dGluZ3MgZm9yIGNvbnNpc3RlbmN5IGFuZCByZW1vdmUgb2Jzb2xldGUgc2V0dGluZ3M=-->feat(logger): rename settings for consistency and remove obsolete settings<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8667 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-08-01 10:55:05 +02:00
Renovate Bot	fb57260056	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.3.0 (forgejo) (#8752 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-01 07:56:31 +02:00
Renovate Bot	3ff78d243a	Update linters (forgejo) (#8750 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-08-01 07:55:49 +02:00
Earl Warren	5d9da94890	i18n: update of translations from Codeberg Translate (#8673 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8673 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-07-31 15:43:39 +02:00
Codeberg Translate	be7b87c1c2	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: BlackSpirits <blackspirits@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Hiraku <hiraku@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: adf19 <adf19@noreply.codeberg.org> Co-authored-by: amv-bamboo <amv-bamboo@noreply.codeberg.org> Co-authored-by: dobrovolskyi <dobrovolskyi@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: retarded-beast <retarded-beast@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-07-31 13:00:55 +00:00
Earl Warren	79af994eae	chore: github.com/nektos/act is now at code.forgejo.org/forgejo/runner/v9 (#8742 ) Refs: https://code.forgejo.org/forgejo/runner/releases/tag/v9.0.1 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8742 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-31 13:41:59 +02:00
0ko	022ab86988	chore(api): update swagger method descripitons (#8728 ) Speaking from personal experience, when exploring the API I find myself trying to parse the exact meaning of many descriptions for a while, and I also have to get used to many different kinds of inconsistencies and grammar issues. This PR improves a few of these. Some I tried to reword to make them easier to understand, for others I just improved consistency a little, like capitalization. This area needs more work, this PR just makes some progress. Anything that is improved in this one can be improved further in later PRs, so in review please focus on regressions if you find any. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8728 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-30 18:08:28 +02:00
pkpkpkpk	98e2a64e2d	fix: allow double digit epoch for Debian packages (#8671 ) Debian packages were capped for a single digit epoch, relax that requirement to a double digit epoch. This is allowed by Debian. Resolves forgejo/forgejo#8649 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8671 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: pkpkpkpk <pkpkpkpk@noreply.codeberg.org> Co-committed-by: pkpkpkpk <pkpkpkpk@noreply.codeberg.org>	2025-07-30 18:02:46 +02:00
Michael Kriese	1761dae2db	test: add logger settings tests (#8729 ) fully cover existing behavior - ref #8667 I used Github Copilot for some code autocompletions. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8729 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-07-30 15:40:12 +02:00
Earl Warren	93b13e4d52	chore(ci): send mail when daily integration tests fail (#8727 ) ## Testing - 24h after this is merged - push a commit to https://codeberg.org/forgejo-integration/forgejo/src/branch/forgejo with an error - cancel all workflows except for https://codeberg.org/forgejo-integration/forgejo/actions?workflow=testing-integration.yml&actor=0&status=0 - verify a notification was sent to forgejo-integration-actions@forgejo.org about the error - update the user research discussion at https://codeberg.org/forgejo/user-research/issues/64 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8727 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-30 13:12:17 +02:00
Renovate Bot	d3ca92df79	Update dependency forgejo/release-notes-assistant to v1.3.6 (forgejo) (#8726 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.3` -> `v1.3.6` \| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.5` -> `v1.3.6` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.3.6`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.6) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.5...v1.3.6) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/100): <!--number 100 --><!--line 0 --><!--description Zml4OiBjb252ZXJ0IEVPTCBcclxuIHRvIFxuIHdoZW4gZ2V0dGluZyBhIHNpbmdsZSBwdWxsIHJlcXVlc3Q=-->fix: convert EOL \r\n to \n when getting a single pull request<!--description--> - other - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/96): <!--number 96 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vZGF0YS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNy4w-->Update https://data.forgejo.org/actions/forgejo-release action to v2.7.0<!--description--> <!--end release-notes-assistant--> ### [`v1.3.5`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.5) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.4...v1.3.5) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/98): <!--number 98 --><!--line 0 --><!--description Zml4OiB0aGVyZSBjYW4gYmUgbW9yZSB0aGFuIG9uZSB0YWcgZGVjb3JhdGluZyBhIGNvbW1pdA==-->fix: there can be more than one tag decorating a commit<!--description--> <!--end release-notes-assistant--> ### [`v1.3.4`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.4) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.3...v1.3.4) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/97): <!--number 97 --><!--line 0 --><!--description Zml4OiAlKGRlY29yYXRlKSBpcyBub3Qgc3VwcG9ydGVkIGJ5IGdpdCAyLjM5-->fix: %(decorate) is not supported by git 2.39<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40My41IiwidXBkYXRlZEluVmVyIjoiNDEuNDMuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8726 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-29 23:43:21 +02:00
Earl Warren	01f1f4ac75	chore: revert release-notes-assistant to v1.3.3 (#8722 ) to reduce the number of requests to the API to obtain each pull request to the minimum. tests are not needed because this version has been working fine over the past year Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8722 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-29 10:18:58 +02:00
Gusted	b2469c2a9c	fix: allow admins to always rename users (#8715 ) Do not apply the rename restriction of non-local users if the doer is an admin (changes via the admin interface). This is a conscious choice and the admin knows better if they make such changes. Regression of `c59a057297` Resolves forgejo/forgejo#3657 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8715): <!--number 8715 --><!--line 0 --><!--description YWxsb3cgYWRtaW5zIHRvIGFsd2F5cyByZW5hbWUgdXNlcnM=-->allow admins to always rename users<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8715 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-29 08:17:17 +02:00
Renovate Bot	e2dbbbfbc6	Update dependency webpack to v5.101.0 (forgejo) (#8717 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8717 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-29 03:54:22 +02:00
Gusted	13e48ead92	feat: migrate action secrets to `keying` to store them more securely (#8692 ) - Use the keying module, that was introduced in forgejo/forgejo#5041, to store action secrets safely and securely in the database. - Introduce a central function that sets the secret, `SetSecret` and let the caller do the update call. This is similar to how the twofactor (TOTP) models does it. Ref. https://codeberg.org/forgejo/forgejo/pulls/6074 - Add a relaxed migration, that is run inside a transaction. If it cannot decrypt a action secret, then it's deleted. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8692 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-29 01:03:36 +02:00
Gusted	bc0d14119c	chore: add missing translation (#8709 ) Ref: forgejo/forgejo#7940 > Unable to register cron task remove_resolved_reports Error: translation is missing for task "remove_resolved_reports", please add translation for "admin.dashboard.remove_resolved_reports" Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8709 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-28 17:27:12 +02:00
Michael Jerger	388e4eb44b	fix: assorted ActivityPub code only refactors (#8708 ) Fix parts of issue #8221 and part of PR #4767 Is linked to https://codeberg.org/forgejo/forgejo/pulls/8274 The commit `555f6e57ad` fixes timeout forgejo/forgejo#8274 (Kommentar) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8708 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-07-28 15:17:29 +02:00
Antonin Delpeuch	106707b40f	feat(ui): pretty-print commit counts and other numbers (#8704 ) Currently on https://codeberg.org/forgejo/forgejo for instance, the commit count is shown as "23378 commits", instead of "23,378 commits". This makes sure such numbers are printed with thousands separators if they are big enough. Preview: - https://codeberg.org/attachments/681add48-337b-42c0-a0ae-ac5ad4671b39 - https://codeberg.org/attachments/8b5d4e40-bdd6-4942-905f-6ddeac8509a9 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8704 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-07-28 15:16:27 +02:00
Leni Kadali	29eaab5ff4	feat: add configurable timeout for automatically removing resolved reports (#7940 ) Supersedes [this PR](https://codeberg.org/lenikadali/forgejo/pulls/1) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7940 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Leni Kadali <lenikadali@noreply.codeberg.org> Co-committed-by: Leni Kadali <lenikadali@noreply.codeberg.org>	2025-07-28 14:52:13 +02:00
Earl Warren	b2c8a1cfd3	Revert "fix: assorted ActivityPub code only refactors (#8274 )" (#8705 ) This reverts commit `e271c24100`. It was an experiment to verify that adding a delay to the test make a difference. But it does not so... reverting. @jerger before engaging in a refactor, it is necessary to get to the bottom of this: - Find the root cause of those failures - Fix it in a minimal way Refs https://codeberg.org/forgejo/forgejo/pulls/8274#issuecomment-5987215 --- - https://codeberg.org/forgejo/forgejo/actions/runs/92182/jobs/9 - https://codeberg.org/forgejo/forgejo/actions/runs/92182/jobs/10 ``` --- FAIL: TestFederationHttpSigValidation (11.34s) testlogger.go:411: 2025/07/28 00:23:46 ...les/storage/local.go:33:NewLocalStorage() [I] Creating new Local Storage at /workspace/forgejo/forgejo/tests/gitea-lfs-meta testlogger.go:411: 2025/07/28 00:23:52 ...ypub/reqsignature.go:76:func1() [W] verifyHttpSignatures failed: neither "Signature" nor "Authorization" have signature parameters testlogger.go:411: 2025/07/28 00:23:52 ...eb/routing/logger.go:102:func1() [I] router: completed GET http://127.0.0.1:3002/api/v1/activitypub/user-id/2 for test-mock:12345, 400 Bad Request in 5.3ms @ activitypub/reqsignature.go:74(activitypub.ReqHTTPUserOrInstanceSignature) testlogger.go:411: 2025/07/28 00:23:52 ...ces/auth/httpsign.go:70:Verify() [W] Failed authentication attempt from 127.0.0.1:43244 testlogger.go:411: 2025/07/28 00:23:55 ...eb/routing/logger.go:68:func1() [W] router: slow GET /api/v1/activitypub/user-id/2 for 127.0.0.1:43244, elapsed 3684.7ms @ activitypub/reqsignature.go:74(activitypub.ReqHTTPUserOrInstanceSignature) --- FAIL: TestFederationHttpSigValidation/SignedRequest (5.01s) api_federation_httpsig_test.go:50: Error Trace: /workspace/forgejo/forgejo/tests/integration/api_federation_httpsig_test.go:50 Error: Received unexpected error: Get "http://127.0.0.1:3002/api/v1/activitypub/user-id/2": context deadline exceeded (Client.Timeout exceeded while awaiting headers) Test: TestFederationHttpSigValidation/SignedRequest --- FAIL: TestFederationHttpSigValidation/ValidateCaches (0.00s) api_federation_httpsig_test.go:64: Error Trace: /workspace/forgejo/forgejo/tests/integration/api_federation_httpsig_test.go:64 Error: Expected value not to be nil. Test: TestFederationHttpSigValidation/ValidateCaches test_utils.go:247: PrepareTestEnv:Process "GET: /api/v1/activitypub/user-id/2" cancelled panic: runtime error: invalid memory address or nil pointer dereference [recovered] panic: runtime error: invalid memory address or nil pointer dereference [signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x4cc464a] ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8705 Reviewed-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-28 10:55:04 +02:00
Renovate Bot	4f0c2ec258	Update renovate to v41.43.5 (forgejo) (#8700 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-28 10:33:09 +02:00
Renovate Bot	6f1e4be0c1	Update dependency forgejo/release-notes-assistant to v1.3.5 (forgejo) (#8701 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.3` -> `v1.3.5` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.3.5`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.5) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.4...v1.3.5) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/98): <!--number 98 --><!--line 0 --><!--description Zml4OiB0aGVyZSBjYW4gYmUgbW9yZSB0aGFuIG9uZSB0YWcgZGVjb3JhdGluZyBhIGNvbW1pdA==-->fix: there can be more than one tag decorating a commit<!--description--> <!--end release-notes-assistant--> ### [`v1.3.4`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.4) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.3...v1.3.4) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/97): <!--number 97 --><!--line 0 --><!--description Zml4OiAlKGRlY29yYXRlKSBpcyBub3Qgc3VwcG9ydGVkIGJ5IGdpdCAyLjM5-->fix: %(decorate) is not supported by git 2.39<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40Mi41IiwidXBkYXRlZEluVmVyIjoiNDEuNDIuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8701 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-28 09:27:32 +02:00
Renovate Bot	370b498e6d	Lock file maintenance (forgejo) (#8703 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40Mi41IiwidXBkYXRlZEluVmVyIjoiNDEuNDIuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8703 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-28 08:14:35 +02:00
Gusted	421cfba3cf	fix: return error when user is not repo writer (#8690 ) - If the doer isn't a issue/pull writer, return a error. - Fixes a panic (NPE), because the callers of `prepareForReplaceOrAdd` simply checked if there was a error returned to see if the user was allowed. It didn't check if a statuscode was written. This is specifically a issue when the automatic token by Forgejo actions is used. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8690 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-27 10:17:33 +02:00
Robert Wolff	5624b9f094	fix(ui): issue comment review request targets when aggregated (#8689 ) regression of !8239 ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8689 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-07-27 10:12:28 +02:00
Antonin Delpeuch	4694cbf95b	fix: don't mark files in AGit PRs as editable (#8642 ) Fixes #8639. For your convenience this PR is made via AGit for you to see the issue directly in Codeberg ^^ ### Tests - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. I am not sure how to best write a unit test for this. It looks like there isn't any AGit PR in the default test database. The integration test in `test/integration/pull_review_test.go` creates one by manually running Git commands. I could just copy all that code to do the same in another test, but I feel bad about duplicating this. Can they be sensibly migrated to some helpers module that can be reused across tests? Or can we add an AGit PR to the test database? Or can we modify the `Flow` attribute of a PR in a test just for the sake of simulating that it's an AGit one? ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8642 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-07-27 10:05:55 +02:00
Gusted	ee35b617b7	chore: correctly prepare test env (#8686 ) - Ref forgejo/forgejo#8681 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8686 Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-26 16:14:42 +02:00
Gusted	d22f9d1f38	fix: show mergebox when only manual merge is allowed (#8681 ) - If a repository only has the 'manual merge' strategy allowed, the mergebox should still be shown. - The condition that checks if all merge strategies are disabled didn't check for the manual merge strategy. - Add a integration test that demonstrates this fix is effective. Reported-by: apteryx Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8681 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-26 05:47:06 +02:00
Gusted	02de040a5e	feat: add tracing logs after process is complete (#8680 ) - Add the written HTTP status after completing the HTTP response. This makes it easier to find that one request that returns a different status code (ref. https://codeberg.org/Codeberg/Community/issues/2049#issue-1972600) - Add the affected amount of rows and last insert ID after the SQL query is done, I have not yet a concrete use-case but this might help with debugging which ID corresponds to some SQL query that someone might want to take a closer look at and if some SQL query affects more than necessary amount of rows. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8680 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-26 05:44:58 +02:00
Gusted	24014c349e	fix: store code challenge correctly in session (#8678 ) - Even though the test file contains some good extensive testing, it didn't bother to actually call `/login/oauth/access_token` to see if the received code actually resulted into a access token. - The fix itself is... well yeah self-explanatory. - Resolves forgejo/forgejo#8669 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8678 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-26 05:16:55 +02:00
Lynoure Braakman	b1b418a939	RELEASE-NOTES.md to refer to the release notes directory on master [skip ci] (#8675 ) For any given version, the release notes in that version are lagging behind, so to reduce confusion of someone just wanting to see the release notes of this version they are looking at, changed the RELEASE-NOTES.md to refer to the release notes directory on the main branch. I'm not 100% happy with now having that point to the main branch, and the more specific links pointing relatively, but maybe it's good enough. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8675 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: Lynoure Braakman <lynoure@noreply.codeberg.org> Co-committed-by: Lynoure Braakman <lynoure@noreply.codeberg.org>	2025-07-25 22:21:37 +02:00
Michael Jerger	e271c24100	fix: assorted ActivityPub code only refactors (#8274 ) Fix parts of issue https://codeberg.org/forgejo/forgejo/issues/8221 and PR https://codeberg.org/forgejo/forgejo/pulls/4767 - PostgreSQL - TestActivityPubPerson/SignedRequestValidation ``` --- FAIL: TestActivityPubPerson/SignedRequestValidation (5.01s) api_activitypub_person_test.go:51: Error Trace: /workspace/forgejo/forgejo/tests/integration/api_activitypub_person_test.go:51 Error: Received unexpected error: Get "http://127.0.0.1:3002/api/v1/activitypub/user-id/2": context deadline exceeded (Client.Timeout exceeded while awaiting headers) Test: TestActivityPubPerson/SignedRequestValidation testlogger.go:411: 2025/06/24 00:12:27 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/v1/activitypub/user-id/2 for 127.0.0.1:50456, 200 OK in 5032.2ms @ activitypub/person.go:21(activitypub.Person) ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8274 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-07-25 18:01:43 +02:00
Earl Warren	fe22e2397c	i18n: update of translations from Codeberg Translate (#8535 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8535 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-25 16:57:52 +02:00
Codeberg Translate	e8acd8afd3	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: Zalexanninev15 <zalexanninev15@noreply.codeberg.org> Co-authored-by: adf19 <adf19@noreply.codeberg.org> Co-authored-by: darkswordreams <darkswordreams@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: oatbiscuits <oatbiscuits@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-07-25 14:11:36 +00:00
Michael Kriese	57148eb1e8	fix: query token auth version mismatch (#8666 ) It's now scheduled for Forgejo v13 see #8633 for more context I used Github Copilot for some auto completion of code. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8666 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-07-25 12:24:26 +02:00
Gusted	d4e4a2a1e3	chore: move template context (#8663 ) The template module now holds the Template context, this makes it possible for (render) function in the template module to access functions and share data between render functions. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8663 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-25 11:55:15 +02:00
forgejo-release-manager	61334f7982	chore(release-notes): Forgejo v12.0.1 [skip ci] (#8664 ) https://codeberg.org/forgejo/forgejo/milestone/22237 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8664 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-07-25 11:05:03 +02:00
Renovate Bot	f9c2c910d6	Update module github.com/mattn/go-sqlite3 to v1.14.29 (forgejo) (#8660 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) \| `v1.14.28` -> `v1.14.29` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fmattn%2fgo-sqlite3/v1.14.29?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fmattn%2fgo-sqlite3/v1.14.28/v1.14.29?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>mattn/go-sqlite3 (github.com/mattn/go-sqlite3)</summary> ### [`v1.14.29`](https://github.com/mattn/go-sqlite3/compare/v1.14.28...v1.14.29) [Compare Source](https://github.com/mattn/go-sqlite3/compare/v1.14.28...v1.14.29) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40Mi41IiwidXBkYXRlZEluVmVyIjoiNDEuNDIuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8660 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-25 06:36:59 +02:00
Renovate Bot	1b32d7a874	Update module code.forgejo.org/forgejo/act to v1.33.0 (forgejo) (#8661 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/act](https://code.forgejo.org/forgejo/act) \| `v1.32.0` -> `v1.33.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2fact/v1.33.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2fact/v1.32.0/v1.33.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/act (code.forgejo.org/forgejo/act)</summary> ### [`v1.33.0`](https://code.forgejo.org/forgejo/act/compare/v1.32.0...v1.33.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.32.0...v1.33.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40Mi41IiwidXBkYXRlZEluVmVyIjoiNDEuNDIuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8661 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-25 06:36:01 +02:00
Otto Richter	38c83ae6e1	tests(e2e): Silence heading level warning (#8659 ) The problem surfaced in and after https://codeberg.org/forgejo/forgejo/pulls/8572, but the actual problem is the underlying mess of forms. A better fix would be https://codeberg.org/forgejo/forgejo/issues/8658, but I want to make playwright tests pass again. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8659 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-committed-by: Otto Richter <git@otto.splvs.net>	2025-07-25 02:39:16 +02:00
DebuggerAndrzej	f4894b0edd	feat: add sort parameter for users/search api endpoint (#8594 ) Introduces a new sort parameter to the `/users/search` API endpoint, similar to the one that already exists for the `/admin/users` endpoint. Resolves #8499 Co-authored-by: DebuggerAndrzej <redpandaworkstation@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8594 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: DebuggerAndrzej <debuggerandrzej@noreply.codeberg.org> Co-committed-by: DebuggerAndrzej <debuggerandrzej@noreply.codeberg.org>	2025-07-24 22:40:27 +02:00
Earl Warren	bfa9c89e6f	Revert "feat: remove API authentication methods that uses the URL query (#7924 )" (#8633 ) This reverts commit `b2a3966e64`. weblate etc. are using this method and need to be updated before the change is enforced. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8633 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-24 17:19:24 +02:00
0ko	87a7bf2436	fix(ui): update i18n usage in comments (#8644 ) Fix regression of https://codeberg.org/forgejo/forgejo/pulls/8214 (regressing v11 feature https://codeberg.org/forgejo/forgejo/pulls/6523) Reporeted by @Andre601. ## Preview ![bug](/attachments/0e0c4703-537f-4adc-95f7-4047710522b4) ![fixed](/attachments/07bc5824-87ae-43da-92a2-8e6e9b9cf567) ## Testing * go to https://v13.next.forgejo.org/, log in * create repo, add some issue labels (on `./labels`) * create issue * add some labels to it and then close it * observe that what you see looks more like the 2nd screenshot than the 1st screenshot <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8644): <!--number 8644 --><!--line 0 --><!--description Zml4KHVpKTogdXBkYXRlIGkxOG4gdXNhZ2UgaW4gY29tbWVudHM=-->fix(ui): update i18n usage in comments<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8644 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-24 07:17:11 +02:00
Gusted	2f70869519	chore: integration test when rebase should happen (#8635 ) - Follow up to forgejo/forgejo#8622 - Now the converse is also tested, a rebase should have happened and the commit IDs should differ. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8635 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-23 22:35:40 +02:00
Earl Warren	b52cec753f	Revert "fix(ci): pull stylus from github:stylus/stylus#0.57.0 (#8625 )" (#8638 ) This reverts commit `4d06d62515`. https://www.npmjs.com/package/stylus?activeTab=versions is back. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8638 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-23 22:30:39 +02:00
Michael Kriese	4d20a74c04	chore(renovate): use `forgejo` platform (#8629 ) Use the new `forgejo` platform instead of the `gitea` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8629 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-07-23 10:37:46 +02:00
Earl Warren	4d06d62515	fix(ci): pull stylus from github:stylus/stylus#0.57.0 (#8625 ) npm error 404 Not Found - GET https://registry.npmjs.org/stylus/-/stylus-0.57.0.tgz - Not found Workaround to be reverted when the issue is fixed. Refs https://github.com/stylus/stylus/issues/2938 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8625 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-23 09:17:32 +02:00
Gusted	f3ccfc4969	fix: short-circuit to avoid rebasing (#8622 ) - Do not try to rebase a pull request when it is zero commits behind. We can trust this number as before merging a repository the status of the pull request is mergeable and thus not in a conflict checking stage (where this would be updated). - This resolves a issue where `git-replay` would rebase a pull request when this is not needed and causes to lose the signature of Git commits and commit IDs as shown in the pullrequest commits timeline. - Resolves forgejo/forgejo#8619 - Add a simple integration test that simply checks that after merging a up-to-date pull request via the rebase style that the commit ID didn't change. This demonstrates that it didn't do needlessly rebasing. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8622 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-23 07:30:30 +02:00
Robert Wolff	7643bdd2b5	feat(ui): add links to review request targets in issue comments (#8239 ) - Add links to review request targets in issue comments - Fix links to ghost users/orgs/teams to be empty Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8239 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-07-23 04:45:58 +02:00
Renovate Bot	82daae4c7c	Update dependency vue to v3.5.18 (forgejo) (#8623 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-23 04:38:03 +02:00
oliverpool	83ea43cf49	frontend: generic lazy loader for webcomponents (#8510 ) After seeing #8111 use a webcomponent, I think that they are a neat usecase for Forgejo where most of the frontend is backend-generated, with some "island of enhancements". I am considering using a webcomponent for the CITATION management (last occurrence of [`Blob.GetBlobContent`](https://codeberg.org/forgejo/forgejo/issues/8222)), however I noticed that the developer experience wasn't ideal. With this PR it would be very easy to declare a webcomponent, which will be loaded only if needed (I converted `model-viewer` and `pdf-object` to this technique). Some cleanup in the neighbor webcomponents. ## Testing 1) Create a new repository or use an existing one. 2) Upload a `.pdf` or `.glb` file (such as https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/testdata/data/viewer/Unicode%E2%9D%A4%E2%99%BBTest.glb) 3) Open the Network inspector and view the file in the repository. - After a short loading spinner, the PDF or 3D model should be rendered in a viewer - the related JS should have been loaded (e.g. http://localhost:3000/assets/js/model-viewer.494bf0cd.js) - visiting another page and check that this JS file isn't loaded Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8510 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-07-23 04:10:50 +02:00
Renovate Bot	c3b18a6deb	Update module github.com/yuin/goldmark to v1.7.13 (forgejo) (#8621 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8621 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-23 02:58:57 +02:00
0ko	c11dd3fb46	feat(ui): improve org header with new noJS dropdown and more options (#8572 ) Related: https://codeberg.org/forgejo/forgejo/pulls/6977/files#diff-fd05eba523810d46c7763db938ad5839372a074a, https://codeberg.org/forgejo/forgejo/pulls/3949, https://codeberg.org/forgejo/forgejo/pulls/7906 * use the new noJS dropdown for extra actions in org view (currently only includes report button) * this required some refactoring of the area because the said dropdown was not built to be placed in an area where `font-size:36px` is forced onto everything * this greatly improves consistently with user profiles which now use this type of dropdown * I decided against making the opener button mimicrate an actual button because it looks ok as is and is consitent with menu in user profiles and because I don't think this is a good design language to make a kebab menu opener look this way * add icon to the entry * add atom entry Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8572 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-23 02:06:13 +02:00
Renovate Bot	b06f4fdd63	Update dependency forgejo/release-notes-assistant to v1.3.3 (forgejo) (#8620 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.2` -> `v1.3.3` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.3.3`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.3) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.2...v1.3.3) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/95): <!--number 95 --><!--line 0 --><!--description Zml4OiBnaXQgZmV0Y2ggb24gYSBtaXJyb3IgbXVzdCBleHBsaWNpdGx5IHBydW5lIHRhZ3M=-->fix: git fetch on a mirror must explicitly prune tags<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40Mi41IiwidXBkYXRlZEluVmVyIjoiNDEuNDIuNSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8620 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-23 01:12:08 +02:00
Renovate Bot	0fb9fc752b	Update module code.forgejo.org/forgejo/act to v1.32.0 (forgejo) (#8502 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/act](https://code.forgejo.org/forgejo/act) \| `v1.29.0` -> `v1.32.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2fact/v1.32.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2fact/v1.29.0/v1.32.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/act (code.forgejo.org/forgejo/act)</summary> ### [`v1.32.0`](https://code.forgejo.org/forgejo/act/compare/v1.31.0...v1.32.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.31.0...v1.32.0) ### [`v1.31.0`](https://code.forgejo.org/forgejo/act/compare/v1.30.0...v1.31.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.30.0...v1.31.0) ### [`v1.30.0`](https://code.forgejo.org/forgejo/act/compare/v1.29.0...v1.30.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.29.0...v1.30.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuNDIuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8502): <!--number 8502 --><!--line 0 --><!--description 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-->Forgejo Actions workflows are verified with a YAML schema and common errors such as using an incorrect context (e.g. `${{ badcontext.FORGEJO_REPOSITORY }}`) or a typo in a required keyword (e.g. `ruins-on:` instead of `runs-on:`) will be reported in the action page and the web page that displays the file in the repository. It is recommended to verify existing workflows are successfully verified prior to upgrading, [as explained in the Forgejo runner release notes](https://code.forgejo.org/forgejo/runner/src/branch/main/RELEASE-NOTES.md#8-0-0).<!--description--> <!--end release-notes-assistant--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8502 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-23 01:01:31 +02:00
floss4good	d87e2e7e40	feat: Admin interface for abuse reports (#7905 ) - Implementation of milestone 5. from Task F. Moderation features: Reporting (part of [amendment of the workplan](https://codeberg.org/forgejo/sustainability/src/branch/main/2022-12-01-nlnet/2025-02-07-extended-workplan.md#task-f-moderation-features-reporting) for NLnet 2022-12-035): `5. Forgejo admins can see a list of reports` There is a lot of room for improvements, but it was decided to start with a basic version so that feedback can be collected from real-life usages (based on which the UI might change a lot). - Also covers milestone 2. from same Task F. Moderation features: Reporting: `2. Reports from multiple users are combined in the database and don't create additional reports.` But instead of combining the reports when stored, they are grouped when retrieved (it was concluded _that it might be preferable to take care of the deduplication while implementing the admin interface_; see https://codeberg.org/forgejo/forgejo/pulls/7939#issuecomment-4841754 for more details). --- Follow-up of !6977 ### See also: - forgejo/design#30 --- This adds a new _Moderation reports_ section (/admin/moderation/reports) within the _Site administration_ page, where administrators can see an overview with the submitted abuse reports that are still open (not yet handled in any way). When multiple reports exist for the same content (submitted by distinct users) only the first one will be shown in the list and a counter can be seen on the right side (indicating the number of open reports for the same content type and ID). Clicking on the counter or the icon from the right side will open the details page where a list with all the reports (when multiple) linked to the reported content is available, as well as any shadow copy saved for the current report(s). The new section is available only when moderation in enabled ([moderation] ENABLED config is set as true within app.ini). Discussions regarding the UI/UX started with https://codeberg.org/forgejo/design/issues/30#issuecomment-2908849 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7905 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: jerger <jerger@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-07-23 00:20:15 +02:00
Renovate Bot	c17dd6c5b3	Update module github.com/go-webauthn/webauthn to v0.13.4 (forgejo) (#8578 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8578 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-22 23:55:46 +02:00
Gusted	6007f2d3d5	fix: make the action feed resilient to database inconsistencies (#8617 ) This reverts commit `7380eac5a2`. Resolves forgejo/forgejo#8612 It is possible for the action feed to reference deleted repositories the `INNER JOIN` will make sure that these are filtered out. We cannot filter these out after the fact, because the value of `count` will still be incorrect. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8617 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-22 23:40:30 +02:00
0ko	8235a9752d	fix(i18n): improve en locale (#8593 ) This commit has the following: * partial port of changes from [gitea#35053](https://github.com/go-gitea/gitea/pull/35053) ([corresponding WCP](https://codeberg.org/forgejo/forgejo/pulls/8591)) * some changes were applied * some strings we've fixed ourself before * some strings we don't have * a few fixes I wanted to propose but didn't want to dedicate a PR just to add a full stop to one string Co-authored-by: DJ Phoenix <dikejoshua@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8593 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-22 20:51:58 +02:00
Renovate Bot	ed3c5588ad	Update renovate to v41.42.5 (forgejo) (#8615 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-22 19:26:22 +02:00
Gusted	d74c9daa8a	chore: disable E2E test for webkit (#8611 ) As far as I can see and tell, the newest webkit version contains a regression that makes this specific test fail. The screenshots that are uploaded upon failure do not seem to suggest that this test should fail. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8611 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-22 18:18:19 +02:00
Gusted	cf46b22272	fix: upgrade fails or hang at migration[32]: Migrate maven package name concatenation (#8609 ) - Some SQL queries were not being run in the transaction of v32, which could lead to the migration failing or hanging indefinitely. - Use `db.WithTx` to get a `context.Context` that will make sure to run SQL queries in the transaction. - Using `db.DefaultContext` is fine to be used as parent context for starting the transaction, in all cases of starting the migration `x` and `db.DefaultContext` will point to the same engine. - Resolves forgejo/forgejo#8580 ## Testing 1. Have a v11 Forgejo database with a maven package. 2. Run this migration. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8609): <!--number 8609 --><!--line 0 --><!--description dXBncmFkZSBmYWlscyBvciBoYW5nIGF0IG1pZ3JhdGlvblszMl06IE1pZ3JhdGUgbWF2ZW4gcGFja2FnZSBuYW1lIGNvbmNhdGVuYXRpb24=-->upgrade fails or hang at migration[32]: Migrate maven package name concatenation<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8609 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: JSchlarb <jschlarb@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-22 18:16:32 +02:00
Renovate Bot	34caa374d6	Update dependency forgejo/release-notes-assistant to v1.3.2 (forgejo) (#8606 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.1` -> `v1.3.2` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.3.2`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.2) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.1...v1.3.2) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/94): <!--number 94 --><!--line 0 --><!--description Zml4OiB1c2UgY2xvbmUgLS1taXJyb3IgdG8gZW5zdXJlIGdpdCBmZXRjaCByZXRyZWl2ZXMgYWxsIGJyYW5jaGVz-->fix: use clone --mirror to ensure git fetch retreives all branches<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/92): <!--number 92 --><!--line 0 --><!--description Zml4KGNpKTogZW5zdXJlIGNvbW1pdHMgYXJlIG9uZSBzZWNvbmQgYXBwYXJ0-->fix(ci): ensure commits are one second appart<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS40MC4wIiwidXBkYXRlZEluVmVyIjoiNDEuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8606 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-22 15:32:10 +02:00
Gusted	0c7612bca4	fix: follow symlinks for local assets (#8596 ) - This reverts behavior that was partially unintentionally introduced in forgejo/forgejo#8143, symbolic links were no longer followed (if they escaped the asset folder) for local assets. - Having symbolic links for user-added files is, to my understanding, a ,common usecase for NixOS and would thus have symbolic links in the asset folders. Avoiding symbolic links is not easy. - The previous code used `http.Dir`, we cannot use that as it's not of the same type. The equivalent is `os.DirFS`. - Unit test to prevent this regression from happening again. Reported-by: bloxx12 (Matrix). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8596 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-22 15:02:47 +02:00
Renovate Bot	65a9c12a1f	Update renovate to v41.42.2 (forgejo) (#8605 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-22 14:10:22 +02:00
Gusted	ccc33dd2df	chore: tweak fomantic config (#8583 ) Disable many unneeded variants in fomantic's config. Reduces the amount of CSS is generated. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8583 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-21 22:34:54 +02:00
Gusted	8e4f50a909	feat: remove fomantic's tab module (#8587 ) In similar vein of forgejo/forgejo#7416 - Fomantic's tab module is responsible for showing the right content when a tab is clicked upon. Most notably the Write/Preview tabs on the comment editor. - Remove it and replace the javascript with our own function that is able to provide everything Forgejo needs. - Replace the CSS with our own bare minimum CSS. - No functionality or visual is affected by this replacement. - E2E test added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8587 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-21 22:33:17 +02:00
Renovate Bot	199d9cf65c	Migrate renovate config (#8588 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8588 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-21 12:32:49 +02:00
Renovate Bot	8fc7295869	Update https://data.forgejo.org/actions/cascading-pr action to v2.2.1 (forgejo) (#8586 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/cascading-pr](https://code.forgejo.org/actions/cascading-pr) \| action \| patch \| `v2.2.0` -> `v2.2.1` \| --- ### Release Notes <details> <summary>actions/cascading-pr (https://data.forgejo.org/actions/cascading-pr)</summary> ### [`v2.2.1`](https://code.forgejo.org/actions/cascading-pr/compare/v2.2.0...v2.2.1) [Compare Source](https://code.forgejo.org/actions/cascading-pr/compare/v2.2.0...v2.2.1) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zMi4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzIuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8586 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-21 09:40:20 +02:00
Renovate Bot	6ee4dd753a	Update renovate to v41.40.0 (forgejo) (#8585 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-21 09:32:04 +02:00
0ko	9b470d2709	feat(ui): use simplified visibility label in dashboard orgs list (#8582 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6201 Label height making entry height inconsistent isn't a concern because this change makes them 2px shorter. _And they are already inconsistent._ Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8582 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-21 09:20:24 +02:00
floss4good	95e8bbd5f0	fix: make sure to use unaltered fields when saving a shadow copy for updated profiles or comments (#8533 ) Follow-up of !6977 ### Manual testing - User S creates an organization O and posts a comment C (on a random issue); - User R report as abuse the comment C, the organization O as well as the user S; - User S changes the content of comment C and the description of organization O as well as the description of their own profile; - Check (within DB) that shadow copies are being created (and linked to corresponding abuse reports) for comment C, organization O and user S and the content is the one from the moment when the reports were submitted (therefore before the updates made by S). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8533 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-07-20 23:52:58 +02:00
Renovate Bot	b83a554921	Update module github.com/niklasfasching/go-org to v1.9.1 (forgejo) (#8579 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8579 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-20 02:48:29 +02:00
Renovate Bot	4c34615e4e	Update dependency forgejo/release-notes-assistant to v1.3.1 (forgejo) (#8568 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| minor \| `v1.2.5` -> `v1.3.1` \| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| patch \| `v1.3.0` -> `v1.3.1` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.3.1`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.1) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.3.0...v1.3.1) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/91): <!--number 91 --><!--line 0 --><!--description Zml4OiBwdWxsIHJlcXVlc3RzIG5lZWQgc29ydD1yZWNlbnR1cGRhdGUgbm90IGp1c3QgaW4gZGVidWcgb3V0cHV0-->fix: pull requests need sort=recentupdate not just in debug output<!--description--> <!--end release-notes-assistant--> ### [`v1.3.0`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.0) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.5...v1.3.0) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - features including breaking changes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/86): <!--number 86 --><!--line 0 --><!--description ZmVhdCE6IHJlbW92ZSBtYXhpbXVtLWFnZSBvcHRpb24=-->feat!: remove maximum-age option<!--description--> - features - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/89): <!--number 89 --><!--line 0 --><!--description ZmVhdDogZ2V0IHB1bGwgcmVxdWVzdHMgbW9kaWZpZWQgc2luY2UgdGhlIGxhc3QgY2FjaGUgdXBkYXRl-->feat: get pull requests modified since the last cache update<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/88): <!--number 88 --><!--line 0 --><!--description ZmVhdDogYWRkIGxhc3QgdXBkYXRlIHRpbWUgdG8gdGhlIHB1bGwgcmVxdWVzdCBjYWNoZQ==-->feat: add last update time to the pull request cache<!--description--> - other - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/90): <!--number 90 --><!--line 0 --><!--description Y2hvcmU6IGltcHJvdmUgdmVyYm9zaXR5IHdoZW4gb2J0YWluaW5nIHB1bGwgcmVxdWVzdHM=-->chore: improve verbosity when obtaining pull requests<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/87): <!--number 87 --><!--line 0 --><!--description Y2hvcmUoY2xlYW51cCk6IHB1bGwgcmVxdWVzdCBoYW5kbGVyIG5vIGxvbmdlciBuZWVkcyBhIGJvb2wgcmV0dXJuIHZhbHVl-->chore(cleanup): pull request handler no longer needs a bool return value<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/85): <!--number 85 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM1LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.35.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/84): <!--number 84 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMi4y-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.2<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/83): <!--number 83 --><!--line 0 --><!--description Y2hvcmU6IHMvR0lUSFVCXyovRk9SR0VKT18qLyAmIHMvZ2l0aHViLi9mb3JnZS4v-->chore: s/GITHUB\_/FORGEJO\_/ & s/github./forge./<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/82): <!--number 82 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNQ==-->Update dependency go to v1.24.5<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/81): <!--number 81 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9zaC92My9jbWQvc2hmbXQgdG8gdjMuMTIuMA==-->Update module mvdan.cc/sh/v3/cmd/shfmt to v3.12.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/80): <!--number 80 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL2dvbGFuZ2NpLWxpbnQvdjIvY21kL2dvbGFuZ2NpLWxpbnQgdG8gdjIuMi4x-->Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.1<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/79): <!--number 79 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3VyZmF2ZS9jbGkvdjIgdG8gdjIuMjcuNw==-->Update module github.com/urfave/cli/v2 to v2.27.7<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/78): <!--number 78 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjM0LjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.34.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/77): <!--number 77 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjQuNA==-->Update dependency go to v1.24.4<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/76): <!--number 76 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9zaC92My9jbWQvc2hmbXQgdG8gdjMuMTEuMA==-->Update module mvdan.cc/sh/v3/cmd/shfmt to v3.11.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/75): <!--number 75 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBtdmRhbi5jYy9nb2Z1bXB0IHRvIHYwLjguMA==-->Update module mvdan.cc/gofumpt to v0.8.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/74): <!--number 74 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnb2xhbmcub3JnL3gvdG9vbHMvY21kL2RlYWRjb2RlIHRvIHYwLjMzLjA=-->Update module golang.org/x/tools/cmd/deadcode to v0.33.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/73): <!--number 73 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvbGFuZ2NpL21pc3NwZWxsL2NtZC9taXNzcGVsbCB0byB2MC43LjA=-->Update module github.com/golangci/misspell/cmd/misspell to v0.7.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/72): <!--number 72 --><!--line 0 --><!--description VXBkYXRlIGRlcGVuZGVuY3kgZ28gdG8gdjEuMjM=-->Update dependency go to v1.23<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/70): <!--number 70 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3N0cmV0Y2hyL3Rlc3RpZnkgdG8gdjEuMTAuMA==-->Update module github.com/stretchr/testify to v1.10.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/69): <!--number 69 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL2dvLXJlc3R5L3Jlc3R5L3YyIHRvIHYyLjE2LjU=-->Update module github.com/go-resty/resty/v2 to v2.16.5<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/68): <!--number 68 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vY29kZS5mb3JnZWpvLm9yZy9hY3Rpb25zL2Zvcmdlam8tcmVsZWFzZSBhY3Rpb24gdG8gdjIuNi4w-->Update https://code.forgejo.org/actions/forgejo-release action to v2.6.0<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/67): <!--number 67 --><!--line 0 --><!--description VXBkYXRlIG1vZHVsZSBnaXRodWIuY29tL3VyZmF2ZS9jbGkvdjIgdG8gdjIuMjcuNg==-->Update module github.com/urfave/cli/v2 to v2.27.6<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/66): <!--number 66 --><!--line 0 --><!--description Y2k6IHVzZSBgZGF0YS5mb3JnZWpvLm9yZ2A=-->ci: use `data.forgejo.org`<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/65): <!--number 65 --><!--line 0 --><!--description VXBkYXRlIE5vZGUuanMgdG8gdjIy-->Update Node.js to v22<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/64): <!--number 64 --><!--line 0 --><!--description VXBkYXRlIGh0dHBzOi8vY29kZS5mb3JnZWpvLm9yZy9hY3Rpb25zL2NoZWNrb3V0IGFjdGlvbiB0byB2NA==-->Update https://code.forgejo.org/actions/checkout action to v4<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/61): <!--number 61 --><!--line 0 --><!--description Q29uZmlndXJlIFJlbm92YXRl-->Configure Renovate<!--description--> <!--end release-notes-assistant--> </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zMi4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzIuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8568 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-19 23:08:04 +02:00
Renovate Bot	a16204d99f	Update https://data.forgejo.org/actions/setup-forgejo action to v3 (forgejo) (#8562 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/actions/setup-forgejo](https://code.forgejo.org/actions/setup-forgejo) \| action \| major \| `v2.0.4` -> `v3.0.1` \| --- ### Release Notes <details> <summary>actions/setup-forgejo (https://data.forgejo.org/actions/setup-forgejo)</summary> ### [`v3.0.1`](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.0...v3.0.1) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v3.0.0...v3.0.1) ### [`v3.0.0`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.13...v3.0.0) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.13...v3.0.0) ### [`v2.0.13`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.12...v2.0.13) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.12...v2.0.13) ### [`v2.0.12`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.11...v2.0.12) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.11...v2.0.12) ### [`v2.0.11`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.10...v2.0.11) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.10...v2.0.11) ### [`v2.0.10`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.9...v2.0.10) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.9...v2.0.10) ### [`v2.0.9`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.8...v2.0.9) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.8...v2.0.9) ### [`v2.0.8`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.7...v2.0.8) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.7...v2.0.8) ### [`v2.0.7`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.6...v2.0.7) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.6...v2.0.7) ### [`v2.0.6`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.5...v2.0.6) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.5...v2.0.6) ### [`v2.0.5`](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.4...v2.0.5) [Compare Source](https://code.forgejo.org/actions/setup-forgejo/compare/v2.0.4...v2.0.5) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zMi4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzIuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8562 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-19 23:01:40 +02:00
Gusted	a5f7acdd2e	fix: allow for tracked time to be removed again (#8575 ) - `getElementById` requires a id to be passed and not a query selector, change it to `querySelector`. - Regression of forgejo/forgejo#7408 - Resolves forgejo/forgejo#8571 - Add E2E tests for adding manual tracked time and removing it. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8575 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-19 16:34:21 +02:00
0ko	1b21719897	fix(ui): remove unused rule with unused class .tight (#8573 ) There's no usage of `tight` across the codebase. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8573 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-19 15:49:48 +02:00
Gusted	8c8d646099	fix: correct image source for quoted reply (#8565 ) - Since v10 replies are generated on the fly to handle quoted reply (forgejo/forgejo#5677), this means that we have to do some work to construct markdown that is equivalent to the HTML of the comment. - Images are slightly strange in the context of issues and pull requests, as Forgejo will render them in the context of the repository and as such links such as `/attachments` become `/user/repo/attachments`, the quoted reply did not take into account and would use `/user/repo/attachments` as link which means it gets transformed to `/user/repo//user/repo/attachments`. - Instead of fixing this on the backend (and maybe break some existing links), teach the quoted reply about this context and remove it from the image source before generating the markdown. Reported-by: mrwusel (via Matrix) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8565 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-19 15:03:10 +02:00
Renovate Bot	b705cfcdd8	Update linters (forgejo) (#8560 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-19 02:03:07 +02:00
Renovate Bot	fce430c6ba	Update dependency @playwright/test to v1.54.1 (forgejo) (#8558 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8558 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-18 23:20:15 +02:00
Renovate Bot	bc4c1d64cb	Update x/tools to v0.35.0 (forgejo) (#8561 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-18 17:41:12 +02:00
Renovate Bot	fe6ba0c7c9	Update dependency vite-string-plugin to v1.4.6 (forgejo) (#8559 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-18 17:28:16 +02:00
Renovate Bot	f27b46436c	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.2 (forgejo) (#8557 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-18 17:25:58 +02:00
Earl Warren	eaea89b7f0	chore(ci): cache release-notes-assistant working directory [skip ci] (#8556 ) to reduce the number of requests to the API to obtain each pull request to the minimum. - cache the working directory - upgrade to [v1.3.0](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.3.0) to get optimizations - use the oci:1 image to reduce the network load re-installing every time ## Testing - Pushed to https://codeberg.org/forgejo/forgejo/src/branch/wip-rna so that it gets access to the secrets - Manually triggered [to populate the cache](https://codeberg.org/forgejo/forgejo/actions/runs/89735) cutting the run time from ~2h to ~45min - Manually triggered [to verify the cache is reused](https://codeberg.org/forgejo/forgejo/actions/runs/89759) cutting the run time from ~45min to ~15min ![image](/attachments/3ae48d6d-0d38-4559-8544-f0bc71eb2040) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8556 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-18 16:09:25 +02:00
0ko	88c3b6dead	chore(release notes): squash repeating localization updates (#8547 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/8540 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8547 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-18 14:11:14 +02:00
0ko	6e9b97e377	fix(ui): prevent render failure on faulty org settings post (#8553 ) Fix regression of https://codeberg.org/forgejo/forgejo/pulls/7998 Same as https://codeberg.org/forgejo/forgejo/pulls/8236 but for orgs Amended existing tests to verify which error messages show up and not show up. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8553 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-18 13:13:45 +02:00
Kumi	c9949fbc64	chore: improve the wording of the "not worth a release note" category (#8542 ) Hi all, I believe that open source projects in general are under-appreciated. And no matter how big or small, every contribution matters, whether it's the implementation of a shiny new feature or just taking the time to make sure that a dependency is updated to its latest patch release. I don't usually contribute to Forgejo, but we run an instance, and highly appreciate all of the work everyone involved is doing. As such, it kinda pains me to see the "Included for completeness but __not worth__ a release note" line (emphasis mine) in the release notes every time. More often than not, when clicking on one of those PRs, you'll see that people actually do put some thought into the changes hidden down there, there may even be more or less heated discussions about them, and even though these changes may not directly influence the user experience, they are an important part of running a project like this. As such, I propose changing that line to "Included for completeness but not user facing (chores, etc.)" (courtesy of @earl-warren on Matrix). It's a really really small change, but I think it matters. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests Not applicable since there are no Go or JavaScript changes. - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation Since this is only a change to the wording of the release notes, no user documentation is required for this. - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes This PR is certainly not worthy. - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8542 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Kumi <git@kumi.email> Co-committed-by: Kumi <git@kumi.email>	2025-07-18 07:19:15 +02:00
Gusted	27e853454d	fix: use correct ACME default (#8550 ) - The `ACME_URL` setting is documented to default to Let's encrypt production server if left empty, so do precisely that. - Use a HTTP proxy to communicate with ACME if Forgejo is configured to use that. - Regression of forgejo/forgejo#7409 (previously certmagic took care of setting these defaults). - Resolves forgejo/forgejo#8548 ## Testing 1. Configure Forgejo's root URL to a public facing domain (that can pass a ACME challenge) 2. Configure Forgejo to use ACME by setting `[server].ENABLE_ACME = true` and `[server].ACME_ACCEPTTOS = true`. 3. Start Forgejo. 4. Observe that it's available via https. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8550 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-17 20:40:09 +02:00
forgejo-release-manager	5645456cac	chore(release-notes): Forgejo v12.0.0 (#8540 ) https://codeberg.org/forgejo/forgejo/milestone/12836 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8540 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-07-17 16:25:09 +02:00
oliverpool	dd3f24deef	fix: storage(minio): prevent io.Reader close (#8541 ) Fixes #8529, reverts #8527. I was able to reproduce the problem in a test: - it triggered only when the reader was an io.Reader - and the size was provided (-1 takes another code path in minio) `287b1f21e1` should fail when running: ``` docker run --rm -e MINIO_DOMAIN=minio -e MINIO_ROOT_USER=123456 -e MINIO_ROOT_PASSWORD=12345678 -p 9000:9000 data.forgejo.org/oci/bitnami/minio:2024.8.17 ``` and ``` TEST_MINIO_ENDPOINT=localhost:9000 go test -v -run ^TestMinioStorageIterator$ ./modules/storage ``` ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8541 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-07-17 12:31:38 +02:00
0ko	501cc5c7c5	merge commit: i18n: update of translations from Codeberg Translate (#8490 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8490 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-07-16 19:47:56 +02:00
Codeberg Translate	8efb6c09db	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@alius.cz> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: adf19 <adf19@noreply.codeberg.org> Co-authored-by: amv-bamboo <amv-bamboo@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: oatbiscuits <oatbiscuits@noreply.codeberg.org> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-07-16 16:30:00 +00:00
Panagiotis "Ivory" Vasilopoulos	0e1bafdff3	feat(ui): make 'Reference' in the issue sidebar more uniform (#8506 ) This breaks the reference's contents into a new line to make more space for the contents, and because using a single column to present information is something we do not do in the sidebar. Although further changes to other components may be required so that the sidebar looks uniform in its entirety, this small tweak is a small start. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8506 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-committed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net>	2025-07-16 18:29:51 +02:00
Gusted	772bb20875	feat: improve checking if diffs differ (#8451 ) This change is very similar to what was done in forgejo/forgejo#7727. When a PR is updated, `checkIfPRContentChanged` is called to check if the diff changed - this is done on a temporary repository. This change improves this checking by doing this operation on the bare repository. The change is split into several commits. The following changes were made (in this exact order) 1. Update the `getTestPatchCtx` function that was introduced in forgejo/forgejo#7727 so it can be used outside the context of conflict checking. This is a simple change by making the caller determine if it can use a bare repository or not. 2. Do a small refactor of `ValidatePullRequest` to avoid indentation hell in this function, this is purely a refactor but necessary to not blow my brain while working on this function. 3. The first enhancement, introduce `testPatchCtx` in `ValidatePullRequest` to get diverging commits via the bare repository. 4. The main enhancement, do a refactor to move the function to be part of the repository struct and do a rename as this fits as a general purpose function. This refactoring includes it no longer being specific to a temporary repository and works on a bare repository. 5. Add extensive units tests, integration tests are added in forgejo/forgejo#8450 it checks that both calls to `CheckIfDiffDiffers` work. Because it also fixes a bug I sent it as a different PR. 6. Extend the integration test to check for diffs with commits from different repositories, to demonstrate that `getTestPatchCtx` works (specifically the `env` variable). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8451 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-16 18:19:27 +02:00
Michael Kriese	09c9108a35	fix(packages): skip another stack frame from logging (#8530 ) Log the right stack frame line. We currently always show the `apiError` method call. related to #8529 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8530 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-07-16 18:07:19 +02:00
Earl Warren	ec8c0a50c2	fix: ignore "Close" error when uploading container blob (#8527 ) https://github.com/go-gitea/gitea/pull/34620/files (cherry picked from commit 7a59f5a8253402d6f98234bf0047ec53156d3af9) ## Testing Ask @viceice to run the reproducer in his environment once the v12 backport lands Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8527 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-07-16 15:23:52 +02:00
viceice	d61bd928a4	chore(renovate): enable v12 branch (#8525 ) We should enable renovate on v12 for easier backports. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8525 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: viceice <michael.kriese@gmx.de> Co-committed-by: viceice <michael.kriese@gmx.de>	2025-07-16 14:21:42 +02:00
Michael Kriese	93f029cb75	chore: failed authentication attempts are not errors and are displayed at the log info level (#8524 ) I think those are not errors but simple info messages for admins. I saw them a lot in my logs when no auth was passed to the api calls. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8524 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-07-16 14:17:06 +02:00
Renovate Bot	1695ff8125	Update module github.com/golang-jwt/jwt/v5 to v5.2.3 (forgejo) (#8521 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8521 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-16 12:39:48 +02:00
Mathieu Fenniak	7f6b9a8867	fix: expanding exactly 20 lines between diff sections leaves visual artifact (#8519 ) Fixes #8488. The issue was caused by having exactly 20 lines of text between two diff sections, which is `BlobExcerptChunkSize`. The previous diff section ends at 530, the next diff section starts at 551, leaving 20 hidden lines. This triggered an off-by-one error in determining whether a synthetic section should be added to the render to include a new expander; it was falsely being triggered when it shouldn't have been. Mostly correct logic was already present in `GetExpandDirection`, so I changed the `ExcerptBlob` web rendering to use `GetExpandDirection` on whether to include the synthetic section. Then I covered `GetExpandDirection` with unit tests covering all boundary conditions, which discovered one other minor bug -- the case where exactly `BlobExcerptChunkSize` is hidden between two diff sections should never have displayed an "Up" and "Down" expansion, but just a single expander (as below). ![Untitled-2025-07-04-1538(1)](/attachments/05573c5e-3cd4-46d5-8c1f-ecdb28302a19) Note that technically the `ExcerptBlob` change is not covered by any new tests... but the relevant logic has been moved to somewhere more easily testable and fully covered. If this isn't covered enough for tests, let me know. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8519 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-07-16 08:04:38 +02:00
Renovate Bot	ac43750ada	Update dependency webpack to v5.100.2 (forgejo) (#8520 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8520 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-16 02:56:06 +02:00
Mathieu Fenniak	e47fa23729	fix: PR not blocked by review request for a whitelisted team (#8511 ) Fixes #8491. Previous behavior always updated the newly created review to set the `official` flag to false. This logic is now removed. The most likely reason that this logic existed was that team reviews were being marked as official based upon `doer`, rather than the target team, which seems undesirable. The expected behavior was retained by removing the check for `IsOfficialReviewer(..., doer)`, ensuring that when making a review request for a team, it doesn't matter who makes the request. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8511 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-07-15 23:21:42 +02:00
Gusted	e186b5c039	feat: reduce amount of morphing for milestone (#8350 ) - Avoid morphing too much HTML, only morph the currently selected milestone text. - Changes that the milestone dropdown is not morphed, which contains event listeners and newer versions of the morphing library seem does not preserve event listeners in most cases. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8350 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-15 02:22:49 +02:00
oliverpool	5158493ba6	git/commit: re-implement submodules file reader (#8438 ) Reimplement the submodules parser to not depend on the go-git dependency. See #8222 for the full refactor context. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8438 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-07-15 00:20:00 +02:00
0ko	48cc6e684a	fix(ui): improve branch filter help (#8509 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7823. * move `documentation` into link content * fix software name Preview: https://codeberg.org/attachments/b17b9e90-4f82-495e-914a-b481c6f82adc -> https://codeberg.org/attachments/bb139365-966b-4b0f-83dd-7b95e34cff32 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8509 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-14 19:31:26 +02:00
Renovate Bot	f1fc008d02	Lock file maintenance (forgejo) (#8503 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8503 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-14 16:25:59 +02:00
zokki	1937fcf476	fix(ui): multiple ComboMarkdownEditors on one page interfere (#8417 ) When there are multiple combo-markdown-editors, then only the first will get changes from the toolbar buttons. Fixes: #6742 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8417 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-07-14 13:24:45 +02:00
Renovate Bot	81e59014da	Update renovate to v41.32.0 (forgejo) (#8501 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-14 07:00:31 +02:00
Renovate Bot	e4bf651aa7	Update module github.com/go-webauthn/webauthn to v0.13.3 (forgejo) (#8494 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8494 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-13 00:24:14 +02:00
Shiny Nematoda	d07821d275	fix(code-search): HighlightSearchResultCode should count the number of bytes and not the number of runes (#8492 ) fixes incorrect handling of unicode in the matched line Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8492 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-07-12 18:03:37 +02:00
kochklops	9f5e1157f0	feat: introduce global merge message templates (#8347 ) Allow for a directory `default_merge_message` in the `CustomPath` to be used as a fallback if no merge template is specified by the repository. Effectively being a global merge message template feature. Resolves #6648 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8347 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: kochklops <kochklops@noreply.codeberg.org> Co-committed-by: kochklops <kochklops@noreply.codeberg.org>	2025-07-12 16:00:42 +02:00
Renovate Bot	f666b882a8	Update dependency webpack to v5.100.1 (forgejo) (#8493 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8493 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-12 02:46:48 +02:00
Paul Campbell	9dfdacf54f	feat: add configuration to only push mirror selected branches (#7823 ) Adds the ability to selectively choose which branches are pushed to a mirror. This change adds an additional text box on the repository settings for each push mirror. Existing behavior is preserved when the field is left blank. When the repository is being pushed, only branches matching the comma separated branch filter are pushed. Resolves forgejo/forgejo#7242 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7823 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Paul Campbell <pcampbell@kemitix.net> Co-committed-by: Paul Campbell <pcampbell@kemitix.net>	2025-07-12 00:39:35 +02:00
Earl Warren	0b74ecebe0	i18n: update of translations from Codeberg Translate (#8410 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8410 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-07-11 08:33:18 +02:00
Codeberg Translate	dc6626453a	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Atul_Eterno <atul_eterno@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Laxystem <the@laxla.quest> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: aivot-on <aivot-on@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: kne <kne@noreply.codeberg.org> Co-authored-by: oster5 <oster5@noreply.codeberg.org> Co-authored-by: readevalprintloop <readevalprintloop@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: volkan <volkan@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yurtpage <yurtpage@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/be/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bn/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/hu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sr_SP/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/vi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant_HK/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ca/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/et/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fa/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ga/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hu/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/id/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/is/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lt/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ml/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ro/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/si/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-07-11 05:58:02 +00:00
Renovate Bot	74f7250259	Update module golang.org/x/net to v0.42.0 (forgejo) (#8484 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [golang.org/x/net](https://pkg.go.dev/golang.org/x/net) \| [`v0.41.0` -> `v0.42.0`](https://cs.opensource.google/go/x/net/+/refs/tags/v0.41.0...refs/tags/v0.42.0) \| [![age](https://developer.mend.io/api/mc/badges/age/go/golang.org%2fx%2fnet/v0.42.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/golang.org%2fx%2fnet/v0.41.0/v0.42.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8484 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-11 07:53:56 +02:00
Earl Warren	316073a925	fix: replace {workflowname} with {workflowfilename} in dispatch API (#8481 ) The current {workflowname} in the API endpoint /repos/{owner}/{repo}/actions/workflows/{workflowname}/dispatches is misleading because it does not refer to the name of the workflow but to the filename in which the workflow is defined. Change to /repos/{owner}/{repo}/actions/workflows/{workflowfilename}/dispatches --- There is no need for testing because it is a documentation change. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8481 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-11 05:07:33 +02:00
Renovate Bot	a8d8a4c106	Update module golang.org/x/crypto to v0.40.0 (forgejo) (#8483 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8483 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-11 02:51:56 +02:00
Renovate Bot	51b42e3a84	Update dependency sharp to v0.34.3 (forgejo) (#8482 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8482 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-11 02:49:55 +02:00
Gusted	049899b56b	feat: AGit push options starting with `{base64}` are decoded (#8479 ) - When specifying push options, tooling like [git-repo-go](https://github.com/alibaba/git-repo-go) encodes pushoption values if they contain newlines or non-ASCII characters as they cannot be easily specified via the CLI otherwise. - Recognize such base64 encoded values in the pushoptions (those that have the `{base64}` prefix), if the base64 decoding fails we return the original value. - Resolves forgejo/forgejo#8161 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8479): <!--number 8479 --><!--line 0 --><!--description QUdpdCBwdXNoIG9wdGlvbnMgc3RhcnRpbmcgd2l0aCBge2Jhc2U2NH1gIGFyZSBkZWNvZGVk-->AGit push options starting with `{base64}` are decoded<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8479 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-10 17:51:19 +02:00
Renovate Bot	2c01097315	Update module golang.org/x/sys to v0.34.0 (forgejo) (#8470 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8470 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-10 17:12:27 +02:00
Maxim Slipenko	b332d1c2e4	several fixes of ALT Package registry (#8475 ) closes #7946 - The `rpmsRepoPattern` regex has been fixed to handle releases with dots correctly. For example, the version `0.9.0-alt1.git.17.g2ba905d` is valid, just like `0.1.0-1.n1` mentioned in the issue (https://codeberg.org/forgejo/forgejo/issues/7946#issue-1628991) - getEntries now returns entry names. In the integration tests, there were lines like: ```go assert.Equal(t, []string{"", ""}, result.ProvideNames) ``` and it’s unclear how such test logic could have ever worked correctly (fixes problems with deps https://codeberg.org/forgejo/forgejo/issues/7946#issuecomment-5109795) - ALT is an acronym for ALT Linux Team, so `Alt` was replaced with `ALT`. Strictly speaking, it should probably be `ALT Linux`, but since we use `Arch` instead of `Arch Linux`, this seems fine. Also, Distrowatch shows `Arch`/`ALT` in its dropdown, so it’s consistent. - The strings `"Alt Linux Team"` and `"Sisyphus"` in the `Origin` and `Suite` fields have been replaced with `setting.AppName` and `"Unknown"`. `Unknown` is a valid value and is set by default, so this won’t cause any issues. - The documentation link has been fixed: (404 docs.gitea.com/usage/packages/alt/ -> 200 forgejo.org/docs/latest/user/packages/alt/) --- ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8475 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Maxim Slipenko <maks1ms@altlinux.org> Co-committed-by: Maxim Slipenko <maks1ms@altlinux.org>	2025-07-10 17:12:07 +02:00
Renovate Bot	7c06db89e3	Update module golang.org/x/sync to v0.16.0 (forgejo) (#8469 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8469 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-10 14:14:30 +02:00
Gusted	7cd313951a	fix: use parent context for new transactions (#8464 ) - Older code (154 places to be exact) that want to do transactions uses `TxContext`. If the context is not already in a transaction then it uses `DefaultContext` for the new transaction. - Not reusing the context it was given leads to two problems: for tracing (forgejo/forgejo#6470) any SQL code that is executed inside this transaction is not shown in the trace. If the context is cancelled then the transaction is not cancelled and will always complete (given there's no SQL error). - When this function was introduced it didn't take a parent context, hence the usage of `DefaultContext`. When `parentCtx` was introduced it was only used to avoid nested transactions and use the parent's transaction. I do not see any reasons why the parent context cannot be reused, it is reused in the newer transaction function `WithTx` without any known problems. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8464 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-10 14:07:18 +02:00
Renovate Bot	3f1ed6dde4	Update dependency webpack to v5.100.0 (forgejo) (#8467 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [webpack](https://github.com/webpack/webpack) \| [`5.99.9` -> `5.100.0`](https://renovatebot.com/diffs/npm/webpack/5.99.9/5.100.0) \| [![age](https://developer.mend.io/api/mc/badges/age/npm/webpack/5.100.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/webpack/5.99.9/5.100.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>webpack/webpack (webpack)</summary> ### [`v5.100.0`](https://github.com/webpack/webpack/releases/tag/v5.100.0) [Compare Source](https://github.com/webpack/webpack/compare/v5.99.9...v5.100.0) ##### Fixes - Fixed the case where an ES modules entry chunk depends on the runtime chunk hash - Handle function exports in webpack module wrapper - Ensure dependent chunks are imported before startup & fix duplicate export of 'default' - Generate lose closing brace when exports are unprovided - CleanPlugin doesn't unlink same file twice - Fixed unexpected error codes from fs.unlink on Windows - Typescript types ##### Features - HMR support for ES modules output - ES module output mode now fully supports `splitChunks` when external variables and runtimeChunk are not set. - Added support `using` keyword - Implemented tc39 [Defer Module Evaluation](https://github.com/tc39/proposal-defer-import-eval) (experiment) - Support dynamic template literals expressions for `new URL(...)` - Enable ES modules worker chunk loading for Node.js targets - Improved support for destructing in DefinePlugin - Added [VirtualUrlPlugin](https://github.com/webpack/webpack/tree/main/examples/virtual-modules) to support `virtual:` scheme ##### Performance Improvements - Remove useless startup entrypoint runtime for ES modules output - Cache `new URL(...)` evaluate expression </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8467 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-10 10:58:57 +02:00
forgejo-release-manager	86a13589fa	chore(release-notes): Forgejo v11.0.3 (#8472 ) https://codeberg.org/forgejo/forgejo/milestone/20958 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8472 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-07-10 10:50:24 +02:00
forgejo-release-manager	ddc9240a14	chore(release-notes): Forgejo v7.0.16 (#8473 ) https://codeberg.org/forgejo/forgejo/milestone/17405 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8473 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-07-10 10:50:11 +02:00
Gusted	3c7e3ec9e2	chore: disable mismatched root URL e2e test for safari (#8460 ) - I cannot give a good rationale why Mobile Safari and webkit is failing this test quite consistently and also succeed quite often. We add a script to ensure that we get a mismatched URL - but these two browsers either ignore this script sometime or delays the execution until after the root URL check is done. - Because it is very hard to run webkit and mobile safari without running a heavily containerized environment (without a graphical interface) it is near impossible to debug this issue properly; save ourselves a headache and disable it instead. I find it more likely to be a problem with my playwright test than it to be a problem with the mismatched root URL code. - Ref forgejo/forgejo#8359 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8460 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-10 01:56:29 +02:00
Gusted	ba42ebf1ae	chore: do not navigate to same URL in E2E test (#8461 ) - In `test.beforeEach` the browser is navigated to `/user2/repo1/pulls/5` and the test environment is prepared by making sure the pull request is not WIP. At the start of `simple toggle` the browser is navigated to the same URL (and the browser is already on this URL) which the Mobile Chrome browser does not handle gracefully and reliably errors with `net::ERR_ABORTED`. - Because we are already at that URL, do not try to navigate to it again. - I cannot offer a rationale why the Mobile Chrome browser does give a error when this happens in subsequent tests of 'Pull: Toggle WIP'. - Ref forgejo/forgejo#8359 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8461 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-10 00:47:39 +02:00
Gusted	8ac572682b	feat(ui): add links to assigners in issue comments (#8264 ) When a user is assigning an issue or PR to another user, an entry is posted in the issue comment list. This PR adds a link to the one assigning the issue. Additionally, tests for preventing XSS vulnerabilities in label rendering were added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8264 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-09 23:23:33 +02:00
fruzitent	13b560c191	feat: add _URI entries for mail config (#8116 ) For the mailer and incoming_mailer config, allow passwords to be read from a file. Add `_URI` config values and use the existing `loadSecret` function to do this. Resolves https://codeberg.org/forgejo/forgejo/issues/8113 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8116 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: fruzitent <fruzit@gmail.com> Co-committed-by: fruzitent <fruzit@gmail.com>	2025-07-09 23:15:26 +02:00
Nis Wechselberg	24d6972f6b	fix: ASCII equal fold for authorization header (#8391 ) For the "Authorization:" header only lowercase "token" was accepted. This change allows uppercase "Token" as well. Signed-off-by: Nis Wechselberg <enbewe@enbewe.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8391 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Nis Wechselberg <enbewe@enbewe.de> Co-committed-by: Nis Wechselberg <enbewe@enbewe.de>	2025-07-09 23:01:03 +02:00
Gnarwhal	f324ee73c5	fix: file action button spacing when wrapped (#8415 ) The download, edit, and trash icon buttons had an extraneous `<span>` that was inconsistent with the copy and RSS button which caused spacing issues when wrapping. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8415 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gnarwhal <git.aspect893@passmail.net> Co-committed-by: Gnarwhal <git.aspect893@passmail.net>	2025-07-09 22:58:49 +02:00
joneshf	48035bbd4e	chore: add tests for `admin auth` subcommands (#8433 ) This PR is adds almost all tests in `cmd/admin_auth_oauth_test.go` with a bit of refactoring beforehand to make the tests easier to write. These should be legitimate refactors where the implementation changes but the public API/behavior does not change. All of the changes in this PR are done to align with how tests are written in `cmd/admin_auth_ldap_test.go`. Since `cmd/admin_auth_ldap.go` is a sibling file to `cmd/admin_auth_oauth.go`, it seems like their test files should also be aligned. There are some tests added that show the current behavior as not ideal. E.g. not being able to update certain fields, or being able to set fields that are ultimately ignored. These are added so that the behavior is at least shown a bit more visibly. There should likely be a follow-up to fix some of these issues. But that will almost certainly be a breaking change that I'd rather avoid in this PR. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8433 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: joneshf <jones3.hardy@gmail.com> Co-committed-by: joneshf <jones3.hardy@gmail.com>	2025-07-09 20:55:10 +02:00
Earl Warren	32e8610b20	fix(email): actions notification template confuses branch with PR (#8448 ) When a mail notification is sent because of a failed pull request run, the body will show: Branch: #661 (f57df45) where #661 is the number of the pull request and not the branch. This is because run.PrettyRef() is used and has a misleading special case returning a PR number instead of a ref. Remove the textual description as it can easily be discovered from the run web page linked in the mail. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8448 Reviewed-by: Christopher Besch <mail@chris-besch.com> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-09 09:43:33 +02:00
Gusted	11934670ec	fix: correctly mark reviews as stale for AGit PRs (#8450 ) The argument order for `ValidatePullRequest` is to first give the new commitID and then the old commit ID. This results in reviews not being marked as stale when they are not stale and reviews as not stale when they are stale. The test will fail if the fix is not present. Add testing for the following three scenarios: 1. A review is made, the PR is updated and as a consequence the PR's diff is changed. The review is now marked as stale. 2. A review is made but in the meantime the PR is updated and the review is submitted on a older commit ID. If the diff changed the review is marked as stale. 3. A review that was made against a older commit ID is no longer marked as stale if the PR is force-pushed to that older commit ID. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8450 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-09 07:38:00 +02:00
Renovate Bot	0636b3087f	Update dependency go to v1.24.5 (forgejo) (#8449 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.24.4` -> `1.24.5` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8449 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-09 07:32:03 +02:00
Renovate Bot	34b77270e8	Update dependency mermaid to v11.8.1 (forgejo) (#8440 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8440 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-09 00:14:17 +02:00
0ko	f8d6a61157	fix(ui): make releases filtering responsive (#8399 ) * Improve consistency with other list pages (issues, PRs) * Improve mobile usability * Refresh the look a bit --- Bug fix: Currently on mobile filters get squashed and are not very usable: https://codeberg.org/attachments/5d6ad65e-6ae5-4819-a3dc-75fb4fe77960 This commit: https://codeberg.org/attachments/6eb0843e-49fd-4687-ab38-9ba60a6cc6c8 --- Consistency fix: Use same element order and spacing as in issue list: https://codeberg.org/attachments/9cdb042d-cdce-4243-a610-a1eabe3f4fc3 On desktop this means full width search bar: https://codeberg.org/attachments/bdd50c3d-76f3-4ad0-884e-5717f9c86154 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8399 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-07-08 16:58:49 +02:00
Renovate Bot	eb8ed7e5e9	Update module code.forgejo.org/forgejo/act to v1.29.0 (forgejo) (#8442 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/act](https://code.forgejo.org/forgejo/act) \| `v1.28.0` -> `v1.29.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/code.forgejo.org%2fforgejo%2fact/v1.29.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/code.forgejo.org%2fforgejo%2fact/v1.28.0/v1.29.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>forgejo/act (code.forgejo.org/forgejo/act)</summary> ### [`v1.29.0`](https://code.forgejo.org/forgejo/act/compare/v1.28.0...v1.29.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.28.0...v1.29.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4yMy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMjMuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8442 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-08 07:59:34 +02:00
oliverpool	cee2aae4ca	fix: corrupted wiki unit default permission (#8234 follow-up) (#8258 ) Closes #8119, follow-up of #8234 #8234 "only" fixed the case when a new wiki setting was applied. However it lacked 2 aspects: - fixing the already corrupted unit permission in the database (required a migration) - fixing the API route Both aspects should now be covered. Additionally, I commented out the unused `UnitAccessMode` and indicated that they are only used for the wiki-unit (hopefully saving some time to future code-readers). ### Testing - go to a commit before #8234 (e.g. `285f66b782`) - create 3 repositories - save the wiki settings of the second, without any change - set the wiki of the third to be globally writable - verify the `default_permissions` column in the database, of the unit `5`: 0, 2, 3 - stop Forgejo, switch to this PR and start Forgejo - verify that the logs writes `Migration[35]: Fix wiki unit default permission` - verify the `default_permissions` column in the database, of the unit `5`: 0, 0, 3 Before: ![2025-06-23-150055.png](/attachments/1eb92507-b8b4-422c-921c-4296a91172e7) After: ![2025-06-23-150853.png](/attachments/c7b53397-54fe-487d-89da-e10b26538cde) - [x] I did not document these changes and I do not expect someone else to do it. - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8258 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-07-07 18:04:00 +02:00
Michael Jerger	c69e8cde7a	chore(ci): temporarily disable flaky ActivityPub related tests (#8395 ) As discussed in forgejo/forgejo#8274 A workaround till analysis of test timeouts helped us to fix the root cause. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8395 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-07-07 14:29:57 +02:00
Renovate Bot	63236ed693	Lock file maintenance (forgejo) (#8436 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMTcuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8436 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-07 07:39:56 +02:00
Renovate Bot	1d310e6df5	Update renovate to v41.23.1 (forgejo) (#8434 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-07 06:50:50 +02:00
Gusted	da1c0f7f18	fix: enable multi-line math equations in wiki (#8424 ) - When math equation support was added into Gitea it allowed for math equations to be typed over multiple lines via `\[ ... \]` and `$$ ... $$`. Specifically the former delimiters caused problems with legitimate markdown input to be seen as a math equation and therefore was disabled in `e1a82a15d3`. - Enable this multi-line parsing for wiki as it's less likely to cause issues in the context of the wiki. - It is hard to fix this issue in a proper way without investing a good amount of time in Goldmark as explained in https://codeberg.org/forgejo/forgejo/issues/6902#issuecomment-2845317 - Added unit test. - Resolves forgejo/forgejo#6902 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8424 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-06 22:00:09 +02:00
Antonin Delpeuch	f5cbb9604d	fix(ui): visually distinguish the branch name in action description (#8418 ) ## Checklist ### Tests I don't think this deserves a test. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. ### What does it fix In the dashboard, when someone deletes a branch, the message that is displayed doesn't distinguish the branch name from the rest of the message visually. Because that's user-provided content, I find it odd, as it blends in with the system-generated message. For consistency with other messages (such as the one obtained when renaming a repository), I propose to show the branch name in monospaced font via the `<code></code>` markup. I didn't update the other languages by fear of interfering with Weblate but I would be happy to update the other languages accordingly if you wish so. I didn't add any tests because I don't think it's necessary for such a small change. #### Before ![image](/attachments/f158626e-fa58-4559-81b7-dd99045e1a33) #### After ![image](/attachments/f12fe539-5c9a-4d13-a912-414591b8726d) #### Renaming a repository (unchanged, just for reference) ![image](/attachments/a2366afb-6e24-4ad7-a41d-1c0ac6f04725) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8418 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-07-06 14:26:20 +02:00
Gusted	ff5ef8fe8b	fix: check PR reference on base repository (#8431 ) - Regression of forgejo/forgejo#8425 (I was fooled by the github flow being `headGitRepo`). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8431 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-06 14:23:47 +02:00
Renovate Bot	466e7bfcb8	Update module github.com/go-webauthn/webauthn to v0.13.1 (forgejo) (#8427 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/go-webauthn/webauthn](https://github.com/go-webauthn/webauthn) \| `v0.13.0` -> `v0.13.1` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgo-webauthn%2fwebauthn/v0.13.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgo-webauthn%2fwebauthn/v0.13.0/v0.13.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>go-webauthn/webauthn (github.com/go-webauthn/webauthn)</summary> ### [`v0.13.1`](https://github.com/go-webauthn/webauthn/releases/tag/v0.13.1) [Compare Source](https://github.com/go-webauthn/webauthn/compare/v0.13.0...v0.13.1) ##### Bug Fixes - protocol: conditional create uv check ([#434](https://github.com/go-webauthn/webauthn/issues/434)) ([2e13a60](`2e13a60aec`)), closes [#361](https://github.com/go-webauthn/webauthn/issues/361) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNy4yIiwidXBkYXRlZEluVmVyIjoiNDEuMTcuMiIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8427 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-06 07:25:09 +02:00
Gusted	288c56f5d3	feat: if OAuth2 is disabled return 'Not found' for openid configuration (#8426 ) - If a Forgejo has disabled being a OAuth2 provider via `[oauth2].ENABLED = false` then return 'Not found' when clients requests `.well-known/openid-configuration` to reflect that OAuth2 is not supported. - This allows clients to query if Forgejo has OAuth2 enabled. - Resolves forgejo/forgejo#6978 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8426 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-06 07:19:23 +02:00
Gusted	74981d9e97	chore: Refactor `Is{Reference,Branch}Exist` (#8425 ) - Instead of invoking a new git command to check if a reference exists, use the already opened git repository that uses a batch check to check if the reference exists. - Instead of invoking a new git command to check if a branch exists, use the already opened git repository that uses a batch check to check if the branch exists. - Do not depend on `IsReferenceExist` as its no longer used by any other function. - Specify `--quiet` to not waste Git's time on printing something we do not use. - Run it via `Run` so no buffers are created for stdout and stderr. - Add a test that verifies `IsBranchExist` works and does not work for other types of references. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8425 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-06 07:16:43 +02:00
Renovate Bot	212e8ac348	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.2.1 (forgejo) (#8422 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8422 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-05 18:33:45 +02:00
Renovate Bot	6e239a7f65	Update dependency @vitest/eslint-plugin to v1.3.4 (forgejo) (#8420 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-05 16:38:18 +02:00
Gusted	5f514a6e4d	chore: refactor `LineBlame` (#8419 ) - Refactor arguments of the function to make more sense. - `path` can be inferred from `repo` receiver. - `line` can be `uint64`. - The two calls to this function check for specific errors, do this error checking in the function. - The ID of a object format is not 40 in the case of SHA256, get the object format and use the correct length. - Add test coverage for `LineBlame`, notably it checks for the errors that can legitimately happen. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8419 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-05 16:31:53 +02:00
Renovate Bot	d8c5083c6f	Update linters (forgejo) (#8421 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8421 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-05 16:16:10 +02:00
joneshf	d4873965c8	feat: add `--attribute-ssh-pubic-key` to forgejo admin auth add-oauth and update-oauth CLI (#8383 ) As explained in https://codeberg.org/forgejo/forgejo/issues/8072, the CLI was missing a way to set the `AttributeSSHPublicKey` field that was added in https://codeberg.org/forgejo/forgejo/pulls/6232. We add a flag to do that, and thread it through where necessary. The checklist mentions adding tests, but the code in `cmd/admin_auth_oauth.go` seems to not have a `cmd/admin_auth_oauth_test.go`, and I'm not sure if there's something else that's testing this behavior. I can try to add tests if there's already a good spot to slot them in. If not, it seems like adding a `cmd/cmd/admin_auth_oauth_test.go` that worked similar to the current `cmd/admin_auth_ldap_test.go` might be a bit big of a change. As far as documentation, I might be wrong about this, but it seems like the CLI docs are only updated once there's a new release. I can't do that yet, so I don't think that either of the checkboxes apply to this PR. ## Manual testing There are two CLI commands that can be validated: `forgejo admin auth add-oauth` and `forgejo admin auth update-oauth`. 1. `forgejo admin auth add-oauth` requires an actual auto-discovery URL that responds appropriately. - If there is not already an OIDC provider set up that has an auto-discovery URL, the sample OIDC provider at https://openidconnect.net/ can be used with it's auto-discovery URL of https://samples.auth0.com/.well-known/openid-configuration. 1. Run the following command to create a new OAuth2 authentication source: ```Console forgejo admin auth add-oauth --attribute-ssh-public-key=ssh_public_key_field --auto-discover-url=https://samples.auth0.com/.well-known/openid-configuration --name='Delete this later' --provider=openidConnect ``` - This should create a new OAuth2 authentication source named "Delete this later" with the "Public SSH key attribute" field set to `ssh_public_key_field`. <details> <summary>Screenshot of newly created OAuth2 authentication source</summary> ![forgejo-admin-auth-add-oauth](/attachments/166f3f82-adc8-4ef9-9128-fb8a923fdc0d) </details> 1. `forgejo admin auth update-oauth` requires the id of the newly created OAuth2 authentication source. - This id can be found on either the "Authentication sources" page (`/admin/auths`) or as the URL of the newly created OAuth2 authentication source (`/admins/auths/{id}`). 1. Run the following command to update the OAuth2 authentication source: ```Console forgejo admin auth update-oauth --attribute-ssh-public-key=ssh_public_key_field_new_name --id=<id-of-new-oauth2-authentication-source> ``` - This should change the "Public SSH key attribute" to `ssh_public_key_field_new_name`. <details> <summary>Screenshot of updated OAuth2 authentication source</summary> ![forgejo-admin-auth-update-oauth](/attachments/9674dba0-6ed1-4fb8-8eb8-d7f33cbf8c3a) </details> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8383): <!--number 8383 --><!--line 0 --><!--description YWRkIGAtLWF0dHJpYnV0ZS1zc2gtcHViaWMta2V5YCB0byBmb3JnZWpvIGFkbWluIGF1dGggYWRkLW9hdXRoIGFuZCB1cGRhdGUtb2F1dGggQ0xJ-->add `--attribute-ssh-pubic-key` to forgejo admin auth add-oauth and update-oauth CLI<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8383 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: joneshf <jones3.hardy@gmail.com> Co-committed-by: joneshf <jones3.hardy@gmail.com>	2025-07-05 13:53:00 +02:00
Renovate Bot	a789dd76d5	Update dependency mermaid to v11.8.0 (forgejo) (#8405 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8405 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-04 23:09:26 +02:00
zokki	72620db8df	feat: add a `EXCLUSION` to the logger (#8212 ) This feature is intended to help reduce noisy logs generated by routine Kubernetes probes and Prometheus scraping. While logs are essential, these specific requests (e.g., to /metrics and /api/healthz) generally don't provide useful information and tend to clutter the output. The goal is to introduce functionality that effectively acts as the inverse of the existing EXPRESSION mode—allowing logging to be excluded based on a condition, rather than included. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8212 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: zokki <zokki.softwareschmiede@gmail.com> Co-committed-by: zokki <zokki.softwareschmiede@gmail.com>	2025-07-04 00:08:23 +02:00
Renovate Bot	b669564f39	Update module github.com/alecthomas/chroma/v2 to v2.19.0 (forgejo) (#8393 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8393 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-04 00:06:28 +02:00
Earl Warren	aca7e8a9af	fix: cancelled or skipped runs are not failures for notifications (#8366 ) From the point of view of a notification, the only status which must be considered a fail is `StatusFailure`. All others are either success `StatusSuccess` or undetermined `StatusCancelled` and `StatusSkipped`. Those are the only four status in which a run can be when it reaches the `ActionRunNowDone` function because it is filtered on `IsDone` which is only true for those. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8366 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-03 22:53:55 +02:00
Gusted	b580c830e0	chore: improve reliability of webauthn e2e test (#8400 ) - This test is the source of many transient errors https://codeberg.org/forgejo/forgejo/issues/8359#issuecomment-5655557 and is semi-reproducible locally. Any debugging code that is added will result in the error no longer being reproducible, making it hard to say why this is failing. - It no longer seems necessary to add this `waitForURL` call as Playwright now seems to gracefully handle the case where we want to go to a specific page while playwright might still be navigating to another URL that was initiated by clicking on a button - thus removing the source of the transient error altogether. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8400 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-03 20:10:58 +02:00
Danko Aleksejevs	4935e6e1a3	fix: skip empty tokens in SearchOptions.Tokens() (#8261 ) Query string tokenizer could return a list containing empty tokens when the query string was `\` or `"` (probably in other scenarios as well). This seems undesirable and is what triggered #8260, but I'm posting this separately from that fix in case I'm wrong. Feel free to reject if so. The actual change in behavior is that now searching for `\` or `"` behaves the same as if the query were empty (the bleve/elastic code checks that the tokenizer actually returned, anything rather than just query being non-empty). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8261 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-07-03 11:29:04 +02:00
Earl Warren	bc2e4942fc	i18n: update of translations from Codeberg Translate (#8295 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8295 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-07-03 06:23:05 +02:00
Codeberg Translate	8cc2086402	i18n: update of translations from Codeberg Translate Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Xinayder <xinayder@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: jedik <jedik@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kwoot <kwoot@noreply.codeberg.org> Co-authored-by: leandro-costa <leandro-costa@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Co-authored-by: zub <zub@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nb_NO/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-07-03 03:51:11 +00:00
Earl Warren	c0eeb75322	fix: disable Forgejo Actions email notifications on recovery (#8374 ) - Make the migration to add an index a noop - do not remove it as it would break v12.next & v13.next - Keep the logic that relies on finding the last run, only always fail to find which is the same as assuming each run is one of a kind Refs forgejo/forgejo#8373 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8374 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-07-02 19:23:07 +02:00
Renovate Bot	bcde3aea4f	Update module github.com/go-chi/cors to v1.2.2 (forgejo) (#8380 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8380 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-02 16:40:48 +02:00
Renovate Bot	abb95c8c92	Update dependency globals to v16.3.0 (forgejo) (#8381 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8381 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-02 16:34:56 +02:00
Gusted	0ecd9d9682	fix: user activation with uppercase email address (#8367 ) - Right before the call to user email activation, the user is updated [^1]. This causes the email to be lowered, which in turn makes the call to activate the user activation fail (on database where collation is case sensitive, which is the recommend collation by Forgejo). - The code in `BeforeUpdate` is quite confusing, the comment has become slightly out of date and was reworded to reflect reality and its purpose. The code is also slightly reworked to only lower the email for the `AvatarEmail` field to avoid causing side-effect. - Added unit test. - Resolves forgejo/forgejo#8354 [^1]: `4927d4ee3d/routers/web/auth/auth.go (L785)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8367 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-07-02 13:04:22 +02:00
Bojidar Marinov	1ed750a33a	feat: detect Interlisp sources as text (#8377 ) This PR detects Interlisp files (files that include "(DEFINE-FILE-INFO" somewhere near the start, and do not have an .LCOM extension) as text files and displays them as such in the web UI. To check for extensions, I had to extend the `typesniffer.DetectContentType` function to accept an extra filename parameter—which could be useful for future filetype detection features. It is possible that a few of the places I modified pass a full file path instead of just passing a file name. Implements #8184 ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - NA - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8377): <!--number 8377 --><!--line 0 --><!--description ZGV0ZWN0IEludGVybGlzcCBzb3VyY2VzIGFzIHRleHQ=-->detect Interlisp sources as text<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8377 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com> Co-committed-by: Bojidar Marinov <bojidar.marinov.bg@gmail.com>	2025-07-02 07:38:46 +02:00
Michael Jerger	6f501b1fdf	Improved signature handling & instance actor (#8275 ) This PR is part of https://codeberg.org/forgejo/forgejo/pulls/4767 It improves the signature handling: 1. move logic to a service (might be used from other services as well) 2. make a clear difference between ` ReqHTTPUserSignature` and `ReqHTTPUserOrInstanceSignature` 3. improve test ability (activitypub/client & distant_federation_server_mock Adjust instance actor 1. name & 2. webfinger ## Strategy for next PRs is Integration tests are in the driving seat. I will step by step add integration tests form original PR and add code required by the integration test changes. ## Meta Proposal howto process large PRs can be discussed here: https://codeberg.org/forgejo-contrib/federation/pulls/37 Current state with rendered diagrams can be found here: https://codeberg.org/meissa/federation/src/branch/merge-large-pr/doc/merge-large-pr.md Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8275 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-07-01 19:49:00 +02:00
Renovate Bot	7a8ff20bf3	Update github.com/google/pprof digest to 6e76a2b (forgejo) (#8368 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8368 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-01 07:17:12 +02:00
Renovate Bot	8f28942233	Update ghcr.io/devcontainers/features/git-lfs Docker tag to v1.2.5 (forgejo) (#8369 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-01 06:31:22 +02:00
Renovate Bot	2b5123a90f	Update dependency @playwright/test to v1.53.2 (forgejo) (#8372 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-01 06:09:20 +02:00
Renovate Bot	0730e5481f	Update vitest monorepo to v3.2.4 (forgejo) (#8371 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-07-01 06:08:49 +02:00
Robert Wolff	2f0a993a33	fix(ui): repo settings units overview anchor (#8322 ) This fixes (or features?) a small nit that I found disturbing when clicking through repository settings. # Test - open repo settings - click in navigation bar on "Units" and then on "Overview" - the page opens now at top (not jumping down as before that change) - click on "Issues", etc. -> the page still jumps to the related sections Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8322 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-07-01 01:07:19 +02:00
Gusted	0ecb25fdcb	chore: do not require empty fixtures to clean tables (#8353 ) - A mistake that is often made is to not put a empty fixture for tables that gets populated in a test and should be cleaned up between runs. The CI does not detect such issues as these never arise on the first run of the test suite and are only noticed when developers run a test for a second time, unless you are aware of this behavior (which very few do as this is not documented and pure folk knowledge) can end up in chasing a bug that does not exist for hours. forgejo/forgejo#7041, forgejo/forgejo#7419, meissa/forgejo#21, forgejo/forgejo#5771 - Because we now own the fixture loader (forgejo/forgejo#7715), its rather simple to ensure that all tables that did not receive fixtures should be cleaned between runs and removes the need to place empty fixture files. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8353 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-30 23:04:16 +02:00
0ko	6e58d285c7	merge commit: fix(ui): Add pasted images to dropzone (#7749 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7749 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-06-30 14:30:25 +02:00
Beowulf	6e66380408	fix(ui): Add pasted images to dropzone This adds pasted images to the dropzone to provide the same experience as when using the dropzone. This gives the possibility to preview and delete the image. Additionally it provides a copy button to copy the markdown code for inserting the image. Removed the old implementation in `repo-legacy.js` and generalized everything in `common-global.js` as common implementation. Replaced old jquery code with plain JS. Fixes #4588	2025-06-30 12:42:22 +02:00
Renovate Bot	06bff3bb7e	Lock file maintenance (forgejo) (#8356 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjQiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjQiLCJ0YXJnZXRCcmFuY2giOiJmb3JnZWpvIiwibGFiZWxzIjpbImRlcGVuZGVuY3ktdXBncmFkZSIsInRlc3Qvbm90LW5lZWRlZCJdfQ==--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8356 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-30 06:53:08 +02:00
Renovate Bot	a943271205	Update renovate to v41.17.2 (forgejo) (#8355 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-30 06:44:04 +02:00
Gusted	4927d4ee3d	feat: detect incorrect integration test functions (#8352 ) - I have seen multiple times where a test function tries to prepare the testing environment more than once, this can lead to bugs and false positives of testing code. I would attribute this to lack of documentation on how to write integration tests. - To detect such cases, keep track when we are in a prepared test environment and fail when some testing code is tries to once again prepare the test environment. - The message is logged to the function call that is requesting to prepare the test environment, for example: `change_default_branch_test.go:19: Cannot prepare a test environment if you are already in a test environment. This is a bug in your testing code.` A example of what this will be able to catch, `6226f464ce`: ```go func TestFoo(t testing.T) { defer PrepareTestEnv(t)() t.Run("Bar", func(t testing.T) { defer PrepareTestEnv(t)() // Should very likely be PrintCurrentTest }) } ``` ```go func TestBar(t testing.T) { onGiteaRun(t, func(t testing.T, _ url.URL) { defer PrepareTestEnv(t)() // Already called by onGiteaRun. }) } ``` ```go func TestFooBar(t testing.T) { defer PrepareTestEnv(t)() // This will be called by onGiteaRun later on and very unlikely to do this before the call to onGiteaRun. onGiteaRun(t, func(t testing.T, _ url.URL) { // [...] }) } ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8352 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-29 23:09:29 +02:00
0ko	c57dea336c	fix(ui): small org dashboard ui cleanup (#8327 ) Small UI cleanups in this area with no visual changes: https://codeberg.org/attachments/4282f225-63e0-41b7-9edb-8b64877092b2 * remove classes `ui`, `top`, `attached`: following https://codeberg.org/forgejo/forgejo/pulls/2593, it is no longer a fomantic ui segment for those classes to be relevant to it * use gap in flexbox as it is a cleaner way than setting margins Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8327 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-06-29 16:22:07 +02:00
Renovate Bot	31fc02332a	Update dependency svgo to v4 (forgejo) (#8343 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8343 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 13:57:15 +02:00
Renovate Bot	878ce241a4	Update dependency htmx.org to v2 (forgejo) (#8342 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8342 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 13:52:24 +02:00
Earl Warren	447c5789bd	fix(ci): add install-minimum-git-version helper for workflows (#8345 ) https://codeberg.org/forgejo-integration/forgejo/actions/runs/10592#jobstep-3-14 failed with > E: Packages were downgraded and -y was used without --allow-downgrades. Running the tests is done following the instructions in the workflow: ``` # - uncomment [on].pull_request # - swap 'forgejo-integration' and 'forgejo-coding' # - open a pull request at https://codeberg.org/forgejo/forgejo and fix things # - swap 'forgejo-integration' and 'forgejo-coding' # - comment [on].pull_request ``` The result of the test is available at https://codeberg.org/forgejo/forgejo/actions/runs/85408/jobs/0 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8345 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-29 13:04:28 +02:00
floss4good	920f6d24d2	fix: load OldMilestone based on OldMilestoneID, not MilestoneID (#8330 ) Fixes #8329 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8330 Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-06-29 12:08:03 +02:00
Renovate Bot	2160741221	Update dependency @vitejs/plugin-vue to v6 (forgejo) (#8341 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 11:50:41 +02:00
Renovate Bot	3feceb10c7	Update dependency @stylistic/eslint-plugin to v5 (forgejo) (#8340 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 11:40:47 +02:00
Renovate Bot	7a881e2f26	Update dependency happy-dom to v18.0.1 (forgejo) (#8337 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 10:59:35 +02:00
Renovate Bot	ad1adabcbb	Update linters (forgejo) (#8338 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 09:37:44 +02:00
Renovate Bot	33217a3633	Update dependency @stylistic/stylelint-plugin to v3.1.3 (forgejo) (#8336 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 09:37:43 +02:00
Gusted	84ed8aa740	chore: use standard library function (#8334 ) - As mentioned in the comment, use the standard library function now its available. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8334 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-29 08:06:38 +02:00
Earl Warren	ba37b69252	feat: make API pull and compare endpoint references to head more robust (#8332 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8332 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-06-29 07:35:47 +02:00
Mathieu Fenniak	b6c6981c30	feat(ui): add repository description to og:image:alt (#8325 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6053 Adds the repository description to the "alt" tag of the OpenGraph summary card, improving accessibility when these images are displayed. Fixes #8192. Other summary cards, for issues and releases, are not modified as they already contain the issue title or release title, which seems reasonable. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8325 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-06-29 05:54:07 +02:00
Renovate Bot	14309837d4	Update module github.com/niklasfasching/go-org to v1.9.0 (forgejo) (#8335 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8335 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-29 02:52:27 +02:00
Gusted	b5e608f3e2	feat: bump the minimum required Git version from 2.0.0 to 2.34.1 (#8328 ) - Resolves forgejo/discussions#324 - Remove all checks of `CheckGitVersionAtLeast` that checked for a version below 2.34.1 - The version was chosen because Debian stable supports 2.39.5 and Ubuntu 22.04 LTS supports 2.34.1 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8328 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-29 00:44:18 +02:00
Earl Warren	66e0988a43	feat: make API pull and compare endpoint references to head more robust It is best to prefix the reference to resolve any ambiguity once it has been determined that it is a branch or a tag. It was done in forgejo/forgejo#5991 for the base reference but not for the head reference. Refs forgejo/forgejo#5991	2025-06-28 23:30:26 +02:00
Earl Warren	b8e66a5552	feat: improve API /repos/{owner}/{repo}/compare/{basehead} error messages	2025-06-28 23:30:24 +02:00
Earl Warren	a300c0b9fd	chore(cleanup): GitRepo.GetCommit is equivalent to GitRepo.IsBranchExist Since go-git was dropped in `a21128a734`, IsBranchExist relies on git-cat-file to figure out if a commit ID exists. There is no need to fallback to GetCommit if IsBranchExist determines the commit does not exist and it will come to the same conclusion.	2025-06-28 23:30:20 +02:00
Earl Warren	d6e4342353	fix: make API /repos/{owner}/{repo}/compare/{basehead} work with forks (#8326 ) - fix: API must use headGitRepo instead of ctx.Repo.GitRepo for comparing - fix: make API /repos/{owner}/{repo}/compare/{basehead} work with forks - add test coverage for both fixes and the underlying function `parseCompareInfo` - refactor and improve part of the helpers from `tests/integration/api_helper_for_declarative_test.go` - remove a few wrong or misleading comments Refs forgejo/forgejo#7978 ## Note on the focus of the PR It was initially created to address a regression introduced in v12. But the tests that verify it is fixed discovered a v11.0 bug. They cannot conveniently be separated because they both relate to the same area of code that was previously not covered by any test. ## Note on v11.0 backport It must be manually done by cherry-picking all commits up to and not including `fix: API must use headGitRepo instead of ctx.Repo.GitRepo for comparing` because it is v12 specific. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8326 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-28 23:28:12 +02:00
oliverpool	225a0f7026	git/TreeEntry: LinkTarget simplification (#8323 ) See #8222 for context. This PR removes a call to `Blob.GetBlobContent` and `Blob.DataAsync` and unifies symlink resolution: - length was unlimited in one case - length was truncated to 1024 chars in the other case Now it is hard-limited to 4096 chars (ie error if larger), which is a length which seems appropriate according to https://stackoverflow.com/a/22575737. ### Tests - Tests are already present in `tests/integration/repo_test.go:972`: `TestRepoFollowSymlink` (it caught a cap/len stupid mistake). - [x] I did not document these changes and I do not expect someone else to do it. - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8323 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-27 23:10:09 +02:00
Gusted	6b27fa66b9	chore: sort blocked users list for determistic results (#8320 ) - Ref https://codeberg.org/forgejo/forgejo/issues/8221#issuecomment-5515478 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8320 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-27 17:37:29 +02:00
floss4good	69d374435b	fix: abuse reports string data types (#8267 ) Follow-up of !6977 I was fooled by the fact that for SQLite the columns corresponding to `string` fields were created as `TEXT`; but this is not the case for PostgreSQL and MariaDB/MySQL. According to XORM default mapping rules[^1] _String is corresponding to varchar(255)_. Therefore `abuse_report`.`remarks` should be of type `VARCHAR(500)` and `abuse_report_shadow_copy`.`raw_value` of type `LONGTEXT`. ### Testing I have dropped the affected columns (or the entire tables) and checked that for PostgreSQL and MariaDB they are created with the correct type and also manually tested the abusive content reporting functionality in order to make sure that no DB error will be returned if for 'Remarks' a text longer than 255 characters is submitted or when a (big) shadow copy is created. [^1]: https://xorm.io/docs/chapter-02/4.columns/ Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8267 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-06-27 15:47:58 +02:00
Gusted	c085d6c9ac	fix: pass doer's ID for CRUD instance signing (#8304 ) - When doing CRUD actions, the commiter and author are reconstructed and do not contain the doer's ID. Make sure to pass this ID along so it can be used to verify the rules of instance signing for CRUD actions. - Regression of forgejo/forgejo#7693. It seems that previously this didn't work correctly as it would not care about a empty ID. - Resolves forgejo/forgejo#8278 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8304 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-27 15:43:31 +02:00
Lucas Schwiderski	3fb6e17105	fix: add missing trust status to pull review commits (#8296 ) Closes: #8293 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8296 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-06-27 15:29:44 +02:00
Michael Jerger	aee161ff25	[gitea] week 2025-19 cherry pick (gitea/main -> forgejo) (#7909 ) ## Checklist - [x] go to the last cherry-pick PR (forgejo/forgejo#7804) to figure out how far it went: [gitea@a2024953c5](`a2024953c5`) - [x] cherry-pick and open PR (forgejo/forgejo#7909) - [ ] have the PR pass the CI - end-to-end (specially important if there are actions related changes) - [ ] add `run-end-to-end` label - [ ] check the result - [ ] write release notes - [ ] assign reviewers - [ ] 48h later, last call - merge 1 hour after the last call ## Legend - ❓ - No decision about the commit has been made. - 🍒 - The commit has been cherry picked. - ⏩ - The commit has been skipped. - 💡 - The commit has been skipped, but should be ported to Forgejo. - ✍️ - The commit has been skipped, and a port to Forgejo already exists. ## Commits - 🍒 [`gitea`](`e92c4f1808`) -> [`forgejo`](`56fa2caef3`) Add missing setting load in dump-repo command ([gitea#34479](https://github.com/go-gitea/gitea/pull/34479)) - 🍒 [`gitea`](`7b518bc6c7`) -> [`forgejo`](`6e5299606a`) Change "rejected" to "changes requested" in 3rd party PR review notification ([gitea#34481](https://github.com/go-gitea/gitea/pull/34481)) ## TODO - 💡 [`gitea`](`972381097c`) Fix url validation in webhook add/edit API ([gitea#34492](https://github.com/go-gitea/gitea/pull/34492)) Relevant input validation but test needs more backport. ------ - 💡 [`gitea`](`59df03b554`) Fix get / delete runner to use consistent http 404 and 500 status ([gitea#34480](https://github.com/go-gitea/gitea/pull/34480)) It may be relevant to Forgejo as well ------ - 💡 [`gitea`](`1e2f3514b9`) Add endpoint deleting workflow run ([gitea#34337](https://github.com/go-gitea/gitea/pull/34337)) Actions, it would be worth having in Forgejo as well. ------ - 💡 [`gitea`](`5cb4cbf044`) Fix repo broken check ([gitea#34444](https://github.com/go-gitea/gitea/pull/34444)) Check wether this is relevant to us, port if yes. ------ - 💡 [`gitea`](`355e9a9d54`) Add a webhook push test for dev branch ([gitea#34421](https://github.com/go-gitea/gitea/pull/34421)) Enhances webhook integration tests. ------ - 💡 [`gitea`](`34281bc198`) Fix bug webhook milestone is not right. ([gitea#34419](https://github.com/go-gitea/gitea/pull/34419)) Testcode diverged, port required. ------ - 💡 [`gitea`](`780e92ea99`) Only git operations should update `last changed` of a repository ([gitea#34388](https://github.com/go-gitea/gitea/pull/34388)) Port required, would benefit from additional tests. ------ - 💡 [`gitea`](`b07e03956a`) When updating comment, if the content is the same, just return and not update the databse ([gitea#34422](https://github.com/go-gitea/gitea/pull/34422)) Codebase diverged, port required. ------ - 💡 [`gitea`](`71a1187209`) Fix incorrect divergence cache after switching default branch ([gitea#34370](https://github.com/go-gitea/gitea/pull/34370)) Depends on previous gitea changes, port needed. ------ - 💡 [`gitea`](`4c611bf280`) Add a button editing action secret ([gitea#34348](https://github.com/go-gitea/gitea/pull/34348)) This is an interesting feature and it has tests as well. Feature request covering this: https://codeberg.org/forgejo/forgejo/issues/7882 ------ - 💡 [`gitea`](`2fbc8f9e87`) Fix LFS file not stored in LFS when uploaded/edited via API or web UI ([gitea#34367](https://github.com/go-gitea/gitea/pull/34367)) Our code diverged - pls. check relevance & maybe port. ------ - 💡 [`gitea`](`020e774b91`) feat: add label 'state' to metric 'gitea_users' ([gitea#34326](https://github.com/go-gitea/gitea/pull/34326)) Adjust our existing tests while porting this. ------ ## Skipped - ⏩ [`gitea`](`ec10c6ba5a`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`d89eed998f`) Fix edithook api can not update package, status and workflow_job events ([gitea#34495](https://github.com/go-gitea/gitea/pull/34495)) - gitea actions specific specific ------ - ⏩ [`gitea`](`b6c0667474`) Add R-HNF to the TRANSLATORS file ([gitea#34494](https://github.com/go-gitea/gitea/pull/34494)) - gitea translators update specific ------ - ⏩ [`gitea`](`6fbf0e6738`) nix flake update ([gitea#34476](https://github.com/go-gitea/gitea/pull/34476)) - gitea dependency update specific ------ - ⏩ [`gitea`](`c24f4b3d29`) Add migrations tests ([gitea#34456](https://github.com/go-gitea/gitea/pull/34456)) ------ - ⏩ [`gitea`](`bf338bb9e2`) Fix project board view ([gitea#34470](https://github.com/go-gitea/gitea/pull/34470)) - gitea ui specific specific ------ - ⏩ [`gitea`](`319d03fbc0`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`dd500ce559`) Fix Workflow run Not Found page ([gitea#34459](https://github.com/go-gitea/gitea/pull/34459)) - gitea actions specific specific ------ - ⏩ [`gitea`](`b6bf128f1e`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`a0595add72`) Fix remove org user failure on mssql ([gitea#34449](https://github.com/go-gitea/gitea/pull/34449)) ------ - ⏩ [`gitea`](`b5fd3e7210`) Fix comment textarea scroll issue in Firefox ([gitea#34438](https://github.com/go-gitea/gitea/pull/34438)) - gitea ui specific specific ------ - ⏩ [`gitea`](`4011e2245b`) Fix releases sidebar navigation link ([gitea#34436](https://github.com/go-gitea/gitea/pull/34436)) - gitea ui specific specific ------ - ⏩ [`gitea`](`0902d42fc7`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`4a98ab0540`) Remove legacy template helper functions ([gitea#34426](https://github.com/go-gitea/gitea/pull/34426)) - gitea specific specific ------ - ⏩ [`gitea`](`9b8609e017`) Fix GetUsersByEmails ([gitea#34423](https://github.com/go-gitea/gitea/pull/34423)) - gitea specific specific ------ - ⏩ [`gitea`](`0f63a5ef48`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`ad271444e9`) Fix a bug when uploading file via lfs ssh command ([gitea#34408](https://github.com/go-gitea/gitea/pull/34408)) :skiP: present with PR #7752 ------ - ⏩ [`gitea`](`8b16ab719c`) Merge and tweak markup editor expander CSS ([gitea#34409](https://github.com/go-gitea/gitea/pull/34409)) - gitea ui specific specific ------ - ⏩ [`gitea`](`2ecd73d2e5`) Bump `@github/relative-time-element` to v4.4.8 ([gitea#34413](https://github.com/go-gitea/gitea/pull/34413)) - gitea dependency update specific ------ - ⏩ [`gitea`](`179068fddb`) Refactor commit message rendering and fix bugs ([gitea#34412](https://github.com/go-gitea/gitea/pull/34412)) - gitea ui specific specific ------ - ⏩ [`gitea`](`44aadc37c9`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`f63822fe64`) Fix autofocus behavior ([gitea#34397](https://github.com/go-gitea/gitea/pull/34397)) - gitea ui specific specific ------ - ⏩ [`gitea`](`82071ee730`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`bbfc21e74f`) Fix "The sidebar of the repository file list does not have a fixed height #34298" ([gitea#34321](https://github.com/go-gitea/gitea/pull/34321)) - gitea ui specific specific ------ - ⏩ [`gitea`](`dd886d729f`) Update JS and PY dependencies ([gitea#34391](https://github.com/go-gitea/gitea/pull/34391)) - gitea dependency update specific ------ - ⏩ [`gitea`](`2a660b4a1b`) Upgrade go-github v61 -> v71 ([gitea#34385](https://github.com/go-gitea/gitea/pull/34385)) - gitea dependency update specific ------ - ⏩ [`gitea`](`6bd8fe5353`) Bump `@github/relative-time-element` to v4.4.7 ([gitea#34384](https://github.com/go-gitea/gitea/pull/34384)) - gitea dependency update specific ------ <details> <summary><h2>Stats</h2></summary> <br> Between [`gitea@a2024953c5`](`a2024953c5`) and [`gitea@ec10c6ba5a`](`ec10c6ba5a`), 41 commits have been reviewed. We picked 2, skipped 27, and decided to port 12. </details> Co-authored-by: Sebastian Weigand <s.weigand.phy@gmail.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7909 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-06-27 13:59:07 +02:00
Robert Wolff	76b3f4cd6a	test: prevent XSS for label rendering	2025-06-27 13:27:06 +02:00
Robert Wolff	1b9ac27578	feat(ui): add issue comment assignment doer links	2025-06-27 13:17:34 +02:00
Gusted	a2e7446fe7	chore: use eventually for mysql collation test (#8301 ) - Regression of removing `time.Sleep(5 * time.Second)` in forgejo/forgejo#7917. - Ref: https://codeberg.org/forgejo/forgejo/issues/8221#issuecomment-5532035 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8301 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-27 11:44:59 +02:00
oliverpool	7ad20a2730	git/blob: GetContentBase64 with fewer allocations and no goroutine (#8297 ) See #8222 for context.i `GetBlobContentBase64` was using a pipe and a goroutine to read the blob content as base64. This can be replace by a pre-allocated buffer and a direct copy. Note that although similar to `GetBlobContent`, it does not truncate the content if the blob size is over the limit (but returns an error). I think that `GetBlobContent` should adopt the same behavior at some point (error instead of truncating). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8297 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-27 11:22:10 +02:00
Danko Aleksejevs	184e068f37	feat: show more relevant results for 'dependencies' dropdown (#8003 ) - Fix issue dropdown breaking when currently selected issue is included in results. - Add `sort` parameter to `/issues/search` API. - Sort dropdown by relevance. - Make priority_repo_id work again. - Added E2E test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8003 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-06-26 20:06:21 +02:00
Codeberg Translate	414199fc66	i18n: update of translations from Codeberg Translate (#8238 ) Translations update from [Codeberg Translate](https://translate.codeberg.org) for [Forgejo/forgejo](https://translate.codeberg.org/projects/forgejo/forgejo/). It also includes following components: * [Forgejo/forgejo-next](https://translate.codeberg.org/projects/forgejo/forgejo-next/) Current translation status: ![Weblate translation status](https://translate.codeberg.org/widget/forgejo/forgejo/horizontal-auto.svg) <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Localization - [PR](https://codeberg.org/forgejo/forgejo/pulls/8238): <!--number 8238 --><!--line 0 --><!--description aTE4bjogdXBkYXRlIG9mIHRyYW5zbGF0aW9ucyBmcm9tIENvZGViZXJnIFRyYW5zbGF0ZQ==-->i18n: update of translations from Codeberg Translate<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8238 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Robert Wolff <mahlzahn@posteo.de> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-committed-by: Codeberg Translate <translate@codeberg.org>	2025-06-26 10:44:26 +02:00
Renovate Bot	aee5e1fb94	Update module github.com/jhillyerd/enmime/v2 to v2.2.0 (forgejo) (#8254 ) This PR contains the following updates: \| Package \| Change \| Age \| Confidence \| \|---\|---\|---\|---\| \| [github.com/jhillyerd/enmime/v2](https://github.com/jhillyerd/enmime) \| `v2.1.0` -> `v2.2.0` \| [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fjhillyerd%2fenmime%2fv2/v2.2.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fjhillyerd%2fenmime%2fv2/v2.1.0/v2.2.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) \| --- ### Release Notes <details> <summary>jhillyerd/enmime (github.com/jhillyerd/enmime/v2)</summary> ### [`v2.2.0`](https://github.com/jhillyerd/enmime/releases/tag/v2.2.0) [Compare Source](https://github.com/jhillyerd/enmime/compare/v2.1.0...v2.2.0) #### What's Changed - chore: bump golangci to last 1.x release by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/368 - chore: fix linter warnings by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/370 - chore: bump golangci to 2.x by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/369 - chore: bump go deps by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/371 - build(deps): bump golangci/golangci-lint-action from 7 to 8 by [@dependabot](https://github.com/dependabot) in https://github.com/jhillyerd/enmime/pull/373 - Switch to fork of html2text for tablewriter 1.0 by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/375 - Release for go 1.23 support by [@jhillyerd](https://github.com/jhillyerd) in https://github.com/jhillyerd/enmime/pull/376 Full Changelog: https://github.com/jhillyerd/enmime/compare/v2.1.0...v2.2.0 </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJmb3JnZWpvIiwibGFiZWxzIjpbImRlcGVuZGVuY3ktdXBncmFkZSIsInRlc3Qvbm90LW5lZWRlZCJdfQ==--> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8254 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-26 08:49:20 +02:00
Renovate Bot	d3c712fe2a	Lock file maintenance (forgejo) (#8257 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8257 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-26 02:27:54 +02:00
Otto	4a1f4acf76	fix(ui): release: name is overridden with tag name on edit (#8002 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8002 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org>	2025-06-26 01:22:48 +02:00
Earl Warren	30bfa13308	git/blob: refactor line-counting logic (#8270 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8270 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-06-26 01:09:01 +02:00
Gusted	507a12bf82	Revert "fix(api): document `is_system_webhook` field (#7784 )" (#8286 ) The field is not part of the struct, it is instead part of the config field. See https://codeberg.org/forgejo/forgejo/pulls/7784#issuecomment-5511212 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8286 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-26 00:36:18 +02:00
Renovate Bot	69bd7a1f1b	Update dependency mermaid to v11.7.0 (forgejo) (#8249 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8249 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-25 23:58:26 +02:00
Bente Groh	7ab27a7a7f	fix(ui): add missing lazy load attribute to images (#8246 ) closes #8076 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8246 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Bente Groh <mail@bentegroh.de> Co-committed-by: Bente Groh <mail@bentegroh.de>	2025-06-25 18:31:03 +02:00
oliverpool	2bca029f6f	chore(ci): testSleep: show actual times on failures (#8271 ) I just experienced a spurious error on `testSleep`. The current assertion only showed `expected false to be truthy`. With this PR it should show the actual elapsed time (to be able to knowingly adjust the expected delay). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8271 Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-25 15:58:55 +02:00
Earl Warren	8844b6b8e5	chore: 12.0 is now stable (take 2)	2025-06-25 06:41:35 +02:00
forgejo-release-manager	9e966ac91f	chore: 12.0 is now stable	2025-06-25 06:24:12 +02:00
Robert Wolff	6d4554b01c	chore: update security option in issue templates (#8268 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8268 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-06-24 19:02:12 +02:00
oliverpool	6ed62c14d3	move blobLineCount to disencentive its usage	2025-06-24 17:36:13 +02:00
oliverpool	744363597d	test: before refatoring count function	2025-06-24 17:36:13 +02:00
oliverpool	7a6b5b6dd9	blame: count lines without reading blob	2025-06-24 17:36:13 +02:00
0ko	7086e7a9ac	feat(ui): redesign user profile actions layout (#7906 ) Related: https://codeberg.org/forgejo/forgejo/pulls/3950#issue-785253, https://codeberg.org/forgejo/forgejo/pulls/3950#issuecomment-1998551. ## Links in dropdown * move _admin only_ User details link here, give it always-visible text * add new _self only_ Edit profile link here * move RSS feed link here * add new Atom feed link here, previously unadvertised * add new SSH keys link here (`.keys`), previously unadvertised * add new GPG keys link here (`.gpg`), previously unadvertised * move Block/Unblock button here * move Report abuse link here If primary action is available (Follow/Unfollow), dropdown with more actions goes after it. If not, it is in line with followers, in place where RSS feed button used to be. ## New dropdown Related: https://codeberg.org/forgejo/design/issues/23, https://codeberg.org/forgejo/forgejo/issues/3853, https://codeberg.org/0ko/forgejo/issues/2. Implemented a new dropdown: noJS-usable, JS-enhanced for better keyboard navigation and a11y. Styling is mostly same as the existing ones have, but row density depends on `@media` pointer type. My choice of CSS properties have been influenced of these: * `72a3adb16b` * `51dd2293ca` Inspired-by: KiranMantha <kiranv.mantha@gmail.com> Inspired-by: Lucas Larroche <lucas@larroche.com> Co-authored-by: Beowulf <beowulf@beocode.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7906 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-06-24 14:16:51 +02:00
Danko Aleksejevs	f7d7d67238	fix: Token.ParseIssueReference crashing on empty string (#8260 ) A fix for a bug introduced by me earlier, where attempting to parse an issue reference in an empty token would crash. An empty token occurs if the search string is `\` or `"` (among other scenarios, probably). I'll make another PR that avoids having empty tokens (seems like a good idea). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8260 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-06-24 06:52:36 +02:00
Robert Wolff	0b24915271	feat(ui): add links to milestones and projects in issue comments (#7992 ) add links to the comments that appear in issue when changing milestones and projects Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7992 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-06-23 23:31:51 +02:00
Beowulf	43fb63a063	fix(ui): release: name is overridden with tag name on edit Fixes #8001 Regression: `f66a6b12cd`	2025-06-23 19:11:43 +02:00
0ko	049cda526b	feat(ui): use kbd in label selector hint, remove enter (#8199 ) Rel: https://codeberg.org/forgejo/forgejo/pulls/7958 Also remove Enter from the hint as it is not working right now, ref https://codeberg.org/forgejo/forgejo/issues/1335#issuecomment-1073523 Preview: * https://codeberg.org/attachments/b8eb7525-2bbe-4216-97f5-bc10aee1f3e2 * https://codeberg.org/attachments/37e3734e-0f51-4a8b-add6-7bc0e0a5ad6b Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8199 Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-06-23 17:56:28 +02:00
Danko Aleksejevs	39e6785da0	fix(ui): erroneous list continuation on Cmd+Enter on macOS (#8153 ) (#8170 ) The line continuation code in the Markdown editor ignored Enter presses if Ctrl, Alt or Shift were being held. This now also accounts for Cmd on macOS (which browsers represent as metaKey). ### Tests - Use Safari (on macOS) - create a new issue in a repository - start writing a list (with - one[enter]- two) - now press Cmd+Enter - verify that while the form is being submitted, no new line got visually added *** The visual evidence of this bug is a race condition (form is being edited while also being submitted) and I don't think a reliable cross-browser E2E test is possible. Bugged and fixed behavior verified manually on an actual Macbook in current Safari. Specifically, * Before the fix: pressing Cmd+Enter submits the form and inserts a newline + list prefix in the markdown editor. Reporter had the changed content submitted, I only saw it submit the original (but the change was visible during submission). * After the fix: Cmd+Enter only submits the form. Enter with no modifiers inserts newlines/prefixes as before. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8170 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-06-23 15:21:15 +02:00
Earl Warren	debd74e1b6	fix: add an index to the ActionRun.stopped column (#8252 ) The models/actions/run.go:GetRunBefore function sorts ActionRun rows to get the most recently stopped. Since the ActionRun rows do not expire, the cost will keep increasing over time. The index is meant to ensure the execution time of the associated query does not grow linearly with the number of rows in the ActionRun table. Ref https://codeberg.org/forgejo/forgejo/pulls/7491/files#issuecomment-5495441 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8252 Reviewed-by: Christopher Besch <mail@chris-besch.com> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-23 08:00:18 +02:00
Earl Warren	cf4d0e6c34	bug: unify RepoActionRun and ActionRun structs (#8250 ) Two pull requests were merged at the same time - https://codeberg.org/forgejo/forgejo/pulls/7699 - https://codeberg.org/forgejo/forgejo/pulls/7508 And added conflicting structs ActionRun modules/structs. That broke the forgejo development branch and a quick fix was made to resolve the name conflict. - https://codeberg.org/forgejo/forgejo/pulls/8066 However that creates an undesirable duplication of two structures that serve the same purpose but are different. - Remove RepoActionRun and replace it with ActionRun - convert.ToActionRun has one more argument, the doer, because it is determined differently in the context of webhooks or API ### Tests - No need because the two pull requests involved already have good coverage. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8250 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: klausfyhn <klausfyhn@noreply.codeberg.org> Reviewed-by: Christopher Besch <mail@chris-besch.com> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-23 07:54:32 +02:00
Renovate Bot	b58cebc2d9	Update renovate to v41.1.4 (forgejo) (#8256 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-23 07:40:04 +02:00
John Veness	d8ad592d4e	Fix sentence structure mentioning cooldown period (#8197 ) The text should be two sentences, or at the very least separated by a semicolon rather than a comma. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8197 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: John Veness <john-codeberg@jveness.co.uk> Co-committed-by: John Veness <john-codeberg@jveness.co.uk>	2025-06-22 08:51:01 +02:00
Renovate Bot	b6dd1dd799	Update renovate to v41 (forgejo) (major) (#8253 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8253 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-21 18:42:42 +02:00
Earl Warren	d7329f5dd4	fix(ui): issue comment anchor on time stamp (#8214 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8214 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-21 14:51:50 +02:00
Alex Smith	690532efb8	add model viewer for `.glb` (GLTF) model in file view (#8111 ) ## Motivation The GLTF (`.gltf`, `.glb`) 3D model format is very popular for game development and visual productions. For an indie game studio, it would be convenient for a team to view textured 3D models directly from the Forgejo interface (otherwise they need to be downloaded and opened). [Perforce](https://www.perforce.com/products/helix-dam), [Diversion](https://www.diversion.dev/), and GitHub all have this capability to differing extents. Some discussion on 3D file support here: https://codeberg.org/forgejo/forgejo/issues/5188 ## Changes Adds a model viewer similar to [GitHub STL viewer](https://github.com/assimp/assimp/blob/master/test/models/STL/Spider_ascii.stl) for `.glb` model files, and lays some groundwork to support future files. Uses the [model-viewer](https://modelviewer.dev/) library by Google and three.js. The model viewer is interactive and can be rotated and scaled. ![Screen Recording 2025-06-08 at 15.27.15](/attachments/84c63dea-a0ce-45f9-b48b-c80867636639) ## How to Test 1) Create a new repository or use an existing one. 2) Upload a `.glb` file such as `tests/testdata/data/viewer/Unicode❤♻Test.glb` (CC0 1.0 Universal) 3) View the file in the repository. - Similar to image files, the 3D model should be rendered in a viewer. - Use mouse clicks to turn and zoom. ## Licenses Libraries used for this change include three.js and @google/model-viewer, which are MIT and Apache-2.0 licenses respectively. Both of these are compatible with Forgejo's GPL3.0 license. ## Future Plans 1) `.gltf` was not attempted because it is a multiple file format, referencing other files in the same directory. Still need to experiment with this to see if it can work. `.glb` is a single file containing a `.gltf` and all of its other file/texture dependencies so was easier to implement. 2) The PR diff still shows the model as an unviewable bin file, but clicking the "View File" button takes you to a view screen where this model viewer is used. It would be nice to view the before and after of the model in two side-by-side model viewers, akin to reviewing a change in an image. 3) Also inserted stubs for adding contexts for GLTF, STL, OBJ, and 3MF. These ultimately don't do anything yet as only `.glb` files can be detected by the type sniffer of all of these. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for checking GLB file content using the first few bytes. - [x] in their respective `typesniffer_test.go` for unit tests. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8111): <!--number 8111 --><!--line 0 --><!--description YWRkIG1vZGVsIHZpZXdlciBmb3IgYC5nbGJgIChHTFRGKSBtb2RlbCBpbiBmaWxlIHZpZXc=-->add model viewer for `.glb` (GLTF) model in file view<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8111 Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Alex Smith <amsmith.pro@pm.me> Co-committed-by: Alex Smith <amsmith.pro@pm.me>	2025-06-21 14:42:35 +02:00
Earl Warren	b2c4fc9f94	bug: Forgejo Actions email notifications are opt-in (#8242 ) * Add the `notify-email` column / NotifyEmail to ActionRun and set it: * services/actions/workflows.go `Dispatch` * services/actions/schedule_tasks.go `CreateScheduleTask` * services/actions/notifier_helper.go `handleWorkflows` * Only send an email if the workflow has `enable-email-notifications: true` by having `MailActionRun` return immediately if `NotifyEmail` is false. * Ignore or silently fail on `enable-email-notifications: true` parsing errors. Reporting such errors belongs in workflow validation, not when it is evaluated for the notifications. * Add unit and integration tests. Refs: https://codeberg.org/forgejo/forgejo/issues/8187 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8242 Reviewed-by: Christopher Besch <mail@chris-besch.com> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-21 13:11:01 +02:00
Earl Warren	9e6f722f94	fix: only send Forgejo Actions notifications to one user (#8227 ) - If the run was attributed to a system user (which is the case for scheduled runs for instance), ignore it and fallback to the mail of the owner. System users may have email addresses, but they are not to be used. - If the owner is a system user or an organization with no email associated with it, do nothing. - If a user with an email exists, check if they did not disable notifications and send the email. Refs: https://codeberg.org/forgejo/forgejo/issues/8187 Refs: https://codeberg.org/forgejo/forgejo/issues/8233 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8227 Reviewed-by: Christopher Besch <mail@chris-besch.com> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-21 12:15:38 +02:00
Michael Jerger	25d596d387	Federated user activity following: Isolated model changes (#8078 ) This PR is part of https://codeberg.org/forgejo/forgejo/pulls/4767 This should not have an outside impact but bring all model changes needed & bring migrations. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8078 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-06-21 12:02:58 +02:00
Otto Richter	1c0e9d8015	chore(ci): downgrade playwright temporarily and allow running all e2e tests (#8245 ) In https://codeberg.org/forgejo/forgejo/pulls/7906#issuecomment-5511884, I noticed that the e2e tests were failing without obvious reasons. I was able to reproduce locally with Mobile Chrome, but the error doesn't make sense to me. So I tried to downgrade playwright to the previous version, and it works fine. I actually suspect a bug in playwright, but I currently lack the capacity to reach out to upstream with a reproducer (I also found conversation with the playwright team a little difficult, unless you have absolutely convincing arguments that the flakiness you observe is really their fault, which is very hard to prove). Tests pass with this version of playwright. In order to detect such cases earlier, I added a way to run all playwright tests (which I thought I had added with the changed files patch, but apparently forgot). All tests are triggered by an explicit label (but only after firing a next event, because the testing workflows don't listen to label changes) and when the PR title contains "playwright", which should cover at least renovate dependency updates of playwright and the axe framework (both contain playwright). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8245 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Otto Richter <git@otto.splvs.net> Co-committed-by: Otto Richter <git@otto.splvs.net>	2025-06-21 11:50:39 +02:00
Renovate Bot	1efb4f1aaf	Update module github.com/go-chi/chi/v5 to v5.2.2 (forgejo) (#8248 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) \| require \| patch \| `v5.2.1` -> `v5.2.2` \| --- ### Release Notes <details> <summary>go-chi/chi (github.com/go-chi/chi/v5)</summary> ### [`v5.2.2`](https://github.com/go-chi/chi/releases/tag/v5.2.2) [Compare Source](https://github.com/go-chi/chi/compare/v5.2.1...v5.2.2) #### What's Changed - Use strings.Cut in a few places by [@JRaspass](https://github.com/JRaspass) in https://github.com/go-chi/chi/pull/971 - Fix non-constant format strings in t.Fatalf by [@JRaspass](https://github.com/JRaspass) in https://github.com/go-chi/chi/pull/972 - Apply fieldalignment fixes to optimize struct memory layout by [@pixel365](https://github.com/pixel365) in https://github.com/go-chi/chi/pull/974 - go 1.24 by [@pkieltyka](https://github.com/pkieltyka) in https://github.com/go-chi/chi/pull/977 - chore: delint ioutil usage by [@costela](https://github.com/costela) in https://github.com/go-chi/chi/pull/962 - Fixed typo in Router interface definition by [@mithileshgupta12](https://github.com/mithileshgupta12) in https://github.com/go-chi/chi/pull/958 - Add support for TinyGo by [@efraimbart](https://github.com/efraimbart) in https://github.com/go-chi/chi/pull/978 - Exclude middleware/profiler.go in TinyGo, as there's no net/http/pprof pkg by [@cxjava](https://github.com/cxjava) in https://github.com/go-chi/chi/pull/982 - Make use of strings.Cut by [@scop](https://github.com/scop) in https://github.com/go-chi/chi/pull/1005 - Change install command format to code block by [@sglkc](https://github.com/sglkc) in https://github.com/go-chi/chi/pull/1001 - Correct documentation by [@mrdomino](https://github.com/mrdomino) in https://github.com/go-chi/chi/pull/992 #### Security fix - Fixes [GHSA-vrw8-fxc6-2r93](https://github.com/go-chi/chi/security/advisories/GHSA-vrw8-fxc6-2r93) - "Host Header Injection Leads to Open Redirect in RedirectSlashes" [commit](`1be7ad938c`) - a lower-severity Open Redirect that can't be exploited in browser or email client, as it requires manipulation of a Host header - reported by Anuraag Baishya, [@anuraagbaishya](https://github.com/anuraagbaishya). Thank you! #### New Contributors - [@pixel365](https://github.com/pixel365) made their first contribution in https://github.com/go-chi/chi/pull/974 - [@mithileshgupta12](https://github.com/mithileshgupta12) made their first contribution in https://github.com/go-chi/chi/pull/958 - [@efraimbart](https://github.com/efraimbart) made their first contribution in https://github.com/go-chi/chi/pull/978 - [@cxjava](https://github.com/cxjava) made their first contribution in https://github.com/go-chi/chi/pull/982 - [@sglkc](https://github.com/sglkc) made their first contribution in https://github.com/go-chi/chi/pull/1001 - [@mrdomino](https://github.com/mrdomino) made their first contribution in https://github.com/go-chi/chi/pull/992 Full Changelog: https://github.com/go-chi/chi/compare/v5.2.1...v5.2.2 </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC41Ny4xIiwidXBkYXRlZEluVmVyIjoiNDAuNTcuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8248 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-21 10:57:17 +02:00
Earl Warren	c8e54e11d7	feat: git/blob use NewTruncatedReader for profile and codeowners (#8243 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8243 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-20 21:41:30 +02:00
oliverpool	f708bacfff	blob: use NewTruncatedReader for CodeOwners parsing tested in tests/integration/pull_review_test.go:TestPullView_CodeOwner	2025-06-20 20:43:10 +02:00
oliverpool	dd79f0ce2b	blob: use NewTruncatedReader for markdown	2025-06-20 20:43:10 +02:00
oliverpool	c78f56e7cb	git/blob: add truncated tests	2025-06-20 20:43:10 +02:00
Robert Wolff	ef27d55468	chore(ui): add integration tests for issue comment badges and avatars	2025-06-19 19:10:25 +02:00
oliverpool	31ad7c9353	blob: GetBlobContent: reduce allocations (#8223 ) See #8222 for context. ## git.Blob.NewTruncatedReader This introduce a new `NewTruncatedReader` method to return a blob-reader which silently truncates when the limit is reached (io.EOF will be returned). Since the actual size is also returned `GetBlobContent` can pre-allocate a `[]byte` of the full-size (min of the asked size and the actual size) and call `io.ReadFull(rc, buf)` (instead of `util.ReadWithLimit(dataRc, int(limit))` which is convoluted and not used anywhere else). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8223 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-19 18:36:12 +02:00
oliverpool	913eaffb8a	fix: collaborator can edit wiki with write access (#8234 ) fixes: #8119, replaces #8135 Bug likely introduced in `5eeccecafc` ### Tests - I added test coverage for Go changes in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8234 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-19 18:35:09 +02:00
oliverpool	285f66b782	fix: prevent 500 message on invalid username (#8236 ) Bug introduced by #7998 ### Tests - go to your settings page https://v12.next.forgejo.org/user/settings - try to change to an invalid username (like `.well--invalid`) - verify that no 500 error is shown, only a flash message I tried to add a test in `tests/integration/user_test.go`, but failed to catch the error message: ``` resp := session.MakeRequest(t, req, http.StatusOK) txt := resp.Body.String() t.Log(txt) // no template error?? t.FailNow() ``` ### Release notes - [x] I do not want this change to show in the release notes. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8236 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-19 18:31:08 +02:00
Earl Warren	968ba1bf84	i18n: update of translations from Codeberg Translate (#8178 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8178 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-19 07:59:28 +02:00
Codeberg Translate	42ea73d46f	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Laurent FAVOLE <lfavole@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Tin <hntin@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: hntin <hntin@noreply.codeberg.org> Co-authored-by: janAkali <janakali@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: volkan <volkan@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Co-authored-by: yurtpage <yurtpage@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/vi/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-06-19 05:14:47 +00:00
Gusted	e7eca7f36c	chore: migrate to `@stylistic/eslint-plugin` (#8216 ) - The JS variant is deprecated, move to the unified package. `[@stylistic/eslint-plugin-js] This package is deprecated in favor of the unified @stylistic/eslint-plugin, please consider migrating to the main package` is logged when running `make lint-frontend`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8216 Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-19 07:14:42 +02:00
Gusted	5fa37539de	chore: sort mailer messages in test assertion (#8226 ) - Ref https://codeberg.org/forgejo/forgejo/issues/8221#issuecomment-5461218 - Databases might return users in a different order, sort them before doing assertions on them. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8226 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-18 21:12:08 +02:00
Robert Wolff	1e114a1225	chore(ui): add integration tests for issue comments	2025-06-18 18:09:34 +02:00
Robert Wolff	1879ce8efe	fix(ui): issue comment anchor on time stamp	2025-06-18 17:28:19 +02:00
Danko Aleksejevs	ae00a1d61b	fix: Remove 1ms delay before inserting list prefix, fix race condition in tests (#8207 ) Fixed the race condition that made the existing E2E tests fail. There was a 1ms delay between inserting a newline and the line prefix to facilitate creation of two "undo" entries (so "ctrl+z" basically undoes the list continuation, but not the newline). Thus scripted text changes may have happened out of order. This only ever reliably worked in Firefox and seems to still work there even without a timeout. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8207 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-06-18 12:58:31 +02:00
Renovate Bot	321561d315	Update data.forgejo.org/oci/alpine Docker tag to v3.22 (forgejo) (#8218 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8218 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-18 12:47:18 +02:00
Earl Warren	b1e75421c1	chore(release-notes): Forgejo v11.0.2 (#8224 ) Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8224 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org>	2025-06-18 11:31:23 +02:00
Earl Warren	e934d0a3f3	fix(tests): TestInitInstructions must use forEachObjectFormat (#8220 ) Otherwise it [fails with older git versions](https://codeberg.org/forgejo-integration/forgejo/actions/runs/10341/jobs/1#jobstep-5-2706). ``` --- FAIL: TestInitInstructions (0.12s) testlogger.go:411: 2025/06/18 00:32:37 ...les/storage/local.go:33:NewLocalStorage() [I] Creating new Local Storage at /workspace/*/forgejo/tests/gitea-lfs-meta testlogger.go:411: 2025/06/18 00:32:37 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user/login for test-mock:12345, 200 OK in 4.7ms @ auth/auth.go:145(auth.SignIn) testlogger.go:411: 2025/06/18 00:32:37 ...eb/routing/logger.go:102:func1() [I] router: completed POST /user/login for test-mock:12345, 303 See Other in 3.8ms @ auth/auth.go:179(auth.SignInPost) repo_test.go:1456: Error Trace: /workspace//forgejo/tests/test_utils.go:383 /workspace/**/forgejo/tests/integration/repo_test.go:1456 Error: Received unexpected error: initRepository: git.InitRepository: invalid object format: sha256 Test: TestInitInstructions ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8220 Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Reviewed-by: oliverpool <oliverpool@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-18 10:56:30 +02:00
Renovate Bot	34987a2be7	Update module code.forgejo.org/forgejo/act to v1.28.0 (forgejo) (#8219 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [code.forgejo.org/forgejo/act](https://code.forgejo.org/forgejo/act) \| replace \| minor \| `v1.26.0` -> `v1.28.0` \| --- ### Release Notes <details> <summary>forgejo/act (code.forgejo.org/forgejo/act)</summary> ### [`v1.28.0`](https://code.forgejo.org/forgejo/act/compare/v1.27.0...v1.28.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.27.0...v1.28.0) ### [`v1.27.0`](https://code.forgejo.org/forgejo/act/compare/v1.26.0...v1.27.0) [Compare Source](https://code.forgejo.org/forgejo/act/compare/v1.26.0...v1.27.0) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC41Ny4xIiwidXBkYXRlZEluVmVyIjoiNDAuNTcuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8219 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-18 08:07:21 +02:00
Renovate Bot	fc69250f0f	Update module github.com/minio/minio-go/v7 to v7.0.94 (forgejo) (#8217 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) \| require \| patch \| `v7.0.93` -> `v7.0.94` \| --- ### Release Notes <details> <summary>minio/minio-go (github.com/minio/minio-go/v7)</summary> ### [`v7.0.94`](https://github.com/minio/minio-go/compare/v7.0.93...v7.0.94) [Compare Source](https://github.com/minio/minio-go/compare/v7.0.93...v7.0.94) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC41Ny4xIiwidXBkYXRlZEluVmVyIjoiNDAuNTcuMSIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8217 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-18 06:34:30 +02:00
Renovate Bot	9caa3c6c5f	Update dependency eslint-plugin-wc to v3 (forgejo) (#8215 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-18 00:32:14 +02:00
Michael Jerger	15bb6b7f92	[gitea] week 2025-22 cherry pick (gitea/main -> forgejo) (#8198 ) ## Checklist - [x] go to the last cherry-pick PR (forgejo/forgejo#8040) to figure out how far it went: [gitea@d5bbaee64e](`d5bbaee64e`) - [x] cherry-pick and open PR (forgejo/forgejo#8198) - [ ] have the PR pass the CI - end-to-end (specially important if there are actions related changes) - [ ] add `run-end-to-end` label - [ ] check the result - [ ] write release notes - [ ] assign reviewers - [ ] 48h later, last call - merge 1 hour after the last call ## Legend - ❓ - No decision about the commit has been made. - 🍒 - The commit has been cherry picked. - ⏩ - The commit has been skipped. - 💡 - The commit has been skipped, but should be ported to Forgejo. - ✍️ - The commit has been skipped, and a port to Forgejo already exists. ## Commits - 🍒 [`gitea`](`17cfae82a5`) -> [`forgejo`](`6397da88d3`) Hide href attribute of a tag if there is no target_url ([gitea#34556](https://github.com/go-gitea/gitea/pull/34556)) - 🍒 [`gitea`](`b408bf2f0b`) -> [`forgejo`](`46bc899d57`) Fix: skip paths check on tag push events in workflows ([gitea#34602](https://github.com/go-gitea/gitea/pull/34602)) - 🍒 [`gitea`](`9165ea8713`) -> [`forgejo`](`04332f31bf`) Only activity tab needs heatmap data loading ([gitea#34652](https://github.com/go-gitea/gitea/pull/34652)) - 🍒 [`gitea`](`3f7dbbdaf1`) -> [`forgejo`](`2a9019fd04`) Small fix in Pull Requests page ([gitea#34612](https://github.com/go-gitea/gitea/pull/34612)) - 🍒 [`gitea`](`497b83b75d`) -> [`forgejo`](`9a83cc7bad`) Fix migration pull request title too long ([gitea#34577](https://github.com/go-gitea/gitea/pull/34577)) ## TODO - 💡 [`gitea`](`6b8b580218`) Refactor container and UI ([gitea#34736](https://github.com/go-gitea/gitea/pull/34736)) Packages: Fix for container, needs careful merge. ------ - 💡 [`gitea`](`bbee652e29`) Prevent duplicate form submissions when creating forks ([gitea#34714](https://github.com/go-gitea/gitea/pull/34714)) Fork: Fix, needs careful merge. ------ - 💡 [`gitea`](`d21ce9fa07`) Improve the performance when detecting the file editable ([gitea#34653](https://github.com/go-gitea/gitea/pull/34653)) LFS: Performance improvement - needs careful merge. ------ - 💡 [`gitea`](`8fed27bf6a`) Fix various problems ([gitea#34708](https://github.com/go-gitea/gitea/pull/34708)) Various: Fixes, tests missing. ------ - 💡 [`gitea`](`c9505a26b9`) Improve instance wide ssh commit signing ([gitea#34341](https://github.com/go-gitea/gitea/pull/34341)) CodeSign: Nice feature - needs careful merge. ------ - 💡 [`gitea`](`fbc3796f9e`) Fix pull requests API convert panic when head repository is deleted. ([gitea#34685](https://github.com/go-gitea/gitea/pull/34685)) Pull: Fix, needs careful merge. ------ - 💡 [`gitea`](`1610a63bfd`) Fix commit message rendering and some UI problems ([gitea#34680](https://github.com/go-gitea/gitea/pull/34680)) Various Fixes - needs carefull merge. ------ - 💡 [`gitea`](`0082cb51fa`) Fix last admin check when syncing users ([gitea#34649](https://github.com/go-gitea/gitea/pull/34649)) oidc: fix "first user is always admin". Needs careful merge. ------ - 💡 [`gitea`](`c6b2cbd75d`) Fix footnote jump behavior on the issue page. ([gitea#34621](https://github.com/go-gitea/gitea/pull/34621)) Issues: Fix Markdown rendering. Needs carefull merge ------ - 💡 [`gitea`](`7a59f5a825`) Ignore "Close" error when uploading container blob ([gitea#34620](https://github.com/go-gitea/gitea/pull/34620)) No issue, no test. ------ - 💡 [`gitea`](`6d0b24064a`) Keeping consistent between UI and API about combined commit status state and fix some bugs ([gitea#34562](https://github.com/go-gitea/gitea/pull/34562)) Next PR in Commit-Status story. ------ - 💡 [`gitea`](`f6041441ee`) Refactor FindOrgOptions to use enum instead of bool, fix membership visibility ([gitea#34629](https://github.com/go-gitea/gitea/pull/34629)) Just for a common sense here: How should I consider refactorings? ------ - 💡 [`gitea`](`cc942e2a86`) Fix GetUsersByEmails ([gitea#34643](https://github.com/go-gitea/gitea/pull/34643)) User: Seems to fix email validation - but seems not to be finished. ------ - 💡 [`gitea`](`7fa5a88831`) Add `--color-logo` for text that should match logo color ([gitea#34639](https://github.com/go-gitea/gitea/pull/34639)) UI: Nice idea - can we adapt this? ------ - 💡 [`gitea`](`47d69b7749`) Validate hex colors when creating/editing labels ([gitea#34623](https://github.com/go-gitea/gitea/pull/34623)) Label: Color validation but needs careful merge. ------ - 💡 [`gitea`](`108db0b04f`) Fix possible pull request broken when leave the page immediately after clicking the update button ([gitea#34509](https://github.com/go-gitea/gitea/pull/34509)) Nice fix for a bug hard to trace down. Needs careful merge & think about whether a test is possible. ------ - 💡 [`gitea`](`79cc369892`) Fix issue label delete incorrect labels webhook payload ([gitea#34575](https://github.com/go-gitea/gitea/pull/34575)) Small fix but would expect a test, showing what was fixed. ------ - 💡 [`gitea`](`fe57ee3074`) fixed incorrect page navigation with up and down arrow on last item of dashboard repos ([gitea#34570](https://github.com/go-gitea/gitea/pull/34570)) Small & simple - but tests are missing. ------ - 💡 [`gitea`](`4e471487fb`) Remove unnecessary duplicate code ([gitea#34552](https://github.com/go-gitea/gitea/pull/34552)) Fix arround "Split GetLatestCommitStatus". ------ - 💡 [`gitea`](`c5e78fc7ad`) Do not mutate incoming options to SearchRepositoryByName ([gitea#34553](https://github.com/go-gitea/gitea/pull/34553)) Large refactoring to simplify options handling. But needs careful merge. ------ - 💡 [`gitea`](`f48c0135a6`) Fix/improve avatar sync from LDAP ([gitea#34573](https://github.com/go-gitea/gitea/pull/34573)) Nice fix but needs test. ------ - 💡 [`gitea`](`e8d8984f7c`) Fix some trivial problems ([gitea#34579](https://github.com/go-gitea/gitea/pull/34579)) Various fixes, tests missing. ------ ## Skipped - ⏩ [`gitea`](`637070e07b`) Fix container range bug ([gitea#34725](https://github.com/go-gitea/gitea/pull/34725)) ------ - ⏩ [`gitea`](`0d3e9956cd`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`28debdbe00`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`dcc9206a59`) Raise minimum Node.js version to 20, test on 24 ([gitea#34713](https://github.com/go-gitea/gitea/pull/34713)) ------ - ⏩ [`gitea`](`bc28654b49`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`65986f423f`) Refactor embedded assets and drop unnecessary dependencies ([gitea#34692](https://github.com/go-gitea/gitea/pull/34692)) ------ - ⏩ [`gitea`](`18bafcc378`) Bump minimum go version to 1.24.4 ([gitea#34699](https://github.com/go-gitea/gitea/pull/34699)) ------ - ⏩ [`gitea`](`8d135ef5cf`) Update JS deps ([gitea#34701](https://github.com/go-gitea/gitea/pull/34701)) ------ - ⏩ [`gitea`](`d5893ee260`) Fix markdown wrap ([gitea#34697](https://github.com/go-gitea/gitea/pull/34697)) - gitea UI specific specific ------ - ⏩ [`gitea`](`06ccb3a1d4`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`94db956e31`) frontport changelog ([gitea#34689](https://github.com/go-gitea/gitea/pull/34689)) ------ - ⏩ [`gitea`](`d5afdccde8`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`e9f5105e95`) Migrate to urfave v3 ([gitea#34510](https://github.com/go-gitea/gitea/pull/34510)) already in Forgejo - see https://codeberg.org/forgejo/forgejo/pulls/8035 ------ - ⏩ [`gitea`](`2c341b6803`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`92e7e98c56`) Update x/crypto package and make builtin SSH use default parameters ([gitea#34667](https://github.com/go-gitea/gitea/pull/34667)) ------ - ⏩ [`gitea`](`7b39c82587`) Fix "oras" OCI client compatibility ([gitea#34666](https://github.com/go-gitea/gitea/pull/34666)) Already in forgejo - see https://codeberg.org/forgejo/forgejo/issues/8070 ------ - ⏩ [`gitea`](`1fe652cd26`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`a9a705f4db`) Fix missed merge commit sha and time when migrating from codecommit ([gitea#34645](https://github.com/go-gitea/gitea/pull/34645)) Migration: Seems to be an important fix, but no tests. As I know @earl-warren worked hard on migration, is this still relevant to us? ------ - ⏩ [`gitea`](`1e0758a9f1`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`f6f6aedd4f`) Update JS deps, regenerate SVGs ([gitea#34640](https://github.com/go-gitea/gitea/pull/34640)) ------ - ⏩ [`gitea`](`aa2b3b2b1f`) Misc CSS fixes ([gitea#34638](https://github.com/go-gitea/gitea/pull/34638)) - gitea UI specific specific ------ - ⏩ [`gitea`](`b38f2d31fd`) add codecommit to supported services in api docs ([gitea#34626](https://github.com/go-gitea/gitea/pull/34626)) ------ - ⏩ [`gitea`](`74a0178c6a`) add openssh-keygen to rootless image ([gitea#34625](https://github.com/go-gitea/gitea/pull/34625)) already in Forgejo - see https://codeberg.org/forgejo/forgejo/issues/6896 ------ - ⏩ [`gitea`](`5b22af4373`) bump to alpine 3.22 ([gitea#34613](https://github.com/go-gitea/gitea/pull/34613)) ------ - ⏩ [`gitea`](`9e0e107d23`) Fix notification count positioning for variable-width elements ([gitea#34597](https://github.com/go-gitea/gitea/pull/34597)) - gitea UI specific specific ------ - ⏩ [`gitea`](`e5781cec75`) Fix margin issue in markup paragraph rendering ([gitea#34599](https://github.com/go-gitea/gitea/pull/34599)) - gitea UI specific specific ------ - ⏩ [`gitea`](`375dab1111`) Make pull request and issue history more compact ([gitea#34588](https://github.com/go-gitea/gitea/pull/34588)) - gitea UI specific specific ------ - ⏩ [`gitea`](`2a1585b32e`) Refactor some tests ([gitea#34580](https://github.com/go-gitea/gitea/pull/34580)) ------ <details> <summary><h2>Stats</h2></summary> <br> Between [`gitea@d5bbaee64e`](`d5bbaee64e`) and [`gitea@6b8b580218`](`6b8b580218`), 55 commits have been reviewed. We picked 5, skipped 28 (of which 3 were already in Forgejo!), and decided to port 22. </details> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Co-authored-by: NorthRealm <155140859+NorthRealm@users.noreply.github.com> Co-authored-by: TheFox0x7 <thefox0x7@gmail.com> Co-authored-by: endo0911engineer <161911062+endo0911engineer@users.noreply.github.com> Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8198 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-06-17 18:28:07 +02:00
Earl Warren	adc273e3a8	fix: do not ignore automerge while a PR is checking for conflicts (#8189 ) Automerge can be ignored when the following race happens: * Conflict check is happening on a repository and `pr.Status = issues_model.PullRequestStatusChecking` for all open pull requests (this happens every time a pull request is merged). * While the conflict check is ongoing, an event (Forgejo Actions being successful for instance) happens and and `StartPRCheckAndAutoMerge` is called. Because `pr.CanAutoMerge()` is false, the pull request is not selected and not added to the automerge queue. * When the conflict check completes and `pr.CanAutoMerge()` becomes true, there no longer is a task in the auto merge queue and the auto merge does not happen. This is fixed by adding a task to the auto merge queue when the conflict check for a pull request completes. This is done when the mutx protecting the conflict check task is released to prevent a deadlock when a synchronous queues are used in the following situation: * the conflict check task finds the pull request is mergeable * it schedules the auto merge tasks that finds it must be merged * merging concludes with scheduling a conflict check task Avoid an extra loop where a conflict check task queues an auto merge task that will schedule a conflict check task if the pull request can be merged. The auto merge row is removed from the database before merging. It would otherwise be removed after the merge commit is received via the git hook which happens asynchronously and can lead to a race. StartPRCheckAndAutoMerge is modified to re-use HeadCommitID when available, such as when called after a pull request conflict check. --- A note on tests: they cover the new behavior, i.e. automerge being triggered by a successful conflict check. This is also on the critical paths for every test that involve creating, merging or updating a pull request. - `tests/integration/git_test.go` - `tests/integration/actions_commit_status_test.go` - `tests/integration/api_helper_for_declarative_test.go` - `tests/integration/patch_status_test.go` - `tests/integration/pull_merge_test.go` The [missing fixture file](https://codeberg.org/forgejo/forgejo/pulls/8189/files#diff-b86fdd79108b3ba3cb2e56ffcfd1be2a7b32f46c) for the auto merge table can be verified to be necessary simply by removing it an observing that the integration tests fail. The [scheduling of the auto merge task](https://codeberg.org/forgejo/forgejo/pulls/8189/files#diff-9489262e93967f6bb2db41837f37c06f4e70d978) in `testPR` can be verified to be required by moving it in the `testPRProtected` function and observing that the tests hang forever because of the deadlock. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8189): <!--number 8189 --><!--line 0 --><!--description ZG8gbm90IGlnbm9yZSBhdXRvbWVyZ2Ugd2hpbGUgYSBQUiBpcyBjaGVja2luZyBmb3IgY29uZmxpY3Rz-->do not ignore automerge while a PR is checking for conflicts<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8189 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-17 10:58:07 +02:00
Earl Warren	16dbc0efd3	fix: git_model.CommitStatusesHideActionsURL is obsolete (#8209 ) Refs: https://codeberg.org/forgejo/forgejo/pulls/7155 Refs: https://codeberg.org/forgejo/forgejo/pulls/8177 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8209 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-17 10:15:48 +02:00
Lucas Schwiderski	3a986d282f	Implement single-commit PR review flow (#7155 ) This implements the UI controls and information displays necessary to allow reviewing pull requests by stepping through commits individually. Notable changes: - Within the PR page, commit links now stay in the PR context by navigating to `{owner}/{repo}/pulls/{id}/commits/{sha}` - When showing a single commit in the "Files changed" tab, the commit header containing commit message and metadata is displayed - I dropped the existing buttons, since they make less sense to me in the PR context - The SHA links to the separate, dedicated commit view - "Previous"/"Next" buttons have been added to that header to allow stepping through commits - Reviews can be submitted in "single commit" view Talking points: - The "Showing only changes from" banner made sense when that view was limited (e.g. review submit was disabled). Now that it's on par with the "all commits" view, and visually distinct due to the commit header, this banner could potentially be dropped. Closes: #5670 #5126 #5671 #2281 #8084 ![image](/attachments/cff441dc-a080-42f8-86ae-9b80490761bf) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [x] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7155 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-06-17 09:31:50 +02:00
Gusted	3a8cea52cd	chore: remove gopls in Makefile (#8205 ) - `lint-go-gopls` runs `gopls check` over Forgejo's codebase. It report errors found by the diagnosis tool of gopls, most of it are errors that can be catched by existing linters. It is not used in the CI, remove it. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8205 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-17 08:28:26 +02:00
Gusted	b52264c953	fix: do not check for `object_format_name` field (#8202 ) - Only check for the `object_format_name` field if SHA256 is supported. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8202 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-17 07:47:00 +02:00
Renovate Bot	0c55cdf6b6	Update dependency chart.js to v4.5.0 (forgejo) (#8190 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8190 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-17 03:48:53 +02:00
Michael Jerger	9ea796b9ab	[gitea] week 2025-21 cherry pick (gitea/main -> forgejo) (#8040 ) ## Checklist - [x] go to the last cherry-pick PR (forgejo/forgejo#7965) to figure out how far it went: [gitea@9d4ebc1f2c](`9d4ebc1f2c`) - [x] cherry-pick and open PR (forgejo/forgejo#8040) - [ ] have the PR pass the CI - end-to-end (specially important if there are actions related changes) - [ ] add `run-end-to-end` label - [ ] check the result - [ ] write release notes - [ ] assign reviewers - [ ] 48h later, last call - merge 1 hour after the last call ## Legend - ❓ - No decision about the commit has been made. - 🍒 - The commit has been cherry picked. - ⏩ - The commit has been skipped. - 💡 - The commit has been skipped, but should be ported to Forgejo. - ✍️ - The commit has been skipped, and a port to Forgejo already exists. ## Commits - 🍒 [`gitea`](`50d9565088`) -> [`forgejo`](`c3e6eab732`) Add sort option recentclose for issues and pulls ([gitea#34525](https://github.com/go-gitea/gitea/pull/34525)) ## TODO - 💡 [`gitea`](`d5bbaee64e`) Retain issue sort type when a keyword search is introduced ([gitea#34559](https://github.com/go-gitea/gitea/pull/34559)) UI: Small bat might be nice. Test needed? Do we've frontend tests covering the search? ------ - 💡 [`gitea`](`82ea2387e4`) Always use an empty line to separate the commit message and trailer ([gitea#34512](https://github.com/go-gitea/gitea/pull/34512)) Needs merge ------ - 💡 [`gitea`](`74858dc5ae`) Fix line-button issue after file selection in file tree ([gitea#34574](https://github.com/go-gitea/gitea/pull/34574)) Frontend: Makes it sense to pick/port ui logic in .ts files? ------ - 💡 [`gitea`](`7149c9c55d`) Fix doctor deleting orphaned issues attachments ([gitea#34142](https://github.com/go-gitea/gitea/pull/34142)) Doctor: seems useful. ------ - 💡 [`gitea`](`0cec4b84e2`) Fix actions skipped commit status indicator ([gitea#34507](https://github.com/go-gitea/gitea/pull/34507)) Actions: Might benefit from additional tests. ------ - 💡 [`gitea`](`4cb0c641ce`) Add "View workflow file" to Actions list page ([gitea#34538](https://github.com/go-gitea/gitea/pull/34538)) Actions: Needs tests ------ - 💡 [`gitea`](`b0936f4f41`) Do not mutate incoming options to RenderUserSearch and SearchUsers ([gitea#34544](https://github.com/go-gitea/gitea/pull/34544)) Nice refactoring but needs manual merge. ------ - 💡 [`gitea`](`498088c053`) Add webhook assigning test and fix possible bug ([gitea#34420](https://github.com/go-gitea/gitea/pull/34420)) Integrationtest has conflicts needs merge. ------ - 💡 [`gitea`](`24a51059d7`) Fix possible nil description of pull request when migrating from CodeCommit ([gitea#34541](https://github.com/go-gitea/gitea/pull/34541)) Is this relevant to forgejo? Did not find the place to apply this small change. ------ - 💡 [`gitea`](`688da55f54`) Split GetLatestCommitStatus as two functions ([gitea#34535](https://github.com/go-gitea/gitea/pull/34535)) Merge required. ------ - 💡 [`gitea`](`ab9691291d`) Don't display error log when .git-blame-ignore-revs doesn't exist ([gitea#34457](https://github.com/go-gitea/gitea/pull/34457)) Unsure wheter this affects forgejo. Tests missing. ------ - 💡 [`gitea`](`11ee7ff3bf`) fix: return 201 Created for CreateVariable API responses ([gitea#34517](https://github.com/go-gitea/gitea/pull/34517)) Actions: This is marked as breaking the api. Pls think about whether this breaking change iss needed & how this impact api-version-increase. The corresponding clinet change can be found here: https://gitea.com/gitea/go-sdk/pulls/713/files ------ - 💡 [`gitea`](`9b295e984a`) Actions list ([gitea#34530](https://github.com/go-gitea/gitea/pull/34530)) Actions: Regression from https://github.com/go-gitea/gitea/pull/34337 Part of https://codeberg.org/forgejo/forgejo/pulls/7909 ------ ## Skipped - ⏩ [`gitea`](`bb6377d080`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`07d802a815`) [skip ci] Updated translations via Crowdin ------ - ⏩ [`gitea`](`c6e2093f42`) Clean up "file-view" related styles ([gitea#34558](https://github.com/go-gitea/gitea/pull/34558)) - gitea ui specific specific ------ - ⏩ [`gitea`](`9f10885b21`) Refactor commit reader ([gitea#34542](https://github.com/go-gitea/gitea/pull/34542)) - gitea refactor specific ------ <details> <summary><h2>Stats</h2></summary> <br> Between [`gitea@9d4ebc1f2c`](`9d4ebc1f2c`) and [`gitea@d5bbaee64e`](`d5bbaee64e`), 18* commits have been reviewed. We picked 1, skipped 4, and decided to port 13. </details> Co-authored-by: Markus Amshove <scm@amshove.org> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8040 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-06-16 20:27:47 +02:00
Robert Wolff	877fa8cec1	feat(ui): fediverse handle markup via redirect server (#8185 ) This implements the fediverse handle markup as discussed in https://codeberg.org/forgejo/forgejo/issues/7942#issuecomment-5152173 by adding links to the https://fedirect.toolforge.org server. It’s likely a temporary solution that will be reverted by proper federation implementation. I wasn’t sure, but because I already had the implementation ready, I put the code here. I won’t be offended if we just close it. (Also it relies on external server, that could be done configurable, but given that this is likely to be temporary it may not be worth the further implementation?) ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8185 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-06-16 14:55:17 +02:00
Renovate Bot	5e157d40df	Update renovate to v40.57.1 (forgejo) (#8194 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8194 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-16 11:54:29 +02:00
Renovate Bot	65bb09a332	Lock file maintenance (forgejo) (#8195 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40OC40IiwidXBkYXRlZEluVmVyIjoiNDAuNDguNCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8195 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-16 11:42:27 +02:00
Paweł Bogusławski	7380eac5a2	fix: improve dashboard loading performances (#7604 ) Generating dashboard page takes too long when table `action` contains many records and error log contains message like ``` 2025/04/21 21:21:07 ...activities/action.go:470:GetFeeds() [W] [Slow SQL Query] SELECT `action`.* FROM `action` INNER JOIN `repository` ON `repository`.id = `action`.repo_id WHERE user_id=? AND is_deleted=? ORDER BY `action`.`created_unix` DESC LIMIT 20 [12 false] - 2m8.393454675s ``` This mod removes unnecessary inner join like proposed in https://github.com/go-gitea/gitea/pull/32127 For complete solution index(user_id, is_deleted) for action table should be created also like in https://github.com/go-gitea/gitea/pull/32333 (not included in this mod). Related: https://github.com/go-gitea/gitea/pull/32127 Related: https://github.com/go-gitea/gitea/pull/32333 Author-Change-Id: IB#1160173 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7604 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Paweł Bogusławski <pboguslawski@noreply.codeberg.org> Co-committed-by: Paweł Bogusławski <pboguslawski@noreply.codeberg.org>	2025-06-14 23:01:56 +02:00
Gusted	90f8239448	fix: make test suite run on older git version (#8188 ) Ref: forgejo/forgejo#8140, forgejo/forgejo#8144 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8188 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-14 19:50:58 +02:00
Thomas Böhler	53d5e6d754	feat(ui): show size constraints of custom avatar (#7998 ) Closes #7862 This adds a note for the user profile settings page about the avatar constraints. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7998 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Thomas Böhler <witcher@wiredspace.de> Co-committed-by: Thomas Böhler <witcher@wiredspace.de>	2025-06-14 16:35:50 +02:00
Renovate Bot	6cdf2cd66e	Update module github.com/go-sql-driver/mysql to v1.9.3 (forgejo) (#8186 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql) \| require \| patch \| `v1.9.2` -> `v1.9.3` \| --- ### Release Notes <details> <summary>go-sql-driver/mysql (github.com/go-sql-driver/mysql)</summary> ### [`v1.9.3`](https://github.com/go-sql-driver/mysql/releases/tag/v1.9.3) [Compare Source](https://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.9.3) #### What's Changed - \[1.9] test stability improvement. by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1699 - \[1.9] Transaction Commit/Rollback returns conn's cached error by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1702 - backport benchmark_test by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1706 - \[1.9] optimize readPacket ([#1705](https://github.com/go-sql-driver/mysql/issues/1705)) by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1707 - \[1.9] fix PING on compressed connections by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1723 - release v1.9.3 by [@methane](https://github.com/methane) in https://github.com/go-sql-driver/mysql/pull/1725 Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.9.3 </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40OC40IiwidXBkYXRlZEluVmVyIjoiNDAuNDguNCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8186 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-14 07:54:51 +02:00
Earl Warren	35e051aaee	fix: Dockerfile should re-use bindata files when possible (#8176 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8176 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-06-13 21:59:56 +02:00
Lucas Schwiderski	44de50fcac	Update environment-to-ini README (#8183 ) The README is linked to by the docs, but has become outdated. This brings the file back in line with the tool's description, fixes the left over Gitea branding and improves the wording in some places. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8183 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-06-13 21:59:26 +02:00
Earl Warren	07cc5802bf	API: new `GET /repos/{owner}/{repo}/git/blobs` endpoint to retrieve multiple blobs at once (#8179 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8179 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-13 14:39:51 +02:00
Renovate Bot	2fdddcb04e	Update https://data.forgejo.org/forgejo/forgejo-build-publish action to v5.3.5 (forgejo) (#8181 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [https://data.forgejo.org/forgejo/forgejo-build-publish](https://data.forgejo.org/forgejo/forgejo-build-publish) \| action \| patch \| `v5.3.4` -> `v5.3.5` \| --- ### Release Notes <details> <summary>forgejo/forgejo-build-publish (https://data.forgejo.org/forgejo/forgejo-build-publish)</summary> ### [`v5.3.5`](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.3.4...v5.3.5) [Compare Source](https://data.forgejo.org/forgejo/forgejo-build-publish/compare/v5.3.4...v5.3.5) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40OC40IiwidXBkYXRlZEluVmVyIjoiNDAuNDguNCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8181 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-13 14:22:21 +02:00
Earl Warren	fd2f9e6842	fix: Dockerfile should re-use bindata files when possible - Revert "fix: use zstd.WithLowerEncoderMem for generate-bindata - Re-use bindata files when available instead of ignoring them in Dockerfile - Add missing modules/migration/bindata.go to go sources in the Makefile Closes forgejo/forgejo#8165	2025-06-13 14:00:57 +02:00
oliverpool	a4ea74020f	feat: API GET /repos/{owner}/{repo}/git/blobs	2025-06-13 13:52:56 +02:00
Renovate Bot	42514a4744	Update dependency minimatch to v10.0.3 (forgejo) (#8174 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [minimatch](https://github.com/isaacs/minimatch) \| dependencies \| patch \| [`10.0.2` -> `10.0.3`](https://renovatebot.com/diffs/npm/minimatch/10.0.2/10.0.3) \| --- ### Release Notes <details> <summary>isaacs/minimatch (minimatch)</summary> ### [`v10.0.3`](https://github.com/isaacs/minimatch/compare/v10.0.2...v10.0.3) [Compare Source](https://github.com/isaacs/minimatch/compare/v10.0.2...v10.0.3) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40OC40IiwidXBkYXRlZEluVmVyIjoiNDAuNDguNCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8174 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-13 13:24:14 +02:00
oliverpool	09699c1506	feat: always publish the link to the commit status (#8177 ) See https://codeberg.org/forgejo/forgejo/pulls/4801#issuecomment-5094525 and #8152 for more context. The current implementation is limited to self-hosted actions and buggy as soon as multiple repos are involved, like for the homepage (because each permission must be fetched individually). Ideally this feature should work for all kind of status (with some setting indicating which collaborator can access with status). Probably inside the `git_model.ParseCommitsWithStatus` function. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8177 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-13 12:41:34 +02:00
Earl Warren	c21d271358	Revert "fix: use zstd.WithLowerEncoderMem for generate-bindata (#8172 )" This reverts commit `402a85a9b6`.	2025-06-13 12:24:06 +02:00
oliverpool	07e8684a61	api: GitBlob consistent naming	2025-06-13 11:35:14 +02:00
Earl Warren	402a85a9b6	fix: use zstd.WithLowerEncoderMem for generate-bindata (#8172 ) Closes forgejo/forgejo#8165 The test that matters will happen on the next integration build. A manual test was run in the integration repository: * commit `82c419a85e` * run that builds bindata for v6 https://codeberg.org/forgejo-integration/forgejo/actions/runs/10219#jobstep-9-5286 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8172 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-12 23:23:37 +02:00
Earl Warren	563d8f1564	chore(ci): skip tests if TEST_{MINIO_ENDPOINT,ELASTICSEARCH_URL} is not set (#8166 ) This allows the daily tests to work instead of failing because elasticsearch & minio are not present. * [Minio](https://codeberg.org/forgejo-integration/forgejo/actions/runs/10172#jobstep-5-353) * [Elasticsearch](https://codeberg.org/forgejo-integration/forgejo/actions/runs/10172#jobstep-5-272) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8166 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-12 21:13:52 +02:00
Renovate Bot	4a06153709	Update dependency postcss to v8.5.5 (forgejo) (#8160 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8160 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-12 17:35:25 +02:00
Earl Warren	e2cf8520bc	fix: do not mix urfave v2 with urfave v3 (#8168 ) [Spotted](https://codeberg.org/forgejo/forgejo/pulls/8137#issuecomment-5079471) by @nilsph ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8168 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-12 15:38:03 +02:00
Earl Warren	db99d8d09e	Update module github.com/minio/minio-go/v7 to v7.0.93 (forgejo) (#8162 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8162 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-12 14:02:52 +02:00
Earl Warren	6753480ab1	Update module github.com/minio/minio-go/v7 to v7.0.93 (licenses)	2025-06-12 13:35:55 +02:00
Earl Warren	442f11995c	i18n: update of translations from Codeberg Translate (#8077 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8077 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-12 12:46:36 +02:00
Codeberg Translate	fe28f128df	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: BlackSpirits <blackspirits@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Salif Mehmed <mail@salif.eu> Co-authored-by: Shihfu Juan <xlion@xlion.tw> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: gedankenstuecke <gedankenstuecke@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: nightfurysl2001 <nightfurysl2001@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yeager <yeager@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/bg/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-06-12 10:09:11 +00:00
Renovate Bot	90d67cf421	Update module gitlab.com/gitlab-org/api/client-go to v0.130.1 (forgejo) (#8163 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go) \| require \| minor \| `v0.129.0` -> `v0.130.1` \| --- ### Release Notes <details> <summary>gitlab-org/api/client-go (gitlab.com/gitlab-org/api/client-go)</summary> ### [`v0.130.1`](https://gitlab.com/gitlab-org/api/client-go/tags/v0.130.1) [Compare Source](https://gitlab.com/gitlab-org/api/client-go/compare/v0.130.0...v0.130.1) #### [0.130.1](https://gitlab.com/gitlab-org/api/client-go/compare/v0.130.0...v0.130.1) (2025-06-11) ##### Bug Fixes * add missing nil check on create group with avatar ([3298a05](`3298a058f3`)) ### [`v0.130.0`](https://gitlab.com/gitlab-org/api/client-go/tags/v0.130.0) [Compare Source](https://gitlab.com/gitlab-org/api/client-go/compare/v0.129.0...v0.130.0) ### [0.130.0](https://gitlab.com/gitlab-org/api/client-go/compare/v0.129.0...v0.130.0) (2025-06-11) ##### Bug Fixes * workflow: the `release.config.mjs` file mustn't be hidden ([5d423a5](`5d423a55d5`)) ##### Features * add "emoji_events" support to group hooks ([c6b770f](`c6b770f350`)) * Add `active` to ListProjects ([7818155](`78181558db`)) * add generated_file field for MergeRequestDiff ([4b95dac](`4b95dac3ef`)) * add support for `administrator` to Group `project_creation_level` enums ([664bbd7](`664bbd7e3c`)) * add the `WithTokenSource` client option ([6ccfcf8](`6ccfcf857a`)) * add url field to MergeCommentEvent.merge_request ([bd639d8](`bd639d811c`)) * implement a specialized `TokenSource` interface ([83c2e06](`83c2e06cbe`)) * projects: add ci_push_repository_for_job_token_allowed parameter ([3d539f6](`3d539f66fd`)) * terraform-states: add Terraform States API ([082b81c](`082b81cd45`)) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40OC40IiwidXBkYXRlZEluVmVyIjoiNDAuNDguNCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8163 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-12 11:38:25 +02:00
Earl Warren	7ec014cba8	fix: do not fail when release or wiki is set in `/repos/migrate` API (#8155 ) * convert updateRepoUnits to not rely on ctx to retrieve the repo * Add integration test * do not activate releases if `wiki: true`. This is unexpected and there is no evidence it is necessary. Refs https://codeberg.org/forgejo/forgejo/issues/8082 --- The test is minimal for the sake of backporting. It is verified to reproduce the bug if the fix is not present. ```sh $ make TAGS='sqlite sqlite_unlock_notify' 'test-sqlite#TestAPIRepoMigrate' ... === TestAPIRepoMigrate (tests/integration/api_repo_test.go:388) --- FAIL: TestAPIRepoMigrate (1.12s) testlogger.go:411: 2025/06/11 17:38:22 ...les/storage/local.go:33:NewLocalStorage() [I] Creating new Local Storage at /home/earl-warren/software/forgejo/tests/gitea-lfs-meta testlogger.go:411: 2025/06/11 17:38:22 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user/login for test-mock:12345, 200 OK in 2.1ms @ auth/auth.go:145(auth.SignIn) testlogger.go:411: 2025/06/11 17:38:22 ...eb/routing/logger.go:102:func1() [I] router: completed POST /user/login for test-mock:12345, 303 See Other in 2.1ms @ auth/auth.go:179(auth.SignInPost) testlogger.go:411: 2025/06/11 17:38:22 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user/settings/applications for test-mock:12345, 200 OK in 3.8ms @ setting/applications.go:25(setting.Applications) testlogger.go:411: 2025/06/11 17:38:22 ...eb/routing/logger.go:102:func1() [I] router: completed POST /user/settings/applications for test-mock:12345, 303 See Other in 5.1ms @ setting/applications.go:35(setting.ApplicationsPost) testlogger.go:411: 2025/06/11 17:38:22 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user/settings/applications for test-mock:12345, 200 OK in 2.9ms @ setting/applications.go:25(setting.Applications) testlogger.go:411: 2025/06/11 17:38:23 ...eb/routing/logger.go:102:func1() [I] router: completed POST /api/v1/repos/migrate for test-mock:12345, 0 in 992.0ms @ repo/migrate.go:38(repo.Migrate) api_repo_test.go:400: Error Trace: /home/earl-warren/software/forgejo/tests/integration/api_repo_test.go:400 Error: Not equal: expected: 201 actual : 200 Test: TestAPIRepoMigrate api_repo_test.go:402: Error Trace: /home/earl-warren/software/forgejo/tests/integration/integration_test.go:649 /home/earl-warren/software/forgejo/tests/integration/api_repo_test.go:402 Error: Received unexpected error: EOF Test: TestAPIRepoMigrate ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8155): <!--number 8155 --><!--line 0 --><!--description ZG8gbm90IGZhaWwgd2hlbiByZWxlYXNlIG9yIHdpa2kgaXMgc2V0IGluIGAvcmVwb3MvbWlncmF0ZWAgQVBJ-->do not fail when release or wiki is set in `/repos/migrate` API<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8155 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-12 11:12:58 +02:00
Renovate Bot	fcecafe823	Update dependency minimatch to v10.0.2 (forgejo) (#8159 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8159 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-12 08:07:37 +02:00
Renovate Bot	2d436a5244	Update module github.com/minio/minio-go/v7 to v7.0.93	2025-06-12 02:03:08 +00:00
oliverpool	c93eb1f927	API: enforce sha requirement on `POST /repos/{owner}/{repo}/contents` (#8139 ) Currently the `POST /repos/{owner}/{repo}/contents` API endpoint accepts request without any `ChangeFileOperation.SHA`, unlike stated by the doc: `33eee199cf/modules/structs/repo_file.go (L80-L81)` This PR adds: - some more (already passing) tests around this function - a new (failing) test to show this wrong behavior - a fix (note that this is a breaking change for clients exploiting this bug) - an update for all the existing tests <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8139): <!--number 8139 --><!--line 0 --><!--description QVBJOiBlbmZvcmNlIHNoYSByZXF1aXJlbWVudCBvbiBgUE9TVCAvcmVwb3Mve293bmVyfS97cmVwb30vY29udGVudHNg-->API: enforce sha requirement on `POST /repos/{owner}/{repo}/contents`<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8139 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: oliverpool <git@olivier.pfad.fr> Co-committed-by: oliverpool <git@olivier.pfad.fr>	2025-06-12 00:13:39 +02:00
Nils Philippsen	d3bc095d0c	Remove shebang from bash autocompletion (#8137 ) The autocompletion snippet has to be sourced from a shell, but running it in its own process doesn’t make sense. Signed-off-by: Nils Philippsen <nils@redhat.com> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Nils Philippsen <nils@redhat.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8137 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Nils Philippsen <nilsph@noreply.codeberg.org> Co-committed-by: Nils Philippsen <nilsph@noreply.codeberg.org>	2025-06-12 00:07:10 +02:00
Earl Warren	32300d5488	chore(ci): use code.forgejo.org/forgejo/migration-test for migration tests (#8157 ) Using https://github.com/go-gitea/test_repo is not necessary as the current API integration tests are not GitHub specific. It makes them less susceptible to transient failures because of throttling. --- The https://code.forgejo.org/forgejo/migration-test repository was created just now. There still is a chance (although very slim) that someone running the CI will be throttled by code.forgejo.org and the error message suggesting that may be a cause for failure is kept to clear the confusion in case it happens. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8157 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-11 20:25:32 +02:00
Gusted	7958942e3e	chore: fix tests for old git versions (#8144 ) Ref: forgejo/forgejo#8140 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8144 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-11 09:38:15 +02:00
Gusted	4288c214a4	feat: improve generation of bundled assets (#8143 ) - Replace the current vfsgen with our own bindata generator. - zstd is used instead of gzip. This reduces the size of the resulting binary by 2MiB, the size of the bundled assets were thus reduced from 13MiB to 11MiB. - If [the browser accepts zstd encoding](https://caniuse.com/zstd), then the compressed bytes can be served directly, otherwise it falls back to being compressed by gzip if it's not disabled via `[server].ENABLE_GZIP` - The compression and decompression speed is roughly 4 times faster. - The generated filesystem is now of type `fs.Fs` instead of `http.FileSystem`, this slightly simplifies the generated code and handling of the assets. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8143 Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-06-11 09:36:18 +02:00
Shalabh Agarwal	39b93f828b	fix: add user visibility description in settings page (#8121 ) Closes: #7501 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). Closes: #7501 ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8121 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Shalabh Agarwal <shalabhagarwal1024@gmail.com> Co-committed-by: Shalabh Agarwal <shalabhagarwal1024@gmail.com>	2025-06-11 09:27:22 +02:00
Renovate Bot	250971b4ac	Update dependency happy-dom to v18 (forgejo) (#8150 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:17:39 +02:00
Renovate Bot	4c085d35f8	Update dependency typescript-eslint to v8.34.0 (forgejo) (#8149 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:13:41 +02:00
Renovate Bot	e921cc8b09	Update dependency @playwright/test to v1.53.0 (forgejo) (#8148 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:11:21 +02:00
Renovate Bot	bb78114e5e	Update ghcr.io/devcontainers/features/git-lfs Docker tag to v1.2.4 (forgejo) (#8147 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:11:13 +02:00
Renovate Bot	6965be8293	Update dependency @vitest/eslint-plugin to v1.2.2 (forgejo) (#8145 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:10:52 +02:00
Renovate Bot	1ffeb2cc01	Update dependency postcss-nesting to v13.0.2 (forgejo) (#8146 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8146 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-11 01:10:44 +02:00
0ko	84c3b595c4	feat(ui): global styling for kbd tag (#7958 ) - Before #6813, there were no `kbd`s in the UI, but now we have a few. Currently they do not have any special styling other than font family+size. But markup did have pretty good styling. - This PR makes that styling used globally. - The only concerning property is `background-color`, which uses a variable with `-markup-` in it, but I do not find this as a significant scope violation. We have many CSS variables but seemingly not enough generic ones. Co-authored-by: floss4good <floss4good@disroot.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7958 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-06-10 22:59:24 +02:00
jmaasing	5391f43888	fix: remove trailing slash from the issuer in oauth claims (#8028 ) - Trim the ending slash '/' from the URL used in the OpenID Connect "well_known" endpoint and in the JWT tokens issued by Forgejo. - This makes it compliant with the OpenID specification. https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig - Resolves #7941 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8028 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: jmaasing <jmaasing@noreply.codeberg.org> Co-committed-by: jmaasing <jmaasing@noreply.codeberg.org>	2025-06-10 20:46:17 +02:00
Benedikt Straub	9b6e3b61cf	Make relative-time a self-maintaining custom element (#8134 ) Fixes #8124 Replaces #8130 Use a custom element for relative-time. Thanks to @Beowulf for suggesting this approach. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8134 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-committed-by: Benedikt Straub <benedikt-straub@web.de>	2025-06-10 20:12:21 +02:00
Earl Warren	b97c462d2e	chore(ci): run additional tests in integration (#8140 ) With git 2.30 instead of git >= 2.42 These will be run once a day, when the mirror from the development repository happens and copies the branches to the integration repository (see .forgejo/workflows/mirror.yml). A failure will not be blocking and will go unoticed until Codeberg is upgraded to v12 which can send a mail a workflow fails. Note: remove the "debug" commit before merging. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8140 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-10 19:05:46 +02:00
famfo	33eee199cf	chore: create shell.nix and update flake.* (#8129 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8129 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-06-10 14:31:59 +02:00
Renovate Bot	a1bec15043	Update module connectrpc.com/connect to v1.18.1 (forgejo) (#8128 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8128 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 19:02:41 +02:00
Renovate Bot	9a1c10f92e	Update dependency markdownlint-cli to v0.45.0 (forgejo) (#8127 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 18:49:57 +02:00
Renovate Bot	1d3208898f	Update dependency eslint-plugin-regexp to v2.9.0 (forgejo) (#8126 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 18:48:30 +02:00
Renovate Bot	8d80a9cc01	Update vitest monorepo to v3.2.3 (forgejo) (#8125 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 18:48:27 +02:00
networkException	881cdf88bb	feat: enable `mlkem768x25519-sha256` by default for builtin ssh (#8115 ) This pull request enables the `mlkem768x25519-sha256` key exchange algorithm by default. Support for this has landed in go 1.24 and crypto/ssh 0.39.0 respectively. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8115 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: networkException <git@nwex.de> Co-committed-by: networkException <git@nwex.de>	2025-06-09 14:34:15 +02:00
Renovate Bot	d3adaf7574	Lock file maintenance (forgejo) (#8118 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MC4wIiwidXBkYXRlZEluVmVyIjoiNDAuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8118 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 11:41:12 +02:00
Renovate Bot	81c960f0c2	Update renovate to v40.48.4 (forgejo) (#8117 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-09 10:50:43 +02:00
Malte Jürgens	580efedad4	fix: remove download attribute from external assets (#8112 ) Fixes #6983. I suppose a change like this doesn't require any testing? ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8112 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Malte Jürgens <maltejur@dismail.de> Co-committed-by: Malte Jürgens <maltejur@dismail.de>	2025-06-09 10:48:35 +02:00
Julian Schlarb	e70f48bd44	fix: always render detailed team permissions table in sidebar (#8108 ) Remove the generic write/admin description block for AccessMode 2/3 and unconditionally display the unit-level permissions table. fixes #3517 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [X] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [X] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [X] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8108 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Julian Schlarb <julian.schlarb@denktmit.de> Co-committed-by: Julian Schlarb <julian.schlarb@denktmit.de>	2025-06-09 10:37:31 +02:00
pat-s	bd6f3243ab	feat: support artifact uploads for OCI container packages (#8070 ) # Fix OCI artifact uploads with`oras` ## Problem ORAS (OCI Registry As Storage) artifact uploads were failing with several HTTP-related errors when pushing to Forgejo's container registry. This prevented users from storing OCI artifacts like `artifacthub-repo.yaml` in commands like `oras push [...] artifacthub-repo.yaml:application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml`. This has been discussed previously in https://github.com/go-gitea/gitea/issues/25846 ## Root Causes and Fixes ### 1. Missing Content-Length for Empty Blobs Issue: Empty blobs (size 0) were not getting the required `Content-Length: 0` header, causing ORAS to fail with "unknown response Content-Length". Fix: Changed the condition in `setResponseHeaders` from `if h.ContentLength != 0` to `if h.ContentLength >= 0` to ensure the Content-Length header is always set for valid blob sizes. ```go // Before if h.ContentLength != 0 { resp.Header().Set("Content-Length", strconv.FormatInt(h.ContentLength, 10)) } // After if h.ContentLength >= 0 { resp.Header().Set("Content-Length", strconv.FormatInt(h.ContentLength, 10)) } ``` ### 2. Content-Length Mismatch in JSON Error Responses Issue: The `jsonResponse` function was calling `WriteHeader()` before writing JSON content, causing "wrote more than the declared Content-Length" errors when the HTTP stack calculated a different Content-Length than what was actually written. Fix: Modified `jsonResponse` to buffer JSON content first, calculate the exact Content-Length, then write the complete response. ### 3. Incomplete HTTP Responses in Error Handling Issue: The `apiError` function was only setting response headers without writing any response body, causing EOF errors when clients expected a complete HTTP response. Fix: Updated `apiError` to write proper JSON error responses following the OCI Distribution Specification format with `code` and `message` fields. ### 4. Empty Config Blob Handling for OCI Artifacts Issue: OCI artifacts often have empty config blobs (required by spec but contain no data). The JSON decoder was failing with EOF when trying to parse these empty configs. Fix: Added EOF handling in `parseOCIImageConfig` to return a valid default metadata object for empty config blobs. ```go if err := json.NewDecoder(r).Decode(&image); err != nil { // Handle empty config blobs (common in OCI artifacts) if err == io.EOF { return &Metadata{ Type: TypeOCI, Platform: DefaultPlatform, }, nil } return nil, err } ``` ## Testing Verified that ORAS artifact uploads now work correctly: ```bash oras push registry/owner/package:artifacthub.io \ --config /dev/null:application/vnd.cncf.artifacthub.config.v1+yaml \ artifacthub-repo.yaml:application/vnd.cncf.artifacthub.repository-metadata.layer.v1.yaml ``` ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8070 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-06-09 10:14:53 +02:00
John Moon	b2b039b6e7	fix: allow instance API URLs in release assets (#7644 ) Currently, if you try to add an "external" link to a release in Forgejo, the validation code checks for basic URL soundness and then specifically checks that the URL is not an API URL. In some cases, it may make sense to link to instance API URLs (like when you want to create a release that links to several different repos' packages). Relax this check so it only validates basic URL soundness. Refs: https://codeberg.org/forgejo/forgejo/issues/7598 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. See: https://codeberg.org/forgejo/docs/pulls/1161 ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/7644): <!--number 7644 --><!--line 0 --><!--description YWxsb3cgaW5zdGFuY2UgQVBJIFVSTHMgaW4gcmVsZWFzZSBhc3NldHM=-->allow instance API URLs in release assets<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7644 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Malte Jürgens <maltejur@noreply.codeberg.org> Co-authored-by: John Moon <john.moon@vts-i.com> Co-committed-by: John Moon <john.moon@vts-i.com>	2025-06-09 10:01:59 +02:00
Julian Schlarb	a8e375eb28	fix: omit Content-Length on 307 redirects when serving direct manifest for containers (#8037 ) Containers have been refactored to use the same serve method as other packages, ensuring consistent response handling. fixes #7888 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/8037): <!--number 8037 --><!--line 0 --><!--description b21pdCBDb250ZW50LUxlbmd0aCBvbiAzMDcgcmVkaXJlY3RzIHdoZW4gc2VydmluZyBkaXJlY3QgbWFuaWZlc3QgZm9yIGNvbnRhaW5lcnM=-->omit Content-Length on 307 redirects when serving direct manifest for containers<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8037 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Julian Schlarb <julian.schlarb@denktmit.de> Co-committed-by: Julian Schlarb <julian.schlarb@denktmit.de>	2025-06-09 08:43:41 +02:00
Julian Schlarb	4b6ccbd631	feat: auto cleanup of offline runners (#7803 ) Fixes #7646 Adds a cron job to cleanup action runners that have been offline or inactive for X amount of time. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7803 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Julian Schlarb <julian.schlarb@denktmit.de> Co-committed-by: Julian Schlarb <julian.schlarb@denktmit.de>	2025-06-08 00:13:37 +02:00
Renovate Bot	4d44ae39e1	Update vitest monorepo to v3.2.2 (forgejo) (#8102 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 04:49:09 +02:00
Renovate Bot	db83b43d8d	Update dependency happy-dom to v17.6.3 (forgejo) (#8098 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8098 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 04:45:10 +02:00
Renovate Bot	6d7f5fb41e	Update x/tools to v0.34.0 (forgejo) (#8103 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:57:12 +02:00
Renovate Bot	dc2954f8fe	Update dependency @vitest/eslint-plugin to v1.2.1 (forgejo) (#8100 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:53:05 +02:00
Renovate Bot	7428edacbe	Update module github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker to v3.3.0 (forgejo) (#8101 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:53:04 +02:00
Renovate Bot	10da5e5609	Update linters (forgejo) (#8099 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:52:56 +02:00
Renovate Bot	f476ee2196	Update dependency @vitejs/plugin-vue to v5.2.4 (forgejo) (#8097 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:52:39 +02:00
Renovate Bot	1242786324	Update dependency @axe-core/playwright to v4.10.2 (forgejo) (#8096 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-07 03:51:41 +02:00
Otto	e0bfacac0b	fix: show membership of limited orgs (#8094 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8094 Reviewed-by: Otto <otto@codeberg.org>	2025-06-07 01:26:56 +02:00
Gusted	b68f923592	fix: show membership of limited orgs - Include organisations with visibility of limited if the visitor is signed in. - Resolves forgejo/forgejo#8093 - Added unit test.	2025-06-06 19:33:26 +02:00
Shiny Nematoda	82e4ccc223	port(gitea): Retain issue/pull sort type (#8067 ) port of [gitea#34559](https://github.com/go-gitea/gitea/pull/34559) initial work attributed to [badhezi](https://github.com/badhezi) Co-authored-by: badhezi <zlilaharon@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8067 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-06-06 15:30:52 +02:00
Renovate Bot	8f2c08b8dc	Update module golang.org/x/crypto to v0.39.0 (forgejo) (#8091 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8091 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-06 15:19:05 +02:00
Renovate Bot	dcf1eef9e9	Update module github.com/sergi/go-diff to v1.4.0 (forgejo) (#8090 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8090 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-06 15:02:54 +02:00
Renovate Bot	249f1fc17e	Update dependency go to v1.24.4 (forgejo) (#8086 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go](https://go.dev/) ([source](https://github.com/golang/go)) \| toolchain \| patch \| `1.24.3` -> `1.24.4` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MC4wIiwidXBkYXRlZEluVmVyIjoiNDAuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8086 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-06 11:10:27 +02:00
Lucas Schwiderski	313504739f	chore: extract commit header template (#8061 ) Part of #7155 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8061 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-06-05 11:35:08 +02:00
Ian Spence	7df94ff7b2	feat: add `admin user reset-mfa` CLI command (#8047 ) ### Pull Request Description: This Pull Request adds a new `admin user reset-mfa` option to the CLI which lets admins remove all two-factor authentication configurations for a user (both totp & passkey). Like with `reset-password` this lets admins help unblock users who might be locked out. ### Justification: Although users are told to back up or store TOTP recovery keys in a safe place, this is hardly a fool-proof design (not the fault of Forgejo or Gitea), in addition, passkeys don't really provide any means of recovery should the key no longer be available. It's entirely possible to become totally locked out of your foregejo account because you cannot complete a two-factor challenge. Providing a means to recover from this lockout scenario through the existing CLI tool parallels the scenario of forgetting a password. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8047): <!--number 8047 --><!--line 0 --><!--description QWRkcyBgYWRtaW4gdXNlciByZXNldC1tZmFgIENMSSBvcHRpb24=-->Adds `admin user reset-mfa` CLI option<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8047 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Ian Spence <ian@ecnepsnai.com> Co-committed-by: Ian Spence <ian@ecnepsnai.com>	2025-06-05 10:40:21 +02:00
Earl Warren	60adf59620	i18n: update of translations from Codeberg Translate (#7969 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7969 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-06-05 08:54:57 +02:00
Codeberg Translate	805e749a15	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: AzzyDev <azzydev@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: BlackSpirits <blackspirits@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Laurent FAVOLE <lfavole@noreply.codeberg.org> Co-authored-by: Lzebulon <lzebulon@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Shihfu Juan <xlion@xlion.tw> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Vyxie <kitakita@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: fnetX <otto@codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kwoot <kwoot@noreply.codeberg.org> Co-authored-by: milimarg <milimarg@noreply.codeberg.org> Co-authored-by: nightfurysl2001 <nightfurysl2001@noreply.codeberg.org> Co-authored-by: oscarotero <oscarotero@noreply.codeberg.org> Co-authored-by: pomp <pomp@noreply.codeberg.org> Co-authored-by: rdsq <rdsq@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: volkan <volkan@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/eo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/jbo/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-06-05 06:25:50 +00:00
Renovate Bot	e4c43c0cec	Update module github.com/blevesearch/bleve/v2 to v2.5.2 (forgejo) (#8064 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8064 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-04 14:18:00 +02:00
Renovate Bot	a24ca6e4b4	Update dependency postcss to v8.5.4 (forgejo) (#8062 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [postcss](https://postcss.org/) ([source](https://github.com/postcss/postcss)) \| dependencies \| patch \| [`8.5.2` -> `8.5.4`](https://renovatebot.com/diffs/npm/postcss/8.5.2/8.5.4) \| --- ### Release Notes <details> <summary>postcss/postcss (postcss)</summary> ### [`v8.5.4`](https://github.com/postcss/postcss/blob/HEAD/CHANGELOG.md#854) [Compare Source](https://github.com/postcss/postcss/compare/8.5.3...8.5.4) - Fixed Parcel compatibility issue (by [@git-sumitchaudhary](https://github.com/git-sumitchaudhary)). ### [`v8.5.3`](https://github.com/postcss/postcss/blob/HEAD/CHANGELOG.md#853) [Compare Source](https://github.com/postcss/postcss/compare/8.5.2...8.5.3) - Added more details to `Unknown word` error (by [@hiepxanh](https://github.com/hiepxanh)). - Fixed types (by [@romainmenke](https://github.com/romainmenke)). - Fixed docs (by [@catnipan](https://github.com/catnipan)). </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MC4wIiwidXBkYXRlZEluVmVyIjoiNDAuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8062 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-04 10:02:52 +02:00
Renovate Bot	534020d0ad	Update module go.uber.org/mock/mockgen to v0.5.2 (forgejo) (#8065 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [go.uber.org/mock/mockgen](https://github.com/uber/mock) \| patch \| `v0.5.1` -> `v0.5.2` \| --- ### Release Notes <details> <summary>uber/mock (go.uber.org/mock/mockgen)</summary> ### [`v0.5.2`](https://github.com/uber-go/mock/releases/tag/v0.5.2) [Compare Source](https://github.com/uber/mock/compare/v0.5.1...v0.5.2) #### 0.5.2 (28 Apr 2025) ##### Fixed - [#248][]: Fixed an issue with type aliases not being included in generated code correctly. [#248]: https://github.com/uber-go/mock/pull/248 </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MC4wIiwidXBkYXRlZEluVmVyIjoiNDAuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8065 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-04 10:01:47 +02:00
Renovate Bot	39d3e874b0	Update dependency vue to v3.5.16 (forgejo) (#8063 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-04 08:40:18 +02:00
Danko Aleksejevs	905a5748a8	Add issue number to the search index, rank number and title matches higher (#7956 ) (#7968 ) An attempt at solving #7956. This (and rebuilding the index) seems enough to ensure the issue appears among the results. However, I couldn't figure out from [bleve docs](https://github.com/blevesearch/bleve/blob/master/docs/scoring.md) how to affect the scoring based on specific fields, or whether that is possible at all. Disclaimer: I've never written Go before, sorry 😅 take it as a quick PoC more than anything. ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7968): <!--number 7968 --><!--line 0 --><!--description QWRkIGlzc3VlIG51bWJlciB0byB0aGUgc2VhcmNoIGluZGV4LCByYW5rIG51bWJlciBhbmQgdGl0bGUgbWF0Y2hlcyBoaWdoZXIgKCM3OTU2KQ==-->Add issue number to the search index, rank number and title matches higher (#7956)<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7968 Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-06-04 07:42:29 +02:00
Earl Warren	2529923dea	fix: rename api.{List,}ActionRun to api.{List,}RepoActionRun (#8066 ) This variable name conflict happened because both https://codeberg.org/forgejo/forgejo/pulls/7699 and https://codeberg.org/forgejo/forgejo/pulls/7508 introduced the same names in different places and were merged at the same time. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8066 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-04 07:09:06 +02:00
Renovate Bot	4dd0514022	Update linters (forgejo) (#8052 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-03 14:47:40 +02:00
christopher-besch	d17aa98262	Actions Failure, Succes, Recover Webhooks (#7508 ) Implement Actions Success, Failure and Recover webhooks for Forgejo, Gitea, Gogs, Slack, Discord, DingTalk, Telegram, Microsoft Teams, Feishu / Lark Suite, Matrix, WeCom (Wechat Work), Packagist. Some of these webhooks have not been manually tested. Implement settings for these new webhooks. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7508): <!--number 7508 --><!--line 0 --><!--description QWN0aW9ucyBGYWlsdXJlLCBTdWNjZXMsIFJlY292ZXIgV2ViaG9va3M=-->Actions Failure, Succes, Recover Webhooks<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7508 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2025-06-03 14:29:19 +02:00
Renovate Bot	6ce9d764bc	Update module code.forgejo.org/f3/gof3/v3 to v3.11.0 (forgejo) (#8056 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| code.forgejo.org/f3/gof3/v3 \| require \| minor \| `v3.10.8` -> `v3.11.0` \| --- ### Configuration 📅 Schedule: Branch creation - On day 1 of the month, every 3 months ( * * 1 /3 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC40MC4wIiwidXBkYXRlZEluVmVyIjoiNDAuNDAuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8056 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-03 14:24:57 +02:00
Michael Kriese	549fcff997	chore: drop unused `misspell` (#8058 ) Package not used - closes #8053 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8058 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-06-03 12:03:00 +02:00
Renovate Bot	bc14ad7da2	Update dependency happy-dom to v17.6.1 (forgejo) (#8051 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-06-03 10:53:43 +02:00
Earl Warren	48671975f1	fix: migrate repository.topics column for SQLite (#8019 ) XORM is unable to migrate a column type for SQLite, it has to be done manually. Refs: forgejo/forgejo#7920 Note: testing is done by setting the `run-end-to-end-tests` label. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8019 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-03 10:20:05 +02:00
Michael Kriese	240d958c0f	chore(renovate): disable indirect digest updates for stable (#8055 ) We usually don't updates them anyways --- Please admin merge to not waste ci time Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8055 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-06-03 10:17:48 +02:00
Michael Kriese	ea07f0c0f3	chore: drop unused `@typescript-eslint/parser` package (#8054 ) Package isn't references, `typescript-eslint` still pulls it transitive which is the recommend way Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8054 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-06-03 10:12:12 +02:00
Earl Warren	e38e761d5b	fix: CLI is forgejo not Forgejo (#8049 ) > Warning note to self: update the docs CLI page right after it is merged. Regression from https://codeberg.org/forgejo/forgejo/pulls/8035 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests Check the USAGE line: From the forgejo branch: ```sh $ make TAGS='sqlite sqlite_unlock_notify' forgejo $ ./forgejo help \| head ./forgejo help \| head NAME: Forgejo - Beyond coding. We forge. USAGE: Forgejo [global options] [command [command options]] ``` From this pull request: ```sh $ make TAGS='sqlite sqlite_unlock_notify' forgejo $ ./forgejo help \| head NAME: forgejo - Beyond coding. We forge. USAGE: forgejo [global options] [command [command options]] ``` ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8049 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-06-03 09:25:58 +02:00
Patrick Schratz	ac1f1a9cfb	fix: add missing bottom margin for verification-button in release view (#8044 ) When a release contains a GPG verified button, the bottom margin is missing. The top one is already `tw-mt-4`. Screenshot from https://codeberg.org/crowci/crow/releases/tag/v3.6.0 \| Current \| New \| \|---------\|---------\| \| ![image](/attachments/489beb0a-4fc0-4140-9a46-534ae43a28ea) \| ![image](/attachments/8ed2456f-28e4-4d1d-99e5-c64c4af93d20) \| Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8044 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Patrick Schratz <pat-s@noreply.codeberg.org> Co-committed-by: Patrick Schratz <pat-s@noreply.codeberg.org>	2025-06-03 08:55:22 +02:00
Michael Kriese	dbbd0de860	chore(renovate): bump to v40.40.0 and disable v7 (#8050 ) - bump renovate to v40.40.0 - remove v7 branch from renovate - disable transitive updates on stable branches (security updates will /should still open automatically) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8050 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-06-03 08:52:21 +02:00
0ko	9ecef99ab9	feat: configurable default units for mirrors (#7902 ) Partial implementation of `b1f42a0cdd` Docs update: https://codeberg.org/forgejo/docs/pulls/1197 Closes #6561 * issue author only provided a reason for the option for mirrors, and there's no known reason for implementing the same option for templates yet, but this change will not make it harder to add that separately. Pull requests and Actions do not make sense for mirrors to have them, at least by default. Pull requests because changes will get overridden by upstream, Actions get triggered and are failing, filling the actions table in the DB with unwanted content, and there's a security concern, too. ## Testing * log in to https://v12.next.forgejo.org * migrate repository * example lightweight repo: https://codeberg.org/forgejo-contrib/delightful-forgejo * tick "This repository will be a mirror" * verify that the repo doesn't have these tabs: Pull requests, Actions Testing note: there's `models/unit/unit_test.go`, but I don't completely get how it works and was not able to append it with the new setting while keeping it working. Co-authored-by: Zettat123 <zettat123@gmail.com> Idea-by: lng2020 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7902): <!--number 7902 --><!--line 0 --><!--description Y29uZmlndXJhYmxlIGRlZmF1bHQgdW5pdHMgZm9yIG1pcnJvcnM=-->configurable default units for mirrors<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7902 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-06-03 08:12:29 +02:00
Maxim Cournoyer	374def9922	Add a GNU Guix manifest (#8038 ) ## Testing See https://codeberg.org/forgejo/docs/pulls/1224 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8038 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Maxim Cournoyer <maxim.cournoyer@gmail.com> Co-committed-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>	2025-06-03 08:08:17 +02:00
Michael Jerger	3bb6ed8f19	refactor & enhance AP elements used (#7728 ) This PR is part of https://codeberg.org/forgejo/forgejo/pulls/4767 filed by @algernon To keep changes isolated this might be reviewed & merge after https://codeberg.org/forgejo/forgejo/pulls/7714 Refactor existing code to have one AP struct per file. Enhance AP structs needed by related PR ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: zam <mirco.zachmann@meissa.de> Co-authored-by: Mirco Zachmann <nostar@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7728 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-06-02 22:29:10 +02:00
Antonin Delpeuch	0ed7237b12	[gitea] Always use an empty line to separate the commit message and trailer (#8041 ) This is a port of a gitea PR: https://github.com/go-gitea/gitea/pull/34512. I have added some copy-editing commits on top for cleanliness. I haven't tested the changes manually and only relied on the existing automated test. ## Checklist ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Jim Lin <jim@andestech.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8041 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-06-02 22:10:59 +02:00
klausfyhn	fc35915a28	feat: make action runs available in api (#7699 ) ## Summary Inspired by https://docs.github.com/en/rest/actions/workflow-runs?apiVersion=2022-11-28#list-workflow-runs-for-a-repository and https://docs.github.com/en/rest/actions/workflow-runs?apiVersion=2022-11-28#get-a-workflow-run ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7699): <!--number 7699 --><!--line 0 --><!--description bWFrZSBhY3Rpb24gcnVucyBhdmFpbGFibGUgaW4gYXBp-->make action runs available in api<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7699 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: klausfyhn <klausfyhn@gmail.com> Co-committed-by: klausfyhn <klausfyhn@gmail.com>	2025-06-02 22:05:12 +02:00
Maxim Cournoyer	85c054c412	fix: return the correct agit type in ssh_info (#8025 ) The git-repo-go tool doesn't understand 'gitea'; it should be 'agit', currently at version 1. Relates-to: <https://github.com/go-gitea/gitea/pull/27014> Fixes: forgejo/forgejo#8024 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8025 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Maxim Cournoyer <maxim.cournoyer@gmail.com> Co-committed-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>	2025-06-02 09:21:49 +02:00
Earl Warren	55d8910255	chore(upgrade): urfave/cli from v2 to v3 (#8035 ) urfave/cli v2 will eventually become unmaintained, switch over to v3 which is the latest supported version. Note: the `docs` command would be a lot of work to restore with v3 ([the package is still in alpha](https://github.com/urfave/cli-docs)) An alternative to avoid a breaking change would be to not upgrade from v2 to v3 for that reason alone. Note: these commits were cherry-picked from https://code.forgejo.org/forgefriends/forgefriends Note: it is best reviewed side by side with no display of whitespace changes (there are a lot of those when converting vars to func). - a few functional changes were necessary and are noted in context in the file changes tab - https://cli.urfave.org/migrate-v2-to-v3/ upgrade instructions were followed in the most minimal way possible - upgrade gof3 to v3.10.8 which includes and upgrade from urfave/cli v2 to urfave/cli v3 - upgrade gitlab.com/gitlab-org/api/client-go v0.129.0 because it is an indirect dependency of gof3 and requires a change because of a deprecated field that otherwise triggers a lint error but nothing else otherwise - verified that the [script](https://codeberg.org/forgejo/docs/src/branch/next/scripts/cli-docs.sh) that generates the [CLI documentation](https://codeberg.org/forgejo/docs/src/branch/next/scripts/cli-docs.sh) still works. There are cosmetic differences and the help subcommand is no longer advertised (although it is still supported) but the `--help` option is advertised as expected so it is fine. - end-to-end tests [passed](https://code.forgejo.org/forgejo/end-to-end/pulls/667) (they use the Forgejo CLI to some extent) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [x] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking features - [PR](https://codeberg.org/forgejo/forgejo/pulls/8035): <!--number 8035 --><!--line 0 --><!--description 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-->The `forgejo docs` command is deprecated and CLI errors are now displayed on stderr instead of stdout. These breaking changes happened because the package used to parse the command line arguments was [upgraded from v2 to v3](https://cli.urfave.org/migrate-v2-to-v3/). A [separate project was initiated](https://github.com/urfave/cli-docs) to re-implement the `docs` command, but it is not yet production ready.<!--description--> <!--end release-notes-assistant--> Co-authored-by: limiting-factor <limiting-factor@posteo.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8035 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-06-01 22:16:37 +02:00
Julian Schlarb	dec17ba704	fix: camel and pascal case transformer (#8034 ) Fixes: #7853 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8034 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Julian Schlarb <julian.schlarb@denktmit.de> Co-committed-by: Julian Schlarb <julian.schlarb@denktmit.de>	2025-06-01 17:06:25 +02:00
Julian Schlarb	21151ea5ce	fix: maven use groupId:artifactId for package name concatenation (#6352 ) Second part of #6327 to fix the Maven package naming. This pull request includes: * Changing the group and artifact IDs from being separated by `-` to `:` as suggested by [Maven](https://maven.apache.org/pom.html#Maven_Coordinates). * Making Maven package names case-sensitive * Migrating the database to: * Handle collisions of package names (e.g., groupId: foo- with artifactId: bar and groupId: foo with artifactId: -bar) by moving them into their own packages. * Fix the missing group ID issue (#6329). * Update lower_name to match the name value for maven pkgs to make it case-sensetive. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6352 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Julian Schlarb <julian.schlarb@denktmit.de> Co-committed-by: Julian Schlarb <julian.schlarb@denktmit.de>	2025-06-01 09:02:29 +02:00
Michael Jerger	baa93ec66e	enhance validateable interface (#7714 ) This PR is part of https://codeberg.org/forgejo/forgejo/pulls/4767 filed by @algernon Validateable is enhanced for less duplication. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: zam <mirco.zachmann@meissa.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7714 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Co-committed-by: Michael Jerger <michael.jerger@meissa-gmbh.de>	2025-05-30 13:07:35 +02:00
Earl Warren	161924abf8	chore(cleanup): suppress non actionable XORM warnings (#8021 ) The following will trigger a XORM warning: ``` type Repository struct { ID int64 `xorm:"pk autoincr"` Topics []string `xorm:"TEXT JSON NOT NULL"` } ``` that looks like: ``` [W] Table repository Column topics db default is '', struct default is ``` it cannot be resolved because: - SQLite requires a default when there is a NOT NULL - MySQL forbids a default for TEXT Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8021 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-05-30 13:01:08 +02:00
Maks1mS	8e2747859b	fix: ensure consistent empty repository topics field (#7920 ) Resolves #7878 An empty repository topic was not stored consistently across databases, this caused the `ONLY_SHOW_RELEVANT_REPOS` feature to not work correctly. Always store empty repository topics as an empty array to fix this. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7920 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Maks1mS <maks1ms@noreply.codeberg.org> Co-committed-by: Maks1mS <maks1ms@noreply.codeberg.org>	2025-05-29 22:39:53 +02:00
Gusted	d6ab2a464f	fix: aggregate deleted team as ghost team (#7987 ) - If a review was requested from a deleted team, use the ghost team for the comment aggregator. - Resolves Codeberg/Community#1952 - Unit test added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7987 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-29 17:45:18 +02:00
chavacava	99d697263f	chore(cleanup): replaces unnecessary calls to formatting functions by non-formatting equivalents (#7994 ) This PR replaces unnecessary calls to formatting functions (`fmt.Printf`, `fmt.Errorf`, ...) by non-formatting equivalents. Resolves #7967 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7994 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: chavacava <chavacava@noreply.codeberg.org> Co-committed-by: chavacava <chavacava@noreply.codeberg.org>	2025-05-29 17:34:29 +02:00
Gusted	25f3f8e1d2	feat: make Forgejo Actions server logs less noisy (#7986 ) - The `/api/actions/runner.v1.RunnerService/FetchTask` route is continuously polling for its next task, because long-polling is not implemented this request is made every second. The `/api/actions/runner.v1.RunnerService/UpdateLog` route is used to send new logs of the CI runs that are currently happening. - Just like the assets requests, they spam the logs and should only be logged at a lower log level. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7986): <!--number 7986 --><!--line 0 --><!--description bWFrZSBGb3JnZWpvIEFjdGlvbnMgc2VydmVyIGxvZ3MgbGVzcyBub2lzeQ==-->make Forgejo Actions server logs less noisy<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7986 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-29 10:06:30 +02:00
Gusted	de3a3d728d	feat: update ambigious characters (#7988 ) - Update the ambigious characters list with the values in `f3d1aeb2cf/out/ambiguous.json` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7988 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-29 10:00:12 +02:00
Gusted	022eeee657	fix: ignore expired artifacts for quota calculation (#7976 ) - Expired artifacts are kept in the database but the artifact has been deleted from the storage. Ignore them for the quota calculation. - Added unit test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7976 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-28 18:22:10 +02:00
Robert Wolff	e78d1c8210	fix: pull request cross references (#7979 ) Closes #7974. ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7979 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Robert Wolff <mahlzahn@posteo.de> Co-committed-by: Robert Wolff <mahlzahn@posteo.de>	2025-05-28 14:50:05 +02:00
Gusted	7d2a7b8559	feat: add validating user password as trace region (#7981 ) - Password hashing can take a measurable amount of time, make this more visible in the trace by capturing the computations done in the password hash in their own region. - Ref: forgejo/forgejo#6470 ## Screenshot ![image](/attachments/9834b094-a78f-4ac2-847e-91f221a84833) The upper part are where the tasks are shown (and nothing else). The bottom part is where the interesting execution tracing happens and the part where the user password hashing happens is now properly indicated/highlighted and does not need to be inferred by looking at the stack traces. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7981 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-28 14:46:23 +02:00
Earl Warren	4c4fe595c2	chore(cleanup): fix and simplify API comparison helper (#7978 ) headIsTag := headGitRepo.IsCommitExist(baseBranch) is wrong on two counts: - it must be assigned to commitIsTag - it must check headBranch and not baseBranch this is not a bug but it certainly is confusing. Also, the logic below headBranchRef := headBranch if headIsBranch { headBranchRef = headBranch } else if headIsTag { headBranchRef = headBranch } can be simplified as: headBranchRef := headBranch Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7978 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-05-28 14:44:51 +02:00
kramo	a9f9e7c013	fix(i18n): use correct base capitalization style (#7975 ) Update several strings according to https://forgejo.org/docs/next/contributor/localization-english/#capitalization Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7975 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: kramo <git@kramo.page> Co-committed-by: kramo <git@kramo.page>	2025-05-28 13:22:10 +02:00
0ko	e2278e5a38	fix(ui): change escaping button bg on selected lines (#7944 ) * add escape part of line to the list of selectors, so it doesn't cause a hole in selected lines * fix duplicated element ID in template * move some CSS out of base.css to dedicated files, so it is less cluttered Before: https://codeberg.org/attachments/0eaa277b-98e7-42de-98a2-6aca99ffcbe4 After: https://codeberg.org/attachments/124bbb86-c377-4fef-a0e3-403e8c850275 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7944 Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-05-28 05:16:19 +02:00
0ko	ee663c5af8	Merge commit: i18n: update of translations from Codeberg Translate (#7895 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7895 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-26 16:40:45 +02:00
Codeberg Translate	40d678d4b9	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Infernus <infernus@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kita Ikuyo <kitakita@disroot.org> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: hugoalh <hugoalh@noreply.codeberg.org> Co-authored-by: huskee <huskee@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kwoot <kwoot@noreply.codeberg.org> Co-authored-by: milimarg <milimarg@noreply.codeberg.org> Co-authored-by: nekoedges <nekoedges@noreply.codeberg.org> Co-authored-by: oscarotero <oscarotero@noreply.codeberg.org> Co-authored-by: smlxdesign <smlxdesign@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/he/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-05-26 14:12:01 +00:00
Renovate Bot	d4bccedf8d	Update renovate to v40.31.0 (forgejo) (#7959 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-26 10:17:13 +02:00
Renovate Bot	8d5d3fc47c	Lock file maintenance (forgejo) (#7961 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MC4yNi4wIiwidXBkYXRlZEluVmVyIjoiNDAuMjYuMCIsInRhcmdldEJyYW5jaCI6ImZvcmdlam8iLCJsYWJlbHMiOlsiZGVwZW5kZW5jeS11cGdyYWRlIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7961 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-26 07:53:24 +02:00
Danko Aleksejevs	d483dc674a	Reimplement editor Tab handling with accessibility safeguards (#6813 ) The primary goal is to balance having the editor work as expected by developers (with Tab key affecting indentation) while also not impeding keyboard navigation. * Tab indents, Shift+Tab unindents, but only when that indent would be valid. E.g. moving existing list items down or up one level. * Indenting a selection always works. * When an "invalid" indent is attempted, nothing happens and a toast is shown with a hint to press again to leave the editor. * Attempting the same action again allows the textarea lose focus by allowing the browser's default key handler. * Pressing Esc also loses focus immediately. * No tab handling happens until the text editor has been interacted with (other than just having been focused). * Changing indentation in block quotes adds or removes quote levels instead. Screenshot of the toast being shown: https://codeberg.org/forgejo/forgejo/attachments/a6287d29-4ce0-4977-aae8-ef1aff2ac89f Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6813 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Danko Aleksejevs <danko@very.lv> Co-committed-by: Danko Aleksejevs <danko@very.lv>	2025-05-25 19:17:03 +02:00
0ko	8b93f41aaa	fix(ui): ensure same width of usercards in grid (#6799 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/4760 * some refactoring * move rules out of repo.css to a new module * simplify selectors by omitting .list: it is now only used to style the list itself, they're still precise enough in scope of .user-cards * apply wrap/ellipsis to cards' content. Done via CSS to avoid spamming gt-ellipsis in the template * prevent cards with long content from taking horizontal space from other cards * prevent such cards from causing horizontal overflow on mobile * prevent varying card height, it doesn't look good even with text wrapping Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6799 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-25 13:31:53 +02:00
0ko	0dd605a8d3	chore(ui): clean up hashbox CSS, small design changes (#7822 ) Co-authored-by: Beowulf <beowulf@beocode.eu> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7822 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-05-25 12:51:27 +02:00
Gusted	62ec469394	feat: replace go-rpmutils library with our own (#7953 ) - While doing cross-compiling of Forgejo (with CGO enabled) it was noticed that besides compiling sqlite3, github.com/DataDog/zstd (a CGO wrapper around the reference zstd library) took a long time to compile. Upon investigating why this library was included in the first place I concluded that this library is not even used and compiling this package is a waste of time and CPU cycles. - https://github.com/sassoftware/go-rpmutils is the library that uses the CGO zstd library, and would use it the pure Go variant (https://github.com/klauspost/compress/zstd) if CGO is enabled (which is the default). It uses zstd to uncompress the payload of a RPM packages. This is a operation that Forgejo does not use in the slightest, hence being unused code. - It is not possible to force compiling the pure Go variant if CGO is enabled. Therefore forking and removing this code is the only option to avoid compiling the zstd C library. The changes made to the fork can be seen here: https://code.forgejo.org/forgejo/go-rpmutils/compare/2660c86d578cd2a5366fe5bda488e37f9ab1b11a...v1.0.0 - Via [actiongraph](https://github.com/icio/actiongraph) you can precisely see where the Go compiler is spending time, on a beefy machine the compilation takes of the zstd C library takes ~40s. For reference compiling the sqlite3 C library takes ~50s. - The forgejo binary (build via `make backend`) reduced its size by 835776 bytes (0.8 MiB). TL;DR forked library to remove unused code to avoid Go spending a considerable amount of time compiling the reference zstd library that in the end is never used. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7953): <!--number 7953 --><!--line 0 --><!--description cmVwbGFjZSBnby1ycG11dGlscyBsaWJyYXJ5IHdpdGggb3VyIG93bg==-->replace go-rpmutils library with our own<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7953 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-25 12:30:04 +02:00
Renovate Bot	006f488577	Update forgejo go-chi packages (forgejo) (#7954 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7954 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-25 12:17:48 +02:00
Beowulf	0e8d752d86	fix(ui): relative time elements were reset on htmx swap (#7950 ) Regression `cf03286b5b` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7950 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-05-24 23:46:21 +02:00
Renovate Bot	3ae188652a	Update module github.com/ProtonMail/go-crypto to v1.3.0 (forgejo) (#7952 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7952 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-24 23:43:27 +02:00
pboguslawski	1b0eef4957	Fix TestSSHPushMirror/Normal/Check_mirrored_content test (#7852 ) On slower CI hardware test `TestSSHPushMirror/Normal/Check_mirrored_content ` may throw an error like ``` === TestSSHPushMirror/Normal/Check_known_host_keys (tests/integration/mirror_push_test.go:312) --- FAIL: TestSSHPushMirror (5.38s) testlogger.go:405: 2025/05/12 15:48:41 ...les/storage/local.go:33:NewLocalStorage() [I] Creating new Local Storage at /src/forgejo/tests/gitea-lfs-meta testlogger.go:405: 2025/05/12 15:48:42 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user/login for test-mock:12345, 200 OK in 4.6ms @ auth/auth.go:145(auth.SignIn) testlogger.go:405: 2025/05/12 15:48:42 ...eb/routing/logger.go:102:func1() [I] router: completed POST /user/login for test-mock:12345, 303 See Other in 14.8ms @ auth/auth.go:179(auth.SignInPost) testlogger.go:405: 2025/05/12 15:48:42 ...odels/user/avatar.go:59:GenerateRandomAvatar() [I] New random avatar created: 2 testlogger.go:405: 2025/05/12 15:48:42 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user2/repo2/settings for test-mock:12345, 200 OK in 53.9ms @ setting/setting.go:300(setting.Settings) --- FAIL: TestSSHPushMirror/Normal (2.81s) --- FAIL: TestSSHPushMirror/Normal/Check_mirrored_content (2.26s) testlogger.go:405: 2025/05/12 15:48:43 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user2/repo2 for test-mock:12345, 200 OK in 89.1ms @ repo/view.go:798(repo.Home) testlogger.go:405: 2025/05/12 15:48:43 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/internal/serv/command/10000/user2/push-mirror-test?mode=2&verb=git-receive-pack for 127.0.0.1:0, 200 OK in 5.2ms @ private/serv.go:79(private.ServCommand) testlogger.go:405: 2025/05/12 15:48:43 ...eb/routing/logger.go:102:func1() [I] router: completed POST /api/internal/hook/pre-receive/user2/push-mirror-test for 127.0.0.1:0, 200 OK in 10.0ms @ private/hook_pre_receive.go:178(private.HookPreReceive) mirror_push_test.go:304: Error Trace: /src/forgejo/tests/integration/integration_test.go:564 /src/forgejo/tests/integration/integration_test.go:228 /src/forgejo/tests/integration/mirror_push_test.go:304 /usr/lib/go-1.24/src/runtime/asm_amd64.s:1700 Error: Not equal: expected: 200 actual : 303 Test: TestSSHPushMirror/Normal/Check_mirrored_content Messages: Request: GET /user2/push-mirror-test mirror_push_test.go:304: Response: <a href="/user2/push-mirror-test">See Other</a>. testlogger.go:405: 2025/05/12 15:48:44 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user2/push-mirror-test for test-mock:12345, 303 See Other in 34.7ms @ repo/view.go:798(repo.Home) testlogger.go:405: 2025/05/12 15:48:44 ...eb/routing/logger.go:102:func1() [I] router: completed POST /api/internal/hook/post-receive/user2/push-mirror-test for 127.0.0.1:0, 200 OK in 304.3ms @ private/hook_post_receive.go:35(private.HookPostReceive) testlogger.go:405: 2025/05/12 15:48:44 ...eb/routing/logger.go:102:func1() [I] router: completed POST /api/internal/ssh/10000/update/10000 for 127.0.0.1:0, 200 OK in 6.6ms @ private/key.go:16(private.UpdatePublicKeyInRepo) testlogger.go:405: 2025/05/12 15:48:45 ...eb/routing/logger.go:102:func1() [I] router: completed GET /user2/push-mirror-test for test-mock:12345, 200 OK in 121.0ms @ repo/view.go:798(repo.Home) ``` because it does not allow temporary 303 responses while waiting in `assert.Eventually` for repo to be updated. Fixes: `03508b33a8` Author-Change-Id: IB#1160889 Signed-off-by: Pawel Boguslawski <pawel.boguslawski@ib.pl> ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7852 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: pboguslawski <pboguslawski@noreply.codeberg.org> Co-committed-by: pboguslawski <pboguslawski@noreply.codeberg.org>	2025-05-24 11:06:48 +02:00
pat-s	0077015755	fix: `overflow-wrap` strategy in `.markup` CSS class (#7945 ) This has been introduced in the cherry-picked commit from https://github.com/go-gitea/gitea/pull/34072 To me, adding this seems to be a bug as it forces a hard stop to any overflow nested within a markup div. Why should it be removed again? Because otherwise (wide) markdown tables might look super odd because the column breaking/wrapping logic is strange (likely related to the "anywhere" strategy being used). - [Example of current state with `overflow-wrap`](https://codefloe.com/devxy/helm-rdepot/src/branch/main/charts/rdepot) - [Example with `overflow-wrap` being removed](https://codefloe.com/devxy/helm-rdepot/src/branch/main/charts/rdepot) \| Current \| Patched \| \|---------\|---------\| \| ![image](/attachments/d4a32804-858c-4ed7-838a-30b969bbbf12) \| ![image](/attachments/a1261dc2-da25-4d10-b46f-03967fcf57bb) \| The initial change in Gitea was motivated to resolve issues of content overflow caused by the expandable file list tree view they introduced lately. However, this seem to have caused the whole README to overflow in their case, which doesn't apply to Forgejo. When removing this in Forgejo, only large markdown content (i.e. tables) are allowed to overflow. The whole README div will not overflow (I tested this with an extreme markdown table case). These tables are then horizontally scrollable, similar to how GitHub handles this. If the expandable tree view is going to be added to Forgejo, this should then be handled entirely differently. This specific change is not a solution. I've also checked other value settings to `overflow-wrap` but none had any or any desirable effect. I did not check all other possible CSS-related options for overflow*, but this might as well be a different task per se. For the reasons outlined above, I am quite certain this change should be reverted (again). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7945 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-05-23 23:42:19 +02:00
0ko	765e7bd1b6	feat(ui): messages for empty usercards (#7947 ) Show a message about list being empty, so the page doesn't look broken-ish empty. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7947 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-23 23:34:40 +02:00
Antonin Delpeuch	2b30c83a0c	fix: url validation in webhook add/edit API (#7932 ) Cherry-pick from `972381097c` (see #7909). Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7932 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-05-23 22:50:43 +02:00
Gusted	b2a3966e64	feat: remove API authentication methods that uses the URL query (#7924 ) - They have been marked as deprecated since 2023 and adequate warnings have been given about this method being deprecated, remove it for Forgejo v12. - For clarity: the reason they are deprecated is that these methods allow authentication material to be given via a URL query. This results in the authentication material being logged, which is undesired behavior. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7924 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-23 22:47:43 +02:00
Renovate Bot	a5260b7f08	Update renovate to v40.14.5 (forgejo) (#7907 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-23 10:58:16 +02:00
Antonin Delpeuch	d2fce8360c	fix: Add error reporting to PRs with invalid workflows (#7930 ) Hello all, I am finally taking the time to follow-up on #6277 to get this implemented :) ## Checklist ### Tests - I added test coverage for Go changes... - [ ] in their respective `*_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/7930): <!--number 7930 --><!--line 0 --><!--description QWRkIGVycm9yIHJlcG9ydGluZyB0byBQUnMgd2l0aCBpbnZhbGlkIHdvcmtmbG93cw==-->Add error reporting to PRs with invalid workflows<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7930 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Antonin Delpeuch <antonin@delpeuch.eu> Co-committed-by: Antonin Delpeuch <antonin@delpeuch.eu>	2025-05-22 16:48:48 +02:00
Granular9241	1faab33da5	fix(ui): center footer links (#7925 ) The links on the right side of the footer are misaligned. Especially prominent when there's more links, see images: * https://codeberg.org/attachments/7744bff6-322d-4ec1-bf57-7c62088a14c0 * https://codeberg.org/attachments/78cd441c-83c9-4889-b770-d119befe2668 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7925 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Granular9241 <granular9241@noreply.codeberg.org> Co-committed-by: Granular9241 <granular9241@noreply.codeberg.org>	2025-05-22 15:27:00 +02:00
famfo	dda37e86bd	feat: relax email requirements (#7829 ) The current email restrictions were put in place because of a security issue with sendmail (https://github.com/go-gitea/gitea/pull/17688). Remove this restriction and instead ensure that this security issue cannot happen with sendmail. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7829 Reviewed-by: Ellen Εμιλία Άννα Zscheile <fogti@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-05-22 12:20:25 +02:00
Earl Warren	de1adf224d	fix: do not unconditionally append $(GITEA_COMPATIBILITY) in version (#7933 ) If the environment variable FORGEJO_VERSION is set and already contains $(GITEA_COMPATIBILITY), it must not be append again. This particular use case occurs when a pull request is tested in https://code.forgejo.org/forgejo/end-to-end. It sets the version at `796a32d6c1/lib/build.sh (L39)` which is drawn from a file generated at `6c6035bc49/.forgejo/cascading-pr-end-to-end (L33)` The version is generated from a checkout of the PR which leads to something like: ``` $ make show-version-full 12.0.0-dev-307-6c6035bc49+gitea-1.22.0 ``` ## Testing ``` git clone https://codeberg.org/forgejo/forgejo cd forgejo export FORGEJO_VERSION=$(make show-version-full) test "$FORGEJO_VERSION" = "$(make show-version-full)" \|\| echo FAIL! ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7933 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Antonin Delpeuch <wetneb@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-05-22 12:14:31 +02:00
Shiny Nematoda	6c6035bc49	feat(ui): allow admins to reindex issues per repo (#7896 ) Added a new option to reindex only a select repository. The option is present under `[REPO_LINK]/settings` > Administrator Settings Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7896 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Shiny Nematoda <snematoda.751k2@aleeas.com> Co-committed-by: Shiny Nematoda <snematoda.751k2@aleeas.com>	2025-05-21 17:43:18 +02:00
Gusted	fa2a135f68	chore: QoL improvements to tests (#7917 ) - Use mock helper functions, instead of home-brew solutions. - Disable cron jobs that are not important to be run during integration tests and might even interfere. - Avoid sleeping unnecessary, if there's some requirement then sleep or retry until that requirement is met. - Avoid trying to deliver webhooks that will always result in a failure. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7917 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-21 15:45:56 +02:00
Renovate Bot	112ba66637	Update go-openapi packages (forgejo) (#7922 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7922 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-21 15:14:35 +02:00
Renovate Bot	5d47d2ed28	Update dependency go to v1.24.3 (forgejo) (#7807 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7807 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-21 15:10:06 +02:00
Renovate Bot	511718fb4f	Lock file maintenance (forgejo) (#7908 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7908 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-21 13:46:57 +02:00
Renovate Bot	e2a4b47cd0	Update dependency webpack to v5.99.9 (forgejo) (#7919 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7919 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-21 09:56:53 +02:00
Renovate Bot	b416bbea54	Update dependency sharp to v0.34.2 (forgejo) (#7918 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7918 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-21 09:54:54 +02:00
Granular9241	7fb99379f6	fix: include activity needed for entire heatmap (#7893 ) Problem: Only data from the past 365 days (31536000s) is loaded. However, on the activity heatmap, there are 53 cols, each is 7 rows, so squares for at most 371 days (32054400s) are on the heatmap. This results in a few blank squares on the very left side, despite activity. Solution: Simply changing 31536000s (365d) to 32054400s (371d) to load all the needed activity. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7893 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Granular9241 <granular9241@noreply.codeberg.org> Co-committed-by: Granular9241 <granular9241@noreply.codeberg.org>	2025-05-21 05:25:39 +02:00
Renovate Bot	f3294f0b2d	Update dependency clippie to v4.1.7 (forgejo) (#7910 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7910 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-20 23:22:36 +02:00
Ryan Lerch	a0f902f635	fix(ui): make limits clearer in create repo form (#7402 ) Resolves: #7341 Previously, the Create Repository button was only enabled if a user was able to create a repo in their own namespace. However, if they had reached the global repo limit, but were stlll able to create a repo in an org, the button would still be disabled. In this pull request, the create repo form now: 1. Behaves like it always did previously if the user has not reached the repo limit. 2. If the User has reached the repo limit, and they are unable to create a repo in any of their orgs (or they have no orgs), the create repo form is displayed as: ![Screenshot](/attachments/9f22f43d-0036-4c48-b794-54302c0f241c) 3. If the User has reached the repo limit, and the limit is greater than zero, an alert appears at the top of the form, and they are only allowed to choose from the orgs that they are allowed to create repos in: ![Screenshot](/attachments/f5508e05-74fd-4858-9e95-967bd7017abd) 4. If the User has reached the repo limit, and the limit is equal to zero, no alert is displayed, as no user can create repos on that instance, and they are only allowed to choose from the orgs that they are allowed to create repos in: ![localhost_3000_repo_create (4).png](/attachments/e7a87da8-c19c-47e1-845e-2afc3667ab02) Co-authored-by: 0ko <0ko@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7402 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ryan Lerch <rlerch@redhat.com> Co-committed-by: Ryan Lerch <rlerch@redhat.com>	2025-05-20 16:37:15 +02:00
Michael Kriese	43fee56011	chore(renovate): disable indirect major updates for stable branches (#7914 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7914 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-05-20 11:00:56 +02:00
Renovate Bot	c0187aa789	Migrate renovate config (#7877 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7877 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-20 10:47:08 +02:00
0ko	75258cfa2a	chore(ui): cleanup unused color CSS (#7898 ) Careful removal of unused classes and rules from editable CSS. One class was used once in the UI and could have been easily replaced, others were only used in a devtest page. Removed completely: * pink * olive * violet * background Removed partially: * blue Some of them are also present in generated Fomantic code, but it's not possible to remove them easily here. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7898 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-19 14:04:28 +02:00
Renovate Bot	b6dcae9b50	Update module github.com/alecthomas/chroma/v2 to v2.18.0 (forgejo) (#7890 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7890 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-18 18:48:40 +00:00
Renovate Bot	a775c855cb	Update module github.com/yuin/goldmark to v1.7.12 (forgejo) (#7901 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7901 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-18 18:46:44 +00:00
Otto	e168c8448b	fix(ui): fix force-push compare line layout (#7894 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7894 Reviewed-by: Otto <otto@codeberg.org>	2025-05-18 10:41:30 +00:00
floss4good	dc56486b1f	feat!: Abusive content reporting (#6977 ) This implements milestones 1. and 4. from Task F. Moderation features: Reporting (part of [amendment of the workplan](https://codeberg.org/forgejo/sustainability/src/branch/main/2022-12-01-nlnet/2025-02-07-extended-workplan.md#task-f-moderation-features-reporting) for NLnet 2022-12-035): > 1. A reporting feature is implemented in the database. It ensures that content remains available for review, even if a user deletes it after a report was sent. > 4. Users can report the most relevant content types (at least: issue comments, repositories, users) ### See also: - forgejo/discussions#291 - forgejo/discussions#304 - forgejo/design#30 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6977 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: floss4good <floss4good@disroot.org> Co-committed-by: floss4good <floss4good@disroot.org>	2025-05-18 08:05:16 +00:00
0ko	c1fad04473	(merge commit) i18n: update of translations from Codeberg Translate (#7819 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7819 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-17 11:16:01 +00:00
0ko	0b09ef8380	fix(ui): fix force-push compare line layout	2025-05-17 15:49:57 +05:00
Codeberg Translate	121623582a	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Coral Pink <coralpink@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <git@alius.cz> Co-authored-by: Ricky-Tigg <ricky-tigg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: guillerpsanchez <guillerpsanchez@noreply.codeberg.org> Co-authored-by: hook <hook@noreply.codeberg.org> Co-authored-by: milimarg <milimarg@noreply.codeberg.org> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-05-17 10:37:51 +00:00
Gusted	c4c4b8867b	fix: parse `change-id` in the git commit header (#7884 ) - `change-id` is a commit header set by [jj-vcs](https://jj-vcs.github.io/jj/). Modify the commit parser to consider this header to be a valid header, this in turn fixes the signature validation on git commits that contain this header. - Resolves forgejo/forgejo#7836 - Added unit test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7884 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-16 21:14:41 +00:00
Renovate Bot	5e9e146545	Update module github.com/blevesearch/bleve/v2 to v2.5.1 (forgejo) (#7881 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7881 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-16 19:52:56 +00:00
Gusted	8deb184043	fix: quote reply in Chromium (#7883 ) - Chromium would unselect the text if some text is written in another element, so temporarily store the range and restore after this writing has happened. - Resolves forgejo/forgejo#7841 - No E2E test, there is already a test case that perfectly matches the reproduce steps of this bug, however Chromium does not produce consistent behavior on this case. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7883 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-16 18:43:32 +00:00
Gusted	7c150be23d	feat: improved performances when checking for conflicts on pull requests (#7727 ) - `testPatch` is a function that is called to test a pull request and determine the state of the pull request. Checking for merge conflicts, check if the diff is empty and if the pull request modifies any protected files. - The checking for merge conflict and if the diff is empty used git commands that relied on a working tree to correctly functions. Forgejo store repositories in a bare format which do not contain a working tree. This means that a temporary copy was created every time a pull request had to be re-checked and for large repositories involving quite some I/O interaction. - This patch adjusts those codepaths to instead use newer Git plumbing commands that work without requiring a work tree and can thus be used directly on the bare repository. The merge conflict is now done via [`git-merge-tree(1)`](https://git-scm.com/docs/git-merge-tree/) and checking if the diff is empty is done via [`git-diff-tree(1)`](https://git-scm.com/docs/git-diff-tree). - If the function is called to test a patch where the head and base repository are not the same, then [Git alternate](https://git-scm.com/docs/gitglossary#Documentation/gitglossary.txt-aiddefalternateobjectdatabaseaalternateobjectdatabase) is used to make the head commit available in the base repository, this done on a per git command basis via the `GIT_ALTERNATE_OBJECT_DIRECTORIES` environment. - As far as I can understand the documentation and the existing code, there's no edge case that the new code cannot handle. It also results in a cleaner codepath, as the existing code did a lot of checking and merging in a more traditional approach that required a lot of (parsing) code, while the new code offloads this to git and has a trivial parser of the output. - Resolves forgejo/forgejo#7701 - Added exhaustive integration testing. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7727 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-16 12:40:38 +00:00
Renovate Bot	2ab5b585f6	Lock file maintenance (forgejo) (#7840 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7840 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-16 12:25:17 +00:00
Renovate Bot	9911450bd8	Update dependency vue to v3.5.14 (forgejo) (#7879 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-16 12:14:07 +00:00
Jolly_Good	1ec20030af	fix(ui): disable autocapitalization/autocorrect for username inputs (#7872 ) Closes #7842 Currently mobile devices add autocapitalization & autocorrect to input fields with type `text`. In login form it can either be username or email address. There's currently no testing. This is only trivial change Co-authored-by: Jolly Good <1671375+good-lly@users.noreply.github.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7872 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Jolly_Good <jolly_good@noreply.codeberg.org> Co-committed-by: Jolly_Good <jolly_good@noreply.codeberg.org>	2025-05-15 18:35:37 +00:00
Renovate Bot	3a670596f5	Update renovate to v40 (forgejo) (major) (#7777 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7777 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-15 15:21:16 +00:00
John Moon	09f7dbecda	fix: Remove "create branch" button on mirrored repos (#7640 ) Currently, if you have a mirrored repo, the button on the "branches" page to create a new branch is available to be pressed. Once you name your new branch and click submit, you get a 404 page that doesn't explain what went wrong. As new branch creation is not supported on mirrored repos, let's just take that button away if the repo is a mirror. This is already done for archived repos, so we just need to add another check. Fixes #7639. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7640 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: John Moon <john.moon@vts-i.com> Co-committed-by: John Moon <john.moon@vts-i.com>	2025-05-14 23:26:12 +00:00
Lucas Dohmen	63543afa2b	chore: remove unused linters (#7680 ) Remove linters from the repository that are not used. This also removes the Python setup as it was only used for those linters. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7680 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Lucas Dohmen <lucas@dohmen.io> Co-committed-by: Lucas Dohmen <lucas@dohmen.io>	2025-05-14 23:20:32 +00:00
0ko	0383e2e15a	fix(ui): improve force-push compare line layout (#7746 ) On large screens, use grid to force right position of the button. On small screens, just left it hang out wherever it fits. It's not possible to not make it hide behind mergebox while keeping `float`, and with grid it would overflow too much. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7746 Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-14 23:13:50 +00:00
0ko	2c9f272d42	chore: remove unused update-locales.sh (#7866 ) According to the script, it helps Gitea fix Crowdin output to be consistent with what Unknwon's INI library expects. I'm not aware of it being used in Forgejo. But want to see green CI checks just in case. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7866 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-14 23:05:32 +00:00
0ko	e3ba342665	fix(ui): disable spellcheck on TOTP form fields (#7868 ) Ref https://codeberg.org/forgejo/forgejo/issues/7842#issuecomment-4574366 Currently browsers could offer spellcheck on these fields, my browser does. MDN [recommends](https://developer.mozilla.org/en-US/docs/Web/HTML/Reference/Global_attributes/spellcheck#security_and_privacy_concerns) that on fields with sensitive information this property is set to `false` in case 3rd party not-fully-trusted spellchecking service is used. I consider these fields as containing sensitive information, and spellcheck is not useful on them anyway. ### Testing There's currently no integration testing for these TOTP forms. I do plan to add some in my other TOTP-related work. I tested that this did change the behavior in my browser and don't think we need additional testing right now. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7868 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-14 23:04:43 +00:00
Maxim Slipenko	b22bea8b45	fix: remove redundant permission check in RemoveLabel (#7835 ) Closes #2415 Permissions checks are already done by the callee, which also do more correct permission checks. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7835 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Maxim Slipenko <maks1ms@altlinux.org> Co-committed-by: Maxim Slipenko <maks1ms@altlinux.org>	2025-05-14 16:20:43 +00:00
Renovate Bot	263d125849	Update module code.forgejo.org/forgejo/act to v1.26.0 (forgejo) (#7856 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7856 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-14 04:49:59 +00:00
Renovate Bot	9f69eee8f9	Update module github.com/msteinert/pam/v2 to v2.1.0 (forgejo) (#7857 ) Closes forgejo/forgejo#7855 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7857 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-14 02:36:04 +00:00
Renovate Bot	4d1f216241	Update github.com/golang-jwt/jwt/v4 (indirect) to v4.5.2 [SECURITY] (forgejo) (#7849 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7849 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-14 02:08:17 +00:00
Renovate Bot	ee02ad2630	Update module github.com/go-webauthn/webauthn to v0.13.0 (forgejo) (#7830 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7830 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-14 01:56:07 +00:00
Renovate Bot	a55755f9c1	Update module github.com/niklasfasching/go-org to v1.8.0 (forgejo) (#7847 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7847 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-14 01:48:53 +00:00
pat-s	eb010e0fca	fix: add missing loadbalancing policies for EngineGroup connections (#7799 ) This is a follow-up PR to #7212 (unreleased) in which some load balancing policy options were missed. - `WeightRoundRobin` follows the same logic as `WeightRandomPolicy` WRT to weight assignment. - `LeastConn` has no options related docs PR: https://codeberg.org/forgejo/docs/pulls/1109 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7799 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-05-14 01:17:57 +00:00
Michael Kriese	c56ab9f10c	ci(renovate): only fail on error (#7848 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7848 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-05-13 16:15:57 +00:00
Renovate Bot	e57d0c248f	Update renovate to v39.264.0 (forgejo) (#7776 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-13 09:46:55 +00:00
Beowulf	a50b467d9f	test(ui-e2e): fix flaky repo wiki test (#7833 ) The Webkit environment in CI for some reason has issues with the ratio, so decrease the ratio a bit for Webkit. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7833 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-05-10 17:11:24 +00:00
Daniel Kilimnik	a696ad132c	fix: replace ß with ss in normalizeUserName (#7817 ) When using an oauth provider for login, we can't always make sure that only supported characters are included in the name. Therefore there exist normalization rules for the username. In German some names contain the `ß` letter which usually gets replaces by `ss`. Therefore I added this to the `customCharsReplacement` list. Without this fix, the user gets an undescriptive internal server error and the log states `CreateUser: name is invalid [<name>]: must be valid alpha or numeric or dash(-_) or dot characters`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7817 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Daniel Kilimnik <daniel@neodyme.io> Co-committed-by: Daniel Kilimnik <daniel@neodyme.io>	2025-05-08 16:59:41 +00:00
Gusted	0234d00ace	[skip ci] chore: remove backport script (#7792 ) - It doesn't work in Forgejo and we already have a backport action. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7792 Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-08 11:31:34 +00:00
Leni Kadali	f4af3191ef	fix: cancel a review (#7454 ) - Fixes #7152 - If a review no longer has any pending comments, remove that review from the database. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7454 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Leni Kadali <lenikadali@noreply.codeberg.org> Co-committed-by: Leni Kadali <lenikadali@noreply.codeberg.org>	2025-05-08 11:21:00 +00:00
0ko	4183fa9a03	Merge commit: i18n: update of translations from Codeberg Translate (#7742 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7742 Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-08 10:54:54 +00:00
Codeberg Translate	e9ec11df4b	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Adolfo Jayme Barrientos <fito@noreply.codeberg.org> Co-authored-by: Atul_Eterno <atul_eterno@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Caesar Schinas <caesar@caesarschinas.com> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: GiannosOB <giannosob@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Hiers <hiers@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kita Ikuyo <kitakita@disroot.org> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Ricky-Tigg <ricky-tigg@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Xinayder <xinayder@noreply.codeberg.org> Co-authored-by: ZilloweZ <zillowez@noreply.codeberg.org> Co-authored-by: antaanimosity <antaanimosity@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: mahlzahn <mahlzahn@posteo.de> Co-authored-by: otf31 <otf31@noreply.codeberg.org> Co-authored-by: ruikkaa <ruikkaa@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: thodorisl <thodorisl@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ar/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-05-08 06:08:41 +00:00
Renovate Bot	b3e25cf536	Update dependency globals to v16.1.0 (forgejo) (#7814 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7814 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-08 05:23:27 +00:00
Renovate Bot	683305e5b9	Update module golang.org/x/oauth2 to v0.30.0 (forgejo) (#7809 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7809 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-07 18:41:48 +00:00
Renovate Bot	332705d841	Update module golang.org/x/net to v0.40.0 (forgejo) (#7798 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7798 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-07 17:38:15 +00:00
Renovate Bot	f6573b9f3b	Update module golang.org/x/image to v0.27.0 (forgejo) (#7797 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7797 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-06 06:06:50 +00:00
Renovate Bot	0ce1f70820	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.1.6 (forgejo) (#7789 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-05 15:32:00 +00:00
Gusted	03785a8169	[SKIP CI] chore: update CODEOWNERS (#7785 ) - Remove crystal and caesar from the CODEOWNERS file. They have not reviewed in a long time. - Add Beowulf to frontend. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7785 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-05 14:57:27 +00:00
Gusted	ed9693f236	fix(api): document `is_system_webhook` field (#7784 ) - Document that `is_system_webhook` field is accepted for the `POST /admin/hooks` endpoint. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7784 Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-05 13:58:55 +00:00
Gusted	2a568f3b82	fix: make hash pattern more strict (#7775 ) - Ensure that the last path is `commit/`, `tree/` or `blob/`. - Resolves forgejo/forgejo#7767 - Follow up forgejo/forgejo#6784 - Added unit test Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7775 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-05 05:29:55 +00:00
Renovate Bot	52f20da52a	Lock file maintenance (forgejo) (#7778 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNjEuNCIsInVwZGF0ZWRJblZlciI6IjM5LjI2MS40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7778 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-05 05:25:22 +00:00
Gusted	4a57f73072	fix: remove artificial delay for PR update (#7773 ) - I was not able to find a reasoning in the pull request (https://github.com/go-gitea/gitea/pull/9784) for the existence of this `time.Sleep`. The best I could come up with during manual testing is that there's a brief moment where 'this pull request is missing fork information' is shown, this was caused by an incorrect condition. - Added integration test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7773 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-04 21:54:55 +00:00
Renovate Bot	8b03d3260d	Update module github.com/42wim/httpsig to v1.2.3 (forgejo) (#7770 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7770 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-04 12:36:55 +00:00
Beowulf	bf02da9fd9	chore: Fix outdated usage of unittest.OverrideFixtures (#7772 ) The function unittest.OverrideFixtures was changed with `7e489eed25`. The PR with the util_misc_test was older and merged after the change to the unittest.OverrideFixtures function. So the test was still using the old function, which leads to a conflict / error when running tests. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7772 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-05-03 15:24:56 +00:00
Benedikt Straub	cf03286b5b	Replace the 'relative-time' element scripting with custom, translatable rewrite (#6154 ) This is my take to fix #6078 Should also resolve #6111 As far as I can tell, Forgejo uses only a subset of the relative-time functionality, and as far as I can see, this subset can be implemented using browser built-in date conversion and arithmetic. So I wrote a JavaScript to format the relative-time element accordingly, and a Go binding to generate the translated elements. This is my first time writing Go code, and my first time coding for a large-scale server application, so please tell me if I'm doing something wrong, or if the whole approach is not acceptable. --- Screenshot: Localized times in Low German ![grafik](/attachments/6f787e17-e666-4b88-8599-af0b8357ffbe) Screenshot: The same with Forgejo in English ![grafik](/attachments/af09c873-b9f3-423d-b12b-7e62093e2623) --- ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [x] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6154 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-committed-by: Benedikt Straub <benedikt-straub@web.de>	2025-05-03 14:11:01 +00:00
Beowulf	37d566bdb0	Show if commit is signed in activity feed and unify sha box (#6933 ) Old activities are shown like before, new commits are displayed like commits in e.g. the commits list. _(Second commit)_ \| New signed commits \| Old (signed) commits \| \|:--:\|:--:\| \| ![image](/attachments/cd81c761-eda6-44bf-8c43-ac3b7e6f16eb) \| ![image](/attachments/243080f3-1b77-4ca7-bc03-bbf855c39c99) \| Additionally the sha box was moved in an own component to unify the usage. _(First commit)_ Closes #1824 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/6933): <!--number 6933 --><!--line 0 --><!--description U2hvdyBpZiBjb21taXQgaXMgdmVyaWZpZWQgaW4gYWN0aXZpdHkgZmVlZCBvZiBhbiB1c2VyIG9yIGFuIG9yZ2FuaXphdGlvbiBmb3IgbmV3IGFjdGl2aXR5-->Show if commit is verified in activity feed of an user or an organization for new activity<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6933 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-05-03 10:54:52 +00:00
Renovate Bot	82477cb55c	Update github.com/42wim/sshsig digest to 5100632 (forgejo) (#7768 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/42wim/sshsig](https://github.com/42wim/sshsig) \| require \| digest \| `841cf5b` -> `5100632` \| --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNjEuNCIsInVwZGF0ZWRJblZlciI6IjM5LjI2MS40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7768 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-03 06:37:53 +00:00
Renovate Bot	8b90eddc56	Update dependency @github/relative-time-element to v4.4.6 (forgejo) (#7769 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7769 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-03 00:37:25 +00:00
Gusted	3ebd96ef73	[gitea] week 2025-16 cherry pick (gitea/main -> forgejo) (#7602 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7602 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-05-02 18:35:33 +00:00
Gabriel Bjørnager Jensen	f07456286e	fix(ui): Improve chronological sorting of user (#7596 ) This PR changes `newest` and `oldest` sorting under Explore/User and Explore/Organization to refer to the `created_unix` column rather than `id`. Fixes: #7595 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7596 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Gabriel Bjørnager Jensen <gabriel@achernar.io> Co-committed-by: Gabriel Bjørnager Jensen <gabriel@achernar.io>	2025-05-02 20:33:57 +02:00
forgejo-release-manager	dbfc24001f	chore(release-notes): Forgejo v7.0.15 (#7765 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7765 Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-05-02 15:13:14 +00:00
forgejo-release-manager	481c7aaf19	chore(release-notes): Forgejo v11.0.1 (#7764 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7764 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-05-02 14:42:26 +00:00
0ko	5ac2c0a2ba	fix(ui): multiple fixes of sync fork UI (#7740 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/2364 Replaces https://codeberg.org/forgejo/forgejo/pulls/7666 Fix multiple issues with the original implementation: * `SyncFork` web handler used `{branch}` as a parameter, so it failed for branches with `/` in names * Originally I switched it to use `` like other branch web handlers, but I found that it was easier to move it out from URL to POST request values Security: `SyncFork` web handler was using GET method, so just visiting the link was enough to execute the action * It was switched to POST done via form with CSRF, which also allowed to put branch name in it's values * Security: in template, branch name was not escaped but rendered with `SafeHTML`, allowing for rendering fun characters like `&` and for script execution. Also the link was not escaped correctly and would be leading to 404 * To avoid having to change all translations, only the branch name+link part was changed and is now escaped with `HTMLFormat` before being passed to TrN Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7740 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-05-02 14:25:05 +00:00
Earl Warren	aec8f4c57a	fix: document that /repos/{owner}/{repo}/pulls may contain nulls (#7762 ) The null means a server side bug prevents the pull request from being retrieved. Closes https://codeberg.org/forgejo/forgejo/issues/6571 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7762 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-05-02 13:53:08 +00:00
Renovate Bot	b7b70dbaf2	Update dependency forgejo/release-notes-assistant to v1.2.5 (forgejo) (#7760 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [forgejo/release-notes-assistant](https://code.forgejo.org/forgejo/release-notes-assistant) \| minor \| `v1.1.1` -> `v1.2.5` \| --- ### Release Notes <details> <summary>forgejo/release-notes-assistant (forgejo/release-notes-assistant)</summary> ### [`v1.2.5`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.2.5) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.4...v1.2.5) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - bug fixes - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/60): <!--number 60 --><!--line 0 --><!--description Zml4OiBza2lwIGlmIHRoZSBsaXN0IG9mIFBScyBjb250YWlucyBhIG51bGwgZWxlbWVudA==-->fix: skip if the list of PRs contains a null element<!--description--> - other - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/55): <!--number 55 --><!--line 0 --><!--description VXBkYXRlIHJlbGVhc2UgYWN0aW9uIHRhZw==-->Update release action tag<!--description--> <!--end release-notes-assistant--> ### [`v1.2.4`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.2.4) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.3...v1.2.4) <!--start release-notes-assistant--> <!--URL:https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant--> - other - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/52): <!--number 52 --><!--line 0 --><!--description VXBkYXRlIGBzZXR1cC1mb3JnZWpvYCB0YWc=-->Update `setup-forgejo` tag<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/51): <!--number 51 --><!--line 0 --><!--description VXNlIFJOQSBmcm9tIGBmb3JnZWpvLXJlbGVhc2VgIGFjdGlvbg==-->Use RNA from `forgejo-release` action<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/47): <!--number 47 --><!--line 0 --><!--description QWRkIG5hbWUgdG8gQ0kgdGFza3M=-->Add name to CI tasks<!--description--> - [PR](https://placeholder:ca61bc9776c376e293039231cd01158c2c2f0a4f@code.forgejo.org/forgejo/release-notes-assistant/pulls/45): <!--number 45 --><!--line 0 --><!--description VXNlIGBmb3JnZWpvLXJlbGVhc2VAdjJgIGFjdGlvbg==-->Use `forgejo-release@v2` action<!--description--> <!--end release-notes-assistant--> ### [`v1.2.3`](https://code.forgejo.org/forgejo/release-notes-assistant/releases/tag/v1.2.3) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.2...v1.2.3) <!--start release-notes-assistant--> <!--URL:https://code.forgejo.org/forgejo/release-notes-assistant--> - features - [PR](https://code.forgejo.org/forgejo/release-notes-assistant/pulls/42): <!--number 42 --><!--line 0 --><!--description ZmVhdChjaSk6IHVzZSBSTkEgd2l0aCBSTkE=-->feat(ci): use RNA with RNA<!--description--> <!--end release-notes-assistant--> ### [`v1.2.2`](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.1...v1.2.2) [Compare Source](https://code.forgejo.org/forgejo/release-notes-assistant/compare/v1.2.1...v1.2.2) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNjEuNCIsInVwZGF0ZWRJblZlciI6IjM5LjI2MS40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7760 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-02 08:53:48 +00:00
Michael Kriese	4096d0d2d6	chore(renovate): use `gitea-releases` datasource for rna (#7759 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7759 Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-05-02 08:05:26 +00:00
Michael Kriese	e08f2ac7f1	chore(renovate): allow updating release notes assistant (#7758 ) Extract release notes assistent version to a variable, so renovate can easily update it `fed044d3a3` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7758 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-05-02 07:44:09 +00:00
Earl Warren	beb985062d	fix(sec): add tests for OAuth2 signup (#7755 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7755 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-05-02 06:25:56 +00:00
Earl Warren	c57ab693f9	fix(sec): only degrade permission check for git push (#7752 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7752 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-05-02 06:25:41 +00:00
Gusted	aa4ae81fe0	fix(sec): add tests for OAuth2 signup Test two scenarios: 1. Account linking is set to `auto` and tries to link against a user who is enrolled into Webauthn should show 2FA screen. 2. User is already linked and logins via OAuth2 and is enrolled into WebAuthn should show 2FA screen.	2025-05-02 07:21:08 +02:00
Gusted	60c1af244a	fix(sec): only degrade permission check for git push - A permission check is done when incoming SSH connections are handled (this is run before git hooks). If this check is for write access and AGit flow is supported, then this check is degraded to a read check. The motivation behind this is that for AGit flow the user does not need write permissions but only read permissions. - The `if` condition cannot check if this is for AGit flow, as the Git protocol has not run yet and thus has to delay this permission check. This `if` condition failed to consider that this also might be run for LFS which does not care about AGit flow and would not do a delayed permission check, so ensure that this degradition only happens when the `git-receive-pack` command is being run (which roughly equals to `git push`). - Clarify code comment. - Added integration test.	2025-05-02 06:56:30 +02:00
Gusted	4a1487c193	feat: remove the legacy `TEST_CONFLICTING_PATCHES_WITH_GIT_APPLY` setting (#7745 ) - The way of doing conflict testing via `git apply` stems from Gogs, it was replaced in Gitea 1.18 by `git read-tree -m` which uses 3-way merge [^0]. The option to disable the fallback `git apply` was introduced in Gitea 1.19 and enabled by default [^1]. - Given it was mostly kept just in case `git read-tree -m` was shown to be unreliable and it has been sufficiently battle tested with no known issues (in Forgejo), it's time to remove this way of conflict testing. I am not aware of anyone using this option or having any benefits over a 3-way merge via `git read-tree -m`. [^0]: https://github.com/go-gitea/gitea/pull/18004 [^1]: https://github.com/go-gitea/gitea/pull/22130 <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Breaking features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7745): <!--number 7745 --><!--line 0 --><!--description cmVtb3ZlIHRoZSBsZWdhY3kgYFRFU1RfQ09ORkxJQ1RJTkdfUEFUQ0hFU19XSVRIX0dJVF9BUFBMWWAgc2V0dGluZw==-->remove the legacy `TEST_CONFLICTING_PATCHES_WITH_GIT_APPLY` setting<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7745 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-05-01 16:35:23 +00:00
Renovate Bot	fbc32463fc	Update dependency eslint-plugin-unicorn to v59 (forgejo) (#7744 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-01 12:54:35 +00:00
Panagiotis "Ivory" Vasilopoulos	b51ce74552	chore(ci): add clarification regarding test label (#7732 ) Contributors use CI pipeline runs as a frame of reference to figure out whether their work adhere's to Forgejo's quality assurance standards. If a test label is missing and the CI does not run, the 'error message' shown can cause confusion, as it might give the contributor the idea that some action is expected from their part. This change explicitly mentions that a reviewer must set the test label. Fixes forgejo/forgejo#7686. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7732 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-committed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net>	2025-05-01 11:52:22 +00:00
Renovate Bot	55f4ee214d	Update module github.com/alecthomas/chroma/v2 to v2.17.2 (forgejo) (#7738 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7738 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-01 10:41:26 +00:00
Earl Warren	2846aebc6a	i18n: update of translations from Codeberg Translate (#7637 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7637 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-05-01 10:23:41 +00:00
Codeberg Translate	4a51a1f360	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Panagiotis \"Ivory\" Vasilopoulos <git@n0toose.net> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Yushu <yushu@noreply.codeberg.org> Co-authored-by: aleksi <aleksi@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: docudoc <docudoc@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: hugoalh <hugoalh@noreply.codeberg.org> Co-authored-by: mimsee <mimsee@noreply.codeberg.org> Co-authored-by: pixelcode <pixelcode@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hant/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-05-01 09:50:01 +00:00
Renovate Bot	8bbac4c679	Update module github.com/redis/go-redis/v9 to v9.8.0 (forgejo) (#7739 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) \| require \| minor \| `v9.7.3` -> `v9.8.0` \| --- ### Release Notes <details> <summary>redis/go-redis (github.com/redis/go-redis/v9)</summary> ### [`v9.8.0`](https://github.com/redis/go-redis/releases/tag/v9.8.0) [Compare Source](https://github.com/redis/go-redis/compare/v9.7.3...v9.8.0) ### 9.8.0 (2025-04-30) #### 🚀 Highlights - Redis 8 Support: Full compatibility with Redis 8.0, including testing and CI integration - Enhanced Hash Operations: Added support for new hash commands (`HGETDEL`, `HGETEX`, `HSETEX`) and `HSTRLEN` command - Search Improvements: Enabled Search DIALECT 2 by default and added `CountOnly` argument for `FT.Search` #### ✨ New Features - Added support for new hash commands: `HGETDEL`, `HGETEX`, `HSETEX` ([#3305](https://github.com/redis/go-redis/pull/3305)) - Added `HSTRLEN` command for hash operations ([#2843](https://github.com/redis/go-redis/pull/2843)) - Added `Do` method for raw query by single connection from `pool.Conn()` ([#3182](https://github.com/redis/go-redis/pull/3182)) - Prevent false-positive marshaling by treating zero time.Time as empty in isEmptyValue ([#3273](https://github.com/redis/go-redis/pull/3273)) - Added FailoverClusterClient support for Universal client ([#2794](https://github.com/redis/go-redis/pull/2794)) - Added support for cluster mode with `IsClusterMode` config parameter ([#3255](https://github.com/redis/go-redis/pull/3255)) - Added client name support in `HELLO` RESP handshake ([#3294](https://github.com/redis/go-redis/pull/3294)) - Enabled Search DIALECT 2 by default ([#3213](https://github.com/redis/go-redis/pull/3213)) - Added read-only option for failover configurations ([#3281](https://github.com/redis/go-redis/pull/3281)) - Added `CountOnly` argument for `FT.Search` to use `LIMIT 0 0` ([#3338](https://github.com/redis/go-redis/pull/3338)) - Added `DB` option support in `NewFailoverClusterClient` ([#3342](https://github.com/redis/go-redis/pull/3342)) - Added `nil` check for the options when creating a client ([#3363](https://github.com/redis/go-redis/pull/3363)) #### 🐛 Bug Fixes - Fixed `PubSub` concurrency safety issues ([#3360](https://github.com/redis/go-redis/pull/3360)) - Fixed panic caused when argument is `nil` ([#3353](https://github.com/redis/go-redis/pull/3353)) - Improved error handling when fetching master node from sentinels ([#3349](https://github.com/redis/go-redis/pull/3349)) - Fixed connection pool timeout issues and increased retries ([#3298](https://github.com/redis/go-redis/pull/3298)) - Fixed context cancellation error leading to connection spikes on Primary instances ([#3190](https://github.com/redis/go-redis/pull/3190)) - Fixed RedisCluster client to consider `MASTERDOWN` a retriable error ([#3164](https://github.com/redis/go-redis/pull/3164)) - Fixed tracing to show complete commands instead of truncated versions ([#3290](https://github.com/redis/go-redis/pull/3290)) - Fixed OpenTelemetry instrumentation to prevent multiple span reporting ([#3168](https://github.com/redis/go-redis/pull/3168)) - Fixed `FT.Search` Limit argument and added `CountOnly` argument for limit 0 0 ([#3338](https://github.com/redis/go-redis/pull/3338)) - Fixed missing command in interface ([#3344](https://github.com/redis/go-redis/pull/3344)) - Fixed slot calculation for `COUNTKEYSINSLOT` command ([#3327](https://github.com/redis/go-redis/pull/3327)) - Updated PubSub implementation with correct context ([#3329](https://github.com/redis/go-redis/pull/3329)) #### 📚 Documentation - Added hash search examples ([#3357](https://github.com/redis/go-redis/pull/3357)) - Fixed documentation comments ([#3351](https://github.com/redis/go-redis/pull/3351)) - Added `CountOnly` search example ([#3345](https://github.com/redis/go-redis/pull/3345)) - Added examples for list commands: `LLEN`, `LPOP`, `LPUSH`, `LRANGE`, `RPOP`, `RPUSH` ([#3234](https://github.com/redis/go-redis/pull/3234)) - Added `SADD` and `SMEMBERS` command examples ([#3242](https://github.com/redis/go-redis/pull/3242)) - Updated `README.md` to use Redis Discord guild ([#3331](https://github.com/redis/go-redis/pull/3331)) - Updated `HExpire` command documentation ([#3355](https://github.com/redis/go-redis/pull/3355)) - Featured OpenTelemetry instrumentation more prominently ([#3316](https://github.com/redis/go-redis/pull/3316)) - Updated `README.md` with additional information ([#310ce55](`310ce55`)) #### ⚡ Performance and Reliability - Bound connection pool background dials to configured dial timeout ([#3089](https://github.com/redis/go-redis/pull/3089)) - Ensured context isn't exhausted via concurrent query ([#3334](https://github.com/redis/go-redis/pull/3334)) #### 🔧 Dependencies and Infrastructure - Updated testing image to Redis 8.0-RC2 ([#3361](https://github.com/redis/go-redis/pull/3361)) - Enabled CI for Redis CE 8.0 ([#3274](https://github.com/redis/go-redis/pull/3274)) - Updated various dependencies: - Bumped golangci/golangci-lint-action from 6.5.0 to 7.0.0 ([#3354](https://github.com/redis/go-redis/pull/3354)) - Bumped rojopolis/spellcheck-github-actions ([#3336](https://github.com/redis/go-redis/pull/3336)) - Bumped golang.org/x/net in example/otel ([#3308](https://github.com/redis/go-redis/pull/3308)) - Migrated golangci-lint configuration to v2 format ([#3354](https://github.com/redis/go-redis/pull/3354)) #### ⚠️ Breaking Changes - Enabled Search DIALECT 2 by default ([#3213](https://github.com/redis/go-redis/pull/3213)) - Dropped RedisGears (Triggers and Functions) support ([#3321](https://github.com/redis/go-redis/pull/3321)) - Dropped FT.PROFILE command that was never enabled ([#3323](https://github.com/redis/go-redis/pull/3323)) #### 🔒 Security - Fixed network error handling on SETINFO (CVE-2025-29923) ([#3295](https://github.com/redis/go-redis/pull/3295)) #### 🧪 Testing - Added integration tests for Redis 8 behavior changes in Redis Search ([#3337](https://github.com/redis/go-redis/pull/3337)) - Added vector types INT8 and UINT8 tests ([#3299](https://github.com/redis/go-redis/pull/3299)) - Added test codes for search_commands.go ([#3285](https://github.com/redis/go-redis/pull/3285)) - Fixed example test sorting ([#3292](https://github.com/redis/go-redis/pull/3292)) #### 👥 Contributors We would like to thank all the contributors who made this release possible: [@alexander-menshchikov](https://github.com/alexander-menshchikov), [@EXPEbdodla](https://github.com/EXPEbdodla), [@afti](https://github.com/afti), [@dmaier-redislabs](https://github.com/dmaier-redislabs), [@four_leaf_clover](https://github.com/four_leaf_clover), [@alohaglenn](https://github.com/alohaglenn), [@gh73962](https://github.com/gh73962), [@justinmir](https://github.com/justinmir), [@LINKIWI](https://github.com/LINKIWI), [@liushuangbill](https://github.com/liushuangbill), [@golang88](https://github.com/golang88), [@gnpaone](https://github.com/gnpaone), [@ndyakov](https://github.com/ndyakov), [@nikolaydubina](https://github.com/nikolaydubina), [@oleglacto](https://github.com/oleglacto), [@andy-stark-redis](https://github.com/andy-stark-redis), [@rodneyosodo](https://github.com/rodneyosodo), [@dependabot](https://github.com/dependabot), [@rfyiamcool](https://github.com/rfyiamcool), [@frankxjkuang](https://github.com/frankxjkuang), [@fukua95](https://github.com/fukua95), [@soleymani-milad](https://github.com/soleymani-milad), [@ofekshenawa](https://github.com/ofekshenawa), [@khasanovbi](https://github.com/khasanovbi) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNjEuNCIsInVwZGF0ZWRJblZlciI6IjM5LjI2MS40IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7739 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-01 08:45:55 +00:00
Renovate Bot	7ed278dec9	Update linters (forgejo) (#7736 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-01 08:41:20 +00:00
Renovate Bot	e1d8afdf32	Update dependency happy-dom to v17.4.6 (forgejo) (#7735 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-05-01 08:40:11 +00:00
Gusted	d7baf25a6b	chore: fix test to avoid data race (#7731 ) - The global Git version can be accessed by background services such as the PR checker, to minimize data race because of `MockVariableValue` resetting it. Run the mocked Git version as first test. - Followup of forgejo/forgejo#7527 CI that is failing: https://codeberg.org/forgejo/forgejo/actions/runs/73021/jobs/10 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7731 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-30 14:59:33 +00:00
Gusted	c5d274a384	[gitea] week 2025-17 cherry pick (gitea/main -> forgejo) (#7713 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7713 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-30 14:50:18 +00:00
Lucas Schwiderski	9cc0d4b3d1	Show warning in locked issue discussion (#7726 ) Closes: #7334 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7726 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-04-30 14:03:37 +00:00
Remo Senekowitsch	ec076e66d8	feat: use git-replay for rebasing (#7527 ) Closes #7525 This is better for performance, because it can do more work in-memory. It also preserves unknown headers, which can be important for some clients. For example, Jujutsu uses a non-standard "change-id" header to track commits across rebase and amend, but regular git-rebase drops such unknown headers. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7527 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Remo Senekowitsch <remo@buenzli.dev> Co-committed-by: Remo Senekowitsch <remo@buenzli.dev>	2025-04-29 20:51:56 +00:00
Gusted	32e64ccd34	chore: replace `github.com/go-testfixtures/testfixtures` (#7715 ) - Replaces `github.com/go-testfixtures/testfixtures` with a homebrew solution that is fully compatible. - The reason to replace this library is that it pulls in a lot of other libraries which is causing issues: (1) the test binary becomes bigger than necessary which really shows in incremental build times (this patch removes 27.6MiB of the integration test binary) (2) it pulls in libraries (mainly database drivers) that are not used and are not easy to upgrade in case of a security vulnerability, causing CI failures. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7715 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-29 19:28:56 +00:00
Earl Warren	a16350d9f4	chore(release): next-digest moved to invisible.forgejo.org (#7720 ) In order to improve the security of the Forgejo infrastructure the next-digest repository was moved to a private instance. ## Testing - After the merge, trigger a mirror to build a new v12.0-test release - Verify in experimental that the workflows works as expected - Verify v12.next.forgejo.org is upgraded with the latest commit - Once the test completes - Tag for backport to v11 & v7 - Manual backport to v7 because it conflicts Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7720 Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-29 15:53:08 +00:00
Squel	8c81dca8b9	feat: allow access to `/api/v1/packages/{username}` without token (#7716 ) - Only require tokens on package endpoints that modify packages, this being deletion of a package and (un)link of a package. - Allows reading data via the API of otherwise public data - Integration test added. Some references to related past commits: - `de484e86bc` Started requiring tokens for reading packages "mimicking the design of GitHub OAuth scopes". - `18de83b2a3` Adjusted the scope further, but kept the GitHub design. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7716 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Squel <squeljur+git@gmail.com> Co-committed-by: Squel <squeljur+git@gmail.com>	2025-04-29 14:37:19 +00:00
Kenneth Bruen	f6599099ee	feat: add label for avatar settings (#7678 ) By redirecting the user to the settings when clicking on the avatar, it is not immediately obvious that the user has to scroll down the page to change their avatar. By adding an id to reference in the fragment, we fix this. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7678 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Kenneth Bruen <kenny@kbruen.ro> Co-committed-by: Kenneth Bruen <kenny@kbruen.ro>	2025-04-29 13:31:07 +00:00
Gusted	df5d656827	feat: consider WebAuthn & SSH for instance signing (#7693 ) - Currently the options `pubkey` and `twofa` only consider TOTP and GPG keys respectively. Adjust the code to also consider WebAuthn credentials and SSH keys. - While adding the new unified functions I noticed that certain places also benefited from using these unified functions and took the liberty (where it was either a trivial translation or it was covered under testing) to use the new unified functions. - Resolves forgejo/forgejo#7658 - Adds unit and integration tests. Documentation PR: https://codeberg.org/forgejo/docs/pulls/1166 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7693 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-29 10:34:07 +00:00
Lunny Xiao	d07a9a1b56	Update token creation API swagger documentation (#34288 ) Fix #34231 (cherry picked from commit 0376c09fc27d848dbac471b629c83fd7a231852b)	2025-04-29 10:12:45 +02:00
christopher-besch	386e7f8208	send mail on failed or recovered workflow run (#7509 ) Send a Mail when an action run fails or a workflow recovers. This PR depends on https://codeberg.org/forgejo/forgejo/pulls/7491 closes #3719 ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7509): <!--number 7509 --><!--line 0 --><!--description c2VuZCBtYWlsIG9uIGZhaWxlZCBvciByZWNvdmVyZWQgd29ya2Zsb3cgcnVu-->send mail on failed or recovered workflow run<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7509 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2025-04-29 06:58:05 +00:00
Earl Warren	bc99bf5e8f	fix: do not set GOPROXY=direct in Dockerfile* (#7707 ) The default should be https://proxy.golang.org,direct otherwise someone trying to build the container image from sources will run into throttling limits imposed by code.forgejo.org (making more tha 10 request per second). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7707 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-28 17:35:25 +00:00
0ko	b25091f757	chore(ui): remove unused fomantic font size classes (#7705 ) One can grep `massive` and `huge` on the current codebase and not find any evidence of these classes being used anywhere in the UI, probably because there's a good reason for this. So these rules are a dead weight. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7705 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-28 16:43:22 +00:00
Michael Jerger	bc8c3cc009	fix linting	2025-04-28 16:41:33 +02:00
Renovate Bot	eb188cf83f	Lock file maintenance (forgejo) (#7696 ) This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNTIuMCIsInVwZGF0ZWRJblZlciI6IjM5LjI1Mi4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7696 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-28 07:17:50 +00:00
Renovate Bot	61b9535039	Update renovate to v39.261.4 (forgejo) (#7695 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-28 06:57:08 +00:00
Ellen Emilia Anna Zscheile	a0cc05ba92	fix various typos (#7690 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7690 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: floss4good <floss4good@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de>	2025-04-28 06:46:29 +00:00
Renovate Bot	9e70ff57b4	Update module github.com/yuin/goldmark to v1.7.11 (forgejo) (#7689 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/yuin/goldmark](https://github.com/yuin/goldmark) \| require \| patch \| `v1.7.8` -> `v1.7.11` \| --- ### Release Notes <details> <summary>yuin/goldmark (github.com/yuin/goldmark)</summary> ### [`v1.7.11`](https://github.com/yuin/goldmark/releases/tag/v1.7.11): release [Compare Source](https://github.com/yuin/goldmark/compare/v1.7.10...v1.7.11) ### [`v1.7.10`](https://github.com/yuin/goldmark/releases/tag/v1.7.10): release [Compare Source](https://github.com/yuin/goldmark/compare/v1.7.9...v1.7.10) ### [`v1.7.9`](https://github.com/yuin/goldmark/releases/tag/v1.7.9): release [Compare Source](https://github.com/yuin/goldmark/compare/v1.7.8...v1.7.9) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNTIuMCIsInVwZGF0ZWRJblZlciI6IjM5LjI1Mi4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7689 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-28 06:43:38 +00:00
christopher-besch	95ad7d6201	better comments and variable names for ActionRunNowDone (#7697 ) Document a bit more clearly what the difference between the parameters to `sendActionRunNowDoneNotificationIfNeeded` and `ActionRunNowDone` are: `priorState`, `run`, `lastRun`, `updatedRun`. The new variable names should be more explicit and consistent. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7697 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2025-04-28 06:37:08 +00:00
Gusted	31cd8c6d38	fix: use `linguist-generated` for language stats (#7685 ) - Adds code comment to explain behavior of the `linguist-generated` gitattribute. - Adjusts the code to ignore the file if `linguist-generated` is true. - Resolves forgejo/forgejo#7677 - Adds unit testing. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7685 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-27 23:29:21 +00:00
Earl Warren	055fc6e0c3	chore: tune down remote user promotion debug message shown as error (#7687 ) It is not an error for a remote user to not be promoted: this is the case for all users created via OAuth. Displaying an error is confusing to the admin when seen in the logs. Refs: https://codeberg.org/forgejo/forgejo/issues/7681 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7687 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-27 20:50:48 +00:00
Gusted	2ce7affc9a	fix: set default restricted for OAuth2 user (#7683 ) - The OAuthCallback code that is responsible for creating a new user, if one does not exist yet, did not use `[service].ALLOW_ONLY_EXTERNAL_REGISTRATION` as default value for the restricted field of a user. - Resolves forgejo/forgejo#7681 - Add integration test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7683 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-27 19:51:09 +00:00
Gusted	00761a15d1	chore: simplify `GetDiff` (#7682 ) - Split `GetDiff` into two functions, `GetDiffSimple` and `GetDiffFull`. The former will do the bare minimum and really only get a Git diff while the latter does some extra stuff that's relevant for the frontend to show extra relevant. - Use `GetDiffSimple` for API related calls, as they do not benefit nor are returning the extra information that `GetDiffFull` provides, this should show a measurable performance increase for API calls that returns commits and `/repos/{owner}/{repo}/pulls/{index}/files`. - `GetDiffSimple` contains extra code comments about its interesting way to determine the before commit. - Add unit tests to demonstrates that the logic for determining the before commit didn't change and the function still yields correct information. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7682 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-27 19:49:59 +00:00
Lucas Schwiderski	afcb7262ea	Use available screen width for Actions logs (#7128 ) Closes #7119. ![image](/attachments/a34e95c5-0301-465f-a616-9889dbf1f42d) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7128 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Lucas Schwiderski <lucas@lschwiderski.de> Co-committed-by: Lucas Schwiderski <lucas@lschwiderski.de>	2025-04-27 12:13:13 +00:00
Matt Latusek	9289e293fd	feat: Makefile & BSDmakefile changes (#7455 ) This set of commits fixes multiple issues with both make scripts. It started with #7358 and digging into it I found more problems. @Gusted [commented](https://codeberg.org/forgejo/forgejo/issues/7358#issuecomment-3145145): > I do think the place where verify-version gets called should likely be backend instead and the error should likely include extra details on how to fix the error, but that can be discussed in the PR. I think it should be closest to where `$(FORGEJO_VERSION)` is used and that's part of `$(LDFLAGS)`, so I added it where the latter is used. When it comes to wording feel free to make suggestions. I haven't tested docker builds. I believe the most optimal way to do it is to create POSIX-compliant shell script where all those conditionals and variable expansion may be placed, and then that script should generate POSIX-compliant Makefile. # Testing ## BSDMakefile Should be launched from a BSD OS. You need to add `-f BSDMakefile` on OpenBSD. * `make show-version-major show-version-minor` Should display two lines with version numbers. * `make TAGS=bindata` Should launch the building process once. ## Makefile * `make TAGS=bindata` Should do the same as `make build`. * `make `target Should build given target like it used to. * Copy everything except .git and VERSION to a separate directory. `make TAGS=bindata` Should fail with error “Could not determine FORGEJO_VERSION...” * Copy everything except .git and VERSION to a separate directory. `make clean` Should execute correctly. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7455 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Matt Latusek <matlib@matlibhax.com> Co-committed-by: Matt Latusek <matlib@matlibhax.com>	2025-04-27 10:04:32 +00:00
aec	224cb07907	i18n(en): fix typo in archive notice (#7667 ) Fixed minor typo in the archive notice. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7667 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: aec <aec@noreply.codeberg.org> Co-committed-by: aec <aec@noreply.codeberg.org>	2025-04-26 15:39:25 +00:00
Renovate Bot	cbcb04cf53	Update dependency @stoplight/spectral-cli to v6.15.0 (forgejo) (#7664 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 08:40:28 +00:00
Renovate Bot	b8d7303828	Update module github.com/PuerkitoBio/goquery to v1.10.3 (forgejo) (#7662 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 08:40:26 +00:00
Renovate Bot	025689312b	Update linters (forgejo) (#7665 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 06:46:48 +00:00
Renovate Bot	7284cb5685	Update dependency @playwright/test to v1.52.0 (forgejo) (#7663 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 06:42:58 +00:00
Renovate Bot	f48c6d3c04	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.1.5 (forgejo) (#7661 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 06:34:41 +00:00
Renovate Bot	c5a0825587	Update dependency webpack to v5.99.7 (forgejo) (#7659 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7659 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-26 00:35:58 +00:00
Earl Warren	a0115cf10f	fix: display the list of tasks in the runner edit page (#7650 ) A regression was introduced in Forgejo v11.0 that caused the edit page of a runner (e.g. https://example.org/admin/actions/runners/434) to no longer display the tasks associated with the runner. Fixes https://codeberg.org/forgejo/forgejo/issues/7643 --- When the fix is absent, the tests fail like so: ``` --- FAIL: TestRunnerDetails (0.03s) --- FAIL: TestRunnerDetails/first_page (0.00s) runners_test.go:36: Error Trace: /home/earl-warren/software/forgejo/routers/web/shared/actions/runners_test.go:36 Error: "[]" should have 30 item(s), but has 0 Test: TestRunnerDetails/first_page --- FAIL: TestRunnerDetails/second_and_last_page (0.00s) runners_test.go:43: Error Trace: /home/earl-warren/software/forgejo/routers/web/shared/actions/runners_test.go:43 Error: "[]" should have 10 item(s), but has 0 Test: TestRunnerDetails/second_and_last_page FAIL FAIL forgejo.org/routers/web/shared/actions 0.170s ``` ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/7650): <!--number 7650 --><!--line 0 --><!--description ZGlzcGxheSB0aGUgbGlzdCBvZiB0YXNrcyBpbiB0aGUgcnVubmVyIGVkaXQgcGFnZQ==-->display the list of tasks in the runner edit page<!--description--> <!--end release-notes-assistant--> <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/7650): <!--number 7650 --><!--line 0 --><!--description ZGlzcGxheSB0aGUgbGlzdCBvZiB0YXNrcyBpbiB0aGUgcnVubmVyIGVkaXQgcGFnZQ==-->display the list of tasks in the runner edit page<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7650 Reviewed-by: cobak78 <cobak78@noreply.codeberg.org> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-25 11:59:54 +00:00
Earl Warren	7e489eed25	chore: merge tests.AddFixtures and unittest.OverrideFixtures (#7648 ) The only parameter that is ever used is a single directory, make it that only instead of a more complex option structure. Remove tests.AddFixtures that was the simpler form because it is now redundant. --- Backporting to v11.0 will help with automated backporting of bug fixes in need of custom made fixtures. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7648 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-25 09:14:33 +00:00
Otto	580b7e2671	fix(ui): make pagination labels always visible to screenreader (#7616 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7616 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Otto <otto@codeberg.org>	2025-04-24 22:37:10 +00:00
christopher-besch	05273fa8d2	Actions Done Notification (#7491 ) This PR depends on https://codeberg.org/forgejo/forgejo/pulls/7510 This PR renames UpdateRunJob to UpdateRunJobWithoutNotification and UpdateRun to UpdateRunWithoutNotification and implements wrapper functions that also call the new ActionRunNowDone notification when needed. This PR can be reviewed commit-by-commit. # Things to Test - [x] GetRunBefore - [ ] integration test for sendActionRunNowDoneNotificationIfNeeded, UpdateRun and UpdateRunJob ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `_test.go` for unit tests. - [x] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: nobody <nobody@example.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7491 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: christopher-besch <mail@chris-besch.com> Co-committed-by: christopher-besch <mail@chris-besch.com>	2025-04-24 15:15:24 +00:00
Earl Warren	0f6176470f	i18n: update of translations from Codeberg Translate (#7572 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7572 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-24 07:39:51 +00:00
Codeberg Translate	8958dee86e	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Caesar Schinas <caesar@caesarschinas.com> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kita Ikuyo <kitakita@disroot.org> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: alperen <alperen@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: mengzhuo <mengzhuo@noreply.codeberg.org> Co-authored-by: neighborsbear <neighborsbear@noreply.codeberg.org> Co-authored-by: otf31 <otf31@noreply.codeberg.org> Co-authored-by: pboguslawski <pboguslawski@noreply.codeberg.org> Co-authored-by: whytf <whytf@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: yurtpage <yurtpage@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ko/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/sk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-04-24 06:35:00 +00:00
Gusted	b6072496d4	fix(ui): make pagination labels always visible to screenreader - The pagination labels 'First', 'Previous', 'Next' and 'Last' are hidden away when the screen width becomes smaller. However this also hides them from the screen reader. Instead of using `display: none`, use some well-known tricks to still make them visible to the screen reader. - Add E2E test. - Resolves Codeberg/Community#1858	2025-04-23 23:58:03 +02:00
Renovate Bot	02c5ce77db	Lock file maintenance (forgejo) (#7588 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7588 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 21:02:05 +00:00
Renovate Bot	7c6d5aaa56	Update dependency @vitest/eslint-plugin to v1.1.43 (forgejo) (#7610 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 16:59:52 +00:00
0ko	8e49c07187	feat(ui): make fork related banners more consistent (#7577 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/2364 Minor changes to templates. Preview: https://codeberg.org/attachments/993ca087-d163-46c4-a1a3-f023ba0a5a4f https://codeberg.org/attachments/bafb1655-7d64-488b-916a-0198101cea17 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7577 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-23 16:48:26 +00:00
Renovate Bot	f463f97f24	Update vitest monorepo to v3.1.2 (forgejo) (#7611 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 15:43:35 +00:00
Renovate Bot	2ca2a73311	Update linters (forgejo) (#7612 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 15:43:26 +00:00
Renovate Bot	06c38cd613	Update module mvdan.cc/gofumpt to v0.8.0 (forgejo) (#7613 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 15:41:47 +00:00
Renovate Bot	ed18a8fb46	Update module github.com/alecthomas/chroma/v2 to v2.17.0 (forgejo) (#7607 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7607 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 13:44:28 +00:00
Renovate Bot	58389fd357	Update module github.com/minio/minio-go/v7 to v7.0.91 (forgejo) (#7606 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) \| require \| patch \| `v7.0.90` -> `v7.0.91` \| --- ### Release Notes <details> <summary>minio/minio-go (github.com/minio/minio-go/v7)</summary> ### [`v7.0.91`](https://github.com/minio/minio-go/compare/v7.0.90...v7.0.91) [Compare Source](https://github.com/minio/minio-go/compare/v7.0.90...v7.0.91) </details> --- ### Configuration 📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNTIuMCIsInVwZGF0ZWRJblZlciI6IjM5LjI1Mi4wIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7606 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-23 07:56:42 +00:00
0ko	bbb7f6ec6f	feat(ui): enlarge metadata line gaps in issue list and refactor (#7580 ) The metadata line can contain many things and can get very busy. The main change this PR does is addition of `gap:0.5rem` to it's items, so they're better separated. And there are some harmless refactors, too. Preview: https://codeberg.org/attachments/5854ee85-79b3-448a-aafd-4120f34e84e1 - before https://codeberg.org/attachments/b546efe4-06b7-4cd5-84bf-0afb9e84b9d6 - after Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7580 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-22 14:58:32 +00:00
Eric Hawicz	dec91bd9ed	Add "--fullname" arg to gitea admin user create (#34241 ) Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 166ec1b4c3971b7e14c4b6456d29b38f93a4e915)	2025-04-22 10:30:20 +02:00
wxiaoguang	eb67c4c109	Fix some trivial problems (#34237 ) 1. Using existing "content" variable in `swift.go` 2. Do not report 500 server error in `GetPullDiffStats` middleware, otherwise a PR missing ref won't be able to view. 3. Fix the abused "label button" when listing commits, there was too much padding space, see the screenshot below. (cherry picked from commit ba0deab6167236db89c975123570089452776599)	2025-04-22 10:20:23 +02:00
Gusted	358863999e	fix: delay-write trace.dat for forgejo diagnosis (#7597 ) - Delay the writing of `trace.dat` to the forgejo diagnosis zip file. It's not possible to write `cpu-profile.dat` and `trace.dat` at the same time. This caused the implemention to prematurely close `cpu-profile.dat` and leave it as an empty file. - Regression of forgejo/forgejo#6470 ## Testing 1. Go to `/admin/monitor` 2. Click on "Download diagnosis report" 3. Open the zip file and check that all files are non-empty. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7597 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-22 08:14:41 +00:00
Wolfgang Reithmeier	875534e50a	Swift files can be passed either as file or as form value (#34068 ) Fix #33990 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 2683adfcb4f7c5ee6ff56b3311ac657cb95c03a9)	2025-04-22 10:13:17 +02:00
badhezi	d0b7a2cccf	Fix project board links to related Pull Requests (#34213 ) Resolves https://github.com/go-gitea/gitea/issues/34181 (cherry picked from commit a4f22a3e8068d05e76aa0171718b88e57a93050a)	2025-04-22 10:11:43 +02:00
Kerwin Bryant	01eee60fdc	Fix two missed null value checks on the wiki page. (#34205 ) before: ![image](https://github.com/user-attachments/assets/83e5513f-a4fa-406d-a010-8ec8cd873203) after: ![image](https://github.com/user-attachments/assets/6bca76c7-0445-429a-92b1-1a9f96d6daca) (cherry picked from commit 3a651cfd02321e5271f69093a6c6cb556db16fdc)	2025-04-22 10:04:41 +02:00
bytedream	64555d6efb	Restore form inputs on organization create error (#34201 ) Keeps the entered inputs when the "organization create" request returns an error. Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 18a673bad1d036502baca4491a16679692c42320)	2025-04-22 09:54:18 +02:00
0ko	603d655ec4	fix(i18n): prevent incorrect logging on strings missing in JSON locales (#7594 ) Fixes https://codeberg.org/forgejo/forgejo/issues/7591 Followup to https://codeberg.org/forgejo/forgejo/pulls/6203 When the test runs without an actual fix included, an error message appears in the logs: [E] Missing translation "incorrect_root_url" With it, it does not. Reported-by: Paweł Bogusławski <pboguslawski@noreply.codeberg.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7594 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-22 03:49:37 +00:00
0ko	8e0b86a5dc	fix(ui): overflow tabular menu CSS fixes (#7578 ) Change 1 Followup to https://codeberg.org/forgejo/forgejo/pulls/7314 and https://codeberg.org/forgejo/forgejo/pulls/7356 Replace baseline with center, because baseline alignment is broken with Asian scripts. Preview: https://codeberg.org/attachments/f612ca9b-5033-44f1-8bea-b71170c1f595 - bug https://codeberg.org/attachments/69e021eb-96dc-40b1-8c65-9fb4a378e051 - with fix applied Change 2 Followup to https://codeberg.org/forgejo/forgejo/pulls/7108 and https://codeberg.org/forgejo/forgejo/issues/4169 Rescope `.ui.tabular.menu .item { height: 100%;}` to overflow menu, because it was only meant for overflow menu based on PR context, but started to negatively impact the other "bookmark" style menus: they've got an extra bottom line under active tabs. Preview: https://codeberg.org/attachments/b535e437-16fd-4af2-ae8c-221618ec6b8c - bug https://codeberg.org/attachments/10a3086d-8fe7-4317-bd66-71e8139b2cc7 - bug in another area https://codeberg.org/attachments/6a6b8994-c982-48d0-98fe-68e70ba709c2 - with fix applied https://codeberg.org/attachments/8fd8a332-a9ec-4b28-948e-a4e986e301da - intended fix still applies Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7578 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-21 07:25:17 +00:00
Renovate Bot	424606c8a4	Update renovate to v39.252.0 (forgejo) (#7587 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-21 06:39:22 +00:00
0ko	507280b073	fix(ui): use gap in switch items (#7581 ) Followup to PRs where the old switches were converted to this one. The main change here is to the switch with counter. It was missing a gap. Additionally, it removes tailwind helpers the other switches retained from before switch refactors, because they are now using gap. Preview: https://codeberg.org/attachments/6191f55e-0b61-49fa-ba8f-cd9c93ca7bd4 https://codeberg.org/attachments/a03fb681-45b7-40f5-929e-55154abeb20d No visual change to the ones with icons. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7581 Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-21 04:25:08 +00:00
0ko	acf6c13fd9	fix(ui/pr): use eye icon for reviews (#7584 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/6523 Reverts icon change introduced in https://codeberg.org/forgejo/forgejo/pulls/5695 It went unnoticed since v10 and was likely caused by bad copy paste and I don't think it's really worth a test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7584 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-20 13:41:51 +00:00
0ko	fda68ddf20	i18n(en): add positional hints to sync_fork placeholders (#7579 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/2364. It's only possible to use them without hints in the correct order in the string, because our i18n is not smart enough to figure out types in such strings on it's own. In some languages translators preferred to first specify branch name and then amount of commits without hints and got broken strings. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7579 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-20 07:06:03 +00:00
0ko	a0c9e81611	feat(ui): redesign migration selection screen (#6795 ) Ref https://codeberg.org/forgejo/design/issues/9. Changes: * Updated SVGs which had inconsistent paddings making them look off * Better usability on mobile * Better space efficiency on desktop, up to 4 columns * Nice responsive design * Less bland look on desktop. The borders were already here but invisible in Forgejo dark theme Preview: * https://codeberg.org/attachments/3c9e10ae-3315-46e5-b8bb-8021f6fd8936 * https://codeberg.org/attachments/8196ad89-5ab6-443a-98ce-a70dcc75bca9 * https://codeberg.org/attachments/24f52a14-2ac4-4949-8108-55c34bd3c650 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6795 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Otto <otto@codeberg.org>	2025-04-19 13:51:35 +00:00
Gusted	78e56ee2f7	[gitea] week 2025-15 cherry pick (gitea/main -> forgejo) (#7538 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7538 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-19 12:59:09 +00:00
Beowulf	9a4ded7d80	fix(ui): use correct branch name in branch tag selector (#7575 ) Regression from: https://codeberg.org/forgejo/forgejo/pulls/7571 Needed for: https://codeberg.org/forgejo/forgejo/pulls/7574 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7575 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-04-19 07:00:50 +00:00
Beowulf	3f673ce4d4	fix(ui): show commit icon in branch dropdown button when viewing a commit (#7571 ) Closes https://codeberg.org/forgejo/forgejo/issues/7570 Fixed never running repo-home e2e test for language switcher Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7571 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Beowulf <beowulf@beocode.eu> Co-committed-by: Beowulf <beowulf@beocode.eu>	2025-04-19 04:33:07 +00:00
Renovate Bot	6d7b1f87e4	Update dependency webpack to v5.99.6 (forgejo) (#7573 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7573 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-19 00:32:36 +00:00
Stefan	f3882d4553	fix: allow user with actions write permission to run a workflow from the web UI (#7245 ) Users with permissions actions write can reschedule a workflow or start a new one over the API. But if the user try to use workflow dispatch on the web GUI it fails with 404 error. Debug log says ``` router: completed POST /<owner>/<repo>/actions/manual for <client ip>, 404 Not Found in 21.6ms @ context/permission.go:17(web.registerRoutes.RequireRepoAdmin) ``` I think this is not correct, users with permissons action write should also be able to run a new workflow over the GUI. This can be fixed with this little change. ## Testing - Create a repository in an organization with [a manual workflow](https://forgejo.org/docs/next/user/actions/#onworkflow_dispatch) - Create a user and assign it action write permissions for this repository in a team - Login as the user and verify they are allowed to run the workflow via the web UI <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface bug fixes - [PR](https://codeberg.org/forgejo/forgejo/pulls/7245): <!--number 7245 --><!--line 0 --><!--description YWxsb3cgdXNlciB3aXRoIGFjdGlvbnMgd3JpdGUgcGVybWlzc2lvbiB0byBydW4gYSB3b3JrZmxvdyBmcm9tIHRoZSB3ZWIgVUk=-->allow user with actions write permission to run a workflow from the web UI<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7245 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Stefan <stku@noreply.codeberg.org> Co-committed-by: Stefan <stku@noreply.codeberg.org>	2025-04-18 19:17:03 +00:00
Paul-Emmanuel Raoul	58653d3700	feat(ui): improve description in packages settings (#7531 ) - Improve the description of the 'Cargo registry index' and 'Chef registry'. - Move 'For more information' to be the first senctence. - Better explain what Chef's keypair button does. - Resolves https://codeberg.org/forgejo/forgejo/issues/7140 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7531 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-authored-by: Paul-Emmanuel Raoul <skyper@skyplabs.net> Co-committed-by: Paul-Emmanuel Raoul <skyper@skyplabs.net>	2025-04-18 12:36:59 +00:00
Gusted	23cc1fdbbe	feat(api): add `last_commit_when` to contents response (#7418 ) - Add a new field `last_commit_when` to the `ContentResponse` type, which is populated with the last commit's commiter date. This can be used to determine when the last edit of the content was. - This field is compatible with what Gitea will likely add, https://github.com/go-gitea/gitea/pull/32921. There's no field for this information in the Github API, so no way to be compatible with that (this API endpoint is otherwise fully compatible with Github's API). - Ref: gitnex/GitNex#1225 - Integration test adjusted. The API tests cannot test the actual output, as `testify` tries to 'deep equal' the `time.Time` structs which will differ due how the `time.Time` struct is created. Unit tests still verify the output. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7418 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-18 09:31:40 +00:00
David Davies-Payne	813eabc340	fix: grammar in a release API error message (#7565 ) This is small bug fix to correct the API's response description. Currently returns "Release is has no Tag" I think would read better as "Release has no Tag" I have not added a test as it's a trivial change, however it's possible that consumers might be looking for that particular string. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7565 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: David Davies-Payne <d2p@me.com> Co-committed-by: David Davies-Payne <d2p@me.com>	2025-04-18 07:04:40 +00:00
Earl Warren	9720418bb5	i18n: update of translations from Codeberg Translate (#7507 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7507 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-17 15:10:54 +00:00
Codeberg Translate	4fe172e4b2	i18n: update of translations from Codeberg Translate Co-authored-by: Caesar Schinas <caesar@caesarschinas.com> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: PeterDaveHello <peterdavehello@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: antaanimosity <antaanimosity@noreply.codeberg.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: lucasmz.dev <git@lucasmz.dev> Co-authored-by: oscarotero <oscarotero@noreply.codeberg.org> Co-authored-by: otf31 <otf31@noreply.codeberg.org> Co-authored-by: themandalorian <themandalorian@noreply.codeberg.org> Co-authored-by: xtex <xtexchooser@duck.com> Co-authored-by: zerica <zerica@noreply.codeberg.org> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/gl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-04-17 14:36:28 +00:00
Renovate Bot	4ce232bcfe	Update module github.com/mattn/go-sqlite3 to v1.14.28 (forgejo) (#7560 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7560 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-17 10:40:44 +00:00
Renovate Bot	aa9d89c846	Update module github.com/caddyserver/certmagic to v0.23.0 (forgejo) (#7561 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) \| require \| minor \| `v0.22.2` -> `v0.23.0` \| --- ### Release Notes <details> <summary>caddyserver/certmagic (github.com/caddyserver/certmagic)</summary> ### [`v0.23.0`](https://github.com/caddyserver/certmagic/compare/v0.22.2...v0.23.0) [Compare Source](https://github.com/caddyserver/certmagic/compare/v0.22.2...v0.23.0) </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNDAuMSIsInVwZGF0ZWRJblZlciI6IjM5LjI0MC4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7561 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-17 05:03:23 +00:00
Remo Senekowitsch	a13414341b	feat: inline public ssh key in verification command (#7516 ) This makes it easier for people to verify their SSH key with various setups. People with a key stored in a file won't have to manually substitute the correct file path anymore. People who store their SSH key in a password manager and access it via an ssh-agent won't have to copy the private key to a temporary file or figure out the process substitution thing anymore. A slight disadvantage is that the fish shell doesn't have the same syntax for process substitution as POSIX shells. For that reason, a default-collapsed box with a custom command for fish users is provided, just like for the Windows shells. The Windows shells do not have an equivalent to process substitution, so those commands remain unchanged. ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] ~in their respective `_test.go` for unit tests.~ - [ ] ~in the `tests/integration` directory if it involves interactions with a live Forgejo server.~ - I added test coverage for JavaScript changes... - [ ] ~in `web_src/js/.test.js` if it can be unit tested.~ - [ ] ~in `tests/e2e/.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)).~ ### Documentation - [ ] ~I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change.~ - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. ## [](#testing)Testing `pr=7516 ; git fetch forgejo +refs/pull/$pr/head:refs/heads/wip-pr-$pr` * `git checkout wip-pr-$pr` * `make TAGS='sqlite sqlite_unlock_notify' watch` * login * visit /user/settings/keys and add an ssh key * click verify * see a CLI sample is displayed ![image](attachments/8edf43f4-9ae9-48dc-b275-0c466e9a161d) * run CLI sample, copy paste the output and submit it * check that the verification is successful ![image](attachments/20074f32-e06f-42fd-9732-32171016c47e) <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - User Interface features - [PR](https://codeberg.org/forgejo/forgejo/pulls/7516): <!--number 7516 --><!--line 0 --><!--description aW5saW5lIHB1YmxpYyBzc2gga2V5IGluIHZlcmlmaWNhdGlvbiBjb21tYW5k-->inline public ssh key in verification command<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7516 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Remo Senekowitsch <remo@buenzli.dev> Co-committed-by: Remo Senekowitsch <remo@buenzli.dev>	2025-04-17 05:00:21 +00:00
forgejo-release-manager	0f35e87290	chore(release-notes): Forgejo v11.0.0 (#7469 ) https://codeberg.org/forgejo/forgejo/milestone/9323 Co-authored-by: Earl Warren <contact@earl-warren.org> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7469 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org> Co-committed-by: forgejo-release-manager <contact-forgejo-release-manager@forgejo.org>	2025-04-16 19:10:03 +00:00
Gusted	5c1c514361	fix(ui): make tag dropdown clickable again (#7558 ) - forgejo/forgejo#7187 removed the usage of `reference column` class names, however some javascript code depended on it. Adjust this code to instead use the new class `branch-tag-item`. - Ref: forgejo/forgejo#7187 ## Testing - visit a compare tag page - see it is possible search for a tag ![image](/attachments/8006fc35-96d0-49ad-94d4-078030cb2323) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7558 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-16 12:28:39 +00:00
Renovate Bot	1b0e3c717f	Update dependency python to v3.13.3 (forgejo) (#7557 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7557 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-16 10:37:41 +00:00
Earl Warren	c35550f324	chore(release): v10.0 is EOL (#7555 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7555 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-16 10:06:26 +00:00
zam	f6a5b783d2	add port and schema to federation host (#7203 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [x] in their respective `*_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Co-authored-by: Michael Jerger <michael.jerger@meissa-gmbh.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7203 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: zam <mirco.zachmann@meissa.de> Co-committed-by: zam <mirco.zachmann@meissa.de>	2025-04-16 08:07:51 +00:00
Michael Kriese	23360ad415	chore(renovate): fix package name matching for go majors [skip ci] (#7554 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7554 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Michael Kriese <michael.kriese@visualon.de> Co-committed-by: Michael Kriese <michael.kriese@visualon.de>	2025-04-16 07:47:47 +00:00
Renovate Bot	f711aaceb8	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.1.2 (forgejo) (#7552 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [github.com/golangci/golangci-lint/v2/cmd/golangci-lint](https://github.com/golangci/golangci-lint) \| patch \| `v2.1.1` -> `v2.1.2` \| --- ### Release Notes <details> <summary>golangci/golangci-lint (github.com/golangci/golangci-lint/v2/cmd/golangci-lint)</summary> ### [`v2.1.2`](https://github.com/golangci/golangci-lint/blob/HEAD/CHANGELOG.md#v212) [Compare Source](https://github.com/golangci/golangci-lint/compare/v2.1.1...v2.1.2) 1. Linters bug fixes - `exptostd`: from 0.4.2 to 0.4.3 - `gofumpt`: from 0.7.0 to 0.8.0 - `protogetter`: from 0.3.13 to 0.3.15 - `usetesting`: from 0.4.2 to 0.4.3 </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNDAuMSIsInVwZGF0ZWRJblZlciI6IjM5LjI0MC4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7552 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-16 05:42:20 +00:00
Renovate Bot	f28dbe4306	Update dependency chart.js to v4.4.9 (forgejo) (#7550 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7550 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-16 00:39:48 +00:00
Renovate Bot	2accf24f72	Update https://data.forgejo.org/actions/git-backporting action to v4.8.5 (forgejo) (#7551 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7551 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-16 00:39:07 +00:00
Renovate Bot	2570be93a6	Update Node.js to v22 (forgejo) (#7545 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [node](https://nodejs.org) ([source](https://github.com/nodejs/node)) \| major \| `20` -> `22` \| --- ### Release Notes <details> <summary>nodejs/node (node)</summary> ### [`v22.14.0`](https://github.com/nodejs/node/releases/tag/v22.14.0): 2025-02-11, Version 22.14.0 'Jod' (LTS), @aduh95 [Compare Source](https://github.com/nodejs/node/compare/v22.13.1...v22.14.0) ##### Notable Changes - \[[`82a9000e9e`](`82a9000e9e`)] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) [#56566](https://github.com/nodejs/node/pull/56566) - \[[`b7fe54fc88`](`b7fe54fc88`)] - (SEMVER-MINOR) fs: allow `exclude` option in globs to accept glob patterns (Daeyeon Jeong) [#56489](https://github.com/nodejs/node/pull/56489) - \[[`3ac92ef607`](`3ac92ef607`)] - (SEMVER-MINOR) lib: add typescript support to STDIN eval (Marco Ippolito) [#56359](https://github.com/nodejs/node/pull/56359) - \[[`1614e8e7bc`](`1614e8e7bc`)] - (SEMVER-MINOR) module: add ERR_UNSUPPORTED_TYPESCRIPT_SYNTAX (Marco Ippolito) [#56610](https://github.com/nodejs/node/pull/56610) - \[[`6d6cffa9cc`](`6d6cffa9cc`)] - (SEMVER-MINOR) module: add `findPackageJSON` util (Jacob Smith) [#55412](https://github.com/nodejs/node/pull/55412) - \[[`d35333ae18`](`d35333ae18`)] - (SEMVER-MINOR) process: add process.ref() and process.unref() methods (James M Snell) [#56400](https://github.com/nodejs/node/pull/56400) - \[[`07ff3ddcb5`](`07ff3ddcb5`)] - (SEMVER-MINOR) sqlite: support TypedArray and DataView in `StatementSync` (Alex Yang) [#56385](https://github.com/nodejs/node/pull/56385) - \[[`94d3fe1b62`](`94d3fe1b62`)] - (SEMVER-MINOR) src: add --disable-sigusr1 to prevent signal i/o thread (Rafael Gonzaga) [#56441](https://github.com/nodejs/node/pull/56441) - \[[`5afffb4415`](`5afffb4415`)] - (SEMVER-MINOR) src,worker: add isInternalWorker (Carlos Espa) [#56469](https://github.com/nodejs/node/pull/56469) - \[[`697a851fb3`](`697a851fb3`)] - (SEMVER-MINOR) test_runner: add TestContext.prototype.waitFor() (Colin Ihrig) [#56595](https://github.com/nodejs/node/pull/56595) - \[[`047537b48c`](`047537b48c`)] - (SEMVER-MINOR) test_runner: add t.assert.fileSnapshot() (Colin Ihrig) [#56459](https://github.com/nodejs/node/pull/56459) - \[[`926cf84e95`](`926cf84e95`)] - (SEMVER-MINOR) test_runner: add assert.register() API (Colin Ihrig) [#56434](https://github.com/nodejs/node/pull/56434) - \[[`c658a8afdf`](`c658a8afdf`)] - (SEMVER-MINOR) worker: add eval ts input (Marco Ippolito) [#56394](https://github.com/nodejs/node/pull/56394) ##### Commits - \[[`bad1ad8650`](`bad1ad8650`)] - assert: make myers_diff function more performant (Giovanni Bucci) [#56303](https://github.com/nodejs/node/pull/56303) - \[[`e222e36f3b`](`e222e36f3b`)] - assert: make partialDeepStrictEqual work with urls and File prototypes (Giovanni Bucci) [#56231](https://github.com/nodejs/node/pull/56231) - \[[`e232789fe2`](`e232789fe2`)] - assert: show diff when doing partial comparisons (Giovanni Bucci) [#56211](https://github.com/nodejs/node/pull/56211) - \[[`c99de1fdcf`](`c99de1fdcf`)] - assert: make partialDeepStrictEqual throw when comparing \[0] with \[-0] (Giovanni) [#56237](https://github.com/nodejs/node/pull/56237) - \[[`2386fd5840`](`2386fd5840`)] - benchmark: add validateStream to styleText bench (Rafael Gonzaga) [#56556](https://github.com/nodejs/node/pull/56556) - \[[`b197dfa7ec`](`b197dfa7ec`)] - build: fix GN build for ngtcp2 (Cheng) [#56300](https://github.com/nodejs/node/pull/56300) - \[[`2a3cdd34ff`](`2a3cdd34ff`)] - build: test macos-13 on GitHub actions (Michaël Zasso) [#56307](https://github.com/nodejs/node/pull/56307) - \[[`12f716be0a`](`12f716be0a`)] - build: build v8 with -fvisibility=hidden on macOS (Joyee Cheung) [#56275](https://github.com/nodejs/node/pull/56275) - \[[`c5ca15bd34`](`c5ca15bd34`)] - child_process: fix parsing messages with splitted length field (Maksim Gorkov) [#56106](https://github.com/nodejs/node/pull/56106) - \[[`8346b8fc2c`](`8346b8fc2c`)] - crypto: add missing return value check (Michael Dawson) [#56615](https://github.com/nodejs/node/pull/56615) - \[[`82a9000e9e`](`82a9000e9e`)] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) [#56566](https://github.com/nodejs/node/pull/56566) - \[[`890eef20a1`](`890eef20a1`)] - crypto: fix checkPrime crash with large buffers (Santiago Gimeno) [#56559](https://github.com/nodejs/node/pull/56559) - \[[`5edb7b5e87`](`5edb7b5e87`)] - crypto: fix warning of ignoring return value (Cheng) [#56527](https://github.com/nodejs/node/pull/56527) - \[[`b89f123a0b`](`b89f123a0b`)] - crypto: make generatePrime/checkPrime interruptible (James M Snell) [#56460](https://github.com/nodejs/node/pull/56460) - \[[`63c1859e01`](`63c1859e01`)] - deps: update corepack to 0.31.0 (Node.js GitHub Bot) [#56795](https://github.com/nodejs/node/pull/56795) - \[[`a48430d4d3`](`a48430d4d3`)] - deps: move inspector_protocol to deps (Chengzhong Wu) [#56649](https://github.com/nodejs/node/pull/56649) - \[[`74cccc824f`](`74cccc824f`)] - deps: macro ENODATA is deprecated in libc++ (Cheng) [#56698](https://github.com/nodejs/node/pull/56698) - \[[`fa869ea0f2`](`fa869ea0f2`)] - deps: fixup some minor coverity warnings (James M Snell) [#56612](https://github.com/nodejs/node/pull/56612) - \[[`1a4fa2b015`](`1a4fa2b015`)] - deps: update amaro to 0.3.0 (Node.js GitHub Bot) [#56568](https://github.com/nodejs/node/pull/56568) - \[[`b47076fd82`](`b47076fd82`)] - deps: update amaro to 0.2.2 (Node.js GitHub Bot) [#56568](https://github.com/nodejs/node/pull/56568) - \[[`46bd4b8731`](`46bd4b8731`)] - deps: update simdutf to 6.0.3 (Node.js GitHub Bot) [#56567](https://github.com/nodejs/node/pull/56567) - \[[`8ead9c693b`](`8ead9c693b`)] - deps: update simdutf to 5.7.2 (Node.js GitHub Bot) [#56388](https://github.com/nodejs/node/pull/56388) - \[[`18d4b502af`](`18d4b502af`)] - deps: update amaro to 0.2.1 (Node.js GitHub Bot) [#56390](https://github.com/nodejs/node/pull/56390) - \[[`d938d7cc86`](`d938d7cc86`)] - deps: update googletest to [`7d76a23`](`7d76a23`) (Node.js GitHub Bot) [#56387](https://github.com/nodejs/node/pull/56387) - \[[`9761e7dccb`](`9761e7dccb`)] - deps: update googletest to [`e54519b`](`e54519b`) (Node.js GitHub Bot) [#56370](https://github.com/nodejs/node/pull/56370) - \[[`8319dc6bc5`](`8319dc6bc5`)] - deps: update ngtcp2 to 1.10.0 (Node.js GitHub Bot) [#56334](https://github.com/nodejs/node/pull/56334) - \[[`6eacd19d6a`](`6eacd19d6a`)] - deps: update simdutf to 5.7.0 (Node.js GitHub Bot) [#56332](https://github.com/nodejs/node/pull/56332) - \[[`28bec2dda3`](`28bec2dda3`)] - diagnostics_channel: capture console messages (Stephen Belanger) [#56292](https://github.com/nodejs/node/pull/56292) - \[[`d519d33502`](`d519d33502`)] - doc: update macOS and Xcode versions for releases (Michaël Zasso) [#56337](https://github.com/nodejs/node/pull/56337) - \[[`fcfe650507`](`fcfe650507`)] - doc: add note for features using `InternalWorker` with permission model (Antoine du Hamel) [#56706](https://github.com/nodejs/node/pull/56706) - \[[`efbba182b5`](`efbba182b5`)] - doc: add entry to changelog about SQLite Session Extension (Bart Louwers) [#56318](https://github.com/nodejs/node/pull/56318) - \[[`31bf9c7dd9`](`31bf9c7dd9`)] - doc: move anatoli to emeritus (Michael Dawson) [#56592](https://github.com/nodejs/node/pull/56592) - \[[`6096e38c7c`](`6096e38c7c`)] - doc: fix styles of the expandable TOC (Antoine du Hamel) [#56755](https://github.com/nodejs/node/pull/56755) - \[[`d423638281`](`d423638281`)] - doc: add "Skip to content" button (Antoine du Hamel) [#56750](https://github.com/nodejs/node/pull/56750) - \[[`edeb157d75`](`edeb157d75`)] - doc: improve accessibility of expandable lists (Antoine du Hamel) [#56749](https://github.com/nodejs/node/pull/56749) - \[[`1a79e87687`](`1a79e87687`)] - doc: add note regarding commit message trailers (Dario Piotrowicz) [#56736](https://github.com/nodejs/node/pull/56736) - \[[`927c7e47e4`](`927c7e47e4`)] - doc: fix typo in example code for util.styleText (Robin Mehner) [#56720](https://github.com/nodejs/node/pull/56720) - \[[`fade522538`](`fade522538`)] - doc: fix inconsistencies in `WeakSet` and `WeakMap` comparison details (Shreyans Pathak) [#56683](https://github.com/nodejs/node/pull/56683) - \[[`55533bf147`](`55533bf147`)] - doc: add RafaelGSS as latest sec release stewards (Rafael Gonzaga) [#56682](https://github.com/nodejs/node/pull/56682) - \[[`8e978bdee1`](`8e978bdee1`)] - doc: clarify cjs/esm diff in `queueMicrotask()` vs `process.nextTick()` (Dario Piotrowicz) [#56659](https://github.com/nodejs/node/pull/56659) - \[[`ae360c30dc`](`ae360c30dc`)] - doc: `WeakSet` and `WeakMap` comparison details (Shreyans Pathak) [#56648](https://github.com/nodejs/node/pull/56648) - \[[`acd2a2fda5`](`acd2a2fda5`)] - doc: mention prepare --security (Rafael Gonzaga) [#56617](https://github.com/nodejs/node/pull/56617) - \[[`d3c0a2831d`](`d3c0a2831d`)] - doc: tweak info on reposts in ambassador program (Michael Dawson) [#56589](https://github.com/nodejs/node/pull/56589) - \[[`3299505b49`](`3299505b49`)] - doc: add type stripping to ambassadors program (Marco Ippolito) [#56598](https://github.com/nodejs/node/pull/56598) - \[[`b1a6ffa4e4`](`b1a6ffa4e4`)] - doc: improve internal documentation on built-in snapshot (Joyee Cheung) [#56505](https://github.com/nodejs/node/pull/56505) - \[[`1641a28930`](`1641a28930`)] - doc: document CLI way to open the nodejs/bluesky PR (Antoine du Hamel) [#56506](https://github.com/nodejs/node/pull/56506) - \[[`2042628fda`](`2042628fda`)] - doc: add section about using npx with permission model (Rafael Gonzaga) [#56539](https://github.com/nodejs/node/pull/56539) - \[[`ace19a0263`](`ace19a0263`)] - doc: update gcc-version for ubuntu-lts (Kunal Kumar) [#56553](https://github.com/nodejs/node/pull/56553) - \[[`4aa57b50f8`](`4aa57b50f8`)] - doc: fix parentheses in options (Tobias Nießen) [#56563](https://github.com/nodejs/node/pull/56563) - \[[`b40b01b4d3`](`b40b01b4d3`)] - doc: include CVE to EOL lines as sec release process (Rafael Gonzaga) [#56520](https://github.com/nodejs/node/pull/56520) - \[[`6701360113`](`6701360113`)] - doc: add esm examples to node:trace_events (Alfredo González) [#56514](https://github.com/nodejs/node/pull/56514) - \[[`d3207cca3e`](`d3207cca3e`)] - doc: add message for Ambassadors to promote (Michael Dawson) [#56235](https://github.com/nodejs/node/pull/56235) - \[[`97ece4ae06`](`97ece4ae06`)] - doc: allow request for TSC reviews via the GitHub UI (Antoine du Hamel) [#56493](https://github.com/nodejs/node/pull/56493) - \[[`03f25055ab`](`03f25055ab`)] - doc: add example for piping ReadableStream (Gabriel Schulhof) [#56415](https://github.com/nodejs/node/pull/56415) - \[[`516d07482c`](`516d07482c`)] - doc: expand description of `parseArg`'s `default` (Kevin Gibbons) [#54431](https://github.com/nodejs/node/pull/54431) - \[[`a6491effcb`](`a6491effcb`)] - doc: use `<ul>` instead of `<ol>` in `SECURITY.md` (Antoine du Hamel) [#56346](https://github.com/nodejs/node/pull/56346) - \[[`e4ec134b21`](`e4ec134b21`)] - doc: clarify that WASM is trusted (Matteo Collina) [#56345](https://github.com/nodejs/node/pull/56345) - \[[`0f7aed8a59`](`0f7aed8a59`)] - doc: fix the `crc32` documentation (Kevin Toshihiro Uehara) [#55898](https://github.com/nodejs/node/pull/55898) - \[[`721104a296`](`721104a296`)] - doc: fix links in `module.md` (Antoine du Hamel) [#56283](https://github.com/nodejs/node/pull/56283) - \[[`928540d792`](`928540d792`)] - doc: fix typos (Nathan Baulch) [#55066](https://github.com/nodejs/node/pull/55066) - \[[`e69d35f03b`](`e69d35f03b`)] - doc: add history info for Permission Model (Antoine du Hamel) [#56707](https://github.com/nodejs/node/pull/56707) - \[[`c6fd867ab5`](`c6fd867ab5`)] - esm: fix jsdoc type refs to `ModuleJobBase` in esm/loader (Jacob Smith) [#56499](https://github.com/nodejs/node/pull/56499) - \[[`9cf9046bd7`](`9cf9046bd7`)] - *Revert* "events: add hasEventListener util for validate" (origranot) [#56282](https://github.com/nodejs/node/pull/56282) - \[[`b7fe54fc88`](`b7fe54fc88`)] - (SEMVER-MINOR) fs: allow `exclude` option in globs to accept glob patterns (Daeyeon Jeong) [#56489](https://github.com/nodejs/node/pull/56489) - \[[`6ca27c2a59`](`6ca27c2a59`)] - http2: omit server name when HTTP2 host is IP address (islandryu) [#56530](https://github.com/nodejs/node/pull/56530) - \[[`9f1fa199bf`](`9f1fa199bf`)] - inspector: roll inspector_protocol (Chengzhong Wu) [#56649](https://github.com/nodejs/node/pull/56649) - \[[`0dae4bb3ab`](`0dae4bb3ab`)] - inspector: add undici http tracking support (Chengzhong Wu) [#56488](https://github.com/nodejs/node/pull/56488) - \[[`2c6124cec4`](`2c6124cec4`)] - inspector: report loadingFinished until the response data is consumed (Chengzhong Wu) [#56372](https://github.com/nodejs/node/pull/56372) - \[[`96ec862ce2`](`96ec862ce2`)] - lib: refactor execution.js (Marco Ippolito) [#56358](https://github.com/nodejs/node/pull/56358) - \[[`3ac92ef607`](`3ac92ef607`)] - (SEMVER-MINOR) lib: add typescript support to STDIN eval (Marco Ippolito) [#56359](https://github.com/nodejs/node/pull/56359) - \[[`d5bf3db0cf`](`d5bf3db0cf`)] - lib: allow skipping source maps in node_modules (Chengzhong Wu) [#56639](https://github.com/nodejs/node/pull/56639) - \[[`d33eaf2bcb`](`d33eaf2bcb`)] - lib: ensure FORCE_COLOR forces color output in non-TTY environments (Pietro Marchini) [#55404](https://github.com/nodejs/node/pull/55404) - \[[`dc003218a8`](`dc003218a8`)] - lib: optimize `prepareStackTrace` on builtin frames (Chengzhong Wu) [#56299](https://github.com/nodejs/node/pull/56299) - \[[`df06524863`](`df06524863`)] - lib: suppress source map lookup exceptions (Chengzhong Wu) [#56299](https://github.com/nodejs/node/pull/56299) - \[[`35335a5a66`](`35335a5a66`)] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) [#56580](https://github.com/nodejs/node/pull/56580) - \[[`1faabdb150`](`1faabdb150`)] - meta: add codeowners of security release document (Rafael Gonzaga) [#56521](https://github.com/nodejs/node/pull/56521) - \[[`b4ece22ef5`](`b4ece22ef5`)] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) [#56342](https://github.com/nodejs/node/pull/56342) - \[[`9ec67e7ce0`](`9ec67e7ce0`)] - meta: move MoLow to TSC regular member (Moshe Atlow) [#56276](https://github.com/nodejs/node/pull/56276) - \[[`bae4b2e20a`](`bae4b2e20a`)] - module: use more defensive code when handling SWC errors (Antoine du Hamel) [#56646](https://github.com/nodejs/node/pull/56646) - \[[`1614e8e7bc`](`1614e8e7bc`)] - (SEMVER-MINOR) module: add ERR_UNSUPPORTED_TYPESCRIPT_SYNTAX (Marco Ippolito) [#56610](https://github.com/nodejs/node/pull/56610) - \[[`174d88eab1`](`174d88eab1`)] - module: support eval with ts syntax detection (Marco Ippolito) [#56285](https://github.com/nodejs/node/pull/56285) - \[[`299d6fa829`](`299d6fa829`)] - module: fix jsdoc for `format` parameter in cjs/loader (pacexy) [#56501](https://github.com/nodejs/node/pull/56501) - \[[`0307e4dd59`](`0307e4dd59`)] - module: unify TypeScript and .mjs handling in CommonJS (Joyee Cheung) [#55590](https://github.com/nodejs/node/pull/55590) - \[[`1f4f9be93d`](`1f4f9be93d`)] - module: fix async resolution error within the sync `findPackageJSON` (Jacob Smith) [#56382](https://github.com/nodejs/node/pull/56382) - \[[`bbedffa0f0`](`bbedffa0f0`)] - module: simplify `findPackageJSON` implementation (Antoine du Hamel) [#55543](https://github.com/nodejs/node/pull/55543) - \[[`6d6cffa9cc`](`6d6cffa9cc`)] - (SEMVER-MINOR) module: add `findPackageJSON` util (Jacob Smith) [#55412](https://github.com/nodejs/node/pull/55412) - \[[`cd7ce18233`](`cd7ce18233`)] - module: fix bad `require.resolve` with option paths for `.` and `..` (Dario Piotrowicz) [#56735](https://github.com/nodejs/node/pull/56735) - \[[`152df4da21`](`152df4da21`)] - module: rethrow amaro error message (Marco Ippolito) [#56568](https://github.com/nodejs/node/pull/56568) - \[[`acba5dc87e`](`acba5dc87e`)] - module: use buffer.toString base64 (Chengzhong Wu) [#56315](https://github.com/nodejs/node/pull/56315) - \[[`01e69be8ff`](`01e69be8ff`)] - node-api: define version 10 (Gabriel Schulhof) [#55676](https://github.com/nodejs/node/pull/55676) - \[[`724524528e`](`724524528e`)] - node-api: remove deprecated attribute from napi_module_register (Vladimir Morozov) [#56162](https://github.com/nodejs/node/pull/56162) - \[[`c78e11064f`](`c78e11064f`)] - process: remove support for undocumented symbol (Antoine du Hamel) [#56552](https://github.com/nodejs/node/pull/56552) - \[[`3f69b18a23`](`3f69b18a23`)] - process: fix symbol key and mark experimental new `node:process` methods (Antoine du Hamel) [#56517](https://github.com/nodejs/node/pull/56517) - \[[`d35333ae18`](`d35333ae18`)] - (SEMVER-MINOR) process: add process.ref() and process.unref() methods (James M Snell) [#56400](https://github.com/nodejs/node/pull/56400) - \[[`fa49f0f7d5`](`fa49f0f7d5`)] - punycode: limit deprecation warning (Colin Ihrig) [#56632](https://github.com/nodejs/node/pull/56632) - \[[`d77c7073b7`](`d77c7073b7`)] - sqlite: disable memstatus APIs at build time (Colin Ihrig) [#56541](https://github.com/nodejs/node/pull/56541) - \[[`07ff3ddcb5`](`07ff3ddcb5`)] - (SEMVER-MINOR) sqlite: support TypedArray and DataView in `StatementSync` (Alex Yang) [#56385](https://github.com/nodejs/node/pull/56385) - \[[`b6c2e91365`](`b6c2e91365`)] - sqlite: enable SQL math functions (Colin Ihrig) [#56447](https://github.com/nodejs/node/pull/56447) - \[[`3462263e8b`](`3462263e8b`)] - sqlite: pass conflict type to conflict resolution handler (Bart Louwers) [#56352](https://github.com/nodejs/node/pull/56352) - \[[`89ba3af743`](`89ba3af743`)] - src: add nullptr handling from X509\_STORE_new() (Burkov Egor) [#56700](https://github.com/nodejs/node/pull/56700) - \[[`89a7c82e0c`](`89a7c82e0c`)] - src: add default value for RSACipherConfig mode field (Burkov Egor) [#56701](https://github.com/nodejs/node/pull/56701) - \[[`7bae51e62e`](`7bae51e62e`)] - src: fix build with GCC 15 (tjuhaszrh) [#56740](https://github.com/nodejs/node/pull/56740) - \[[`432a4b8bd6`](`432a4b8bd6`)] - src: fix to generate path from wchar_t via wstring (yamachu) [#56696](https://github.com/nodejs/node/pull/56696) - \[[`8c9eaf82f0`](`8c9eaf82f0`)] - src: initialize FSReqWrapSync in path that uses it (Michaël Zasso) [#56613](https://github.com/nodejs/node/pull/56613) - \[[`bcdb42d40b`](`bcdb42d40b`)] - src: handle duplicate paths granted (Rafael Gonzaga) [#56591](https://github.com/nodejs/node/pull/56591) - \[[`d6a7acc207`](`d6a7acc207`)] - src: update ECKeyPointer in ncrypto (James M Snell) [#56526](https://github.com/nodejs/node/pull/56526) - \[[`01922f8b1f`](`01922f8b1f`)] - src: update ECPointPointer in ncrypto (James M Snell) [#56526](https://github.com/nodejs/node/pull/56526) - \[[`2a3a36eceb`](`2a3a36eceb`)] - src: update ECGroupPointer in ncrypto (James M Snell) [#56526](https://github.com/nodejs/node/pull/56526) - \[[`67c10cdacb`](`67c10cdacb`)] - src: update ECDASSigPointer implementation in ncrypto (James M Snell) [#56526](https://github.com/nodejs/node/pull/56526) - \[[`17f931c68b`](`17f931c68b`)] - src: cleaning up more crypto internals for ncrypto (James M Snell) [#56526](https://github.com/nodejs/node/pull/56526) - \[[`94d3fe1b62`](`94d3fe1b62`)] - (SEMVER-MINOR) src: add --disable-sigusr1 to prevent signal i/o thread (Rafael Gonzaga) [#56441](https://github.com/nodejs/node/pull/56441) - \[[`6594ee8dff`](`6594ee8dff`)] - src: fix undefined script name in error source (Chengzhong Wu) [#56502](https://github.com/nodejs/node/pull/56502) - \[[`b46bad3e91`](`b46bad3e91`)] - src: refactor --trace-env to reuse option selection and handling (Joyee Cheung) [#56293](https://github.com/nodejs/node/pull/56293) - \[[`76921b822b`](`76921b822b`)] - src: minor cleanups on OneByteString usage (James M Snell) [#56482](https://github.com/nodejs/node/pull/56482) - \[[`3f0d1dd4fe`](`3f0d1dd4fe`)] - src: move more crypto impl detail to ncrypto dep (James M Snell) [#56421](https://github.com/nodejs/node/pull/56421) - \[[`04f623b283`](`04f623b283`)] - src: fixup more ToLocalChecked uses in node_file (James M Snell) [#56484](https://github.com/nodejs/node/pull/56484) - \[[`5aa436f5a1`](`5aa436f5a1`)] - src: make some minor ToLocalChecked cleanups (James M Snell) [#56483](https://github.com/nodejs/node/pull/56483) - \[[`6eec5e7ec2`](`6eec5e7ec2`)] - src: lock the thread properly in snapshot builder (Joyee Cheung) [#56327](https://github.com/nodejs/node/pull/56327) - \[[`5614993968`](`5614993968`)] - src: drain platform tasks before creating startup snapshot (Chengzhong Wu) [#56403](https://github.com/nodejs/node/pull/56403) - \[[`48493e9fd5`](`48493e9fd5`)] - src: use LocalVector in more places (James M Snell) [#56457](https://github.com/nodejs/node/pull/56457) - \[[`7e5ea0681e`](`7e5ea0681e`)] - src: use v8::LocalVector consistently with other minor cleanups (James M Snell) [#56417](https://github.com/nodejs/node/pull/56417) - \[[`ad3d857f2b`](`ad3d857f2b`)] - src: use starts_with in fs_permission.cc (ishabi) [#55811](https://github.com/nodejs/node/pull/55811) - \[[`5afffb4415`](`5afffb4415`)] - (SEMVER-MINOR) src,worker: add isInternalWorker (Carlos Espa) [#56469](https://github.com/nodejs/node/pull/56469) - \[[`7d1676e72e`](`7d1676e72e`)] - stream: fix typo in ReadableStreamBYOBReader.readIntoRequests (Mattias Buelens) [#56560](https://github.com/nodejs/node/pull/56560) - \[[`e658ea6b26`](`e658ea6b26`)] - stream: validate undefined sizeAlgorithm in WritableStream (Jason Zhang) [#56067](https://github.com/nodejs/node/pull/56067) - \[[`e4f133c20c`](`e4f133c20c`)] - test: add ts eval snapshots (Marco Ippolito) [#56358](https://github.com/nodejs/node/pull/56358) - \[[`f041742400`](`f041742400`)] - test: remove empty lines from snapshots (Marco Ippolito) [#56358](https://github.com/nodejs/node/pull/56358) - \[[`801cde91f6`](`801cde91f6`)] - test: reduce number of written chunks (Luigi Pinca) [#56757](https://github.com/nodejs/node/pull/56757) - \[[`6fdf1879ab`](`6fdf1879ab`)] - test: fix invalid common.mustSucceed() usage (Luigi Pinca) [#56756](https://github.com/nodejs/node/pull/56756) - \[[`d2bfbfa364`](`d2bfbfa364`)] - test: use strict mode in global setters test (Rich Trott) [#56742](https://github.com/nodejs/node/pull/56742) - \[[`5c030da42f`](`5c030da42f`)] - test: cleanup and simplify test-crypto-aes-wrap (James M Snell) [#56748](https://github.com/nodejs/node/pull/56748) - \[[`f1442d6eaf`](`f1442d6eaf`)] - test: do not use common.isMainThread (Luigi Pinca) [#56768](https://github.com/nodejs/node/pull/56768) - \[[`49405bd9e7`](`49405bd9e7`)] - test: make some requires lazy in common/index (James M Snell) [#56715](https://github.com/nodejs/node/pull/56715) - \[[`52ef376788`](`52ef376788`)] - test: add test that uses multibyte for path and resolves modules (yamachu) [#56696](https://github.com/nodejs/node/pull/56696) - \[[`b811dea85a`](`b811dea85a`)] - test: replace more uses of `global` with `globalThis` (James M Snell) [#56712](https://github.com/nodejs/node/pull/56712) - \[[`eb97076199`](`eb97076199`)] - test: make common/index slightly less node.js specific (James M Snell) [#56712](https://github.com/nodejs/node/pull/56712) - \[[`1795202d19`](`1795202d19`)] - test: rely less on duplicative common test harness utilities (James M Snell) [#56712](https://github.com/nodejs/node/pull/56712) - \[[`5be29a274e`](`5be29a274e`)] - test: simplify common/index.js (James M Snell) [#56712](https://github.com/nodejs/node/pull/56712) - \[[`92e99780f0`](`92e99780f0`)] - test: move hasMultiLocalhost to common/net (James M Snell) [#56716](https://github.com/nodejs/node/pull/56716) - \[[`1c3204a4cc`](`1c3204a4cc`)] - test: move crypto related common utilities in common/crypto (James M Snell) [#56714](https://github.com/nodejs/node/pull/56714) - \[[`fe79d63be0`](`fe79d63be0`)] - test: add missing test for env file (Jonas) [#56642](https://github.com/nodejs/node/pull/56642) - \[[`e08af61537`](`e08af61537`)] - test: enforce strict mode in test-zlib-const (Rich Trott) [#56689](https://github.com/nodejs/node/pull/56689) - \[[`c96792d7f8`](`c96792d7f8`)] - test: fix localization data for ICU 74.2 (Antoine du Hamel) [#56661](https://github.com/nodejs/node/pull/56661) - \[[`48b72f1195`](`48b72f1195`)] - test: use --permission instead of --experimental-permission (Rafael Gonzaga) [#56685](https://github.com/nodejs/node/pull/56685) - \[[`de81d90fce`](`de81d90fce`)] - test: test-stream-compose.js doesn't need internals (Meghan Denny) [#56619](https://github.com/nodejs/node/pull/56619) - \[[`f5b8499ad0`](`f5b8499ad0`)] - test: add maxCount and gcOptions to gcUntil() (Joyee Cheung) [#56522](https://github.com/nodejs/node/pull/56522) - \[[`d9e5a81041`](`d9e5a81041`)] - test: add line break at end of file (Rafael Gonzaga) [#56588](https://github.com/nodejs/node/pull/56588) - \[[`59be346fbf`](`59be346fbf`)] - test: mark test-worker-prof as flaky on smartos (Joyee Cheung) [#56583](https://github.com/nodejs/node/pull/56583) - \[[`12a2cae9e5`](`12a2cae9e5`)] - test: update test-child-process-bad-stdio to use node:test (Colin Ihrig) [#56562](https://github.com/nodejs/node/pull/56562) - \[[`2dc4a30e19`](`2dc4a30e19`)] - test: disable openssl 3.4.0 incompatible tests (Jelle van der Waa) [#56160](https://github.com/nodejs/node/pull/56160) - \[[`1950fbf51d`](`1950fbf51d`)] - test: make test-crypto-hash compatible with OpenSSL > 3.4.0 (Jelle van der Waa) [#56160](https://github.com/nodejs/node/pull/56160) - \[[`a533420a91`](`a533420a91`)] - test: clarify fork inherit permission flags (Rafael Gonzaga) [#56523](https://github.com/nodejs/node/pull/56523) - \[[`697e799dc1`](`697e799dc1`)] - test: add error only reporter for node:test (Carlos Espa) [#56438](https://github.com/nodejs/node/pull/56438) - \[[`4844fa212d`](`4844fa212d`)] - test: mark test-http-server-request-timeouts-mixed as flaky (Joyee Cheung) [#56503](https://github.com/nodejs/node/pull/56503) - \[[`843c2389b9`](`843c2389b9`)] - test: update error code in tls-psk-circuit for for OpenSSL 3.4 (sebastianas) [#56420](https://github.com/nodejs/node/pull/56420) - \[[`ccb2ddbd83`](`ccb2ddbd83`)] - test: update compiled sqlite tests to match other tests (Colin Ihrig) [#56446](https://github.com/nodejs/node/pull/56446) - \[[`b40f50324d`](`b40f50324d`)] - test: add initial test426 coverage (Chengzhong Wu) [#56436](https://github.com/nodejs/node/pull/56436) - \[[`059f81e4fd`](`059f81e4fd`)] - test: update test-set-http-max-http-headers to use node:test (Colin Ihrig) [#56439](https://github.com/nodejs/node/pull/56439) - \[[`ec2940b418`](`ec2940b418`)] - test: update test-child-process-windows-hide to use node:test (Colin Ihrig) [#56437](https://github.com/nodejs/node/pull/56437) - \[[`0362924880`](`0362924880`)] - test: use unusual chars in the path to ensure our tests are robust (Antoine du Hamel) [#48409](https://github.com/nodejs/node/pull/48409) - \[[`b6c3869910`](`b6c3869910`)] - test: improve abort signal dropping test (Edy Silva) [#56339](https://github.com/nodejs/node/pull/56339) - \[[`cc648ef923`](`cc648ef923`)] - test: enable ts test on win arm64 (Marco Ippolito) [#56349](https://github.com/nodejs/node/pull/56349) - \[[`68819b4997`](`68819b4997`)] - test: deflake test-watch-file-shared-dependency (Luigi Pinca) [#56344](https://github.com/nodejs/node/pull/56344) - \[[`ca6ed2190c`](`ca6ed2190c`)] - test: skip `test-sqlite-extensions` when SQLite is not built by us (Antoine du Hamel) [#56341](https://github.com/nodejs/node/pull/56341) - \[[`8ffeb8b58c`](`8ffeb8b58c`)] - test: increase spin for eventloop test on s390 (Michael Dawson) [#56228](https://github.com/nodejs/node/pull/56228) - \[[`6ae9950f08`](`6ae9950f08`)] - test: migrate message eval tests from Python to JS (Yiyun Lei) [#50482](https://github.com/nodejs/node/pull/50482) - \[[`4352bf69e9`](`4352bf69e9`)] - test: check typescript loader (Marco Ippolito) [#54657](https://github.com/nodejs/node/pull/54657) - \[[`406e7db9c3`](`406e7db9c3`)] - test: remove async-hooks/test-writewrap flaky designation (Luigi Pinca) [#56048](https://github.com/nodejs/node/pull/56048) - \[[`fa56ab2bba`](`fa56ab2bba`)] - test: deflake test-esm-loader-hooks-inspect-brk (Luigi Pinca) [#56050](https://github.com/nodejs/node/pull/56050) - \[[`8e149aac99`](`8e149aac99`)] - test: add test case for listeners (origranot) [#56282](https://github.com/nodejs/node/pull/56282) - \[[`a3f5ef22cd`](`a3f5ef22cd`)] - test: make `test-permission-sqlite-load-extension` more robust (Antoine du Hamel) [#56295](https://github.com/nodejs/node/pull/56295) - \[[`8cbb7cc838`](`8cbb7cc838`)] - test_runner: print failing assertion only once with spec reporter (Pietro Marchini) [#56662](https://github.com/nodejs/node/pull/56662) - \[[`1f426bad9a`](`1f426bad9a`)] - test_runner: remove unused errors (Pietro Marchini) [#56607](https://github.com/nodejs/node/pull/56607) - \[[`697a851fb3`](`697a851fb3`)] - (SEMVER-MINOR) test_runner: add TestContext.prototype.waitFor() (Colin Ihrig) [#56595](https://github.com/nodejs/node/pull/56595) - \[[`047537b48c`](`047537b48c`)] - (SEMVER-MINOR) test_runner: add t.assert.fileSnapshot() (Colin Ihrig) [#56459](https://github.com/nodejs/node/pull/56459) - \[[`19b4aa4b14`](`19b4aa4b14`)] - test_runner: run single test file benchmark (Pietro Marchini) [#56479](https://github.com/nodejs/node/pull/56479) - \[[`926cf84e95`](`926cf84e95`)] - (SEMVER-MINOR) test_runner: add assert.register() API (Colin Ihrig) [#56434](https://github.com/nodejs/node/pull/56434) - \[[`fb4661a4cf`](`fb4661a4cf`)] - test_runner: finish marking snapshot testing as stable (Colin Ihrig) [#56425](https://github.com/nodejs/node/pull/56425) - \[[`900c6c3940`](`900c6c3940`)] - tls: fix error stack conversion in cryptoErrorListToException() (Joyee Cheung) [#56554](https://github.com/nodejs/node/pull/56554) - \[[`e9f185b658`](`e9f185b658`)] - tools: update doc to new version (Node.js GitHub Bot) [#56259](https://github.com/nodejs/node/pull/56259) - \[[`7644c7e619`](`7644c7e619`)] - tools: update inspector_protocol roller (Chengzhong Wu) [#56649](https://github.com/nodejs/node/pull/56649) - \[[`362272b0a4`](`362272b0a4`)] - tools: do not throw on missing `create-release-proposal.sh` (Antoine du Hamel) [#56704](https://github.com/nodejs/node/pull/56704) - \[[`df8b835953`](`df8b835953`)] - tools: fix tools-deps-update (Daniel Lemire) [#56684](https://github.com/nodejs/node/pull/56684) - \[[`feba5d3274`](`feba5d3274`)] - tools: do not throw on missing `create-release-proposal.sh` (Antoine du Hamel) [#56695](https://github.com/nodejs/node/pull/56695) - \[[`9827f7d395`](`9827f7d395`)] - tools: fix permissions in `lint-release-proposal` workflow (Antoine du Hamel) [#56614](https://github.com/nodejs/node/pull/56614) - \[[`14c562c0dc`](`14c562c0dc`)] - tools: remove github reporter (Carlos Espa) [#56468](https://github.com/nodejs/node/pull/56468) - \[[`ed1785d0ae`](`ed1785d0ae`)] - tools: edit `create-release-proposal` workflow (Antoine du Hamel) [#56540](https://github.com/nodejs/node/pull/56540) - \[[`294e4c42f5`](`294e4c42f5`)] - tools: validate commit list as part of `lint-release-commit` (Antoine du Hamel) [#56291](https://github.com/nodejs/node/pull/56291) - \[[`98d3474267`](`98d3474267`)] - tools: fix loong64 build failed (Xiao-Tao) [#56466](https://github.com/nodejs/node/pull/56466) - \[[`3e729ceec8`](`3e729ceec8`)] - tools: disable unneeded rule ignoring in Python linting (Rich Trott) [#56429](https://github.com/nodejs/node/pull/56429) - \[[`d5c05328e2`](`d5c05328e2`)] - tools: use a configurable value for number of open dependabot PRs (Antoine du Hamel) [#56427](https://github.com/nodejs/node/pull/56427) - \[[`1705cbe002`](`1705cbe002`)] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot\[bot]) [#56426](https://github.com/nodejs/node/pull/56426) - \[[`53b29b0469`](`53b29b0469`)] - tools: fix `require-common-first` lint rule from subfolder (Antoine du Hamel) [#56325](https://github.com/nodejs/node/pull/56325) - \[[`105c4ed4fb`](`105c4ed4fb`)] - tools: add release line label when opening release proposal (Antoine du Hamel) [#56317](https://github.com/nodejs/node/pull/56317) - \[[`30f61f4aa5`](`30f61f4aa5`)] - url: use resolved path to convert UNC paths to URL (Antoine du Hamel) [#56302](https://github.com/nodejs/node/pull/56302) - \[[`a0aef4dfb6`](`a0aef4dfb6`)] - util: inspect: do not crash on an Error stack that contains a Symbol (Jordan Harband) [#56573](https://github.com/nodejs/node/pull/56573) - \[[`a8a060341f`](`a8a060341f`)] - util: inspect: do not crash on an Error with a regex `name` (Jordan Harband) [#56574](https://github.com/nodejs/node/pull/56574) - \[[`ea66bf3553`](`ea66bf3553`)] - util: rename CallSite.column to columnNumber (Chengzhong Wu) [#56584](https://github.com/nodejs/node/pull/56584) - \[[`9cdc3b373c`](`9cdc3b373c`)] - util: do not crash on inspecting function with `Symbol` name (Jordan Harband) [#56572](https://github.com/nodejs/node/pull/56572) - \[[`0bfbb68569`](`0bfbb68569`)] - util: expose CallSite.scriptId (Chengzhong Wu) [#56551](https://github.com/nodejs/node/pull/56551) - \[[`5dd7116e09`](`5dd7116e09`)] - watch: reload env file for --env-file-if-exists (Jonas) [#56643](https://github.com/nodejs/node/pull/56643) - \[[`c658a8afdf`](`c658a8afdf`)] - (SEMVER-MINOR) worker: add eval ts input (Marco Ippolito) [#56394](https://github.com/nodejs/node/pull/56394) - \[[`2e5d038f48`](`2e5d038f48`)] - worker: refactor stdio to improve performance (Matteo Collina) [#56630](https://github.com/nodejs/node/pull/56630) - \[[`f959805d01`](`f959805d01`)] - worker: flush stdout and stderr on exit (Matteo Collina) [#56428](https://github.com/nodejs/node/pull/56428) ### [`v22.13.1`](https://github.com/nodejs/node/releases/tag/v22.13.1): 2025-01-21, Version 22.13.1 'Jod' (LTS), @RafaelGSS [Compare Source](https://github.com/nodejs/node/compare/v22.13.0...v22.13.1) This is a security release. ##### Notable Changes - CVE-2025-23083 - src,loader,permission: throw on InternalWorker use when permission model is enabled (High) - CVE-2025-23085 - src: fix HTTP2 mem leak on premature close and ERR_PROTO (Medium) - CVE-2025-23084 - path: fix path traversal in normalize() on Windows (Medium) Dependency update: - CVE-2025-22150 - Use of Insufficiently Random Values in undici fetch() (Medium) ##### Commits - \[[`520da342e0`](`520da342e0`)] - (CVE-2025-22150) deps: update undici to v6.21.1 (Matteo Collina) [nodejs-private/node-private#662](https://github.com/nodejs-private/node-private/pull/662) - \[[`99f217369f`](`99f217369f`)] - (CVE-2025-23084) path: fix path traversal in normalize() on Windows (Tobias Nießen) [nodejs-private/node-private#555](https://github.com/nodejs-private/node-private/pull/555) - \[[`984f735e35`](`984f735e35`)] - (CVE-2025-23085) src: fix HTTP2 mem leak on premature close and ERR_PROTO (RafaelGSS) [nodejs-private/node-private#650](https://github.com/nodejs-private/node-private/pull/650) - \[[`2446870618`](`2446870618`)] - (CVE-2025-23083) src,loader,permission: throw on InternalWorker use (RafaelGSS) [nodejs-private/node-private#651](https://github.com/nodejs-private/node-private/pull/651) ### [`v22.13.0`](https://github.com/nodejs/node/releases/tag/v22.13.0): 2025-01-07, Version 22.13.0 'Jod' (LTS), @ruyadorno [Compare Source](https://github.com/nodejs/node/compare/v22.12.0...v22.13.0) ##### Notable Changes ##### Stabilize Permission Model Upgrades the Permission Model status from Active Development to Stable. Contributed by Rafael Gonzaga [#56201](https://github.com/nodejs/node/pull/56201) ##### Graduate WebCryptoAPI [`Ed25519`](https://github.com/nodejs/node/commit/Ed25519) and X25519 algorithms as stable Following the merge of Curve25519 into the [Web Cryptography API Editor's Draft](https://w3c.github.io/webcrypto/) the `Ed25519` and `X25519` algorithm identifiers are now stable and will no longer emit an ExperimentalWarning upon use. Contributed by (Filip Skokan) [#56142](https://github.com/nodejs/node/pull/56142) ##### Other Notable Changes - \[[`05d6227a88`](`05d6227a88`)] - (SEMVER-MINOR) assert: add partialDeepStrictEqual (Giovanni Bucci) [#54630](https://github.com/nodejs/node/pull/54630) - \[[`a933103499`](`a933103499`)] - (SEMVER-MINOR) cli: implement --trace-env and --trace-env-\[js\|native]-stack (Joyee Cheung) [#55604](https://github.com/nodejs/node/pull/55604) - \[[`ba9d5397de`](`ba9d5397de`)] - (SEMVER-MINOR) dgram: support blocklist in udp (theanarkh) [#56087](https://github.com/nodejs/node/pull/56087) - \[[`f6d0c01303`](`f6d0c01303`)] - doc: stabilize util.styleText (Rafael Gonzaga) [#56265](https://github.com/nodejs/node/pull/56265) - \[[`34c68827af`](`34c68827af`)] - doc: move typescript support to active development (Marco Ippolito) [#55536](https://github.com/nodejs/node/pull/55536) - \[[`dd14b80350`](`dd14b80350`)] - doc: add LJHarb to collaborators (Jordan Harband) [#56132](https://github.com/nodejs/node/pull/56132) - \[[`5263086169`](`5263086169`)] - (SEMVER-MINOR) doc: add report version and history section (Chengzhong Wu) [#56130](https://github.com/nodejs/node/pull/56130) - \[[`8cb3c2018d`](`8cb3c2018d`)] - (SEMVER-MINOR) doc: sort --report-exclude alphabetically (Rafael Gonzaga) [#55788](https://github.com/nodejs/node/pull/55788) - \[[`55239a48b6`](`55239a48b6`)] - (SEMVER-MINOR) doc,lib,src,test: unflag sqlite module (Colin Ihrig) [#55890](https://github.com/nodejs/node/pull/55890) - \[[`7cbe3de1d8`](`7cbe3de1d8`)] - (SEMVER-MINOR) module: only emit require(esm) warning under --trace-require-module (Joyee Cheung) [#56194](https://github.com/nodejs/node/pull/56194) - \[[`6575b76042`](`6575b76042`)] - (SEMVER-MINOR) module: add module.stripTypeScriptTypes (Marco Ippolito) [#55282](https://github.com/nodejs/node/pull/55282) - \[[`bacfe6d5c9`](`bacfe6d5c9`)] - (SEMVER-MINOR) net: support blocklist in net.connect (theanarkh) [#56075](https://github.com/nodejs/node/pull/56075) - \[[`b47888d390`](`b47888d390`)] - (SEMVER-MINOR) net: support blocklist for net.Server (theanarkh) [#56079](https://github.com/nodejs/node/pull/56079) - \[[`566f0a1d25`](`566f0a1d25`)] - (SEMVER-MINOR) net: add SocketAddress.parse (James M Snell) [#56076](https://github.com/nodejs/node/pull/56076) - \[[`ed7eab1421`](`ed7eab1421`)] - (SEMVER-MINOR) net: add net.BlockList.isBlockList(value) (James M Snell) [#56078](https://github.com/nodejs/node/pull/56078) - \[[`ea4891856d`](`ea4891856d`)] - (SEMVER-MINOR) process: deprecate `features.{ipv6,uv}` and `features.tls_` (René) [#55545](https://github.com/nodejs/node/pull/55545) - \[[`01eb308f26`](`01eb308f26`)] - (SEMVER-MINOR)* report: fix typos in report keys and bump the version (Yuan-Ming Hsu) [#56068](https://github.com/nodejs/node/pull/56068) - \[[`97c38352d0`](`97c38352d0`)] - (SEMVER-MINOR) sqlite: aggregate constants in a single property (Edigleysson Silva (Edy)) [#56213](https://github.com/nodejs/node/pull/56213) - \[[`b4041e554a`](`b4041e554a`)] - (SEMVER-MINOR) sqlite: add `StatementSync.prototype.iterate` method (tpoisseau) [#54213](https://github.com/nodejs/node/pull/54213) - \[[`2e3ca1bbdd`](`2e3ca1bbdd`)] - (SEMVER-MINOR) src: add cli option to preserve env vars on diagnostic reports (Rafael Gonzaga) [#55697](https://github.com/nodejs/node/pull/55697) - \[[`bcfe9c80fc`](`bcfe9c80fc`)] - (SEMVER-MINOR) util: add sourcemap support to getCallSites (Marco Ippolito) [#55589](https://github.com/nodejs/node/pull/55589) ##### Commits - \[[`e9024779c0`](`e9024779c0`)] - assert: make Maps be partially compared in partialDeepStrictEqual (Giovanni Bucci) [#56195](https://github.com/nodejs/node/pull/56195) - \[[`4c13d8e587`](`4c13d8e587`)] - assert: make partialDeepStrictEqual work with ArrayBuffers (Giovanni Bucci) [#56098](https://github.com/nodejs/node/pull/56098) - \[[`a4fa31a86e`](`a4fa31a86e`)] - assert: optimize partial comparison of two `Set`s (Antoine du Hamel) [#55970](https://github.com/nodejs/node/pull/55970) - \[[`05d6227a88`](`05d6227a88`)] - (SEMVER-MINOR) assert: add partialDeepStrictEqual (Giovanni Bucci) [#54630](https://github.com/nodejs/node/pull/54630) - \[[`5e1321abd7`](`5e1321abd7`)] - buffer: document concat zero-fill (Duncan) [#55562](https://github.com/nodejs/node/pull/55562) - \[[`be5ba7c648`](`be5ba7c648`)] - build: set DESTCPU correctly for 'make binary' on loongarch64 (吴小白) [#56271](https://github.com/nodejs/node/pull/56271) - \[[`38cf37ee2d`](`38cf37ee2d`)] - build: fix missing fp16 dependency in d8 builds (Joyee Cheung) [#56266](https://github.com/nodejs/node/pull/56266) - \[[`dbb7557455`](`dbb7557455`)] - build: add major release action (Rafael Gonzaga) [#56199](https://github.com/nodejs/node/pull/56199) - \[[`27cc90f3be`](`27cc90f3be`)] - build: fix C string encoding for `PRODUCT_DIR_ABS` (Anna Henningsen) [#56111](https://github.com/nodejs/node/pull/56111) - \[[`376561c2b4`](`376561c2b4`)] - build: use variable for simdutf path (Shelley Vohr) [#56196](https://github.com/nodejs/node/pull/56196) - \[[`126ae15000`](`126ae15000`)] - build: allow overriding clang usage (Shelley Vohr) [#56016](https://github.com/nodejs/node/pull/56016) - \[[`97bb8f7c76`](`97bb8f7c76`)] - build: remove defaults for create-release-proposal (Rafael Gonzaga) [#56042](https://github.com/nodejs/node/pull/56042) - \[[`a8fb1a06f3`](`a8fb1a06f3`)] - build: set node_arch to target_cpu in GN (Shelley Vohr) [#55967](https://github.com/nodejs/node/pull/55967) - \[[`9f48ca27f1`](`9f48ca27f1`)] - build: use variable for crypto dep path (Shelley Vohr) [#55928](https://github.com/nodejs/node/pull/55928) - \[[`e47ccd2287`](`e47ccd2287`)] - build: fix GN build for sqlite (Cheng) [#55912](https://github.com/nodejs/node/pull/55912) - \[[`8d70b99a5a`](`8d70b99a5a`)] - build: compile bundled simdutf conditionally (Jakub Jirutka) [#55886](https://github.com/nodejs/node/pull/55886) - \[[`826fd35242`](`826fd35242`)] - build: compile bundled simdjson conditionally (Jakub Jirutka) [#55886](https://github.com/nodejs/node/pull/55886) - \[[`1015b22085`](`1015b22085`)] - build: compile bundled ada conditionally (Jakub Jirutka) [#55886](https://github.com/nodejs/node/pull/55886) - \[[`77e2869ca6`](`77e2869ca6`)] - build: use glob for dependencies of out/Makefile (Richard Lau) [#55789](https://github.com/nodejs/node/pull/55789) - \[[`a933103499`](`a933103499`)] - (SEMVER-MINOR) cli: implement --trace-env and --trace-env-\[js\|native]-stack (Joyee Cheung) [#55604](https://github.com/nodejs/node/pull/55604) - \[[`72e8e0684e`](`72e8e0684e`)] - crypto: graduate WebCryptoAPI [`Ed25519`](https://github.com/nodejs/node/commit/Ed25519) and X25519 algorithms as stable (Filip Skokan) [#56142](https://github.com/nodejs/node/pull/56142) - \[[`fe2b344ddb`](`fe2b344ddb`)] - crypto: ensure CryptoKey usages and algorithm are cached objects (Filip Skokan) [#56108](https://github.com/nodejs/node/pull/56108) - \[[`9ee9f524a7`](`9ee9f524a7`)] - crypto: allow non-multiple of 8 in SubtleCrypto.deriveBits (Filip Skokan) [#55296](https://github.com/nodejs/node/pull/55296) - \[[`76f242d993`](`76f242d993`)] - deps: update nghttp3 to 1.6.0 (Node.js GitHub Bot) [#56258](https://github.com/nodejs/node/pull/56258) - \[[`c7ff2ea6b5`](`c7ff2ea6b5`)] - deps: update simdutf to 5.6.4 (Node.js GitHub Bot) [#56255](https://github.com/nodejs/node/pull/56255) - \[[`04230be1ef`](`04230be1ef`)] - deps: update libuv to 1.49.2 (Luigi Pinca) [#56224](https://github.com/nodejs/node/pull/56224) - \[[`88589b85b7`](`88589b85b7`)] - deps: update c-ares to v1.34.4 (Node.js GitHub Bot) [#56256](https://github.com/nodejs/node/pull/56256) - \[[`5c2e0618f3`](`5c2e0618f3`)] - deps: define V8\_PRESERVE_MOST as no-op on Windows (Stefan Stojanovic) [#56238](https://github.com/nodejs/node/pull/56238) - \[[`9f8f3c9658`](`9f8f3c9658`)] - deps: update sqlite to 3.47.2 (Node.js GitHub Bot) [#56178](https://github.com/nodejs/node/pull/56178) - \[[`17b6931d3b`](`17b6931d3b`)] - deps: update ngtcp2 to 1.9.1 (Node.js GitHub Bot) [#56095](https://github.com/nodejs/node/pull/56095) - \[[`22b453b619`](`22b453b619`)] - deps: upgrade npm to 10.9.2 (npm team) [#56135](https://github.com/nodejs/node/pull/56135) - \[[`d7eb41b382`](`d7eb41b382`)] - deps: update sqlite to 3.47.1 (Node.js GitHub Bot) [#56094](https://github.com/nodejs/node/pull/56094) - \[[`669c722aa9`](`669c722aa9`)] - deps: update zlib to 1.3.0.1-motley-82a5fec (Node.js GitHub Bot) [#55980](https://github.com/nodejs/node/pull/55980) - \[[`f61a0454d2`](`f61a0454d2`)] - deps: update corepack to 0.30.0 (Node.js GitHub Bot) [#55977](https://github.com/nodejs/node/pull/55977) - \[[`d98bf0b891`](`d98bf0b891`)] - deps: update ngtcp2 to 1.9.0 (Node.js GitHub Bot) [#55975](https://github.com/nodejs/node/pull/55975) - \[[`fc362624bf`](`fc362624bf`)] - deps: update simdutf to 5.6.3 (Node.js GitHub Bot) [#55973](https://github.com/nodejs/node/pull/55973) - \[[`f61dcc4df4`](`f61dcc4df4`)] - deps: upgrade npm to 10.9.1 (npm team) [#55951](https://github.com/nodejs/node/pull/55951) - \[[`bfe7982491`](`bfe7982491`)] - deps: update zlib to 1.3.0.1-motley-7e2e4d7 (Node.js GitHub Bot) [#54432](https://github.com/nodejs/node/pull/54432) - \[[`d714367ef8`](`d714367ef8`)] - deps: update simdjson to 3.10.1 (Node.js GitHub Bot) [#54678](https://github.com/nodejs/node/pull/54678) - \[[`ccc9b105ec`](`ccc9b105ec`)] - deps: update simdutf to 5.6.2 (Node.js GitHub Bot) [#55889](https://github.com/nodejs/node/pull/55889) - \[[`ba9d5397de`](`ba9d5397de`)] - (SEMVER-MINOR) dgram: support blocklist in udp (theanarkh) [#56087](https://github.com/nodejs/node/pull/56087) - \[[`7ddbf94849`](`7ddbf94849`)] - dgram: check udp buffer size to avoid fd leak (theanarkh) [#56084](https://github.com/nodejs/node/pull/56084) - \[[`360d68de0f`](`360d68de0f`)] - doc: fix color contrast issue in light mode (Rich Trott) [#56272](https://github.com/nodejs/node/pull/56272) - \[[`f6d0c01303`](`f6d0c01303`)] - doc: stabilize util.styleText (Rafael Gonzaga) [#56265](https://github.com/nodejs/node/pull/56265) - \[[`9436c3c949`](`9436c3c949`)] - doc: clarify util.aborted resource usage (Kunal Kumar) [#55780](https://github.com/nodejs/node/pull/55780) - \[[`b1cec2cef9`](`b1cec2cef9`)] - doc: add esm examples to node:repl (Alfredo González) [#55432](https://github.com/nodejs/node/pull/55432) - \[[`d6a84cf781`](`d6a84cf781`)] - doc: add esm examples to node:readline (Alfredo González) [#55335](https://github.com/nodejs/node/pull/55335) - \[[`a11ac1c0f2`](`a11ac1c0f2`)] - doc: fix 'which' to 'that' and add commas (Selveter Senitro) [#56216](https://github.com/nodejs/node/pull/56216) - \[[`5331df7911`](`5331df7911`)] - doc: fix winget config path (Alex Yang) [#56233](https://github.com/nodejs/node/pull/56233) - \[[`7a8071b43c`](`7a8071b43c`)] - doc: add esm examples to node:tls (Alfredo González) [#56229](https://github.com/nodejs/node/pull/56229) - \[[`7d8c1e72d5`](`7d8c1e72d5`)] - doc: add esm examples to node:perf_hooks (Alfredo González) [#55257](https://github.com/nodejs/node/pull/55257) - \[[`ea53c4b1ae`](`ea53c4b1ae`)] - doc: `sea.getRawAsset(key)` always returns an ArrayBuffer (沈鸿飞) [#56206](https://github.com/nodejs/node/pull/56206) - \[[`7a94100a3e`](`7a94100a3e`)] - doc: update announce documentation for releases (Rafael Gonzaga) [#56200](https://github.com/nodejs/node/pull/56200) - \[[`44c4e57e32`](`44c4e57e32`)] - doc: update blog link to /vulnerability (Rafael Gonzaga) [#56198](https://github.com/nodejs/node/pull/56198) - \[[`5e5b4b0cbd`](`5e5b4b0cbd`)] - doc: call out import.meta is only supported in ES modules (Anton Kastritskii) [#56186](https://github.com/nodejs/node/pull/56186) - \[[`a83de32d35`](`a83de32d35`)] - doc: add ambassador message - benefits of Node.js (Michael Dawson) [#56085](https://github.com/nodejs/node/pull/56085) - \[[`bb880dd21a`](`bb880dd21a`)] - doc: fix incorrect link to style guide (Yuan-Ming Hsu) [#56181](https://github.com/nodejs/node/pull/56181) - \[[`39ce902e58`](`39ce902e58`)] - doc: fix c++ addon hello world sample (Edigleysson Silva (Edy)) [#56172](https://github.com/nodejs/node/pull/56172) - \[[`19c72c4acc`](`19c72c4acc`)] - doc: update blog release-post link (Ruy Adorno) [#56123](https://github.com/nodejs/node/pull/56123) - \[[`b667cc4669`](`b667cc4669`)] - doc: fix module.md headings (Chengzhong Wu) [#56131](https://github.com/nodejs/node/pull/56131) - \[[`34c68827af`](`34c68827af`)] - doc: move typescript support to active development (Marco Ippolito) [#55536](https://github.com/nodejs/node/pull/55536) - \[[`c4a97d810b`](`c4a97d810b`)] - doc: mention `-a` flag for the release script (Ruy Adorno) [#56124](https://github.com/nodejs/node/pull/56124) - \[[`dd14b80350`](`dd14b80350`)] - doc: add LJHarb to collaborators (Jordan Harband) [#56132](https://github.com/nodejs/node/pull/56132) - \[[`2feb0781ed`](`2feb0781ed`)] - doc: add create-release-action to process (Rafael Gonzaga) [#55993](https://github.com/nodejs/node/pull/55993) - \[[`71f6263942`](`71f6263942`)] - doc: rename file to advocacy-ambassador-program.md (Tobias Nießen) [#56046](https://github.com/nodejs/node/pull/56046) - \[[`8efa240500`](`8efa240500`)] - doc: remove unused import from sample code (Blended Bram) [#55570](https://github.com/nodejs/node/pull/55570) - \[[`e64cef8bf4`](`e64cef8bf4`)] - doc: add FAQ to releases section (Rafael Gonzaga) [#55992](https://github.com/nodejs/node/pull/55992) - \[[`4bb0f30f92`](`4bb0f30f92`)] - doc: move history entry to class description (Luigi Pinca) [#55991](https://github.com/nodejs/node/pull/55991) - \[[`6d02bd6873`](`6d02bd6873`)] - doc: add history entry for textEncoder.encodeInto() (Luigi Pinca) [#55990](https://github.com/nodejs/node/pull/55990) - \[[`e239382ed8`](`e239382ed8`)] - doc: improve GN build documentation a bit (Shelley Vohr) [#55968](https://github.com/nodejs/node/pull/55968) - \[[`78b6aef6bc`](htt Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7545 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-15 08:36:10 +00:00
Earl Warren	1b11ca6f36	fix: match PackageBlob.HashBlake2b definition and migration (#7543 ) If not a migration will show a warning: `[W] Table public.package_blob column hash_blake2b db type is VARCHAR(255), struct type is CHAR(128)` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7543 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-15 07:05:21 +00:00
tacaly	6d703bb6e3	fix(UI): i18n: improve naming (#7539 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). - [x] I will test the UI with a screenshot. And attach it in a comment when test has passed. ### Documentation - [x] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. https://codeberg.org/forgejo/docs/pulls/1145 - [ ] I did not document these changes and I do not expect someone else to do it. ### Release notes - [x] I do not want this change to show in the release notes. - [ ] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. ### Reason for the PR? The reason is to correct the naming of the lang in the UI. It was discussed in the matrix chat and requested by @0ko. https://matrix.to/#/!UJgSZwuZLRYXEOyjPb:matrix.org/$TbMlNm9L1P9gHFwJYZ3vTIPBKtUHyaoQVEDdzfTQIxI?via=matrix.org&via=envs.net&via=mozilla.org Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7539 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-committed-by: tacaly <frederick@tacaly.com>	2025-04-15 05:48:19 +00:00
TheFox0x7	504bb09319	fix github migration error when using multiple tokens (#34144 ) Git authorization was not taking into account multiple token feature, leading to auth failures Closes: https://github.com/go-gitea/gitea/issues/34141 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 8a6df00c532becd4d10efb70827ccf80b2bf74e2)	2025-04-14 16:21:28 +02:00
hiifong	82dd00873d	fix webhook url (#34186 ) Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit aada0370e7d72a591d58788f6db76bdbc3dddbb7)	2025-04-14 16:10:20 +02:00
Kerwin Bryant	9144726e4f	Update milestones.tmpl (#34184 ) (cherry picked from commit 5015992db578659a47b9a0949f1773ebac2b2b4b)	2025-04-14 16:03:04 +02:00
ManInDark	23b713464c	bugfix check for alternate ssh host certificate location (#34146 ) fixes #34145 Edited all locations to actually be correct. --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> Co-authored-by: Giteabot <teabot@gitea.io> (cherry picked from commit fac6b87dd24be5021d9c656edc2072397cfd6bed)	2025-04-14 15:53:35 +02:00
wxiaoguang	89e4144855	Set MERMAID_MAX_SOURCE_CHARACTERS to 50000 (#34152 ) Fix #32015 (cherry picked from commit f8edc29f5dd1a99e3be1a2ff764d1d7315862345)	2025-04-14 15:47:37 +02:00
Renovate Bot	8665bbc085	Update renovate to v39.240.1 (forgejo) (#7532 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [data.forgejo.org/renovate/renovate](https://renovatebot.com) ([source](https://github.com/renovatebot/renovate)) \| container \| minor \| `39.233.5` -> `39.240.1` \| \| [renovate](https://renovatebot.com) ([source](https://github.com/renovatebot/renovate)) \| \| minor \| `39.233.5` -> `39.240.1` \| --- ### Release Notes <details> <summary>renovatebot/renovate (data.forgejo.org/renovate/renovate)</summary> ### [`v39.240.1`](https://github.com/renovatebot/renovate/releases/tag/39.240.1) [Compare Source](https://github.com/renovatebot/renovate/compare/39.240.0...39.240.1) ##### Build System - deps: update dependency cronstrue to v2.58.0 (main) ([#35346](https://github.com/renovatebot/renovate/issues/35346)) ([7da63b4](`7da63b485a`)) ### [`v39.240.0`](https://github.com/renovatebot/renovate/releases/tag/39.240.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.238.2...39.240.0) ##### Features - datasource/azure-pipelines-tasks: add built-in tasks changelog url ([#35325](https://github.com/renovatebot/renovate/issues/35325)) ([5091b14](`5091b14184`)) ##### Miscellaneous Chores - deps: update dependency [@types/better-sqlite3](https://github.com/types/better-sqlite3) to v7.6.13 (main) ([#35333](https://github.com/renovatebot/renovate/issues/35333)) ([05b3fc0](`05b3fc0e25`)) - deps: update dependency renovatebot/github-action to v41.0.19 (main) ([#35337](https://github.com/renovatebot/renovate/issues/35337)) ([479886f](`479886f676`)) - deps: update dependency typescript to v5.8.3 (main) ([#35336](https://github.com/renovatebot/renovate/issues/35336)) ([abe1f18](`abe1f185cb`)) - deps: update dependency vitest-mock-extended to v3.1.0 (main) ([#35334](https://github.com/renovatebot/renovate/issues/35334)) ([680e161](`680e161030`)) ### [`v39.238.2`](https://github.com/renovatebot/renovate/releases/tag/39.238.2) [Compare Source](https://github.com/renovatebot/renovate/compare/39.238.1...39.238.2) ##### Bug Fixes - workers/auto-replace: correctly handle prefix replacements ([#35265](https://github.com/renovatebot/renovate/issues/35265)) ([afd6415](`afd6415ad8`)) ##### Miscellaneous Chores - deps: update dependency [@types/luxon](https://github.com/types/luxon) to v3.6.1 (main) ([#35313](https://github.com/renovatebot/renovate/issues/35313)) ([05ebbf3](`05ebbf3b79`)) - deps: update dependency [@types/luxon](https://github.com/types/luxon) to v3.6.2 (main) ([#35319](https://github.com/renovatebot/renovate/issues/35319)) ([790d0ea](`790d0ea50d`)) - deps: update dependency [@types/node](https://github.com/types/node) to v22.14.0 (main) ([#35295](https://github.com/renovatebot/renovate/issues/35295)) ([2188ebb](`2188ebb98f`)) - deps: update dependency [@vitest/eslint-plugin](https://github.com/vitest/eslint-plugin) to v1.1.39 (main) ([#35293](https://github.com/renovatebot/renovate/issues/35293)) ([043d665](`043d665677`)) - deps: update dependency type-fest to v4.39.1 (main) ([#35302](https://github.com/renovatebot/renovate/issues/35302)) ([21e1e6f](`21e1e6f9cd`)) ##### Code Refactoring - gerrit: remove deprecated source branch as hashtags support ([#33329](https://github.com/renovatebot/renovate/issues/33329)) ([e64ca6b](`e64ca6b852`)) ### [`v39.238.1`](https://github.com/renovatebot/renovate/releases/tag/39.238.1) [Compare Source](https://github.com/renovatebot/renovate/compare/39.238.0...39.238.1) ##### Bug Fixes - deps: update ghcr.io/containerbase/sidecar docker tag to v13.8.13 (main) ([#35289](https://github.com/renovatebot/renovate/issues/35289)) ([25eafdb](`25eafdb379`)) ##### Miscellaneous Chores - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.8.13 (main) ([#35288](https://github.com/renovatebot/renovate/issues/35288)) ([e0b85f3](`e0b85f3b38`)) ### [`v39.238.0`](https://github.com/renovatebot/renovate/releases/tag/39.238.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.237.0...39.238.0) ##### Features - datasource/github-runners: mark Windows Server 2025 as stable ([#35284](https://github.com/renovatebot/renovate/issues/35284)) ([ad5c45f](`ad5c45f437`)) ### [`v39.237.0`](https://github.com/renovatebot/renovate/releases/tag/39.237.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.236.2...39.237.0) ##### Features - bitbucket-server: add support for changelogs ([#34569](https://github.com/renovatebot/renovate/issues/34569)) ([68a66a0](`68a66a05a9`)) ### [`v39.236.2`](https://github.com/renovatebot/renovate/releases/tag/39.236.2) [Compare Source](https://github.com/renovatebot/renovate/compare/39.236.1...39.236.2) ##### Bug Fixes - deps: update ghcr.io/containerbase/sidecar docker tag to v13.8.12 (main) ([#35279](https://github.com/renovatebot/renovate/issues/35279)) ([702f18f](`702f18f6a5`)) ### [`v39.236.1`](https://github.com/renovatebot/renovate/releases/tag/39.236.1) [Compare Source](https://github.com/renovatebot/renovate/compare/39.236.0...39.236.1) ##### Bug Fixes - tool/pixi: remove `v` prefix from raw version ([#35277](https://github.com/renovatebot/renovate/issues/35277)) ([e938454](`e938454903`)) ##### Miscellaneous Chores - deps: update dependency pdm to v2.23.1 (main) ([#35275](https://github.com/renovatebot/renovate/issues/35275)) ([78ecd13](`78ecd13a8c`)) - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.8.12 (main) ([#35278](https://github.com/renovatebot/renovate/issues/35278)) ([84454cf](`84454cfd62`)) ### [`v39.236.0`](https://github.com/renovatebot/renovate/releases/tag/39.236.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.235.4...39.236.0) ##### Features - conan: Add support for lockfile maintenance ([#28174](https://github.com/renovatebot/renovate/issues/28174)) ([564ee83](`564ee83fb7`)) ### [`v39.235.4`](https://github.com/renovatebot/renovate/releases/tag/39.235.4) [Compare Source](https://github.com/renovatebot/renovate/compare/39.235.3...39.235.4) ##### Bug Fixes - changelogs: support massaging self-hosted gitlab URLs ([#35258](https://github.com/renovatebot/renovate/issues/35258)) ([8a93407](`8a93407a78`)) ##### Miscellaneous Chores - deps: update dependency [@types/node](https://github.com/types/node) to v22.13.17 (main) ([#35263](https://github.com/renovatebot/renovate/issues/35263)) ([12ea7e1](`12ea7e1474`)) ### [`v39.235.3`](https://github.com/renovatebot/renovate/releases/tag/39.235.3) [Compare Source](https://github.com/renovatebot/renovate/compare/39.235.2...39.235.3) ##### Bug Fixes - deps: update ghcr.io/containerbase/sidecar docker tag to v13.8.11 (main) ([#35260](https://github.com/renovatebot/renovate/issues/35260)) ([e4eefde](`e4eefde273`)) ##### Miscellaneous Chores - deps: update dependency [@types/luxon](https://github.com/types/luxon) to v3.6.0 (main) ([#35236](https://github.com/renovatebot/renovate/issues/35236)) ([3619702](`361970298b`)) - deps: update dependency [@types/node](https://github.com/types/node) to v22.13.15 (main) ([#35237](https://github.com/renovatebot/renovate/issues/35237)) ([6fbcdb3](`6fbcdb3c09`)) - deps: update dependency [@types/node](https://github.com/types/node) to v22.13.16 (main) ([#35246](https://github.com/renovatebot/renovate/issues/35246)) ([781a9cf](`781a9cf331`)) - deps: update dependency pnpm to v10.7.1 (main) ([#35249](https://github.com/renovatebot/renovate/issues/35249)) ([b88a306](`b88a3068a3`)) - deps: update dependency type-fest to v4.39.0 (main) ([#35250](https://github.com/renovatebot/renovate/issues/35250)) ([d4da4a1](`d4da4a1055`)) - deps: update ghcr.io/containerbase/devcontainer docker tag to v13.8.11 (main) ([#35259](https://github.com/renovatebot/renovate/issues/35259)) ([f6f5f4e](`f6f5f4e912`)) - deps: update github/codeql-action action to v3.28.15 (main) ([#35235](https://github.com/renovatebot/renovate/issues/35235)) ([1de6ec9](`1de6ec9a39`)) - deps: update python:3.13 docker digest to [`18ecbd0`](`18ecbd0`) (main) ([#35243](https://github.com/renovatebot/renovate/issues/35243)) ([1b6f9df](`1b6f9dfa5a`)) - deps: update python:3.13 docker digest to [`aaf6d3c`](`aaf6d3c`) (main) ([#35247](https://github.com/renovatebot/renovate/issues/35247)) ([e9ba9fc](`e9ba9fc2e3`)) - deps: update vitest monorepo to v3.1.1 (main) ([#35221](https://github.com/renovatebot/renovate/issues/35221)) ([558809f](`558809f1aa`)) ##### Code Refactoring - circleci: Simplify CircleCI extraction ([#35233](https://github.com/renovatebot/renovate/issues/35233)) ([8c00b15](`8c00b15ffc`)) ### [`v39.235.2`](https://github.com/renovatebot/renovate/releases/tag/39.235.2) [Compare Source](https://github.com/renovatebot/renovate/compare/39.235.1...39.235.2) ##### Build System - deps: update dependency [@renovatebot/osv-offline](https://github.com/renovatebot/osv-offline) to v1.6.5 (main) ([#35232](https://github.com/renovatebot/renovate/issues/35232)) ([fcc9b47](`fcc9b47101`)) ### [`v39.235.1`](https://github.com/renovatebot/renovate/releases/tag/39.235.1) [Compare Source](https://github.com/renovatebot/renovate/compare/39.235.0...39.235.1) ##### Build System - deps: update dependency luxon to v3.6.1 (main) ([#35230](https://github.com/renovatebot/renovate/issues/35230)) ([c91c875](`c91c87594b`)) ### [`v39.235.0`](https://github.com/renovatebot/renovate/releases/tag/39.235.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.234.0...39.235.0) ##### Features - schema: Add utility for detecting circular data ([#35223](https://github.com/renovatebot/renovate/issues/35223)) ([5ad8030](`5ad8030a8e`)) ##### Miscellaneous Chores - deps: update github/codeql-action action to v3.28.14 (main) ([#35220](https://github.com/renovatebot/renovate/issues/35220)) ([a13f5da](`a13f5daca9`)) - label-actions: capitalize Renovate brandname ([#35222](https://github.com/renovatebot/renovate/issues/35222)) ([b53f2a9](`b53f2a9ffe`)) ### [`v39.234.0`](https://github.com/renovatebot/renovate/releases/tag/39.234.0) [Compare Source](https://github.com/renovatebot/renovate/compare/39.233.6...39.234.0) ##### Features - add Azure Pipelines preset ([#35207](https://github.com/renovatebot/renovate/issues/35207)) ([4cb2bb2](`4cb2bb2d77`)) - manager/nuget: extract msbuild sdk from `Import` ([#35206](https://github.com/renovatebot/renovate/issues/35206)) ([727792a](`727792a3ce`)) ##### Documentation - upgrade best practices: update preset code plus small rewrite ([#34837](https://github.com/renovatebot/renovate/issues/34837)) ([0be280b](`0be280ba8a`)) ### [`v39.233.6`](https://github.com/renovatebot/renovate/releases/tag/39.233.6) [Compare Source](https://github.com/renovatebot/renovate/compare/39.233.5...39.233.6) ##### Bug Fixes - circleci: Ignore non-image alias items ([#35212](https://github.com/renovatebot/renovate/issues/35212)) ([e746331](`e7463311b8`)) ##### Documentation - update references to renovate/renovate (main) ([#35213](https://github.com/renovatebot/renovate/issues/35213)) ([73c9fac](`73c9faca22`)) ##### Miscellaneous Chores - deps: lock file maintenance (main) ([#35214](https://github.com/renovatebot/renovate/issues/35214)) ([3598dfb](`3598dfb8f9`)) - deps: lock file maintenance (main) ([#35217](https://github.com/renovatebot/renovate/issues/35217)) ([57972f6](`57972f613a`)) - deps: update containerbase/internal-tools action to v3.10.19 (main) ([#35215](https://github.com/renovatebot/renovate/issues/35215)) ([60ef7bf](`60ef7bfcf1`)) - deps: update containerbase/internal-tools action to v3.10.20 (main) ([#35218](https://github.com/renovatebot/renovate/issues/35218)) ([7cc1fb2](`7cc1fb2d68`)) - deps: update dependency esbuild to v0.25.2 (main) ([#35210](https://github.com/renovatebot/renovate/issues/35210)) ([1107833](`1107833bcd`)) ##### Tests - yaml: Fix code block indents ([#35211](https://github.com/renovatebot/renovate/issues/35211)) ([5d48319](`5d4831961b`)) </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - "* 0-3 * * " (UTC). 🚦 Automerge: Enabled. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJmb3JnZWpvL2NpIiwidGVzdC9ub3QtbmVlZGVkIl19--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7532 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-14 10:39:25 +00:00
Renovate Bot	bc02a82338	Lock file maintenance (forgejo) (#7534 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7534 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-14 08:53:00 +00:00
Gusted	442958df1d	[gitea] week 2025-14 cherry pick (gitea/main -> forgejo) (#7486 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7486 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org>	2025-04-13 12:00:15 +00:00
Renovate Bot	7861d2ffcf	Update module github.com/golangci/golangci-lint/v2/cmd/golangci-lint to v2.1.1 (forgejo) (#7528 ) This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [github.com/golangci/golangci-lint/v2/cmd/golangci-lint](https://github.com/golangci/golangci-lint) \| minor \| `v2.0.2` -> `v2.1.1` \| --- ### Release Notes <details> <summary>golangci/golangci-lint (github.com/golangci/golangci-lint/v2/cmd/golangci-lint)</summary> ### [`v2.1.1`](https://github.com/golangci/golangci-lint/blob/HEAD/CHANGELOG.md#v211) [Compare Source](https://github.com/golangci/golangci-lint/compare/v2.1.0...v2.1.1) The release process of v2.1.0 failed due to a regression inside goreleaser. The binaries of v2.1.0 have been published, but not the other artifacts (AUR, Docker, etc.). ### [`v2.1.0`](https://github.com/golangci/golangci-lint/blob/HEAD/CHANGELOG.md#v210) [Compare Source](https://github.com/golangci/golangci-lint/compare/v2.0.2...v2.1.0) 1. Enhancements - Add an option to display absolute paths (`--path-mode=abs`) - Add configuration path placeholder (`${config-path}`) - Add `warn-unused` option for `fmt` command - Colored diff for `fmt` command (`golangci-lint fmt --diff-colored`) 2. New linters - Add `funcorder` linter https://github.com/manuelarte/funcorder 3. Linters new features or changes - `go-errorlint`: from 1.7.1 to 1.8.0 (automatic error comparison and type assertion fixes) - ⚠️ `goconst`: `ignore-strings` is deprecated and replaced by `ignore-string-values` - `goconst`: from 1.7.1 to 1.8.1 (new options: `find-duplicates`, `eval-const-expressions`) - `govet`: add `httpmux` analyzer - `nilnesserr`: from 0.1.2 to 0.2.0 (detect more cases) - `paralleltest`: from 1.0.10 to 1.0.14 (checks only `_test.go` files) - `revive`: from 1.7.0 to 1.9.0 (support kebab case for setting names) - `sloglint`: from 0.9.0 to 0.11.0 (autofix, new option `msg-style`, suggest `slog.DiscardHandler`) - `wrapcheck`: from 2.10.0 to 2.11.0 (new option `report-internal-errors`) - `wsl`: from 4.6.0 to 4.7.0 (cgo files are always excluded) 4. Linters bug fixes - `fatcontext`: from 0.7.1 to 0.7.2 - `gocritic`: fix `importshadow` checker - `gosec`: from 2.22.2 to 2.22.3 - `ireturn`: from 0.3.1 to 0.4.0 - `loggercheck`: from 0.10.1 to 0.11.0 - `nakedret`: from 2.0.5 to 2.0.6 - `nonamedreturns`: from 1.0.5 to 1.0.6 - `protogetter`: from 0.3.12 to 0.3.13 - `testifylint`: from 1.6.0 to 1.6.1 - `unconvert`: update to HEAD 5. Misc. - Fixes memory leaks when using go1.(N) with golangci-lint built with go1.(N-X) - Adds `golangci-lint-fmt` pre-commit hook 6. Documentation - Improvements - Updates section about vscode integration </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7528 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-13 07:47:07 +00:00
Gusted	b86aefc038	chore: use `sharp` to generate images (#7512 ) - `tools/generate-images.js` is used to convert SVGs to resized optimized SVGs and resized optimized PNG. Although it would be best to drop generating images from SVG, the usage of these images do not accept a SVG. - The script relied on two dependencies being installed on-the-fly, this is suboptimal as it means its integrity was not saved in package-lock.json and no specific version was specified which makes reproducible builds harder. `imagemin-zopfli` was not updated in 4 years and seems to use dependency that generate funny message about memory leaks and using no longer maintained dependencies. - Use [`sharp`](https://sharp.pixelplumbing.com/) to do the image conversion, this installs two binaries on Linux (glibc/musl) and are responsible for 5% of the `node_modules` directory size. Add this to package.json as a dev dependencies to ensure the integrity can be verified and help reproducible builds. - Drop the `gitea` conversion, I cannot find this being used within Forgejo (my best guess is that `e20cd83bc5` dropped the usage of it). - Resolves forgejo/forgejo#7232 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7512 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-11 15:12:50 +00:00
Gusted	b55c72828e	feat(sec): Add SSH signing support for instances (#6897 ) - Add support to set `gpg.format` in the Git config, via the new `[repository.signing].FORMAT` option. This is to tell Git that the instance would like to use SSH instead of OpenPGP to sign its commits. This is guarded behind a Git version check for v2.34.0 and a check that a `ssh-keygen` binary is present. - Add support to recognize the public SSH key that is given to `[repository.signing].SIGNING_KEY` as the signing key by the instance. - Thus this allows the instance to use SSH commit signing for commits that the instance creates (e.g. initial and squash commits) instead of using PGP. - Technically (although I have no clue how as this is not documented) you can have a different PGP signing key for different repositories; this is not implemented for SSH signing. - Add unit and integration testing. - `TestInstanceSigning` was reworked from `TestGPGGit`, now also includes testing for SHA256 repositories. Is the main integration test that actually signs commits and checks that they are marked as verified by Forgejo. - `TestParseCommitWithSSHSignature` is a unit test that makes sure that if a SSH instnace signing key is set, that it is used to possibly verify instance SSH signed commits. - `TestSyncConfigGPGFormat` is a unit test that makes sure the correct git config is set according to the signing format setting. Also checks that the guarded git version check and ssh-keygen binary presence check is done correctly. - `TestSSHInstanceKey` is a unit test that makes sure the parsing of a SSH signing key is done correctly. - `TestAPISSHSigningKey` is a integration test that makes sure the newly added API route `/api/v1/signing-key.ssh` responds correctly. Documentation PR: forgejo/docs#1122 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/6897 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-11 13:25:35 +00:00
Earl Warren	eb85681b41	fix: package_blob.has_blake2b may be null (#7520 ) - When looking for an existing blob, has_blake2b will be null when it was created prior to v26 migration in v11, when the field was introduced. - Add unit test and minimal refactoring to load fixtures. The AddFixture function should not be where it currently is because it cannot be used by some packages (circular import). But that's a refactor that needs to be elsewhere for backporting purposes. Fixes https://codeberg.org/forgejo/forgejo/issues/7519 Co-authored-by: Earl Warren <contact@earl-warren.org> Co-committed-by: Earl Warren <contact@earl-warren.org>	2025-04-11 12:28:03 +00:00
Michael Jerger	2a1759ba3b	use base.TruncateString instead of TruncateRune	2025-04-10 13:49:18 +02:00
0ko	eb3feaad45	chore(i18n): update contributing documentation with JSON format (#7499 ) Things have changed and the readme file in `locale` became significantly less relevant, suggesting things like > When you work on Forgejo features, you should only modify `locale_en-US.ini`. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7499 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-10 10:30:22 +00:00
Earl Warren	a783a72d6b	chore: refactor for Actions Done Notification (#7510 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7510 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-10 09:51:57 +00:00
christopher-besch	cdb4682bca	feat: move UpdateTaskByState to services This function is also can't be in models in order to enable calling the action run state change notification channel.	2025-04-10 08:38:28 +02:00
christopher-besch	81b5c7ca6f	feat: move StopTask, CancelPreviousJobs and CleanRepoScheduleTasks to services/actions This enables all action run state changes (from a not done to a done state) to also send a notification. Moved these: - models/actions/task.go\|423 col 6\| func StopTask(ctx context.Context, taskID int64, status Status) error { - models/actions/run.go\|190 col 6\| func CancelPreviousJobs(ctx context.Context, repoID int64, ref, workflowID string, event webhook_module.HookEventType) error { - models/actions/schedule.go\|122 col 6\| func CleanRepoScheduleTasks(ctx context.Context, repo *repo_model.Repository, cancelPreviousJobs bool) error {	2025-04-10 08:38:27 +02:00
Renovate Bot	1c2a29807b	Update dependency katex to v0.16.22 (forgejo) (#7503 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [katex](https://katex.org) ([source](https://github.com/KaTeX/KaTeX)) \| dependencies \| patch \| [`0.16.21` -> `0.16.22`](https://renovatebot.com/diffs/npm/katex/0.16.21/0.16.22) \| --- ### Release Notes <details> <summary>KaTeX/KaTeX (katex)</summary> ### [`v0.16.22`](https://github.com/KaTeX/KaTeX/blob/HEAD/CHANGELOG.md#01622-2025-04-09) [Compare Source](https://github.com/KaTeX/KaTeX/compare/v0.16.21...v0.16.22) ##### Bug Fixes - \relax in base or exponent of super/subscript ([#4045](https://github.com/KaTeX/KaTeX/issues/4045)) ([1f43c84](`1f43c84a17`)) </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7503 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-10 05:58:44 +00:00
Earl Warren	7d9d48819a	i18n: update of translations from Codeberg Translate (#7438 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7438 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-10 05:55:43 +00:00
Codeberg Translate	0bfb3751fb	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Kita Ikuyo <kitakita@disroot.org> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: Porrumentzio <porrumentzio@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Wuzzy <wuzzy@disroot.org> Co-authored-by: artnay <artnay@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: nekoedges <nekoedges@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-04-10 05:25:01 +00:00
Renovate Bot	911806879f	Update module golang.org/x/tools/cmd/deadcode to v0.32.0 (forgejo) (#7505 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-10 02:36:29 +00:00
Renovate Bot	c31be003d1	Update module golang.org/x/net to v0.39.0 (forgejo) (#7504 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7504 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-10 01:41:48 +00:00
0ko	282125e90f	fix(ui): ensure consistent switch position in markdown editor (#7492 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7481. Fix a bug reported by @Gusted where the switch would jump ~1px up when switched to preview mode. It was because the switch is always center-aligning to the largest element in the toolbar. With toolbar buttons disappearing, the largest element was the switch itself. By placing it in a box with same height as the buttons we can ensure it can always stay in the same position. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7492 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-09 17:37:46 +00:00
Renovate Bot	eca57cc3e9	Update dependency webpack to v5.99.5 (forgejo) (#7494 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7494 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-09 09:51:31 +00:00
Renovate Bot	3be290457f	Update module golang.org/x/image to v0.26.0 (forgejo) (#7497 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [golang.org/x/image](https://pkg.go.dev/golang.org/x/image) \| require \| minor \| [`v0.25.0` -> `v0.26.0`](https://cs.opensource.google/go/x/image/+/refs/tags/v0.25.0...refs/tags/v0.26.0) \| --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7497 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-09 06:11:23 +00:00
Renovate Bot	bca6ae7862	Update module github.com/minio/minio-go/v7 to v7.0.90 (forgejo) (#7495 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) \| require \| patch \| `v7.0.88` -> `v7.0.90` \| --- ### Release Notes <details> <summary>minio/minio-go (github.com/minio/minio-go/v7)</summary> ### [`v7.0.90`](https://github.com/minio/minio-go/releases/tag/v7.0.90): Bugfix v7.0.90 [Compare Source](https://github.com/minio/minio-go/compare/v7.0.89...v7.0.90) #### What's Changed - Add anonymous chunked encoding with trailing headers by [@klauspost](https://github.com/klauspost) in https://github.com/minio/minio-go/pull/2084 - Implement AppendObject() API by [@harshavardhana](https://github.com/harshavardhana) in https://github.com/minio/minio-go/pull/2082 - Update x/net version by [@BorjaOuterelo](https://github.com/BorjaOuterelo) in https://github.com/minio/minio-go/pull/2085 - Rety iterators by [@tlyons-cs](https://github.com/tlyons-cs) in https://github.com/minio/minio-go/pull/2087 - Add function for getting creds of remote client by [@shtripat](https://github.com/shtripat) in https://github.com/minio/minio-go/pull/2089 #### New Contributors - [@BorjaOuterelo](https://github.com/BorjaOuterelo) made their first contribution in https://github.com/minio/minio-go/pull/2085 - [@tlyons-cs](https://github.com/tlyons-cs) made their first contribution in https://github.com/minio/minio-go/pull/2087 Full Changelog: https://github.com/minio/minio-go/compare/v7.0.89...v7.0.90 ### [`v7.0.89`](https://github.com/minio/minio-go/releases/tag/v7.0.89): Bugfix Release [Compare Source](https://github.com/minio/minio-go/compare/v7.0.88...v7.0.89) #### What's Changed - add PurgeOnDelete to versioning config by [@poornas](https://github.com/poornas) in https://github.com/minio/minio-go/pull/2074 - Adds `TokenRevokeType` field to credential providers. by [@taran-p](https://github.com/taran-p) in https://github.com/minio/minio-go/pull/2075 - make downtime info as map to denote per target info by [@Praveenrajmani](https://github.com/Praveenrajmani) in https://github.com/minio/minio-go/pull/2079 - update deps and move CI/CD to go1.23, go1.24 by [@harshavardhana](https://github.com/harshavardhana) in https://github.com/minio/minio-go/pull/2080 - update golint version by [@harshavardhana](https://github.com/harshavardhana) in https://github.com/minio/minio-go/pull/2083 #### New Contributors - [@taran-p](https://github.com/taran-p) made their first contribution in https://github.com/minio/minio-go/pull/2075 Full Changelog: https://github.com/minio/minio-go/compare/v7.0.88...v7.0.89 </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7495 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-09 06:05:01 +00:00
Renovate Bot	5b6cbd8195	Update module go.uber.org/mock to v0.5.1 (forgejo) (#7488 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [go.uber.org/mock](https://github.com/uber/mock) \| require \| patch \| `v0.5.0` -> `v0.5.1` \| --- ### Release Notes <details> <summary>uber/mock (go.uber.org/mock)</summary> ### [`v0.5.1`](https://github.com/uber-go/mock/releases/tag/v0.5.1) [Compare Source](https://github.com/uber/mock/compare/v0.5.0...v0.5.1) #### 0.5.1 (7 Apr 2025) ##### Fixed - [#220][]: Package mode will now generate code that uses aliases of types when they are used in the source. - [#219][]: Fixed a collision between function argument names and package names in generated code. - [#165][]: Fixed an issue where aliases specified by `-imports` were not being respected in generated code. [#220]: https://github.com/uber-go/mock/pull/220 [#219]: https://github.com/uber-go/mock/pull/219 [#165]: https://github.com/uber-go/mock/pull/165 Thanks to [@mtoader](https://github.com/mtoader) and [@bstncartwright](https://github.com/bstncartwright) for their contributions to this release. </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMzMuNSIsInVwZGF0ZWRJblZlciI6IjM5LjIzMy41IiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7488 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-08 11:11:21 +00:00
Renovate Bot	b54d210eb3	Update dependency webpack to v5.99.1 (forgejo) (#7490 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7490 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-08 05:19:29 +00:00
Mopcho	64cc883ac1	Fix discord webhook 400 status code when description limit is exceeded (#34084 ) Fixes [#34027](https://github.com/go-gitea/gitea/issues/34027) Discord does not allow for description bigger than 2048 bytes. If the description is bigger than that it will throw 400 and the event won't appear in discord. To fix that, in the createPayload method we now slice the description to ensure it doesn’t exceed the limit. --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 013b2686fe6d306c4fb800147207b099866683b9)	2025-04-07 18:27:08 +02:00
KN4CK3R	3e3a109dd2	Fix invalid version in RPM package path (#34112 ) (cherry picked from commit 8fed70afdc0f63636cdd6f5ea3fdf88061ad8dc2)	2025-04-07 18:05:29 +02:00
ManInDark	51990751a6	also check default ssh-cert location for host (#34099 ) (#34100 ) (cherry picked from commit f8d549436ea70142514557b6a1d23d578d6aef42)	2025-04-07 18:03:33 +02:00
Kemal Zebari	f7b19964a7	Add new CLI flags to set name and scopes when creating a user with access token (#34080 ) Resolves #33474. --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 55a69ae4c63ee8551eadb161cb901ba0a2a2e194)	2025-04-07 17:26:34 +02:00
Lunny Xiao	02d9c7cd27	Return default avatar url when user id is zero rather than updating database (#34094 ) (cherry picked from commit 88352e0b252e9186a5633d39124a8a65ab89f831)	2025-04-07 16:48:15 +02:00
0ko	afffbe2982	ui: use switch for markdown editor modes (#7481 ) Replaces https://codeberg.org/forgejo/forgejo/pulls/5478 Closes https://codeberg.org/forgejo/forgejo/issues/244 Use switch for preview mode switching instead of tabs. It is placed in line with the toolbar buttons. Preview: * https://codeberg.org/attachments/38910747-c14c-41d1-9935-c35f3e17033b * https://codeberg.org/attachments/ff8ea47a-f157-424f-8b7f-af1008d5e8b5 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7481 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-04-07 13:47:13 +00:00
Kerwin Bryant	39341df8cb	Fix markup content overflow (#34072 ) Fix #34069: use `overflow-wrap: anywhere` to correctly wrap overflowed content. (cherry picked from commit 0fd5392087d35ebe2268f32de422342020e573b9)	2025-04-07 14:54:45 +02:00
JakobDev	8296a23d79	feat: sync forks (#2364 ) This allows syncing a branch of a fork with a branch of the base repo. It looks like this: ![grafik](/attachments/4508920c-7d0b-4330-9083-e3048733e38d) This is only possible, if the fork don't have commits that are not in the main repo. The feature is already working, but it is missing Finetuning, a better API, translations and tests, so this is currently WIP. It is also not tested with go-git. <!--start release-notes-assistant--> ## Release notes <!--URL:https://codeberg.org/forgejo/forgejo--> - Features - [PR](https://codeberg.org/forgejo/forgejo/pulls/2364): <!--number 2364 --><!--line 0 --><!--description c3luYyBmb3Jrcw==-->sync forks<!--description--> <!--end release-notes-assistant--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/2364 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: JakobDev <jakobdev@gmx.de> Co-committed-by: JakobDev <jakobdev@gmx.de>	2025-04-07 07:00:38 +00:00
Renovate Bot	3272e3588a	Update module golang.org/x/crypto to v0.37.0 (forgejo) (#7485 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [golang.org/x/crypto](https://pkg.go.dev/golang.org/x/crypto) \| require \| minor \| [`v0.36.0` -> `v0.37.0`](https://cs.opensource.google/go/x/crypto/+/refs/tags/v0.36.0...refs/tags/v0.37.0) \| --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7485 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-07 06:31:07 +00:00
Renovate Bot	beddf442b1	Update renovate to v39.233.5 (forgejo) (#7484 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-07 06:28:32 +00:00
Gwendolyn	08b2ec2300	fix acme renewal (#7409 ) ## Checklist The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org). ### Tests - I added test coverage for Go changes... - [ ] in their respective `_test.go` for unit tests. - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server. - I added test coverage for JavaScript changes... - [ ] in `web_src/js/.test.js` if it can be unit tested. - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)). ### Documentation - [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change. - [x] I did not document these changes and I do not expect someone else to do it. ### Release notes - [ ] I do not want this change to show in the release notes. - [x] I want the title to show in the release notes with a link to this pull request. - [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7409 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Gwendolyn <me@gwendolyn.dev> Co-committed-by: Gwendolyn <me@gwendolyn.dev>	2025-04-06 15:26:47 +00:00
Renovate Bot	9d984fedf3	Update dependency clippie to v4.1.6 (forgejo) (#7472 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7472 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-06 12:30:25 +00:00
Gusted	e6c17f31be	fix(ui): only run auth_name code on new and edit page (#7470 ) - Only run the dynamic `auth_name` update code when its on the new or edit page. `.admin.authentication` also matches the main authentication screen which lead to a javascript error. - Regression of forgejo/forgejo#7408 # Testing 1. Login as a admin. 2. Go to `/admin/auths`. 3. Notice no errors. 4. Go to `admin/auths/new`. 6. Select 'OAuth2' as authentication type. 5. Type some input into the 'Authentication name'. 6. Notice the the callback URL in the 'Tips' section including the authentication name. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7470 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-06 12:25:29 +00:00
Renovate Bot	b04bb28ed1	Update module github.com/blevesearch/bleve/v2 to v2.5.0 (forgejo) (#7468 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) \| require \| minor \| `v2.4.4` -> `v2.5.0` \| --- ### Release Notes <details> <summary>blevesearch/bleve (github.com/blevesearch/bleve/v2)</summary> ### [`v2.5.0`](https://github.com/blevesearch/bleve/releases/tag/v2.5.0) [Compare Source](https://github.com/blevesearch/bleve/compare/v2.4.4...v2.5.0) ##### Bug Fixes - Exact hits to score higher than fuzzy hits, with https://github.com/blevesearch/bleve/pull/2056 - Fix boosting during hybrid search that involves text + nearest neighbor, with https://github.com/blevesearch/bleve/pull/2127 - Addressed bug in IP field handling while highlighting, with https://github.com/blevesearch/bleve/pull/2142 - Graceful error handling within registry, with https://github.com/blevesearch/bleve/pull/2151 - `http/` package (meant for demo purposes) removed from repository to remove vulnerability - [CVE-2022-31022](https://github.com/blevesearch/bleve/security/advisories/GHSA-9w9f-6mg8-jp7w), relocated to within https://github.com/blevesearch/bleve-explorer - Geo radius queries will now advertise distances (within sort values) in readable format, with https://github.com/blevesearch/bleve/pull/2137 ##### Improvements - Vector search requires `faiss` dynamic library to be built from [blevesearch/faiss@352484e](`352484e0fc`) which is a modified version of [v1.10.0](https://github.com/facebookresearch/faiss/releases/tag/v1.10.0) - Support for BM25 scoring, see: [scoring.md](https://github.com/blevesearch/bleve/blob/v2.5.0/docs/scoring.md#bm25) - Support for synonyms' search, see: [synonyms.md](https://github.com/blevesearch/bleve/blob/v2.5.0/docs/synonyms.md) - Significant performance improvements in pre-filtered vector search, with https://github.com/blevesearch/bleve/pull/2169 + dependent changes - `auto` fuzziness detection with https://github.com/blevesearch/bleve/pull/2060 - Ability to affect ingestion/drain rate by tuning persister workers with https://github.com/blevesearch/bleve/pull/2100 - Additional config in merge policy for improved merger behavior, with https://github.com/blevesearch/bleve/pull/2134 - Geo improvements: footprint reduction for polygons, better validation and graceful error handling, with https://github.com/blevesearch/bleve/pull/2162 + https://github.com/blevesearch/bleve/pull/2158 + https://github.com/blevesearch/bleve/pull/2165 - Upgrade to RoaringBitmap/roaring@v2.4.5, etcd.io/bbolt@v1.4.0 - More metrics ##### Milestone - [v2.5.0](https://github.com/blevesearch/bleve/milestone/24) </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Co-authored-by: Gusted <postmaster@gusted.xyz> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7468 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Shiny Nematoda <snematoda@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-06 08:41:38 +00:00
voltagex	cb4ef4495a	Minor grammatical fix to runner deletion message (#7479 ) WIP until someone else tells me whether the whole message should be changed or whether `s/mark/marked/` is enough. I am honestly not sure what "It may break building workflow." means in this context either but it doesn't sound correct to me. ## Checklist snipped - this is really minor, please let me know if there's a better checklist to use for changes like this ### Release notes - [x] I do not want this change to show in the release notes. [Change is too minor] Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7479 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: voltagex <git@voltagex.org> Co-committed-by: voltagex <git@voltagex.org>	2025-04-06 08:40:54 +00:00
Renovate Bot	d46cf46f6e	Update module golang.org/x/oauth2 to v0.29.0 (forgejo) (#7475 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [golang.org/x/oauth2](https://pkg.go.dev/golang.org/x/oauth2) \| require \| minor \| [`v0.28.0` -> `v0.29.0`](https://cs.opensource.google/go/x/oauth2/+/refs/tags/v0.28.0...refs/tags/v0.29.0) \| --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7475 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-06 08:31:01 +00:00
Renovate Bot	577a694df6	Update module github.com/fsnotify/fsnotify to v1.9.0 (forgejo) (#7473 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) \| require \| minor \| `v1.8.0` -> `v1.9.0` \| --- ### Release Notes <details> <summary>fsnotify/fsnotify (github.com/fsnotify/fsnotify)</summary> ### [`v1.9.0`](https://github.com/fsnotify/fsnotify/releases/tag/v1.9.0) [Compare Source](https://github.com/fsnotify/fsnotify/compare/v1.8.0...v1.9.0) ##### Changes and fixes - all: make BufferedWatcher buffered again ([#657]) - inotify: fix race when adding/removing watches while a watched path is being deleted ([#678], [#686]) - inotify: don't send empty event if a watched path is unmounted ([#655]) - inotify: don't register duplicate watches when watching both a symlink and its target; previously that would get "half-added" and removing the second would panic ([#679]) - kqueue: fix watching relative symlinks ([#681]) - kqueue: correctly mark pre-existing entries when watching a link to a dir on kqueue ([#682]) - illumos: don't send error if changed file is deleted while processing the event ([#678]) [#657]: https://github.com/fsnotify/fsnotify/pull/657 [#678]: https://github.com/fsnotify/fsnotify/pull/678 [#686]: https://github.com/fsnotify/fsnotify/pull/686 [#655]: https://github.com/fsnotify/fsnotify/pull/655 [#681]: https://github.com/fsnotify/fsnotify/pull/681 [#679]: https://github.com/fsnotify/fsnotify/pull/679 [#682]: https://github.com/fsnotify/fsnotify/pull/682 </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7473 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-06 08:22:49 +00:00
Gusted	6fa5705d4b	fix(ui): ensure dimmer always covers whole page (#7471 ) - Ensure that the dimmer always covers the whole page and that the modal is centered. - Ensure that `body` hides overflow so you cannot scroll on the page after the modal is opened. - The adjusted CSS 'behavior' originates from the original dimmer module. - Regression of https://codeberg.org/forgejo/forgejo/pulls/7416. - E2E test added. Screenshots Before: https://codeberg.org/attachments/fb8c84b3-94ba-4597-b468-4bf344f356ed After: https://codeberg.org/attachments/a6583eb9-1ec7-4e40-960a-4986f6e17535 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7471 Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-06 04:23:03 +00:00
Gusted	56cc841b65	chore: always enable webpack progress (#7463 ) - Webpack is currently quite slow while compiling the whole frontend, even for a very fast machine this can take 30s, but for normal machines this can take over a minute. In the development mode (`make watch`) a handy status is shown that tells what webpack is doing and an approximate progress. - Enable this progress always, this means that this is now also shown when you run `make build` and should hopefully give a good indication how long the webpack step should take. - Configure the progress to also show the module its currently 'working on'. This is more interesting than the amount of modules webpack still needs to work on (which steadily increase as webpack seems to incrementally resolves to more modules). ## Screenshot ![image](/attachments/96b1176a-6a6b-4a44-a8f3-fb56ce7b0fc6) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7463 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-05 12:49:14 +00:00
Renovate Bot	2e6f624d2f	Update dependency typescript to v5.8.3 (forgejo) (#7467 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7467 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-05 06:02:14 +00:00
Renovate Bot	0766cb4776	Update dependency ansi_up to v6.0.5 (forgejo) (#7465 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7465 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-05 01:24:46 +00:00
0ko	7145665cbf	chore(i18n): add a meta line to the base json translation (#7462 ) Ref https://codeberg.org/forgejo/discussions/issues/326 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7462 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: floss4good <floss4good@noreply.codeberg.org>	2025-04-04 16:27:16 +00:00
Mathieu Fenniak	6ad706aa88	feat(ui): Automatically refresh workflows in the "Actions" list (#7361 ) - Make the "Actions" list (for example, https://codeberg.org/forgejo/forgejo/actions) dynamically refresh using htmx and partial page reloading. This addresses a pet peeve of mine, I find it common to end up on this page and have workflows in-progress, but not be able to monitor the workflows to success or failure from the page as it currently doesn't do any data refreshing. - There are a few major risks involves with this change. - Increased server-side load & network utilization. In order to mitigate this risk, I have configured the refresh to occur every 30 seconds only when the Page Visibility API indicates that the web page is currently visible to the end-user. It is still reasonable to assume this change will increase server-side load though. - UI interactions on the page, such as the "Actor" and "Status" dropdown and the workflow dispatch form, would be replaced from the server with non-expanded UI during the refresh. This problem is prevented by stopping the refresh while these UIs are in their expanded states. - E2E tests added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7361 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Mathieu Fenniak <mathieu@fenniak.net> Co-committed-by: Mathieu Fenniak <mathieu@fenniak.net>	2025-04-04 14:38:54 +00:00
Renovate Bot	c977585e4c	Update dependency ansi_up to v6.0.3 (forgejo) (#7456 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7456 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-04 04:04:58 +00:00
Renovate Bot	a0df27c929	Update module github.com/alecthomas/chroma/v2 to v2.16.0 (forgejo) (#7459 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [github.com/alecthomas/chroma/v2](https://github.com/alecthomas/chroma) \| require \| minor \| `v2.15.0` -> `v2.16.0` \| --- ### Release Notes <details> <summary>alecthomas/chroma (github.com/alecthomas/chroma/v2)</summary> ### [`v2.16.0`](https://github.com/alecthomas/chroma/releases/tag/v2.16.0) [Compare Source](https://github.com/alecthomas/chroma/compare/v2.15.0...v2.16.0) #### Changelog - [`ad6f149`](`ad6f149`) chore: clean up Makefile - [`9909f65`](`9909f65`) fix: switch to jsdelivr as unpkg was throwing CORS errors - [`34bf362`](`34bf362`) chore(deps): update all non-major dependencies ([#1066](https://github.com/alecthomas/chroma/issues/1066)) - [`88084b6`](`88084b6`) fix: Dot in a string breaks the highlighting in Terraform. Fixes [#988](https://github.com/alecthomas/chroma/issues/988) ([#1065](https://github.com/alecthomas/chroma/issues/1065)) - [`62197e9`](`62197e9`) Add lexers.Aliases() method to display only lexers' aliases ([#1057](https://github.com/alecthomas/chroma/issues/1057)) - [`7feb358`](`7feb358`) chore(deps): update dependency svu to v3 ([#1053](https://github.com/alecthomas/chroma/issues/1053)) - [`30e0bc6`](`30e0bc6`) chore(deps): update all non-major dependencies ([#1061](https://github.com/alecthomas/chroma/issues/1061)) - [`e0c7747`](`e0c7747`) Fix IP address as name detection in nginx conf ([#1060](https://github.com/alecthomas/chroma/issues/1060)) - [`0bf0e9f`](`0bf0e9f`) Add luau file extension and alias to lua lexer ([#1056](https://github.com/alecthomas/chroma/issues/1056)) - [`0e0e282`](`0e0e282`) chore(deps): update all non-major dependencies ([#1049](https://github.com/alecthomas/chroma/issues/1049)) - [`4b0882a`](`4b0882a`) add Janet lexer ([#1045](https://github.com/alecthomas/chroma/issues/1045)) - [`81fecd5`](`81fecd5`) chore(deps): update all non-major dependencies ([#1041](https://github.com/alecthomas/chroma/issues/1041)) - [`dc982d2`](`dc982d2`) Add Mojo lexer ([#1044](https://github.com/alecthomas/chroma/issues/1044)) - [`79621af`](`79621af`) Fix solidity lexer's handling of inline assembly ([#1040](https://github.com/alecthomas/chroma/issues/1040)) - [`9da461e`](`9da461e`) chore(deps): update module github.com/mattn/go-colorable to v0.1.14 ([#1039](https://github.com/alecthomas/chroma/issues/1039)) - [`f0d460e`](`f0d460e`) Update Odin lexer for new build tag feature ([#1038](https://github.com/alecthomas/chroma/issues/1038)) - [`0bd7c68`](`0bd7c68`) chore: bump go.mod to Go 1.22 + add Iterator.Stdlib() - [`d829579`](`d829579`) fix(ocaml): support multistring ([#1035](https://github.com/alecthomas/chroma/issues/1035)) - [`e79c813`](`e79c813`) chore(deps): update all non-major dependencies ([#1029](https://github.com/alecthomas/chroma/issues/1029)) </details> --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7459 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-04 03:52:13 +00:00
Renovate Bot	d688ca4515	Update module code.gitea.io/sdk/gitea to v0.21.0 (forgejo) (#7458 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| code.gitea.io/sdk/gitea \| require \| minor \| `v0.20.0` -> `v0.21.0` \| --- ### Configuration 📅 Schedule: Branch creation - "* 0-3 * * " (UTC), Automerge - " 0-3 * * " (UTC). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 Ignore*: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yMjIuMSIsInVwZGF0ZWRJblZlciI6IjM5LjIyMi4xIiwidGFyZ2V0QnJhbmNoIjoiZm9yZ2VqbyIsImxhYmVscyI6WyJkZXBlbmRlbmN5LXVwZ3JhZGUiLCJ0ZXN0L25vdC1uZWVkZWQiXX0=--> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7458 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-04 03:49:54 +00:00
Gusted	53df0bf9a4	chore(sec): unify usage of `crypto/rand.Read` (#7453 ) - Unify the usage of [`crypto/rand.Read`](https://pkg.go.dev/crypto/rand#Read) to `util.CryptoRandomBytes`. - Refactor `util.CryptoRandomBytes` to never return an error. It is documented by Go, https://go.dev/issue/66821, to always succeed. So if we still receive a error or if the returned bytes read is not equal to the expected bytes to be read we panic (just to be on the safe side). - This simplifies a lot of code to no longer care about error handling. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7453 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-04 03:31:37 +00:00
Gusted	99fc04b763	fix: make installing Forgejo work again (#7452 ) - The default engine is no longer guaranteed to be of the type `*xorm.Engine`, so instead return the interface `db.Engine`. - Regression of forgejo/forgejo#7212 # Testing 1. Install a Forgejo instance via the setup screen. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7452 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-04 03:30:19 +00:00
Gusted	afea42d517	chore: add empty `action_variable` fixture (#7419 ) - Ensures that this table gets emptied between integration tests and does not have any leftovers. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7419 Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-03 23:42:37 +00:00
Gusted	1ec672694a	chore(i18n): cleanup `settings.adopt` string (#7451 ) The translation of `settings.adopt` is not actually used, it is set as the title for a POST handler that does not actually render any template. It does render the the 'Internal server error' template, however for safety reasons it does not use the set context data. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7451 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-03 16:50:39 +00:00
Gnarwhal	d28a64e538	fix: handle viewing a submodule entry (#7261 ) - When trying to view a submodule directory via the normal `/src/branch/` path, generate a redirect link to the submodule location. - Resolves forgejo/forgejo#5267 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7261 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Gnarwhal <git.aspect893@passmail.net> Co-committed-by: Gnarwhal <git.aspect893@passmail.net>	2025-04-03 15:32:55 +00:00
famfo	77b0275572	feat(activitiypub): enable HTTP signatures on all ActivityPub endpoints (#7035 ) - Set the right keyID and use the right signing keys for outgoing requests. - Verify the HTTP signature of all incoming requests, except for the server actor. - Caches keys of incoming requests for users and servers actors. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7035 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: famfo <famfo@famfo.xyz> Co-committed-by: famfo <famfo@famfo.xyz>	2025-04-03 15:24:15 +00:00
Gusted	ba5b157f7e	feat(build): uniform ini parsing (#7429 ) - Use the existing ini parser for the `lint-locale` and `lint-locale-usage` tooling. - This discovered that the previous ini parser was not correctly parsing certain types of string, specifically those with `;` as it's seen as a comment. It now properly 'unescapes' that and is not seen as a comment break. - Discovered-by: @fogti Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7429 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-03 08:27:02 +00:00
Earl Warren	4ab40ed6af	i18n: update of translations from Codeberg Translate (#7363 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7363 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-03 07:53:45 +00:00
Codeberg Translate	275d8250ea	i18n: update of translations from Codeberg Translate Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Adolfo Jayme Barrientos <fito@noreply.codeberg.org> Co-authored-by: Atalanttore <atalanttore@noreply.codeberg.org> Co-authored-by: Benedikt Straub <benedikt-straub@web.de> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-authored-by: Dirk <dirk@noreply.codeberg.org> Co-authored-by: Edgarsons <edgarsons@noreply.codeberg.org> Co-authored-by: EkaterinePapava <ekaterinepapava@noreply.codeberg.org> Co-authored-by: Fjuro <fjuro@noreply.codeberg.org> Co-authored-by: GewoonLeon <gewoonleon@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-authored-by: Juno Takano <jutty@noreply.codeberg.org> Co-authored-by: Kita Ikuyo <kitakita@disroot.org> Co-authored-by: Miguel P.L <miguel_pl@noreply.codeberg.org> Co-authored-by: Outbreak2096 <outbreak2096@noreply.codeberg.org> Co-authored-by: SomeTr <sometr@noreply.codeberg.org> Co-authored-by: Zughy <zughy@noreply.codeberg.org> Co-authored-by: darkswordreams <darkswordreams@noreply.codeberg.org> Co-authored-by: earl-warren <earl-warren@noreply.codeberg.org> Co-authored-by: justbispo <justbispo@noreply.codeberg.org> Co-authored-by: kwoot <kwoot@noreply.codeberg.org> Co-authored-by: tacaly <frederick@tacaly.com> Co-authored-by: xtex <xtexchooser@duck.com> Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo-next/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/cs/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/da/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/de/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/el/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/es/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fil/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/fr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/hi/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/it/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ja/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ka/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/lv/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nds/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/nl/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_BR/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/pt_PT/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/ru/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/tr/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/uk/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hans/ Translate-URL: https://translate.codeberg.org/projects/forgejo/forgejo/zh_Hant/ Translation: Forgejo/forgejo Translation: Forgejo/forgejo-next	2025-04-03 07:02:09 +00:00
Gusted	5e79b39654	fix(migrations): transfer PR flow information (#7421 ) - When migrating a pull requests from a Gitea or Forgejo instance, check if the pull request was created via the AGit flow and transfer that bit of information to the migrated pull request. - Expose this bit of information as the `flow` field for the pull request. - We have to do a horrible Go hack with Gitea's [go-sdk](gitea.com/gitea/go-sdk) to list all pull requests while being able to decode it to a struct that contains the new `Flow` field. The library does not allow you to do this out of the box, so we have to use `go:linkname` to access the private method that allows us to do this. This in turn means we have to do some boilerplate code that the library otherwise would do for us. The better option would be forking, but that would be a hassle of keeping the library in sync. - Resolves forgejo/forgejo#5848 - Unit test added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7421 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-03 06:47:37 +00:00
Renovate Bot	738f721f3a	Update module github.com/mattn/go-sqlite3 to v1.14.27 (forgejo) (#7434 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7434 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-03 00:49:26 +00:00
Ellen Emilia Anna Zscheile	49709bb270	feat(build): run lint-locale-usage w/o --allow-missing-msgids (#7433 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7433 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de>	2025-04-02 23:52:10 +00:00
Gusted	ee5b102142	fix: make repo clone https/ssh listener conditional (#7431 ) - It's possible that either the SSH or HTTPS element does not exist. Thus make adding the event listener conditional. - Ref: forgejo/forgejo#7408 - Reported-by: @0ko Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7431 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-02 18:53:01 +00:00
Gusted	5706a2452e	fix(ui): display user-friendly message for range error (#7420 ) - Instead of displaying 'RangeError: Range' display 'x must be a number between $MIN and $MAX' when the validation fails for a range error check. - Resolves forgejo/forgejo#3510 - Added integration testing. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7420 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-02 15:48:09 +00:00
Ellen Emilia Anna Zscheile	15a2338ff2	feat(build): teach lint-locale-usage about trPluralString (#7425 ) This requires using the more complicated parsing from localestore.go In order to avoid future code drift and code duplication, localestore.go was refactored to call IterateMessagesContent instead of essentially duplicating the code of RecursivelyAddTranslationsFromJSON with small adjustments. locale/utils.go was moved to translation/localeiter/utils.go in order to avoid spreading translation-related routines among completely different places. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7425 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de>	2025-04-02 14:57:45 +00:00
Gusted	bd9366e7fc	fix(i18n): fix several usages of i18n (#7422 ) - Add new translations, if an existing one couldn't be used. - Use existing translations, if one existed and fit the purpose. - Spotted by the lint-locale-usage tooling by @fogti. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7422 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-02 14:50:02 +00:00
Gusted	f691f03741	chore(ui): remove fomantic's dimmer module (#7416 ) - Fomantic's dimmer module is responsible for dimming the page and make some element the primary focus on the page (e.g. modal). This module is only used by Fomantic's modal module. - Remove it and replace the javascript with our own `Dimmer` class that is able to provide Fomantic's modal module with everything it needs. - Replace the CSS with our own bare minimum CSS. - No functionality or visual is affected by this replacement. - E2E test added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7416 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-04-02 12:54:54 +00:00
Renovate Bot	d656978818	Update module github.com/go-webauthn/webauthn to v0.12.3 (forgejo) (#7423 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7423 Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-02 10:43:36 +00:00
Renovate Bot	18c38ed1f3	Update module github.com/mattn/go-sqlite3 to v1.14.25 (forgejo) (#7424 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7424 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-02 00:44:39 +00:00
Renovate Bot	61885a0eaa	Update dependency go to v1.24.2 (forgejo) (#7417 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7417 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-01 18:34:02 +00:00
0ko	6ad625b0c1	feat(ui): make JS asset load error message translatable (#7388 ) - The 'Failed to load asset files from [...]' is now an translatable string. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7388 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-01 16:14:38 +00:00
Gusted	c497ef9e81	chore: enable several no-jquery rules (#7408 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7408 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-01 16:08:51 +00:00
0ko	da62c2cac6	chore(ui): remove ineffective class small in inline code preview (#7414 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/2669 Ref https://codeberg.org/forgejo/forgejo/issues/5067 Since Forgejo v9 this class is overridden here by other CSS and is ineffective. But it looks ok and gives good visibility. If it needs to be re-implemed, it can be done via CSS, like: ```css .file-preview-box .header span {font-size:0.8rem;} ``` Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7414 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-04-01 15:55:56 +00:00
Gusted	979cc5cd93	[gitea] week 2025-13 cherry pick (gitea/main -> forgejo) (#7397 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7397 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-04-01 13:35:02 +00:00
Renovate Bot	c9c8fb6501	Update vitest monorepo to v3.1.1 (forgejo) (#7407 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-01 02:52:46 +00:00
Gusted	d9892e57bd	chore: enable `no-jquery/no-map-collection` No linter errors reported.	2025-04-01 04:44:44 +02:00
Gusted	9420d3d0a5	chore: enable `no-jquery/no-trigger` - A lot of substitution to `.requestSubmit()`. - Where possible, rewrite some other jquery to vanilla javascript to ease the linter fix.	2025-04-01 04:43:06 +02:00
Gusted	c124014115	chore: enable `no-jquery/no-each-util` - No longer allow `$.each`. This can easily be done with vanilla javascript.	2025-04-01 03:59:12 +02:00
Gusted	9eb67ba8ed	chore: enable `no-jquery/no-sizzle` Don't rely on Jquery's CSS selector engine.	2025-04-01 03:58:09 +02:00
Gusted	dde7c4a770	chore: add new `no-jquery` rules Were added in version v3.1.0.	2025-04-01 03:55:34 +02:00
Renovate Bot	8fdcde5f22	Update linters to v8.29.0 (forgejo) (#7406 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-04-01 00:44:50 +00:00
Lunny Xiao	b296354873	Hide activity contributors, recent commits and code frequrency left tabs if there is no code permission (#34053 ) When a team have no code unit permission of a repository, the member of the team should not view activity contributors, recent commits and code frequrency. --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 49899070cd600e7b7bd31a750f4d49de1722db23)	2025-04-01 02:28:02 +02:00
Royce Remer	adc2a215c1	Fail mirroring more gracefully (#34002 ) * reuse recoverable error checks across mirror_pull * add new cases for 'cannot lock ref/not our ref' (race condition in fetch) and 'Unable to create/lock" * move lfs sync right after commit graph write, and before other maintenance which may fail * try a prune for 'broken reference' as well as 'not our ref' * always sync LFS right after commit graph write, and before other maintenance which may fail This handles a few cases where our very large and very active repositories could serve mirrored git refs, but be missing lfs files: ## Case 1 (multiple variants): Race condition in git fetch There was already a check for 'unable to resolve reference' on a failed git fetch, after which a git prune and then subsequent fetch are performed. This is to work around a race condition where the git remote tells Gitea about a ref for some HEAD of a branch, then fails a few seconds later because the remote branch was deleted, or the ref was updated (force push). There are two more variants to the error message you can get, but for the same kind of race condition. These may be related to the git binary version Gitea has access to (in my case, it was 2.48.1). ## Case 2: githttp.go can serve updated git refs before it's synced lfs oids There is probably a more aggressive refactor we could do here to have the cat-file loop use FETCH_HEAD instead of relying on the commit graphs to be committed locally (and thus serveable to clients of Gitea), but a simple reduction in the occurrences of this for me was to move the lfs sync block immediately after the commit-graph write and before any other time-consuming (or potentially erroring/exiting) blocks. --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit e0ad72e2233f885669c26d9063a91abd594fb9f6)	2025-04-01 02:28:02 +02:00
silverwind	6d5fc19464	Enable color output in govulncheck (#34012 ) Make `govulncheck` show color, which by default it doesn't for some reason. (cherry picked from commit 2089401653cb4d351aa6e0bb6a86d987d115acb8)	2025-04-01 02:28:02 +02:00
Lunny Xiao	50f8563c67	Git client will follow 301 but 307 (#34005 ) Fix #28460 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit 356b707dde00f61f806c8a27879830a1d9b5b895)	2025-04-01 02:28:02 +02:00
Lunny Xiao	f68d49cb9e	Move ParseBool to optional (#33979 ) (cherry picked from commit 25b6f388651c893ecafce918f27bef7e4ae9a967)	2025-04-01 02:28:02 +02:00
silverwind	9018e5bc19	Cover `go.mod` and `go.sum` in `.editorconfig` (#33960 ) These files were previously set to use spaces for indendation but they are supposed to use tabs, so set this in editorconfig. (cherry picked from commit d1a755e5b7c676750f3dfad2254e047e2d23c4ac)	2025-04-01 02:28:02 +02:00
charles	9d8624f341	Fix file name could not be searched if the file was not a text file when using the Bleve indexer (#33959 ) Close #33828 --------- Co-authored-by: wxiaoguang <wxiaoguang@gmail.com> (cherry picked from commit b956cee06f462c4f34a7911351b7c878ce890725)	2025-04-01 02:28:02 +02:00
wxiaoguang	839739fb71	Defer captcha script loading (#33919 ) Fix #33899 (cherry picked from commit fdaf1cca65e118562b3cc2eb9e7c077b28f77213)	2025-04-01 02:28:02 +02:00
ChristopherHX	4ba5c957e0	Fix cannot delete runners via the modal dialog (#33895 ) delete-button and show-modal class are conflicting Closes #33894 (cherry picked from commit 7e8168f555b0a463866afcc10e9fddc34d363811)	2025-04-01 02:28:02 +02:00
Panagiotis "Ivory" Vasilopoulos	dbeab2a0c3	chore: introduce gitNeeded bool in setup (#7348 ) There are various commands of the Forgejo CLI that do not actually need Git, because i.e. they only issue network requests. Matter of fact, most occurrences do not actually require Git. By removing the Git initialization, operations by e.g. the manager will not fail in the absence of a Git binary. This is mostly relevant for an in-the-works Landlock implementation, which aims to minimize access to paths depending on the situation. Although we should expect that Git will be installed on the same system that the user is running Forgejo from, it somewhat slows things down, whereas the same edge cases that we are trying to protect the user from _could_ be achieved by keeping the `setting.RepoRootPath` check. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7348 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-committed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net>	2025-03-31 16:35:20 +00:00
Panagiotis "Ivory" Vasilopoulos	10c8ca62d2	refactor(cli): improve dump's temporary file handling (#7350 ) - Create temporary directory inside of a temporary directory (useful for a work-in-progress Landlock implementation, as we will not want to "whitelist" the entirety of the /tmp directory in our case, i.e. /tmp/forgejo-dump-133552095). - The database is always removed after dump is complete. - The temporary directory is removed if no temporary directory has been explicitly set (as in, created by Forgejo in /tmp or equivalent). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7350 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-committed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net>	2025-03-31 16:33:47 +00:00
Renovate Bot	a9faf1ff7b	Update renovate to v39.222.0 (forgejo) (#7399 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-31 06:49:32 +00:00
Gusted	4b56c05e65	fix: validate input for default_{merge,update}_style (#7395 ) - Add `binding:"In(...)"` to the `default_merge_style` and `default_update_style` fields to only accept recognized merge and update styles. - Resolves https://codeberg.org/forgejo/forgejo/issues/7389 - Added integration test for the API (`binding` works in the exact same way for the API and web routes). Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7395 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-31 03:33:18 +00:00
Renovate Bot	114cd6d4b6	Lock file maintenance (forgejo) (#7400 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7400 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-31 00:40:07 +00:00
Ellen Emilia Anna Zscheile	b0dd490ae1	feat(repo,locale): merge PR/issues cases for some repo/issue strings (#7092 ) - Merge `archive.nocomment` and `comment.blocked_by_user`'s variants for issue and pull request to a unified string and no longer have a issue and pull request variant. - Fixes #6443 Signed-off-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7092 Reviewed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de>	2025-03-30 21:58:34 +00:00
Gusted	3769259c93	chore: use dynamic id (#7396 ) - Follow up forgejo/forgejo#7378 - See https://codeberg.org/forgejo/forgejo/pulls/7378#issuecomment-3167157 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7396 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Otto <otto@codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-30 21:41:33 +00:00
Gusted	5275fbd4ea	fix(ui): clarify repo init instruction for sha256 (#7394 ) - When the repository is initalized with a different objectformat than sha1, ensure that the empty repository instructions reflects that the `git init` command also needs to be initialized with that objectformat. - Resolves https://codeberg.org/codeberg/community/issues/1837 - Added integration test. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7394 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-30 18:08:05 +00:00
Andreas Shimokawa	86039a89fc	fix(a11y): unreadable image captcha with dark themes (#7390 ) - When the user has a dark theme selected, image captchas are sometimes unreadable. - Make sure the image captcha always has a white background color. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7390 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Andreas Shimokawa <shimokawa@fsfe.org> Co-committed-by: Andreas Shimokawa <shimokawa@fsfe.org>	2025-03-30 14:51:37 +00:00
Renovate Bot	2348955af5	Lock file maintenance (forgejo) (#7392 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7392 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-30 14:49:48 +00:00
Gusted	7baf9994bd	chore: improve repo migrate e2e test (#7378 ) - Generate a repository name for each run, such that retries will use a new repository and not have any leftover. - Make the test actually pass by ensuring the unauthenticated page didn't reuse storage state that contained authenticated cookies. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7378 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-30 14:48:52 +00:00
Renovate Bot	facc2bb28e	Update github.com/google/pprof digest to a4b03ec (forgejo) (#7391 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7391 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-30 14:33:38 +00:00
Lucas Grzegorczyk	ba1e3405d6	feat(ui): Suggest `git switch` instead of `git checkout` (#7385 ) - A minor change that replaces the usages of `git checkout` to `git switch` in the UI. `git switch` is preferred over `git checkout` by git. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7385 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu> Co-authored-by: Lucas Grzegorczyk <furai@thd.vg> Co-committed-by: Lucas Grzegorczyk <furai@thd.vg>	2025-03-30 11:37:15 +00:00
pat-s	63a80bf2b9	feat: use XORM EngineGroup instead of single Engine connection (#7212 ) Resolves #7207 Add new configuration to make XORM work with a main and replicas database instances. The follow configuration parameters were added: - `HOST_PRIMARY` - `HOST_REPLICAS` - `LOAD_BALANCE_POLICY`. Options: - `"WeightRandom"` -> `xorm.WeightRandomPolicy` - `"WeightRoundRobin` -> `WeightRoundRobinPolicy` - `"LeastCon"` -> `LeastConnPolicy` - `"RoundRobin"` -> `xorm.RoundRobinPolicy()` - default: `xorm.RandomPolicy()` - `LOAD_BALANCE_WEIGHTS` Co-authored-by: pat-s <patrick.schratz@gmail.com@> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7212 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: pat-s <patrick.schratz@gmail.com> Co-committed-by: pat-s <patrick.schratz@gmail.com>	2025-03-30 11:34:02 +00:00
0ko	a23d0453a3	feat(ui/migrations): clarify desired autocompletion type for clone_addr (#7377 ) * Firefox thinks that this is a login form and that `clone_addr` is it's username field * It would have been an easy fix with with `autocomplete="off"`, but there's an issue with that approach: Firefox plays a cat-mouse game with web developers and intentionally ignores `autocomplete="off"` "for users' security". * Set it to the `url` autocompletion type, Firefox and maybe other browsers give actually somewhat relevant completion entries. They will not be always relevant, but they may be when a migration has to be re-done with different settings. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7377 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-03-30 11:31:42 +00:00
Gusted	bb4e1f426f	feat: include a default robots.txt to reduce the impact of crawlers (#7387 ) - Add a strong strict default robots.txt, if one is not provided by the instance administrators. - Remove code for the legacy public asset path, the error has been logged for a few releases already (existed since v1.21). - Resolves forgejo/forgejo#923 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7387 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-30 11:28:19 +00:00
Gusted	51caba694a	fix(ui): prepend AppSubURL to visibility hint URLs (#7379 ) - If configured, add `AppSubUrl` to the visibility hint URLs shown to the user on the profile activity page. - Resolves https://codeberg.org/forgejo/forgejo/issues/7327 - Integration testing adjusted. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7379 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-30 05:04:36 +00:00
Renovate Bot	d59495a4db	Update vitest monorepo to v3.0.9 (forgejo) (#7382 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-30 00:32:48 +00:00
Renovate Bot	32005ad2ab	Update linters (forgejo) (#7384 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-29 23:08:52 +00:00
Renovate Bot	50798d0a63	Update dependency yamllint to v1.37.0 (forgejo) (#7383 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-29 23:02:53 +00:00
Renovate Bot	aecf60f233	Update dependency @vitest/eslint-plugin to v1.1.38 (forgejo) (#7381 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-29 22:50:26 +00:00
YuviPanda	c9853e9e3a	fix: ignore trailing slash for autogenerated name (#7307 ) - During the migration process, if a valid GitHub clone URL was pasted, https://github.com/yuvipanda/notebooksharing.space/, the form automatically generates an invalid Forgejo repository name that included the trailing slash. - Change the regex used to generate the name to ignore the trailing slash. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7307 Reviewed-by: Otto <otto@codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: YuviPanda <yuvipanda@gmail.com> Co-committed-by: YuviPanda <yuvipanda@gmail.com>	2025-03-29 19:35:01 +00:00
Mat	8df8381f51	feat(ui/migrations): add placeholder to clarify empty description behavior (#7373 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7373 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Mat <m.falkowski@dotmat.de> Co-committed-by: Mat <m.falkowski@dotmat.de>	2025-03-29 10:21:07 +00:00
0ko	bf8bdf12df	chore(tests): refactor migration form test (#7374 ) Ref https://codeberg.org/forgejo/forgejo/pulls/7373. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7374 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org>	2025-03-29 09:06:03 +00:00
0ko	49ea851da9	chore(tests): fix testing failure caused by dep update (#7376 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7376 Reviewed-by: Michael Kriese <michael.kriese@gmx.de>	2025-03-29 08:17:44 +00:00
Renovate Bot	fed2d81c44	Update module github.com/golangci/golangci-lint/cmd/golangci-lint to v2 (forgejo) (#7367 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-28 22:22:21 +00:00
0ko	51ff4970ec	ui: improve error pages (#7274 ) * add testing * make each page accessible via `/devtest/error` * allow translating the `Page not found` part of the title * code: improve consistency, remove unused * devtest: put index page in a container to fix alignment * 500: make navbar more like the real one, remove fake menu button * deadcode: remove unused `func NotFound`: it was added in `bdd32f152d` and the only usage was removed in `1bfb0a24d8` Preview: https://codeberg.org/attachments/1b75afb3-e898-410f-be02-f036a5400143 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7274 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>	2025-03-28 19:50:43 +00:00
Renovate Bot	683eb5bf78	Update https://data.forgejo.org/tj-actions/changed-files action to v46 (forgejo) (#7366 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7366 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-28 14:25:27 +00:00
Renovate Bot	cdf254816b	Update module golang.org/x/net to v0.38.0 (forgejo) (#7362 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7362 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-28 14:12:05 +00:00
Renovate Bot	adce8fa7dd	Update dependency eslint-plugin-unicorn to v58 (forgejo) (#7372 ) Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-28 13:23:33 +00:00
Gusted	5380f23dab	chore: use correct import (#7371 ) - follow up for forgejo/forgejo#7355. It was merged before being rebased on the forgejo branch Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7371 Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-28 12:06:07 +00:00
ThomasBoom89	6cac7702e9	fix(api): encode empty requested reviewers as an empty array (#7355 ) - Always initialize `RequestedReviewers` and `RequestedReviewersTeams`, this avoids the JSON encoder from encoding it to the zero value `null` and instead return a empty array. - Resolves #4108 - Integration test added. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7355 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: ThomasBoom89 <thomasboom89@noreply.codeberg.org> Co-committed-by: ThomasBoom89 <thomasboom89@noreply.codeberg.org>	2025-03-28 11:50:05 +00:00
Simon Ochsenreither	85ae9d710c	fix(ui): improve vertical alignment of icons with text in the overflow menu (#7356 ) - Follow up for #7314. Turns out this impacted the positioning of icons in tabs negatively, like the "Conversation"/"Commits"/"Files changed". - Limit the change to the `overflow-menu` element. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7356 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Simon Ochsenreither <simon@ochsenreither.de> Co-committed-by: Simon Ochsenreither <simon@ochsenreither.de>	2025-03-28 11:47:58 +00:00
Simon Ochsenreither	da8aa01466	fix(ui): improve vertical alignment of icons with text in the overflow menu (#7314 ) - Add `vertical-align: baseline` to the svg class. - Improves the vertical alignment of the icons that contain text in the overflow menu, and possibly in other places. Co-authored-by: Simon Ochsenreither <simon@ochsenreither.de> Co-committed-by: Simon Ochsenreither <simon@ochsenreither.de>	2025-03-27 21:07:59 +00:00
0ko	7990bcf333	feat(ui): improve button gap consistency, make it variable, larger on touchscreens (#7271 ) * home buttons: use `button-sequence` for consistency of gaps with other ui * folder-actions: use `button-sequence` for better overflowing and so gap actually works instead of relying on whitespace, because currently it doesn't due to lack of flex * introduce variable `--button-spacing` for `button-row` and `button-sequence` * it's `0.33rem` on desktop for more pleasant hovering over button rows * it's `0.5rem` on touchscreens for worrying less about misstapping Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7271 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: 0ko <0ko@noreply.codeberg.org> Co-committed-by: 0ko <0ko@noreply.codeberg.org>	2025-03-27 21:01:29 +00:00
Gusted	2457f5ff22	chore: branding import path (#7337 ) - Massive replacement of changing `code.gitea.io/gitea` to `forgejo.org`. - Resolves forgejo/discussions#258 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7337 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Reviewed-by: Beowulf <beowulf@beocode.eu> Reviewed-by: Panagiotis "Ivory" Vasilopoulos <git@n0toose.net> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-27 19:40:14 +00:00
Codeberg Translate	372a3dad83	i18n: update of translations from Codeberg Translate (#7275 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7275 Reviewed-by: Earl Warren <earl-warren@noreply.codeberg.org> Co-authored-by: Codeberg Translate <translate@codeberg.org> Co-committed-by: Codeberg Translate <translate@codeberg.org>	2025-03-27 07:35:27 +00:00
Ellen Emilia Anna Zscheile	d0a5531ebc	feat(build): lint-locale-usage should detect more Tr functions (#7278 ) Followup to https://codeberg.org/forgejo/forgejo/pulls/7109 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7278 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de> Co-committed-by: Ellen Emilia Anna Zscheile <fogti+devel@ytrizja.de>	2025-03-26 14:06:44 +00:00
Gusted	e84d3a0f53	fix(ui): Do not check for `vertical-align` (#7344 ) - This makes the `repo-settings` e2e testing happy. - There's no point into checking `vertical-align`; it has no effect when `position: absolute` is set, which is is currently set unconditionally for checkboxes and radios on forms. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7344 Reviewed-by: Michael Kriese <michael.kriese@gmx.de> Co-authored-by: Gusted <postmaster@gusted.xyz> Co-committed-by: Gusted <postmaster@gusted.xyz>	2025-03-26 13:08:03 +00:00
Renovate Bot	6d7b4c8000	Update dependency mermaid to v11.6.0 (forgejo) (#7339 ) Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7339 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: Renovate Bot <forgejo-renovate-action@forgejo.org> Co-committed-by: Renovate Bot <forgejo-renovate-action@forgejo.org>	2025-03-26 12:47:35 +00:00
Earl Warren	d61f84ca7f	chore(cleanup): remove comment from README Codeberg is prominently mentioned as a public instance on https://forgejo.org already.	2025-03-26 09:58:55 +00:00

4017 changed files with 213488 additions and 67238 deletions

									
										2

.air.toml
									
										View file
										
				@ -11,7 +11,7 @@ include_file = ["main.go"]

				include_dir = ["cmd", "models", "modules", "options", "routers", "services"]

				exclude_dir = [

				  "models/fixtures",

				  "models/migrations/fixtures",

				  "models/gitea_migrations/fixtures",

				  "modules/avatar/identicon/testdata",

				  "modules/avatar/testdata",

				  "modules/git/tests",

35

.deadcode-out

View file

 @ -18,22 +18,25 @@ forgejo.org/models/auth
 forgejo.org/models/db
 	TruncateBeans
 	InTransaction
 	TruncateBeansCascade
 	DumpTables
 	GetTableNames
 	extendBeansForCascade
 	IsErrNameActivityPubInvalid
 forgejo.org/models/dbfs
 	file.renameTo
 	Create
 	Rename
 forgejo.org/models/forgefed
 	GetFederationHost
 forgejo.org/models/forgejo/semver
 	GetVersion
 	SetVersionString
 	SetVersion
 forgejo.org/models/forgejo_migrations
 	resetMigrations
 forgejo.org/models/git
 	RemoveDeletedBranchByID
 @ -47,10 +50,8 @@ forgejo.org/models/organization
 forgejo.org/models/perm/access
 	GetRepoWriters
 forgejo.org/models/repo
 	WatchRepoMode
 forgejo.org/models/user
 	IsErrUserWrongType
 	IsErrExternalLoginUserAlreadyExist
 	IsErrExternalLoginUserNotExist
 	NewFederatedUser
 @ -76,7 +77,6 @@ forgejo.org/modules/base
 	SetupGiteaRoot
 forgejo.org/modules/cache
 	GetInt
 	WithNoCacheContext
 	RemoveContextData
 @ -90,6 +90,7 @@ forgejo.org/modules/forgefed
 	NewForgeUndoLike
 	ForgeUndoLike.UnmarshalJSON
 	ForgeUndoLike.Validate
 	NewPersonIDFromModel
 	GetItemByType
 	JSONUnmarshalerFn
 	NotEmpty
 @ -102,6 +103,7 @@ forgejo.org/modules/git
 	AddChangesWithArgs
 	CommitChanges
 	CommitChangesWithArgs
 	IsErrMoreThanOne
 	SetUpdateHook
 	openRepositoryWithDefaultContext
 	ToEntryMode
 @ -130,6 +132,9 @@ forgejo.org/modules/json
 	StdJSON.Indent
 forgejo.org/modules/log
 	eventWriterBuffer.Close
 	eventWriterBuffer.Write
 	eventWriterBuffer.GetString
 	NewEventWriterBuffer
 forgejo.org/modules/markup
 @ -188,10 +193,14 @@ forgejo.org/modules/translation
 	MockLocale.Tr
 	MockLocale.TrN
 	MockLocale.TrPluralString
 	MockLocale.TrPluralStringAllForms
 	MockLocale.TrSize
 	MockLocale.HasKey
 	MockLocale.PrettyNumber
 forgejo.org/modules/translation/localeiter
 	IterateMessagesContent
 forgejo.org/modules/util
 	OptionalArg
 @ -210,24 +219,28 @@ forgejo.org/modules/zstd
 	Writer.Write
 	Writer.Close
 forgejo.org/routers/web
 	NotFound
 forgejo.org/routers/web/org
 	MustEnableProjects
 forgejo.org/services/context
 	GetPrivateContext
 forgejo.org/services/notify
 	UnregisterNotifier
 forgejo.org/services/repository
 	IsErrForkAlreadyExist
 forgejo.org/services/repository/files
 	ContentType.String
 	RepoFileOptionMode
 forgejo.org/services/repository/gitgraph
 	Parser.Reset
 forgejo.org/services/stats
 	Flush
 forgejo.org/services/webhook
 	NewNotifier

									
										12

.devcontainer/devcontainer.json
									
										View file
										
				@ -1,16 +1,12 @@

				{

				  "name": "Gitea DevContainer",

				  "image": "mcr.microsoft.com/devcontainers/go:1.24-bullseye",

				  "name": "forgejo-dev",

				  "image": "mcr.microsoft.com/devcontainers/go:1.26-trixie",

				  "features": {

				    // installs nodejs into container

				    "ghcr.io/devcontainers/features/node:1": {

				      "version": "20"

				    },

				    "ghcr.io/devcontainers/features/git-lfs:1.2.3": {},

				    "ghcr.io/devcontainers-contrib/features/poetry:2": {},

				    "ghcr.io/devcontainers/features/python:1": {

				      "version": "3.12"

				      "version": "24"

				    },

				    "ghcr.io/devcontainers/features/git-lfs:1.2.5": {},

				    "ghcr.io/warrenbuckley/codespace-features/sqlite:1": {}

				  },

				  "customizations": {

4

.dockerignore

View file

 @ -37,13 +37,9 @@ coverage.all
 coverage/
 cpu.out
 /modules/migration/bindata.go
 /modules/migration/bindata.go.hash
 /modules/options/bindata.go
 /modules/options/bindata.go.hash
 /modules/public/bindata.go
 /modules/public/bindata.go.hash
 /modules/templates/bindata.go
 /modules/templates/bindata.go.hash
 *.db

									
										8

.editorconfig
									
										View file
										
				@ -12,6 +12,9 @@ insert_final_newline = true

				[{*.{go,tmpl,html},Makefile,go.mod}]

				indent_style = tab

				[go.*]

				indent_style = tab

				[templates/custom/*.tmpl]

				insert_final_newline = false

				@ -27,7 +30,6 @@ insert_final_newline = false

				[options/locale/locale_*.ini]

				insert_final_newline = false

				# Weblate JSON output defaults to four spaces

				# Weblate is configured to use one tab for indention

				[options/locale_next/locale_*.json]

				indent_style = space

				indent_size = 4

				indent_style = tab

									
										107

.forgejo/issue_template/1-problem.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,107 @@

				name: "Step 1: Report a problem or need"

				description: Please start here and describe your situation.

				title: "problem: "

				labels: ["problem", "impact/unknown"]

				body:

				- type: markdown

				  attributes:

				    value: |

				      **NOTE: If your issue is a security concern, please email <security@forgejo.org> ([security.txt](https://forgejo.org/.well-known/security.txt)) instead of opening a public issue.**

				- type: markdown

				  attributes:

				    value: |

				      - Please speak English, as this is the language all maintainers can speak and write.

				      - Be civil, and follow the [Forgejo Code of Conduct](https://codeberg.org/forgejo/code-of-conduct).

				      - Take a moment to [check if a similar problem has already been discussed in the past.](https://codeberg.org/forgejo/forgejo/issues?q=&type=all&labels=78137). Feel free to add your own experience there, if applicable.

				- type: markdown

				  attributes:

				    value: |

				      ### New workflow

				      We are currently experimenting with a new workflow to manage issues and better understand your problems and needs. This is step 1 of the workflow: Please try to focus on explaining the problem you are facing, which could be a bug in the code, a moment of confusion, or a need that you have.

				      We do not expect anything from Forgejo users after creating a problem report, but we appreciate if you stay responsive to further questions. If you want, you can also participate in a discussion for solutions.

				      Forgejo contributors will review your report, try to understand how important it is to you and other Forgejo users, and suggest potential solutions. In a next step, solutions can be documented and implemented.

				      If you want to learn more about the background of our workflow, feel invited to read and participate in [the discussion that led to the current approach](https://codeberg.org/forgejo/discussions/issues/415). We are looking forward to your feedback.

				- type: dropdown

				  id: can-reproduce

				  attributes:

				    label: Does your problem still exist on the latest Forgejo version?

				    description: |

				      Please try reproducing your problem at https://dev.next.forgejo.org or a local development version of Forgejo.

				      If you check that your problem is not already addressed by a recent change, this will save all volunteers involved a lot of time.

				    options:

				    - "Yes, the problem still exists (tested on a next instance)"

				    - "Yes, the problem still exists (tested locally with the latest development version)"

				    - "Unknown, I can't try it for some reason (please explain)"

				  validations:

				    required: true

				- type: textarea

				  id: environment

				  attributes:

				    label: About your usage of Forgejo

				    description: |

				      Please provide a brief description of your usage of Forgejo. There is no clear guideline on how much you need to share here. You can be brief, but we value the insights you provide us to better understand your use case. Thank you very much!

				      <details><summary>Further instructions</summary>

				      * When reporting problems with certain functionality, you should include related information. Examples:

				        * When reporting an issue with setting up an identity provider, it is useful to know if you use Forgejo in a 10-users non-profit / start up, or if you are talking about a school / university with several thousands of users.

				        * When describing confusion, it will be relevant to know your skill level and background ("New, but used a similar product", "In my role as a project manager ..."), so we know for which target audience we need to design the functionality.

				        * When reporting workflow issues or needs, it will be useful to know how large your project is, how many team members you have, which skill level we are talking about etc. For example, we might choose a different design depending on whether a feature is only for professional developers or for hobby coders.

				      * If you want, we always appreciate generic information about your Forgejo usage to help us understand your usage and make better decisions. For example:

				        * Your personal relation to Forgejo and user role ("I'm new to Forgejo, but used a comparable product called …", "In my role as a designer, …").

				      * If you already explained your usage of Forgejo elsewhere (e.g. in another issue or in a user research repository), feel free to just drop a link.

				      </details>

				  validations:

				    required: true

				- type: textarea

				  id: description

				  attributes:

				    label: Problem description

				    description: |

				      Please describe your problem as a first-hand experience. Try to focus on the problem. You do not have to find a solution, you can leave this to us.

				      <details><summary>Further instructions</summary>

				      * Start by explaining what you want to achieve ("I wanted to find an issue to work on").

				      * Try to include steps that you took and that resulted in the current situation. ("I opened the issue tracker, clicked on …, then …").

				      * If there were moments of confusion, please describe them. ("There was a button saying … and I was not sure if it would do what I expect").

				      * If you want to do something and don't know how or if it is possible, explain the goal ("I would like to know if there are issues that meet the following criteria …").

				      </details>

				  validations:

				    required: true

				- type: textarea

				  id: workarounds

				  attributes:

				    label: Potential workarounds

				    description: |

				      If you found a solution to your problem, even if it is not great, please share your experiences with it.

				      <details><summary>Further instructions</summary>

				      * Start by explaining what you tried and how it worked out ("I used X and it gives me the results, but it takes a lot of time to click through the UI").

				      * What are the major problems with your workaround(s)? ("It takes long to get there", "It looks very ugly")

				      </details>

				- type: input

				  id: forgejo-ver

				  attributes:

				    label: Forgejo Version

				    description: Forgejo version (or commit reference) your instance is running or that you used to reproduce the bug on Forgejo Next.

				- type: textarea

				  id: versions

				  attributes:

				    label: Other details about your environment (software names and versions)

				    description: |

				      Please include details to help us understand your problem: browser engine and version (for UI issues), operating system and version running Forgejo, database engine and version, deployment methods and relevant third-party packages (e.g. renderers, identity providers)

				  validations:

				    required: true

				- type: markdown

				  attributes:

				    value: |

				      ### Solutions

				      *Accepted solutions to address this problem will go here*

				  visible: [content]

									
										39

.forgejo/issue_template/2-enhancement.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,39 @@

				name: "Step 2: Enhancement"

				description: "[Advanced users only] Suggest a solution to one or multiple problems that have already been reported (see step 1)."

				title: "enh: "

				labels: ["enhancement/feature"]

				body:

				- type: markdown

				  attributes:

				    value: |

				      - Please speak English, as this is the language all maintainers can speak and write.

				      - Be civil, and follow the [Forgejo Code of Conduct](https://codeberg.org/forgejo/code-of-conduct).

				- type: markdown

				  attributes:

				    value: |

				      ### New workflow

				      We are currently experimenting with a new workflow to manage issues and better understand your problems and needs. This is step 2 of the workflow, which is intended for Forgejo contributors: If you just want to raise a problem or need you have, please refer to step 1.

				      This step allows to document a solution to one or multiple problems. It allows developers to focus on actionable implementation tasks without the clutter of previous discussions or triaging work.

				      If you want to learn more about the background of our workflow, feel invited to read and participate in [the discussion that led to the current approach](https://codeberg.org/forgejo/discussions/issues/415). We are looking forward to your feedback.

				- type: textarea

				  id: problems

				  attributes:

				    label: Existing problems this enhancement addresses

				    description: Only list the issue numbers of the **existing** problems that your proposal addresses. **Do not add new descriptions.** If you haven't previously described a problem, please [complete step one of the workflow](https://codeberg.org/forgejo/forgejo/issues/new?template=.forgejo%2fissue_template%2fproblem.yaml) and describe the problem you'd like to solve first.

				  validations:

				    required: true

				- type: textarea

				  id: description

				  attributes:

				    label: Enhancement description

				    description: Describe the changes you suggest for Forgejo and explain how they address the problems.

				  validations:

				    required: true

				- type: textarea

				  id: details

				  attributes:

				    label: Details and notes

				    description: Feel free to supply additional information like technical considerations, link to alternative solutions, UI mockups etc.

									
										9

.forgejo/issue_template/bug-report-ui.yaml → .forgejo/issue_template/3-bug-report-ui.yaml
									
										View file
										
				@ -1,12 +1,12 @@

				name: 🦋 Bug Report (web interface / frontend)

				description: Something doesn't look quite as it should?  Report it here!

				description: "[Advanced users only] Something doesn't look quite as it should?  Report it here!"

				title: "bug: "

				labels: ["bug/new-report", "forgejo/ui"]

				body:

				- type: markdown

				  attributes:

				    value: |

				      **NOTE: If your issue is a security concern, please email <security@forgejo.org> (GPG: `A4676E79`) instead of opening a public issue.**

				      **NOTE: If your issue is a security concern, please email <security@forgejo.org> ([security.txt](https://forgejo.org/.well-known/security.txt)) instead of opening a public issue.**

				- type: markdown

				  attributes:

				    value: |

				@ -23,8 +23,9 @@ body:

				      It is running the latest development branch and will confirm the problem is not already fixed.

				      If you can reproduce it, provide a URL in the description.

				    options:

				    - "Yes"

				    - "No"

				    - "Yes, I've linked the repository below"

				    - "No, I've tried it and the problem is not present there"

				    - "No, I can't try it on the test instance for some reason"

				  validations:

				    required: true

				- type: textarea

									
										9

.forgejo/issue_template/bug-report.yaml → .forgejo/issue_template/4-bug-report.yaml
									
										View file
										
				@ -1,12 +1,12 @@

				name: 🐛 Bug Report (server / backend)

				description: Found something you weren't expecting? Report it here!

				description: "[Advanced users only] Found something you weren't expecting? Report it here!"

				title: "bug: "

				labels: bug/new-report

				body:

				- type: markdown

				  attributes:

				    value: |

				      **NOTE: If your issue is a security concern, please email <security@forgejo.org> (GPG: `A4676E79`) instead of opening a public issue.**

				      **NOTE: If your issue is a security concern, please email <security@forgejo.org> ([security.txt](https://forgejo.org/.well-known/security.txt)) instead of opening a public issue.**

				- type: markdown

				  attributes:

				    value: |

				@ -23,8 +23,9 @@ body:

				      It is running the latest development branch and will confirm the problem is not already fixed.

				      If you can reproduce it, provide a URL in the description.

				    options:

				    - "Yes"

				    - "No"

				    - "Yes, I've linked the repository below"

				    - "No, I've tried it and the problem is not present there"

				    - "No, I can't try it on the test instance for some reason"

				  validations:

				    required: true

				- type: textarea

									
										1

.forgejo/issue_template/config.yml
									
										View file
										
				@ -1,3 +1,4 @@

				blank_issues_enabled: false

				contact_links:

				  - name: 🔓 Security Reports

				    url: mailto:security@forgejo.org

									
										31

.forgejo/issue_template/feature-request.yaml
									
										View file
									
				@ -1,31 +0,0 @@

				name: 💡 Feature Request

				description: Got an idea for a feature that Forgejo doesn't have yet? Suggest it here!

				title: "feat: "

				labels: ["enhancement/feature"]

				body:

				- type: markdown

				  attributes:

				    value: |

				      - Please speak English, as this is the language all maintainers can speak and write.

				      - Be as clear and concise as possible. A very verbose request is harder to interpret in a concrete way.

				      - Be civil, and follow the [Forgejo Code of Conduct](https://codeberg.org/forgejo/code-of-conduct).

				      - Please make sure you are using the latest release of Forgejo and take a moment to [check that your feature hasn't already been suggested](https://codeberg.org/forgejo/forgejo/issues?q=&type=all&labels=78139).

				- type: textarea

				  id: needs-benefits

				  attributes:

				    label: Needs and benefits

				    description: As concisely as possible, describe the benefits your feature request will provide or the problems it will try to solve.

				  validations:

				    required: true

				- type: textarea

				  id: description

				  attributes:

				    label: Feature Description

				    description: As concisely as possible, describe the feature you would like to see added or the changes you would like to see made to Forgejo.

				  validations:

				    required: true

				- type: textarea

				  id: screenshots

				  attributes:

				    label: Screenshots

				    description: If you can, provide screenshots of an implementation on another site, e.g. GitHub.

									
										22

.forgejo/pull_request_template.md
									
										View file
										
				@ -10,13 +10,22 @@ labels:

				## Checklist

				The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org).

				The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org).

				### Tests

				### Tests for Go changes

				(can be removed for JavaScript changes)

				- I added test coverage for Go changes...

				  - [ ] in their respective `*_test.go` for unit tests.

				  - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server.

				- I ran...

				  - [ ] `make pr-go` before pushing

				### Tests for JavaScript changes

				(can be removed for Go changes)

				- I added test coverage for JavaScript changes...

				  - [ ] in `web_src/js/*.test.js` if it can be unit tested.

				  - [ ] in `tests/e2e/*.test.e2e.js` if it requires interactions with a live Forgejo server (see also the [developer guide for JavaScript testing](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/tests/e2e/README.md#end-to-end-tests)).

				@ -28,6 +37,9 @@ The [contributor guide](https://forgejo.org/docs/next/contributor/) contains inf

				### Release notes

				- [ ] I do not want this change to show in the release notes.

				- [ ] I want the title to show in the release notes with a link to this pull request.

				- [ ] I want the content of the `release-notes/<pull request number>.md` to be be used for the release notes instead of the title.

				- [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change.

				- [ ] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change.

				*The decision if the pull request will be shown in the release notes is up to the mergers / release team.*

				The content of the `release-notes/<pull request number>.md` file will serve as the basis for the release notes. If the file does not exist, the title of the pull request will be used instead.

									
										67

renovate.json → .forgejo/renovate.json
									
										View file
										
				@ -6,17 +6,17 @@

				    "docker:pinDigests",

				    "helpers:pinGitHubActionDigests"

				  ],

				  "baseBranches": [

				  "baseBranchPatterns": [

				    "$default",

				    "/^v7\\.\\d+/forgejo$/",

				    "/^v10\\.\\d+/forgejo$/",

				    "/^v11\\.\\d+/forgejo$/"

				    "/^v11\\.\\d+/forgejo$/",

				    "/^v15\\.\\d+/forgejo$/"

				  ],

				  "postUpdateOptions": ["gomodTidy", "gomodUpdateImportPaths", "npmDedupe"],

				  "prConcurrentLimit": 10,

				  "osvVulnerabilityAlerts": true,

				  "dependencyDashboardReportAbandonment": false,

				  "dependencyDashboardHeader": "This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.\n- [ ] <!-- manual job -->Check this box to trigger a request for Renovate to run again on this repository\n",

				  "automergeStrategy": "squash",

				  "labels": ["dependency-upgrade","test/not-needed"],

				  "labels": ["dependency-upgrade", "test/not-needed"],

				  "packageRules": [

				    {

				      "description": "Require approval for python minor version",

				@ -28,18 +28,15 @@

				      "description": "Require dashboard approval for some deps",

				      "matchPackageNames": [

				        "docker.io/bitnami/minio",

				        "github.com/go-ap/activitypub",

				        "github.com/nektos/act",

				        "gitea.com/gitea/act"

				        "github.com/go-ap/activitypub"

				      ],

				      "dependencyDashboardApproval": true

				    },

				    {

				      "description": "Schedule some deps less frequently",

				      "matchPackageNames": [

				        "code.forgejo.org/f3/gof3/v3",

				        "github.com/google/pprof",

				        "github.com/golangci/misspell/cmd/misspell"

				        "code.forgejo.org/f3/gof3/**",

				        "github.com/google/pprof"

				      ],

				      "extends": ["schedule:quarterly"]

				    },

				@ -81,7 +78,7 @@

				      "description": "Split minor and patch updates",

				      "matchPackageNames": [

				        "containerbase/python-prebuild",

				        "github.com/urfave/cli/v2",

				        "github.com/urfave/cli/**",

				        "python",

				        "swagger-ui-dist",

				        "vue"

				@ -92,7 +89,7 @@

				      "description": "Automerge patch updates",

				      "matchPackageNames": [

				        "vue",

				        "github.com/urfave/cli/v2",

				        "github.com/urfave/cli/**",

				        "swagger-ui-dist"

				      ],

				      "matchUpdateTypes": ["patch"],

				@ -127,8 +124,8 @@

				        "@vitejs/plugin-vue",

				        "@vue/test-utils",

				        "djlint",

				        "github.com/editorconfig-checker/editorconfig-checker/v2/cmd/editorconfig-checker",

				        "github.com/golangci/golangci-lint/cmd/golangci-lint",

				        "github.com/editorconfig-checker/editorconfig-checker/**",

				        "github.com/golangci/golangci-lint/**",

				        "github.com/go-testfixtures/testfixtures",

				        "github.com/PuerkitoBio/goquery",

				        "happy-dom",

				@ -142,9 +139,31 @@

				      "automerge": true

				    },

				    {

				      "description": "Hold back on some package updates for a few days",

				      "matchPackageNames": ["monaco-editor"],

				      "minimumReleaseAge": "30 days"

				      "description": "Run end-to-end tests for some dependencies",

				      "matchPackageNames": [

				        "code.forgejo.org/forgejo/runner/**"

				      ],

				      "addLabels": ["run-end-to-end-tests"]

				    },

				    {

				      "description": "Disable indirect updates for stable branches",

				      "matchBaseBranches": ["/^v\\d+\\.\\d+\\/forgejo$/"],

				      "matchManagers": ["gomod"],

				      "matchUpdateTypes": ["major", "minor", "patch", "digest"],

				      "matchDepTypes": ["indirect"],

				      "enabled": false

				    },

				    {

				      "description": "Disable major updates for stable branches",

				      "matchBaseBranches": ["/^v\\d+\\.\\d+\\/forgejo$/"],

				      "matchUpdateTypes": ["major"],

				      "enabled": false

				    },

				    {

				      "description": "Disable updates for old stable branches but still allow security updates",

				      "matchBaseBranches": ["v11.0/forgejo", "v14.0/forgejo"],

				      "matchUpdateTypes": ["minor", "patch", "digest"],

				      "enabled": false

				    },

				    {

				      "description": "Require approval for stable branches (must be last rule to override all others)",

				@ -152,15 +171,5 @@

				      "dependencyDashboardApproval": true,

				      "schedule": ["at any time"]

				    }

				  ],

				  "customManagers": [

				    {

				      "description": "Update deps inside Makefile",

				      "customType": "regex",

				      "fileMatch": ["^Makefile$"],

				      "matchStrings": [

				        " \\?= (?<depName>.+?)@(?<currentValue>.+?) # renovate: datasource=(?<datasource>.+?)(?: packageName=(?<packageName>.+?))?( versioning=(?<versioning>.+?))?\\s"

				      ]

				    }

				  ]

				}

2

.forgejo/testdata/build-release/Dockerfile vendored

View file

 @ -1,4 +1,4 @@
 FROM data.forgejo.org/oci/alpine:3.22
 FROM data.forgejo.org/oci/alpine:3.23
 ARG RELEASE_VERSION=unkown
 LABEL maintainer="contact@forgejo.org" \
       org.opencontainers.image.version="${RELEASE_VERSION}"

									
										2

.forgejo/workflows-composite/apt-install-from/action.yaml
									
										View file
										
				@ -18,7 +18,7 @@ runs:

				    - name: install packages

				      run: |

				        apt-get update -qq

				        apt-get -q install -qq -y ${PACKAGES}

				        apt-get -q install --allow-downgrades -qq -y ${PACKAGES}

				      env:

				        PACKAGES: ${{inputs.packages}}

				    - name: remove temporary package list to prevent using it in other steps

									
										2

.forgejo/workflows-composite/build-backend/action.yaml
									
										View file
										
				@ -3,7 +3,7 @@ runs:

				  steps:

				    - run: |

				        su forgejo -c 'make deps-backend'

				    - uses: https://data.forgejo.org/actions/cache@v4

				    - uses: https://data.forgejo.org/actions/cache@v5

				      id: cache-backend

				      with:

				        path: ${{github.workspace}}/gitea

									
										22

.forgejo/workflows-composite/install-minimum-git-version/action.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,22 @@

				#

				# Install the minimal version of Git supported by Forgejo

				#

				runs:

				  using: "composite"

				  steps:

				    - name: install git and git-lfs

				      run: |

				        set -x

				        export DEBIAN_FRONTEND=noninteractive

				        apt-get update -qq

				        apt-get -q install -y -qq curl ca-certificates

				        curl -sS -o /tmp/git-man.deb https://archive.ubuntu.com/ubuntu/pool/main/g/git/git-man_2.34.1-1ubuntu1_all.deb

				        curl -sS -o /tmp/git.deb https://archive.ubuntu.com/ubuntu/pool/main/g/git/git_2.34.1-1ubuntu1_amd64.deb

				        curl -sS -o /tmp/git-lfs.deb https://archive.ubuntu.com/ubuntu/pool/universe/g/git-lfs/git-lfs_3.0.2-1_amd64.deb

				        apt-get -q install --allow-downgrades -y -qq /tmp/git-man.deb

				        apt-get -q install --allow-downgrades -y -qq /tmp/git.deb

				        apt-get -q install --allow-downgrades -y -qq /tmp/git-lfs.deb

									
										4

.forgejo/workflows-composite/setup-cache-go/action.yaml
									
										View file
										
				@ -17,7 +17,7 @@ runs:

				        apt-get -q install -qq -y zstd

				    - name: "Set up Go using setup-go"

				      uses: https://data.forgejo.org/actions/setup-go@v5

				      uses: https://data.forgejo.org/actions/setup-go@v6

				      id: go-version

				      with:

				        go-version-file: "go.mod"

				@ -50,7 +50,7 @@ runs:

				    - name: "Restore Go dependencies from cache or mark for later caching"

				      id: cache-deps

				      uses: https://data.forgejo.org/actions/cache@v4

				      uses: https://data.forgejo.org/actions/cache@v5

				      with:

				        key: setup-cache-go-deps-${{ runner.os }}-${{ inputs.username }}-${{ steps.go-version.outputs.go_version }}-${{ hashFiles('go.sum', 'go.mod', 'Makefile') }}

				        restore-keys: |

									
										4

.forgejo/workflows/backport.yml
									
										View file
										
				@ -40,14 +40,14 @@ jobs:

				      )

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/node:24-bookworm'

				    steps:

				      - name: event info

				        run: |

				          cat <<'EOF'

				          ${{ toJSON(github) }}

				          EOF

				      - uses: https://data.forgejo.org/actions/git-backporting@v4.8.4

				      - uses: https://data.forgejo.org/actions/git-backporting@v4.9.1

				        with:

				          target-branch-pattern: "^backport/(?<target>(v.*))$"

				          strategy: ort

									
										10

.forgejo/workflows/build-release-integration.yml
									
										View file
										
				@ -1,4 +1,8 @@

				name: Integration tests for the release process

				enable-email-notifications: true

				env:

				  FORGEJO_VERSION: 11.0.14 # renovate: datasource=docker depName=data.forgejo.org/forgejo/forgejo

				on:

				  push:

				@ -25,14 +29,14 @@ jobs:

				    if: vars.ROLE == 'forgejo-coding'

				    runs-on: lxc-bookworm

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - id: forgejo

				        uses: https://data.forgejo.org/actions/setup-forgejo@v3.1.7

				        uses: https://data.forgejo.org/actions/setup-forgejo@v3.1.11

				        with:

				          user: root

				          password: admin1234

				          image-version: 1.21

				          image-version: ${{ env.FORGEJO_VERSION }}

				          lxc-ip-prefix: 10.0.9

				      - name: publish the forgejo release

									
										23

.forgejo/workflows/build-release.yml
									
										View file
										
				@ -33,7 +33,7 @@ jobs:

				    # root is used for testing, allow it

				    if: vars.ROLE == 'forgejo-integration' || github.repository_owner == 'root'

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				        with:

				          fetch-depth: 0

				@ -43,11 +43,11 @@ jobs:

				          repository="${{ github.repository }}"

				          echo "value=${repository##*/}" >> "$GITHUB_OUTPUT"

				      - uses: https://data.forgejo.org/actions/setup-node@v4

				      - uses: https://data.forgejo.org/actions/setup-node@v6

				        with:

				          node-version: 22

				      - uses: https://data.forgejo.org/actions/setup-go@v5

				      - uses: https://data.forgejo.org/actions/setup-go@v6

				        with:

				          go-version-file: "go.mod"

				@ -93,7 +93,7 @@ jobs:

				      - name: cache node_modules

				        id: node

				        uses: https://data.forgejo.org/actions/cache@v4

				        uses: https://data.forgejo.org/actions/cache@v5

				        with:

				          path: |

				            node_modules

				@ -164,7 +164,7 @@ jobs:

				      - name: build container & release

				        if: ${{ secrets.TOKEN != '' }}

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/build@v5.5.1

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/build@v5.6.0

				        with:

				          forgejo: "${{ env.GITHUB_SERVER_URL }}"

				          owner: "${{ env.GITHUB_REPOSITORY_OWNER }}"

				@ -183,7 +183,7 @@ jobs:

				      - name: build rootless container

				        if: ${{ secrets.TOKEN != '' }}

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/build@v5.5.1

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/build@v5.6.0

				        with:

				          forgejo: "${{ env.GITHUB_SERVER_URL }}"

				          owner: "${{ env.GITHUB_REPOSITORY_OWNER }}"

				@ -227,11 +227,14 @@ jobs:

				            curl -sS -X DELETE $url/api/v1/repos/forgejo-experimental/forgejo/releases/tags/$tag > /dev/null

				            curl -sS -X DELETE $url/api/v1/repos/forgejo-experimental/forgejo/tags/$tag > /dev/null

				          fi

				          # actions/checkout@v3 sets http.https://codeberg.org/.extraheader with the automatic token.

				          # Get rid of it so it does not prevent using the token that has write permissions

				          git config --local --unset http.https://codeberg.org/.extraheader

				          # actions/checkout@v6 sets http.https://codeberg.org/.extraheader with the automatic token. Get rid of it so

				          # it does not prevent using the token that has write permissions. As of @v6, it is stored in

				          # $RUNNER_TEMP/git-credentials-(uuid).config and included in the repo via

				          # includeif.gitdir:...=$RUNNER_TEMP/git-credentials-(uuid).config. Since we don't need these credentials

				          # anymore we can just remove the generated config file.

				          rm -f $RUNNER_TEMP/git-credentials-*

				          if test -f .git/shallow ; then

				            echo "unexptected .git/shallow file is present"

				            echo "unexpected .git/shallow file is present"

				            echo "it suggests a checkout --depth X was used which may prevent pushing the commit"

				            echo "it happens when actions/checkout is called without depth: 0"

				          fi

									
										6

.forgejo/workflows/cascade-setup-end-to-end.yml
									
										View file
										
				@ -35,9 +35,9 @@ jobs:

				      )

				    runs-on: docker

				    container:

				      image: data.forgejo.org/oci/node:22-bookworm

				      image: data.forgejo.org/oci/node:24-bookworm

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				        with:

				          fetch-depth: '0'

				          show-progress: 'false'

				@ -53,5 +53,5 @@ jobs:

				          destination-repo: forgejo/end-to-end

				          destination-branch: main

				          destination-token: ${{ secrets.END_TO_END_CASCADING_PR_DESTINATION }}

				          close-merge: true

				          close: true

				          update: .forgejo/cascading-pr-end-to-end

									
										89

.forgejo/workflows/coverage.yml
									
										Normal file
									
										View file
										
				@ -0,0 +1,89 @@

				name: coverage

				on:

				  workflow_dispatch:

				    inputs:

				      repository:

				        description: 'repository'

				        type: string

				      ref:

				        description: 'ref'

				        type: string

				      unit-tests-env:

				        description: 'COVERAGE_TEST_PACKAGES=forgejo.org/modules/actions'

				        type: string

				      integration-tests-env:

				        description: 'COVERAGE_TEST_ARGS=-run=TestAPIListRepoComments'

				        type: string

				jobs:

				  all:

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/ci:1'

				      options: --tmpfs /tmp:exec,noatime

				    services:

				      elasticsearch:

				        image: data.forgejo.org/oci/bitnami/elasticsearch:7

				        options: --tmpfs /bitnami/elasticsearch/data

				        env:

				          discovery.type: single-node

				          ES_JAVA_OPTS: "-Xms512m -Xmx512m"

				      minio:

				        image: data.forgejo.org/oci/bitnami/minio:2024.8.17

				        options: >-

				          --hostname gitea.minio --tmpfs /bitnami/minio/data:noatime

				        env:

				          MINIO_DOMAIN: minio

				          MINIO_ROOT_USER: 123456

				          MINIO_ROOT_PASSWORD: 12345678

				      mysql:

				        image: 'data.forgejo.org/oci/bitnami/mysql:8.4'

				        env:

				          ALLOW_EMPTY_PASSWORD: yes

				          MYSQL_DATABASE: testgitea

				          #

				          # See also https://codeberg.org/forgejo/forgejo/issues/976

				          #

				          MYSQL_EXTRA_FLAGS: --innodb-adaptive-flushing=OFF --innodb-buffer-pool-size=4G --innodb-log-buffer-size=128M --innodb-flush-log-at-trx-commit=0 --innodb-flush-log-at-timeout=30 --innodb-flush-method=nosync --innodb-fsync-threshold=1000000000 --disable-log-bin

				        options: --tmpfs /bitnami/mysql/data:noatime

				      ldap:

				        image: data.forgejo.org/oci/forgejo-test-openldap:latest

				      pgsql:

				        image: data.forgejo.org/oci/bitnami/postgresql:16

				        env:

				          POSTGRESQL_DATABASE: test

				          POSTGRESQL_PASSWORD: postgres

				          POSTGRESQL_FSYNC: off

				          POSTGRESQL_EXTRA_FLAGS: -c full_page_writes=off

				        options: --tmpfs /bitnami/postgresql

				      cacher:

				        image: registry.redict.io/redict:7.3.6-scratch

				        options: --tmpfs /data:noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v6

				        with:

				          repository: ${{ inputs.repository }}

				          ref: ${{ inputs.ref }}

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install git >= 2.42

				        uses: ./.forgejo/workflows-composite/apt-install-from

				        with:

				          packages: git

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - run: |

				          su forgejo -c '${{ inputs.unit-tests-env }} make coverage-run'

				          su forgejo -c '${{ inputs.integration-tests-env }} make coverage-run-pgsql'

				          su forgejo -c '${{ inputs.integration-tests-env }} make coverage-run-mysql'

				          su forgejo -c '${{ inputs.integration-tests-env }} make coverage-run-sqlite'

				          su forgejo -c 'make coverage-merge'

				        timeout-minutes: 180

				        env:

				          TEST_ELASTICSEARCH_URL: http://elasticsearch:9200

				          TEST_MINIO_ENDPOINT: minio:9000

				          TEST_LDAP: 1

				          TEST_REDIS_SERVER: cacher:6379

				      - uses: https://data.forgejo.org/forgejo/upload-artifact@v5

				        with:

				          name: coverage

				          path: ${{ forge.workspace }}/coverage/merged

									
										2

.forgejo/workflows/forgejo-integration-cleanup.yml
									
										View file
										
				@ -9,7 +9,7 @@ jobs:

				    if: vars.ROLE == 'forgejo-integration'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/node:24-bookworm'

				    steps:

				      - name: apt install curl jq

									
										19

.forgejo/workflows/merge-requirements.yml
									
										View file
										
				@ -1,4 +1,4 @@

				# Copyright 2024 The Forgejo Authors

				# Copyright 2025 The Forgejo Authors

				# SPDX-License-Identifier: MIT

				name: requirements

				@ -13,10 +13,11 @@ on:

				jobs:

				  merge-conditions:

				    if: vars.ROLE == 'forgejo-coding'

				    if: >

				      vars.ROLE == 'forgejo-coding' && forge.event.pull_request.head.repo.full_name != 'forgejo-cascading-pr/forgejo'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/node:24-bookworm'

				    steps:

				      - name: Debug output

				        run: |

				@ -26,18 +27,18 @@ jobs:

				      - name: Missing test label

				        if: >

				          !(

				            contains(toJSON(github.event.pull_request.labels), 'test/present')

				            || contains(toJSON(github.event.pull_request.labels), 'test/not-needed')

				            || contains(toJSON(github.event.pull_request.labels), 'test/manual')

				            contains(toJSON(forge.event.pull_request.labels), 'test/present')

				            || contains(toJSON(forge.event.pull_request.labels), 'test/not-needed')

				            || contains(toJSON(forge.event.pull_request.labels), 'test/manual')

				          )

				        run: |

				          echo "Test label must be set to either 'present', 'not-needed' or 'manual'."

				          echo "A team member must set the label to either 'present', 'not-needed' or 'manual'."

				          exit 1

				      - name: Missing manual test instructions

				        if: >

				          (

				            contains(toJSON(github.event.pull_request.labels), 'test/manual')

				            && !contains(toJSON(github.event.pull_request.body), '# Test')

				            contains(toJSON(forge.event.pull_request.labels), 'test/manual')

				            && !contains(toJSON(forge.event.pull_request.body), '# Test')

				          )

				        run: |

				          echo "Manual test label is set. The PR description needs to contain test steps introduced by a heading like:"

									
										2

.forgejo/workflows/mirror.yml
									
										View file
										
				@ -11,7 +11,7 @@ jobs:

				    if: ${{ secrets.MIRROR_TOKEN != '' }}

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/node:24-bookworm'

				    steps:

				      - name: git push {v*/,}forgejo

				        run: |

									
										4

.forgejo/workflows/publish-release.yml
									
										View file
										
				@ -41,10 +41,10 @@ jobs:

				    runs-on: lxc-bookworm

				    if: vars.DOER != '' && vars.FORGEJO != '' && vars.TO_OWNER != '' && vars.FROM_OWNER != '' && secrets.TOKEN != ''

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - name: copy & sign

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/publish@v5.5.1

				        uses: https://data.forgejo.org/forgejo/forgejo-build-publish/publish@v5.6.0

				        with:

				          from-forgejo: ${{ vars.FORGEJO }}

				          to-forgejo: ${{ vars.FORGEJO }}

									
										27

.forgejo/workflows/release-notes-assistant-milestones.yml
									
										View file
										
				@ -4,30 +4,35 @@ on:

				  schedule:

				    - cron: '@daily'

				env:

				  RNA_WORKDIR: /srv/rna

				  RNA_VERSION: v1.7.0 # renovate: datasource=forgejo-releases depName=forgejo/release-notes-assistant registryUrl=https://code.forgejo.org

				jobs:

				  release-notes:

				    if: vars.ROLE == 'forgejo-coding'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/ci:1'

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: https://data.forgejo.org/actions/setup-go@v5

				      - uses: https://data.forgejo.org/actions/cache@v5

				        with:

				          go-version-file: "go.mod"

				          cache: false

				          key: rna-${{ env.RNA_VERSION }}

				          path: ${{ env.RNA_WORKDIR }}

				      - name: apt install jq

				      - name: install release-notes-assistant

				        run: |

				          export DEBIAN_FRONTEND=noninteractive

				          apt-get update -qq

				          apt-get -q install -y -qq jq

				          set -x

				          wget -O /usr/local/bin/rna https://code.forgejo.org/forgejo/release-notes-assistant/releases/download/${{ env.RNA_VERSION}}/release-notes-assistant

				          chmod +x /usr/local/bin/rna

				      - name: update open milestones

				        run: |

				          set -x

				          curl -sS $GITHUB_SERVER_URL/api/v1/repos/$GITHUB_REPOSITORY/milestones?state=open | jq -r '.[] | .title' | while read forgejo version ; do

				          mkdir -p ${{ env.RNA_WORKDIR }}

				          curl -sS $FORGEJO_SERVER_URL/api/v1/repos/$FORGEJO_REPOSITORY/milestones?state=open | jq -r '.[] | .title' | while read forgejo version ; do

				            milestone="$forgejo $version"

				            go run code.forgejo.org/forgejo/release-notes-assistant@v1.1.1 --config .release-notes-assistant.yaml --storage milestone --storage-location "$milestone"  --forgejo-url $GITHUB_SERVER_URL --repository $GITHUB_REPOSITORY --token ${{ secrets.RELEASE_NOTES_ASSISTANT_TOKEN }} release $version

				            rna --workdir ${{ env.RNA_WORKDIR }} --config .release-notes-assistant.yaml --storage milestone --storage-location "$milestone" --forgejo-url $FORGEJO_SERVER_URL --repository $FORGEJO_REPOSITORY --token ${{ secrets.RELEASE_NOTES_ASSISTANT_TOKEN }} release $version

				          done

									
										22

.forgejo/workflows/release-notes-assistant.yml
									
										View file
										
				@ -7,14 +7,17 @@ on:

				      - synchronize

				      - labeled

				env:

				  RNA_VERSION: v1.7.0 # renovate: datasource=forgejo-releases depName=forgejo/release-notes-assistant registryUrl=https://code.forgejo.org

				jobs:

				  release-notes:

				    if: ( vars.ROLE == 'forgejo-coding' ) && contains(github.event.pull_request.labels.*.name, 'worth a release-note')

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-bookworm'

				      image: 'data.forgejo.org/oci/ci:1'

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - name: event

				        run: |

				@ -25,17 +28,12 @@ jobs:

				          ${{ toJSON(github.event) }}

				          EOF

				      - uses: https://data.forgejo.org/actions/setup-go@v5

				        with:

				          go-version-file: "go.mod"

				          cache: false

				      - name: apt install jq

				      - name: install release-notes-assistant

				        run: |

				          export DEBIAN_FRONTEND=noninteractive

				          apt-get update -qq

				          apt-get -q install -y -qq jq

				          set -x

				          wget -O /usr/local/bin/rna https://code.forgejo.org/forgejo/release-notes-assistant/releases/download/${{ env.RNA_VERSION}}/release-notes-assistant

				          chmod +x /usr/local/bin/rna

				      - name: release-notes-assistant preview

				        run: |

				          go run code.forgejo.org/forgejo/release-notes-assistant@v1.1.1 --config .release-notes-assistant.yaml --storage pr --storage-location ${{ github.event.pull_request.number }}  --forgejo-url $GITHUB_SERVER_URL --repository $GITHUB_REPOSITORY --token ${{ secrets.RELEASE_NOTES_ASSISTANT_TOKEN }} preview ${{ github.event.pull_request.number }}

				          rna --config .release-notes-assistant.yaml --storage pr --storage-location ${{ github.event.pull_request.number }} --forgejo-url $GITHUB_SERVER_URL --repository $GITHUB_REPOSITORY --token ${{ secrets.RELEASE_NOTES_ASSISTANT_TOKEN }} preview ${{ github.event.pull_request.number }}

									
										74

.forgejo/workflows/renovate.yml
									
										View file
									
				@ -1,74 +0,0 @@

				#

				# Runs every 2 hours, but Renovate is limited to create new PR before 4am.

				# See renovate.json for more settings.

				# Automerge is enabled for Renovate PR's but need to be approved before.

				#

				name: renovate

				on:

				  push:

				    branches:

				      - renovate/** # self-test updates

				    paths:

				      - .forgejo/workflows/renovate.yml

				  schedule:

				    - cron: '0 0/2 * * *'

				  workflow_dispatch:

				env:

				  RENOVATE_DRY_RUN: ${{ (github.event_name != 'schedule' && github.ref_name != github.event.repository.default_branch) && 'full' || '' }}

				  RENOVATE_REPOSITORIES: ${{ github.repository }}

				  # fix because 10.0.0-58-7e1df53+gitea-1.22.0 < 10.0.0 for semver

				  # and codeberg api returns such versions from `git describe --tags`

				  RENOVATE_X_PLATFORM_VERSION: 10.0.0+gitea-1.22.0

				jobs:

				  renovate:

				    if: vars.ROLE == 'forgejo-coding' && secrets.RENOVATE_TOKEN != ''

				    runs-on: docker

				    container:

				      image: data.forgejo.org/renovate/renovate:39.212.0

				    steps:

				      - name: Load renovate repo cache

				        uses: https://data.forgejo.org/actions/cache/restore@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4.1.1

				        with:

				          path: |

				            .tmp/cache/renovate/repository

				            .tmp/cache/renovate/renovate-cache-sqlite

				            .tmp/osv

				          key: repo-cache-${{ github.run_id }}

				          restore-keys: |

				            repo-cache-

				      - name: Run renovate

				        run: renovate

				        env:

				          GITHUB_COM_TOKEN: ${{ secrets.RENOVATE_GITHUB_COM_TOKEN }}

				          LOG_LEVEL: debug

				          RENOVATE_BASE_DIR: ${{ github.workspace }}/.tmp

				          RENOVATE_ENDPOINT: ${{ github.server_url }}

				          RENOVATE_PLATFORM: gitea

				          RENOVATE_REPOSITORY_CACHE: 'enabled'

				          RENOVATE_TOKEN: ${{ secrets.RENOVATE_TOKEN }}

				          RENOVATE_GIT_AUTHOR: 'Renovate Bot <forgejo-renovate-action@forgejo.org>'

				          RENOVATE_X_SQLITE_PACKAGE_CACHE: true

				          GIT_AUTHOR_NAME: 'Renovate Bot'

				          GIT_AUTHOR_EMAIL: 'forgejo-renovate-action@forgejo.org'

				          GIT_COMMITTER_NAME: 'Renovate Bot'

				          GIT_COMMITTER_EMAIL: 'forgejo-renovate-action@forgejo.org'

				          OSV_OFFLINE_ROOT_DIR: ${{ github.workspace }}/.tmp/osv

				      - name: Save renovate repo cache

				        if: always() && env.RENOVATE_DRY_RUN != 'full'

				        uses: https://data.forgejo.org/actions/cache/save@3624ceb22c1c5a301c8db4169662070a689d9ea8 # v4.1.1

				        with:

				          path: |

				            .tmp/cache/renovate/repository

				            .tmp/cache/renovate/renovate-cache-sqlite

				            .tmp/osv

				          key: repo-cache-${{ github.run_id }}

									
										99

.forgejo/workflows/testing-integration.yml
									
										Normal file
									
										View file
										
				@ -0,0 +1,99 @@

				#

				# Additional integration tests designed to run once a day when

				# `mirror.yml` pushes to https://codeberg.org/forgejo-integration/forgejo

				# and send a notification via email to the contact email of the

				# organization should they fail.

				#

				# For debug purposes:

				#

				# - uncomment [on].pull_request

				# - swap 'forgejo-integration' and 'forgejo-coding'

				# - open a pull request at https://codeberg.org/forgejo/forgejo and fix things

				# - swap 'forgejo-integration' and 'forgejo-coding'

				# - comment [on].pull_request

				#

				name: testing-integration

				on:

				#  pull_request:

				  push:

				    tags: 'v[0-9]+.[0-9]+.*'

				    branches:

				      - 'forgejo'

				      - 'v*/forgejo'

				enable-email-notifications: true

				jobs:

				  test-unit:

				#    if: vars.ROLE == 'forgejo-coding'

				    if: vars.ROLE == 'forgejo-integration'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install git 2.34.1 and git-lfs 3.0.2

				        uses: ./.forgejo/workflows-composite/install-minimum-git-version

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - run: |

				          su forgejo -c 'make test-backend test-check'

				        timeout-minutes: 120

				        env:

				          RACE_ENABLED: 'true'

				          TAGS: bindata

				  test-sqlite:

				#    if: vars.ROLE == 'forgejo-coding'

				    if: vars.ROLE == 'forgejo-integration'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install git 2.34.1 and git-lfs 3.0.2

				        uses: ./.forgejo/workflows-composite/install-minimum-git-version

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - run: |

				          su forgejo -c 'make test-sqlite-migration test-sqlite'

				        timeout-minutes: 120

				        env:

				          TAGS: sqlite sqlite_unlock_notify

				          RACE_ENABLED: true

				          TEST_TAGS: sqlite sqlite_unlock_notify

				          USE_REPO_TEST_DIR: 1

				  test-mariadb:

				#    if: vars.ROLE == 'forgejo-coding'

				    if: vars.ROLE == 'forgejo-integration'

				    runs-on: docker

				    name: ${{ format('test-mariadb (v{0})', matrix.version) }}

				    strategy:

				      matrix:

				        version: ['10.6', '11.8']

				    container:

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    services:

				      mysql:

				        image: ${{ format('data.forgejo.org/oci/mariadb:{0}', matrix.version) }}

				        env:

				          MARIADB_ALLOW_EMPTY_ROOT_PASSWORD: yes

				          MARIADB_DATABASE: testgitea

				        options: --tmpfs /var/lib/mysql:noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install dependencies

				        run: apt-get update -qq && apt-get -q install -qq -y git-lfs

				        env:

				          DEBIAN_FRONTEND: noninteractive

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - run: |

				          su forgejo -c 'make test-mysql-migration test-mysql'

				        timeout-minutes: 120

				        env:

				          USE_REPO_TEST_DIR: 1

									
										92

.forgejo/workflows/testing.yml
									
										View file
										
				@ -1,4 +1,5 @@

				name: testing

				enable-email-notifications: true

				on:

				  pull_request:

				@ -13,7 +14,7 @@ jobs:

				    if: vars.ROLE == 'forgejo-coding' || vars.ROLE == 'forgejo-testing'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - name: event info

				@ -21,23 +22,35 @@ jobs:

				          cat <<'EOF'

				          ${{ toJSON(github) }}

				          EOF

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - run: su forgejo -c 'make deps-backend deps-tools'

				      - run: su forgejo -c 'make --always-make -j$(nproc) lint-backend tidy-check swagger-check lint-swagger fmt-check swagger-validate' # ensure the "go-licenses" make target runs

				      # DO NOT add checks here, but rather in the makefile

				      - run: su forgejo -c './tools/cimake.sh pr-go'

				      # this will re-run the backend target also contained in pr-go, but

				      # a re-build is insignificant

				      - uses: ./.forgejo/workflows-composite/build-backend

				  frontend-checks:

				    if: vars.ROLE == 'forgejo-coding' || vars.ROLE == 'forgejo-testing'

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: https://data.forgejo.org/actions/setup-node@v6

				        with:

				          node-version-file: .node-version

				      - run: make deps-frontend

				      - run: make lint-frontend

				      - run: make checks-frontend

				      - run: make test-frontend-coverage

				      - name: make test-frontend-coverage

				        run: |

				          # Usage of `dayjs` can be impacted by local system timezone and can be sensitive to DST differences; since

				          # frontend tests are very short they're run twice with varying DST rules to reduce regression risk.

				          TZ=Europe/Berlin make test-frontend-coverage

				          TZ=America/Edmonton make test-frontend-coverage

				      - run: make frontend

				      - name: Install zstd for cache saving

				        # works around https://github.com/actions/cache/issues/1169, because the

				@ -45,8 +58,8 @@ jobs:

				        run: |

				          apt-get update -qq

				          apt-get -q install -qq -y zstd

				      - name: "Cache frontend build for playwright testing"

				        uses: https://data.forgejo.org/actions/cache/save@v4

				      - name: 'Cache frontend build for playwright testing'

				        uses: https://data.forgejo.org/actions/cache/save@v5

				        with:

				          path: ${{github.workspace}}/public/assets

				          key: frontend-build-${{ github.sha }}

				@ -55,7 +68,7 @@ jobs:

				    runs-on: docker

				    needs: [backend-checks, frontend-checks]

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    services:

				      elasticsearch:

				@ -63,7 +76,7 @@ jobs:

				        options: --tmpfs /bitnami/elasticsearch/data

				        env:

				          discovery.type: single-node

				          ES_JAVA_OPTS: "-Xms512m -Xmx512m"

				          ES_JAVA_OPTS: '-Xms512m -Xmx512m'

				      minio:

				        image: data.forgejo.org/oci/bitnami/minio:2024.8.17

				        options: >-

				@ -73,7 +86,7 @@ jobs:

				          MINIO_ROOT_USER: 123456

				          MINIO_ROOT_PASSWORD: 12345678

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: test release-notes-assistant.sh

				        run: |

				@ -96,24 +109,29 @@ jobs:

				      image: 'data.forgejo.org/oci/playwright:latest'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				        with:

				          fetch-depth: 20

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: "Restore frontend build"

				        uses: https://data.forgejo.org/actions/cache/restore@v4

				      - name: 'Restore frontend build'

				        uses: https://data.forgejo.org/actions/cache/restore@v5

				        id: cache-frontend

				        with:

				          path: ${{github.workspace}}/public/assets

				          key: frontend-build-${{ github.sha }}

				      - name: "Build frontend (if not cached)"

				      - name: 'Build frontend (if not cached)'

				        if: steps.cache-frontend.outputs.cache-hit != 'true'

				        run: |

				          su forgejo -c 'make deps-frontend frontend'

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - name: Decide to run all tests

				        id: run-all

				        if: contains(github.event.pull_request.labels.*.name, 'run-all-playwright-tests') || contains(github.event.pull_request.title, 'playwright')

				        run: |

				          echo "all=1" >> "$GITHUB_OUTPUT"

				      - name: Get changed files

				        id: changed-files

				        uses: https://data.forgejo.org/tj-actions/changed-files@v45

				        uses: https://data.forgejo.org/tj-actions/changed-files@v47

				        with:

				          separator: '\n'

				      - run: |

				@ -123,9 +141,10 @@ jobs:

				          USE_REPO_TEST_DIR: 1

				          PLAYWRIGHT_SKIP_BROWSER_DOWNLOAD: 1

				          CHANGED_FILES: ${{steps.changed-files.outputs.all_changed_files}}

				          RUN_ALL: ${{steps.run-all.all}}

				      - name: Upload test artifacts on failure

				        if: failure()

				        uses: https://data.forgejo.org/forgejo/upload-artifact@v4

				        uses: https://data.forgejo.org/forgejo/upload-artifact@v5

				        with:

				          name: test-artifacts.zip

				          path: tests/e2e/test-artifacts/

				@ -135,7 +154,7 @@ jobs:

				    runs-on: docker

				    needs: [backend-checks, frontend-checks, test-unit]

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    name: ${{ format('test-remote-cacher ({0})', matrix.cacher.name) }}

				    strategy:

				@ -157,8 +176,10 @@ jobs:

				      cacher:

				        image: ${{ matrix.cacher.image }}

				        options: ${{ matrix.cacher.options }}

				        env:

				          ALLOW_EMPTY_PASSWORD: 'yes' # redis & valkey will immediately shutdown with no defined password unless overridden

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - uses: ./.forgejo/workflows-composite/build-backend

				      - run: |

				@ -167,13 +188,13 @@ jobs:

				        env:

				          RACE_ENABLED: 'true'

				          TAGS: bindata

				          TEST_REDIS_SERVER: cacher:${{ matrix.cacher.port }}

				          TEST_REDIS_SERVER: cacher:6379

				  test-mysql:

				    if: vars.ROLE == 'forgejo-coding' || vars.ROLE == 'forgejo-testing'

				    runs-on: docker

				    needs: [backend-checks, frontend-checks]

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    services:

				      mysql:

				@ -187,7 +208,7 @@ jobs:

				          MYSQL_EXTRA_FLAGS: --innodb-adaptive-flushing=OFF --innodb-buffer-pool-size=4G --innodb-log-buffer-size=128M --innodb-flush-log-at-trx-commit=0 --innodb-flush-log-at-timeout=30 --innodb-flush-method=nosync --innodb-fsync-threshold=1000000000 --disable-log-bin

				        options: --tmpfs /bitnami/mysql/data:noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install dependencies

				        run: apt-get update -qq && apt-get -q install -qq -y git-lfs

				@ -204,7 +225,7 @@ jobs:

				    runs-on: docker

				    needs: [backend-checks, frontend-checks]

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    services:

				      minio:

				@ -225,7 +246,7 @@ jobs:

				          POSTGRESQL_EXTRA_FLAGS: -c full_page_writes=off

				        options: --tmpfs /bitnami/postgresql

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install dependencies

				        run: apt-get update -qq && apt-get -q install -qq -y git-lfs

				@ -244,10 +265,10 @@ jobs:

				    runs-on: docker

				    needs: [backend-checks, frontend-checks]

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - name: install dependencies

				        run: apt-get update -qq && apt-get -q install -qq -y git-lfs

				@ -272,10 +293,23 @@ jobs:

				      - test-remote-cacher

				      - test-unit

				    container:

				      image: 'data.forgejo.org/oci/node:22-trixie'

				      image: 'data.forgejo.org/oci/node:24-trixie'

				      options: --tmpfs /tmp:exec,noatime

				    steps:

				      - uses: https://data.forgejo.org/actions/checkout@v4

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - uses: ./.forgejo/workflows-composite/setup-env

				      - run: su forgejo -c 'make deps-backend deps-tools'

				      - run: su forgejo -c 'make security-check'

				  semgrep:

				    if: vars.ROLE == 'forgejo-coding' || vars.ROLE == 'forgejo-testing'

				    name: semgrep/ci

				    runs-on: docker

				    container:

				      image: 'data.forgejo.org/oci/semgrep:latest'

				    steps:

				      - run: apk add nodejs # required for actions/checkout

				      - uses: https://data.forgejo.org/actions/checkout@v6

				      - name: self-check semgrep rules

				        run: semgrep --test .semgrep/tests/ --config .semgrep/config/

				      - name: semgrep ci

				        run: semgrep ci --config .semgrep/config/ --metrics=off

6

.gitignore vendored

View file

 @ -37,6 +37,8 @@ _testmain.go
 *coverage.out
 coverage.all
 coverage.html
 coverage.html.gz
 coverage/
 cpu.out
 @ -53,6 +55,8 @@ cpu.out
 *.log
 *.log.*.gz
 /build/lint-locale/lint-locale
 /build/lint-locale-usage/lint-locale-usage
 /gitea
 /gitea-vet
 /debug
 @ -103,6 +107,7 @@ cpu.out
 /.air
 /.go-licenses
 /.cur-deadcode-out
 /.deadcode.diff
 # Files and folders that were previously generated
 /public/assets/img/webpack
 @ -129,3 +134,4 @@ prime/
 # Manpage
 /man
 tests/integration/api_activitypub_person_inbox_useractivity_test.go

									
										519

.golangci.yml
									
										View file
										
				@ -1,7 +1,10 @@

				---

				version: "2"

				output:

				  sort-order:

				    - file

				linters:

				  enable-all: false

				  disable-all: true

				  fast: false

				  default: none

				  enable:

				    - bidichk

				    - depguard

				@ -9,142 +12,412 @@ linters:

				    - errcheck

				    - forbidigo

				    - gocritic

				    - gofmt

				    - gofumpt

				    - gosimple

				    - govet

				    - importas

				    - ineffassign

				    - modernize

				    - nakedret

				    - nolintlint

				    - revive

				    - staticcheck

				    - stylecheck

				    - testifylint

				    - typecheck

				    - unconvert

				    - unused

				    - unparam

				    - unused

				    - usetesting

				    - wastedassign

				    - nilnil

				  settings:

				    depguard:

				      rules:

				        main:

				          deny:

				            - pkg: encoding/json

				              desc: use gitea's modules/json instead of encoding/json

				            - pkg: golang.org/x/exp

				              desc: it's experimental and unreliable

				            - pkg: forgejo.org/modules/git/internal

				              desc: do not use the internal package, use AddXxx function instead

				            - pkg: gopkg.in/ini.v1

				              desc: do not use the ini package, use gitea's config system instead

				            - pkg: github.com/minio/sha256-simd

				              desc: use crypto/sha256 instead, see https://codeberg.org/forgejo/forgejo/pulls/1528

				            - pkg: github.com/go-git/go-git

				              desc: use forgejo.org/modules/git instead, see https://codeberg.org/forgejo/forgejo/pulls/4941

				            - pkg: gopkg.in/yaml.v3

				              desc: use go.yaml.in/yaml instead, see https://codeberg.org/forgejo/forgejo/pulls/8956

				        migration-isolation:

				          list-mode: lax

				          files:

				            - "**/models/forgejo_migrations/**"

				          deny:

				            - pkg: "forgejo.org/models"

				              desc: >

				                Migrations must not import application models. Application models will be the most recent schema for

				                Forgejo, while migrations will be operating against the database schema that existed when they were

				                authored.

				            - pkg: "forgejo.org/services"

				              desc: >

				                Migrations must not import application services. Application services will reference application

				                models which will use the most recent schema for Forgejo, while migrations will be operating against the

				                database schema that existed when they were authored.

				          allow:

				            - "forgejo.org/models/db"

				            - "forgejo.org/models/gitea_migrations/base"

				            - "forgejo.org/models/gitea_migrations/test"

				    gocritic:

				      disabled-checks:

				        - ifElseChain

				    importas:

				      alias:

				        # Specific overrides that would violate the default rules further below.

				        - pkg: forgejo.org/models/db

				          alias: ""

				        - pkg: forgejo.org/models/organization

				          alias: org_model

				run:

				  timeout: 10m

				        - pkg: forgejo.org/services/context

				          alias: app_context

				        - pkg: forgejo.org/services/doctor

				          alias: doctor

				        - pkg: forgejo.org/services/repository

				          alias: repo_service

				output:

				  sort-results: true

				  sort-order: [file]

				  show-stats: true

				        # Make sure that we follow a consistent naming for model and service aliases.

				        - pkg: 'forgejo.org/(model|service)s/(\w+)'

				          alias: '${2}_${1}'

				linters-settings:

				  stylecheck:

				    checks: ["all", "-ST1005", "-ST1003"]

				  nakedret:

				    max-func-lines: 0

				  gocritic:

				    disabled-checks:

				      - ifElseChain

				  revive:

				    severity: error

				    revive:

				      severity: error

				      rules:

				        - name: atomic

				        - name: bare-return

				        - name: blank-imports

				        - name: constant-logical-expr

				        - name: context-as-argument

				        - name: context-keys-type

				        - name: dot-imports

				        - name: duplicated-imports

				        - name: empty-lines

				        - name: error-naming

				        - name: error-return

				        - name: error-strings

				        - name: errorf

				        - name: exported

				        - name: identical-branches

				        - name: if-return

				        - name: increment-decrement

				        - name: indent-error-flow

				        - name: modifies-value-receiver

				        - name: package-comments

				        - name: range

				        - name: receiver-naming

				        - name: redefines-builtin-id

				        - name: string-of-int

				        - name: superfluous-else

				        - name: time-naming

				        - name: unconditional-recursion

				        - name: unexported-return

				        - name: unreachable-code

				        - name: var-declaration

				        - name: var-naming

				          arguments:

				            - []

				            - []

				            - - skip-package-name-checks: true

				        - name: redefines-builtin-id

				          disabled: true

				    staticcheck:

				      checks:

				        - all

				    testifylint:

				      disable:

				        - error-is-as

				        - go-require

				    nilnil:

				      only-two: false

				  exclusions:

				    generated: lax

				    presets:

				      - comments

				      - common-false-positives

				      - legacy

				      - std-error-handling

				    rules:

				      - name: atomic

				      - name: bare-return

				      - name: blank-imports

				      - name: constant-logical-expr

				      - name: context-as-argument

				      - name: context-keys-type

				      - name: dot-imports

				      - name: duplicated-imports

				      - name: empty-lines

				      - name: error-naming

				      - name: error-return

				      - name: error-strings

				      - name: errorf

				      - name: exported

				      - name: identical-branches

				      - name: if-return

				      - name: increment-decrement

				      - name: indent-error-flow

				      - name: modifies-value-receiver

				      - name: package-comments

				      - name: range

				      - name: receiver-naming

				      - name: redefines-builtin-id

				      - name: string-of-int

				      - name: superfluous-else

				      - name: time-naming

				      - name: unconditional-recursion

				      - name: unexported-return

				      - name: unreachable-code

				      - name: var-declaration

				      - name: var-naming

				      - name: redefines-builtin-id

				        disabled: true

				  gofumpt:

				    extra-rules: true

				  depguard:

				    rules:

				      main:

				        deny:

				          - pkg: encoding/json

				            desc: use gitea's modules/json instead of encoding/json

				          - pkg: github.com/unknwon/com

				            desc: use gitea's util and replacements

				          - pkg: io/ioutil

				            desc: use os or io instead

				          - pkg: golang.org/x/exp

				            desc: it's experimental and unreliable

				          - pkg: forgejo.org/modules/git/internal

				            desc: do not use the internal package, use AddXxx function instead

				          - pkg: gopkg.in/ini.v1

				            desc: do not use the ini package, use gitea's config system instead

				          - pkg: github.com/minio/sha256-simd

				            desc: use crypto/sha256 instead, see https://codeberg.org/forgejo/forgejo/pulls/1528

				  testifylint:

				    disable:

				      - go-require

				      - linters:

				          - nolintlint

				        path: models/db/sql_postgres_with_schema.go

				      - linters:

				          - dupl

				          - errcheck

				          - gocyclo

				          - gosec

				          - staticcheck

				          - unparam

				        path: _test\.go

				      - linters:

				          - dupl

				          - errcheck

				          - gocyclo

				          - gosec

				        path: models/gitea_migrations/v

				      - linters:

				          - forbidigo

				        path: cmd

				      - linters:

				          - dupl

				        text: (?i)webhook

				      - linters:

				          - gocritic

				        text: (?i)`ID' should not be capitalized

				      - linters:

				          - deadcode

				          - unused

				        text: (?i)swagger

				      - linters:

				          - staticcheck

				        text: (?i)argument x is overwritten before first use

				      - linters:

				          - gocritic

				        text: '(?i)commentFormatting: put a space between `//` and comment text'

				      - linters:

				          - gocritic

				        text: '(?i)exitAfterDefer:'

				      - linters:

				          - staticcheck

				        text: "(ST1005|ST1003|QF1001):"

				      # TODO: eventually remove this section entirely

				      - path: cmd/admin_auth_ldap_test.go

				        linters:

				          - nilnil

				      - path: cmd/admin_auth_oauth_test.go

				        linters:

				          - nilnil

				      - path: cmd/admin_auth_pam_test.go

				        linters:

				          - nilnil

				      - path: cmd/cmd.go

				        linters:

				          - nilnil

				      - path: cmd/forgejo/actions.go

				        linters:

				          - nilnil

				      - path: models/actions/run.go

				        linters:

				          - nilnil

				      - path: models/actions/task.go

				        linters:

				          - nilnil

				      - path: models/activities/action_list.go

				        linters:

				          - nilnil

				      - path: models/asymkey/gpg_key_object_verification.go

				        linters:

				          - nilnil

				      - path: models/auth/oauth2.go

				        linters:

				          - nilnil

				      - path: models/db/collation.go

				        linters:

				          - nilnil

				      - path: models/dbfs/dbfile.go

				        linters:

				          - nilnil

				      - path: models/forgejo_migrations_legacy/v32.go

				        linters:

				          - nilnil

				      - path: models/forgejo_migrations_legacy/v32_test.go

				        linters:

				          - nilnil

				      - path: models/db/context.go

				        linters:

				          - nilnil

				      - path: models/git/branch_list.go

				        linters:

				          - nilnil

				      - path: models/git/lfs_lock.go

				        linters:

				          - nilnil

				      - path: models/git/protected_branch.go

				        linters:

				          - nilnil

				      - path: models/git/protected_tag.go

				        linters:

				          - nilnil

				      - path: models/issues/issue.go

				        linters:

				          - nilnil

				      - path: models/issues/issue_xref.go

				        linters:

				          - nilnil

				      - path: models/issues/review.go

				        linters:

				          - nilnil

				      - path: models/organization/org_user.go

				        linters:

				          - nilnil

				      - path: models/quota/rule.go

				        linters:

				          - nilnil

				      - path: models/repo/archiver.go

				        linters:

				          - nilnil

				      - path: models/repo/fork.go

				        linters:

				          - nilnil

				      - path: models/repo/topic.go

				        linters:

				          - nilnil

				      - path: models/user/email_address.go

				        linters:

				          - nilnil

				      - path: models/user/list.go

				        linters:

				          - nilnil

				      - path: models/user/user.go

				        linters:

				          - nilnil

				      - path: models/repo/repo.go

				        linters:

				          - nilnil

				      - path: modules/git/commit.go

				        linters:

				          - nilnil

				      - path: modules/git/foreachref/parser.go

				        linters:

				          - nilnil

				      - path: modules/git/last_commit_cache.go

				        linters:

				          - nilnil

				      - path: modules/git/log_name_status.go

				        linters:

				          - nilnil

				      - path: modules/graceful/net_unix.go

				        linters:

				          - nilnil

				      - path: modules/indexer/internal/bleve/util.go

				        linters:

				          - nilnil

				      - path: modules/indexer/issues/util.go

				        linters:

				          - nilnil

				      - path: modules/optional/serialization.go

				        linters:

				          - nilnil

				      - path: modules/setting/storage.go

				        linters:

				          - nilnil

				      - path: routers/api/packages/chef/auth.go

				        linters:

				          - nilnil

				      - path: routers/api/packages/container/auth.go

				        linters:

				          - nilnil

				      - path: routers/api/packages/nuget/auth.go

				        linters:

				          - nilnil

				      - path: routers/api/packages/swift/swift.go

				        linters:

				          - nilnil

				      - path: routers/web/auth/oauth.go

				        linters:

				          - nilnil

				      - path: routers/web/repo/compare.go

				        linters:

				          - nilnil

				      - path: routers/web/repo/release.go

				        linters:

				          - nilnil

				      - path: routers/web/repo/setting/runners.go

				        linters:

				          - nilnil

				      - path: routers/web/repo/setting/secrets.go

				        linters:

				          - nilnil

				      - path: routers/web/repo/setting/variables.go

				        linters:

				          - nilnil

				      - path: services/actions/context.go

				        linters:

				          - nilnil

				      - path: services/actions/task.go

				        linters:

				          - nilnil

				      - path: services/actions/trust.go

				        linters:

				          - nilnil

				      - path: services/contexttest/context_tests.go

				        linters:

				          - nilnil

				      - path: services/gitdiff/csv.go

				        linters:

				          - nilnil

				      - path: services/issue/assignee.go

				        linters:

				          - nilnil

				      - path: routers/api/packages/conan/auth.go

				        linters:

				          - nilnil

				      - path: services/issue/commit.go

				        linters:

				          - nilnil

				      - path: services/issue/issue.go

				        linters:

				          - nilnil

				      - path: services/migrations/onedev.go

				        linters:

				          - nilnil

				      - path: services/packages/cargo/index.go

				        linters:

				          - nilnil

				      - path: services/pull/check.go

				        linters:

				          - nilnil

				      - path: services/pull/comment.go

				        linters:

				          - nilnil

				      - path: services/pull/merge.go

				        linters:

				          - nilnil

				      - path: services/pull/review.go

				        linters:

				          - nilnil

				      - path: services/remote/promote.go

				        linters:

				          - nilnil

				      - path: services/repository/archiver/archiver.go

				        linters:

				          - nilnil

				      - path: services/repository/generate_repo_commit.go

				        linters:

				          - nilnil

				      - path: services/repository/repository.go

				        linters:

				          - nilnil

				    paths:

				      - node_modules

				      - public

				      - web_src

				      - third_party$

				      - builtin$

				      - examples$

				issues:

				  max-issues-per-linter: 0

				  max-same-issues: 0

				  exclude-dirs: [node_modules, public, web_src]

				  exclude-case-sensitive: true

				  exclude-rules:

				    - path: models/db/sql_postgres_with_schema.go

				      linters:

				        - nolintlint

				    - path: _test\.go

				      linters:

				        - gocyclo

				        - errcheck

				        - dupl

				        - gosec

				        - unparam

				        - staticcheck

				    - path: models/migrations/v

				      linters:

				        - gocyclo

				        - errcheck

				        - dupl

				        - gosec

				    - path: cmd

				      linters:

				        - forbidigo

				    - text: "webhook"

				      linters:

				        - dupl

				    - text: "`ID' should not be capitalized"

				      linters:

				        - gocritic

				    - text: "swagger"

				      linters:

				        - unused

				        - deadcode

				    - text: "argument x is overwritten before first use"

				      linters:

				        - staticcheck

				    - text: "commentFormatting: put a space between `//` and comment text"

				      linters:

				        - gocritic

				    - text: "exitAfterDefer:"

				      linters:

				        - gocritic

				formatters:

				  enable:

				    - gofmt

				    - gofumpt

				  settings:

				    gofumpt:

				      extra-rules: true

				  exclusions:

				    generated: lax

				    paths:

				      - node_modules

				      - public

				      - web_src

				      - third_party$

				      - builtin$

				      - examples$

									
										17

.mockery.yml
									
										Normal file
									
										View file
										
				@ -0,0 +1,17 @@

				formatter: gofmt

				template: testify

				packages:

				  forgejo.org/modules/nosql:

				    config:

				      filename: mocks.go # make mocks public so that external packages can use

				  forgejo.org/services/auth/method:

				  forgejo.org/services/authz:

				    config:

				      filename: authorization_reducer_mock.go # make mocks public so that external packages can use

				  code.forgejo.org/go-chi/cache:

				    interfaces:

				      Cache:

				        config:

				          pkgname: cache

				          dir: modules/cache

				          filename: mocks.go # make mocks public, not `_test.go`, so that external packages can mock caching

2

.node-version

View file

 @ -1 +1 @@
 .21.1
 .15.0

									
										4

.release-notes-assistant.yaml
									
										View file
										
				@ -5,8 +5,10 @@ branch-find-version: 'v(?P<version>\d+\.\d+)/forgejo'

				branch-to-version: '${version}.0'

				branch-from-version: 'v%[1]d.%[2]d/forgejo'

				tag-from-version: 'v%[1]d.%[2]d.%[3]d'

				supported-release-count: 3

				branch-known:

				  - 'v7.0/forgejo'

				# replace with v15 when v11 becomes EOL

				  - 'v11.0/forgejo'

				cleanup-line: 'sed -Ee "s/^(feat|fix):\s*//g" -e "s/^\[WIP\] //" -e "s/^WIP: //" -e "s;\[(UI|BUG|FEAT|v.*?/forgejo)\]\s*;;g"'

				render-header: |

									
										111

.semgrep/config/auth.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,111 @@

				rules:

				  - id: forgejo-api-use-resource-SearchRepoOptions

				    patterns:

				      - pattern: |

				          repo_model.SearchRepoOptions{...}

				      - pattern-not: |

				          repo_model.SearchRepoOptions{

				            ...,

				            AuthorizationReducer: ctx.Reducer,

				            ...

				          }

				    languages:

				      - go

				    message: >

				      SearchRepoOptions does not take into account fine-grained access token limitations.  Include the

				      AuthorizationReducer field.

				    severity: ERROR

				    paths:

				      include:

				        - "/routers/api/**/*.go"

				  - id: forgejo-api-use-resource-SearchRepoOptions

				    patterns:

				      - pattern: |

				          organization.SearchTeamRepoOptions{...}

				      - pattern-not: |

				          organization.SearchTeamRepoOptions{

				            ...,

				            AuthorizationReducer: ctx.Reducer,

				            ...

				          }

				    languages:

				      - go

				    message: >

				      SearchTeamRepoOptions does not take into account fine-grained access token limitations.  Include the

				      AuthorizationReducer field.

				    severity: ERROR

				    paths:

				      include:

				        - "/routers/api/**/*.go"

				  - id: forgejo-api-use-resource-GetUserRepoPermission

				    patterns:

				      - pattern: |

				          $X.GetUserRepoPermission($CTX, $REPO, $DOER)

				      - metavariable-type:

				          metavariable: $CTX

				          types:

				            - "*context.APIContext"

				    languages:

				      - go

				    message: >

				      GetUserRepoPermission does not take into account fine-grained access token limitations.  Use

				      GetUserRepoPermissionWithReducer.

				    fix: |

				      $X.GetUserRepoPermissionWithReducer($CTX, $REPO, $DOER, $CTX.Reducer)

				    severity: ERROR

				  - id: forgejo-api-suspicious-GetUserRepoPermission

				    patterns:

				      - pattern: $X.GetUserRepoPermission($CTX, $REPO, $DOER)

				      - pattern-not: # don't match if identical to forgejo-api-use-resource-GetUserRepoPermission

				          patterns:

				          - pattern: |

				              $X.GetUserRepoPermission($CTX, $REPO, $DOER)

				          - metavariable-type:

				              metavariable: $CTX

				              types:

				                - "*context.APIContext"

				    languages:

				      - go

				    message: >

				      API code is accessing GetUserRepoPermission which does not take into account fine-grained access token

				      limitations.  Should this use GetUserRepoPermissionWithReducer?

				    severity: ERROR

				    paths:

				      include:

				        - "/routers/api/**/*.go"

				  - id: forgejo-api-direct-IsAdmin-check

				    patterns:

				      - pattern: |

				          ctx.Doer.IsAdmin

				    languages:

				      - go

				    message: |

				      ctx.Doer.IsAdmin does not take into account limited API access tokens.  Use ctx.IsUserSiteAdmin() instead.

				    fix: |

				      ctx.IsUserSiteAdmin()

				    severity: ERROR

				    paths:

				      include:

				        - "/routers/api/**/*.go"

				  - id: forgejo-api-direct-repo-Admin-check

				    patterns:

				      - pattern: |

				          ctx.Repo.IsAdmin()

				      - pattern: |

				          ctx.Repo.IsOwner()

				    languages:

				      - go

				    message: |

				      ctx.Repo.IsAdmin/IsOwner() does not take into account limited API access tokens.  Use ctx.IsUserRepoAdmin() instead.

				    fix: |

				      ctx.IsUserRepoAdmin()

				    severity: ERROR

				    paths:

				      include:

				        - "/routers/api/**/*.go"

									
										18

.semgrep/config/go.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,18 @@

				rules:

				  - id: forgejo-switch-empty-case

				    pattern-either:

				      - pattern: |-

				          switch $_ {

				            case $_:

				          }

				      - patterns:

				        - pattern: |-

				            switch {

				              case $_:

				            }

				    languages:

				      - go

				    severity: ERROR

				    message: >

				      switch has a case block with no content. This is treated as "break" by Go, but developers may confuse it for

				      "fallthrough".  To fix this error, disambiguate by using "break" or "fallthrough".

									
										11

.semgrep/config/logic.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,11 @@

				rules:

				  - id: forgejo-logic-suspicious-OwnerID-check

				    pattern: |-

				      $X.OwnerID > 0

				    languages:

				      - go

				    severity: ERROR

				    message: >

				      Many resources like comments or runners cannot only be owned by regular users, which have positive IDs, but also

				      by predefined system users like Ghost or Forgejo Actions that have negative IDs. In those cases, ownership checks

				      should only exclude 0: `OwnerID != 0`.

									
										24

.semgrep/config/xorm.yaml
									
										Normal file
									
										View file
										
				@ -0,0 +1,24 @@

				rules:

				  - id: xorm-sync-missing-ignore-drop-indices

				    patterns:

				      - pattern-either:

				          - pattern: |

				              $X.Sync(...)

				          - pattern: |

				              $X.SyncWithOptions($OPTS, ...)

				      - pattern-not: |

				          $X.SyncWithOptions(xorm.SyncOptions{..., IgnoreDropIndices: true, ...}, ...)

				      - metavariable-type:

				          metavariable: $X

				          types:

				            - "*xorm.Engine"

				            - "*xorm.Session"

				    paths:

				      exclude:

				        - /models/gitea_migrations/**/*.go

				        - /models/forgejo_migrations_legacy/**/*.go

				    languages:

				      - go

				    message: |

				      xorm Sync operation may drop indices if used on an incomplete bean definition for an existing table. Use SyncWithOptions with IgnoreDropIndices: true instead.

				    severity: ERROR

									
										58

.semgrep/tests/auth.fixed.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,58 @@

				// Copyright 2016 The Gogs Authors. All rights reserved.

				// Copyright 2020 The Gitea Authors.

				// SPDX-License-Identifier: MIT

				package repo

				import (

					"net/http"

					"forgejo.org/models/db"

					access_model "forgejo.org/models/perm/access"

					repo_model "forgejo.org/models/repo"

					api "forgejo.org/modules/structs"

					"forgejo.org/routers/api/v1/utils"

					"forgejo.org/services/context"

					"forgejo.org/services/convert"

				)

				// ListForks list a repository's forks

				func ListForks(ctx *context.APIContext) {

					forks, total, err := repo_model.GetForks(ctx, ctx.Repo.Repository, ctx.Doer, utils.GetListOptions(ctx))

					if err != nil {

						ctx.Error(http.StatusInternalServerError, "GetForks", err)

						return

					}

					apiForks := make([]*api.Repository, len(forks))

					for i, fork := range forks {

						// ruleid:forgejo-api-use-resource-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermissionWithReducer(ctx, fork, ctx.Doer, ctx.Reducer)

						// ok:forgejo-api-use-resource-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermissionWithReducer(ctx, fork, ctx.Doer, ctx.Reducer)

						if err != nil {

							ctx.Error(http.StatusInternalServerError, "GetUserRepoPermission", err)

							return

						}

						apiForks[i] = convert.ToRepo(ctx, fork, permission)

					}

				}

				// getStarredRepos returns the repos that the user with the specified userID has

				// starred

				func getStarredRepos(ctx std_context.Context, user *user_model.User, private bool, listOptions db.ListOptions) ([]*api.Repository, error) {

					starredRepos, err := repo_model.GetStarredRepos(ctx, user.ID, private, listOptions)

					if err != nil {

						return nil, err

					}

					repos := make([]*api.Repository, len(starredRepos))

					for i, starred := range starredRepos {

						// ruleid:forgejo-api-suspicious-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermission(ctx, starred, user)

						if err != nil {

							return nil, err

						}

						repos[i] = convert.ToRepo(ctx, starred, permission)

					}

					return repos, nil

				}

									
										58

.semgrep/tests/auth.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,58 @@

				// Copyright 2016 The Gogs Authors. All rights reserved.

				// Copyright 2020 The Gitea Authors.

				// SPDX-License-Identifier: MIT

				package repo

				import (

					"net/http"

					"forgejo.org/models/db"

					access_model "forgejo.org/models/perm/access"

					repo_model "forgejo.org/models/repo"

					api "forgejo.org/modules/structs"

					"forgejo.org/routers/api/v1/utils"

					"forgejo.org/services/context"

					"forgejo.org/services/convert"

				)

				// ListForks list a repository's forks

				func ListForks(ctx *context.APIContext) {

					forks, total, err := repo_model.GetForks(ctx, ctx.Repo.Repository, ctx.Doer, utils.GetListOptions(ctx))

					if err != nil {

						ctx.Error(http.StatusInternalServerError, "GetForks", err)

						return

					}

					apiForks := make([]*api.Repository, len(forks))

					for i, fork := range forks {

						// ruleid:forgejo-api-use-resource-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermission(ctx, fork, ctx.Doer)

						// ok:forgejo-api-use-resource-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermissionWithReducer(ctx, fork, ctx.Doer, ctx.Reducer)

						if err != nil {

							ctx.Error(http.StatusInternalServerError, "GetUserRepoPermission", err)

							return

						}

						apiForks[i] = convert.ToRepo(ctx, fork, permission)

					}

				}

				// getStarredRepos returns the repos that the user with the specified userID has

				// starred

				func getStarredRepos(ctx std_context.Context, user *user_model.User, private bool, listOptions db.ListOptions) ([]*api.Repository, error) {

					starredRepos, err := repo_model.GetStarredRepos(ctx, user.ID, private, listOptions)

					if err != nil {

						return nil, err

					}

					repos := make([]*api.Repository, len(starredRepos))

					for i, starred := range starredRepos {

						// ruleid:forgejo-api-suspicious-GetUserRepoPermission

						permission, err := access_model.GetUserRepoPermission(ctx, starred, user)

						if err != nil {

							return nil, err

						}

						repos[i] = convert.ToRepo(ctx, starred, permission)

					}

					return repos, nil

				}

									
										44

.semgrep/tests/go.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,44 @@

				// Copyright 2014 The Gogs Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"context"

					"os"

					"os/signal"

					"strings"

					"syscall"

					_ "net/http/pprof" // Used for debugging if enabled and a web server is running

					"forgejo.org/modules/setting"

				)

				func setPortEmptyCaseBad(port string) error {

					setting.AppURL = strings.Replace(setting.AppURL, setting.HTTPPort, port, 1)

					setting.HTTPPort = port

					// ruleid:forgejo-switch-empty-case

					switch setting.Protocol {

					case setting.HTTPUnix:

					case setting.FCGI:

					case setting.FCGIUnix:

					default:

						defaultLocalURL := string(setting.Protocol) + "://"

					}

					// ok:forgejo-switch-empty-case

					switch setting.Protocol {

					case setting.HTTPUnix:

						break

					case setting.FCGI:

						break

					case setting.FCGIUnix:

						break

					default:

						defaultLocalURL := string(setting.Protocol) + "://"

					}

					return nil

				}

									
										35

.semgrep/tests/logic.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,35 @@

				// Copyright 2022 The Gitea Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package actions

				import "xorm.io/builder"

				type FindRunJobOptions struct {

					RepoID  int64

					OwnerID int64

				}

				func (opts FindRunJobOptions) Bad() builder.Cond {

					cond := builder.NewCond()

					if opts.RepoID > 0 {

						cond = cond.And(builder.Eq{"repo_id": opts.RepoID})

					}

					// ruleid:forgejo-logic-suspicious-OwnerID-check

					if opts.OwnerID > 0 {

						cond = cond.And(builder.Eq{"owner_id": opts.OwnerID})

					}

					return cond

				}

				func (opts FindRunJobOptions) Good() builder.Cond {

					cond := builder.NewCond()

					if opts.RepoID > 0 {

						cond = cond.And(builder.Eq{"repo_id": opts.RepoID})

					}

					// ok:forgejo-logic-suspicious-OwnerID-check

					if opts.OwnerID != 0 {

						cond = cond.And(builder.Eq{"owner_id": opts.OwnerID})

					}

					return cond

				}

									
										45

.semgrep/tests/xorm.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,45 @@

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: GPL-3.0-or-later

				package forgejo_migrations

				import (

					"io/fs"

					"forgejo.org/modules/timeutil"

					"xorm.io/xorm"

				)

				type ActionUser struct {

					ID     int64 `xorm:"pk autoincr"`

					UserID int64 `xorm:"INDEX UNIQUE(action_user_index) REFERENCES(user, id)"`

					RepoID int64 `xorm:"INDEX UNIQUE(action_user_index) REFERENCES(repository, id)"`

					TrustedWithPullRequests bool

					LastAccess timeutil.TimeStamp `xorm:"INDEX"`

				}

				func testSyncBad1(x *xorm.Engine) error {

					// ruleid:xorm-sync-missing-ignore-drop-indices

					return x.Sync(new(ActionUser))

				}

				func testSyncBad2(x *xorm.Engine) error {

					// ruleid:xorm-sync-missing-ignore-drop-indices

					_, err = x.SyncWithOptions(xorm.SyncOptions{IgnoreDropIndices: false}, bean)

					return err

				}

				func testSyncGood1(x *xorm.Engine) error {

					// ok:xorm-sync-missing-ignore-drop-indices

					_, err = x.SyncWithOptions(xorm.SyncOptions{IgnoreDropIndices: true}, bean)

					return err

				}

				func testSyncGood2(x *fs.File) error {

					// ok:xorm-sync-missing-ignore-drop-indices

					_, err = x.Sync()

					return err

				}

17

BSDmakefile

View file

 @ -36,10 +36,6 @@ GARGS = "--no-print-directory"
     JARG = -j$(.MAKE.JOBS)
 .endif
 # bmake prefers out-of-source builds and tries to cd into ./obj (among others)
 # where possible. GNU Make doesn't, so override that value.
 .OBJDIR: ./
 # The GNU convention is to use the lowercased `prefix` variable/macro to
 # specify the installation directory. Humor them.
 GPREFIX =
 @ -48,11 +44,12 @@ GPREFIX =
 .endif
 .BEGIN: .SILENT
 	which $(GMAKE) || (printf "Error: GNU Make is required!\n\n" 1>&2 && false)
 	which $(GMAKE) >/dev/null || (printf "Error: GNU Make is required!\n\n" 1>&2 && false)
 .PHONY: FRC
 $(.TARGETS): FRC
 	$(GMAKE) $(GPREFIX) $(GARGS) $(.TARGETS:S,.DONE,,) $(JARG)
 .PHONY: EMPTY
 EMPTY: .SILENT
 	$(GMAKE) $(GPREFIX) $(GARGS) $(JARG)
 .DONE .DEFAULT: .SILENT
 	$(GMAKE) $(GPREFIX) $(GARGS) $(.TARGETS:S,.DONE,,) $(JARG)
 .PHONY: $(.TARGETS)
 $(.TARGETS): .SILENT
 	$(GMAKE) $(GPREFIX) $(GARGS) $(JARG) $@

25

CODEOWNERS

View file

 @ -9,10 +9,11 @@
 # Files related to frontend development.
 # Javascript and CSS code.
 web_src/.* @caesar @crystal @gusted
 web_src/.* @beowulf @gusted
 web_src/css/.* @0ko
 # HTML templates used by the backend.
 templates/.* @caesar @crystal @gusted
 templates/.* @beowulf @gusted
 ## the issue sidebar was touched by fnetx
 templates/repo/issue/view_content/sidebar.* @fnetx
 @ -37,5 +38,25 @@ routers/.* @gusted
 options/locale/.* @0ko
 options/locale_next/.* @0ko
 # lint-locale-usage
 build/lint-locale-usage/.* @fogti
 models/unit/.* @fogti
 services/migrations/lint-locale-usage/.* @fogti
 # Personal interest
 .*/webhook.* @oliverpool
 # Often work with, and on, the API
 modules/structs/.* @Cyborus
 routers/api/v1/.* @Cyborus
 routers/api/forgejo/.* @Cyborus
 tests/integration/api_.* @Cyborus
 # Federation code, requires care to be taken with regards to interoperability
 # and backwards compatibility due to the way signatures work.
 services/federation/.* @famfo @0xllx0
 modules/forgefed/.* @famfo @0xllx0
 models/forgefed/.* @famfo @0xllx0
 routers/api/v1/activitypub/.* @famfo @0xllx0
 tests/integration/api_activitypub_.* @famfo @0xllx0
 tests/integration/activitypub_.* @famfo @0xllx0

10

Dockerfile

View file

 @ -1,9 +1,9 @@
 FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/xx AS xx
 FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/golang:1.25-alpine3.22 AS build-env
 FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/golang:1.26-alpine3.23 AS build-env
 ARG GOPROXY
 ENV GOPROXY=${GOPROXY:-direct}
 ENV GOPROXY=${GOPROXY:-https://proxy.golang.org,direct}
 ARG RELEASE_VERSION
 ARG TAGS="sqlite sqlite_unlock_notify"
 @ -33,10 +33,10 @@ RUN apk --no-cache add build-base git nodejs npm
 COPY . ${GOPATH}/src/forgejo.org
 WORKDIR ${GOPATH}/src/forgejo.org
 RUN make clean
 RUN make clean-no-bindata
 RUN make frontend
 RUN go build contrib/environment-to-ini/environment-to-ini.go && xx-verify environment-to-ini
 RUN LDFLAGS="-buildid=" make RELEASE_VERSION=$RELEASE_VERSION GOFLAGS="-trimpath" go-check generate-backend static-executable && xx-verify gitea
 RUN LDFLAGS="-buildid=" make FORGEJO_GENERATE_SKIP_HASH=true RELEASE_VERSION=$RELEASE_VERSION GOFLAGS="-trimpath" go-check generate-backend static-executable && xx-verify gitea
 # Copy local files
 COPY docker/root /tmp/local
 @ -51,7 +51,7 @@ RUN chmod 755 /tmp/local/usr/bin/entrypoint \
               /go/src/forgejo.org/environment-to-ini
 RUN chmod 644 /go/src/forgejo.org/contrib/autocompletion/bash_autocomplete
 FROM data.forgejo.org/oci/alpine:3.22
 FROM data.forgejo.org/oci/alpine:3.23
 ARG RELEASE_VERSION
 LABEL maintainer="contact@forgejo.org" \
       org.opencontainers.image.authors="Forgejo" \

									
										20

Dockerfile.rootless
									
										View file
										
				@ -1,9 +1,9 @@

				FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/xx AS xx

				FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/golang:1.25-alpine3.22 AS build-env

				FROM --platform=$BUILDPLATFORM data.forgejo.org/oci/golang:1.26-alpine3.23 AS build-env

				ARG GOPROXY

				ENV GOPROXY=${GOPROXY:-direct}

				ENV GOPROXY=${GOPROXY:-https://proxy.golang.org,direct}

				ARG RELEASE_VERSION

				ARG TAGS="sqlite sqlite_unlock_notify"

				@ -33,10 +33,10 @@ RUN apk --no-cache add build-base git nodejs npm

				COPY . ${GOPATH}/src/forgejo.org

				WORKDIR ${GOPATH}/src/forgejo.org

				RUN make clean

				RUN make clean-no-bindata

				RUN make frontend

				RUN go build contrib/environment-to-ini/environment-to-ini.go && xx-verify environment-to-ini

				RUN make RELEASE_VERSION=$RELEASE_VERSION go-check generate-backend static-executable && xx-verify gitea

				RUN make FORGEJO_GENERATE_SKIP_HASH=true RELEASE_VERSION=$RELEASE_VERSION go-check generate-backend static-executable && xx-verify gitea

				# Copy local files

				COPY docker/rootless /tmp/local

				@ -49,7 +49,7 @@ RUN chmod 755 /tmp/local/usr/local/bin/docker-entrypoint.sh \

				              /go/src/forgejo.org/environment-to-ini

				RUN chmod 644 /go/src/forgejo.org/contrib/autocompletion/bash_autocomplete

				FROM data.forgejo.org/oci/alpine:3.22

				FROM data.forgejo.org/oci/alpine:3.23

				ARG RELEASE_VERSION

				LABEL maintainer="contact@forgejo.org" \

				      org.opencontainers.image.authors="Forgejo" \

				@ -86,8 +86,8 @@ RUN addgroup \

				    -G git \

				    git

				RUN mkdir -p /var/lib/gitea /etc/gitea

				RUN chown git:git /var/lib/gitea /etc/gitea

				RUN mkdir -p /var/lib/gitea

				RUN chown git:git /var/lib/gitea

				COPY --from=build-env /tmp/local /

				RUN cd /usr/local/bin ; ln -s gitea forgejo

				@ -103,13 +103,9 @@ ENV GITEA_CUSTOM=/var/lib/gitea/custom

				ENV GITEA_TEMP=/tmp/gitea

				ENV TMPDIR=/tmp/gitea

				# Legacy config file for backwards compatibility

				# TODO: remove on next major version release

				ENV GITEA_APP_INI_LEGACY=/etc/gitea/app.ini

				ENV GITEA_APP_INI=${GITEA_CUSTOM}/conf/app.ini

				ENV HOME="/var/lib/gitea/git"

				VOLUME ["/var/lib/gitea", "/etc/gitea"]

				VOLUME ["/var/lib/gitea"]

				WORKDIR /var/lib/gitea

				ENTRYPOINT ["/usr/bin/dumb-init", "--", "/usr/local/bin/docker-entrypoint.sh"]

									
										306

Makefile
									
										View file
										
				@ -37,19 +37,18 @@ endif

				XGO_VERSION := go-1.21.x

				AIR_PACKAGE ?= github.com/air-verse/air@v1 # renovate: datasource=go

				EDITORCONFIG_CHECKER_PACKAGE ?= github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker@v3.2.1 # renovate: datasource=go

				GOFUMPT_PACKAGE ?= mvdan.cc/gofumpt@v0.7.0 # renovate: datasource=go

				GOLANGCI_LINT_PACKAGE ?= github.com/golangci/golangci-lint/cmd/golangci-lint@v1.64.7 # renovate: datasource=go

				GXZ_PACKAGE ?= github.com/ulikunitz/xz/cmd/gxz@v0.5.11 # renovate: datasource=go

				MISSPELL_PACKAGE ?= github.com/golangci/misspell/cmd/misspell@v0.6.0 # renovate: datasource=go

				SWAGGER_PACKAGE ?= github.com/go-swagger/go-swagger/cmd/swagger@v0.33.1 # renovate: datasource=go

				EDITORCONFIG_CHECKER_PACKAGE ?= github.com/editorconfig-checker/editorconfig-checker/v3/cmd/editorconfig-checker@v3.6.1 # renovate: datasource=go

				GOFUMPT_PACKAGE ?= mvdan.cc/gofumpt@v0.9.2 # renovate: datasource=go

				GOLANGCI_LINT_PACKAGE ?= github.com/golangci/golangci-lint/v2/cmd/golangci-lint@v2.11.4 # renovate: datasource=go

				GXZ_PACKAGE ?= github.com/ulikunitz/xz/cmd/gxz@v0.5.15 # renovate: datasource=go

				SWAGGER_PACKAGE ?= github.com/go-swagger/go-swagger/cmd/swagger@v0.33.2 # renovate: datasource=go

				XGO_PACKAGE ?= src.techknowlogick.com/xgo@latest

				GO_LICENSES_PACKAGE ?= github.com/google/go-licenses@v1.6.0 # renovate: datasource=go

				GO_LICENSES_PACKAGE ?= github.com/google/go-licenses/v2@v2.0.1 # renovate: datasource=go

				GOVULNCHECK_PACKAGE ?= golang.org/x/vuln/cmd/govulncheck@v1 # renovate: datasource=go

				DEADCODE_PACKAGE ?= golang.org/x/tools/cmd/deadcode@v0.31.0 # renovate: datasource=go

				GOMOCK_PACKAGE ?= go.uber.org/mock/mockgen@v0.4.0 # renovate: datasource=go

				GOPLS_PACKAGE ?= golang.org/x/tools/gopls@v0.20.0 # renovate: datasource=go

				RENOVATE_NPM_PACKAGE ?= renovate@39.212.0 # renovate: datasource=docker packageName=data.forgejo.org/renovate/renovate

				DEADCODE_PACKAGE ?= golang.org/x/tools/cmd/deadcode@v0.45.0 # renovate: datasource=go

				ERRORTYPE_PACKAGE ?= fillmore-labs.com/errortype@v0.0.11 # renovate: datasource=go

				RENOVATE_NPM_PACKAGE ?= renovate@43.170.20 # renovate: datasource=docker packageName=data.forgejo.org/renovate/renovate

				MOCKERY_PACKAGE ?= github.com/vektra/mockery/v3@v3.7.0 # renovate: datasource=go

				# https://github.com/disposable-email-domains/disposable-email-domains/commits/main/

				DISPOSABLE_EMAILS_SHA ?= 0c27e671231d27cf66370034d7f6818037416989 # renovate: ...

				@ -92,29 +91,22 @@ else

				    FORGEJO_VERSION_API ?= $(GITEA_VERSION)+${GITEA_COMPATIBILITY}

				  else

				    # drop the "g" prefix prepended by git describe to the commit hash

				    FORGEJO_VERSION ?= $(shell git describe --exclude '*-test' --tags --always | sed 's/^v//' | sed 's/\-g/-/')+${GITEA_COMPATIBILITY}

				    FORGEJO_VERSION ?= $(shell git describe --exclude '*-test' --tags --always 2>/dev/null | sed 's/^v//' | sed 's/\-g/-/')

				    ifneq ($(FORGEJO_VERSION),)

				      ifeq ($(findstring $(GITEA_COMPATIBILITY),$(FORGEJO_VERSION)),)

				        FORGEJO_VERSION := $(FORGEJO_VERSION)+$(GITEA_COMPATIBILITY)

				      endif

				    endif

				  endif

				endif

				FORGEJO_VERSION_MAJOR=$(shell echo $(FORGEJO_VERSION) | sed -e 's/\..*//')

				FORGEJO_VERSION_MINOR=$(shell echo $(FORGEJO_VERSION) | sed -E -e 's/^([0-9]+\.[0-9]+).*/\1/')

				show-version-full:

					@echo ${FORGEJO_VERSION}

				show-version-major:

					@echo ${FORGEJO_VERSION_MAJOR}

				show-version-minor:

					@echo ${FORGEJO_VERSION_MINOR}

				RELEASE_VERSION ?= ${FORGEJO_VERSION}

				VERSION ?= ${RELEASE_VERSION}

				FORGEJO_VERSION_API ?= ${FORGEJO_VERSION}

				show-version-api:

					@echo ${FORGEJO_VERSION_API}

				# Strip binaries by default to reduce size, allow overriding for debugging

				STRIP ?= 1

				ifeq ($(STRIP),1)

				@ -124,9 +116,6 @@ LDFLAGS := $(LDFLAGS) -X "main.ReleaseVersion=$(RELEASE_VERSION)" -X "main.MakeV

				LINUX_ARCHS ?= linux/amd64,linux/386,linux/arm-5,linux/arm-6,linux/arm64

				ifeq ($(HAS_GO), yes)

					GO_TEST_PACKAGES ?= $(filter-out $(shell $(GO) list forgejo.org/models/migrations/...) $(shell $(GO) list forgejo.org/models/forgejo_migrations/...) forgejo.org/tests/integration/migration-test forgejo.org/tests forgejo.org/tests/integration forgejo.org/tests/e2e,$(shell $(GO) list ./...))

				endif

				REMOTE_CACHER_MODULES ?= cache nosql session queue

				GO_TEST_REMOTE_CACHER_PACKAGES ?= $(addprefix forgejo.org/modules/,$(REMOTE_CACHER_MODULES))

				@ -137,7 +126,7 @@ WEBPACK_CONFIGS := webpack.config.js tailwind.config.js

				WEBPACK_DEST := public/assets/js/index.js public/assets/css/index.css

				WEBPACK_DEST_ENTRIES := public/assets/js public/assets/css public/assets/fonts

				BINDATA_DEST := modules/public/bindata.go modules/options/bindata.go modules/templates/bindata.go

				BINDATA_DEST := modules/migration/bindata.go modules/public/bindata.go modules/options/bindata.go modules/templates/bindata.go

				BINDATA_HASH := $(addsuffix .hash,$(BINDATA_DEST))

				GENERATED_GO_DEST := modules/charset/invisible_gen.go modules/charset/ambiguous_gen.go

				@ -168,9 +157,6 @@ GO_SOURCES += $(shell find $(GO_DIRS) -type f -name "*.go" ! -path modules/optio

				GO_SOURCES += $(GENERATED_GO_DEST)

				GO_SOURCES_NO_BINDATA := $(GO_SOURCES)

				ifeq ($(HAS_GO), yes)

					MIGRATION_PACKAGES := $(shell $(GO) list forgejo.org/models/migrations/... forgejo.org/models/forgejo_migrations/...)

				endif

				ifeq ($(filter $(TAGS_SPLIT),bindata),bindata)

					GO_SOURCES += $(BINDATA_DEST)

				@ -208,7 +194,7 @@ all: build

				.PHONY: help

				help:

					@echo "Make Routines:"

					@echo " - \"\"                             equivalent to \"build\""

					@echo " - \"\"                               equivalent to \"build\""

					@echo " - build                            build everything"

					@echo " - frontend                         build frontend files"

					@echo " - backend                          build backend files"

				@ -221,31 +207,22 @@ help:

					@echo " - deps-frontend                    install frontend dependencies"

					@echo " - deps-backend                     install backend dependencies"

					@echo " - deps-tools                       install tool dependencies"

					@echo " - deps-py                          install python dependencies"

					@echo " - lint                             lint everything"

					@echo " - lint-fix                         lint everything and fix issues"

					@echo " - lint-frontend                    lint frontend files"

					@echo " - lint-frontend-fix                lint frontend files and fix issues"

					@echo " - lint-backend                     lint backend files"

					@echo " - lint-backend-fix                 lint backend files and fix issues"

					@echo " - lint-codespell                   lint typos"

					@echo " - lint-codespell-fix               lint typos and fix them automatically"

					@echo " - lint-codespell-fix-i             lint typos and fix them interactively"

					@echo " - lint-go                          lint go files"

					@echo " - lint-go-fix                      lint go files and fix issues"

					@echo " - lint-go-vet                      lint go files with vet"

					@echo " - lint-go-gopls                    lint go files with gopls"

					@echo " - lint-js                          lint js files"

					@echo " - lint-js-fix                      lint js files and fix issues"

					@echo " - lint-css                         lint css files"

					@echo " - lint-css-fix                     lint css files and fix issues"

					@echo " - lint-md                          lint markdown files"

					@echo " - lint-swagger                     lint swagger files"

					@echo " - lint-templates                   lint template files"

					@echo " - lint-renovate                    lint renovate files"

					@echo " - lint-yaml                        lint yaml files"

					@echo " - lint-spell                       lint spelling"

					@echo " - lint-spell-fix                   lint spelling and fix issues"

					@echo " - checks                           run various consistency checks"

					@echo " - checks-frontend                  check frontend files"

					@echo " - checks-backend                   check backend files"

				@ -256,6 +233,9 @@ help:

					@echo " - test-frontend-coverage           test frontend files and display code coverage"

					@echo " - test-backend                     test backend files"

					@echo " - test-remote-cacher               test backend files that use a remote cache"

					@echo " - coverage-run*                    test and collect coverages in the coverage/data directory"

					@echo " - coverage-show-html               display coverage-run results in an HTML page"

					@echo " - coverage-show-percent            display coverage-run per package coverage percentage"

					@echo " - test-e2e-sqlite[\#name.test.e2e] test end to end using playwright and sqlite"

					@echo " - webpack                          build webpack files"

					@echo " - svg                              build svg files"

				@ -265,7 +245,7 @@ help:

					@echo " - generate-license                 update license files"

					@echo " - generate-gitignore               update gitignore files"

					@echo " - generate-manpage                 generate manpage"

					@echo " - generate-gomock                  generate gomock files"

					@echo " - generate-mockery                 generate mockery files"

					@echo " - generate-forgejo-api             generate the forgejo API from spec"

					@echo " - forgejo-api-validate             check if the forgejo API matches the specs"

					@echo " - generate-swagger                 generate the swagger spec from code comments"

				@ -276,6 +256,48 @@ help:

					@echo " - test-sqlite[\#TestSpecificName]  run integration test for sqlite"

					@echo " - reproduce-build\#version         build a reproducible binary for the specified release version"

				.PHONY: verify-version

				verify-version:

				ifeq ($(FORGEJO_VERSION),)

					@echo "Error: Could not determine FORGEJO_VERSION; version file $(STORED_VERSION_FILE) not present and no suitable git tag found"

					@echo 'In most cases this likely means you forgot to fetch git tags, you can fix this by executing `git fetch --tags`. If this is not possible and this is part of a custom build process, then you can set a specific version by writing it to $(STORED_VERSION_FILE) (This must be a semver compatible version).'

					@false

				endif

				.PHONY: show-version-full

				show-version-full: verify-version

					@echo ${FORGEJO_VERSION}

				.PHONY: show-version-major

				show-version-major: verify-version

					@echo ${FORGEJO_VERSION_MAJOR}

				.PHONY: show-version-minor

				show-version-minor: verify-version

					@echo ${FORGEJO_VERSION_MINOR}

				.PHONY: show-version-api

				show-version-api: verify-version

					@echo ${FORGEJO_VERSION_API}

				###

				# Package computation targets

				###

				# Target to compute GO_TEST_PACKAGES - only runs when needed

				.PHONY: compute-go-test-packages

				compute-go-test-packages:

				ifeq ($(HAS_GO), yes)

					$(eval GO_TEST_PACKAGES ?= $(filter-out $(shell $(GO) list forgejo.org/models/gitea_migrations/...) $(shell $(GO) list forgejo.org/models/forgejo_migrations_legacy/...) $(shell $(GO) list forgejo.org/models/forgejo_migrations/...) forgejo.org/tests/integration/migration-test forgejo.org/tests forgejo.org/tests/integration forgejo.org/tests/e2e,$(shell $(GO) list ./...)))

				endif

				# Target to compute MIGRATION_PACKAGES - only runs when needed

				.PHONY: compute-migration-packages

				compute-migration-packages:

				ifeq ($(HAS_GO), yes)

					$(eval MIGRATION_PACKAGES := $(shell $(GO) list forgejo.org/models/gitea_migrations/... forgejo.org/models/forgejo_migrations_legacy/... forgejo.org/models/forgejo_migrations/...))

				endif

				###

				# Check system and environment requirements

				###

				@ -301,7 +323,7 @@ git-check:

				node-check:

					$(eval MIN_NODE_VERSION_STR := $(shell grep -Eo '"node":.*[0-9.]+"' package.json | sed -n 's/.*[^0-9.]\([0-9.]*\)"/\1/p'))

					$(eval MIN_NODE_VERSION := $(shell printf "%03d%03d%03d" $(shell echo '$(MIN_NODE_VERSION_STR)' | tr '.' ' ')))

					$(eval NODE_VERSION := $(shell printf "%03d%03d%03d" $(shell node -v | cut -c2- | tr '.' ' ');))

					$(eval NODE_VERSION := $(shell printf "%03d%03d%03d" $(shell node -v | cut -c2- | sed 's:-.*::' | tr '.' ' ');))

					$(eval NPM_MISSING := $(shell hash npm > /dev/null 2>&1 || echo 1))

					@if [ "$(NODE_VERSION)" -lt "$(MIN_NODE_VERSION)" -o "$(NPM_MISSING)" = "1" ]; then \

						echo "Forgejo requires Node.js $(MIN_NODE_VERSION_STR) or greater and npm to build. You can get it at https://nodejs.org/en/download/"; \

				@ -317,8 +339,12 @@ clean-all: clean

					rm -rf $(WEBPACK_DEST_ENTRIES) node_modules

				.PHONY: clean

				clean:

					rm -rf $(EXECUTABLE) $(DIST) $(BINDATA_DEST) $(BINDATA_HASH) \

				clean: clean-no-bindata

					rm -rf $(BINDATA_DEST) $(BINDATA_HASH)

				.PHONY: clean-no-bindata

				clean-no-bindata:

					rm -rf $(EXECUTABLE) $(DIST) \

						integrations*.test \

						e2e*.test \

						tests/integration/gitea-integration-* \

				@ -401,13 +427,13 @@ checks-frontend: lockfile-check svg-check

				checks-backend: tidy-check swagger-check fmt-check swagger-validate security-check

				.PHONY: lint

				lint: lint-frontend lint-backend lint-spell

				lint: lint-frontend lint-backend

				.PHONY: lint-fix

				lint-fix: lint-frontend-fix lint-backend-fix lint-spell-fix

				lint-fix: lint-frontend-fix lint-backend-fix

				.PHONY: lint-frontend

				lint-frontend: lint-js lint-css

				lint-frontend: lint-js tsc lint-css

				.PHONY: lint-frontend-fix

				lint-frontend-fix: lint-js-fix lint-css-fix

				@ -418,18 +444,6 @@ lint-backend: lint-go lint-go-vet lint-editorconfig lint-renovate lint-locale li

				.PHONY: lint-backend-fix

				lint-backend-fix: lint-go-fix lint-go-vet lint-editorconfig lint-disposable-emails-fix

				.PHONY: lint-codespell

				lint-codespell: deps-py

					@poetry run codespell

				.PHONY: lint-codespell-fix

				lint-codespell-fix: deps-py

					@poetry run codespell -w

				.PHONY: lint-codespell-fix-i

				lint-codespell-fix-i: deps-py

					@poetry run codespell -w -i 3 -C 2

				.PHONY: lint-js

				lint-js: node_modules

					npx eslint --color --max-warnings=0

				@ -452,8 +466,8 @@ lint-swagger: node_modules

				.PHONY: lint-renovate

				lint-renovate: node_modules

					npx --yes --package $(RENOVATE_NPM_PACKAGE) -- renovate-config-validator --strict > .lint-renovate 2>&1 || true

					@if grep --quiet --extended-regexp -e '^( WARN:|ERROR:)' .lint-renovate ; then cat .lint-renovate ; rm .lint-renovate ; exit 1 ; fi

					npx --yes --package $(RENOVATE_NPM_PACKAGE) -- renovate-config-validator --no-global .forgejo/renovate.json > .lint-renovate 2>&1 || true

					@if grep --quiet --extended-regexp -e '^( ERROR:)' .lint-renovate ; then cat .lint-renovate ; rm .lint-renovate ; exit 1 ; fi

					@rm .lint-renovate

				.PHONY: lint-locale

				@ -462,28 +476,33 @@ lint-locale:

				.PHONY: lint-locale-usage

				lint-locale-usage:

					$(GO) run build/lint-locale-usage/lint-locale-usage.go --allow-missing-msgids

					$(GO) run ./build/lint-locale-usage/bin --allow-masked-usages-from=build/lint-locale-usage/allowed-masked-usage.txt

				.PHONY: lint-md

				lint-md: node_modules

					npx markdownlint docs *.md

				.PHONY: lint-spell

				lint-spell: lint-codespell

					@go run $(MISSPELL_PACKAGE) -error $(SPELLCHECK_FILES)

				.PHONY: lint-spell-fix

				lint-spell-fix: lint-codespell-fix

					@go run $(MISSPELL_PACKAGE) -w $(SPELLCHECK_FILES)

				RUN_DEADCODE = $(GO) run $(DEADCODE_PACKAGE) -generated=false -f='{{println .Path}}{{range .Funcs}}{{printf "\t%s\n" .Name}}{{end}}{{println}}' -test forgejo.org

				.PHONY: lint-go

				lint-go:

					$(GO) run $(GOLANGCI_LINT_PACKAGE) run $(GOLANGCI_LINT_ARGS)

					$(RUN_DEADCODE) > .cur-deadcode-out

					@$(DIFF) .deadcode-out .cur-deadcode-out \

					$(GO) run $(GOLANGCI_LINT_PACKAGE) run $(GOLANGCI_LINT_ARGS) \

					|| (code=$$?; echo "Please run 'make lint-go-fix' and commit the result"; exit $${code})

					$(RUN_DEADCODE) > .cur-deadcode-out

					@$(DIFF) .deadcode-out .cur-deadcode-out >.deadcode.diff || true

					@if grep -qE '^[+][^+]' .deadcode.diff ; then \

						cat .deadcode.diff ; \

						echo "Looks like you added dead code, please evaluate and remove or use it."; \

						echo "If you are sure the dead code should stay around, please run 'make lint-go-fix',"; \

						echo "commit the result and explain the reason in the commit message / PR description."; \

						exit 1; \

					fi

					@if grep -qE '^[-][^-]' .deadcode.diff ; then \

						cat .deadcode.diff ; \

						echo "Looks like you removed dead code. Thank you!"; \

						echo "Run 'make lint-go-fix' and commit the result to accept."; \

					fi

					$(GO) run $(ERRORTYPE_PACKAGE) ./...

				.PHONY: lint-go-fix

				lint-go-fix:

				@ -495,11 +514,6 @@ lint-go-vet:

					@echo "Running go vet..."

					@$(GO) vet ./...

				.PHONY: lint-go-gopls

				lint-go-gopls:

					@echo "Running gopls check..."

					@GO=$(GO) GOPLS_PACKAGE=$(GOPLS_PACKAGE) tools/lint-go-gopls.sh $(GO_SOURCES_NO_BINDATA)

				.PHONY: lint-editorconfig

				lint-editorconfig:

					$(GO) run $(EDITORCONFIG_CHECKER_PACKAGE) templates .forgejo/workflows

				@ -512,18 +526,18 @@ lint-disposable-emails:

				lint-disposable-emails-fix:

					$(GO) run build/generate-disposable-email.go -r $(DISPOSABLE_EMAILS_SHA)

				.PHONY: lint-templates

				lint-templates: .venv node_modules

					@node tools/lint-templates-svg.js

					@poetry run djlint $(shell find templates -type f -iname '*.tmpl')

				.PHONY: lint-yaml

				lint-yaml: .venv

					@poetry run yamllint -s .

				.PHONY: security-check

				security-check:

					$(GO) run $(GOVULNCHECK_PACKAGE) ./...

					$(GO) run $(GOVULNCHECK_PACKAGE) -show color ./...

				.PHONY: tsc

				tsc: node_modules

					npx tsc --noEmit

				# target for PRs to be pushed. Mandatory to succeed in CI

				.PHONY: pr-go

				pr-go: deps-backend deps-tools lint-backend tidy-check swagger-check lint-swagger fmt-check swagger-validate

					TAGS=bindata $(MAKE) backend

				###

				# Development and testing targets

				@ -546,14 +560,14 @@ watch-backend: go-check

				test: test-frontend test-backend

				.PHONY: test-backend

				test-backend:

				test-backend: | compute-go-test-packages

					@echo "Running go test with $(GOTESTFLAGS) -tags '$(TEST_TAGS)'..."

					@$(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' $(GO_TEST_PACKAGES)

					@TZ=UTC GITEA_ROOT="$(CURDIR)" $(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' $(GO_TEST_PACKAGES)

				.PHONY: test-remote-cacher

				test-remote-cacher:

					@echo "Running go test with $(GOTESTFLAGS) -tags '$(TEST_TAGS)'..."

					@$(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' $(GO_TEST_REMOTE_CACHER_PACKAGES)

					GITEA_ROOT="$(CURDIR)" $(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' $(GO_TEST_REMOTE_CACHER_PACKAGES)

				.PHONY: test-frontend

				test-frontend: node_modules

				@ -576,20 +590,39 @@ test-check:

					fi

				.PHONY: test\#%

				test\#%:

					@echo "Running go test with -tags '$(TEST_TAGS)'..."

					@$(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' -run $(subst .,/,$*) $(GO_TEST_PACKAGES)

				test\#%: | compute-go-test-packages

					@echo "Running go test with $(GOTESTFLAGS) -tags '$(TEST_TAGS)'..."

					@TZ=UTC GITEA_ROOT="$(CURDIR)" $(GOTEST) $(GOTESTFLAGS) -tags='$(TEST_TAGS)' -run $(subst .,/,$*) $(GO_TEST_PACKAGES)

				.PHONY: coverage

				coverage:

					grep '^\(mode: .*\)\|\(.*:[0-9]\+\.[0-9]\+,[0-9]\+\.[0-9]\+ [0-9]\+ [0-9]\+\)$$' coverage.out > coverage-bodged.out

					grep '^\(mode: .*\)\|\(.*:[0-9]\+\.[0-9]\+,[0-9]\+\.[0-9]\+ [0-9]\+ [0-9]\+\)$$' integration.coverage.out > integration.coverage-bodged.out

					$(GO) run build/gocovmerge.go integration.coverage-bodged.out coverage-bodged.out > coverage.all

				coverage-merge:

					rm -fr coverage/merged ; mkdir -p coverage/merged

					$(GO) tool covdata merge -i `find coverage/data -name 'covmeta.*' | sed -e 's|/covmeta.*|,|' | tr -d '\n' | sed -e 's/,$$//'` -o coverage/merged

				.PHONY: unit-test-coverage

				unit-test-coverage:

					@echo "Running unit-test-coverage $(GOTESTFLAGS) -tags '$(TEST_TAGS)'..."

					@$(GOTEST) $(GOTESTFLAGS) -timeout=20m -tags='$(TEST_TAGS)' -cover -coverprofile coverage.out $(GO_TEST_PACKAGES) && echo "\n==>\033[32m Ok\033[m\n" || exit 1

				coverage-convert: coverage-merge

					$(GO) tool covdata textfmt -i=coverage/merged -o=coverage/textfmt.out

				coverage-show-html: coverage-convert

					( cd coverage ; $(GO) tool cover -html=textfmt.out -o coverage.html )

					xdg-open coverage/coverage.html

				coverage-show-percentage: coverage-convert

					go tool cover -func=coverage/textfmt.out

				coverage-run: | compute-go-test-packages

					contrib/coverage-helper.sh test_packages $(COVERAGE_TEST_PACKAGES)

				coverage-run-%: generate-ini-% | compute-migration-packages

				  #

				  # Migration tests go first

				  #

					$(MAKE) GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/$*.ini COVERAGE_TEST_ARGS= COVERAGE_TEST_PACKAGES=forgejo.org/tests/integration/migration-test coverage-run

					for pkg in $(MIGRATION_PACKAGES); do \

						$(MAKE) GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/$*.ini COVERAGE_TEST_DATABASE=$* COVERAGE_TEST_ARGS= COVERAGE_TEST_PACKAGES=$$pkg coverage-run ; \

					done

				  #

				  # All other integration tests follow

				  #

					$(MAKE) GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/$*.ini COVERAGE_TEST_DATABASE=$* COVERAGE_TEST_PACKAGES=forgejo.org/tests/integration coverage-run

				.PHONY: tidy

				tidy:

				@ -662,6 +695,7 @@ generate-ini-pgsql:

						-e 's|{{TEST_LOGGER}}|$(or $(TEST_LOGGER),test$(COMMA)file)|g' \

						-e 's|{{TEST_TYPE}}|$(or $(TEST_TYPE),integration)|g' \

						-e 's|{{TEST_STORAGE_TYPE}}|$(or $(TEST_STORAGE_TYPE),minio)|g' \

						-e 's|{{TEST_S3_HOST}}|$(or $(TEST_S3_HOST),minio:9000)|g' \

							tests/pgsql.ini.tmpl > tests/pgsql.ini

				.PHONY: test-pgsql

				@ -708,7 +742,7 @@ test-e2e-mysql\#%: playwright e2e.mysql.test generate-ini-mysql

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/mysql.ini $(GOTESTCOMPILEDRUNPREFIX) ./e2e.mysql.test $(GOTESTCOMPILEDRUNSUFFIX) -test.run TestE2e/$*

				.PHONY: test-e2e-pgsql

				test-e2e-pgsql: playwright e2e.pgsql.test generate-ini-pgsql

				GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.initest-e2e-pgsql: playwright e2e.pgsql.test generate-ini-pgsql

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/pgsql.ini $(GOTESTCOMPILEDRUNPREFIX) ./e2e.pgsql.test $(GOTESTCOMPILEDRUNSUFFIX) -test.run TestE2e

				.PHONY: test-e2e-pgsql\#%

				@ -731,14 +765,6 @@ bench-mysql: integrations.mysql.test generate-ini-mysql

				bench-pgsql: integrations.pgsql.test generate-ini-pgsql

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/pgsql.ini ./integrations.pgsql.test -test.cpuprofile=cpu.out -test.run DontRunTests -test.bench .

				.PHONY: integration-test-coverage

				integration-test-coverage: integrations.cover.test generate-ini-mysql

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/mysql.ini ./integrations.cover.test -test.coverprofile=integration.coverage.out

				.PHONY: integration-test-coverage-sqlite

				integration-test-coverage-sqlite: integrations.cover.sqlite.test generate-ini-sqlite

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini ./integrations.cover.sqlite.test -test.coverprofile=integration.coverage.out

				integrations.mysql.test: git-check $(GO_SOURCES)

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/integration -o integrations.mysql.test

				@ -748,12 +774,6 @@ integrations.pgsql.test: git-check $(GO_SOURCES)

				integrations.sqlite.test: git-check $(GO_SOURCES)

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/integration -o integrations.sqlite.test -tags '$(TEST_TAGS)'

				integrations.cover.test: git-check $(GO_SOURCES)

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/integration -coverpkg $(shell echo $(GO_TEST_PACKAGES) | tr ' ' ',') -o integrations.cover.test

				integrations.cover.sqlite.test: git-check $(GO_SOURCES)

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/integration -coverpkg $(shell echo $(GO_TEST_PACKAGES) | tr ' ' ',') -o integrations.cover.sqlite.test -tags '$(TEST_TAGS)'

				.PHONY: migrations.mysql.test

				migrations.mysql.test: $(GO_SOURCES) generate-ini-mysql

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/integration/migration-test -o migrations.mysql.test

				@ -770,34 +790,34 @@ migrations.sqlite.test: $(GO_SOURCES) generate-ini-sqlite

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTESTCOMPILEDRUNPREFIX) ./migrations.sqlite.test $(GOTESTCOMPILEDRUNSUFFIX)

				.PHONY: migrations.individual.mysql.test

				migrations.individual.mysql.test: $(GO_SOURCES)

				migrations.individual.mysql.test: $(GO_SOURCES) | compute-migration-packages

					for pkg in $(MIGRATION_PACKAGES); do \

						GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/mysql.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' $$pkg || exit 1; \

					done

				.PHONY: migrations.individual.sqlite.test\#%

				migrations.individual.sqlite.test\#%: $(GO_SOURCES) generate-ini-sqlite

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/migrations/$*

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/gitea_migrations/$*

				.PHONY: migrations.individual.pgsql.test

				migrations.individual.pgsql.test: $(GO_SOURCES)

				migrations.individual.pgsql.test: $(GO_SOURCES) | compute-migration-packages

					for pkg in $(MIGRATION_PACKAGES); do \

						GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/pgsql.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' $$pkg || exit 1;\

					done

				.PHONY: migrations.individual.pgsql.test\#%

				migrations.individual.pgsql.test\#%: $(GO_SOURCES) generate-ini-pgsql

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/pgsql.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/migrations/$*

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/pgsql.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/gitea_migrations/$*

				.PHONY: migrations.individual.sqlite.test

				migrations.individual.sqlite.test: $(GO_SOURCES) generate-ini-sqlite

				migrations.individual.sqlite.test: $(GO_SOURCES) generate-ini-sqlite | compute-migration-packages

					for pkg in $(MIGRATION_PACKAGES); do \

						GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' $$pkg || exit 1; \

					done

				.PHONY: migrations.individual.sqlite.test\#%

				migrations.individual.sqlite.test\#%: $(GO_SOURCES) generate-ini-sqlite

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/migrations/$*

					GITEA_ROOT="$(CURDIR)" GITEA_CONF=tests/sqlite.ini $(GOTEST) $(GOTESTFLAGS) -tags '$(TEST_TAGS)' forgejo.org/models/gitea_migrations/$*

				e2e.mysql.test: $(GO_SOURCES)

					$(GOTEST) $(GOTESTFLAGS) -c forgejo.org/tests/e2e -o e2e.mysql.test

				@ -816,7 +836,7 @@ check: test

				###

				.PHONY: install $(TAGS_PREREQ)

				install: $(wildcard *.go)

				install: $(wildcard *.go) | verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) install -v -tags '$(TAGS)' -ldflags '$(LDFLAGS)'

				.PHONY: build

				@ -844,13 +864,13 @@ generate-go: $(TAGS_PREREQ)

				merge-locales:

					@echo "NOT NEEDED: THIS IS A NOOP AS OF Forgejo 7.0 BUT KEPT FOR BACKWARD COMPATIBILITY"

				$(EXECUTABLE): $(GO_SOURCES) $(TAGS_PREREQ)

				$(EXECUTABLE): $(GO_SOURCES) $(TAGS_PREREQ) | verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $@

				forgejo: $(EXECUTABLE)

					ln -f $(EXECUTABLE) forgejo

				static-executable: $(GO_SOURCES) $(TAGS_PREREQ)

				static-executable: $(GO_SOURCES) $(TAGS_PREREQ) | verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) build $(GOFLAGS) $(EXTRA_GOFLAGS) -tags 'netgo osusergo $(TAGS)' -ldflags '-linkmode external -extldflags "-static" $(LDFLAGS)' -o $(EXECUTABLE)

				.PHONY: release

				@ -863,18 +883,18 @@ $(DIST_DIRS):

					mkdir -p $(DIST_DIRS)

				.PHONY: release-linux

				release-linux: | $(DIST_DIRS)

				release-linux: | $(DIST_DIRS) verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) run $(XGO_PACKAGE) -go $(XGO_VERSION) -dest $(DIST)/binaries -tags 'netgo osusergo $(TAGS)' -ldflags '-linkmode external -extldflags "-static" $(LDFLAGS)' -targets '$(LINUX_ARCHS)' -out forgejo-$(VERSION) .

				ifeq ($(CI),true)

					cp /build/* $(DIST)/binaries

				endif

				.PHONY: release-darwin

				release-darwin: | $(DIST_DIRS)

				release-darwin: | $(DIST_DIRS) verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) run $(XGO_PACKAGE) -go $(XGO_VERSION) -dest $(DIST)/binaries -tags 'netgo osusergo $(TAGS)' -ldflags '$(LDFLAGS)' -targets 'darwin-10.12/amd64,darwin-10.12/arm64' -out gitea-$(VERSION) .

				.PHONY: release-freebsd

				release-freebsd: | $(DIST_DIRS)

				release-freebsd: | $(DIST_DIRS) verify-version

					CGO_CFLAGS="$(CGO_CFLAGS)" $(GO) run $(XGO_PACKAGE) -go $(XGO_VERSION) -dest $(DIST)/binaries -tags 'netgo osusergo $(TAGS)' -ldflags '$(LDFLAGS)' -targets 'freebsd/amd64' -out gitea-$(VERSION) .

				.PHONY: release-copy

				@ -928,10 +948,7 @@ reproduce-build\#%:

				###

				.PHONY: deps

				deps: deps-frontend deps-backend deps-tools deps-py

				.PHONY: deps-py

				deps-py: .venv

				deps: deps-frontend deps-backend deps-tools

				.PHONY: deps-frontend

				deps-frontend: node_modules

				@ -947,28 +964,24 @@ deps-tools:

					$(GO) install $(GOFUMPT_PACKAGE)

					$(GO) install $(GOLANGCI_LINT_PACKAGE)

					$(GO) install $(GXZ_PACKAGE)

					$(GO) install $(MISSPELL_PACKAGE)

					$(GO) install $(SWAGGER_PACKAGE)

					$(GO) install $(XGO_PACKAGE)

					$(GO) install $(GO_LICENSES_PACKAGE)

					$(GO) install $(GOVULNCHECK_PACKAGE)

					$(GO) install $(GOMOCK_PACKAGE)

					$(GO) install $(GOPLS_PACKAGE)

					$(GO) install $(ERRORTYPE_PACKAGE)

					$(GO) install $(MOCKERY_PACKAGE)

				node_modules: package-lock.json

					npm install --no-save

					@touch node_modules

				.venv: poetry.lock

					poetry install

					@touch .venv

				.PHONY: fomantic

				fomantic:

					rm -rf $(FOMANTIC_WORK_DIR)/build

					cd $(FOMANTIC_WORK_DIR) && npm install --no-save

					cp -f $(FOMANTIC_WORK_DIR)/theme.config.less $(FOMANTIC_WORK_DIR)/node_modules/fomantic-ui/src/theme.config

					cp -rf $(FOMANTIC_WORK_DIR)/_site $(FOMANTIC_WORK_DIR)/node_modules/fomantic-ui/src/

					rm -rf $(FOMANTIC_WORK_DIR)/node_modules/fomantic-ui/src/themes/default/modules/dropdown.overrides

					$(SED_INPLACE) -e 's/  overrideBrowserslist\r/  overrideBrowserslist: ["defaults"]\r/g' $(FOMANTIC_WORK_DIR)/node_modules/fomantic-ui/tasks/config/tasks.js

					cd $(FOMANTIC_WORK_DIR) && npx gulp -f node_modules/fomantic-ui/gulpfile.js build

					# fomantic uses "touchstart" as click event for some browsers, it's not ideal, so we force fomantic to always use "click" as click event

				@ -1011,14 +1024,13 @@ generate-license:

				generate-gitignore:

					$(GO) run build/generate-gitignores.go

				.PHONY: generate-gomock

				generate-gomock:

					$(GO) run $(GOMOCK_PACKAGE) -package mock -destination ./modules/queue/mock/redisuniversalclient.go forgejo.org/modules/nosql RedisClient

				.PHONY: generate-mockery

				generate-mockery:

					$(GO) run $(MOCKERY_PACKAGE)

				.PHONY: generate-images

				generate-images: | node_modules

					npm install --no-save fabric@6 imagemin-zopfli@7

					node tools/generate-images.js $(TAGS)

					node tools/generate-images.js

				.PHONY: generate-manpage

				generate-manpage:

									
										7

README.md
									
										View file
										
				@ -6,7 +6,7 @@

				Hi there! Tired of big platforms playing monopoly?

				Providing Git hosting for your project, friends, company or community?

				**Forgejo** (/for'd&#865;ʒe.jo/ inspired by forĝejo – the Esperanto word for *forge*) has you covered with its intuitive interface,

				light and easy hosting and a lot of builtin functionality.

				light and easy hosting and a lot of built-in functionality.

				Forgejo was [created in 2022](https://forgejo.org/2022-12-15-hello-forgejo/)

				because we think that the project should be owned by an independent community.

				@ -15,11 +15,6 @@ Our promise: **Independent Free/Libre Software forever!**

				## What does Forgejo offer?

				<!-- If you want to know what Forgejo is like,

				you can check out public instances,

				e.g. [Codeberg.org](https://codeberg.org).

				-->

				If you like any of the following, Forgejo is literally meant for you:

				- Lightweight: Forgejo can easily be hosted on nearly **every machine**.

									
										9

RELEASE-NOTES.md
									
										View file
										
				@ -4,7 +4,7 @@ A minor or major Forgejo release is published every [three months](https://forge

				A [patch or minor release](https://semver.org/spec/v2.0.0.html) (e.g. upgrading from v7.0.0 to v7.0.1 or v7.1.0) does not require manual intervention. But [major releases](https://semver.org/spec/v2.0.0.html#spec-item-8) where the first version number changes (e.g. upgrading from v1.21 to v7.0) contain breaking changes and the release notes explain how to deal with them.

				The release notes of each release [are available in the release-notes-published directory of this repository](release-notes-published), starting with [Forgejo 7.0.7](release-notes-published/7.0.7.md) and [Forgejo 8.0.1](release-notes-published/8.0.1.md).

				The release notes of each release [are available in the release-notes-published directory of this repository](https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published), starting with [Forgejo 7.0.7](release-notes-published/7.0.7.md) and [Forgejo 8.0.1](release-notes-published/8.0.1.md).

				## 9.0.2

				@ -130,6 +130,10 @@ A [companion blog post](https://forgejo.org/2024-07-release-v8-0/) provides addi

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3334): <!--number 3334 --><!--number--><!--description Added support for the `workflow_dispatch` workflow trigger-->added support for the [`workflow_dispatch` trigger](https://forgejo.org/docs/v8.0/user/actions/#onworkflow_dispatch) in Forgejo Actions.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3307): <!--number 3307 --><!--number--><!--description Support [Proof Key for Code Exchange (PKCE - RFC7636)](https://www.rfc-editor.org/rfc/rfc7636) for external login using the OpenID Connect authentication source.-->support [Proof Key for Code Exchange (PKCE - RFC7636)](https://www.rfc-editor.org/rfc/rfc7636) for external login using the OpenID Connect authentication source.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3139): <!--number 3139 --><!--number--><!--description Allow hiding auto generated release archives-->allow hiding auto generated release archives.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3952): Update of Chroma from v2.13.0: to v2.14.0:

				    - [`1e983e7`](https://github.com/alecthomas/chroma/commit/1e983e7) lexers/cue: support CUE attributes ([#&#8203;961](https://github.com/alecthomas/chroma/issues/961))

				    - [`9347b55`](https://github.com/alecthomas/chroma/commit/9347b55) Add Gleam syntax highlighting ([#&#8203;959](https://github.com/alecthomas/chroma/issues/959))

				    - [`2580aaa`](https://github.com/alecthomas/chroma/commit/2580aaa) Add Bazel bzlmod support into Python lexer ([#&#8203;947](https://github.com/alecthomas/chroma/issues/947))

				- **Bug fixes**

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/4732) ([backported from](https://codeberg.org/forgejo/forgejo/pulls/4715)): <!--number 4732 --><!--number--><!--description -->Show the AGit label on merged pull requests.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/4689) ([backported from](https://codeberg.org/forgejo/forgejo/pulls/4687)): <!--number 4689 --><!--number--><!--description -->Fixed: issue state change via the API is not idempotent.<!--description-->

				@ -146,6 +150,9 @@ A [companion blog post](https://forgejo.org/2024-07-release-v8-0/) provides addi

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3442): <!--number 3442 --><!--number--><!--description Save updated empty comments instead of skipping the update silently, [which prevented the removal of attachments of such comments](https://codeberg.org/forgejo/forgejo/issues/3424).-->Fixed: it is not possible to remove attachments from an empty comment.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3430): <!--number 3430 --><!--number--><!--description Fixed a bug where the `/api/v1/repos/{owner}/{repo}/wiki` API endpoints were using a hardcoded "master" branch for the wiki, rather than the branch they really use.-->Fixed: the `/api/v1/repos/{owner}/{repo}/wiki` API endpoints is using a hardcoded "master" branch for the wiki, rather than the branch they really use.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3379): <!--number 3379 --><!--number--><!--description -->Fixed: using the API to search for users, the results are not paged by default an the default paging limits are not respected.<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/3952): Update of Chroma from v2.13.0: to v2.14.0:

				    - [`736c0ea`](https://github.com/alecthomas/chroma/commit/736c0ea) Typescript: Several fixes ([#&#8203;952](https://github.com/alecthomas/chroma/issues/952))

				    - [`e5c25d0`](https://github.com/alecthomas/chroma/commit/e5c25d0) Org: Keep all newlines ([#&#8203;951](https://github.com/alecthomas/chroma/issues/951))

				- **Localization**

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/4661) ([backported from](https://codeberg.org/forgejo/forgejo/pulls/4568)): <!--number 4661 --><!--number--><!--description -->24 July updates<!--description-->

				  - [PR](https://codeberg.org/forgejo/forgejo/pulls/4565) ([backported from](https://codeberg.org/forgejo/forgejo/pulls/4451)): <!--number 4565 --><!--number--><!--description -->19 July updates<!--description-->

473

assets/go-licenses.json generated

View file

File diff suppressed because one or more lines are too long

									
										14

build.go
									
										View file
									
				@ -1,14 +0,0 @@

				// Copyright 2020 The Gitea Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				//go:build vendor

				package main

				// Libraries that are included to vendor utilities used during build.

				// These libraries will not be included in a normal compilation.

				import (

					// for embed

					_ "github.com/shurcooL/vfsgen"

				)

									
										4

build/code-batch-process.go
									
										View file
										
				@ -74,7 +74,7 @@ func newFileCollector(fileFilter string, batchSize int) (*fileCollector, error)

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`tests/integration/migration-test`))

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`modules/git/tests`))

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`models/fixtures`))

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`models/migrations/fixtures`))

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`models/gitea_migrations/fixtures`))

						co.excludePatterns = append(co.excludePatterns, regexp.MustCompile(`services/gitdiff/testdata`))

					}

				@ -181,7 +181,7 @@ func parseArgs() (mainOptions map[string]string, subCmd string, subArgs []string

							break

						}

					}

					return

					return mainOptions, subCmd, subArgs

				}

				func showUsage() {

									
										309

build/generate-bindata.go
									
										View file
										
				@ -1,5 +1,6 @@

				// Copyright 2020 The Gitea Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: GPL-3.0-or-later

				//go:build ignore

				@ -7,30 +8,40 @@ package main

				import (

					"bytes"

					"crypto/sha1"

					"crypto/sha256"

					"fmt"

					"io"

					"io/fs"

					"log"

					"net/http"

					"os"

					"path"

					"path/filepath"

					"strconv"

					"text/template"

					"github.com/shurcooL/vfsgen"

					"github.com/klauspost/compress/zstd"

				)

				func needsUpdate(dir, filename string) (bool, []byte) {

					needRegen := false

				func fileExists(filename string) bool {

					_, err := os.Stat(filename)

					if err != nil {

						needRegen = true

					if err == nil {

						return true

					}

					if os.IsNotExist(err) {

						return false

					}

					panic(err)

				}

				func needsUpdate(dir, filename string) (bool, []byte) {

					needRegen := !fileExists(filename)

					oldHash, err := os.ReadFile(filename + ".hash")

					if err != nil {

						oldHash = []byte{}

					}

					hasher := sha1.New()

					hasher := sha256.New()

					err = filepath.WalkDir(dir, func(path string, d os.DirEntry, err error) error {

						if err != nil {

				@ -51,7 +62,7 @@ func needsUpdate(dir, filename string) (bool, []byte) {

					newHash := hasher.Sum([]byte{})

					if bytes.Compare(oldHash, newHash) != 0 {

					if !bytes.Equal(oldHash, newHash) {

						return true, newHash

					}

				@ -69,24 +80,280 @@ func main() {

						useGlobalModTime, _ = strconv.ParseBool(os.Args[4])

					}

					update, newHash := needsUpdate(dir, filename)

					if os.Getenv("FORGEJO_GENERATE_SKIP_HASH") == "true" && fileExists(filename) {

						fmt.Printf("bindata %s already exists and FORGEJO_GENERATE_SKIP_HASH=true\n", packageName)

						return

					}

					update, newHash := needsUpdate(dir, filename)

					if !update {

						fmt.Printf("bindata for %s already up-to-date\n", packageName)

						fmt.Printf("bindata %s already exists and the checksum is a match\n", packageName)

						return

					}

					fmt.Printf("generating bindata for %s\n", packageName)

					var fsTemplates http.FileSystem = http.Dir(dir)

					err := vfsgen.Generate(fsTemplates, vfsgen.Options{

						PackageName:      packageName,

						BuildTags:        "bindata",

						VariableName:     "Assets",

						Filename:         filename,

						UseGlobalModTime: useGlobalModTime,

					})

					root, err := os.OpenRoot(dir)

					if err != nil {

						log.Fatalf("%v\n", err)

						log.Fatal(err)

					}

					out, err := os.OpenFile(filename, os.O_CREATE|os.O_TRUNC|os.O_WRONLY, 0o644)

					if err != nil {

						log.Fatal(err)

					}

					defer out.Close()

					if err := generate(root.FS(), packageName, useGlobalModTime, out); err != nil {

						log.Fatal(err)

					}

					_ = os.WriteFile(filename+".hash", newHash, 0o666)

				}

				type file struct {

					Path             string

					Name             string

					UncompressedSize int

					CompressedData   []byte

					UncompressedData []byte

				}

				type direntry struct {

					Name  string

					IsDir bool

				}

				func generate(fsRoot fs.FS, packageName string, globalTime bool, output io.Writer) error {

					enc, err := zstd.NewWriter(nil, zstd.WithEncoderLevel(zstd.SpeedBestCompression))

					if err != nil {

						return err

					}

					files := []file{}

					dirs := map[string][]direntry{}

					if err := fs.WalkDir(fsRoot, ".", func(filePath string, d fs.DirEntry, err error) error {

						if err != nil {

							return err

						}

						if d.IsDir() {

							entries, err := fs.ReadDir(fsRoot, filePath)

							if err != nil {

								return err

							}

							dirEntries := make([]direntry, 0, len(entries))

							for _, entry := range entries {

								dirEntries = append(dirEntries, direntry{Name: entry.Name(), IsDir: entry.IsDir()})

							}

							dirs[filePath] = dirEntries

							return nil

						}

						src, err := fs.ReadFile(fsRoot, filePath)

						if err != nil {

							return err

						}

						dst := enc.EncodeAll(src, nil)

						if len(dst) < len(src) {

							files = append(files, file{

								Path:             filePath,

								Name:             path.Base(filePath),

								UncompressedSize: len(src),

								CompressedData:   dst,

							})

						} else {

							files = append(files, file{

								Path:             filePath,

								Name:             path.Base(filePath),

								UncompressedData: src,

							})

						}

						return nil

					}); err != nil {

						return err

					}

					return generatedTmpl.Execute(output, map[string]any{

						"Packagename": packageName,

						"GlobalTime":  globalTime,

						"Files":       files,

						"Dirs":        dirs,

					})

				}

				var generatedTmpl = template.Must(template.New("").Parse(`// Code generated by efs-gen. DO NOT EDIT.

				//go:build bindata

				package {{.Packagename}}

				import (

					"bytes"

					"time"

					"io"

					"io/fs"

					"github.com/klauspost/compress/zstd"

				)

				type normalFile struct {

					name    string

					content []byte

				}

				type compressedFile struct {

					name             string

					uncompressedSize int64

					data             []byte

				}

				var files = map[string]any{

				{{- range .Files}}

					"{{.Path}}": {{if .CompressedData}}compressedFile{"{{.Name}}", {{.UncompressedSize}}, []byte({{printf "%+q" .CompressedData}})}{{else}}normalFile{"{{.Name}}", []byte({{printf "%+q" .UncompressedData}})}{{end}},

				{{- end}}

				}

				var dirs = map[string][]fs.DirEntry{

				{{- range $key, $entry := .Dirs}}

					"{{$key}}": {

				{{- range $entry}}

						direntry{"{{.Name}}", {{.IsDir}}},

				{{- end}}

					},

				{{- end}}

				}

				type assets struct{}

				var Assets = assets{}

				func (a assets) Open(name string) (fs.File, error) {

					f, ok := files[name]

					if !ok {

						return nil, &fs.PathError{Op: "open", Path: name, Err: fs.ErrNotExist}

					}

					switch f := f.(type) {

					case normalFile:

						return file{name: f.name, size: int64(len(f.content)), data: bytes.NewReader(f.content)}, nil

					case compressedFile:

						r, _ := zstd.NewReader(bytes.NewReader(f.data))

						return &compressFile{name: f.name, size: f.uncompressedSize, data: r, content: f.data}, nil

					default:

						panic("unknown file type")

					}

				}

				func (a assets) ReadDir(name string) ([]fs.DirEntry, error) {

					d, ok := dirs[name]

					if !ok {

						return nil, &fs.PathError{Op: "open", Path: name, Err: fs.ErrNotExist}

					}

					return d, nil

				}

				type file struct {

					name string

					size int64

					data io.ReadSeeker

				}

				var _ io.ReadSeeker = (*file)(nil)

				func (f file) Stat() (fs.FileInfo, error) {

					return fileinfo{name: f.name, size: f.size}, nil

				}

				func (f file) Read(p []byte) (int, error) {

					return f.data.Read(p)

				}

				func (f file) Seek(offset int64, whence int) (int64, error) {

					return f.data.Seek(offset, whence)

				}

				func (f file) Close() error { return nil }

				type compressFile struct {

					name    string

					size    int64

					data    *zstd.Decoder

					content []byte

					zstdPos int64

					seekPos int64

				}

				var _ io.ReadSeeker = (*compressFile)(nil)

				func (f *compressFile) Stat() (fs.FileInfo, error) {

					return fileinfo{name: f.name, size: f.size}, nil

				}

				func (f *compressFile) Read(p []byte) (int, error) {

					if f.zstdPos > f.seekPos {

						if err := f.data.Reset(bytes.NewReader(f.content)); err != nil {

							return 0, err

						}

						f.zstdPos = 0

					}

					if f.zstdPos < f.seekPos {

						if _, err := io.CopyN(io.Discard, f.data, f.seekPos - f.zstdPos); err != nil {

							return 0, err

						}

						f.zstdPos = f.seekPos

					}

					n, err := f.data.Read(p)

					f.zstdPos += int64(n)

					f.seekPos = f.zstdPos

					return n, err

				}

				func (f *compressFile) Seek(offset int64, whence int) (int64, error) {

					switch whence {

					case io.SeekStart:

						f.seekPos = 0 + offset

					case io.SeekCurrent:

						f.seekPos += offset

					case io.SeekEnd:

						f.seekPos = f.size + offset

					}

					return f.seekPos, nil

				}

				func (f *compressFile) Close() error {

					f.data.Close()

					return nil

				}

				func (f *compressFile) ZstdBytes() []byte { return f.content }

				type fileinfo struct {

					name string

					size int64

				}

				func (f fileinfo) Name() string       { return f.name }

				func (f fileinfo) Size() int64        { return f.size }

				func (f fileinfo) Mode() fs.FileMode  { return 0o444 }

				func (f fileinfo) ModTime() time.Time { return {{if .GlobalTime}}GlobalModTime(f.name){{else}}time.Unix(0, 0){{end}} }

				func (f fileinfo) IsDir() bool        { return false }

				func (f fileinfo) Sys() any           { return nil }

				type direntry struct {

					name  string

					isDir bool

				}

				func (d direntry) Name() string { return d.name }

				func (d direntry) IsDir() bool  { return d.isDir }

				func (d direntry) Type() fs.FileMode {

					if d.isDir {

						return 0o755 | fs.ModeDir

					}

					return 0o444

				}

				func (direntry) Info() (fs.FileInfo, error) { return nil, fs.ErrNotExist }

				`))

17

build/lint-locale-usage/allowed-masked-usage.txt Normal file

View file

 @ -0,0 +1,17 @@
 # translation tooling test keys
 meta.last_line
 translation_meta.test
 # models/admin/task.go: instances of $TranslatableMessage.Format
 # this also gets instantiated as a Messenger once
 repo.migrate.migrating_failed.error
 # modules/setting/ui.go
 themes.names.
 # services/context/context.go
 relativetime.
 # templates/repo/settings/webhook/link_menu.tmpl, templates/webhook/new.tmpl: repo.settings.web_hook_name_
 # tests/integration/repo_archive_text_test.go
 repo.settings.

									
										208

build/lint-locale-usage/bin/handle-go.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,208 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package main

				import (

					"fmt"

					"go/ast"

					goParser "go/parser"

					"go/token"

					"reflect"

					"slices"

					"strconv"

					"strings"

					llu "forgejo.org/build/lint-locale-usage"

					lluAsymKey "forgejo.org/models/asymkey/lint-locale-usage"

					lluUnit "forgejo.org/models/unit/lint-locale-usage"

					lluMigrate "forgejo.org/services/migrations/lint-locale-usage"

				)

				// the `Handle*File` functions follow the following calling convention:

				// * `fname` is the name of the input file

				// * `src` is either `nil` (then the function invokes `ReadFile` to read the file)

				//   or the contents of the file as {`[]byte`, or a `string`}

				func HandleGoFile(handler llu.Handler, fname string, src any) error {

					fset := token.NewFileSet()

					node, err := goParser.ParseFile(fset, fname, src, goParser.SkipObjectResolution|goParser.ParseComments)

					if err != nil {

						return llu.LocatedError{

							Location: fname,

							Kind:     "Go parser",

							Err:      err,

						}

					}

					ast.Inspect(node, func(n ast.Node) bool {

						return HandleGoNode(handler, fset, fname, n)

					})

					return nil

				}

				func HandleGoNode(handler llu.Handler, fset *token.FileSet, fname string, n ast.Node) bool {

					// search for function calls of the form `anything.Tr(any-string-lit, ...)`

					switch n2 := n.(type) {

					case *ast.CallExpr:

						if len(n2.Args) == 0 {

							return true

						}

						funSel, ok := n2.Fun.(*ast.SelectorExpr)

						if !ok {

							return true

						}

						ltf, ok := handler.LocaleTrFunctions[funSel.Sel.Name]

						if !ok {

							return true

						}

						var gotUnexpectedInvoke *int

						for _, argNum := range ltf {

							if len(n2.Args) <= int(argNum) {

								argc := len(n2.Args)

								gotUnexpectedInvoke = &argc

							} else {

								handler.HandleGoTrArgument(fset, n2.Args[int(argNum)], "")

							}

						}

						if gotUnexpectedInvoke != nil {

							handler.OnUnexpectedInvoke(fset, funSel.Sel.NamePos, funSel.Sel.Name, *gotUnexpectedInvoke)

						}

					case *ast.CompositeLit:

						if strings.HasSuffix(fname, "models/unit/unit.go") {

							lluUnit.HandleCompositeUnit(handler, fset, n2)

						} else if strings.Contains(fname, "models/asymkey/") {

							lluAsymKey.HandleCompositeErrorReason(handler, fset, n2)

						}

					case *ast.FuncDecl:

						if matchInsPrefix := handler.HandleGoCommentGroup(fset, n2.Doc, "llu:returnsTrKeyWeak"); matchInsPrefix != nil {

							results := n2.Type.Results.List

							if len(results) != 1 {

								handler.OnWarning(fset, n2.Type.Func, fmt.Sprintf("function %s has unexpected return type; expected single return value", n2.Name.Name))

								return true

							}

							ast.Inspect(n2.Body, func(n ast.Node) bool {

								// search for return stmts

								// TODO: what about nested functions?

								if ret, ok := n.(*ast.ReturnStmt); ok {

									for _, res := range ret.Results {

										ast.Inspect(res, func(n ast.Node) bool {

											if expr, ok := n.(ast.Expr); ok {

												handler.HandleGoTrArgument(fset, expr, *matchInsPrefix)

											}

											return true

										})

									}

									return false

								}

								return true

							})

						}

						if matchInsPrefix := handler.HandleGoCommentGroup(fset, n2.Doc, "llu:returnsTrKey"); matchInsPrefix != nil {

							results := n2.Type.Results.List

							if len(results) != 1 {

								handler.OnWarning(fset, n2.Type.Func, fmt.Sprintf("function %s has unexpected return type; expected single return value", n2.Name.Name))

								return true

							}

							ast.Inspect(n2.Body, func(n ast.Node) bool {

								// search for return stmts

								if ret, ok := n.(*ast.ReturnStmt); ok {

									for _, res := range ret.Results {

										handler.HandleGoTrArgument(fset, res, *matchInsPrefix)

									}

									return false

								} else if _, ok := n.(*ast.FuncDecl); ok {

									ast.Inspect(n, func(n2 ast.Node) bool {

										return HandleGoNode(handler, fset, fname, n2)

									})

									// don't search inside nested functions for return stmts

									return false

								}

								return true

							})

						}

						if strings.HasSuffix(fname, "services/migrations/migrate.go") {

							lluMigrate.HandleMessengerInFunc(handler, fset, n2)

						}

						return true

					case *ast.GenDecl:

						switch n2.Tok {

						case token.CONST, token.VAR:

							matchInsPrefix := handler.HandleGoCommentGroup(fset, n2.Doc, " llu:TrKeys")

							if matchInsPrefix == nil {

								return true

							}

							for _, spec := range n2.Specs {

								// interpret all contained strings as message IDs

								ast.Inspect(spec, func(n ast.Node) bool {

									if argLit, ok := n.(*ast.BasicLit); ok {

										handler.HandleGoTrBasicLit(fset, argLit, *matchInsPrefix)

										return false

									}

									return true

								})

							}

						case token.TYPE:

							// modules/web/middleware/binding.go:Validate uses the convention that structs

							// entries can have tags.

							// In particular, `locale:$msgid` should be handled; any fields with `form:-` shouldn't.

							// Problem: we don't know which structs are forms, actually.

							for _, spec := range n2.Specs {

								tspec := spec.(*ast.TypeSpec)

								structNode, ok := tspec.Type.(*ast.StructType)

								if !ok || !(strings.HasSuffix(tspec.Name.Name, "Form") ||

									(tspec.Doc != nil &&

										slices.ContainsFunc(tspec.Doc.List, func(c *ast.Comment) bool {

											return c.Text == "// swagger:model"

										}))) {

									continue

								}

								for _, field := range structNode.Fields.List {

									if field.Names == nil {

										continue

									}

									if len(field.Names) != 1 {

										handler.OnWarning(fset, field.Type.Pos(), "unsupported multiple field names")

										continue

									}

									msgidPos := field.Names[0].NamePos

									msgid := "form." + field.Names[0].Name

									if field.Tag != nil && field.Tag.Kind == token.STRING {

										rawTag, err := strconv.Unquote(field.Tag.Value)

										if err != nil {

											handler.OnWarning(fset, field.Tag.ValuePos, "invalid tag value encountered")

											continue

										}

										tag := reflect.StructTag(rawTag)

										if tag.Get("form") == "-" {

											continue

										}

										tmp := tag.Get("locale")

										if len(tmp) != 0 {

											msgidPos = field.Tag.ValuePos

											msgid = tmp

										}

									}

									handler.OnMsgid(fset, msgidPos, msgid, true)

								}

							}

						}

					}

					return true

				}

									
										404

build/lint-locale-usage/bin/lint-locale-usage.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,404 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package main

				import (

					"bufio"

					"errors"

					"flag"

					"fmt"

					"go/token"

					"io/fs"

					"os"

					"path/filepath"

					"regexp"

					"sort"

					"strings"

					llu "forgejo.org/build/lint-locale-usage"

					"forgejo.org/modules/container"

					"forgejo.org/modules/translation/localeiter"

				)

				// this works by first gathering all valid source string IDs from `en-US` reference files

				// and then checking if all used source strings are actually defined

				func InitLocaleTrFunctions() map[string][]uint {

					ret := make(map[string][]uint)

					f0 := []uint{0}

					ret["Tr"] = f0

					ret["TrString"] = f0

					ret["TrHTML"] = f0

					ret["TrPluralString"] = []uint{1}

					ret["TrN"] = []uint{1, 2}

					return ret

				}

				type StringTrie interface {

					Matches(key []string) bool

				}

				type StringTrieMap map[string]StringTrie

				func printfPatternToRegex(key string) (string, bool) {

					parts := strings.Split(key, "%")

					if len(parts) < 2 {

						return key, false

					}

					var pattern strings.Builder

					pattern.WriteString("^")

					pattern.WriteString(parts[0])

					skip := false

					for _, part := range parts[1:] {

						if skip {

							skip = false

							continue

						}

						if len(part) == 0 {

							// "%%"

							pattern.WriteString("%")

							continue

						}

						switch part[0] {

						case 'd':

							pattern.WriteString("[0-9]+")

						default:

							pattern.WriteString("[A-Za-z0-9]*")

						}

						pattern.WriteString(part[1:])

					}

					pattern.WriteString("$")

					return pattern.String(), true

				}

				func (m StringTrieMap) Matches(key []string) bool {

					if len(key) == 0 || m == nil {

						return true

					}

					value, ok := m[key[0]]

					if !ok {

						for altKey, value := range m {

							// TODO: cache mapping $printfFormatString -> $regexpCompileOutput

							pattern, found := printfPatternToRegex(altKey)

							if !found {

								continue

							}

							matched, err := regexp.MatchString(pattern, key[0])

							if err != nil {

								panic(fmt.Sprintf("unable to compile regexp '%s': %s", pattern, err.Error()))

							}

							if matched && (value == nil || value.Matches(key[1:])) {

								return true

							}

						}

						return false

					}

					if value == nil {

						return true

					}

					return value.Matches(key[1:])

				}

				func (m StringTrieMap) Insert(key []string) {

					if m == nil {

						return

					}

					switch len(key) {

					case 0:

						return

					case 1:

						m[key[0]] = nil

					default:

						if value, ok := m[key[0]]; ok {

							if value == nil {

								return

							}

						} else {

							m[key[0]] = make(StringTrieMap)

						}

						m[key[0]].(StringTrieMap).Insert(key[1:])

					}

				}

				func ParseAllowedMaskedUsages(fname string, usedMsgids container.Set[string], allowedMaskedPrefixes StringTrieMap, chkMsgid func(msgid string) bool) error {

					file, err := os.Open(fname)

					if err != nil {

						return llu.LocatedError{

							Location: fname,

							Kind:     "Open",

							Err:      err,

						}

					}

					defer file.Close()

					scanner := bufio.NewScanner(file)

					lno := 0

					for scanner.Scan() {

						lno++

						line := strings.TrimSpace(scanner.Text())

						if line == "" || strings.HasPrefix(line, "#") {

							continue

						}

						if linePrefix, found := strings.CutSuffix(line, "."); found || strings.Contains(line, "%") {

							allowedMaskedPrefixes.Insert(strings.Split(linePrefix, "."))

						} else {

							if !chkMsgid(line) {

								return llu.LocatedError{

									Location: fmt.Sprintf("%s: line %d", fname, lno),

									Kind:     "undefined msgid",

									Err:      errors.New(line),

								}

							}

							usedMsgids.Add(line)

						}

					}

					if err := scanner.Err(); err != nil {

						return llu.LocatedError{

							Location: fname,

							Kind:     "Scanner",

							Err:      err,

						}

					}

					return nil

				}

				func Usage() {

					outp := flag.CommandLine.Output()

					fmt.Fprintf(outp, "Usage of %s:\n", os.Args[0])

					flag.PrintDefaults()

					fmt.Fprintf(outp, "\nThis command assumes that it gets started from the project root directory.\n")

					fmt.Fprintf(outp, "\nExit codes:\n")

					for _, i := range []string{

						"0\tsuccess, no issues found",

						"1\tunable to walk directory tree",

						"2\tunable to parse locale ini/json files",

						"3\tunable to parse go or text/template files",

						"4\tfound missing message IDs",

						"5\tfound unused message IDs",

					} {

						fmt.Fprintf(outp, "\t%s\n", i)

					}

					fmt.Fprintf(outp, "\nSpecial Go doc comments:\n")

					for _, i := range []string{

						"//llu:returnsTrKeyWeak",

						"\tcan be used in front of functions to indicate",

						"\tthat the function returns message IDs (allows nesting inside complicated function calls)",

						"\tWARNING: this currently doesn't support nested functions properly",

						"",

						"//llu:returnsTrKey",

						"\tcan be used in front of functions to indicate",

						"\tthat the function returns message IDs (doesn't allow nesting inside complicated function calls)",

						"\tWARNING: this currently doesn't support nested functions properly",

						"",

						"//llu:returnsTrKeySuffix prefix.",

						"\tsimilar to llu:returnsTrKey, but the given prefix is prepended",

						"\tto the found strings before interpreting them as msgids",

						"",

						"// llu:TrKeys",

						"\tcan be used in front of 'const' and 'var' blocks",

						"\tin order to mark all contained strings as message IDs",

						"",

						"// llu:TrKeysSuffix prefix.",

						"\tlike llu:returnsTrKeySuffix, but for 'const' and 'var' blocks",

					} {

						if i == "" {

							fmt.Fprintf(outp, "\n")

						} else {

							fmt.Fprintf(outp, "\t%s\n", i)

						}

					}

				}

				//nolint:forbidigo

				func main() {

					allowMissingMsgids := false

					allowUnusedMsgids := false

					allowWeakMissingMsgids := true

					usedMsgids := make(container.Set[string])

					allowedMaskedPrefixes := make(StringTrieMap)

					// It's possible for execl to hand us an empty os.Args.

					if len(os.Args) == 0 {

						flag.CommandLine = flag.NewFlagSet("lint-locale-usage", flag.ExitOnError)

					} else {

						flag.CommandLine = flag.NewFlagSet(os.Args[0], flag.ExitOnError)

					}

					flag.CommandLine.Usage = Usage

					flag.Usage = Usage

					flag.BoolVar(

						&allowMissingMsgids,

						"allow-missing-msgids",

						false,

						"don't return an error code if missing message IDs are found",

					)

					flag.BoolVar(

						&allowWeakMissingMsgids,

						"allow-weak-missing-msgids",

						true,

						"Don't return an error code if missing 'weak' (e.g. \"form.$msgid\") message IDs are found",

					)

					flag.BoolVar(

						&allowUnusedMsgids,

						"allow-unused-msgids",

						false,

						"don't return an error code if unused message IDs are found",

					)

					msgids := make(container.Set[string])

					localeFile := filepath.Join(filepath.Join("options", "locale"), "locale_en-US.ini")

					localeContent, err := os.ReadFile(localeFile)

					if err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					if err = localeiter.IterateMessagesContent(localeContent, func(trKey, trValue string) error {

						msgids[trKey] = struct{}{}

						return nil

					}); err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					localeFile = filepath.Join(filepath.Join("options", "locale_next"), "locale_en-US.json")

					localeContent, err = os.ReadFile(localeFile)

					if err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					if err := localeiter.IterateMessagesNextContent(localeContent, func(trKey, pluralForm, trValue string) error {

						// ignore plural form

						msgids[trKey] = struct{}{}

						return nil

					}); err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					gotAnyMsgidError := false

					flag.Func(

						"allow-masked-usages-from",

						"supply a file containing a newline-separated list of allowed masked usages",

						func(argval string) error {

							return ParseAllowedMaskedUsages(argval, usedMsgids, allowedMaskedPrefixes, func(msgid string) bool {

								return msgids.Contains(msgid)

							})

						},

					)

					flag.Parse()

					onError := func(err error) {

						if err == nil {

							return

						}

						fmt.Println(err.Error())

						os.Exit(3)

					}

					handler := llu.Handler{

						OnMsgidPattern: func(fset *token.FileSet, pos token.Pos, msgidPattern string) {

							msgidPatternSplit := strings.Split(msgidPattern, ".")

							allowedMaskedPrefixes.Insert(msgidPatternSplit)

						},

						OnMsgidPrefix: func(fset *token.FileSet, pos token.Pos, msgidPrefix string, truncated bool) {

							msgidPrefixSplit := strings.Split(msgidPrefix, ".")

							if !truncated {

								allowedMaskedPrefixes.Insert(msgidPrefixSplit)

							} else if !allowedMaskedPrefixes.Matches(msgidPrefixSplit) {

								gotAnyMsgidError = true

								fmt.Printf("%s:\tmissing msgid prefix: %s\n", fset.Position(pos).String(), msgidPrefix)

							}

						},

						OnMsgid: func(fset *token.FileSet, pos token.Pos, msgid string, weak bool) {

							if strings.Contains(msgid, "%") {

								fmt.Printf("%s:\tunexpected msgid pattern: %s\n", fset.Position(pos).String(), msgid)

								return

							}

							if !msgids.Contains(msgid) {

								if weak && allowWeakMissingMsgids {

									return

								}

								gotAnyMsgidError = true

								fmt.Printf("%s:\tmissing msgid: %s\n", fset.Position(pos).String(), msgid)

							} else {

								usedMsgids.Add(msgid)

							}

						},

						OnUnexpectedInvoke: func(fset *token.FileSet, pos token.Pos, funcname string, argc int) {

							gotAnyMsgidError = true

							fmt.Printf("%s:\tunexpected invocation of %s with %d arguments\n", fset.Position(pos).String(), funcname, argc)

						},

						OnWarning: func(fset *token.FileSet, pos token.Pos, msg string) {

							fmt.Printf("%s:\tWARNING: %s\n", fset.Position(pos).String(), msg)

						},

						LocaleTrFunctions: llu.InitLocaleTrFunctions(),

					}

					if err := filepath.WalkDir(".", func(fpath string, d fs.DirEntry, err error) error {

						if err != nil {

							if os.IsNotExist(err) {

								return nil

							}

							return err

						}

						name := d.Name()

						if d.IsDir() {

							if name == "docker" || name == ".git" || name == "node_modules" {

								return fs.SkipDir

							}

						} else if name == "bindata.go" || fpath == "modules/translation/i18n/i18n_test.go" || fpath == "modules/translation/i18n/i18n_ini_test.go" {

							// skip false positives

						} else if strings.HasSuffix(name, ".go") {

							onError(HandleGoFile(handler, fpath, nil))

						} else if strings.HasSuffix(name, ".tmpl") {

							if strings.HasPrefix(fpath, "tests") && strings.HasSuffix(name, ".ini.tmpl") {

								// skip false positives

							} else {

								onError(handler.HandleTemplateFile(fpath, nil))

							}

						}

						return nil

					}); err != nil {

						fmt.Printf("walkdir ERROR: %s\n", err.Error())

						os.Exit(1)

					}

					unusedMsgids := []string{}

					for msgid := range msgids {

						if !usedMsgids.Contains(msgid) && !allowedMaskedPrefixes.Matches(strings.Split(msgid, ".")) {

							unusedMsgids = append(unusedMsgids, msgid)

						}

					}

					sort.Strings(unusedMsgids)

					if len(unusedMsgids) != 0 {

						fmt.Printf("=== unused msgids (%d): ===\n", len(unusedMsgids))

						for _, msgid := range unusedMsgids {

							fmt.Printf("- %s\n", msgid)

						}

					}

					if !allowMissingMsgids && gotAnyMsgidError {

						os.Exit(4)

					}

					if !allowUnusedMsgids && len(unusedMsgids) != 0 {

						os.Exit(5)

					}

				}

									
										28

build/lint-locale-usage/lint-locale-usage_test.go → build/lint-locale-usage/bin/lint-locale-usage_test.go
									
										View file
										
				@ -7,37 +7,45 @@ import (

					"go/token"

					"testing"

					llu "forgejo.org/build/lint-locale-usage"

					"github.com/stretchr/testify/assert"

					"github.com/stretchr/testify/require"

				)

				func buildHandler(ret *[]string) llu.Handler {

					return llu.Handler{

						OnMsgid: func(fset *token.FileSet, pos token.Pos, msgid string, weak bool) {

							*ret = append(*ret, msgid)

						},

						OnUnexpectedInvoke: func(fset *token.FileSet, pos token.Pos, funcname string, argc int) {},

						LocaleTrFunctions:  llu.InitLocaleTrFunctions(),

					}

				}

				func HandleGoFileWrapped(t *testing.T, fname, src string) []string {

					var ret []string

					omh := OnMsgidHandler(func(fset *token.FileSet, pos token.Pos, msgid string) {

						ret = append(ret, msgid)

					})

					require.NoError(t, omh.HandleGoFile(fname, src))

					handler := buildHandler(&ret)

					require.NoError(t, HandleGoFile(handler, fname, src))

					return ret

				}

				func HandleTemplateFileWrapped(t *testing.T, fname, src string) []string {

					var ret []string

					omh := OnMsgidHandler(func(fset *token.FileSet, pos token.Pos, msgid string) {

						ret = append(ret, msgid)

					})

					require.NoError(t, omh.HandleTemplateFile(fname, src))

					handler := buildHandler(&ret)

					require.NoError(t, handler.HandleTemplateFile(fname, src))

					return ret

				}

				func TestUsagesParser(t *testing.T) {

					t.Run("go, simple", func(t *testing.T) {

						assert.EqualValues(t,

						assert.Equal(t,

							[]string{"what.an.example"},

							HandleGoFileWrapped(t, "<g1>", "package main\nfunc Render(ctx *context.Context) string { return ctx.Tr(\"what.an.example\"); }\n"))

					})

					t.Run("template, simple", func(t *testing.T) {

						assert.EqualValues(t,

						assert.Equal(t,

							[]string{"what.an.example"},

							HandleTemplateFileWrapped(t, "<t1>", "{{ ctx.Locale.Tr \"what.an.example\" }}\n"))

					})

									
										123

build/lint-locale-usage/handle-go.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,123 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package lintLocaleUsage

				import (

					"fmt"

					"go/ast"

					"go/token"

					"strconv"

					"strings"

				)

				func (handler Handler) HandleGoTrBasicLit(fset *token.FileSet, argLit *ast.BasicLit, prefix string) {

					if argLit.Kind == token.STRING {

						// extract string content

						arg, err := strconv.Unquote(argLit.Value)

						if err != nil {

							return

						}

						// found interesting strings

						arg = prefix + arg

						if strings.HasSuffix(arg, ".") || strings.HasSuffix(arg, "_") {

							prep, trunc := PrepareMsgidPrefix(arg)

							if trunc {

								handler.OnWarning(fset, argLit.ValuePos, fmt.Sprintf("needed to truncate message id prefix: %s", arg))

							}

							handler.OnMsgidPrefix(fset, argLit.ValuePos, prep, trunc)

						} else {

							handler.OnMsgid(fset, argLit.ValuePos, arg, false)

						}

					}

				}

				func (handler Handler) HandleGoTrArgument(fset *token.FileSet, n ast.Expr, prefix string) {

					switch n := n.(type) {

					case *ast.BasicLit:

						handler.HandleGoTrBasicLit(fset, n, prefix)

					case *ast.BinaryExpr:

						if n.Op != token.ADD {

							// pass

						} else if argLit, ok := n.X.(*ast.BasicLit); ok && argLit.Kind == token.STRING {

							// extract string content

							arg, err := strconv.Unquote(argLit.Value)

							if err != nil {

								return

							}

							// found interesting strings

							arg = prefix + arg

							prep, trunc := PrepareMsgidPrefix(arg)

							if trunc {

								handler.OnWarning(fset, argLit.ValuePos, fmt.Sprintf("needed to truncate message id prefix: %s", arg))

							}

							handler.OnMsgidPrefix(fset, argLit.ValuePos, prep, trunc)

						}

					case *ast.CallExpr:

						if selExpr, ok := n.Fun.(*ast.SelectorExpr); ok {

							if xIdent, xok := selExpr.X.(*ast.Ident); !xok || xIdent.Name != "fmt" {

								return

							}

							if selExpr.Sel.Name != "Sprintf" {

								handler.OnWarning(fset, selExpr.Sel.NamePos, fmt.Sprintf("unexpected formatting function encountered: %s", selExpr.Sel.Name))

								return

							}

							if len(n.Args) == 0 {

								handler.OnWarning(fset, selExpr.Sel.NamePos, fmt.Sprintf("unexpected formatting function invocation (no arguments) of '%s'", selExpr.Sel.Name))

								return

							}

							if argLit, ok := n.Args[0].(*ast.BasicLit); ok && argLit.Kind == token.STRING {

								// extract string content

								arg, err := strconv.Unquote(argLit.Value)

								if err != nil {

									return

								}

								if strings.Contains(arg, " ") {

									handler.OnWarning(fset, argLit.ValuePos, fmt.Sprintf(

										"formatting function invocation of '%s' with weird msgid format string: %s",

										selExpr.Sel.Name,

										arg,

									))

									return

								}

								// found interesting strings

								handler.OnMsgidPattern(fset, argLit.ValuePos, prefix+arg)

							}

						}

					}

				}

				func (handler Handler) HandleGoCommentGroup(fset *token.FileSet, cg *ast.CommentGroup, commentPrefix string) *string {

					if cg == nil {

						return nil

					}

					var matches []token.Pos

					matchInsPrefix := ""

					commentPrefix = "//" + commentPrefix

					for _, comment := range cg.List {

						ctxt := strings.TrimSpace(comment.Text)

						if ctxt == commentPrefix {

							matches = append(matches, comment.Slash)

						} else if after, found := strings.CutPrefix(ctxt, commentPrefix+"Suffix "); found {

							matches = append(matches, comment.Slash)

							matchInsPrefix = strings.TrimSpace(after)

						}

					}

					switch len(matches) {

					case 0:

						return nil

					case 1:

						return &matchInsPrefix

					default:

						handler.OnWarning(

							fset,

							matches[0],

							fmt.Sprintf("encountered multiple %s... directives, ignoring", strings.TrimSpace(commentPrefix)),

						)

						return &matchInsPrefix

					}

				}

									
										244

build/lint-locale-usage/handle-tmpl.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,244 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package lintLocaleUsage

				import (

					"fmt"

					"go/token"

					"os"

					"strings"

					"text/template"

					tmplParser "text/template/parse"

					fjTemplates "forgejo.org/modules/templates"

					"forgejo.org/modules/util"

				)

				// derived from source: modules/templates/scopedtmpl/scopedtmpl.go, L169-L213

				func (handler Handler) handleTemplateNode(fset *token.FileSet, node tmplParser.Node) {

					switch node.Type() {

					case tmplParser.NodeAction:

						handler.handleTemplatePipeNode(fset, node.(*tmplParser.ActionNode).Pipe)

					case tmplParser.NodeList:

						nodeList := node.(*tmplParser.ListNode)

						handler.handleTemplateFileNodes(fset, nodeList.Nodes)

					case tmplParser.NodePipe:

						handler.handleTemplatePipeNode(fset, node.(*tmplParser.PipeNode))

					case tmplParser.NodeTemplate:

						handler.handleTemplatePipeNode(fset, node.(*tmplParser.TemplateNode).Pipe)

					case tmplParser.NodeIf:

						nodeIf := node.(*tmplParser.IfNode)

						handler.handleTemplateBranchNode(fset, nodeIf.BranchNode)

					case tmplParser.NodeRange:

						nodeRange := node.(*tmplParser.RangeNode)

						handler.handleTemplateBranchNode(fset, nodeRange.BranchNode)

					case tmplParser.NodeWith:

						nodeWith := node.(*tmplParser.WithNode)

						handler.handleTemplateBranchNode(fset, nodeWith.BranchNode)

					case tmplParser.NodeCommand:

						nodeCommand := node.(*tmplParser.CommandNode)

						handler.handleTemplateFileNodes(fset, nodeCommand.Args)

						if len(nodeCommand.Args) < 2 {

							return

						}

						funcname := ""

						switch nodeCommand.Args[0].Type() {

						case tmplParser.NodeChain:

							nodeChain := nodeCommand.Args[0].(*tmplParser.ChainNode)

							if nodeIdent, ok := nodeChain.Node.(*tmplParser.IdentifierNode); ok {

								if nodeIdent.Ident != "ctx" || len(nodeChain.Field) != 2 || nodeChain.Field[0] != "Locale" {

									return

								}

								funcname = nodeChain.Field[1]

							}

						case tmplParser.NodeField:

							nodeField := nodeCommand.Args[0].(*tmplParser.FieldNode)

							if len(nodeField.Ident) != 2 || nodeField.Ident[0] != "locale" {

								return

							}

							resolvedPos := fset.PositionFor(token.Pos(nodeCommand.Pos), false)

							if !strings.Contains(resolvedPos.Filename, "templates/mail/") {

								handler.OnWarning(fset, token.Pos(nodeCommand.Pos), "encountered unexpected .locale usage")

							}

							funcname = nodeField.Ident[1]

						case tmplParser.NodeVariable:

							nodeVar := nodeCommand.Args[0].(*tmplParser.VariableNode)

							if len(nodeVar.Ident) != 3 || !(nodeVar.Ident[0] == "$" && nodeVar.Ident[1] == "locale") {

								return

							}

							funcname = nodeVar.Ident[2]

						}

						var gotUnexpectedInvoke *int

						ltf, ok := handler.LocaleTrFunctions[funcname]

						if !ok {

							return

						}

						for _, argNum := range ltf {

							if len(nodeCommand.Args) >= int(argNum+2) {

								handler.handleTemplateMsgid(fset, nodeCommand.Args[int(argNum+1)])

							} else {

								argc := len(nodeCommand.Args) - 1

								gotUnexpectedInvoke = &argc

							}

						}

						if gotUnexpectedInvoke != nil {

							handler.OnUnexpectedInvoke(fset, token.Pos(nodeCommand.Pos), funcname, *gotUnexpectedInvoke)

						}

					default:

					}

				}

				func (handler Handler) handleTemplateMsgid(fset *token.FileSet, node tmplParser.Node) {

					// the column numbers are a bit "off", but much better than nothing

					pos := token.Pos(node.Position())

					switch node.Type() {

					case tmplParser.NodeString:

						nodeString := node.(*tmplParser.StringNode)

						// found interesting strings

						handler.OnMsgid(fset, pos, nodeString.Text, false)

					case tmplParser.NodePipe:

						nodePipe := node.(*tmplParser.PipeNode)

						handler.handleTemplatePipeNode(fset, nodePipe)

						if len(nodePipe.Cmds) == 0 {

							handler.OnWarning(fset, pos, fmt.Sprintf("unsupported invocation of locate function (no commands): %s", node.String()))

						} else if len(nodePipe.Cmds) != 1 {

							handler.OnWarning(fset, pos, fmt.Sprintf("unsupported invocation of locate function (too many commands): %s", node.String()))

							return

						}

						nodeCommand := nodePipe.Cmds[0]

						if len(nodeCommand.Args) < 2 {

							handler.OnWarning(fset, pos, fmt.Sprintf("unsupported invocation of locate function (not enough arguments): %s", node.String()))

							return

						}

						nodeIdent, ok := nodeCommand.Args[0].(*tmplParser.IdentifierNode)

						if !ok || (nodeIdent.Ident != "print" && nodeIdent.Ident != "printf") {

							// handler.OnWarning(fset, pos, fmt.Sprintf("unsupported invocation of locate function (bad command): %s", node.String()))

							return

						}

						nodeString, ok := nodeCommand.Args[1].(*tmplParser.StringNode)

						if !ok {

							//handler.OnWarning(

							//	fset,

							//	pos,

							//	fmt.Sprintf("unsupported invocation of locate function (string should be first argument to %s): %s", nodeIdent.Ident, node.String()),

							//)

							return

						}

						msgidPrefix := nodeString.Text

						stringPos := token.Pos(nodeString.Pos)

						if len(nodeCommand.Args) == 2 {

							// found interesting strings

							handler.OnMsgid(fset, stringPos, msgidPrefix, false)

						} else {

							if nodeIdent.Ident == "printf" {

								// found interesting strings

								if !(strings.HasSuffix(msgidPrefix, ".%s") && strings.Count(msgidPrefix, "%") == 1) {

									handler.OnMsgidPattern(fset, stringPos, msgidPrefix)

									return

								}

								msgidPrefix = strings.TrimSuffix(msgidPrefix, "%s")

							}

							msgidPrefixFin, truncated := PrepareMsgidPrefix(msgidPrefix)

							if truncated {

								handler.OnWarning(fset, stringPos, fmt.Sprintf("needed to truncate message id prefix: %s", msgidPrefix))

							}

							// found interesting strings

							handler.OnMsgidPrefix(fset, stringPos, msgidPrefixFin, truncated)

						}

					default:

						// handler.OnWarning(fset, pos, fmt.Sprintf("unknown invocation of locate function: %s", node.String()))

					}

				}

				func (handler Handler) handleTemplatePipeNode(fset *token.FileSet, pipeNode *tmplParser.PipeNode) {

					if pipeNode == nil {

						return

					}

					// NOTE: we can't pass `pipeNode.Cmds` to handleTemplateFileNodes due to incompatible argument types

					for _, node := range pipeNode.Cmds {

						handler.handleTemplateNode(fset, node)

					}

				}

				func (handler Handler) handleTemplateBranchNode(fset *token.FileSet, branchNode tmplParser.BranchNode) {

					handler.handleTemplatePipeNode(fset, branchNode.Pipe)

					handler.handleTemplateFileNodes(fset, branchNode.List.Nodes)

					if branchNode.ElseList != nil {

						handler.handleTemplateFileNodes(fset, branchNode.ElseList.Nodes)

					}

				}

				func (handler Handler) handleTemplateFileNodes(fset *token.FileSet, nodes []tmplParser.Node) {

					for _, node := range nodes {

						handler.handleTemplateNode(fset, node)

					}

				}

				// the `Handle*File` functions follow the following calling convention:

				// * `fname` is the name of the input file

				// * `src` is either `nil` (then the function invokes `ReadFile` to read the file)

				//   or the contents of the file as {`[]byte`, or a `string`}

				func (handler Handler) HandleTemplateFile(fname string, src any) error {

					var tmplContent []byte

					switch src2 := src.(type) {

					case nil:

						var err error

						tmplContent, err = os.ReadFile(fname)

						if err != nil {

							return LocatedError{

								Location: fname,

								Kind:     "ReadFile",

								Err:      err,

							}

						}

					case []byte:

						tmplContent = src2

					case string:

						// SAFETY: we do not modify tmplContent below

						tmplContent = util.UnsafeStringToBytes(src2)

					default:

						panic("invalid type for 'src'")

					}

					fset := token.NewFileSet()

					fset.AddFile(fname, 1, len(tmplContent)).SetLinesForContent(tmplContent)

					// SAFETY: we do not modify tmplContent2 below

					tmplContent2 := util.UnsafeBytesToString(tmplContent)

					tmpl := template.New(fname)

					tmpl.Funcs(fjTemplates.NewFuncMap())

					tmplParsed, err := tmpl.Parse(tmplContent2)

					if err != nil {

						return LocatedError{

							Location: fname,

							Kind:     "Template parser",

							Err:      err,

						}

					}

					handler.handleTemplateFileNodes(fset, tmplParsed.Root.Nodes)

					return nil

				}

									
										63

build/lint-locale-usage/handler.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,63 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package lintLocaleUsage

				import (

					"go/token"

					"strings"

				)

				type LocatedError struct {

					Location string

					Kind     string

					Err      error

				}

				func (e LocatedError) Error() string {

					var sb strings.Builder

					sb.WriteString(e.Location)

					sb.WriteString(":\t")

					if e.Kind != "" {

						sb.WriteString(e.Kind)

						sb.WriteString(": ")

					}

					sb.WriteString("ERROR: ")

					sb.WriteString(e.Err.Error())

					return sb.String()

				}

				func InitLocaleTrFunctions() map[string][]uint {

					ret := make(map[string][]uint)

					f0 := []uint{0}

					ret["Tr"] = f0

					ret["TrString"] = f0

					ret["TrHTML"] = f0

					ret["TrPluralString"] = []uint{1}

					ret["TrN"] = []uint{1, 2}

					return ret

				}

				type Handler struct {

					OnMsgid            func(fset *token.FileSet, pos token.Pos, msgid string, weak bool)

					OnMsgidPrefix      func(fset *token.FileSet, pos token.Pos, msgidPrefix string, truncated bool)

					OnMsgidPattern     func(fset *token.FileSet, pos token.Pos, msgidPattern string)

					OnUnexpectedInvoke func(fset *token.FileSet, pos token.Pos, funcname string, argc int)

					OnWarning          func(fset *token.FileSet, pos token.Pos, msg string)

					LocaleTrFunctions  map[string][]uint

				}

				// Truncating a message id prefix to the last dot

				func PrepareMsgidPrefix(s string) (string, bool) {

					index := strings.LastIndexByte(s, 0x2e)

					if index == -1 {

						return "", true

					}

					return s[:index], index != len(s)-1

				}

									
										331

build/lint-locale-usage/lint-locale-usage.go
									
										View file
									
				@ -1,331 +0,0 @@

				// Copyright 2023 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package main

				import (

					"fmt"

					"go/ast"

					goParser "go/parser"

					"go/token"

					"io/fs"

					"os"

					"path/filepath"

					"strconv"

					"strings"

					"text/template"

					tmplParser "text/template/parse"

					"forgejo.org/modules/container"

					"forgejo.org/modules/locale"

					fjTemplates "forgejo.org/modules/templates"

					"forgejo.org/modules/util"

				)

				// this works by first gathering all valid source string IDs from `en-US` reference files

				// and then checking if all used source strings are actually defined

				type OnMsgidHandler func(fset *token.FileSet, pos token.Pos, msgid string)

				type LocatedError struct {

					Location string

					Kind     string

					Err      error

				}

				func (e LocatedError) Error() string {

					var sb strings.Builder

					sb.WriteString(e.Location)

					sb.WriteString(":\t")

					if e.Kind != "" {

						sb.WriteString(e.Kind)

						sb.WriteString(": ")

					}

					sb.WriteString("ERROR: ")

					sb.WriteString(e.Err.Error())

					return sb.String()

				}

				func isLocaleTrFunction(funcname string) bool {

					return funcname == "Tr" || funcname == "TrN"

				}

				// the `Handle*File` functions follow the following calling convention:

				// * `fname` is the name of the input file

				// * `src` is either `nil` (then the function invokes `ReadFile` to read the file)

				//   or the contents of the file as {`[]byte`, or a `string`}

				func (omh OnMsgidHandler) HandleGoFile(fname string, src any) error {

					fset := token.NewFileSet()

					node, err := goParser.ParseFile(fset, fname, src, goParser.SkipObjectResolution)

					if err != nil {

						return LocatedError{

							Location: fname,

							Kind:     "Go parser",

							Err:      err,

						}

					}

					ast.Inspect(node, func(n ast.Node) bool {

						// search for function calls of the form `anything.Tr(any-string-lit)`

						call, ok := n.(*ast.CallExpr)

						if !ok || len(call.Args) != 1 {

							return true

						}

						funSel, ok := call.Fun.(*ast.SelectorExpr)

						if (!ok) || !isLocaleTrFunction(funSel.Sel.Name) {

							return true

						}

						argLit, ok := call.Args[0].(*ast.BasicLit)

						if (!ok) || argLit.Kind != token.STRING {

							return true

						}

						// extract string content

						arg, err := strconv.Unquote(argLit.Value)

						if err != nil {

							return true

						}

						// found interesting string

						omh(fset, argLit.ValuePos, arg)

						return true

					})

					return nil

				}

				// derived from source: modules/templates/scopedtmpl/scopedtmpl.go, L169-L213

				func (omh OnMsgidHandler) handleTemplateNode(fset *token.FileSet, node tmplParser.Node) {

					switch node.Type() {

					case tmplParser.NodeAction:

						omh.handleTemplatePipeNode(fset, node.(*tmplParser.ActionNode).Pipe)

					case tmplParser.NodeList:

						nodeList := node.(*tmplParser.ListNode)

						omh.handleTemplateFileNodes(fset, nodeList.Nodes)

					case tmplParser.NodePipe:

						omh.handleTemplatePipeNode(fset, node.(*tmplParser.PipeNode))

					case tmplParser.NodeTemplate:

						omh.handleTemplatePipeNode(fset, node.(*tmplParser.TemplateNode).Pipe)

					case tmplParser.NodeIf:

						nodeIf := node.(*tmplParser.IfNode)

						omh.handleTemplateBranchNode(fset, nodeIf.BranchNode)

					case tmplParser.NodeRange:

						nodeRange := node.(*tmplParser.RangeNode)

						omh.handleTemplateBranchNode(fset, nodeRange.BranchNode)

					case tmplParser.NodeWith:

						nodeWith := node.(*tmplParser.WithNode)

						omh.handleTemplateBranchNode(fset, nodeWith.BranchNode)

					case tmplParser.NodeCommand:

						nodeCommand := node.(*tmplParser.CommandNode)

						omh.handleTemplateFileNodes(fset, nodeCommand.Args)

						if len(nodeCommand.Args) != 2 {

							return

						}

						nodeChain, ok := nodeCommand.Args[0].(*tmplParser.ChainNode)

						if !ok {

							return

						}

						nodeString, ok := nodeCommand.Args[1].(*tmplParser.StringNode)

						if !ok {

							return

						}

						nodeIdent, ok := nodeChain.Node.(*tmplParser.IdentifierNode)

						if !ok || nodeIdent.Ident != "ctx" {

							return

						}

						if len(nodeChain.Field) != 2 || nodeChain.Field[0] != "Locale" || !isLocaleTrFunction(nodeChain.Field[1]) {

							return

						}

						// found interesting string

						// the column numbers are a bit "off", but much better than nothing

						omh(fset, token.Pos(nodeString.Pos), nodeString.Text)

					default:

					}

				}

				func (omh OnMsgidHandler) handleTemplatePipeNode(fset *token.FileSet, pipeNode *tmplParser.PipeNode) {

					if pipeNode == nil {

						return

					}

					// NOTE: we can't pass `pipeNode.Cmds` to handleTemplateFileNodes due to incompatible argument types

					for _, node := range pipeNode.Cmds {

						omh.handleTemplateNode(fset, node)

					}

				}

				func (omh OnMsgidHandler) handleTemplateBranchNode(fset *token.FileSet, branchNode tmplParser.BranchNode) {

					omh.handleTemplatePipeNode(fset, branchNode.Pipe)

					omh.handleTemplateFileNodes(fset, branchNode.List.Nodes)

					if branchNode.ElseList != nil {

						omh.handleTemplateFileNodes(fset, branchNode.ElseList.Nodes)

					}

				}

				func (omh OnMsgidHandler) handleTemplateFileNodes(fset *token.FileSet, nodes []tmplParser.Node) {

					for _, node := range nodes {

						omh.handleTemplateNode(fset, node)

					}

				}

				func (omh OnMsgidHandler) HandleTemplateFile(fname string, src any) error {

					var tmplContent []byte

					switch src2 := src.(type) {

					case nil:

						var err error

						tmplContent, err = os.ReadFile(fname)

						if err != nil {

							return LocatedError{

								Location: fname,

								Kind:     "ReadFile",

								Err:      err,

							}

						}

					case []byte:

						tmplContent = src2

					case string:

						// SAFETY: we do not modify tmplContent below

						tmplContent = util.UnsafeStringToBytes(src2)

					default:

						panic("invalid type for 'src'")

					}

					fset := token.NewFileSet()

					fset.AddFile(fname, 1, len(tmplContent)).SetLinesForContent(tmplContent)

					// SAFETY: we do not modify tmplContent2 below

					tmplContent2 := util.UnsafeBytesToString(tmplContent)

					tmpl := template.New(fname)

					tmpl.Funcs(fjTemplates.NewFuncMap())

					tmplParsed, err := tmpl.Parse(tmplContent2)

					if err != nil {

						return LocatedError{

							Location: fname,

							Kind:     "Template parser",

							Err:      err,

						}

					}

					omh.handleTemplateFileNodes(fset, tmplParsed.Tree.Root.Nodes)

					return nil

				}

				// This command assumes that we get started from the project root directory

				//

				// Possible command line flags:

				//

				//	--allow-missing-msgids        don't return an error code if missing message IDs are found

				//

				// EXIT CODES:

				//

				//	0  success, no issues found

				//	1  unable to walk directory tree

				//	2  unable to parse locale ini/json files

				//	3  unable to parse go or text/template files

				//	4  found missing message IDs

				//

				//nolint:forbidigo

				func main() {

					allowMissingMsgids := false

					for _, arg := range os.Args[1:] {

						if arg == "--allow-missing-msgids" {

							allowMissingMsgids = true

						}

					}

					onError := func(err error) {

						if err == nil {

							return

						}

						fmt.Println(err.Error())

						os.Exit(3)

					}

					msgids := make(container.Set[string])

					onMsgid := func(trKey, trValue string) error {

						msgids[trKey] = struct{}{}

						return nil

					}

					localeFile := filepath.Join(filepath.Join("options", "locale"), "locale_en-US.ini")

					localeContent, err := os.ReadFile(localeFile)

					if err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					if err = locale.IterateMessagesContent(localeContent, onMsgid); err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					localeFile = filepath.Join(filepath.Join("options", "locale_next"), "locale_en-US.json")

					localeContent, err = os.ReadFile(localeFile)

					if err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					if err := locale.IterateMessagesNextContent(localeContent, onMsgid); err != nil {

						fmt.Printf("%s:\tERROR: %s\n", localeFile, err.Error())

						os.Exit(2)

					}

					gotAnyMsgidError := false

					omh := OnMsgidHandler(func(fset *token.FileSet, pos token.Pos, msgid string) {

						if !msgids.Contains(msgid) {

							gotAnyMsgidError = true

							fmt.Printf("%s:\tmissing msgid: %s\n", fset.Position(pos).String(), msgid)

						}

					})

					if err := filepath.WalkDir(".", func(fpath string, d fs.DirEntry, err error) error {

						if err != nil {

							if os.IsNotExist(err) {

								return nil

							}

							return err

						}

						name := d.Name()

						if d.IsDir() {

							if name == "docker" || name == ".git" || name == "node_modules" {

								return fs.SkipDir

							}

						} else if name == "bindata.go" {

							// skip false positives

						} else if strings.HasSuffix(name, ".go") {

							onError(omh.HandleGoFile(fpath, nil))

						} else if strings.HasSuffix(name, ".tmpl") {

							if strings.HasPrefix(fpath, "tests") && strings.HasSuffix(name, ".ini.tmpl") {

								// skip false positives

							} else {

								onError(omh.HandleTemplateFile(fpath, nil))

							}

						}

						return nil

					}); err != nil {

						fmt.Printf("walkdir ERROR: %s\n", err.Error())

						os.Exit(1)

					}

					if !allowMissingMsgids && gotAnyMsgidError {

						os.Exit(4)

					}

				}

									
										14

build/lint-locale/lint-locale.go
									
										View file
										
				@ -14,7 +14,7 @@ import (

					"slices"

					"strings"

					"forgejo.org/modules/locale"

					"forgejo.org/modules/translation/localeiter"

					"github.com/microcosm-cc/bluemonday"

					"github.com/sergi/go-diff/diffmatchpatch"

				@ -52,7 +52,7 @@ func initBlueMondayPolicy() {

					policy.AllowAttrs("id").Matching(positionalPlaceholderRe).OnElements("code")

					// Allowed elements with no attributes. Must be a recognized tagname.

					policy.AllowElements("strong", "br", "b", "strike", "code", "i")

					policy.AllowElements("strong", "br", "b", "strike", "code", "i", "kbd")

					// TODO: Remove <c> in `actions.workflow.dispatch.trigger_found`.

					policy.AllowNoAttrs().OnElements("c")

				@ -100,7 +100,7 @@ func checkValue(trKey, value string) []string {

				func checkLocaleContent(localeContent []byte) []string {

					errors := []string{}

					if err := locale.IterateMessagesContent(localeContent, func(trKey, trValue string) error {

					if err := localeiter.IterateMessagesContent(localeContent, func(trKey, trValue string) error {

						errors = append(errors, checkValue(trKey, trValue)...)

						return nil

					}); err != nil {

				@ -113,8 +113,12 @@ func checkLocaleContent(localeContent []byte) []string {

				func checkLocaleNextContent(localeContent []byte) []string {

					errors := []string{}

					if err := locale.IterateMessagesNextContent(localeContent, func(trKey, trValue string) error {

						errors = append(errors, checkValue(trKey, trValue)...)

					if err := localeiter.IterateMessagesNextContent(localeContent, func(trKey, pluralForm, trValue string) error {

						fullKey := trKey

						if pluralForm != "" {

							fullKey = trKey + "." + pluralForm

						}

						errors = append(errors, checkValue(fullKey, trValue)...)

						return nil

					}); err != nil {

						panic(err)

									
										53

build/lint-locale/lint-locale_test.go
									
										View file
										
				@ -15,9 +15,9 @@ func TestLocalizationPolicy(t *testing.T) {

					t.Run("Remove tags", func(t *testing.T) {

						assert.Empty(t, checkLocaleContent([]byte(`hidden_comment_types_description = Comment types checked here will not be shown inside issue pages. Checking "Label" for example removes all "<user> added/removed <label>" comments.`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG"}, checkLocaleContent([]byte(`key = "<not-an-allowed-key> <label>"`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<user@example.com>\x1b[0m REPLACED-TAG"}, checkLocaleContent([]byte(`key = "<user@example.com> <email@example.com>"`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<tag>\x1b[0m REPLACED-TAG \x1b[31m</tag>\x1b[0m"}, checkLocaleContent([]byte(`key = "<tag> <email@example.com> </tag>"`)))

						assert.Equal(t, []string{"key: \x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG"}, checkLocaleContent([]byte(`key = "<not-an-allowed-key> <label>"`)))

						assert.Equal(t, []string{"key: \x1b[31m<user@example.com>\x1b[0m REPLACED-TAG"}, checkLocaleContent([]byte(`key = "<user@example.com> <email@example.com>"`)))

						assert.Equal(t, []string{"key: \x1b[31m<tag>\x1b[0m REPLACED-TAG \x1b[31m</tag>\x1b[0m"}, checkLocaleContent([]byte(`key = "<tag> <email@example.com> </tag>"`)))

					})

					t.Run("Specific exception", func(t *testing.T) {

				@ -25,11 +25,11 @@ func TestLocalizationPolicy(t *testing.T) {

						assert.Empty(t, checkLocaleContent([]byte(`pulls.title_desc_one = wants to merge %[1]d commit from <code>%[2]s</code> into <code id="%[4]s">%[3]s</code>`)))

						assert.Empty(t, checkLocaleContent([]byte(`editor.commit_directly_to_this_branch = Commit directly to the <strong class="%[2]s">%[1]s</strong> branch.`)))

						assert.EqualValues(t, []string{"workflow.dispatch.trigger_found: This workflow has a \x1b[31m<d>\x1b[0mworkflow_dispatch\x1b[31m</d>\x1b[0m event trigger."}, checkLocaleContent([]byte(`workflow.dispatch.trigger_found = This workflow has a <d>workflow_dispatch</d> event trigger.`)))

						assert.EqualValues(t, []string{"key: <code\x1b[31m id=\"branch_targe\"\x1b[0m>%[3]s</code>"}, checkLocaleContent([]byte(`key = <code id="branch_targe">%[3]s</code>`)))

						assert.EqualValues(t, []string{"key: <a\x1b[31m class=\"ui sh\"\x1b[0m href=\"https://TO-BE-REPLACED.COM\">"}, checkLocaleContent([]byte(`key = <a class="ui sh" href="%[3]s">`)))

						assert.EqualValues(t, []string{"key: <a\x1b[31m class=\"js-click-me\"\x1b[0m href=\"https://TO-BE-REPLACED.COM\">"}, checkLocaleContent([]byte(`key = <a class="js-click-me" href="%[3]s">`)))

						assert.EqualValues(t, []string{"key: <strong\x1b[31m class=\"branch-target\"\x1b[0m>%[1]s</strong>"}, checkLocaleContent([]byte(`key = <strong class="branch-target">%[1]s</strong>`)))

						assert.Equal(t, []string{"workflow.dispatch.trigger_found: This workflow has a \x1b[31m<d>\x1b[0mworkflow_dispatch\x1b[31m</d>\x1b[0m event trigger."}, checkLocaleContent([]byte(`workflow.dispatch.trigger_found = This workflow has a <d>workflow_dispatch</d> event trigger.`)))

						assert.Equal(t, []string{"key: <code\x1b[31m id=\"branch_targe\"\x1b[0m>%[3]s</code>"}, checkLocaleContent([]byte(`key = <code id="branch_targe">%[3]s</code>`)))

						assert.Equal(t, []string{"key: <a\x1b[31m class=\"ui sh\"\x1b[0m href=\"https://TO-BE-REPLACED.COM\">"}, checkLocaleContent([]byte(`key = <a class="ui sh" href="%[3]s">`)))

						assert.Equal(t, []string{"key: <a\x1b[31m class=\"js-click-me\"\x1b[0m href=\"https://TO-BE-REPLACED.COM\">"}, checkLocaleContent([]byte(`key = <a class="js-click-me" href="%[3]s">`)))

						assert.Equal(t, []string{"key: <strong\x1b[31m class=\"branch-target\"\x1b[0m>%[1]s</strong>"}, checkLocaleContent([]byte(`key = <strong class="branch-target">%[1]s</strong>`)))

					})

					t.Run("General safe tags", func(t *testing.T) {

				@ -37,8 +37,9 @@ func TestLocalizationPolicy(t *testing.T) {

						assert.Empty(t, checkLocaleContent([]byte("teams.specific_repositories_helper = Members will only have access to repositories explicitly added to the team. Selecting this <strong>will not</strong> automatically remove repositories already added with <i>All repositories</i>.")))

						assert.Empty(t, checkLocaleContent([]byte("sqlite_helper = File path for the SQLite3 database.<br>Enter an absolute path if you run Forgejo as a service.")))

						assert.Empty(t, checkLocaleContent([]byte("hi_user_x = Hi <b>%s</b>,")))

						assert.Empty(t, checkLocaleContent([]byte("key = Press <kbd>Shift</kbd>")))

						assert.EqualValues(t, []string{"error404: The page you are trying to reach either <strong\x1b[31m title='aaa'\x1b[0m>does not exist</strong> or <strong>you are not authorized</strong> to view it."}, checkLocaleContent([]byte("error404 = The page you are trying to reach either <strong title='aaa'>does not exist</strong> or <strong>you are not authorized</strong> to view it.")))

						assert.Equal(t, []string{"error404: The page you are trying to reach either <strong\x1b[31m title='aaa'\x1b[0m>does not exist</strong> or <strong>you are not authorized</strong> to view it."}, checkLocaleContent([]byte("error404 = The page you are trying to reach either <strong title='aaa'>does not exist</strong> or <strong>you are not authorized</strong> to view it.")))

					})

					t.Run("<a>", func(t *testing.T) {

				@ -47,20 +48,20 @@ func TestLocalizationPolicy(t *testing.T) {

						assert.Empty(t, checkLocaleContent([]byte(`webauthn_desc = Security keys are hardware devices containing cryptographic keys. They can be used for two-factor authentication. Security keys must support the <a rel="noreferrer" target="_blank" href="%s">WebAuthn Authenticator</a> standard.`)))

						assert.Empty(t, checkLocaleContent([]byte("issues.closed_at = `closed this issue <a id=\"%[1]s\" href=\"#%[1]s\">%[2]s</a>`")))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"https://example.com\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com">`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"javascript:alert('1')\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="javascript:alert('1')">`)))

						assert.EqualValues(t, []string{"key: <a href=\"https://TO-BE-REPLACED.COM\"\x1b[31m download\x1b[0m>"}, checkLocaleContent([]byte(`key = <a href="%s" download>`)))

						assert.EqualValues(t, []string{"key: <a href=\"https://TO-BE-REPLACED.COM\"\x1b[31m target=\"_self\"\x1b[0m>"}, checkLocaleContent([]byte(`key = <a href="%s" target="_self">`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"https://example.com/%s\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com/%s">`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"https://example.com/?q=%s\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com/?q=%s">`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"%s/open-redirect\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="%s/open-redirect">`)))

						assert.EqualValues(t, []string{"key: \x1b[31m<a href=\"%s?q=open-redirect\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="%s?q=open-redirect">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"https://example.com\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"javascript:alert('1')\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="javascript:alert('1')">`)))

						assert.Equal(t, []string{"key: <a href=\"https://TO-BE-REPLACED.COM\"\x1b[31m download\x1b[0m>"}, checkLocaleContent([]byte(`key = <a href="%s" download>`)))

						assert.Equal(t, []string{"key: <a href=\"https://TO-BE-REPLACED.COM\"\x1b[31m target=\"_self\"\x1b[0m>"}, checkLocaleContent([]byte(`key = <a href="%s" target="_self">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"https://example.com/%s\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com/%s">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"https://example.com/?q=%s\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="https://example.com/?q=%s">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"%s/open-redirect\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="%s/open-redirect">`)))

						assert.Equal(t, []string{"key: \x1b[31m<a href=\"%s?q=open-redirect\">\x1b[0m"}, checkLocaleContent([]byte(`key = <a href="%s?q=open-redirect">`)))

					})

					t.Run("Escaped HTML characters", func(t *testing.T) {

						assert.Empty(t, checkLocaleContent([]byte("activity.git_stats_push_to_branch = `إلى %s و\"`")))

						assert.EqualValues(t, []string{"key: و\x1b[31m&nbsp\x1b[0m\x1b[32m\u00a0\x1b[0m"}, checkLocaleContent([]byte(`key = و&nbsp;`)))

						assert.Equal(t, []string{"key: و\x1b[31m&nbsp;\x1b[0m\x1b[32m\u00a0\x1b[0m"}, checkLocaleContent([]byte(`key = و&nbsp;`)))

					})

				}

				@ -75,7 +76,7 @@ func TestNextLocalizationPolicy(t *testing.T) {

							}

						}`)))

						assert.EqualValues(t, []string{"settings.hidden_comment_types_description: \"\x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG\""}, checkLocaleNextContent([]byte(`{

						assert.Equal(t, []string{"settings.hidden_comment_types_description: \"\x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG\""}, checkLocaleNextContent([]byte(`{

							"settings": {

								"hidden_comment_types_description": "\"<not-an-allowed-key> <label>\""

							}

				@ -87,8 +88,20 @@ func TestNextLocalizationPolicy(t *testing.T) {

							"settings.hidden_comment_types_description": "Comment types checked here will not be shown inside issue pages. Checking \"Label\" for example removes all \"<user> added/removed <label>\" comments."

						}`)))

						assert.EqualValues(t, []string{"settings.hidden_comment_types_description: \"\x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG\""}, checkLocaleNextContent([]byte(`{

						assert.Equal(t, []string{"settings.hidden_comment_types_description: \"\x1b[31m<not-an-allowed-key>\x1b[0m REPLACED-TAG\""}, checkLocaleNextContent([]byte(`{

							"settings.hidden_comment_types_description": "\"<not-an-allowed-key> <label>\""

						}`)))

					})

					t.Run("Plural form", func(t *testing.T) {

						assert.Equal(t, []string{"repo.pulls.title_desc: key = \x1b[31m<a href=\"https://example.com\">\x1b[0m"}, checkLocaleNextContent([]byte(`{"repo.pulls.title_desc": {

				                       "few": "key = <a href=\"%s\">",

				                       "other": "key = <a href=\"https://example.com\">"

				    }}`)))

						assert.Equal(t, []string{"repo.pulls.title_desc.few: key = \x1b[31m<a href=\"https://example.com\">\x1b[0m"}, checkLocaleNextContent([]byte(`{"repo.pulls.title_desc": {

				                       "few": "key = <a href=\"https://example.com\">",

				                       "other": "key = <a href=\"%s\">"

				    }}`)))

					})

				}

									
										52

build/update-locales.sh
									
										View file
									
				@ -1,52 +0,0 @@

				#!/bin/sh

				# this script runs in alpine image which only has `sh` shell

				set +e

				if sed --version 2>/dev/null | grep -q GNU; then

				  SED_INPLACE="sed -i"

				else

				  SED_INPLACE="sed -i ''"

				fi

				set -e

				if [ ! -f ./options/locale/locale_en-US.ini ]; then

				  echo "please run this script in the root directory of the project"

				  exit 1

				fi

				mv ./options/locale/locale_en-US.ini ./options/

				# the "ini" library for locale has many quirks, its behavior is different from Crowdin.

				# see i18n_test.go for more details

				# this script helps to unquote the Crowdin outputs for the quirky ini library

				# * find all `key="...\"..."` lines

				# * remove the leading quote

				# * remove the trailing quote

				# * unescape the quotes

				# * eg: key="...\"..." => key=..."...

				$SED_INPLACE -r -e '/^[-.A-Za-z0-9_]+[ ]*=[ ]*".*"$/ {

					s/^([-.A-Za-z0-9_]+)[ ]*=[ ]*"/\1=/

					s/"$//

					s/\\"/"/g

					}' ./options/locale/*.ini

				# * if the escaped line is incomplete like `key="...` or `key=..."`, quote it with backticks

				# * eg: key="... => key=`"...`

				# * eg: key=..." => key=`..."`

				$SED_INPLACE -r -e 's/^([-.A-Za-z0-9_]+)[ ]*=[ ]*(".*[^"])$/\1=`\2`/' ./options/locale/*.ini

				$SED_INPLACE -r -e 's/^([-.A-Za-z0-9_]+)[ ]*=[ ]*([^"].*")$/\1=`\2`/' ./options/locale/*.ini

				# Remove translation under 25% of en_us

				baselines=$(wc -l "./options/locale_en-US.ini" | cut -d" " -f1)

				baselines=$((baselines / 4))

				for filename in ./options/locale/*.ini; do

				  lines=$(wc -l "$filename" | cut -d" " -f1)

				  if [ $lines -lt $baselines ]; then

				    echo "Removing $filename: $lines/$baselines"

				    rm "$filename"

				  fi

				done

				mv ./options/locale_en-US.ini ./options/locale/

									
										24

cmd/actions.go
									
										View file
										
				@ -4,27 +4,31 @@

				package cmd

				import (

					"context"

					"fmt"

					"forgejo.org/modules/private"

					"forgejo.org/modules/setting"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					// CmdActions represents the available actions sub-commands.

					CmdActions = &cli.Command{

				// CmdActions represents the available actions sub-commands.

				func cmdActions() *cli.Command {

					return &cli.Command{

						Name:  "actions",

						Usage: "Manage Forgejo Actions",

						Subcommands: []*cli.Command{

							subcmdActionsGenRunnerToken,

						Commands: []*cli.Command{

							subcmdActionsGenRunnerToken(),

						},

					}

				}

					subcmdActionsGenRunnerToken = &cli.Command{

				func subcmdActionsGenRunnerToken() *cli.Command {

					return &cli.Command{

						Name:    "generate-runner-token",

						Usage:   "Generate a new token for a runner to use to register with the server",

						Before:  noDanglingArgs,

						Action:  runGenerateActionsRunnerToken,

						Aliases: []string{"grt"},

						Flags: []cli.Flag{

				@ -36,10 +40,10 @@ var (

							},

						},

					}

				)

				}

				func runGenerateActionsRunnerToken(c *cli.Context) error {

					ctx, cancel := installSignals()

				func runGenerateActionsRunnerToken(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					setting.MustInstalled()

									
										75

cmd/admin.go
									
										View file
										
				@ -15,58 +15,69 @@ import (

					"forgejo.org/modules/log"

					repo_module "forgejo.org/modules/repository"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					// CmdAdmin represents the available admin sub-command.

					CmdAdmin = &cli.Command{

				// CmdAdmin represents the available admin sub-command.

				func cmdAdmin() *cli.Command {

					return &cli.Command{

						Name:  "admin",

						Usage: "Perform common administrative operations",

						Subcommands: []*cli.Command{

							subcmdUser,

							subcmdRepoSyncReleases,

							subcmdRegenerate,

							subcmdAuth,

							subcmdSendMail,

						Commands: []*cli.Command{

							subcmdUser(),

							subcmdRepoSyncReleases(),

							subcmdRegenerate(),

							subcmdAuth(),

							subcmdSendMail(),

						},

					}

				}

					subcmdRepoSyncReleases = &cli.Command{

				func subcmdRepoSyncReleases() *cli.Command {

					return &cli.Command{

						Name:   "repo-sync-releases",

						Usage:  "Synchronize repository releases with tags",

						Before: noDanglingArgs,

						Action: runRepoSyncReleases,

					}

				}

					subcmdRegenerate = &cli.Command{

				func subcmdRegenerate() *cli.Command {

					return &cli.Command{

						Name:  "regenerate",

						Usage: "Regenerate specific files",

						Subcommands: []*cli.Command{

							microcmdRegenHooks,

						Commands: []*cli.Command{

							microcmdRegenKeys,

						},

					}

				}

					subcmdAuth = &cli.Command{

				func subcmdAuth() *cli.Command {

					return &cli.Command{

						Name:  "auth",

						Usage: "Modify external auth providers",

						Subcommands: []*cli.Command{

							microcmdAuthAddOauth,

							microcmdAuthUpdateOauth,

							microcmdAuthAddLdapBindDn,

							microcmdAuthUpdateLdapBindDn,

							microcmdAuthAddLdapSimpleAuth,

							microcmdAuthUpdateLdapSimpleAuth,

							microcmdAuthAddSMTP,

							microcmdAuthUpdateSMTP,

							microcmdAuthList,

							microcmdAuthDelete,

						Commands: []*cli.Command{

							microcmdAuthAddOauth(),

							microcmdAuthUpdateOauth(),

							microcmdAuthAddLdapBindDn(),

							microcmdAuthUpdateLdapBindDn(),

							microcmdAuthAddLdapSimpleAuth(),

							microcmdAuthUpdateLdapSimpleAuth(),

							microcmdAuthAddPAM(),

							microcmdAuthUpdatePAM(),

							microcmdAuthAddSMTP(),

							microcmdAuthUpdateSMTP(),

							microcmdAuthList(),

							microcmdAuthDelete(),

						},

					}

				}

					subcmdSendMail = &cli.Command{

				func subcmdSendMail() *cli.Command {

					return &cli.Command{

						Name:   "sendmail",

						Usage:  "Send a message to all users",

						Before: noDanglingArgs,

						Action: runSendMail,

						Flags: []cli.Flag{

							&cli.StringFlag{

				@ -86,15 +97,17 @@ var (

							},

						},

					}

				}

					idFlag = &cli.Int64Flag{

				func idFlag() *cli.Int64Flag {

					return &cli.Int64Flag{

						Name:  "id",

						Usage: "ID of authentication source",

					}

				)

				}

				func runRepoSyncReleases(_ *cli.Context) error {

					ctx, cancel := installSignals()

				func runRepoSyncReleases(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										47

cmd/admin_auth.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"os"

				@ -13,19 +14,33 @@ import (

					"forgejo.org/models/db"

					auth_service "forgejo.org/services/auth"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					microcmdAuthDelete = &cli.Command{

				type (

					authService struct {

						initDB            func(ctx context.Context) error

						createAuthSource  func(context.Context, *auth_model.Source) error

						updateAuthSource  func(context.Context, *auth_model.Source) error

						getAuthSourceByID func(ctx context.Context, id int64) (*auth_model.Source, error)

					}

				)

				func microcmdAuthDelete() *cli.Command {

					return &cli.Command{

						Name:   "delete",

						Usage:  "Delete specific auth source",

						Flags:  []cli.Flag{idFlag},

						Flags:  []cli.Flag{idFlag()},

						Before: noDanglingArgs,

						Action: runDeleteAuth,

					}

					microcmdAuthList = &cli.Command{

				}

				func microcmdAuthList() *cli.Command {

					return &cli.Command{

						Name:   "list",

						Usage:  "List auth sources",

						Before: noDanglingArgs,

						Action: runListAuth,

						Flags: []cli.Flag{

							&cli.IntFlag{

				@ -54,10 +69,20 @@ var (

							},

						},

					}

				)

				}

				func runListAuth(c *cli.Context) error {

					ctx, cancel := installSignals()

				// newAuthService creates a service with default functions.

				func newAuthService() *authService {

					return &authService{

						initDB:            initDB,

						createAuthSource:  auth_model.CreateSource,

						updateAuthSource:  auth_model.UpdateSource,

						getAuthSourceByID: auth_model.GetSourceByID,

					}

				}

				func runListAuth(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

				@ -81,7 +106,7 @@ func runListAuth(c *cli.Context) error {

					// loop through each source and print

					w := tabwriter.NewWriter(os.Stdout, c.Int("min-width"), c.Int("tab-width"), c.Int("padding"), padChar, flags)

					fmt.Fprintf(w, "ID\tName\tType\tEnabled\n")

					fmt.Fprint(w, "ID\tName\tType\tEnabled\n")

					for _, source := range authSources {

						fmt.Fprintf(w, "%d\t%s\t%s\t%t\n", source.ID, source.Name, source.Type.String(), source.IsActive)

					}

				@ -90,12 +115,12 @@ func runListAuth(c *cli.Context) error {

					return nil

				}

				func runDeleteAuth(c *cli.Context) error {

				func runDeleteAuth(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("id") {

						return errors.New("--id flag is missing")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										115

cmd/admin_auth_ldap.go
									
										View file
										
				@ -11,20 +11,11 @@ import (

					"forgejo.org/models/auth"

					"forgejo.org/services/auth/source/ldap"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				type (

					authService struct {

						initDB            func(ctx context.Context) error

						createAuthSource  func(context.Context, *auth.Source) error

						updateAuthSource  func(context.Context, *auth.Source) error

						getAuthSourceByID func(ctx context.Context, id int64) (*auth.Source, error)

					}

				)

				var (

					commonLdapCLIFlags = []cli.Flag{

				func commonLdapCLIFlags() []cli.Flag {

					return []cli.Flag{

						&cli.StringFlag{

							Name:  "name",

							Usage: "Authentication name.",

				@ -102,8 +93,10 @@ var (

							Usage: "The attribute of the user’s LDAP record containing the user’s avatar.",

						},

					}

				}

					ldapBindDnCLIFlags = append(commonLdapCLIFlags,

				func ldapBindDnCLIFlags() []cli.Flag {

					return append(commonLdapCLIFlags(),

						&cli.StringFlag{

							Name:  "bind-dn",

							Usage: "The DN to bind to the LDAP server with when searching for the user.",

				@ -128,62 +121,66 @@ var (

							Name:  "page-size",

							Usage: "Search page size.",

						})

				}

					ldapSimpleAuthCLIFlags = append(commonLdapCLIFlags,

				func ldapSimpleAuthCLIFlags() []cli.Flag {

					return append(commonLdapCLIFlags(),

						&cli.StringFlag{

							Name:  "user-dn",

							Usage: "The user's DN.",

						})

				}

					microcmdAuthAddLdapBindDn = &cli.Command{

						Name:  "add-ldap",

						Usage: "Add new LDAP (via Bind DN) authentication source",

						Action: func(c *cli.Context) error {

							return newAuthService().addLdapBindDn(c)

				func microcmdAuthAddLdapBindDn() *cli.Command {

					return &cli.Command{

						Name:   "add-ldap",

						Usage:  "Add new LDAP (via Bind DN) authentication source",

						Before: noDanglingArgs,

						Action: func(ctx context.Context, cli *cli.Command) error {

							return newAuthService().addLdapBindDn(ctx, cli)

						},

						Flags: ldapBindDnCLIFlags,

						Flags: ldapBindDnCLIFlags(),

					}

				}

					microcmdAuthUpdateLdapBindDn = &cli.Command{

						Name:  "update-ldap",

						Usage: "Update existing LDAP (via Bind DN) authentication source",

						Action: func(c *cli.Context) error {

							return newAuthService().updateLdapBindDn(c)

				func microcmdAuthUpdateLdapBindDn() *cli.Command {

					return &cli.Command{

						Name:   "update-ldap",

						Usage:  "Update existing LDAP (via Bind DN) authentication source",

						Before: noDanglingArgs,

						Action: func(ctx context.Context, cli *cli.Command) error {

							return newAuthService().updateLdapBindDn(ctx, cli)

						},

						Flags: append([]cli.Flag{idFlag}, ldapBindDnCLIFlags...),

						Flags: append([]cli.Flag{idFlag()}, ldapBindDnCLIFlags()...),

					}

				}

					microcmdAuthAddLdapSimpleAuth = &cli.Command{

						Name:  "add-ldap-simple",

						Usage: "Add new LDAP (simple auth) authentication source",

						Action: func(c *cli.Context) error {

							return newAuthService().addLdapSimpleAuth(c)

				func microcmdAuthAddLdapSimpleAuth() *cli.Command {

					return &cli.Command{

						Name:   "add-ldap-simple",

						Usage:  "Add new LDAP (simple auth) authentication source",

						Before: noDanglingArgs,

						Action: func(ctx context.Context, cli *cli.Command) error {

							return newAuthService().addLdapSimpleAuth(ctx, cli)

						},

						Flags: ldapSimpleAuthCLIFlags,

						Flags: ldapSimpleAuthCLIFlags(),

					}

				}

					microcmdAuthUpdateLdapSimpleAuth = &cli.Command{

						Name:  "update-ldap-simple",

						Usage: "Update existing LDAP (simple auth) authentication source",

						Action: func(c *cli.Context) error {

							return newAuthService().updateLdapSimpleAuth(c)

				func microcmdAuthUpdateLdapSimpleAuth() *cli.Command {

					return &cli.Command{

						Name:   "update-ldap-simple",

						Usage:  "Update existing LDAP (simple auth) authentication source",

						Before: noDanglingArgs,

						Action: func(ctx context.Context, cli *cli.Command) error {

							return newAuthService().updateLdapSimpleAuth(ctx, cli)

						},

						Flags: append([]cli.Flag{idFlag}, ldapSimpleAuthCLIFlags...),

					}

				)

				// newAuthService creates a service with default functions.

				func newAuthService() *authService {

					return &authService{

						initDB:            initDB,

						createAuthSource:  auth.CreateSource,

						updateAuthSource:  auth.UpdateSource,

						getAuthSourceByID: auth.GetSourceByID,

						Flags: append([]cli.Flag{idFlag()}, ldapSimpleAuthCLIFlags()...),

					}

				}

				// parseAuthSource assigns values on authSource according to command line flags.

				func parseAuthSource(c *cli.Context, authSource *auth.Source) {

				func parseAuthSource(c *cli.Command, authSource *auth.Source) {

					if c.IsSet("name") {

						authSource.Name = c.String("name")

					}

				@ -202,7 +199,7 @@ func parseAuthSource(c *cli.Context, authSource *auth.Source) {

				}

				// parseLdapConfig assigns values on config according to command line flags.

				func parseLdapConfig(c *cli.Context, config *ldap.Source) error {

				func parseLdapConfig(c *cli.Command, config *ldap.Source) error {

					if c.IsSet("name") {

						config.Name = c.String("name")

					}

				@ -289,7 +286,7 @@ func findLdapSecurityProtocolByName(name string) (ldap.SecurityProtocol, bool) {

				// getAuthSource gets the login source by its id defined in the command line flags.

				// It returns an error if the id is not set, does not match any source or if the source is not of expected type.

				func (a *authService) getAuthSource(ctx context.Context, c *cli.Context, authType auth.Type) (*auth.Source, error) {

				func (a *authService) getAuthSource(ctx context.Context, c *cli.Command, authType auth.Type) (*auth.Source, error) {

					if err := argsSet(c, "id"); err != nil {

						return nil, err

					}

				@ -307,12 +304,12 @@ func (a *authService) getAuthSource(ctx context.Context, c *cli.Context, authTyp

				}

				// addLdapBindDn adds a new LDAP via Bind DN authentication source.

				func (a *authService) addLdapBindDn(c *cli.Context) error {

				func (a *authService) addLdapBindDn(ctx context.Context, c *cli.Command) error {

					if err := argsSet(c, "name", "security-protocol", "host", "port", "user-search-base", "user-filter", "email-attribute"); err != nil {

						return err

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

				@ -336,8 +333,8 @@ func (a *authService) addLdapBindDn(c *cli.Context) error {

				}

				// updateLdapBindDn updates a new LDAP via Bind DN authentication source.

				func (a *authService) updateLdapBindDn(c *cli.Context) error {

					ctx, cancel := installSignals()

				func (a *authService) updateLdapBindDn(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

				@ -358,12 +355,12 @@ func (a *authService) updateLdapBindDn(c *cli.Context) error {

				}

				// addLdapSimpleAuth adds a new LDAP (simple auth) authentication source.

				func (a *authService) addLdapSimpleAuth(c *cli.Context) error {

				func (a *authService) addLdapSimpleAuth(ctx context.Context, c *cli.Command) error {

					if err := argsSet(c, "name", "security-protocol", "host", "port", "user-dn", "user-filter", "email-attribute"); err != nil {

						return err

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

				@ -387,8 +384,8 @@ func (a *authService) addLdapSimpleAuth(c *cli.Context) error {

				}

				// updateLdapSimpleAuth updates a new LDAP (simple auth) authentication source.

				func (a *authService) updateLdapSimpleAuth(c *cli.Context) error {

					ctx, cancel := installSignals()

				func (a *authService) updateLdapSimpleAuth(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

									
										55

cmd/admin_auth_ldap_test.go
									
										View file
										
				@ -8,18 +8,17 @@ import (

					"testing"

					"forgejo.org/models/auth"

					"forgejo.org/modules/test"

					"forgejo.org/services/auth/source/ldap"

					"github.com/stretchr/testify/assert"

					"github.com/stretchr/testify/require"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				func TestAddLdapBindDn(t *testing.T) {

					// Mock cli functions to do not exit on error

					osExiter := cli.OsExiter

					defer func() { cli.OsExiter = osExiter }()

					cli.OsExiter = func(code int) {}

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

				@ -216,22 +215,22 @@ func TestAddLdapBindDn(t *testing.T) {

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "case %d: should not call updateAuthSource", n)

								assert.FailNow(t, "should not call updateAuthSource", "case: %d", n)

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								assert.FailNow(t, "case %d: should not call getAuthSourceByID", n)

								assert.FailNow(t, "should not call getAuthSourceByID", "case: %d", n)

								return nil, nil

							},

						}

						// Create a copy of command to test

						app := cli.NewApp()

						app.Flags = microcmdAuthAddLdapBindDn.Flags

						app := cli.Command{}

						app.Flags = microcmdAuthAddLdapBindDn().Flags

						app.Action = service.addLdapBindDn

						// Run it

						err := app.Run(c.args)

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

				@ -243,9 +242,7 @@ func TestAddLdapBindDn(t *testing.T) {

				func TestAddLdapSimpleAuth(t *testing.T) {

					// Mock cli functions to do not exit on error

					osExiter := cli.OsExiter

					defer func() { cli.OsExiter = osExiter }()

					cli.OsExiter = func(code int) {}

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

				@ -447,22 +444,22 @@ func TestAddLdapSimpleAuth(t *testing.T) {

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "case %d: should not call updateAuthSource", n)

								assert.FailNow(t, "should not call updateAuthSource", "case: %d", n)

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								assert.FailNow(t, "case %d: should not call getAuthSourceByID", n)

								assert.FailNow(t, "should not call getAuthSourceByID", "case: %d", n)

								return nil, nil

							},

						}

						// Create a copy of command to test

						app := cli.NewApp()

						app.Flags = microcmdAuthAddLdapSimpleAuth.Flags

						app := cli.Command{}

						app.Flags = microcmdAuthAddLdapSimpleAuth().Flags

						app.Action = service.addLdapSimpleAuth

						// Run it

						err := app.Run(c.args)

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

				@ -474,9 +471,7 @@ func TestAddLdapSimpleAuth(t *testing.T) {

				func TestUpdateLdapBindDn(t *testing.T) {

					// Mock cli functions to do not exit on error

					osExiter := cli.OsExiter

					defer func() { cli.OsExiter = osExiter }()

					cli.OsExiter = func(code int) {}

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

				@ -898,7 +893,7 @@ func TestUpdateLdapBindDn(t *testing.T) {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "case %d: should not call createAuthSource", n)

								assert.FailNow(t, "should not call createAuthSource", "case: %d", n)

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

				@ -920,12 +915,12 @@ func TestUpdateLdapBindDn(t *testing.T) {

						}

						// Create a copy of command to test

						app := cli.NewApp()

						app.Flags = microcmdAuthUpdateLdapBindDn.Flags

						app := cli.Command{}

						app.Flags = microcmdAuthUpdateLdapBindDn().Flags

						app.Action = service.updateLdapBindDn

						// Run it

						err := app.Run(c.args)

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

				@ -937,9 +932,7 @@ func TestUpdateLdapBindDn(t *testing.T) {

				func TestUpdateLdapSimpleAuth(t *testing.T) {

					// Mock cli functions to do not exit on error

					osExiter := cli.OsExiter

					defer func() { cli.OsExiter = osExiter }()

					cli.OsExiter = func(code int) {}

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

				@ -1288,7 +1281,7 @@ func TestUpdateLdapSimpleAuth(t *testing.T) {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "case %d: should not call createAuthSource", n)

								assert.FailNow(t, "should not call createAuthSource", "case: %d", n)

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

				@ -1310,12 +1303,12 @@ func TestUpdateLdapSimpleAuth(t *testing.T) {

						}

						// Create a copy of command to test

						app := cli.NewApp()

						app.Flags = microcmdAuthUpdateLdapSimpleAuth.Flags

						app := cli.Command{}

						app.Flags = microcmdAuthUpdateLdapSimpleAuth().Flags

						app.Action = service.updateLdapSimpleAuth

						// Run it

						err := app.Run(c.args)

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

									
										94

cmd/admin_auth_oauth.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"net/url"

				@ -11,11 +12,11 @@ import (

					auth_model "forgejo.org/models/auth"

					"forgejo.org/services/auth/source/oauth2"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					oauthCLIFlags = []cli.Flag{

				func oauthCLIFlags() []cli.Flag {

					return []cli.Flag{

						&cli.StringFlag{

							Name:  "name",

							Value: "",

				@ -85,6 +86,11 @@ var (

							Value: nil,

							Usage: "Scopes to request when to authenticate against this OAuth2 source",

						},

						&cli.StringFlag{

							Name:  "attribute-ssh-public-key",

							Value: "",

							Usage: "Claim name providing SSH public keys for this source",

						},

						&cli.StringFlag{

							Name:  "required-claim-name",

							Value: "",

				@ -119,24 +125,48 @@ var (

							Name:  "group-team-map-removal",

							Usage: "Activate automatic team membership removal depending on groups",

						},

						&cli.BoolFlag{

							Name:  "allow-username-change",

							Usage: "Allow users to change their username",

						},

						&cli.StringFlag{

							Name:  "quota-group-claim-name",

							Value: "",

							Usage: "Claim name providing quota group names for this source",

						},

						&cli.StringFlag{

							Name:  "quota-group-map",

							Value: "",

							Usage: "JSON mapping between groups and quota groups",

						},

						&cli.BoolFlag{

							Name:  "quota-group-map-removal",

							Usage: "Activate automatic quota group removal depending on groups",

						},

					}

				}

					microcmdAuthAddOauth = &cli.Command{

				func microcmdAuthAddOauth() *cli.Command {

					return &cli.Command{

						Name:   "add-oauth",

						Usage:  "Add new Oauth authentication source",

						Action: runAddOauth,

						Flags:  oauthCLIFlags,

						Before: noDanglingArgs,

						Action: newAuthService().addOauth,

						Flags:  oauthCLIFlags(),

					}

				}

					microcmdAuthUpdateOauth = &cli.Command{

				func microcmdAuthUpdateOauth() *cli.Command {

					return &cli.Command{

						Name:   "update-oauth",

						Usage:  "Update existing Oauth authentication source",

						Action: runUpdateOauth,

						Flags:  append(oauthCLIFlags[:1], append([]cli.Flag{idFlag}, oauthCLIFlags[1:]...)...),

						Before: noDanglingArgs,

						Action: newAuthService().updateOauth,

						Flags:  append(oauthCLIFlags()[:1], append([]cli.Flag{idFlag()}, oauthCLIFlags()[1:]...)...),

					}

				)

				}

				func parseOAuth2Config(c *cli.Context) *oauth2.Source {

				func parseOAuth2Config(_ context.Context, c *cli.Command) *oauth2.Source {

					var customURLMapping *oauth2.CustomURLMapping

					if c.IsSet("use-custom-urls") {

						customURLMapping = &oauth2.CustomURLMapping{

				@ -158,6 +188,7 @@ func parseOAuth2Config(c *cli.Context) *oauth2.Source {

						IconURL:                       c.String("icon-url"),

						SkipLocalTwoFA:                c.Bool("skip-local-2fa"),

						Scopes:                        c.StringSlice("scopes"),

						AttributeSSHPublicKey:         c.String("attribute-ssh-public-key"),

						RequiredClaimName:             c.String("required-claim-name"),

						RequiredClaimValue:            c.String("required-claim-value"),

						GroupClaimName:                c.String("group-claim-name"),

				@ -165,18 +196,22 @@ func parseOAuth2Config(c *cli.Context) *oauth2.Source {

						RestrictedGroup:               c.String("restricted-group"),

						GroupTeamMap:                  c.String("group-team-map"),

						GroupTeamMapRemoval:           c.Bool("group-team-map-removal"),

						AllowUsernameChange:           c.Bool("allow-username-change"),

						QuotaGroupClaimName:           c.String("quota-group-claim-name"),

						QuotaGroupMap:                 c.String("quota-group-map"),

						QuotaGroupMapRemoval:          c.Bool("quota-group-map-removal"),

					}

				}

				func runAddOauth(c *cli.Context) error {

					ctx, cancel := installSignals()

				func (a *authService) addOauth(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

					if err := a.initDB(ctx); err != nil {

						return err

					}

					config := parseOAuth2Config(c)

					config := parseOAuth2Config(ctx, c)

					if config.Provider == "openidConnect" {

						discoveryURL, err := url.Parse(config.OpenIDConnectAutoDiscoveryURL)

						if err != nil || (discoveryURL.Scheme != "http" && discoveryURL.Scheme != "https") {

				@ -184,7 +219,7 @@ func runAddOauth(c *cli.Context) error {

						}

					}

					return auth_model.CreateSource(ctx, &auth_model.Source{

					return a.createAuthSource(ctx, &auth_model.Source{

						Type:     auth_model.OAuth2,

						Name:     c.String("name"),

						IsActive: true,

				@ -192,19 +227,19 @@ func runAddOauth(c *cli.Context) error {

					})

				}

				func runUpdateOauth(c *cli.Context) error {

				func (a *authService) updateOauth(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("id") {

						return errors.New("--id flag is missing")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

					if err := a.initDB(ctx); err != nil {

						return err

					}

					source, err := auth_model.GetSourceByID(ctx, c.Int64("id"))

					source, err := a.getAuthSourceByID(ctx, c.Int64("id"))

					if err != nil {

						return err

					}

				@ -239,6 +274,10 @@ func runUpdateOauth(c *cli.Context) error {

						oAuth2Config.Scopes = c.StringSlice("scopes")

					}

					if c.IsSet("attribute-ssh-public-key") {

						oAuth2Config.AttributeSSHPublicKey = c.String("attribute-ssh-public-key")

					}

					if c.IsSet("required-claim-name") {

						oAuth2Config.RequiredClaimName = c.String("required-claim-name")

					}

				@ -261,6 +300,19 @@ func runUpdateOauth(c *cli.Context) error {

					if c.IsSet("group-team-map-removal") {

						oAuth2Config.GroupTeamMapRemoval = c.Bool("group-team-map-removal")

					}

					if c.IsSet("quota-group-claim-name") {

						oAuth2Config.QuotaGroupClaimName = c.String("quota-group-claim-name")

					}

					if c.IsSet("quota-group-map") {

						oAuth2Config.QuotaGroupMap = c.String("quota-group-map")

					}

					if c.IsSet("quota-group-map-removal") {

						oAuth2Config.QuotaGroupMapRemoval = c.Bool("quota-group-map-removal")

					}

					if c.IsSet("allow-username-change") {

						oAuth2Config.AllowUsernameChange = c.Bool("allow-username-change")

					}

					// update custom URL mapping

					customURLMapping := &oauth2.CustomURLMapping{}

				@ -295,5 +347,5 @@ func runUpdateOauth(c *cli.Context) error {

					oAuth2Config.CustomURLMapping = customURLMapping

					source.Cfg = oAuth2Config

					return auth_model.UpdateSource(ctx, source)

					return a.updateAuthSource(ctx, source)

				}

									
										886

cmd/admin_auth_oauth_test.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,886 @@

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: GPL-3.0-or-later

				package cmd

				import (

					"context"

					"testing"

					"forgejo.org/models/auth"

					"forgejo.org/modules/test"

					"forgejo.org/services/auth/source/oauth2"

					"github.com/stretchr/testify/assert"

					"github.com/stretchr/testify/require"

					"github.com/urfave/cli/v3"

				)

				func TestAddOauth(t *testing.T) {

					// Mock cli functions to do not exit on error

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

						args   []string

						source *auth.Source

						errMsg string

					}{

						// case 0

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source full",

								"--provider", "openidConnect",

								"--key", "client id",

								"--secret", "client secret",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--use-custom-urls", "",

								"--custom-tenant-id", "tenant id",

								"--custom-auth-url", "https://example.com/auth",

								"--custom-token-url", "https://example.com/token",

								"--custom-profile-url", "https://example.com/profile",

								"--custom-email-url", "https://example.com/email",

								"--icon-url", "https://example.com/icon.svg",

								"--skip-local-2fa",

								"--scopes", "address",

								"--scopes", "email",

								"--scopes", "phone",

								"--scopes", "profile",

								"--attribute-ssh-public-key", "ssh_public_key",

								"--required-claim-name", "can_access",

								"--required-claim-value", "yes",

								"--group-claim-name", "groups",

								"--admin-group", "admin",

								"--restricted-group", "restricted",

								"--group-team-map", `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

								"--group-team-map-removal",

								"--allow-username-change",

								"--quota-group-claim-name", "quota_groups",

								"--quota-group-map", `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

								"--quota-group-map-removal",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 (via openidConnect) source full",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									ClientID:                      "client id",

									ClientSecret:                  "client secret",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									CustomURLMapping: &oauth2.CustomURLMapping{

										AuthURL:    "https://example.com/auth",

										TokenURL:   "https://example.com/token",

										ProfileURL: "https://example.com/profile",

										EmailURL:   "https://example.com/email",

										Tenant:     "tenant id",

									},

									IconURL:               "https://example.com/icon.svg",

									Scopes:                []string{"address", "email", "phone", "profile"},

									AttributeSSHPublicKey: "ssh_public_key",

									RequiredClaimName:     "can_access",

									RequiredClaimValue:    "yes",

									GroupClaimName:        "groups",

									AdminGroup:            "admin",

									GroupTeamMap:          `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

									GroupTeamMapRemoval:   true,

									QuotaGroupClaimName:   "quota_groups",

									QuotaGroupMap:         `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

									QuotaGroupMapRemoval:  true,

									RestrictedGroup:       "restricted",

									SkipLocalTwoFA:        true,

									AllowUsernameChange:   true,

								},

							},

						},

						// case 1

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source min",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 (via openidConnect) source min",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{},

								},

							},

						},

						// case 2

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source `--use-custom-urls` required for `--custom-*` flags",

								"--custom-tenant-id", "tenant id",

								"--custom-auth-url", "https://example.com/auth",

								"--custom-token-url", "https://example.com/token",

								"--custom-profile-url", "https://example.com/profile",

								"--custom-email-url", "https://example.com/email",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 (via openidConnect) source `--use-custom-urls` required for `--custom-*` flags",

								IsActive: true,

								Cfg: &oauth2.Source{

									Scopes: []string{},

								},

							},

						},

						// case 3

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source `--scopes` aggregates multiple uses",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--scopes", "address",

								"--scopes", "email",

								"--scopes", "phone",

								"--scopes", "profile",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 (via openidConnect) source `--scopes` aggregates multiple uses",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{"address", "email", "phone", "profile"},

								},

							},

						},

						// case 4

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source `--scopes` supports commas as separators",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--scopes", "address,email,phone,profile",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 (via openidConnect) source `--scopes` supports commas as separators",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{"address", "email", "phone", "profile"},

								},

							},

						},

						// case 5

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source",

								"--provider", "openidConnect",

							},

							errMsg: "invalid Auto Discovery URL:  (this must be a valid URL starting with http:// or https://)",

						},

						// case 6

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 (via openidConnect) source",

								"--provider", "openidConnect",

								"--auto-discover-url", "example.com",

							},

							errMsg: "invalid Auto Discovery URL: example.com (this must be a valid URL starting with http:// or https://)",

						},

						// case 7

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 source with quota group claim name",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--quota-group-claim-name", "quota_groups",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 source with quota group claim name",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{},

									QuotaGroupClaimName:           "quota_groups",

								},

							},

						},

						// case 8

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 source with quota group map",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--quota-group-map", `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 source with quota group map",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{},

									QuotaGroupMap:                 `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

								},

							},

						},

						// case 9

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 source with quota group map removal",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--quota-group-map-removal",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 source with quota group map removal",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{},

									QuotaGroupMapRemoval:          true,

								},

							},

						},

						// case 10

						{

							args: []string{

								"oauth-test",

								"--name", "oauth2 source with all quota group fields",

								"--provider", "openidConnect",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--quota-group-claim-name", "quota_groups",

								"--quota-group-map", `{"developers": ["dev_quota"], "admins": ["admin_quota"]}`,

								"--quota-group-map-removal",

							},

							source: &auth.Source{

								Type:     auth.OAuth2,

								Name:     "oauth2 source with all quota group fields",

								IsActive: true,

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									Scopes:                        []string{},

									QuotaGroupClaimName:           "quota_groups",

									QuotaGroupMap:                 `{"developers": ["dev_quota"], "admins": ["admin_quota"]}`,

									QuotaGroupMapRemoval:          true,

								},

							},

						},

					}

					for n, c := range cases {

						// Mock functions.

						var createdAuthSource *auth.Source

						service := &authService{

							initDB: func(context.Context) error {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								createdAuthSource = authSource

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "should not call updateAuthSource", "case: %d", n)

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								assert.FailNow(t, "should not call getAuthSourceByID", "case: %d", n)

								return nil, nil

							},

						}

						// Create a copy of command to test

						app := cli.Command{}

						app.Flags = microcmdAuthAddOauth().Flags

						app.Action = service.addOauth

						// Run it

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

							require.NoError(t, err, "case %d: should have no errors", n)

							assert.Equal(t, c.source, createdAuthSource, "case %d: wrong authSource", n)

						}

					}

				}

				func TestUpdateOauth(t *testing.T) {

					// Mock cli functions to do not exit on error

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

						args               []string

						id                 int64

						existingAuthSource *auth.Source

						authSource         *auth.Source

						errMsg             string

					}{

						// case 0

						{

							args: []string{

								"oauth-test",

								"--id", "23",

								"--name", "oauth2 (via openidConnect) source full",

								"--provider", "openidConnect",

								"--key", "client id",

								"--secret", "client secret",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

								"--use-custom-urls", "",

								"--custom-tenant-id", "tenant id",

								"--custom-auth-url", "https://example.com/auth",

								"--custom-token-url", "https://example.com/token",

								"--custom-profile-url", "https://example.com/profile",

								"--custom-email-url", "https://example.com/email",

								"--icon-url", "https://example.com/icon.svg",

								"--skip-local-2fa",

								"--scopes", "address",

								"--scopes", "email",

								"--scopes", "phone",

								"--scopes", "profile",

								"--attribute-ssh-public-key", "ssh_public_key",

								"--required-claim-name", "can_access",

								"--required-claim-value", "yes",

								"--group-claim-name", "groups",

								"--admin-group", "admin",

								"--restricted-group", "restricted",

								"--group-team-map", `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

								"--group-team-map-removal",

							},

							id: 23,

							existingAuthSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg:  &oauth2.Source{},

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source full",

								Cfg: &oauth2.Source{

									Provider:                      "openidConnect",

									ClientID:                      "client id",

									ClientSecret:                  "client secret",

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									CustomURLMapping: &oauth2.CustomURLMapping{

										AuthURL:    "https://example.com/auth",

										TokenURL:   "https://example.com/token",

										ProfileURL: "https://example.com/profile",

										EmailURL:   "https://example.com/email",

										Tenant:     "tenant id",

									},

									IconURL:               "https://example.com/icon.svg",

									Scopes:                []string{"address", "email", "phone", "profile"},

									AttributeSSHPublicKey: "ssh_public_key",

									RequiredClaimName:     "can_access",

									RequiredClaimValue:    "yes",

									GroupClaimName:        "groups",

									AdminGroup:            "admin",

									GroupTeamMap:          `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

									GroupTeamMapRemoval:   true,

									RestrictedGroup:       "restricted",

									// `--skip-local-2fa` is currently ignored.

									// SkipLocalTwoFA:        true,

								},

							},

						},

						// case 1

						{

							args: []string{

								"oauth-test",

								"--id", "1",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 2

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--name", "oauth2 (via openidConnect) source full",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source full",

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 3

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--provider", "openidConnect",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									Provider:         "openidConnect",

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 4

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--key", "client id",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									ClientID:         "client id",

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 5

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--secret", "client secret",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									ClientSecret:     "client secret",

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 6

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--auto-discover-url", "https://example.com/.well-known/openid-configuration",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									OpenIDConnectAutoDiscoveryURL: "https://example.com/.well-known/openid-configuration",

									CustomURLMapping:              &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 7

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--use-custom-urls", "",

								"--custom-tenant-id", "tenant id",

								"--custom-auth-url", "https://example.com/auth",

								"--custom-token-url", "https://example.com/token",

								"--custom-profile-url", "https://example.com/profile",

								"--custom-email-url", "https://example.com/email",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{

										AuthURL:    "https://example.com/auth",

										TokenURL:   "https://example.com/token",

										ProfileURL: "https://example.com/profile",

										EmailURL:   "https://example.com/email",

										Tenant:     "tenant id",

									},

								},

							},

						},

						// case 8

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--name", "oauth2 (via openidConnect) source `--use-custom-urls` required for `--custom-*` flags",

								"--custom-tenant-id", "tenant id",

								"--custom-auth-url", "https://example.com/auth",

								"--custom-token-url", "https://example.com/token",

								"--custom-profile-url", "https://example.com/profile",

								"--custom-email-url", "https://example.com/email",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source `--use-custom-urls` required for `--custom-*` flags",

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

								},

							},

						},

						// case 9

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--icon-url", "https://example.com/icon.svg",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									IconURL:          "https://example.com/icon.svg",

								},

							},

						},

						// case 10

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--name", "oauth2 (via openidConnect) source `--skip-local-2fa` is currently ignored",

								"--skip-local-2fa",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source `--skip-local-2fa` is currently ignored",

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									// `--skip-local-2fa` is currently ignored.

									// SkipLocalTwoFA: true,

								},

							},

						},

						// case 11

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--name", "oauth2 (via openidConnect) source `--scopes` aggregates multiple uses",

								"--scopes", "address",

								"--scopes", "email",

								"--scopes", "phone",

								"--scopes", "profile",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source `--scopes` aggregates multiple uses",

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									Scopes:           []string{"address", "email", "phone", "profile"},

								},

							},

						},

						// case 12

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--name", "oauth2 (via openidConnect) source `--scopes` supports commas as separators",

								"--scopes", "address,email,phone,profile",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Name: "oauth2 (via openidConnect) source `--scopes` supports commas as separators",

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									Scopes:           []string{"address", "email", "phone", "profile"},

								},

							},

						},

						// case 13

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--attribute-ssh-public-key", "ssh_public_key",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:      &oauth2.CustomURLMapping{},

									AttributeSSHPublicKey: "ssh_public_key",

								},

							},

						},

						// case 14

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--required-claim-name", "can_access",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:  &oauth2.CustomURLMapping{},

									RequiredClaimName: "can_access",

								},

							},

						},

						// case 15

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--required-claim-value", "yes",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:   &oauth2.CustomURLMapping{},

									RequiredClaimValue: "yes",

								},

							},

						},

						// case 16

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--group-claim-name", "groups",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									GroupClaimName:   "groups",

								},

							},

						},

						// case 17

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--admin-group", "admin",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									AdminGroup:       "admin",

								},

							},

						},

						// case 18

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--restricted-group", "restricted",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									RestrictedGroup:  "restricted",

								},

							},

						},

						// case 19

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--group-team-map", `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									GroupTeamMap:     `{"org_a_team_1": {"organization-a": ["Team 1"]}, "org_a_all_teams": {"organization-a": ["Team 1", "Team 2", "Team 3"]}}`,

								},

							},

						},

						// case 20

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--group-team-map-removal",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:    &oauth2.CustomURLMapping{},

									GroupTeamMapRemoval: true,

								},

							},

						},

						// case 21

						{

							args: []string{

								"oauth-test",

								"--id", "23",

								"--group-team-map-removal=false",

							},

							id: 23,

							existingAuthSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									GroupTeamMapRemoval: true,

								},

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:    &oauth2.CustomURLMapping{},

									GroupTeamMapRemoval: false,

								},

							},

						},

						// case 22

						{

							args: []string{

								"oauth-test",

							},

							errMsg: "--id flag is missing",

						},

						// case 23

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--quota-group-claim-name", "quota_groups",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:    &oauth2.CustomURLMapping{},

									QuotaGroupClaimName: "quota_groups",

								},

							},

						},

						// case 24

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--quota-group-map", `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping: &oauth2.CustomURLMapping{},

									QuotaGroupMap:    `{"oauth_group_1": ["quota_group_1"], "oauth_group_2": ["quota_group_2"]}`,

								},

							},

						},

						// case 25

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--quota-group-map-removal",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:     &oauth2.CustomURLMapping{},

									QuotaGroupMapRemoval: true,

								},

							},

						},

						// case 26

						{

							args: []string{

								"oauth-test",

								"--id", "24",

								"--quota-group-map-removal=false",

							},

							id: 24,

							existingAuthSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									QuotaGroupMapRemoval: true,

								},

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:     &oauth2.CustomURLMapping{},

									QuotaGroupMapRemoval: false,

								},

							},

						},

						// case 27

						{

							args: []string{

								"oauth-test",

								"--id", "1",

								"--quota-group-claim-name", "quota_groups",

								"--quota-group-map", `{"developers": ["dev_quota"], "admins": ["admin_quota"]}`,

								"--quota-group-map-removal",

							},

							authSource: &auth.Source{

								Type: auth.OAuth2,

								Cfg: &oauth2.Source{

									CustomURLMapping:     &oauth2.CustomURLMapping{},

									QuotaGroupClaimName:  "quota_groups",

									QuotaGroupMap:        `{"developers": ["dev_quota"], "admins": ["admin_quota"]}`,

									QuotaGroupMapRemoval: true,

								},

							},

						},

					}

					for n, c := range cases {

						// Mock functions.

						var updatedAuthSource *auth.Source

						service := &authService{

							initDB: func(context.Context) error {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "should not call createAuthSource", "case: %d", n)

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								updatedAuthSource = authSource

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								if c.id != 0 {

									assert.Equal(t, c.id, id, "case %d: wrong id", n)

								}

								if c.existingAuthSource != nil {

									return c.existingAuthSource, nil

								}

								return &auth.Source{

									Type: auth.OAuth2,

									Cfg:  &oauth2.Source{},

								}, nil

							},

						}

						// Create a copy of command to test

						app := cli.Command{}

						app.Flags = microcmdAuthUpdateOauth().Flags

						app.Action = service.updateOauth

						// Run it

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

							require.NoError(t, err, "case %d: should have no errors", n)

							assert.Equal(t, c.authSource, updatedAuthSource, "case %d: wrong authSource", n)

						}

					}

				}

									
										145

cmd/admin_auth_pam.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,145 @@

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"context"

					"errors"

					auth_model "forgejo.org/models/auth"

					"forgejo.org/services/auth/source/pam"

					"github.com/urfave/cli/v3"

				)

				func pamCLIFlags() []cli.Flag {

					return []cli.Flag{

						&cli.StringFlag{

							Name:  "name",

							Value: "",

							Usage: "Application Name",

						},

						&cli.StringFlag{

							Name:  "service-name",

							Value: "PLAIN",

							Usage: "PAM service name",

						},

						&cli.StringFlag{

							Name:  "email-domain",

							Value: "",

							Usage: "PAM email domain",

						},

						&cli.BoolFlag{

							Name:  "skip-local-2fa",

							Usage: "Skip 2FA to log on.",

							Value: true,

						},

						&cli.BoolFlag{

							Name:  "active",

							Usage: "This Authentication Source is Activated.",

							Value: true,

						},

					}

				}

				func microcmdAuthAddPAM() *cli.Command {

					return &cli.Command{

						Name:   "add-pam",

						Usage:  "Add new PAM authentication source",

						Before: noDanglingArgs,

						Action: newAuthService().addPAM,

						Flags:  pamCLIFlags(),

					}

				}

				func microcmdAuthUpdatePAM() *cli.Command {

					return &cli.Command{

						Name:   "update-pam",

						Usage:  "Update existing PAM authentication source",

						Before: noDanglingArgs,

						Action: newAuthService().updatePAM,

						Flags:  append(pamCLIFlags()[:1], append([]cli.Flag{idFlag()}, pamCLIFlags()[1:]...)...),

					}

				}

				func parsePAMConfig(_ context.Context, c *cli.Command) *pam.Source {

					return &pam.Source{

						ServiceName:    c.String("service-name"),

						EmailDomain:    c.String("email-domain"),

						SkipLocalTwoFA: c.Bool("skip-local-2fa"),

					}

				}

				func (a *authService) addPAM(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

						return err

					}

					if !c.IsSet("name") || len(c.String("name")) == 0 {

						return errors.New("name must be set")

					}

					if !c.IsSet("service-name") || len(c.String("service-name")) == 0 {

						return errors.New("service-name must be set")

					}

					active := true

					if c.IsSet("active") {

						active = c.Bool("active")

					}

					config := parsePAMConfig(ctx, c)

					return a.createAuthSource(ctx, &auth_model.Source{

						Type:     auth_model.PAM,

						Name:     c.String("name"),

						IsActive: active,

						Cfg:      config,

					})

				}

				func (a *authService) updatePAM(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("id") {

						return errors.New("--id flag is missing")

					}

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := a.initDB(ctx); err != nil {

						return err

					}

					source, err := a.getAuthSource(ctx, c, auth_model.PAM)

					if err != nil {

						return err

					}

					pamConfig := source.Cfg.(*pam.Source)

					if c.IsSet("name") {

						source.Name = c.String("name")

					}

					if c.IsSet("service-name") {

						pamConfig.ServiceName = c.String("service-name")

					}

					if c.IsSet("email-domain") {

						pamConfig.EmailDomain = c.String("email-domain")

					}

					if c.IsSet("skip-local-2fa") {

						pamConfig.SkipLocalTwoFA = c.Bool("skip-local-2fa")

					}

					if c.IsSet("active") {

						source.IsActive = c.Bool("active")

					}

					source.Cfg = pamConfig

					return a.updateAuthSource(ctx, source)

				}

									
										293

cmd/admin_auth_pam_test.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,293 @@

				// Copyright 2019 The Gitea Authors. All rights reserved.

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"context"

					"testing"

					"forgejo.org/models/auth"

					"forgejo.org/modules/test"

					"forgejo.org/services/auth/source/pam"

					"github.com/stretchr/testify/assert"

					"github.com/stretchr/testify/require"

					"github.com/urfave/cli/v3"

				)

				func TestPamService(t *testing.T) {

					// Mock cli functions to do not exit on error

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

						args   []string

						source *auth.Source

						errMsg string

					}{

						// case 0

						{

							args: []string{

								"pam-test",

								"--name", "Pam Service",

								"--service-name", "myservice",

							},

							source: &auth.Source{

								Type:     auth.PAM,

								Name:     "Pam Service",

								IsActive: true,

								Cfg: &pam.Source{

									ServiceName:    "myservice",

									EmailDomain:    "",

									SkipLocalTwoFA: true,

								},

							},

						},

						// case 1

						{

							args: []string{

								"pam-test",

								"--name", "Pam Service",

								"--service-name", "myservice",

								"--email-domain", "testdomain.org",

								"--skip-local-2fa",

							},

							source: &auth.Source{

								Type:     auth.PAM,

								Name:     "Pam Service",

								IsActive: true,

								Cfg: &pam.Source{

									ServiceName:    "myservice",

									EmailDomain:    "testdomain.org",

									SkipLocalTwoFA: true,

								},

							},

						},

						// case 2

						{

							args: []string{

								"pam-test",

								"--service-name", "myservice",

								"--email-domain", "testdomain.org",

								"--skip-local-2fa", "false",

								"--active", "true",

							},

							errMsg: "name must be set",

						},

						// case 3

						{

							args: []string{

								"pam-test",

								"--name", "Pam Service",

								"--email-domain", "testdomain.org",

								"--skip-local-2fa", "false",

								"--active", "true",

							},

							errMsg: "service-name must be set",

						},

					}

					for n, c := range cases {

						// Mock functions.

						var createdAuthSource *auth.Source

						service := &authService{

							initDB: func(context.Context) error {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								createdAuthSource = authSource

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "should not call updateAuthSource", "case: %d", n)

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								assert.FailNow(t, "should not call getAuthSourceByID", "case: %d", n)

								return nil, nil

							},

						}

						// Create a copy of command to test

						app := cli.Command{}

						app.Flags = microcmdAuthAddPAM().Flags

						app.Action = service.addPAM

						// Run it

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

							require.NoError(t, err, "case %d: should have no errors", n)

							assert.Equal(t, c.source, createdAuthSource, "case %d: wrong authSource", n)

						}

					}

				}

				func TestUpdatePAM(t *testing.T) {

					// Mock cli functions to do not exit on error

					defer test.MockVariableValue(&cli.OsExiter, func(code int) {})()

					// Test cases

					cases := []struct {

						args               []string

						id                 int64

						existingAuthSource *auth.Source

						authSource         *auth.Source

						errMsg             string

					}{

						// case 0

						{

							args: []string{

								"pam-test",

								"--id", "23",

								"--name", "PAM Service",

								"--service-name", "myservice",

							},

							id: 23,

							existingAuthSource: &auth.Source{

								Type:     auth.PAM,

								IsActive: true,

								Cfg:      &pam.Source{},

							},

							authSource: &auth.Source{

								Type:     auth.PAM,

								Name:     "PAM Service",

								IsActive: true,

								Cfg: &pam.Source{

									ServiceName: "myservice",

								},

							},

						},

						// case 1

						{

							args: []string{

								"pam-test",

								"--id", "1",

							},

							authSource: &auth.Source{

								Type: auth.PAM,

								Cfg:  &pam.Source{},

							},

						},

						// case 2

						{

							args: []string{

								"pam-test",

								"--id", "1",

								"--name", "pam service",

							},

							authSource: &auth.Source{

								Type: auth.PAM,

								Name: "pam service",

								Cfg:  &pam.Source{},

							},

						},

						// case 3

						{

							args: []string{

								"pam-test",

								"--id", "1",

								"--active=false",

							},

							existingAuthSource: &auth.Source{

								Type:     auth.PAM,

								IsActive: true,

								Cfg:      &pam.Source{},

							},

							authSource: &auth.Source{

								Type:     auth.PAM,

								IsActive: false,

								Cfg:      &pam.Source{},

							},

						},

						// case 4

						{

							args: []string{

								"pam-test",

								"--id", "1",

								"--service-name", "myservice",

							},

							authSource: &auth.Source{

								Type: auth.PAM,

								Cfg: &pam.Source{

									ServiceName: "myservice",

								},

							},

						},

						// case 5

						{

							args: []string{

								"pam-test",

								"--id", "1",

								"--skip-local-2fa=false",

							},

							authSource: &auth.Source{

								Type: auth.PAM,

								Cfg: &pam.Source{

									SkipLocalTwoFA: false,

								},

							},

						},

						// case 6

						{

							args: []string{

								"pam-test",

								"--id", "1",

								"--email-domain", "testdomain.org",

							},

							authSource: &auth.Source{

								Type: auth.PAM,

								Cfg: &pam.Source{

									EmailDomain: "testdomain.org",

								},

							},

						},

					}

					for n, c := range cases {

						// Mock functions.

						var updatedAuthSource *auth.Source

						service := &authService{

							initDB: func(context.Context) error {

								return nil

							},

							createAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								assert.FailNow(t, "should not call createAuthSource", "case: %d", n)

								return nil

							},

							updateAuthSource: func(ctx context.Context, authSource *auth.Source) error {

								updatedAuthSource = authSource

								return nil

							},

							getAuthSourceByID: func(ctx context.Context, id int64) (*auth.Source, error) {

								if c.id != 0 {

									assert.Equal(t, c.id, id, "case %d: wrong id", n)

								}

								if c.existingAuthSource != nil {

									return c.existingAuthSource, nil

								}

								return &auth.Source{

									Type: auth.PAM,

									Cfg:  &pam.Source{},

								}, nil

							},

						}

						// Create a copy of command to test

						app := cli.Command{}

						app.Flags = microcmdAuthUpdatePAM().Flags

						app.Action = service.updatePAM

						// Run it

						err := app.Run(t.Context(), c.args)

						if c.errMsg != "" {

							assert.EqualError(t, err, c.errMsg, "case %d: error should match", n)

						} else {

							require.NoError(t, err, "case %d: should have no errors", n)

							assert.Equal(t, c.authSource, updatedAuthSource, "case %d: wrong authSource", n)

						}

					}

				}

									
										33

cmd/admin_auth_stmp.go → cmd/admin_auth_smtp.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"strings"

				@ -11,11 +12,11 @@ import (

					"forgejo.org/modules/util"

					"forgejo.org/services/auth/source/smtp"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					smtpCLIFlags = []cli.Flag{

				func smtpCLIFlags() []cli.Flag {

					return []cli.Flag{

						&cli.StringFlag{

							Name:  "name",

							Value: "",

				@ -71,23 +72,29 @@ var (

							Value: true,

						},

					}

				}

					microcmdAuthAddSMTP = &cli.Command{

				func microcmdAuthAddSMTP() *cli.Command {

					return &cli.Command{

						Name:   "add-smtp",

						Usage:  "Add new SMTP authentication source",

						Before: noDanglingArgs,

						Action: runAddSMTP,

						Flags:  smtpCLIFlags,

						Flags:  smtpCLIFlags(),

					}

				}

					microcmdAuthUpdateSMTP = &cli.Command{

				func microcmdAuthUpdateSMTP() *cli.Command {

					return &cli.Command{

						Name:   "update-smtp",

						Usage:  "Update existing SMTP authentication source",

						Before: noDanglingArgs,

						Action: runUpdateSMTP,

						Flags:  append(smtpCLIFlags[:1], append([]cli.Flag{idFlag}, smtpCLIFlags[1:]...)...),

						Flags:  append(smtpCLIFlags()[:1], append([]cli.Flag{idFlag()}, smtpCLIFlags()[1:]...)...),

					}

				)

				}

				func parseSMTPConfig(c *cli.Context, conf *smtp.Source) error {

				func parseSMTPConfig(c *cli.Command, conf *smtp.Source) error {

					if c.IsSet("auth-type") {

						conf.Auth = c.String("auth-type")

						validAuthTypes := []string{"PLAIN", "LOGIN", "CRAM-MD5"}

				@ -123,8 +130,8 @@ func parseSMTPConfig(c *cli.Context, conf *smtp.Source) error {

					return nil

				}

				func runAddSMTP(c *cli.Context) error {

					ctx, cancel := installSignals()

				func runAddSMTP(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

				@ -163,12 +170,12 @@ func runAddSMTP(c *cli.Context) error {

					})

				}

				func runUpdateSMTP(c *cli.Context) error {

				func runUpdateSMTP(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("id") {

						return errors.New("--id flag is missing")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										37

cmd/admin_regenerate.go
									
										View file
										
				@ -4,39 +4,22 @@

				package cmd

				import (

					"context"

					asymkey_model "forgejo.org/models/asymkey"

					"forgejo.org/modules/graceful"

					repo_service "forgejo.org/services/repository"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var (

					microcmdRegenHooks = &cli.Command{

						Name:   "hooks",

						Usage:  "Regenerate git-hooks",

						Action: runRegenerateHooks,

					}

					microcmdRegenKeys = &cli.Command{

						Name:   "keys",

						Usage:  "Regenerate authorized_keys file",

						Action: runRegenerateKeys,

					}

				)

				func runRegenerateHooks(_ *cli.Context) error {

					ctx, cancel := installSignals()

					defer cancel()

					if err := initDB(ctx); err != nil {

						return err

					}

					return repo_service.SyncRepositoryHooks(graceful.GetManager().ShutdownContext())

				var microcmdRegenKeys = &cli.Command{

					Name:   "keys",

					Usage:  "Regenerate authorized_keys file",

					Before: noDanglingArgs,

					Action: runRegenerateKeys,

				}

				func runRegenerateKeys(_ *cli.Context) error {

					ctx, cancel := installSignals()

				func runRegenerateKeys(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										28

cmd/admin_user.go
									
										View file
										
				@ -4,18 +4,22 @@

				package cmd

				import (

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var subcmdUser = &cli.Command{

					Name:  "user",

					Usage: "Modify users",

					Subcommands: []*cli.Command{

						microcmdUserCreate,

						microcmdUserList,

						microcmdUserChangePassword,

						microcmdUserDelete,

						microcmdUserGenerateAccessToken,

						microcmdUserMustChangePassword,

					},

				func subcmdUser() *cli.Command {

					return &cli.Command{

						Name:  "user",

						Usage: "Modify users",

						Commands: []*cli.Command{

							microcmdUserCreate(),

							microcmdUserList(),

							microcmdUserChangePassword(),

							microcmdUserDelete(),

							microcmdUserGenerateAccessToken(),

							microcmdUserCreateAuthorizedIntegration(),

							microcmdUserMustChangePassword(),

							microcmdUserResetMFA(),

						},

					}

				}

									
										54

cmd/admin_user_change_password.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

				@ -13,40 +14,43 @@ import (

					"forgejo.org/modules/setting"

					user_service "forgejo.org/services/user"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserChangePassword = &cli.Command{

					Name:   "change-password",

					Usage:  "Change a user's password",

					Action: runChangePassword,

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:    "username",

							Aliases: []string{"u"},

							Value:   "",

							Usage:   "The user to change password for",

				func microcmdUserChangePassword() *cli.Command {

					return &cli.Command{

						Name:   "change-password",

						Usage:  "Change a user's password",

						Before: noDanglingArgs,

						Action: runChangePassword,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:    "username",

								Aliases: []string{"u"},

								Value:   "",

								Usage:   "The user to change password for",

							},

							&cli.StringFlag{

								Name:    "password",

								Aliases: []string{"p"},

								Value:   "",

								Usage:   "New password to set for user",

							},

							&cli.BoolFlag{

								Name:  "must-change-password",

								Usage: "User must change password",

								Value: true,

							},

						},

						&cli.StringFlag{

							Name:    "password",

							Aliases: []string{"p"},

							Value:   "",

							Usage:   "New password to set for user",

						},

						&cli.BoolFlag{

							Name:  "must-change-password",

							Usage: "User must change password",

							Value: true,

						},

					},

					}

				}

				func runChangePassword(c *cli.Context) error {

				func runChangePassword(ctx context.Context, c *cli.Command) error {

					if err := argsSet(c, "username", "password"); err != nil {

						return err

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										162

cmd/admin_user_create.go
									
										View file
										
				@ -4,8 +4,10 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"strings"

					auth_model "forgejo.org/models/auth"

					"forgejo.org/models/db"

				@ -14,61 +16,77 @@ import (

					"forgejo.org/modules/optional"

					"forgejo.org/modules/setting"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserCreate = &cli.Command{

					Name:   "create",

					Usage:  "Create a new user in database",

					Action: runCreateUser,

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:  "name",

							Usage: "Username. DEPRECATED: use username instead",

				func microcmdUserCreate() *cli.Command {

					return &cli.Command{

						Name:   "create",

						Usage:  "Create a new user in database",

						Before: noDanglingArgs,

						Action: runCreateUser,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:  "name",

								Usage: "Username. DEPRECATED: use username instead",

							},

							&cli.StringFlag{

								Name:  "username",

								Usage: "Username",

							},

							&cli.StringFlag{

								Name:  "password",

								Usage: "User password",

							},

							&cli.StringFlag{

								Name:  "email",

								Usage: "User email address",

							},

							&cli.BoolFlag{

								Name:  "admin",

								Usage: "User is an admin",

							},

							&cli.BoolFlag{

								Name:  "random-password",

								Usage: "Generate a random password for the user",

							},

							&cli.BoolFlag{

								Name:  "must-change-password",

								Usage: "Set this option to false to prevent forcing the user to change their password after initial login",

								Value: true,

							},

							&cli.IntFlag{

								Name:  "random-password-length",

								Usage: "Length of the random password to be generated",

								Value: 12,

							},

							&cli.BoolFlag{

								Name:  "access-token",

								Usage: "Generate access token for the user",

							},

							&cli.StringFlag{

								Name:  "access-token-name",

								Usage: `Name of the generated access token`,

								Value: "gitea-admin",

							},

							&cli.StringFlag{

								Name:  "access-token-scopes",

								Usage: `Scopes of the generated access token, comma separated. Examples: "all", "public-only,read:issue", "write:repository,write:user"`,

								Value: "all",

							},

							&cli.BoolFlag{

								Name:  "restricted",

								Usage: "Make a restricted user account",

							},

							&cli.StringFlag{

								Name:  "fullname",

								Usage: `The full, human-readable name of the user`,

							},

						},

						&cli.StringFlag{

							Name:  "username",

							Usage: "Username",

						},

						&cli.StringFlag{

							Name:  "password",

							Usage: "User password",

						},

						&cli.StringFlag{

							Name:  "email",

							Usage: "User email address",

						},

						&cli.BoolFlag{

							Name:  "admin",

							Usage: "User is an admin",

						},

						&cli.BoolFlag{

							Name:  "random-password",

							Usage: "Generate a random password for the user",

						},

						&cli.BoolFlag{

							Name:               "must-change-password",

							Usage:              "Set this option to false to prevent forcing the user to change their password after initial login",

							Value:              true,

							DisableDefaultText: true,

						},

						&cli.IntFlag{

							Name:  "random-password-length",

							Usage: "Length of the random password to be generated",

							Value: 12,

						},

						&cli.BoolFlag{

							Name:  "access-token",

							Usage: "Generate access token for the user",

						},

						&cli.BoolFlag{

							Name:  "restricted",

							Usage: "Make a restricted user account",

						},

					},

					}

				}

				func runCreateUser(c *cli.Context) error {

				func runCreateUser(ctx context.Context, c *cli.Command) error {

					// this command highly depends on the many setting options (create org, visibility, etc.), so it must have a full setting load first

					// duplicate setting loading should be safe at the moment, but it should be refactored & improved in the future.

					setting.LoadSettings()

				@ -93,10 +111,10 @@ func runCreateUser(c *cli.Context) error {

						username = c.String("username")

					} else {

						username = c.String("name")

						_, _ = fmt.Fprintf(c.App.ErrWriter, "--name flag is deprecated. Use --username instead.\n")

						_, _ = fmt.Fprint(c.Root().ErrWriter, "--name flag is deprecated. Use --username instead.\n")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

				@ -150,6 +168,7 @@ func runCreateUser(c *cli.Context) error {

						IsAdmin:            isAdmin,

						MustChangePassword: mustChangePassword,

						Visibility:         visibility,

						FullName:           c.String("fullname"),

					}

					overwriteDefault := &user_model.CreateUserOverwriteOptions{

				@ -157,23 +176,48 @@ func runCreateUser(c *cli.Context) error {

						IsRestricted: restricted,

					}

					var accessTokenName string

					var accessTokenScope auth_model.AccessTokenScope

					if c.IsSet("access-token") {

						accessTokenName = strings.TrimSpace(c.String("access-token-name"))

						if accessTokenName == "" {

							return errors.New("access-token-name cannot be empty")

						}

						var err error

						accessTokenScope, err = auth_model.AccessTokenScope(c.String("access-token-scopes")).Normalize()

						if err != nil {

							return fmt.Errorf("invalid access token scope provided: %w", err)

						}

						if !accessTokenScope.HasPermissionScope() {

							return errors.New("access token does not have any permission")

						}

					} else if c.IsSet("access-token-name") || c.IsSet("access-token-scopes") {

						return errors.New("access-token-name and access-token-scopes flags are only valid when access-token flag is set")

					}

					// arguments should be prepared before creating the user & access token, in case there is anything wrong

					// create the user

					if err := user_model.CreateUser(ctx, u, overwriteDefault); err != nil {

						return fmt.Errorf("CreateUser: %w", err)

					}

					fmt.Printf("New user '%s' has been successfully created!\n", username)

					if c.Bool("access-token") {

					// create the access token

					if accessTokenScope != "" {

						t := &auth_model.AccessToken{

							Name: "gitea-admin",

							UID:  u.ID,

						}

							Name:  accessTokenName,

							UID:   u.ID,

							Scope: accessTokenScope,

							// maintain legacy behaviour until new CLI options are added -- token has access to all resources, is not

							// fine-grained

							ResourceAllRepos: true,

						}

						if err := auth_model.NewAccessToken(ctx, t); err != nil {

							return err

						}

						fmt.Printf("Access token was successfully created... %s\n", t.Token)

					}

					fmt.Printf("New user '%s' has been successfully created!\n", username)

					return nil

				}

									
										56

cmd/admin_user_delete.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"strings"

				@ -12,41 +13,44 @@ import (

					"forgejo.org/modules/storage"

					user_service "forgejo.org/services/user"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserDelete = &cli.Command{

					Name:  "delete",

					Usage: "Delete specific user by id, name or email",

					Flags: []cli.Flag{

						&cli.Int64Flag{

							Name:  "id",

							Usage: "ID of user of the user to delete",

				func microcmdUserDelete() *cli.Command {

					return &cli.Command{

						Name:  "delete",

						Usage: "Delete specific user by id, name or email",

						Flags: []cli.Flag{

							&cli.Int64Flag{

								Name:  "id",

								Usage: "ID of user of the user to delete",

							},

							&cli.StringFlag{

								Name:    "username",

								Aliases: []string{"u"},

								Usage:   "Username of the user to delete",

							},

							&cli.StringFlag{

								Name:    "email",

								Aliases: []string{"e"},

								Usage:   "Email of the user to delete",

							},

							&cli.BoolFlag{

								Name:  "purge",

								Usage: "Purge user, all their repositories, organizations and comments",

							},

						},

						&cli.StringFlag{

							Name:    "username",

							Aliases: []string{"u"},

							Usage:   "Username of the user to delete",

						},

						&cli.StringFlag{

							Name:    "email",

							Aliases: []string{"e"},

							Usage:   "Email of the user to delete",

						},

						&cli.BoolFlag{

							Name:  "purge",

							Usage: "Purge user, all their repositories, organizations and comments",

						},

					},

					Action: runDeleteUser,

						Before: noDanglingArgs,

						Action: runDeleteUser,

					}

				}

				func runDeleteUser(c *cli.Context) error {

				func runDeleteUser(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("id") && !c.IsSet("username") && !c.IsSet("email") {

						return errors.New("You must provide the id, username or email of a user to delete")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

									
										69

cmd/admin_user_generate_access_token.go
									
										View file
										
				@ -4,49 +4,53 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					auth_model "forgejo.org/models/auth"

					user_model "forgejo.org/models/user"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserGenerateAccessToken = &cli.Command{

					Name:  "generate-access-token",

					Usage: "Generate an access token for a specific user",

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:    "username",

							Aliases: []string{"u"},

							Usage:   "Username",

				func microcmdUserGenerateAccessToken() *cli.Command {

					return &cli.Command{

						Name:  "generate-access-token",

						Usage: "Generate an access token for a specific user",

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:    "username",

								Aliases: []string{"u"},

								Usage:   "Username",

							},

							&cli.StringFlag{

								Name:    "token-name",

								Aliases: []string{"t"},

								Usage:   "Token name",

								Value:   "gitea-admin",

							},

							&cli.BoolFlag{

								Name:  "raw",

								Usage: "Display only the token value",

							},

							&cli.StringFlag{

								Name:  "scopes",

								Value: "all",

								Usage: `Comma separated list of scopes to apply to access token, examples: "all", "public-only,read:issue", "write:repository,write:user"`,

							},

						},

						&cli.StringFlag{

							Name:    "token-name",

							Aliases: []string{"t"},

							Usage:   "Token name",

							Value:   "gitea-admin",

						},

						&cli.BoolFlag{

							Name:  "raw",

							Usage: "Display only the token value",

						},

						&cli.StringFlag{

							Name:  "scopes",

							Value: "",

							Usage: "Comma separated list of scopes to apply to access token",

						},

					},

					Action: runGenerateAccessToken,

						Before: noDanglingArgs,

						Action: runGenerateAccessToken,

					}

				}

				func runGenerateAccessToken(c *cli.Context) error {

				func runGenerateAccessToken(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("username") {

						return errors.New("You must provide a username to generate a token for")

						return errors.New("you must provide a username to generate a token for")

					}

					ctx, cancel := installSignals()

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

				@ -77,8 +81,15 @@ func runGenerateAccessToken(c *cli.Context) error {

					if err != nil {

						return fmt.Errorf("invalid access token scope provided: %w", err)

					}

					if !accessTokenScope.HasPermissionScope() {

						return errors.New("access token does not have any permission")

					}

					t.Scope = accessTokenScope

					// maintain legacy behaviour until new CLI options are added -- token has access to all resources, is not

					// fine-grained

					t.ResourceAllRepos = true

					// create the token

					if err := auth_model.NewAccessToken(ctx, t); err != nil {

						return err

									
										269

cmd/admin_user_generate_authorized_integration.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,269 @@

				// Copyright 2026 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: GPL-3.0-or-later

				package cmd

				import (

					"bytes"

					"context"

					"errors"

					"fmt"

					"os"

					"strings"

					auth_model "forgejo.org/models/auth"

					"forgejo.org/models/db"

					"forgejo.org/models/repo"

					user_model "forgejo.org/models/user"

					"forgejo.org/modules/json"

					"forgejo.org/services/authz"

					"github.com/urfave/cli/v3"

				)

				func microcmdUserCreateAuthorizedIntegration() *cli.Command {

					return &cli.Command{

						Name: "create-authorized-integration",

						Description: `Creates an authorized integration. Authorized integrations allow Forgejo to

				receive JWTs from external sources, validate their claims against

				user-defined rules, and grant access to Forgejo's API on behalf of a user.

				The issuer may be set to "urn:forgejo:authorized-integrations:actions"

				to support JWTs from the local instance's Forgejo Actions, utilizing the

				enable-openid-connect flag in a workflow.`,

						// `--claim-in sub=v1,v2,v3` needs to be parsed as a single parameter so that we can comma-split the value into

						// an array.  To accomplish this, we disable urfave 's slice flag separator, which would cause this to be

						// treated as "sub=v1", "v2=?", and "v3=?", resulting in an error of missing values.

						DisableSliceFlagSeparator: true,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:     "username",

								Aliases:  []string{"u"},

								Usage:    "Username",

								Required: true,

							},

							&cli.StringFlag{

								Name:     "name",

								Usage:    "Name of the authorized integration for later identification",

								Required: true,

							},

							&cli.StringFlag{

								Name:  "description",

								Usage: "Optional description for the authorized integration",

							},

							// JWT validation:

							&cli.StringFlag{

								Name:     "issuer",

								Usage:    `JWT issuer ('iss' claim), example: https://forgejo.example.org/api/actions`,

								Required: true,

							},

							&cli.StringMapFlag{

								Name:  "claim-eq",

								Value: map[string]string{},

								Usage: `Zero-or-more claim equality checks, formatted as claim=value, example: "actor=someuser"`,

							},

							&cli.StringMapFlag{

								Name:  "claim-in",

								Value: map[string]string{},

								Usage: `Zero-or-more claim equality in list checks, formatted as claim=value1,value2,... example: "actor=user1,user2"`,

							},

							&cli.StringMapFlag{

								Name:  "claim-glob",

								Value: map[string]string{},

								Usage: `Zero-or-more claim glob checks, formatted as claim=value, example: "sub=repo:forgejo/*:pull_request"`,

							},

							&cli.StringMapFlag{

								Name:  "claim-glob-in",

								Value: map[string]string{},

								Usage: `Zero-or-more claim glob in list checks, formatted as claim=va*ue1,va*ue2,... example: "sub=repo:*/*:pull_request,repo:*/*:refs:*"`,

							},

							// nested claim support omitted for now -- pretty complex for a CLI

							// Permissions available on successful auth:

							&cli.StringSliceFlag{

								Name:  "scope",

								Value: []string{"all"},

								Usage: `One-or-more scopes to apply to access token, examples: "all", "read:issue", "write:repository"`,

							},

							&cli.StringSliceFlag{

								Name:  "repo",

								Value: []string{"all"},

								Usage: `Zero-or-more specific repositories that can be accessed, or "all" to allow access to all repositories, example: "owner1/repo1"`,

							},

						},

						Before: noDanglingArgs,

						Action: runCreateAuthorizedIntegration,

					}

				}

				func runCreateAuthorizedIntegration(ctx context.Context, c *cli.Command) error {

					if !c.IsSet("username") {

						return errors.New("you must provide a username to generate a token for")

					}

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

						return err

					}

					user, err := user_model.GetUserByName(ctx, c.String("username"))

					if err != nil {

						return err

					}

					ai := &auth_model.AuthorizedIntegration{

						UserID:      user.ID,

						Name:        c.String("name"),

						Description: c.String("description"),

					}

					var rules []auth_model.ClaimRule

					ai.Issuer = c.String("issuer")

					for claim, value := range c.StringMap("claim-eq") {

						rules = append(rules, auth_model.ClaimRule{

							Claim:      claim,

							Comparison: auth_model.ClaimEqual,

							Value:      value,

						})

					}

					for claim, value := range c.StringMap("claim-in") {

						values := []string{}

						for s := range strings.SplitSeq(value, ",") {

							values = append(values, strings.TrimSpace(s))

						}

						rules = append(rules, auth_model.ClaimRule{

							Claim:      claim,

							Comparison: auth_model.ClaimIn,

							Values:     values,

						})

					}

					for claim, value := range c.StringMap("claim-glob") {

						rules = append(rules, auth_model.ClaimRule{

							Claim:      claim,

							Comparison: auth_model.ClaimGlob,

							Value:      value,

						})

					}

					for claim, value := range c.StringMap("claim-glob-in") {

						values := []string{}

						for s := range strings.SplitSeq(value, ",") {

							values = append(values, strings.TrimSpace(s))

						}

						rules = append(rules, auth_model.ClaimRule{

							Claim:      claim,

							Comparison: auth_model.ClaimGlobIn,

							Values:     values,

						})

					}

					ai.ClaimRules = &auth_model.ClaimRules{Rules: rules}

					scopes := strings.Join(c.StringSlice("scope"), ",")

					accessTokenScope, err := auth_model.AccessTokenScope(scopes).Normalize()

					if err != nil {

						return fmt.Errorf("invalid access token scope provided: %w", err)

					}

					ai.Scope = accessTokenScope

					allRepos := false

					repos := []*repo.Repository{}

					for _, repoName := range c.StringSlice("repo") {

						if repoName == "all" {

							allRepos = true

						} else {

							split := strings.Split(repoName, "/")

							if len(split) != 2 {

								return fmt.Errorf("invalid repo name: %q", split)

							}

							owner := split[0]

							name := split[1]

							repo, err := repo.GetRepositoryByOwnerAndName(ctx, owner, name)

							if err != nil {

								return err

							}

							repos = append(repos, repo)

						}

					}

					ai.ResourceAllRepos = allRepos

					rr := make([]*auth_model.AuthorizedIntegResourceRepo, len(repos))

					for i := range repos {

						rr[i] = &auth_model.AuthorizedIntegResourceRepo{RepoID: repos[i].ID}

					}

					if err := authz.ValidateAuthorizedIntegration(ai, rr); err != nil {

						return err

					}

					err = db.WithTx(ctx, func(ctx context.Context) error {

						if err := auth_model.InsertAuthorizedIntegration(ctx, ai); err != nil {

							return err

						}

						if !allRepos {

							if err := auth_model.InsertAuthorizedIntegrationResourceRepos(ctx, ai.ID, rr); err != nil {

								return err

							}

						}

						return nil

					})

					if err != nil {

						return err

					}

					type ClaimRuleDescription struct {

						Description string                     `json:"description"`

						Claim       string                     `json:"claim"`

						Comparison  auth_model.ClaimComparison `json:"compare"`

						Value       string                     `json:"value,omitempty"`

						Values      []string                   `json:"values,omitempty"`

					}

					output := struct {

						Message     string                 `json:"message"`

						Name        string                 `json:"name"`

						Description string                 `json:"description,omitempty"`

						Issuer      string                 `json:"issuer"`

						Audience    string                 `json:"audience"`

						ClaimRules  []ClaimRuleDescription `json:"claim_rules"`

					}{

						Message:     "Authorized integration was successfully created.",

						Name:        ai.Name,

						Description: ai.Description,

						Issuer:      ai.Issuer,

						Audience:    ai.Audience,

					}

					for _, cr := range ai.ClaimRules.Rules {

						var description string

						switch cr.Comparison {

						case auth_model.ClaimEqual:

							description = fmt.Sprintf("%q = %q", cr.Claim, cr.Value)

						case auth_model.ClaimIn:

							description = fmt.Sprintf("%q in %q", cr.Claim, cr.Values)

						case auth_model.ClaimGlob:

							description = fmt.Sprintf("%q matches %q", cr.Claim, cr.Value)

						case auth_model.ClaimGlobIn:

							description = fmt.Sprintf("%q matches in %q", cr.Claim, cr.Values)

						}

						output.ClaimRules = append(output.ClaimRules, ClaimRuleDescription{

							Description: description,

							Claim:       cr.Claim,

							Comparison:  cr.Comparison,

							Value:       cr.Value,

							Values:      cr.Values,

						})

					}

					raw, err := json.Marshal(output)

					if err != nil {

						return err

					}

					var indent bytes.Buffer

					if err := json.Indent(&indent, raw, "", "  "); err != nil {

						return err

					}

					os.Stdout.Write(indent.Bytes())

					return nil

				}

									
										32

cmd/admin_user_list.go
									
										View file
										
				@ -4,29 +4,33 @@

				package cmd

				import (

					"context"

					"fmt"

					"os"

					"text/tabwriter"

					user_model "forgejo.org/models/user"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserList = &cli.Command{

					Name:   "list",

					Usage:  "List users",

					Action: runListUsers,

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:  "admin",

							Usage: "List only admin users",

				func microcmdUserList() *cli.Command {

					return &cli.Command{

						Name:   "list",

						Usage:  "List users",

						Before: noDanglingArgs,

						Action: runListUsers,

						Flags: []cli.Flag{

							&cli.BoolFlag{

								Name:  "admin",

								Usage: "List only admin users",

							},

						},

					},

					}

				}

				func runListUsers(c *cli.Context) error {

					ctx, cancel := installSignals()

				func runListUsers(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

				@ -41,7 +45,7 @@ func runListUsers(c *cli.Context) error {

					w := tabwriter.NewWriter(os.Stdout, 5, 0, 1, ' ', 0)

					if c.IsSet("admin") {

						fmt.Fprintf(w, "ID\tUsername\tEmail\tIsActive\n")

						fmt.Fprint(w, "ID\tUsername\tEmail\tIsActive\n")

						for _, u := range users {

							if u.IsAdmin {

								fmt.Fprintf(w, "%d\t%s\t%s\t%t\n", u.ID, u.Name, u.Email, u.IsActive)

				@ -49,7 +53,7 @@ func runListUsers(c *cli.Context) error {

						}

					} else {

						twofa := user_model.UserList(users).GetTwoFaStatus(ctx)

						fmt.Fprintf(w, "ID\tUsername\tEmail\tIsActive\tIsAdmin\t2FA\n")

						fmt.Fprint(w, "ID\tUsername\tEmail\tIsActive\tIsAdmin\t2FA\n")

						for _, u := range users {

							fmt.Fprintf(w, "%d\t%s\t%s\t%t\t%t\t%t\n", u.ID, u.Name, u.Email, u.IsActive, u.IsAdmin, twofa[u.ID])

						}

									
										47

cmd/admin_user_must_change_password.go
									
										View file
										
				@ -4,38 +4,41 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					user_model "forgejo.org/models/user"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				var microcmdUserMustChangePassword = &cli.Command{

					Name:   "must-change-password",

					Usage:  "Set the must change password flag for the provided users or all users",

					Action: runMustChangePassword,

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:    "all",

							Aliases: []string{"A"},

							Usage:   "All users must change password, except those explicitly excluded with --exclude",

				func microcmdUserMustChangePassword() *cli.Command {

					return &cli.Command{

						Name:   "must-change-password",

						Usage:  "Set the must change password flag for the provided users or all users",

						Action: runMustChangePassword,

						Flags: []cli.Flag{

							&cli.BoolFlag{

								Name:    "all",

								Aliases: []string{"A"},

								Usage:   "All users must change password, except those explicitly excluded with --exclude",

							},

							&cli.StringSliceFlag{

								Name:    "exclude",

								Aliases: []string{"e"},

								Usage:   "Do not change the must-change-password flag for these users",

							},

							&cli.BoolFlag{

								Name:  "unset",

								Usage: "Instead of setting the must-change-password flag, unset it",

							},

						},

						&cli.StringSliceFlag{

							Name:    "exclude",

							Aliases: []string{"e"},

							Usage:   "Do not change the must-change-password flag for these users",

						},

						&cli.BoolFlag{

							Name:  "unset",

							Usage: "Instead of setting the must-change-password flag, unset it",

						},

					},

					}

				}

				func runMustChangePassword(c *cli.Context) error {

					ctx, cancel := installSignals()

				func runMustChangePassword(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if c.NArg() == 0 && !c.IsSet("all") {

									
										74

cmd/admin_user_reset_mfa.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,74 @@

				// Copyright 2025 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"context"

					"fmt"

					auth_model "forgejo.org/models/auth"

					user_model "forgejo.org/models/user"

					"github.com/urfave/cli/v3"

				)

				func microcmdUserResetMFA() *cli.Command {

					return &cli.Command{

						Name:   "reset-mfa",

						Usage:  "Remove all two-factor authentication configurations for a user",

						Before: noDanglingArgs,

						Action: runResetMFA,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:    "username",

								Aliases: []string{"u"},

								Value:   "",

								Usage:   "The user to update",

							},

						},

					}

				}

				func runResetMFA(ctx context.Context, c *cli.Command) error {

					if err := argsSet(c, "username"); err != nil {

						return err

					}

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

						return err

					}

					user, err := user_model.GetUserByName(ctx, c.String("username"))

					if err != nil {

						return err

					}

					webAuthnList, err := auth_model.GetWebAuthnCredentialsByUID(ctx, user.ID)

					if err != nil {

						return err

					}

					for _, credential := range webAuthnList {

						if _, err := auth_model.DeleteCredential(ctx, credential.ID, user.ID); err != nil {

							return err

						}

					}

					tfaModes, err := auth_model.GetTwoFactorByUID(ctx, user.ID)

					if err == nil && tfaModes != nil {

						if err := auth_model.DeleteTwoFactorByID(ctx, tfaModes.ID, user.ID); err != nil {

							return err

						}

					} else {

						if _, is := err.(auth_model.ErrTwoFactorNotEnrolled); !is {

							return err

						}

					}

					fmt.Printf("%s's two-factor authentication settings have been removed!\n", user.Name)

					return nil

				}

									
										82

cmd/cert.go
									
										View file
										
				@ -6,6 +6,7 @@

				package cmd

				import (

					"context"

					"crypto/ecdsa"

					"crypto/elliptic"

					"crypto/rand"

				@ -20,47 +21,50 @@ import (

					"strings"

					"time"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				// CmdCert represents the available cert sub-command.

				var CmdCert = &cli.Command{

					Name:  "cert",

					Usage: "Generate self-signed certificate",

					Description: `Generate a self-signed X.509 certificate for a TLS server.

				func cmdCert() *cli.Command {

					return &cli.Command{

						Name:  "cert",

						Usage: "Generate self-signed certificate",

						Description: `Generate a self-signed X.509 certificate for a TLS server.

				Outputs to 'cert.pem' and 'key.pem' and will overwrite existing files.`,

					Action: runCert,

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:  "host",

							Value: "",

							Usage: "Comma-separated hostnames and IPs to generate a certificate for",

						Before: noDanglingArgs,

						Action: runCert,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:  "host",

								Value: "",

								Usage: "Comma-separated hostnames and IPs to generate a certificate for",

							},

							&cli.StringFlag{

								Name:  "ecdsa-curve",

								Value: "",

								Usage: "ECDSA curve to use to generate a key. Valid values are P224, P256, P384, P521",

							},

							&cli.IntFlag{

								Name:  "rsa-bits",

								Value: 3072,

								Usage: "Size of RSA key to generate. Ignored if --ecdsa-curve is set",

							},

							&cli.StringFlag{

								Name:  "start-date",

								Value: "",

								Usage: "Creation date formatted as Jan 1 15:04:05 2011",

							},

							&cli.DurationFlag{

								Name:  "duration",

								Value: 365 * 24 * time.Hour,

								Usage: "Duration that certificate is valid for",

							},

							&cli.BoolFlag{

								Name:  "ca",

								Usage: "whether this cert should be its own Certificate Authority",

							},

						},

						&cli.StringFlag{

							Name:  "ecdsa-curve",

							Value: "",

							Usage: "ECDSA curve to use to generate a key. Valid values are P224, P256, P384, P521",

						},

						&cli.IntFlag{

							Name:  "rsa-bits",

							Value: 3072,

							Usage: "Size of RSA key to generate. Ignored if --ecdsa-curve is set",

						},

						&cli.StringFlag{

							Name:  "start-date",

							Value: "",

							Usage: "Creation date formatted as Jan 1 15:04:05 2011",

						},

						&cli.DurationFlag{

							Name:  "duration",

							Value: 365 * 24 * time.Hour,

							Usage: "Duration that certificate is valid for",

						},

						&cli.BoolFlag{

							Name:  "ca",

							Usage: "whether this cert should be its own Certificate Authority",

						},

					},

					}

				}

				func publicKey(priv any) any {

				@ -89,7 +93,7 @@ func pemBlockForKey(priv any) *pem.Block {

					}

				}

				func runCert(c *cli.Context) error {

				func runCert(ctx context.Context, c *cli.Command) error {

					if err := argsSet(c, "host"); err != nil {

						return err

					}

				@ -146,8 +150,8 @@ func runCert(c *cli.Context) error {

						BasicConstraintsValid: true,

					}

					hosts := strings.Split(c.String("host"), ",")

					for _, h := range hosts {

					hosts := strings.SplitSeq(c.String("host"), ",")

					for h := range hosts {

						if ip := net.ParseIP(h); ip != nil {

							template.IPAddresses = append(template.IPAddresses, ip)

						} else {

									
										75

cmd/cmd.go
									
										View file
										
				@ -1,4 +1,5 @@

				// Copyright 2018 The Gitea Authors. All rights reserved.

				// Copyright 2026 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				// Package cmd provides subcommands to the gitea binary - such as "web" or

				@ -12,6 +13,7 @@ import (

					"io"

					"os"

					"os/signal"

					"slices"

					"strings"

					"syscall"

				@ -20,24 +22,39 @@ import (

					"forgejo.org/modules/setting"

					"forgejo.org/modules/util"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				// argsSet checks that all the required arguments are set. args is a list of

				// arguments that must be set in the passed Context.

				func argsSet(c *cli.Context, args ...string) error {

				func argsSet(c *cli.Command, args ...string) error {

					for _, a := range args {

						if !c.IsSet(a) {

							return errors.New(a + " is not set")

						}

						if util.IsEmptyString(c.String(a)) {

							return errors.New(a + " is required")

						if s, ok := c.Value(a).(string); ok {

							if util.IsEmptyString(s) {

								return errors.New(a + " is required")

							}

						}

					}

					return nil

				}

				// When a CLI command is intended to be used only with flags and no other arbitrary args, noDanglingArgs will validate

				// the end-user's usage.

				func noDanglingArgs(ctx context.Context, c *cli.Command) (context.Context, error) {

					if c.Args().Len() != 0 {

						args := c.Args().Slice()

						if slices.Contains(args, "false") {

							println("Hint: boolean false must be specified as a single arg, eg. '--restricted=false', not '--restricted false'")

						}

						return nil, fmt.Errorf("unexpected arguments: %s", strings.Join(c.Args().Slice(), ", "))

					}

					return nil, nil

				}

				// confirm waits for user input which confirms an action

				func confirm() (bool, error) {

					var response string

				@ -73,26 +90,9 @@ If this is the intended configuration file complete the [database] section.`, se

					return nil

				}

				func installSignals() (context.Context, context.CancelFunc) {

					ctx, cancel := context.WithCancel(context.Background())

					go func() {

						// install notify

						signalChannel := make(chan os.Signal, 1)

						signal.Notify(

							signalChannel,

							syscall.SIGINT,

							syscall.SIGTERM,

						)

						select {

						case <-signalChannel:

						case <-ctx.Done():

						}

						cancel()

						signal.Reset()

					}()

					return ctx, cancel

				// installSignals returns a context that's cancelled on the SIGINT and SIGTERM signals or if the passed ctx is cancelled.

				func installSignals(ctx context.Context) (context.Context, context.CancelFunc) {

					return signal.NotifyContext(ctx, syscall.SIGINT, syscall.SIGTERM)

				}

				func setupConsoleLogger(level log.Level, colorize bool, out io.Writer) {

				@ -109,7 +109,7 @@ func setupConsoleLogger(level log.Level, colorize bool, out io.Writer) {

					log.GetManager().GetLogger(log.DEFAULT).ReplaceAllWriters(writer)

				}

				func globalBool(c *cli.Context, name string) bool {

				func globalBool(c *cli.Command, name string) bool {

					for _, ctx := range c.Lineage() {

						if ctx.Bool(name) {

							return true

				@ -120,16 +120,31 @@ func globalBool(c *cli.Context, name string) bool {

				// PrepareConsoleLoggerLevel by default, use INFO level for console logger, but some sub-commands (for git/ssh protocol) shouldn't output any log to stdout.

				// Any log appears in git stdout pipe will break the git protocol, eg: client can't push and hangs forever.

				func PrepareConsoleLoggerLevel(defaultLevel log.Level) func(*cli.Context) error {

					return func(c *cli.Context) error {

				func PrepareConsoleLoggerLevel(defaultLevel log.Level) func(ctx context.Context, cli *cli.Command) (context.Context, error) {

					return func(ctx context.Context, cli *cli.Command) (context.Context, error) {

						level := defaultLevel

						if globalBool(c, "quiet") {

						if globalBool(cli, "quiet") {

							level = log.FATAL

						}

						if globalBool(c, "debug") || globalBool(c, "verbose") {

						if globalBool(cli, "debug") || globalBool(cli, "verbose") {

							level = log.TRACE

						}

						log.SetConsoleLogger(log.DEFAULT, "console-default", level)

						return nil

						return ctx, nil

					}

				}

				func multipleBefore(beforeFuncs ...cli.BeforeFunc) cli.BeforeFunc {

					return func(ctx context.Context, cli *cli.Command) (context.Context, error) {

						for _, beforeFunc := range beforeFuncs {

							bctx, err := beforeFunc(ctx, cli)

							if err != nil {

								return bctx, err

							}

							if bctx != nil {

								ctx = bctx

							}

						}

						return ctx, nil

					}

				}

									
										39

cmd/cmd_test.go
									
										Normal file
									
										View file
										
				@ -0,0 +1,39 @@

				// Copyright 2026 The Forgejo Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"context"

					"fmt"

					"runtime"

					"syscall"

					"testing"

					"time"

				)

				func Test_installSignals(t *testing.T) {

					if runtime.GOOS == "windows" {

						t.Skipf("Windows does not terminate in an awaitable manner")

						return

					}

					for _, s := range []syscall.Signal{syscall.SIGTERM, syscall.SIGINT} {

						t.Run(fmt.Sprintf("Context is terminated on %s", s), func(t *testing.T) {

							// Register the signal handler. context.Background() is chosen deliberately,

							// because unlike t.Context(), we can be sure that it's not cancelled by a

							// different handler.

							ctx, cancel := installSignals(context.Background())

							t.Cleanup(cancel)

							// Send the signal in the background.

							go syscall.Kill(syscall.Getpid(), s)

							select {

							case <-time.Tick(time.Second * 10):

								t.Fatalf("Context not cancelled via signal after 10 seconds")

							case <-ctx.Done():

								t.Logf("Context was cancelled")

							}

						})

					}

				}

									
										65

cmd/docs.go
									
										View file
									
				@ -1,65 +0,0 @@

				// Copyright 2020 The Gitea Authors. All rights reserved.

				// SPDX-License-Identifier: MIT

				package cmd

				import (

					"fmt"

					"os"

					"strings"

					"github.com/urfave/cli/v2"

				)

				// CmdDocs represents the available docs sub-command.

				var CmdDocs = &cli.Command{

					Name:        "docs",

					Usage:       "Output CLI documentation",

					Description: "A command to output Forgejo's CLI documentation, optionally to a file.",

					Action:      runDocs,

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:  "man",

							Usage: "Output man pages instead",

						},

						&cli.StringFlag{

							Name:    "output",

							Aliases: []string{"o"},

							Usage:   "Path to output to instead of stdout (will overwrite if exists)",

						},

					},

				}

				func runDocs(ctx *cli.Context) error {

					docs, err := ctx.App.ToMarkdown()

					if ctx.Bool("man") {

						docs, err = ctx.App.ToMan()

					}

					if err != nil {

						return err

					}

					if !ctx.Bool("man") {

						// Clean up markdown. The following bug was fixed in v2, but is present in v1.

						// It affects markdown output (even though the issue is referring to man pages)

						// https://github.com/urfave/cli/issues/1040

						firstHashtagIndex := strings.Index(docs, "#")

						if firstHashtagIndex > 0 {

							docs = docs[firstHashtagIndex:]

						}

					}

					out := os.Stdout

					if ctx.String("output") != "" {

						fi, err := os.Create(ctx.String("output"))

						if err != nil {

							return err

						}

						defer fi.Close()

						out = fi

					}

					_, err = fmt.Fprintln(out, docs)

					return err

				}

									
										321

cmd/doctor.go
									
										View file
										
				@ -4,7 +4,10 @@

				package cmd

				import (

					"context"

					"fmt"

					"image"

					"io"

					golog "log"

					"os"

					"path/filepath"

				@ -13,91 +16,112 @@ import (

					"forgejo.org/models/db"

					git_model "forgejo.org/models/git"

					"forgejo.org/models/migrations"

					migrate_base "forgejo.org/models/migrations/base"

					"forgejo.org/models/gitea_migrations"

					migrate_base "forgejo.org/models/gitea_migrations/base"

					repo_model "forgejo.org/models/repo"

					user_model "forgejo.org/models/user"

					"forgejo.org/modules/container"

					"forgejo.org/modules/log"

					"forgejo.org/modules/setting"

					"forgejo.org/modules/storage"

					"forgejo.org/services/doctor"

					"github.com/urfave/cli/v2"

					"xorm.io/xorm"

					exif_terminator "code.superseriousbusiness.org/exif-terminator"

					"github.com/urfave/cli/v3"

				)

				// CmdDoctor represents the available doctor sub-command.

				var CmdDoctor = &cli.Command{

					Name:        "doctor",

					Usage:       "Diagnose and optionally fix problems, convert or re-create database tables",

					Description: "A command to diagnose problems with the current Forgejo instance according to the given configuration. Some problems can optionally be fixed by modifying the database or data storage.",

				func cmdDoctor() *cli.Command {

					return &cli.Command{

						Name:        "doctor",

						Usage:       "Diagnose and optionally fix problems, convert or re-create database tables",

						Description: "A command to diagnose problems with the current Forgejo instance according to the given configuration. Some problems can optionally be fixed by modifying the database or data storage.",

					Subcommands: []*cli.Command{

						cmdDoctorCheck,

						cmdRecreateTable,

						cmdDoctorConvert,

						cmdCleanupCommitStatuses,

					},

						Commands: []*cli.Command{

							cmdDoctorCheck(),

							cmdRecreateTable(),

							cmdDoctorConvert(),

							cmdAvatarStripExif(),

							cmdCleanupCommitStatuses(),

						},

					}

				}

				var cmdDoctorCheck = &cli.Command{

					Name:        "check",

					Usage:       "Diagnose and optionally fix problems",

					Description: "A command to diagnose problems with the current Forgejo instance according to the given configuration. Some problems can optionally be fixed by modifying the database or data storage.",

					Action:      runDoctorCheck,

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:  "list",

							Usage: "List the available checks",

				func cmdDoctorCheck() *cli.Command {

					return &cli.Command{

						Name:        "check",

						Usage:       "Diagnose and optionally fix problems",

						Description: "A command to diagnose problems with the current Forgejo instance according to the given configuration. Some problems can optionally be fixed by modifying the database or data storage.",

						Before:      noDanglingArgs,

						Action:      runDoctorCheck,

						Flags: []cli.Flag{

							&cli.BoolFlag{

								Name:  "list",

								Usage: "List the available checks",

							},

							&cli.BoolFlag{

								Name:  "default",

								Usage: "Run the default checks (if neither --run or --all is set, this is the default behaviour)",

							},

							&cli.StringSliceFlag{

								Name:  "run",

								Usage: "Run the provided checks - (if --default is set, the default checks will also run)",

							},

							&cli.BoolFlag{

								Name:  "all",

								Usage: "Run all the available checks",

							},

							&cli.BoolFlag{

								Name:  "fix",

								Usage: "Automatically fix what we can",

							},

							&cli.StringFlag{

								Name:  "log-file",

								Usage: `Name of the log file (no verbose log output by default). Set to "-" to output to stdout`,

							},

							&cli.BoolFlag{

								Name:    "color",

								Aliases: []string{"H"},

								Usage:   "Use color for outputted information",

							},

						},

						&cli.BoolFlag{

							Name:  "default",

							Usage: "Run the default checks (if neither --run or --all is set, this is the default behaviour)",

						},

						&cli.StringSliceFlag{

							Name:  "run",

							Usage: "Run the provided checks - (if --default is set, the default checks will also run)",

						},

						&cli.BoolFlag{

							Name:  "all",

							Usage: "Run all the available checks",

						},

						&cli.BoolFlag{

							Name:  "fix",

							Usage: "Automatically fix what we can",

						},

						&cli.StringFlag{

							Name:  "log-file",

							Usage: `Name of the log file (no verbose log output by default). Set to "-" to output to stdout`,

						},

						&cli.BoolFlag{

							Name:    "color",

							Aliases: []string{"H"},

							Usage:   "Use color for outputted information",

						},

					},

					}

				}

				var cmdRecreateTable = &cli.Command{

					Name:      "recreate-table",

					Usage:     "Recreate tables from XORM definitions and copy the data.",

					ArgsUsage: "[TABLE]... : (TABLEs to recreate - leave blank for all)",

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:  "debug",

							Usage: "Print SQL commands sent",

				func cmdRecreateTable() *cli.Command {

					return &cli.Command{

						Name:      "recreate-table",

						Usage:     "Recreate tables from XORM definitions and copy the data.",

						ArgsUsage: "[TABLE]... : (TABLEs to recreate - leave blank for all)",

						Flags: []cli.Flag{

							&cli.BoolFlag{

								Name:  "debug",

								Usage: "Print SQL commands sent",

							},

						},

					},

					Description: `The database definitions Forgejo uses change across versions, sometimes changing default values and leaving old unused columns.

						Description: `The database definitions Forgejo uses change across versions, sometimes changing default values and leaving old unused columns.

				This command will cause Xorm to recreate tables, copying over the data and deleting the old table.

				You should back-up your database before doing this and ensure that your database is up-to-date first.`,

					Action: runRecreateTable,

						Action: runRecreateTable,

					}

				}

				var cmdCleanupCommitStatuses = &cli.Command{

					Name:  "cleanup-commit-status",

					Usage: "Cleanup extra records in commit_status table",

					Description: `Forgejo suffered from a bug which caused the creation of more entries in the

				func cmdAvatarStripExif() *cli.Command {

					return &cli.Command{

						Name:   "avatar-strip-exif",

						Usage:  "Strip EXIF metadata from all images in the avatar storage",

						Before: noDanglingArgs,

						Action: runAvatarStripExif,

					}

				}

				func cmdCleanupCommitStatuses() *cli.Command {

					return &cli.Command{

						Name:  "cleanup-commit-status",

						Usage: "Cleanup extra records in commit_status table",

						Description: `Forgejo suffered from a bug which caused the creation of more entries in the

				"commit_status" table than necessary. This operation removes the redundant

				data caused by the bug. Removing this data is almost always safe.

				These redundant records can be accessed by users through the API, making it

				@ -113,35 +137,36 @@ memory is required for every 100,000 records in the buffer.

				Bug reference: https://codeberg.org/forgejo/forgejo/issues/10671

				`,

					Before: PrepareConsoleLoggerLevel(log.INFO),

					Action: runCleanupCommitStatus,

					Flags: []cli.Flag{

						&cli.BoolFlag{

							Name:    "verbose",

							Aliases: []string{"V"},

							Usage:   "Show process details",

						Before: multipleBefore(noDanglingArgs, PrepareConsoleLoggerLevel(log.INFO)),

						Action: runCleanupCommitStatus,

						Flags: []cli.Flag{

							&cli.BoolFlag{

								Name:    "verbose",

								Aliases: []string{"V"},

								Usage:   "Show process details",

							},

							&cli.BoolFlag{

								Name:  "dry-run",

								Usage: "Report statistics from the operation but do not modify the database",

							},

							&cli.IntFlag{

								Name:  "buffer-size",

								Usage: "Record count per query while iterating records; larger values are typically faster but use more memory",

								// See IterateByKeyset's documentation for performance notes which led to the choice of the default

								// buffer size for this operation.

								Value: 100000,

							},

							&cli.IntFlag{

								Name:  "delete-chunk-size",

								Usage: "Number of records to delete per DELETE query",

								Value: 1000,

							},

						},

						&cli.BoolFlag{

							Name:  "dry-run",

							Usage: "Report statistics from the operation but do not modify the database",

						},

						&cli.IntFlag{

							Name:  "buffer-size",

							Usage: "Record count per query while iterating records; larger values are typically faster but use more memory",

							// See IterateByKeyset's documentation for performance notes which led to the choice of the default

							// buffer size for this operation.

							Value: 100000,

						},

						&cli.IntFlag{

							Name:  "delete-chunk-size",

							Usage: "Number of records to delete per DELETE query",

							Value: 1000,

						},

					},

					}

				}

				func runRecreateTable(ctx *cli.Context) error {

					stdCtx, cancel := installSignals()

				func runRecreateTable(stdCtx context.Context, ctx *cli.Command) error {

					stdCtx, cancel := installSignals(stdCtx)

					defer cancel()

					// Redirect the default golog to here

				@ -168,7 +193,7 @@ func runRecreateTable(ctx *cli.Context) error {

					args := ctx.Args()

					names := make([]string, 0, ctx.NArg())

					for i := 0; i < ctx.NArg(); i++ {

					for i := range ctx.NArg() {

						names = append(names, args.Get(i))

					}

				@ -178,24 +203,31 @@ func runRecreateTable(ctx *cli.Context) error {

					}

					recreateTables := migrate_base.RecreateTables(beans...)

					return db.InitEngineWithMigration(stdCtx, func(x *xorm.Engine) error {

						if err := migrations.EnsureUpToDate(x); err != nil {

					return db.InitEngineWithMigration(stdCtx, func(x db.Engine) error {

						engine, err := db.GetMasterEngine(x)

						if err != nil {

							return err

						}

						return recreateTables(x)

						if err := gitea_migrations.EnsureUpToDate(engine); err != nil {

							return err

						}

						return recreateTables(engine)

					})

				}

				func setupDoctorDefaultLogger(ctx *cli.Context, colorize bool) {

				func setupDoctorDefaultLogger(ctx *cli.Command, colorize bool) {

					// Silence the default loggers

					setupConsoleLogger(log.FATAL, log.CanColorStderr, os.Stderr)

					logFile := ctx.String("log-file")

					if logFile == "" {

					switch logFile {

					case "":

						return // if no doctor log-file is set, do not show any log from default logger

					} else if logFile == "-" {

					case "-":

						setupConsoleLogger(log.TRACE, colorize, os.Stdout)

					} else {

					default:

						logFile, _ = filepath.Abs(logFile)

						writeMode := log.WriterMode{Level: log.TRACE, WriterOption: log.WriterFileOption{FileName: logFile}}

						writer, err := log.NewEventWriter("console-to-file", "file", writeMode)

				@ -207,8 +239,8 @@ func setupDoctorDefaultLogger(ctx *cli.Context, colorize bool) {

					}

				}

				func runDoctorCheck(ctx *cli.Context) error {

					stdCtx, cancel := installSignals()

				func runDoctorCheck(stdCtx context.Context, ctx *cli.Command) error {

					stdCtx, cancel := installSignals(stdCtx)

					defer cancel()

					colorize := log.CanColorStdout

				@ -266,18 +298,93 @@ func runDoctorCheck(ctx *cli.Context) error {

					return doctor.RunChecks(stdCtx, colorize, ctx.Bool("fix"), checks)

				}

				func runCleanupCommitStatus(ctx *cli.Context) error {

					stdCtx, cancel := installSignals()

				func runAvatarStripExif(ctx context.Context, c *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(stdCtx); err != nil {

					if err := initDB(ctx); err != nil {

						return err

					}

					if err := storage.Init(); err != nil {

						return err

					}

					bufferSize := ctx.Int("buffer-size")

					deleteChunkSize := ctx.Int("delete-chunk-size")

					dryRun := ctx.Bool("dry-run")

					type HasCustomAvatarRelativePath interface {

						CustomAvatarRelativePath() string

					}

					doExifStrip := func(obj HasCustomAvatarRelativePath, name string, target_storage storage.ObjectStorage) error {

						if obj.CustomAvatarRelativePath() == "" {

							return nil

						}

						log.Info("Stripping avatar for %s...", name)

						avatarFile, err := target_storage.Open(obj.CustomAvatarRelativePath())

						if err != nil {

							return fmt.Errorf("storage.Avatars.Open: %w", err)

						}

						_, imgType, err := image.DecodeConfig(avatarFile)

						if err != nil {

							return fmt.Errorf("image.DecodeConfig: %w", err)

						}

						// reset io.Reader for exif termination scan

						_, err = avatarFile.Seek(0, io.SeekStart)

						if err != nil {

							return fmt.Errorf("avatarFile.Seek: %w", err)

						}

						cleanedData, err := exif_terminator.Terminate(avatarFile, imgType)

						if err != nil && strings.Contains(err.Error(), "cannot be processed") {

							// expected error for an image type that isn't supported by exif_terminator

							log.Info("... image type %s is not supported by exif_terminator, skipping.", imgType)

							return nil

						} else if err != nil {

							return fmt.Errorf("error cleaning exif data: %w", err)

						}

						if err := storage.SaveFrom(target_storage, obj.CustomAvatarRelativePath(), func(w io.Writer) error {

							_, err := io.Copy(w, cleanedData)

							return err

						}); err != nil {

							return fmt.Errorf("Failed to create dir %s: %w", obj.CustomAvatarRelativePath(), err)

						}

						log.Info("... completed %s.", name)

						return nil

					}

					err := db.Iterate(ctx, nil, func(ctx context.Context, user *user_model.User) error {

						return doExifStrip(user, fmt.Sprintf("user %s", user.Name), storage.Avatars)

					})

					if err != nil {

						return err

					}

					err = db.Iterate(ctx, nil, func(ctx context.Context, repo *repo_model.Repository) error {

						return doExifStrip(repo, fmt.Sprintf("repo %s", repo.Name), storage.RepoAvatars)

					})

					if err != nil {

						return err

					}

					return nil

				}

				func runCleanupCommitStatus(ctx context.Context, cli *cli.Command) error {

					ctx, cancel := installSignals(ctx)

					defer cancel()

					if err := initDB(ctx); err != nil {

						return err

					}

					bufferSize := cli.Int("buffer-size")

					deleteChunkSize := cli.Int("delete-chunk-size")

					dryRun := cli.Bool("dry-run")

					log.Debug("bufferSize = %d, deleteChunkSize = %d, dryRun = %v", bufferSize, deleteChunkSize, dryRun)

					return git_model.CleanupCommitStatus(stdCtx, bufferSize, deleteChunkSize, dryRun)

					return git_model.CleanupCommitStatus(ctx, bufferSize, deleteChunkSize, dryRun)

				}

									
										20

cmd/doctor_convert.go
									
										View file
										
				@ -4,25 +4,29 @@

				package cmd

				import (

					"context"

					"fmt"

					"forgejo.org/models/db"

					"forgejo.org/modules/log"

					"forgejo.org/modules/setting"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				// cmdDoctorConvert represents the available convert sub-command.

				var cmdDoctorConvert = &cli.Command{

					Name:        "convert",

					Usage:       "Convert the database",

					Description: "A command to convert an existing MySQL database from utf8 to utf8mb4",

					Action:      runDoctorConvert,

				func cmdDoctorConvert() *cli.Command {

					return &cli.Command{

						Name:        "convert",

						Usage:       "Convert the database",

						Description: "A command to convert an existing MySQL database from utf8 to utf8mb4",

						Before:      noDanglingArgs,

						Action:      runDoctorConvert,

					}

				}

				func runDoctorConvert(ctx *cli.Context) error {

					stdCtx, cancel := installSignals()

				func runDoctorConvert(stdCtx context.Context, ctx *cli.Command) error {

					stdCtx, cancel := installSignals(stdCtx)

					defer cancel()

					if err := initDB(stdCtx); err != nil {

									
										12

cmd/doctor_test.go
									
										View file
										
				@ -11,7 +11,7 @@ import (

					"forgejo.org/services/doctor"

					"github.com/stretchr/testify/require"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				func TestDoctorRun(t *testing.T) {

				@ -22,12 +22,12 @@ func TestDoctorRun(t *testing.T) {

						SkipDatabaseInitialization: true,

					})

					app := cli.NewApp()

					app.Commands = []*cli.Command{cmdDoctorCheck}

					err := app.Run([]string{"./gitea", "check", "--run", "test-check"})

					app := cli.Command{}

					app.Commands = []*cli.Command{cmdDoctorCheck()}

					err := app.Run(t.Context(), []string{"./gitea", "check", "--run", "test-check"})

					require.NoError(t, err)

					err = app.Run([]string{"./gitea", "check", "--run", "no-such"})

					err = app.Run(t.Context(), []string{"./gitea", "check", "--run", "no-such"})

					require.ErrorContains(t, err, `unknown checks: "no-such"`)

					err = app.Run([]string{"./gitea", "check", "--run", "test-check,no-such"})

					err = app.Run(t.Context(), []string{"./gitea", "check", "--run", "test-check,no-such"})

					require.ErrorContains(t, err, `unknown checks: "no-such"`)

				}

									
										210

cmd/dump.go
									
										View file
										
				@ -5,11 +5,14 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"io/fs"

					"os"

					"path"

					"path/filepath"

					"slices"

					"strings"

					"sync"

					"time"

				@ -23,7 +26,7 @@ import (

					"code.forgejo.org/go-chi/session"

					"github.com/mholt/archives"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				func addObject(archiveJobs chan archives.ArchiveAsyncJob, object fs.File, customName string, verbose bool) error {

				@ -81,16 +84,18 @@ func (o outputType) Join() string {

				}

				func (o *outputType) Set(value string) error {

					for _, enum := range o.Enum {

						if enum == value {

							o.selected = value

							return nil

						}

					if slices.Contains(o.Enum, value) {

						o.selected = value

						return nil

					}

					return fmt.Errorf("allowed values are %s", o.Join())

				}

				func (o *outputType) Get() any {

					return o.String()

				}

				func (o outputType) String() string {

					if o.selected == "" {

						return o.Default

				@ -107,7 +112,10 @@ func getArchiverByType(outType string) (archives.ArchiverAsync, error) {

					var archiver archives.ArchiverAsync

					switch outType {

					case "zip":

						archiver = archives.Zip{}

						archiver = archives.Zip{

							Compression:          8,

							SelectiveCompression: false,

						}

					case "tar":

						archiver = archives.Tar{}

					case "tar.sz":

				@ -152,80 +160,82 @@ func getArchiverByType(outType string) (archives.ArchiverAsync, error) {

				}

				// CmdDump represents the available dump sub-command.

				var CmdDump = &cli.Command{

					Name:  "dump",

					Usage: "Dump Forgejo files and database",

					Description: `Dump compresses all related files and database into zip file.

				func cmdDump() *cli.Command {

					return &cli.Command{

						Name:  "dump",

						Usage: "Dump Forgejo files and database",

						Description: `Dump compresses all related files and database into zip file.

				It can be used for backup and capture Forgejo server image to send to maintainer`,

					Action: runDump,

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:    "file",

							Aliases: []string{"f"},

							Value:   fmt.Sprintf("forgejo-dump-%d.zip", time.Now().Unix()),

							Usage:   "Name of the dump file which will be created. Supply '-' for stdout. See type for available types.",

						Before: noDanglingArgs,

						Action: runDump,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:    "file",

								Aliases: []string{"f"},

								Value:   fmt.Sprintf("forgejo-dump-%d.zip", time.Now().Unix()),

								Usage:   "Name of the dump file which will be created. Supply '-' for stdout. See type for available types.",

							},

							&cli.BoolFlag{

								Name:    "verbose",

								Aliases: []string{"V"},

								Usage:   "Show process details",

							},

							&cli.BoolFlag{

								Name:    "quiet",

								Aliases: []string{"q"},

								Usage:   "Only display warnings and errors",

							},

							&cli.StringFlag{

								Name:    "tempdir",

								Aliases: []string{"t"},

								Usage:   "Temporary dir path",

							},

							&cli.StringFlag{

								Name:    "database",

								Aliases: []string{"d"},

								Usage:   "Specify the database SQL syntax: sqlite3, mysql, postgres",

							},

							&cli.BoolFlag{

								Name:    "skip-repository",

								Aliases: []string{"R"},

								Usage:   "Skip repositories",

							},

							&cli.BoolFlag{

								Name:    "skip-log",

								Aliases: []string{"L"},

								Usage:   "Skip logs",

							},

							&cli.BoolFlag{

								Name:  "skip-custom-dir",

								Usage: "Skip custom directory",

							},

							&cli.BoolFlag{

								Name:  "skip-lfs-data",

								Usage: "Skip LFS data",

							},

							&cli.BoolFlag{

								Name:  "skip-attachment-data",

								Usage: "Skip attachment data",

							},

							&cli.BoolFlag{

								Name:  "skip-package-data",

								Usage: "Skip package data",

							},

							&cli.BoolFlag{

								Name:  "skip-index",

								Usage: "Skip bleve index data",

							},

							&cli.BoolFlag{

								Name:  "skip-repo-archives",

								Usage: "Skip repository archives",

							},

							&cli.GenericFlag{

								Name:  "type",

								Value: outputTypeEnum,

								Usage: fmt.Sprintf("Dump output format: %s", outputTypeEnum.Join()),

							},

						},

						&cli.BoolFlag{

							Name:    "verbose",

							Aliases: []string{"V"},

							Usage:   "Show process details",

						},

						&cli.BoolFlag{

							Name:    "quiet",

							Aliases: []string{"q"},

							Usage:   "Only display warnings and errors",

						},

						&cli.StringFlag{

							Name:    "tempdir",

							Aliases: []string{"t"},

							Value:   os.TempDir(),

							Usage:   "Temporary dir path",

						},

						&cli.StringFlag{

							Name:    "database",

							Aliases: []string{"d"},

							Usage:   "Specify the database SQL syntax: sqlite3, mysql, postgres",

						},

						&cli.BoolFlag{

							Name:    "skip-repository",

							Aliases: []string{"R"},

							Usage:   "Skip repositories",

						},

						&cli.BoolFlag{

							Name:    "skip-log",

							Aliases: []string{"L"},

							Usage:   "Skip logs",

						},

						&cli.BoolFlag{

							Name:  "skip-custom-dir",

							Usage: "Skip custom directory",

						},

						&cli.BoolFlag{

							Name:  "skip-lfs-data",

							Usage: "Skip LFS data",

						},

						&cli.BoolFlag{

							Name:  "skip-attachment-data",

							Usage: "Skip attachment data",

						},

						&cli.BoolFlag{

							Name:  "skip-package-data",

							Usage: "Skip package data",

						},

						&cli.BoolFlag{

							Name:  "skip-index",

							Usage: "Skip bleve index data",

						},

						&cli.BoolFlag{

							Name:  "skip-repo-archives",

							Usage: "Skip repository archives",

						},

						&cli.GenericFlag{

							Name:  "type",

							Value: outputTypeEnum,

							Usage: fmt.Sprintf("Dump output format: %s", outputTypeEnum.Join()),

						},

					},

					}

				}

				func fatal(format string, args ...any) {

				@ -233,7 +243,7 @@ func fatal(format string, args ...any) {

					log.Fatal(format, args...)

				}

				func runDump(ctx *cli.Context) error {

				func runDump(stdCtx context.Context, ctx *cli.Command) error {

					var file *os.File

					fileName := ctx.String("file")

					outType := ctx.String("type")

				@ -242,8 +252,8 @@ func runDump(ctx *cli.Context) error {

						setupConsoleLogger(log.FATAL, log.CanColorStderr, os.Stderr)

					} else {

						for _, suffix := range outputTypeEnum.Enum {

							if strings.HasSuffix(fileName, "."+suffix) {

								fileName = strings.TrimSuffix(fileName, "."+suffix)

							if before, ok := strings.CutSuffix(fileName, "."+suffix); ok {

								fileName = before

								break

							}

						}

				@ -269,16 +279,16 @@ func runDump(ctx *cli.Context) error {

					if !setting.InstallLock {

						log.Error("Is '%s' really the right config path?\n", setting.CustomConf)

						return fmt.Errorf("forgejo is not initialized")

						return errors.New("forgejo is not initialized")

					}

					setting.LoadSettings() // cannot access session settings otherwise

					verbose := ctx.Bool("verbose")

					if verbose && ctx.Bool("quiet") {

						return fmt.Errorf("--quiet and --verbose cannot both be set")

						return errors.New("--quiet and --verbose cannot both be set")

					}

					stdCtx, cancel := installSignals()

					stdCtx, cancel := installSignals(stdCtx)

					defer cancel()

					err := db.InitEngine(stdCtx)

				@ -322,14 +332,12 @@ func runDump(ctx *cli.Context) error {

					go dumpDatabase(ctx, archiveJobs, &wg, verbose)

					if len(setting.CustomConf) > 0 {

						wg.Add(1)

						go func() {

							defer wg.Done()

						wg.Go(func() {

							log.Info("Adding custom configuration file from %s", setting.CustomConf)

							if err := addFile(archiveJobs, "app.ini", setting.CustomConf, verbose); err != nil {

								fatal("Failed to include specified app.ini: %v", err)

							}

						}()

						})

					}

					if ctx.IsSet("skip-custom-dir") && ctx.Bool("skip-custom-dir") {

				@ -353,15 +361,13 @@ func runDump(ctx *cli.Context) error {

					if ctx.IsSet("skip-attachment-data") && ctx.Bool("skip-attachment-data") {

						log.Info("Skipping attachment data")

					} else {

						wg.Add(1)

						go func() {

							defer wg.Done()

						wg.Go(func() {

							if err := storage.Attachments.IterateObjects("", func(objPath string, object storage.Object) error {

								return addObject(archiveJobs, object, path.Join("data", "attachments", objPath), verbose)

							}); err != nil {

								fatal("Failed to dump attachments: %v", err)

							}

						}()

						})

					}

					if ctx.IsSet("skip-package-data") && ctx.Bool("skip-package-data") {

				@ -369,15 +375,13 @@ func runDump(ctx *cli.Context) error {

					} else if !setting.Packages.Enabled {

						log.Info("Package registry not enabled - skipping")

					} else {

						wg.Add(1)

						go func() {

							defer wg.Done()

						wg.Go(func() {

							if err := storage.Packages.IterateObjects("", func(objPath string, object storage.Object) error {

								return addObject(archiveJobs, object, path.Join("data", "packages", objPath), verbose)

							}); err != nil {

								fatal("Failed to dump packages: %v", err)

							}

						}()

						})

					}

					// Doesn't check if LogRootPath exists before processing --skip-log intentionally,

				@ -391,13 +395,11 @@ func runDump(ctx *cli.Context) error {

							log.Error("Failed to check if %s exists: %v", setting.Log.RootPath, err)

						}

						if isExist {

							wg.Add(1)

							go func() {

								defer wg.Done()

							wg.Go(func() {

								if err := addRecursiveExclude(archiveJobs, "log", setting.Log.RootPath, []string{absFileName}, verbose); err != nil {

									fatal("Failed to include log: %v", err)

								}

							}()

							})

						}

					}

				@ -427,7 +429,7 @@ func runDump(ctx *cli.Context) error {

					return nil

				}

				func dumpData(ctx *cli.Context, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, absFileName string, verbose bool) {

				func dumpData(ctx *cli.Command, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, absFileName string, verbose bool) {

					defer wg.Done()

					var excludes []string

				@ -478,7 +480,7 @@ func dumpCustom(archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, a

					}

				}

				func dumpDatabase(ctx *cli.Context, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, verbose bool) {

				func dumpDatabase(ctx *cli.Command, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, verbose bool) {

					defer wg.Done()

					var err error

				@ -527,7 +529,7 @@ func dumpDatabase(ctx *cli.Context, archiveJobs chan archives.ArchiveAsyncJob, w

					}

				}

				func dumpRepos(ctx *cli.Context, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, absFileName string, verbose bool) {

				func dumpRepos(ctx *cli.Command, archiveJobs chan archives.ArchiveAsyncJob, wg *sync.WaitGroup, absFileName string, verbose bool) {

					defer wg.Done()

					if err := addRecursiveExclude(archiveJobs, "repos", setting.RepoRootPath, []string{absFileName}, verbose); err != nil {

									
										122

cmd/dump_repo.go
									
										View file
										
				@ -19,68 +19,76 @@ import (

					"forgejo.org/services/convert"

					"forgejo.org/services/migrations"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				// CmdDumpRepository represents the available dump repository sub-command.

				var CmdDumpRepository = &cli.Command{

					Name:        "dump-repo",

					Usage:       "Dump the repository from git/github/gitea/gitlab",

					Description: "This is a command for dumping the repository data.",

					Action:      runDumpRepository,

					Flags: []cli.Flag{

						&cli.StringFlag{

							Name:  "git_service",

							Value: "",

							Usage: "Git service, git, github, gitea, gitlab. If clone_addr could be recognized, this could be ignored.",

						},

						&cli.StringFlag{

							Name:    "repo_dir",

							Aliases: []string{"r"},

							Value:   "./data",

							Usage:   "Repository dir path to store the data",

						},

						&cli.StringFlag{

							Name:  "clone_addr",

							Value: "",

							Usage: "The URL will be clone, currently could be a git/github/gitea/gitlab http/https URL",

						},

						&cli.StringFlag{

							Name:  "auth_username",

							Value: "",

							Usage: "The username to visit the clone_addr",

						},

						&cli.StringFlag{

							Name:  "auth_password",

							Value: "",

							Usage: "The password to visit the clone_addr",

						},

						&cli.StringFlag{

							Name:  "auth_token",

							Value: "",

							Usage: "The personal token to visit the clone_addr",

						},

						&cli.StringFlag{

							Name:  "owner_name",

							Value: "",

							Usage: "The data will be stored on a directory with owner name if not empty",

						},

						&cli.StringFlag{

							Name:  "repo_name",

							Value: "",

							Usage: "The data will be stored on a directory with repository name if not empty",

						},

						&cli.StringFlag{

							Name:  "units",

							Value: "",

							Usage: `Which items will be migrated, one or more units should be separated as comma.

				func cmdDumpRepository() *cli.Command {

					return &cli.Command{

						Name:        "dump-repo",

						Usage:       "Dump the repository from git/github/gitea/gitlab",

						Description: "This is a command for dumping the repository data.",

						Before:      noDanglingArgs,

						Action:      runDumpRepository,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:  "git_service",

								Value: "",

								Usage: "Git service, git, github, gitea, gitlab. If clone_addr could be recognized, this could be ignored.",

							},

							&cli.StringFlag{

								Name:    "repo_dir",

								Aliases: []string{"r"},

								Value:   "./data",

								Usage:   "Repository dir path to store the data",

							},

							&cli.StringFlag{

								Name:  "clone_addr",

								Value: "",

								Usage: "The URL will be clone, currently could be a git/github/gitea/gitlab http/https URL",

							},

							&cli.StringFlag{

								Name:  "auth_username",

								Value: "",

								Usage: "The username to visit the clone_addr",

							},

							&cli.StringFlag{

								Name:  "auth_password",

								Value: "",

								Usage: "The password to visit the clone_addr",

							},

							&cli.StringFlag{

								Name:  "auth_token",

								Value: "",

								Usage: "The personal token to visit the clone_addr",

							},

							&cli.StringFlag{

								Name:  "owner_name",

								Value: "",

								Usage: "The data will be stored on a directory with owner name if not empty",

							},

							&cli.StringFlag{

								Name:  "repo_name",

								Value: "",

								Usage: "The data will be stored on a directory with repository name if not empty",

							},

							&cli.StringFlag{

								Name:  "units",

								Value: "",

								Usage: `Which items will be migrated, one or more units should be separated as comma.

				wiki, issues, labels, releases, release_assets, milestones, pull_requests, comments are allowed. Empty means all units.`,

							},

						},

					},

					}

				}

				func runDumpRepository(ctx *cli.Context) error {

					stdCtx, cancel := installSignals()

				func runDumpRepository(stdCtx context.Context, ctx *cli.Command) error {

					setupConsoleLogger(log.INFO, log.CanColorStderr, os.Stderr)

					// setting.DisableLoggerInit()

					setting.LoadSettings() // cannot access skip_tls_verify settings otherwise

					stdCtx, cancel := installSignals(stdCtx)

					defer cancel()

					if err := initDB(stdCtx); err != nil {

				@ -135,8 +143,8 @@ func runDumpRepository(ctx *cli.Context) error {

						opts.PullRequests = true

						opts.ReleaseAssets = true

					} else {

						units := strings.Split(ctx.String("units"), ",")

						for _, unit := range units {

						units := strings.SplitSeq(ctx.String("units"), ",")

						for unit := range units {

							switch strings.ToLower(strings.TrimSpace(unit)) {

							case "":

								continue

									
										59

cmd/embedded.go
									
										View file
										
				@ -4,6 +4,7 @@

				package cmd

				import (

					"context"

					"errors"

					"fmt"

					"os"

				@ -19,23 +20,25 @@ import (

					"forgejo.org/modules/util"

					"github.com/gobwas/glob"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				// CmdEmbedded represents the available extract sub-command.

				var (

					CmdEmbedded = &cli.Command{

				func cmdEmbedded() *cli.Command {

					return &cli.Command{

						Name:        "embedded",

						Usage:       "Extract embedded resources",

						Description: "A command for extracting embedded resources, like templates and images",

						Subcommands: []*cli.Command{

							subcmdList,

							subcmdView,

							subcmdExtract,

						Commands: []*cli.Command{

							subcmdList(),

							subcmdView(),

							subcmdExtract(),

						},

					}

				}

					subcmdList = &cli.Command{

				func subcmdList() *cli.Command {

					return &cli.Command{

						Name:   "list",

						Usage:  "List files matching the given pattern",

						Action: runList,

				@ -47,8 +50,10 @@ var (

							},

						},

					}

				}

					subcmdView = &cli.Command{

				func subcmdView() *cli.Command {

					return &cli.Command{

						Name:   "view",

						Usage:  "View a file matching the given pattern",

						Action: runView,

				@ -60,8 +65,10 @@ var (

							},

						},

					}

				}

					subcmdExtract = &cli.Command{

				func subcmdExtract() *cli.Command {

					return &cli.Command{

						Name:   "extract",

						Usage:  "Extract resources",

						Action: runExtract,

				@ -90,9 +97,9 @@ var (

							},

						},

					}

				}

					matchedAssetFiles []assetFile

				)

				var matchedAssetFiles []assetFile

				type assetFile struct {

					fs   *assetfs.LayeredFS

				@ -100,7 +107,7 @@ type assetFile struct {

					path string

				}

				func initEmbeddedExtractor(c *cli.Context) error {

				func initEmbeddedExtractor(_ context.Context, c *cli.Command) error {

					setupConsoleLogger(log.ERROR, log.CanColorStderr, os.Stderr)

					patterns, err := compileCollectPatterns(c.Args().Slice())

				@ -115,32 +122,32 @@ func initEmbeddedExtractor(c *cli.Context) error {

					return nil

				}

				func runList(c *cli.Context) error {

					if err := runListDo(c); err != nil {

				func runList(ctx context.Context, c *cli.Command) error {

					if err := runListDo(ctx, c); err != nil {

						fmt.Fprintf(os.Stderr, "%v\n", err)

						return err

					}

					return nil

				}

				func runView(c *cli.Context) error {

					if err := runViewDo(c); err != nil {

				func runView(ctx context.Context, c *cli.Command) error {

					if err := runViewDo(ctx, c); err != nil {

						fmt.Fprintf(os.Stderr, "%v\n", err)

						return err

					}

					return nil

				}

				func runExtract(c *cli.Context) error {

					if err := runExtractDo(c); err != nil {

				func runExtract(ctx context.Context, c *cli.Command) error {

					if err := runExtractDo(ctx, c); err != nil {

						fmt.Fprintf(os.Stderr, "%v\n", err)

						return err

					}

					return nil

				}

				func runListDo(c *cli.Context) error {

					if err := initEmbeddedExtractor(c); err != nil {

				func runListDo(ctx context.Context, c *cli.Command) error {

					if err := initEmbeddedExtractor(ctx, c); err != nil {

						return err

					}

				@ -151,8 +158,8 @@ func runListDo(c *cli.Context) error {

					return nil

				}

				func runViewDo(c *cli.Context) error {

					if err := initEmbeddedExtractor(c); err != nil {

				func runViewDo(ctx context.Context, c *cli.Command) error {

					if err := initEmbeddedExtractor(ctx, c); err != nil {

						return err

					}

				@ -174,8 +181,8 @@ func runViewDo(c *cli.Context) error {

					return nil

				}

				func runExtractDo(c *cli.Context) error {

					if err := initEmbeddedExtractor(c); err != nil {

				func runExtractDo(ctx context.Context, c *cli.Command) error {

					if err := initEmbeddedExtractor(ctx, c); err != nil {

						return err

					}

				@ -271,7 +278,7 @@ func extractAsset(d string, a assetFile, overwrite, rename bool) error {

					return nil

				}

				func collectAssetFilesByPattern(c *cli.Context, globs []glob.Glob, path string, layer *assetfs.Layer) {

				func collectAssetFilesByPattern(c *cli.Command, globs []glob.Glob, path string, layer *assetfs.Layer) {

					fs := assetfs.Layered(layer)

					files, err := fs.ListAllFiles(".", true)

					if err != nil {

									
										65

cmd/forgejo/actions.go
									
										View file
										
				@ -6,6 +6,7 @@ package forgejo

				import (

					"context"

					"encoding/hex"

					"errors"

					"fmt"

					"io"

					"os"

				@ -16,14 +17,14 @@ import (

					"forgejo.org/modules/setting"

					private_routers "forgejo.org/routers/private"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				func CmdActions(ctx context.Context) *cli.Command {

					return &cli.Command{

						Name:  "actions",

						Usage: "Commands for managing Forgejo Actions",

						Subcommands: []*cli.Command{

						Commands: []*cli.Command{

							SubcmdActionsGenerateRunnerToken(ctx),

							SubcmdActionsGenerateRunnerSecret(ctx),

							SubcmdActionsRegister(ctx),

				@ -36,7 +37,7 @@ func SubcmdActionsGenerateRunnerToken(ctx context.Context) *cli.Command {

						Name:   "generate-runner-token",

						Usage:  "Generate a new token for a runner to use to register with the server",

						Before: prepareWorkPathAndCustomConf(ctx),

						Action: func(cliCtx *cli.Context) error { return RunGenerateActionsRunnerToken(ctx, cliCtx) },

						Action: RunGenerateActionsRunnerToken,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:    "scope",

				@ -52,7 +53,7 @@ func SubcmdActionsGenerateRunnerSecret(ctx context.Context) *cli.Command {

					return &cli.Command{

						Name:   "generate-secret",

						Usage:  "Generate a secret suitable for input to the register subcommand",

						Action: func(cliCtx *cli.Context) error { return RunGenerateSecret(ctx, cliCtx) },

						Action: RunGenerateSecret,

					}

				}

				@ -61,7 +62,7 @@ func SubcmdActionsRegister(ctx context.Context) *cli.Command {

						Name:   "register",

						Usage:  "Idempotent registration of a runner using a shared secret",

						Before: prepareWorkPathAndCustomConf(ctx),

						Action: func(cliCtx *cli.Context) error { return RunRegister(ctx, cliCtx) },

						Action: RunRegister,

						Flags: []cli.Flag{

							&cli.StringFlag{

								Name:  "secret",

				@ -101,30 +102,35 @@ func SubcmdActionsRegister(ctx context.Context) *cli.Command {

								Value: "",

								Usage: "version of the runner (not required since v1.21)",

							},

							&cli.BoolFlag{

								Name:  "ephemeral",

								Value: false,

								Usage: "instruct Forgejo to permanently unregister this runner after it has run one job",

							},

						},

					}

				}

				func readSecret(ctx context.Context, cliCtx *cli.Context) (string, error) {

					if cliCtx.IsSet("secret") {

						return cliCtx.String("secret"), nil

				func readSecret(ctx context.Context, cli *cli.Command) (string, error) {

					if cli.IsSet("secret") {

						return cli.String("secret"), nil

					}

					if cliCtx.IsSet("secret-stdin") {

					if cli.IsSet("secret-stdin") {

						buf, err := io.ReadAll(ContextGetStdin(ctx))

						if err != nil {

							return "", err

						}

						return string(buf), nil

					}

					if cliCtx.IsSet("secret-file") {

						path := cliCtx.String("secret-file")

					if cli.IsSet("secret-file") {

						path := cli.String("secret-file")

						buf, err := os.ReadFile(path)

						if err != nil {

							return "", err

						}

						return string(buf), nil

					}

					return "", fmt.Errorf("at least one of the --secret, --secret-stdin, --secret-file options is required")

					return "", errors.New("at least one of the --secret, --secret-stdin, --secret-file options is required")

				}

				func validateSecret(secret string) error {

				@ -138,18 +144,18 @@ func validateSecret(secret string) error {

					return nil

				}

				func getLabels(cliCtx *cli.Context) (*[]string, error) {

					if !cliCtx.Bool("keep-labels") {

						lblValue := strings.Split(cliCtx.String("labels"), ",")

				func getLabels(cli *cli.Command) (*[]string, error) {

					if !cli.Bool("keep-labels") {

						lblValue := strings.Split(cli.String("labels"), ",")

						return &lblValue, nil

					}

					if cliCtx.String("labels") != "" {

						return nil, fmt.Errorf("--labels and --keep-labels should not be used together")

					if cli.String("labels") != "" {

						return nil, errors.New("--labels and --keep-labels should not be used together")

					}

					return nil, nil

				}

				func RunRegister(ctx context.Context, cliCtx *cli.Context) error {

				func RunRegister(ctx context.Context, cli *cli.Command) error {

					var cancel context.CancelFunc

					if !ContextGetNoInit(ctx) {

						ctx, cancel = installSignals(ctx)

				@ -161,17 +167,18 @@ func RunRegister(ctx context.Context, cliCtx *cli.Context) error {

					}

					setting.MustInstalled()

					secret, err := readSecret(ctx, cliCtx)

					secret, err := readSecret(ctx, cli)

					if err != nil {

						return err

					}

					if err := validateSecret(secret); err != nil {

						return err

					}

					scope := cliCtx.String("scope")

					name := cliCtx.String("name")

					version := cliCtx.String("version")

					labels, err := getLabels(cliCtx)

					scope := cli.String("scope")

					name := cli.String("name")

					version := cli.String("version")

					ephemeral := cli.Bool("ephemeral")

					labels, err := getLabels(cli)

					if err != nil {

						return err

					}

				@ -198,7 +205,7 @@ func RunRegister(ctx context.Context, cliCtx *cli.Context) error {

						return err

					}

					runner, err := actions_model.RegisterRunner(ctx, owner, repo, secret, labels, name, version)

					runner, err := actions_model.RegisterRunner(ctx, owner, repo, secret, labels, name, version, ephemeral)

					if err != nil {

						return fmt.Errorf("error while registering runner: %v", err)

					}

				@ -209,18 +216,16 @@ func RunRegister(ctx context.Context, cliCtx *cli.Context) error {

					return nil

				}

				func RunGenerateSecret(ctx context.Context, cliCtx *cli.Context) error {

				func RunGenerateSecret(ctx context.Context, cli *cli.Command) error {

					runner := actions_model.ActionRunner{}

					if err := runner.GenerateToken(); err != nil {

						return err

					}

					runner.GenerateToken()

					if _, err := fmt.Fprintf(ContextGetStdout(ctx), "%s", runner.Token); err != nil {

						panic(err)

					}

					return nil

				}

				func RunGenerateActionsRunnerToken(ctx context.Context, cliCtx *cli.Context) error {

				func RunGenerateActionsRunnerToken(ctx context.Context, cli *cli.Command) error {

					if !ContextGetNoInit(ctx) {

						var cancel context.CancelFunc

						ctx, cancel = installSignals(ctx)

				@ -229,7 +234,7 @@ func RunGenerateActionsRunnerToken(ctx context.Context, cliCtx *cli.Context) err

					setting.MustInstalled()

					scope := cliCtx.String("scope")

					scope := cli.String("scope")

					respText, extra := private.GenerateActionsRunnerToken(ctx, scope)

					if extra.HasError() {

									
										13

cmd/forgejo/actions_test.go
									
										View file
										
				@ -4,14 +4,13 @@

				package forgejo

				import (

					"context"

					"fmt"

					"testing"

					"forgejo.org/services/context"

					"github.com/stretchr/testify/assert"

					"github.com/stretchr/testify/require"

					"github.com/urfave/cli/v2"

					"github.com/urfave/cli/v3"

				)

				func TestActions_getLabels(t *testing.T) {

				@ -54,21 +53,21 @@ func TestActions_getLabels(t *testing.T) {

						},

					}

					flags := SubcmdActionsRegister(context.Context{}).Flags

					flags := SubcmdActionsRegister(t.Context()).Flags

					for _, c := range cases {

						t.Run(fmt.Sprintf("args: %v", c.args), func(t *testing.T) {

							// Create a copy of command to test

							var result *resultType

							app := cli.NewApp()

							app := cli.Command{}

							app.Flags = flags

							app.Action = func(ctx *cli.Context) error {

							app.Action = func(_ context.Context, ctx *cli.Command) error {

								labels, err := getLabels(ctx)

								result = &resultType{labels, err}

								return nil

							}

							// Run it

							_ = app.Run(c.args)

							_ = app.Run(t.Context(), c.args)

							// Test the results

							require.NotNil(t, result)

Compare commits

2347 commits v11.0.12 ... forgejo

2 .air.toml Unescape Escape View file

35 .deadcode-out Unescape Escape View file

12 .devcontainer/devcontainer.json Unescape Escape View file

4 .dockerignore Unescape Escape View file

8 .editorconfig Unescape Escape View file

107 .forgejo/issue_template/1-problem.yaml Normal file Unescape Escape View file

39 .forgejo/issue_template/2-enhancement.yaml Normal file Unescape Escape View file

9 .forgejo/issue_template/bug-report-ui.yaml → .forgejo/issue_template/3-bug-report-ui.yaml Unescape Escape View file

9 .forgejo/issue_template/bug-report.yaml → .forgejo/issue_template/4-bug-report.yaml Unescape Escape View file

1 .forgejo/issue_template/config.yml Unescape Escape View file

31 .forgejo/issue_template/feature-request.yaml Unescape Escape View file

22 .forgejo/pull_request_template.md Unescape Escape View file

67 renovate.json → .forgejo/renovate.json Unescape Escape View file

2 .forgejo/testdata/build-release/Dockerfile vendored Unescape Escape View file

2 .forgejo/workflows-composite/apt-install-from/action.yaml Unescape Escape View file

2 .forgejo/workflows-composite/build-backend/action.yaml Unescape Escape View file

22 .forgejo/workflows-composite/install-minimum-git-version/action.yaml Normal file Unescape Escape View file

4 .forgejo/workflows-composite/setup-cache-go/action.yaml Unescape Escape View file

4 .forgejo/workflows/backport.yml Unescape Escape View file

10 .forgejo/workflows/build-release-integration.yml Unescape Escape View file

23 .forgejo/workflows/build-release.yml Unescape Escape View file

6 .forgejo/workflows/cascade-setup-end-to-end.yml Unescape Escape View file

89 .forgejo/workflows/coverage.yml Normal file Unescape Escape View file

2 .forgejo/workflows/forgejo-integration-cleanup.yml Unescape Escape View file

19 .forgejo/workflows/merge-requirements.yml Unescape Escape View file

2 .forgejo/workflows/mirror.yml Unescape Escape View file

4 .forgejo/workflows/publish-release.yml Unescape Escape View file

27 .forgejo/workflows/release-notes-assistant-milestones.yml Unescape Escape View file

22 .forgejo/workflows/release-notes-assistant.yml Unescape Escape View file

74 .forgejo/workflows/renovate.yml Unescape Escape View file

99 .forgejo/workflows/testing-integration.yml Normal file Unescape Escape View file

92 .forgejo/workflows/testing.yml Unescape Escape View file

6 .gitignore vendored Unescape Escape View file

519 .golangci.yml Unescape Escape View file

17 .mockery.yml Normal file Unescape Escape View file

2 .node-version Unescape Escape View file

4 .release-notes-assistant.yaml Unescape Escape View file

111 .semgrep/config/auth.yaml Normal file Unescape Escape View file

18 .semgrep/config/go.yaml Normal file Unescape Escape View file

11 .semgrep/config/logic.yaml Normal file Unescape Escape View file

24 .semgrep/config/xorm.yaml Normal file Unescape Escape View file

58 .semgrep/tests/auth.fixed.go Normal file Unescape Escape View file

58 .semgrep/tests/auth.go Normal file Unescape Escape View file

44 .semgrep/tests/go.go Normal file Unescape Escape View file

35 .semgrep/tests/logic.go Normal file Unescape Escape View file

45 .semgrep/tests/xorm.go Normal file Unescape Escape View file

17 BSDmakefile Unescape Escape View file

25 CODEOWNERS Unescape Escape View file

10 Dockerfile Unescape Escape View file

20 Dockerfile.rootless Unescape Escape View file

306 Makefile Unescape Escape View file

7 README.md Unescape Escape View file

9 RELEASE-NOTES.md Unescape Escape View file

473 assets/go-licenses.json generated View file

14 build.go Unescape Escape View file

4 build/code-batch-process.go Unescape Escape View file

309 build/generate-bindata.go Unescape Escape View file

17 build/lint-locale-usage/allowed-masked-usage.txt Normal file Unescape Escape View file

208 build/lint-locale-usage/bin/handle-go.go Normal file Unescape Escape View file

404 build/lint-locale-usage/bin/lint-locale-usage.go Normal file Unescape Escape View file

28 build/lint-locale-usage/lint-locale-usage_test.go → build/lint-locale-usage/bin/lint-locale-usage_test.go Unescape Escape View file

123 build/lint-locale-usage/handle-go.go Normal file Unescape Escape View file

244 build/lint-locale-usage/handle-tmpl.go Normal file Unescape Escape View file

63 build/lint-locale-usage/handler.go Normal file Unescape Escape View file

331 build/lint-locale-usage/lint-locale-usage.go Unescape Escape View file

14 build/lint-locale/lint-locale.go Unescape Escape View file

53 build/lint-locale/lint-locale_test.go Unescape Escape View file

52 build/update-locales.sh Unescape Escape View file

24 cmd/actions.go Unescape Escape View file

75 cmd/admin.go Unescape Escape View file

47 cmd/admin_auth.go Unescape Escape View file

115 cmd/admin_auth_ldap.go Unescape Escape View file

55 cmd/admin_auth_ldap_test.go Unescape Escape View file

94 cmd/admin_auth_oauth.go Unescape Escape View file

886 cmd/admin_auth_oauth_test.go Normal file Unescape Escape View file

145 cmd/admin_auth_pam.go Normal file Unescape Escape View file

293 cmd/admin_auth_pam_test.go Normal file Unescape Escape View file

33 cmd/admin_auth_stmp.go → cmd/admin_auth_smtp.go Unescape Escape View file

2347 commits

v11.0.12 ... forgejo

2

.air.toml

View file

35

.deadcode-out

View file

12

.devcontainer/devcontainer.json

View file

4

.dockerignore

View file

8

.editorconfig

View file

107

.forgejo/issue_template/1-problem.yaml Normal file

View file

39

.forgejo/issue_template/2-enhancement.yaml Normal file

View file

9

.forgejo/issue_template/bug-report-ui.yaml → .forgejo/issue_template/3-bug-report-ui.yaml

View file

9

.forgejo/issue_template/bug-report.yaml → .forgejo/issue_template/4-bug-report.yaml

View file

1

.forgejo/issue_template/config.yml

View file

31

.forgejo/issue_template/feature-request.yaml

View file

22

.forgejo/pull_request_template.md

View file

67

renovate.json → .forgejo/renovate.json

View file

2

.forgejo/testdata/build-release/Dockerfile vendored

View file

2

.forgejo/workflows-composite/apt-install-from/action.yaml

View file

2

.forgejo/workflows-composite/build-backend/action.yaml

View file

22

.forgejo/workflows-composite/install-minimum-git-version/action.yaml Normal file

View file

4

.forgejo/workflows-composite/setup-cache-go/action.yaml

View file

4

.forgejo/workflows/backport.yml

View file

10

.forgejo/workflows/build-release-integration.yml

View file

23

.forgejo/workflows/build-release.yml

View file

6

.forgejo/workflows/cascade-setup-end-to-end.yml

View file

89

.forgejo/workflows/coverage.yml Normal file

View file

2

.forgejo/workflows/forgejo-integration-cleanup.yml

View file

19

.forgejo/workflows/merge-requirements.yml

View file

2

.forgejo/workflows/mirror.yml

View file

4

.forgejo/workflows/publish-release.yml

View file

27

.forgejo/workflows/release-notes-assistant-milestones.yml

View file

22

.forgejo/workflows/release-notes-assistant.yml

View file

74

.forgejo/workflows/renovate.yml

View file

99

.forgejo/workflows/testing-integration.yml Normal file

View file

92

.forgejo/workflows/testing.yml

View file

6

.gitignore vendored

View file

519

.golangci.yml

View file

17

.mockery.yml Normal file

View file

2

.node-version

View file

4

.release-notes-assistant.yaml

View file

111

.semgrep/config/auth.yaml Normal file

View file

18

.semgrep/config/go.yaml Normal file

View file

11

.semgrep/config/logic.yaml Normal file

View file

24

.semgrep/config/xorm.yaml Normal file

View file

58

.semgrep/tests/auth.fixed.go Normal file

View file

58

.semgrep/tests/auth.go Normal file

View file

44

.semgrep/tests/go.go Normal file

View file

35

.semgrep/tests/logic.go Normal file

View file

45

.semgrep/tests/xorm.go Normal file

View file

17

BSDmakefile

View file

25

CODEOWNERS

View file

10

Dockerfile

View file

20

Dockerfile.rootless

View file

306

Makefile

View file

7

README.md

View file

9

RELEASE-NOTES.md

View file

473

assets/go-licenses.json generated

View file

14

build.go

View file

4

build/code-batch-process.go

View file

309

build/generate-bindata.go

View file

17

build/lint-locale-usage/allowed-masked-usage.txt Normal file

View file

208

build/lint-locale-usage/bin/handle-go.go Normal file

View file

404

build/lint-locale-usage/bin/lint-locale-usage.go Normal file

View file

28

build/lint-locale-usage/lint-locale-usage_test.go → build/lint-locale-usage/bin/lint-locale-usage_test.go

View file

123

build/lint-locale-usage/handle-go.go Normal file

View file

244

build/lint-locale-usage/handle-tmpl.go Normal file

View file

63

build/lint-locale-usage/handler.go Normal file

View file

331

build/lint-locale-usage/lint-locale-usage.go

View file

14

build/lint-locale/lint-locale.go

View file

53

build/lint-locale/lint-locale_test.go

View file

52

build/update-locales.sh

View file

24

cmd/actions.go

View file

75

cmd/admin.go

View file

47

cmd/admin_auth.go

View file

115

cmd/admin_auth_ldap.go

View file

55

cmd/admin_auth_ldap_test.go

View file

94

cmd/admin_auth_oauth.go

View file

886

cmd/admin_auth_oauth_test.go Normal file

View file

145

cmd/admin_auth_pam.go Normal file

View file

293

cmd/admin_auth_pam_test.go Normal file

View file

33

cmd/admin_auth_stmp.go → cmd/admin_auth_smtp.go

View file

37

cmd/admin_regenerate.go

View file