Fail when API & web endpoints use unrelated ids #28211
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
added 16 commits
November 24, 2023 14:35
…es/pinned (cherry picked from commit 00fad97fc1b27db40a002c9ab3f709d04dc2cdd1) (cherry picked from commit 2bebe443c0d3232c5923ba7d9a099853c76e3bc5)
(cherry picked from commit d3db2fa8bc85e9d67f30854bba0a4c1e8b57b015) (cherry picked from commit d09ce1d18465f9b6df31813cbdcd006a137a0147)
(cherry picked from commit 7b95266de083c8de0ff224530a9b69e82c52c344) (cherry picked from commit a4b1ae5d84ce7340f6f353033fd18b1c1d42f065)
(cherry picked from commit 51c280e877765efe721e607aa95bcbb5aef364e0) (cherry picked from commit 46b3f76f3ef7146dd5ec965e7baf0d4683b3e436)
(cherry picked from commit f499075c53752f983c6e4f8af17c449926ba94d9) (cherry picked from commit 15c4a823ae00ed10af38b32cd25eb1f4adbff33b)
(cherry picked from commit a146e3d0f9ff8ac1aee4be8a3632c76b35fc3482) (cherry picked from commit 87850fb29781a17a0b1ea13fbcb23fec166d0936)
(cherry picked from commit 521eed2312f45bef7de28c9c03c04257862a453c) (cherry picked from commit 5d04e9f31430db6f8af8d16b76556d807e595396)
(cherry picked from commit 1b57d8493882d9d659164acd3b4a5a99c769d8ed) (cherry picked from commit 2b56c0c93f8f502a6988a7550f7ed210b3955fb4)
(cherry picked from commit 385a1f337462bec34ccc389d4efe21e3b2be8465) (cherry picked from commit b43e14de818d67a090c292e6068791350237ac94)
(cherry picked from commit 21d4556cbeb9d0f825398114ba3a4816f331315b) (cherry picked from commit b8edf1b7c8557a8336125b0e08b263ec51cf9188)
(cherry picked from commit aed193ef9f5d59aed12cfd7518765d5598c7999f) (cherry picked from commit c6b84c771a8070b83c582be8d7a7f4d3219e4617)
…istory/soft-delete (cherry picked from commit a11d82a42729eba02032310f7778a9197f4f8ead) (cherry picked from commit 208abc79c8f1eddea36a80df52db9a5ead795ad4)
…story/detail (cherry picked from commit 0853dec293dd632a03948f66af69e75dd582a92d) (cherry picked from commit bfb3dece737a03cdb81d791bf1af6d1b29a78999)
(cherry picked from commit a6d2ad6310f754952998fd73118da9f91c563145) (cherry picked from commit fc7d68e3adfd257de92df389448d68fe9c1ca235)
(cherry picked from commit 768238d9f9982e99ad4cbf3942d2d2db5126a150) Conflicts: routers/api/v1/repo/key.go trivial context conflict (cherry picked from commit 1fbd0f41bccaa8e5f85eea350a9131bd25d7ed41)
(cherry picked from commit 7eda733ed6a22c08a85fdc90deec0c440427cef7) (cherry picked from commit d1e5007866d28cc940644de3f693729dbe0b9602)
GiteaBot
added
the
lgtm/need 2
pull-request-size
bot
added
the
size/L
|
replaced by #28213 |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a copy of a security fix authored by the Forgejo security team that was already sent privately via encrypted email to security@gitea.io during the 30-day embargo period that expired today. This PR is created because security@gitea.io stopped responding since 31/10.