git724/forgejo
1
0
Fork 0
Code Issues Pull requests 3 Projects 1 Releases Packages Wiki Activity
forgejo/routers/web
History
Gergely Nagy 145dea59bb
 fix: sanitize OriginalURL before displaying it 
While `repo.OriginalURL` is supposed to be sanitized, with username and
passwords removed, it appears that is not always the case, and sometimes
we may encounter original URLs that aren't sanitized. While that is
possibly a historical artifact, we should still treat it with care.

As such, before displaying `repo.OriginalURL` as an info flash when
syncing a pull repository, sanitize the URL first, to be on the safe
side.

Signed-off-by: Gergely Nagy <forgejo@gergo.csillger.hu>
2025-08-30 08:07:17 +02:00
..
admin feat: Global 2FA enforcement (#8753) 2025-08-15 10:56:45 +02:00
auth chore: Use common SetCaptchaData in link account (#8592) 2025-08-26 20:30:18 +02:00
devtest chore(ui): clean up hashbox CSS, small design changes (#7822) 2025-05-25 12:51:27 +02:00
events chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
explore fix(code-search): fix broken pagination. (#9000) 2025-08-23 13:06:41 +02:00
feed fix: correct release link in feed (#8802) 2025-08-06 17:51:36 +02:00
healthcheck chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
misc feat: bump the minimum required Git version from 2.0.0 to 2.34.1 (#8328) 2025-06-29 00:44:18 +02:00
moderation feat!: Abusive content reporting (#6977) 2025-05-18 08:05:16 +00:00
org fix(ui): prevent render failure on faulty org settings post (#8553) 2025-07-18 13:13:45 +02:00
repo fix: sanitize OriginalURL before displaying it 2025-08-30 08:07:17 +02:00
shared fix: show membership of limited orgs 2025-06-06 19:33:26 +02:00
user feat(build): improve lint-locale-usage further (#8736) 2025-08-27 23:47:34 +02:00
base.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
githttp.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
goget.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
home.go feat: Global 2FA enforcement (#8753) 2025-08-15 10:56:45 +02:00
metrics.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
nodeinfo.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
swagger_json.go chore: branding import path (#7337) 2025-03-27 19:40:14 +00:00
web.go feat: artifacts can be downloaded using their id instead of their name (#8957) 2025-08-25 15:51:26 +02:00
webfinger.go fix: trim trailing slash in WebFinger OIDC issuer link (#8794) 2025-08-06 14:50:51 +02:00