forgejo/models
Gusted 4b9a473e12
[GITEA] Use restricted sanitizer for repository description
- Backport of https://codeberg.org/forgejo/forgejo/pulls/1433
  - Currently the repository description uses the same sanitizer as a
normal markdown document. This means that element such as heading and
images are allowed and can be abused.
  - Create a minimal restricted sanitizer for the repository description,
which only allows what the postprocessor currently allows, which are
links and emojis.
  - Added unit testing.
  - Resolves https://codeberg.org/forgejo/forgejo/issues/1202
  - Resolves https://codeberg.org/Codeberg/Community/issues/1122

(cherry picked from commit a8afa4cd18)
2023-09-13 17:17:37 +02:00
..
actions Fix log typo in task.go () () 2023-08-21 07:22:17 +02:00
activities Bypass MariaDB performance bug of the "IN" sub-query, fix incorrect IssueIndex () () 2023-08-21 07:22:17 +02:00
admin Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
asymkey Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
auth Ignore the trailing slashes when comparing oauth2 redirect_uri () () 2023-09-08 08:07:19 +02:00
avatars Avoid warning for system setting when start up () 2023-02-24 18:23:13 +08:00
db [GITEA] Add slow SQL query warning 2023-08-21 21:18:43 +02:00
dbfs Fix content holes in Actions task logs file () () 2023-06-28 23:39:23 +00:00
fixtures Fix verifyCommits error when push a new branch () () 2023-09-08 08:09:18 +02:00
forgejo/semver [UPGRADE] add sanity checks for [storage*] 2023-08-21 07:22:19 +02:00
forgejo_migrations [SEMVER] store SemVer in ForgejoSemVer after a database upgrade 2023-08-21 07:22:18 +02:00
git Fix pull request check list is limited () () 2023-08-21 07:22:15 +02:00
issues [GITEA] enable system users for comment.LoadPoster 2023-09-12 11:02:07 +02:00
migrations [UPGRADE] run sanity checks before the database is upgraded 2023-08-21 07:22:19 +02:00
organization Remove unused code () () 2023-07-09 19:47:58 +00:00
packages Fix NuGet search endpoints () () 2023-08-21 07:27:20 +02:00
perm Rewrite logger system () 2023-05-21 22:35:11 +00:00
project Update xorm version () () 2023-07-26 13:50:10 +02:00
pull
repo [GITEA] Use restricted sanitizer for repository description 2023-09-13 17:17:37 +02:00
secret Respect original content when creating secrets () 2023-05-16 14:49:40 +08:00
shared/types Display owner of a runner as a tooltip instead of static text () 2023-05-12 08:43:27 +00:00
system Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
unit Rewrite logger system () 2023-05-21 22:35:11 +00:00
unittest Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
user check blocklist for emails when adding them to account () () 2023-09-08 08:09:18 +02:00
webhook Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
error.go
fixture_generation.go
fixture_test.go
main_test.go Merge setting.InitXXX into one function with options () 2023-05-04 11:55:35 +08:00
migrate.go Check primary keys for all tables and drop ForeignReference () 2022-12-23 19:35:43 +08:00
migrate_test.go Check primary keys for all tables and drop ForeignReference () 2022-12-23 19:35:43 +08:00
org.go
org_team.go Remove org users who belong to no teams () 2023-04-24 15:52:38 -04:00
org_team_test.go
org_test.go
repo.go Replace interface{} with any () () 2023-07-04 23:41:32 -04:00
repo_collaboration.go
repo_collaboration_test.go Rename repo.GetOwner to repo.LoadOwner () 2023-02-18 20:11:03 +08:00
repo_test.go
repo_transfer.go Fix unclear IsRepositoryExist logic () 2023-04-28 14:14:26 -04:00
repo_transfer_test.go Rename almost all Ctx functions () 2022-12-10 10:46:31 +08:00