gitea/modules
zeripath 172229966c
Prevent panic on fuzzer provided string (#14405)
* Prevent panic on fuzzer provided string

The fuzzer has found that providing a <body> tag with an attribute to
PostProcess causes a panic. This PR removes any rendered html or body
tags from the output.

Signed-off-by: Andrew Thornton <art27@cantab.net>

* Placate lint

* placate lint again

Signed-off-by: Andrew Thornton <art27@cantab.net>

* minor cleanup

Signed-off-by: Andrew Thornton <art27@cantab.net>
2021-01-20 23:10:50 +08:00
..
analyze Exclude generated files from language statistics (#11653) 2020-05-29 09:20:01 +03:00
auth Use IsProd instead of testing if it's equal. (#14336) 2021-01-14 23:17:03 +02:00
avatar Avatars and Repo avatars support storing in minio (#12516) 2020-10-14 21:07:51 +08:00
base Kd/fix allow svg doctype (#14344) 2021-01-15 17:38:41 +08:00
cache Use native git variants by default with go-git variants as build tag (#13673) 2020-12-17 22:00:47 +08:00
charset Ensure that the detected charset order is set in chardet test (#12574) 2020-08-23 14:15:29 +01:00
context Fix log http status is always zero (#14400) 2021-01-19 20:47:43 -05:00
convert Add MirrorInterval to the API (#14163) 2021-01-02 18:47:47 -05:00
cron Added option to disable migrations (#13114) 2020-12-21 15:39:41 +01:00
doctor Refactor doctor (#12264) 2020-12-02 06:56:04 +02:00
emoji Fix emoji detection in certain cases (#12320) 2020-07-25 16:40:04 +03:00
eventsource Move EventSource to SharedWorker (#12095) 2020-07-03 10:55:36 +01:00
generate Add gitea-vet (#10948) 2020-04-05 07:20:50 +01:00
git Add pager to the branches page (#14202) 2021-01-19 05:07:38 +01:00
gitgraph [Refactor] CombinedStatus and CommitStatus related functions & structs (#14026) 2020-12-18 11:33:32 +08:00
graceful Fix windows build error (#14263) 2021-01-06 09:38:00 +08:00
hcaptcha hCaptcha Support (#12594) 2020-10-02 23:37:53 -04:00
highlight Use existing analyzer module for language detection for highlighting (#13522) 2020-11-13 16:13:41 -05:00
httpcache Use IsProd instead of testing if it's equal. (#14336) 2021-01-14 23:17:03 +02:00
httplib Add golangci (#6418) 2019-06-12 15:41:28 -04:00
indexer Upgrade blevesearch dependency to v2.0.1 (#14346) 2021-01-17 20:21:14 -05:00
lfs Some code improvements (#14266) 2021-01-06 19:23:57 +00:00
log Fix windows build error (#14263) 2021-01-06 09:38:00 +08:00
markup Prevent panic on fuzzer provided string (#14405) 2021-01-20 23:10:50 +08:00
matchlist Add Allow-/Block-List for Migrate & Mirrors (#13610) 2020-11-28 19:37:58 -05:00
metrics Prometheus endpoint (#5256) 2018-11-04 22:20:00 -05:00
middlewares Fix recovery middleware to render gitea style page. (#13857) 2021-01-05 21:05:40 +08:00
migrations Add MirrorInterval to the API (#14163) 2021-01-02 18:47:47 -05:00
nosql Allow common redis and leveldb connections (#12385) 2020-09-28 00:09:46 +03:00
notification Send notifications for mentions in pulls, issues, (code-)comments (#14218) 2021-01-02 18:04:02 +01:00
options Add StatDir and replace com.StatDir (#14099) 2020-12-22 07:40:57 +08:00
password Check passwords against HaveIBeenPwned (#12716) 2020-09-08 17:06:39 -05:00
pprof Add golangci (#6418) 2019-06-12 15:41:28 -04:00
private Fix send mail (#13312) 2020-10-26 12:42:27 -04:00
process Only write to global gitconfig if necessary (#11876) 2020-06-13 17:47:31 -04:00
public When visit /favicon.ico but the static file is not exist return 404 but not continue to handle the route (#14211) 2021-01-01 17:05:45 -05:00
queue Slightly simplify the queue settings code to help reduce the risk of problems (#12976) 2020-10-15 17:40:03 -04:00
recaptcha hCaptcha Support (#12594) 2020-10-02 23:37:53 -04:00
references Add mentionable teams to tributeValues and change team mention rules to gh's style (#13198) 2020-12-21 16:39:28 +01:00
repofiles Standardize Co-Authored-By / Reviewed-By strings (#14097) 2020-12-21 21:19:33 -05:00
repository Check if label template exist first (#14384) 2021-01-18 21:00:50 +01:00
secret Attachments: Add extension support, allow all types for releases (#12465) 2020-10-05 01:49:33 -04:00
session Allow common redis and leveldb connections (#12385) 2020-09-28 00:09:46 +03:00
setting Add pager to the branches page (#14202) 2021-01-19 05:07:38 +01:00
ssh migrate from com.* to alternatives (#14103) 2020-12-25 11:59:32 +02:00
storage Fix Storage mapping (#13297) 2020-10-25 17:19:06 +00:00
structs Check if label template exist first (#14384) 2021-01-18 21:00:50 +01:00
svg Fix filepath basename on Windows for SVG bindata (#12241) 2020-07-13 21:16:40 +01:00
sync Fix missing unlock in uniquequeue (#9790) 2020-01-15 23:58:33 +02:00
task Migrations: Use Process Manager to create own Context (#13792) 2020-12-02 18:36:06 +00:00
templates Fix recovery middleware to render gitea style page. (#13857) 2021-01-05 21:05:40 +08:00
test Macaron 1.5 (#12596) 2020-08-27 22:47:17 -04:00
timeutil Fix timezone on issue deadline (#11697) 2020-06-05 18:51:10 -04:00
translation Fix recovery middleware to render gitea style page. (#13857) 2021-01-05 21:05:40 +08:00
upload Update golangci-lint to version 1.31.0 (#13102) 2020-10-11 21:27:20 +01:00
uri Dump github/gitlab/gitea repository data to a local directory and restore to gitea (#12244) 2020-12-27 11:34:19 +08:00
user Add gitea-vet (#10948) 2020-04-05 07:20:50 +01:00
util migrate from com.* to alternatives (#14103) 2020-12-25 11:59:32 +02:00
validation [API] Get a single commit via Ref (#10915) 2020-04-07 22:54:46 -04:00