1
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2024-11-22 08:42:32 -05:00
forgejo/models
Gusted 7798a3d746
[GITEA] Use restricted sanitizer for repository description
- Currently the repository description uses the same sanitizer as a
normal markdown document. This means that element such as heading and
images are allowed and can be abused.
- Create a minimal restricted sanitizer for the repository description,
which only allows what the postprocessor currently allows, which are
links and emojis.
- Added unit testing.
- Resolves https://codeberg.org/forgejo/forgejo/issues/1202
- Resolves https://codeberg.org/Codeberg/Community/issues/1122

(cherry picked from commit a8afa4cd18)
(cherry picked from commit 0238587c51)
(cherry picked from commit a8c7bbf728)
(cherry picked from commit 80e05a8245)
(cherry picked from commit f5af5050b3)
(cherry picked from commit 608f981e55)
(cherry picked from commit f40cff9263)
(cherry picked from commit 5f113bb611)
2023-11-06 17:14:54 +01:00
..
actions [CLI] implement forgejo-cli 2023-11-06 14:11:29 +01:00
activities Refactor Find Sources and fix bug when view a user who belongs to an unactive auth source (#27798) 2023-11-03 01:41:00 +00:00
admin Next round of db.DefaultContext refactor (#27089) 2023-09-16 14:39:12 +00:00
asymkey Replace more db.DefaultContext (#27628) 2023-10-15 17:46:06 +02:00
auth [GITEA] silently ignore obsolete sudo scope 2023-11-06 15:58:55 +01:00
avatars Final round of db.DefaultContext refactor (#27587) 2023-10-14 08:37:24 +00:00
db [GITEA] Add slow SQL query warning 2023-11-06 16:04:13 +01:00
dbfs make writing main test easier (#27270) 2023-09-28 01:38:53 +00:00
fixtures [GITEA] Improve HTML title on repositories 2023-11-06 16:04:11 +01:00
forgejo/semver [SEMVER] store SemVer in ForgejoSemVer after a database upgrade 2023-11-06 15:05:20 +01:00
forgejo_migrations [SEMVER] store SemVer in ForgejoSemVer after a database upgrade 2023-11-06 15:05:00 +01:00
git Upgrade xorm to 1.3.4 (#27807) 2023-10-27 13:28:53 +02:00
issues [GITEA] enable system users for comment.LoadPoster 2023-11-06 17:14:54 +01:00
migrations [UPGRADE] run sanity checks before the database is upgraded 2023-11-06 15:05:00 +01:00
organization Even more db.DefaultContext refactor (#27352) 2023-10-03 10:30:41 +00:00
packages List all Debian package versions in Packages (#27786) 2023-10-29 14:14:47 +00:00
perm Even more db.DefaultContext refactor (#27352) 2023-10-03 10:30:41 +00:00
project More db.DefaultContext refactor (#27265) 2023-09-29 12:12:54 +00:00
pull Add Index to pull_auto_merge.doer_id (#27811) 2023-10-30 08:39:29 +00:00
repo [GITEA] Use restricted sanitizer for repository description 2023-11-06 17:14:54 +01:00
secret Refactor secrets modification logic (#26873) 2023-09-05 15:21:02 +00:00
shared/types Display owner of a runner as a tooltip instead of static text (#24377) 2023-05-12 08:43:27 +00:00
system Replace more db.DefaultContext (#27628) 2023-10-15 17:46:06 +02:00
unit Make actions default enabled for newly created repository if global configuraion enabled (#27482) 2023-10-10 14:45:31 +00:00
unittest [TESTS] tests.AddFixtures helper loads additional per-test fixtures 2023-11-06 15:05:01 +01:00
user [GITEA] notifies admins on new user registration 2023-11-06 17:14:54 +01:00
webhook Final round of db.DefaultContext refactor (#27587) 2023-10-14 08:37:24 +00:00
error.go Sync branches into databases (#22743) 2023-06-29 10:03:20 +00:00
fixture_generation.go Replace more db.DefaultContext (#27628) 2023-10-15 17:46:06 +02:00
fixture_test.go Replace more db.DefaultContext (#27628) 2023-10-15 17:46:06 +02:00
main_test.go make writing main test easier (#27270) 2023-09-28 01:38:53 +00:00
org.go Refactor the function RemoveOrgUser (#27582) 2023-11-03 14:01:45 +00:00
org_team.go Refactor the function RemoveOrgUser (#27582) 2023-11-03 14:01:45 +00:00
org_team_test.go Reduce usage of db.DefaultContext (#27073) 2023-09-14 17:09:32 +00:00
org_test.go Replace more db.DefaultContext (#27628) 2023-10-15 17:46:06 +02:00
repo.go Penultimate round of db.DefaultContext refactor (#27414) 2023-10-11 04:24:07 +00:00
repo_test.go Penultimate round of db.DefaultContext refactor (#27414) 2023-10-11 04:24:07 +00:00
repo_transfer.go Next round of db.DefaultContext refactor (#27089) 2023-09-16 14:39:12 +00:00
repo_transfer_test.go Next round of db.DefaultContext refactor (#27089) 2023-09-16 14:39:12 +00:00