We are proud to present the release of Gitea version 1.22.2.
We highly encourage users to update to this version for two security bug-fixes.
We have merged 52 pull requests to release this version.
We would like to give a special thanks to LRQA Nettitude for reporting the XSS security issue which is fixed by #31973.Thanks to @techknowlogick, @wxiaoguang and @lunny for fixing the problem.
Another special thanks to jinnatar for reporting the packages upload scopes missed checking issue which is fixed by #31982. Thanks to @lunny for fixing the problem.
You can download one of our pre-built binaries from our downloads page – make sure to select the correct platform! For further details on how to install, follow our installation guide.
We would also like to thank all of our supporters on Open Collective who are helping to sustain us financially.
Are you looking for a seamless, hassle-free solution to manage your Git repositories? Look no further! Gitea Cloud is here to revolutionize your development experience.
Changelog
1.22.2 – 2024-09-05
- Security
- PERFORMANCE
- BUGFIXES
- Fix overflowing content in action run log (#31842) (#31853)
- Scroll images in project issues separately from the remaining issue (#31683) (#31823)
- Add
:focus-visiblestyle to buttons (#31799) (#31819) - Fix the display of project type for deleted projects (#31732) (#31734)
- Fix API owner ID should be zero when created repo secret (#31715) (#31811)
- Set owner id to zero when GetRegistrationToken for repo (#31725) (#31729)
- Fix API endpoint for registration-token (#31722) (#31728)
- Add permission check when creating PR (#31033) (#31720)
- Don’t return 500 if mirror url contains special chars (#31859) (#31895)
- Fix agit automerge (#31207) (#31881)
- Add CfTurnstileSitekey context data to all captcha templates (#31874) (#31876)
- Avoid returning without written ctx when posting PR (#31843) (#31848)
- Fix raw wiki links (#31825) (#31845)
- Fix panic of ssh public key page after deletion of auth source (#31829) (#31836)
- Fixes for unreachable project issues when transfer repository from organization (#31770) (#31828)
- Show lock owner instead of repo owner on LFS setting page (#31788) (#31817)
- Fix
IsObjectExistwith gogit (#31790) (#31806) - Fix protected branch files detection on pre_receive hook (#31778) (#31796)
- Add
TAGStoTEST_TAGSand fix bugs found with gogit (#31791) (#31795) - Rename head branch of pull requests when renaming a branch (#31759) (#31774)
- Fix wiki revision pagination (#31760) (#31772)
- Bump vue-bar-graph (#31705) (#31753)
- Distinguish LFS object errors to ignore missing objects during migration (#31702) (#31745)
- Make GetRepositoryByName more safer (#31712) (#31718)
- Fix a branch divergence cache bug (#31659) (#31661)
- Allow org team names of length 255 in create team form (#31564) (#31603)
- Use old behavior for telegram webhook (#31588)
- Bug fix for translation in ru (#31892)
- Fix actions notify bug (#31866) (#31875)
- Fix the component of access token list not mounted (#31824) (#31868)
- Add missing repository type filter parameters to pager (#31832) (#31837)
- Fix dates displaying in a wrong manner when we’re close to the end of… (#31750)
- Fix “Filter by commit” Dropdown (#31695) (#31696)
- Properly filter issue list given no assignees filter (#31522) (#31685)
- Prevent update pull refs manually and will not affect other refs update (#31931)(#31955)
- Fix sort order for organization home and user profile page (#31921) (#31922)
- Fix search team (#31923) (#31942)
- Fix 500 error when state params is set when editing issue/PR by API (#31880) (#31952)
- Fix index too many file names bug (#31903) (#31953)
- Add lock for parallel maven upload (#31851) (#31954)
- MISC
- Remove “dsa-1024” testcases from Test_SSHParsePublicKey and Test_calcFingerprint (#31905) (#31914)
- Upgrade bleve to 2.4.2 (#31894)
- Remove unneccessary uses of
word-break: break-all(#31637) (#31652) - Return an empty string when a repo has no avatar in the repo API (#31187) (#31567)
- Upgrade micromatch to 4.0.8 (#31944)
- Update webpack to 5.94.0 (#31941)