mirror of
https://codeberg.org/forgejo/forgejo.git
synced 2026-06-22 10:02:15 +00:00
4b83448b7d
- fix: prevent stored XSS in user display name on Actions page - fix: LFS locks must belong to the intended repo, port from Gitea - fix: prevent unauthorized access to draft releases via API - fix: prevent writes to OpenID visibility which may affect other users - fix: prevent viewing private PRs that are linked to public issues on public projects Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com> Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/13001 Reviewed-by: 0ko <0ko@noreply.codeberg.org> Reviewed-by: Beowulf <beowulf@beocode.eu>
9 lines
193 B
YAML
9 lines
193 B
YAML
-
|
|
id: 3000
|
|
type: 6 # pull reference
|
|
poster_id: 2
|
|
issue_id: 16 # pull in repo_id 32
|
|
ref_repo_id: 3
|
|
ref_issue_id: 12 # pull in repo_id 3
|
|
ref_is_pull: true
|
|
created_unix: 946690100
|