All Versions
23
Latest Version
Avg Release Cycle
92 days
Latest Release
-
Changelog History
Page 2
Changelog History
Page 2
-
v0.12.1 Changes
August 27, 2020๐ Fixed
- โก๏ธ The
updated_at
field is now correctly updated when updates an issue. #6209 - ๐ Fixed a regression which created
login_source.cfg
column to haveVARCHAR(255)
instead ofTEXT
in MySQL. #6280
0.12.0
โ Added
- ๐ Support for Git LFS, you can read documentation for both user and admin. #1322
- ๐ Allow admin to remove observers from the repository. #5803
- ๐ Use
Last-Modified
HTTP header for raw files. #5811 - ๐ Support syntax highlighting for SAS code files (i.e.
.r
,.sas
,.tex
,.yaml
). #5856 - Able to fill in pull request title with a template. #5901
- ๐ Able to override static files under
public/
directory, please refer to documentation for usage. #5920 - ๐ New API endpoint
GET /admin/teams/:teamid/members
to list members of a team. #5877 - ๐ Support backup with retention policy for Docker deployments. #6140
๐ Changed
- The organization profile page has changed to display at most 12 members. #5506
- The required Go version to compile source code changed to 1.14.
- ๐ฑ All assets are now embedded into binary and served from memory by default. Set
[server] LOAD_ASSETS_FROM_DISK = true
to load them from disk. #5920 - ๐ Application and Go versions are removed from page footer and only show in the admin dashboard.
- ๐ Build tag for running as Windows Service has been changed from
miniwinsvc
tominwinsvc
. - ๐ Configuration option
APP_NAME
is deprecated and will end support in 0.13.0, please start usingBRAND_NAME
. - ๐ Configuration option
[server] ROOT_URL
is deprecated and will end support in 0.13.0, please start using[server] EXTERNAL_URL
. - ๐ Configuration option
[server] LANDING_PAGE
is deprecated and will end support in 0.13.0, please start using[server] LANDING_URL
. - ๐ง Configuration option
[database] DB_TYPE
is deprecated and will end support in 0.13.0, please start using[database] TYPE
. - ๐ง Configuration option
[database] PASSWD
is deprecated and will end support in 0.13.0, please start using[database] PASSWORD
. - Configuration option
[security] REVERSE_PROXY_AUTHENTICATION_USER
is deprecated and will end support in 0.13.0, please start using[auth] REVERSE_PROXY_AUTHENTICATION_HEADER
. - ๐ง Configuration section
[mailer]
is deprecated and will end support in 0.13.0, please start using[email]
. - ๐ง Configuration section
[service]
is deprecated and will end support in 0.13.0, please start using[auth]
. - Configuration option
[auth] ACTIVE_CODE_LIVE_MINUTES
is deprecated and will end support in 0.13.0, please start using[auth] ACTIVATE_CODE_LIVES
. - Configuration option
[auth] RESET_PASSWD_CODE_LIVE_MINUTES
is deprecated and will end support in 0.13.0, please start using[auth] RESET_PASSWORD_CODE_LIVES
. - ๐ Configuration option
[auth] ENABLE_CAPTCHA
is deprecated and will end support in 0.13.0, please start using[auth] ENABLE_REGISTRATION_CAPTCHA
. - ๐ Configuration option
[auth] ENABLE_NOTIFY_MAIL
is deprecated and will end support in 0.13.0, please start using[user] ENABLE_EMAIL_NOTIFICATION
. - Configuration option
[session] GC_INTERVAL_TIME
is deprecated and will end support in 0.13.0, please start using[session] GC_INTERVAL
. - Configuration option
[session] SESSION_LIFE_TIME
is deprecated and will end support in 0.13.0, please start using[session] MAX_LIFE_TIME
. - The name
-
is reserved and cannot be used for users or organizations.
๐ Fixed
- ๐ [Security] Potential open redirection with i18n.
- ๐ [Security] Potential ability to delete files outside a repository.
- ๐ [Security] Potential ability to set primary email on others' behalf from their verified emails.
- ๐ [Security] Potential XSS attack via
.ipynb
. #5170 - ๐ [Security] Potential SSRF attack via webhooks. #5366
- ๐ [Security] Potential CSRF attack in admin panel. #5367
- ๐ [Security] Potential stored XSS attack in some browsers. #5397
- ๐ [Security] Potential RCE on mirror repositories. #5767
- ๐ [Security] Potential XSS attack with raw markdown API. #5907
- File both modified and renamed within a commit treated as separate files. #5056
- โช Unable to restore the database backup to MySQL 8.0 with syntax error. #5602
- Open/close milestone redirects to a 404 page. #5677
- Disallow multiple tokens with same name. #5587 #5820
- Enable Federated Avatar Lookup could cause server to crash. #5848
- Private repositories are hidden in the organization's view. #5869
- ๐ Users have access to base repository cannot view commits in forks. #5878
- Server error when changing email address in user settings page. #5899
- Fall back to use RFC 3339 as time layout when misconfigured. #6098
- โก๏ธ Unable to update team with server error. #6185
- Webhooks are not fired after push when
[service] REQUIRE_SIGNIN_VIEW = true
. - Files with identical content are randomly displayed one of them.
โ Removed
- Configuration option
[other] SHOW_FOOTER_VERSION
- Configuration option
[server] STATIC_ROOT_PATH
- Configuration option
[repository] MIRROR_QUEUE_LENGTH
- Configuration option
[repository] PULL_REQUEST_QUEUE_LENGTH
- Configuration option
[session] ENABLE_SET_COOKIE
- ๐ Configuration option
[release.attachment] PATH
- ๐ง Configuration option
[webhook] QUEUE_LENGTH
- ๐ Build tag
sqlite
, which means CGO is now required.
- โก๏ธ The
-
v0.12.0 Changes
August 22, 2020โ Added
- ๐ Support for Git LFS, you can read documentation for both user and admin. #1322
- ๐ Allow admin to remove observers from the repository. #5803
- ๐ Use
Last-Modified
HTTP header for raw files. #5811 - ๐ Support syntax highlighting for SAS code files (i.e.
.r
,.sas
,.tex
,.yaml
). #5856 - Able to fill in pull request title with a template. #5901
- ๐ Able to override static files under
public/
directory, please refer to documentation for usage. #5920 - ๐ New API endpoint
GET /admin/teams/:teamid/members
to list members of a team. #5877 - ๐ Support backup with retention policy for Docker deployments. #6140
๐ Changed
- The organization profile page has changed to display at most 12 members. #5506
- The required Go version to compile source code changed to 1.14.
- ๐ฑ All assets are now embedded into binary and served from memory by default. Set
[server] LOAD_ASSETS_FROM_DISK = true
to load them from disk. #5920 - ๐ Application and Go versions are removed from page footer and only show in the admin dashboard.
- ๐ Build tag for running as Windows Service has been changed from
miniwinsvc
tominwinsvc
. - ๐ Configuration option
APP_NAME
is deprecated and will end support in 0.13.0, please start usingBRAND_NAME
. - ๐ Configuration option
[server] ROOT_URL
is deprecated and will end support in 0.13.0, please start using[server] EXTERNAL_URL
. - ๐ Configuration option
[server] LANDING_PAGE
is deprecated and will end support in 0.13.0, please start using[server] LANDING_URL
. - ๐ง Configuration option
[database] DB_TYPE
is deprecated and will end support in 0.13.0, please start using[database] TYPE
. - ๐ง Configuration option
[database] PASSWD
is deprecated and will end support in 0.13.0, please start using[database] PASSWORD
. - Configuration option
[security] REVERSE_PROXY_AUTHENTICATION_USER
is deprecated and will end support in 0.13.0, please start using[auth] REVERSE_PROXY_AUTHENTICATION_HEADER
. - ๐ง Configuration section
[mailer]
is deprecated and will end support in 0.13.0, please start using[email]
. - ๐ง Configuration section
[service]
is deprecated and will end support in 0.13.0, please start using[auth]
. - Configuration option
[auth] ACTIVE_CODE_LIVE_MINUTES
is deprecated and will end support in 0.13.0, please start using[auth] ACTIVATE_CODE_LIVES
. - Configuration option
[auth] RESET_PASSWD_CODE_LIVE_MINUTES
is deprecated and will end support in 0.13.0, please start using[auth] RESET_PASSWORD_CODE_LIVES
. - Configuration option
[auth] REGISTER_EMAIL_CONFIRM
is deprecated and will end support in 0.13.0, please start using[auth] REQUIRE_EMAIL_CONFIRMATION
. - ๐ Configuration option
[auth] ENABLE_CAPTCHA
is deprecated and will end support in 0.13.0, please start using[auth] ENABLE_REGISTRATION_CAPTCHA
. - ๐ Configuration option
[auth] ENABLE_NOTIFY_MAIL
is deprecated and will end support in 0.13.0, please start using[user] ENABLE_EMAIL_NOTIFICATION
. - Configuration option
[session] GC_INTERVAL_TIME
is deprecated and will end support in 0.13.0, please start using[session] GC_INTERVAL
. - Configuration option
[session] SESSION_LIFE_TIME
is deprecated and will end support in 0.13.0, please start using[session] MAX_LIFE_TIME
. - The name
-
is reserved and cannot be used for users or organizations.
๐ Fixed
- ๐ [Security] Potential open redirection with i18n.
- ๐ [Security] Potential ability to delete files outside a repository.
- ๐ [Security] Potential ability to set primary email on others' behalf from their verified emails.
- ๐ [Security] Potential XSS attack via
.ipynb
. #5170 - ๐ [Security] Potential SSRF attack via webhooks. #5366
- ๐ [Security] Potential CSRF attack in admin panel. #5367
- ๐ [Security] Potential stored XSS attack in some browsers. #5397
- ๐ [Security] Potential RCE on mirror repositories. #5767
- ๐ [Security] Potential XSS attack with raw markdown API. #5907
- File both modified and renamed within a commit treated as separate files. #5056
- โช Unable to restore the database backup to MySQL 8.0 with syntax error. #5602
- Open/close milestone redirects to a 404 page. #5677
- Disallow multiple tokens with same name. #5587 #5820
- Enable Federated Avatar Lookup could cause server to crash. #5848
- Private repositories are hidden in the organization's view. #5869
- ๐ Users have access to base repository cannot view commits in forks. #5878
- Server error when changing email address in user settings page. #5899
- Fall back to use RFC 3339 as time layout when misconfigured. #6098
- โก๏ธ Unable to update team with server error. #6185
- Webhooks are not fired after push when
[service] REQUIRE_SIGNIN_VIEW = true
. - Files with identical content are randomly displayed one of them.
โ Removed
- Configuration option
[other] SHOW_FOOTER_VERSION
- Configuration option
[server] STATIC_ROOT_PATH
- Configuration option
[repository] MIRROR_QUEUE_LENGTH
- Configuration option
[repository] PULL_REQUEST_QUEUE_LENGTH
- Configuration option
[session] ENABLE_SET_COOKIE
- ๐ Configuration option
[release.attachment] PATH
- ๐ง Configuration option
[webhook] QUEUE_LENGTH
- ๐ Build tag
sqlite
, which means CGO is now required.
๐ Older change logs can be found on GitHub.
-
v0.11.91 Changes
August 12, 2019 -
v0.11.86 Changes
January 31, 2019๐ Bug fixes
- ๐ง Layout misalignment in Firefox for Linux #5299
- ๐ Unexpected issue index parsing error while using external issue tracker #5551
- ๐ [Security] Remote Code execution or/and Denial of Service #5558
๐ Features
- ๐ Support GitHub (Enterprise) authentication source #5340
- โ Add API endpoint to get commit details by SHA #5546
Others
- โ Add new languages support: Portuguese
-
v0.11.79 Changes
December 12, 2018๐ Bug fixes
- LDAP group verification doesn't work when using 'dn' as user attribute #4684
- LDAP group verification fails #4792
- Emoji's do not work in wiki #4869
- ๐ง Log level not applied from configuration #5007
- Not able to go get a repository with non-80 port #5305
- ๐ Fix critical CSRF vulnerabilities on API routes #5355
- โก๏ธ Wrong redirect after updated protect branch setting whose name contains
#
#5442 - Clear labels not working #5445
- ๐ [Security] Remote command execution #5469
- Push event webhook is not triggered when new branch fetched to mirror repository #5473
- Large issue comment exceeds dashboard section #5502
- List collaborator API does not contain permission information #5538
- ๐ [Security] Log out only deletes browser cookies #5540
- ๐ [Security] Some routes need to be POST #5541
- ๐ [Security] Stored XSS in external issue tracker URL format #5545
๐ Improvements
-
v0.11.66 Changes
September 16, 2018๐ Bug fixes
- ๐ Web editor doesn't execute hooks after commit #4338
- ๐ Release attachments are deleted when delete any random comment #4627
- Private repository with public wiki or issue does not show in search result #4973
- Cannot start with MySQL 8.0 #5187
- Webhook and its tasks are not cleaned up when delete repository #5229
- โช Time set to current after restored from backup #5264
- โ Delete branch after merged pull request does no trigger webhook #5331
- Fork repository does not check of the limit of users #5345
- Unable to delete user with PostgreSQL #5376
๐ Features
- Able to add avatar for repository #2340
- โ Add basic Go runtime metrics provided by Prometheus #4141
๐ Improvements
- ๐ง Ignore configuration inline comment by default
- โ Add deletion of an empty line at the end of file in file view #5270
- 0๏ธโฃ Able to set default authentication method for login #5274
- ๐ Able to add custom merge commit description #5276
Others
- ๐ Security fixes
-
v0.11.53 Changes
June 04, 2018๐ Bug fixes
- The branch name contains '#' not work correctly #4601
- Issue mention does not render with square brackets #4706
- ๐ 500 when merge branch when the base branch is not the default branch #5138
- Gravatar URLs are badly generated #5157
- Able to reuse two factor passcode
- Config option
[git] GC_ARGS
does not take effect
๐ Features
- โก๏ธ Show mirror updates in activity timeline #2017
- ๐ Support authentication source config file #3142
- ๐ Trigger webhook after mirror sync #4528
Others
- ๐ Changed import path from "gogits/gogs" to "gogs/gogs"
- ๐ Security fixes
- โ Add new languages support: Vietnamese
-
v0.11.43 Changes
March 31, 2018๐ Bug fixes
- ๐ Protected branch can be deleted from the web after merge request #4514
- Does not recognise SYSNAME datatype in MSSQL #4642
- Quick guide is only showed for repository admin #4646
- Wrong branch URL for name contains
#
in branches view #4874 - ๐ Commits not merged after accepting pull request using rebase #5051
- ๐ Once branch was protected "Lock" icon will never be removed #5053
- ๐ SVG support in IPython notebook #5077
๐ Improvements
- ๐ Support HTTP HEAD requests #2857
- โ Add option to rewrite authorized_keys file at start #4435
- โ Add option to prepend global prefix to the email subject #4524
- 0๏ธโฃ Disable federated avatar lookup by default #5126
Others
- โ Add new languages support: Indonesian, Persian
-
v0.11.34 Changes
November 22, 2017๐ Bug fixes
- Regression: Pull request is not working between different repositories #4890
-
v0.11.33 Changes
November 19, 2017๐ Bug fixes
- ๐ Some security fixes
- ๐ Wrong commit ID in webhook payload after merging pull request #4442
- Meta tag go-import does not response correct value #4832
๐ Features
๐ Improvements
- โ Add placeholder '%s' for username in LDAP BindDN #2526
- ๐ Allow UID for git user in Docker container to be specified via ENV variable #3520
- โ Add repository setting to ignore whitespace when check pull request conflict #4834
Others
- โ Add new language support: Slovak