v1.23.0
BREAKING
- Rename config option
[camo].Allways
to[camo].Always
(#32097) - Remove SHA1 for support for SSH RSA signing (#31857)
- Use UTC as the default timezone when scheduling Actions cron tasks (#31742)
- Delete Actions logs older than 1 year by default (#31735)
- Make OIDC introspection authentication strictly require Client ID and secret (#31632)
SECURITY
- Include file extension checks in attachment API (#32151)
- Include all security fixes that have been backported to v1.22
FEATURES
- Allow to fork repository into the same owner (#32819)
- Support "merge upstream branch" (Sync fork) (#32741)
- Add Arch package registry (#32692)
- Allow to disable the password-based login (sign-in) form (#32687)
- Allow cropping an avatar before setting it (#32565)
- Support quote selected comments to reply (#32431)
- Add reviewers' selection to new pull request (#32403)
- Suggestions for issues (#32327)
- Add priority to the protected branch (#32286)
- Included tag search capabilities (#32045)
- Add option to filter board cards by labels and assignees (#31999)
- Add automatic light/dark option for the colorblind theme (#31997)
- Support migration from AWS CodeCommit (#31981)
- Introduce globallock as distributed locks (#31908 & #31813)
- Support compression for Actions logs & enable by default (#31761 & #32013)
- Add pure SSH LFS support (#31516)
- Add Passkey login support (#31504)
- Actions support workflow dispatch event (#28163)
- Support repo license (#24872)
- Issue time estimate, meaningful time tracking (#23113)
- GitHub like repo home page (#32213 & #32847)
- Rearrange Clone Panel (#31142)
- Enhancing Gitea OAuth2 Provider with Granular Scopes for Resource Access (#32573)
- Use env GITEA_RUNNER_REGISTRATION_TOKEN as global runner token (#32946) #32964
- Update i18n.go - Language Picker (#32933) #32935
PERFORMANCE
- Perf: add extra index to notification table (#32395)
- Introduce OrgList and add LoadTeams, optimize Load teams for organizations (#32543)
- Improve performance of diffs (#32393)
- Make LFS http_client parallel within a batch. (#32369)
- Add a new index for action to resolve the performance problem (#32333)
- Improve get feed with pagination (#31821)
- Performance improvements for pull request list API (#30490)
- Use batch database operations instead of one-by-one to optimze api pulls (#32680)
- Use gitrepo.GetTreePathLatestCommit to get file's lastest commit instead from the latest commit cache (#32987) #33046
ENHANCEMENTS
-
Code
- Remove unnecessary border in repo home page sidebar (#32767)
- Add 'Copy path' button to file view (#32584)
- Improve diff file tree (#32658)
- Add new [lfs_client].BATCH_SIZE and [server].LFS_MAX_BATCH_SIZE config settings. (#32307)
- Updated tokenizer to better matching when search for code snippets (#32261)
- Change the code search to sort results by relevance (#32134)
- Support migrating GitHub/GitLab PR draft status (#32242)
- Move lock icon position and add additional tooltips to branch list page (#31839)
- Add tag name in the commits list (#31082)
- Add
MAX_ROWS
option for CSV rendering (#30268) - Allow code search by filename (#32210)
- Make git push options accept short name (#32245)
- Repo file list enhancements (#32835)
-
Markdown & Editor
- Refactor markdown math render, add dollor-backquote syntax support (#32831)
- Make Monaco theme follow browser, fully type codeeditor.ts (#32756)
- Refactor markdown editor and use it for milestone description editor (#32688)
- Add some handy markdown editor features (#32400)
- Improve markdown textarea for indentation and lists (#31406)
-
Issue
- Add label/author/assignee filters to the user/org home issue list (#32779)
- Refactor issue filter (labels, poster, assignee) (#32771)
- Style unification for the issue_management area (#32605)
- Add "View all branches/tags" entry to Branch Selector (#32653)
- Improve textarea paste (#31948)
- Add avif image file support (#32508)
- Prevent from submitting issue/comment on uploading (#32263)
- Issue Templates: add option to have dropdown printed list (#31577)
- Allow searching issues by ID (#31479)
- Add
is_archived
option for issue indexer (#32735) - Improve attachment upload methods (#30513)
- Support issue template assignees (#31083)
- Prevent simultaneous editing of comments and issues (#31053)
- Add issue comment when moving issues from one column to another of the project (#29311)
-
Pull Request
- Display head branch more comfortable on pull request view (#32000)
- Simplify review UI (#31062)
- Allow force push to protected branches (#28086)
- Add line-through for deleted branch on pull request view page (#32500)
- Support requested_reviewers data in comment webhook events (#26178)
- Allow maintainers to view and edit files of private repos when "Allow maintainers to edit" is enabled (#32215)
- Allow including
Reviewed-on
/Reviewed-by
lines for custom merge messages (#31211)
-
Actions
- Render job title as commit message (#32748)
- Refactor RepoActionView.vue, add
::group::
support (#32713) - Make RepoActionView.vue support
##[group]
(#32770) - Support
pull_request_target
event for commit status (#31703) - Detect whether action view branch was deleted (#32764)
- Allow users with write permission to run actions (#32644)
- Show latest run when visit /run/latest (#31808)
-
Packages
-
Project
-
User & Organazition
- Use better name for userinfo structure (#32544)
- Use user.FullName in Oauth2 id_token response (#32542)
- Limit org member view of restricted users (#32211)
- Allow disabling authentication related user features (#31535)
- Add option to change mail from user display name (#31528)
- Use FullName in Emails to address the recipient if possible (#31527)
-
Administration
- Add support for a credentials chain for minio access (#31051)
- Move admin routers from /admin to /-/admin (#32189)
- Add cache test for admins (#31265)
- Add option for mailer to override mail headers (#27860)
- Azure blob storage support (#30995)
- Supports forced use of S3 virtual-hosted style (#30969)
- Move repository visibility to danger zone in the settings area (#31126)
-
Others
- Remove urls from translations (#31950)
- Simplify 404/500 page (#31409)
- Optimize installation-page experience (#32558)
- Refactor login page (#31530)
- Add new event commit status creation and webhook implementation (#27151)
- Repo Activity: count new issues that were closed (#31776)
- Set manual
tabindex
es on login page (#31689) - Add
YEAR
,MONTH
,MONTH_ENGLISH
,DAY
variables for template repos (#31584) - Add typescript guideline and typescript-specific eslint plugins and fix issues (#31521)
- Make toast support preventDuplicates (#31501)
- Fix tautological conditions (#30735)
- Issue change title notifications (#33050) #33065
API
- Implement update branch API (#32433)
- Fix missing outputs for jobs with matrix (#32823)
- Make API "compare" accept commit IDs (#32801)
- Add github compatible tarball download API endpoints (#32572)
- Harden runner updateTask and updateLog api (#32462)
- Add
DISABLE_ORGANIZATIONS_PAGE
andDISABLE_CODE_PAGE
settings for explore pages and fix an issue related to user search (#32288) - Make admins adhere to branch protection rules (#32248)
- Calculate
PublicOnly
for org membership only once (#32234) - Allow filtering PRs by poster in the ListPullRequests API (#32209)
- Return 404 instead of error when commit not exist (#31977)
- Save initial signup information for users to aid in spam prevention (#31852)
- Fix upload maven pacakge parallelly (#31851)
- Fix null requested_reviewer from API (#31773)
- Add permission description for API to add repo collaborator (#31744)
- Add return type to GetRawFileOrLFS and GetRawFile (#31680)
- Add skip secondary authorization option for public oauth2 clients (#31454)
- Add tag protection via rest api #17862 (#31295)
- Document possible action types for the user activity feed API (#31196)
- Add topics for repository API (#31127)
- Add support for searching users by email (#30908)
- Add API endpoints for getting action jobs status (#26673)
REFACTOR
- Update JS and PY dependencies (#31940)
- Enable
no-jquery/no-parse-html-literal
and fix violation (#31684) - Refactor image diff (#31444)
- Refactor CSRF token (#32216)
- Fix some typescript issues (#32586)
- Refactor names (#31405)
- Use per package global lock for container uploads instead of memory lock (#31860)
- Move team related functions to service layer (#32537)
- Move GetFeeds to service layer (#32526)
- Resolve lint for unused parameter and unnecessary type arguments (#30750)
- Reimplement GetUserOrgsList to make it simple and clear (#32486)
- Move some functions from issue.go to standalone files (#32468)
- Refactor sidebar assignee&milestone&project selectors (#32465)
- Refactor sidebar label selector (#32460)
- Fix a number of typescript issues (#32459)
- Refactor language menu and dom utils (#32450)
- Refactor issue page info (#32445)
- Split issue sidebar into small templates (#32444)
- Refactor template ctx and render utils (#32422)
- Refactor repo legacy (#32404)
- Refactor markup package (#32399)
- Refactor markup render system (#32533 & #32589 & #32612)
- Refactor the DB migration system slightly (#32344)
- Remove jQuery import from some files (#32512)
- Strict pagination check (#32548)
- Split mail sender sub package from mailer service package (#32618)
- Remove outdated code about fixture generation (#32708)
- Refactor RepoBranchTagSelector (#32681)
- Refactor issue list (#32755)
- Refactor LabelEdit (#32752)
- Split issue/pull view router function as multiple smaller functions (#32749)
- Refactor some LDAP code (#32849)
- Unify repo search order by logic (#30876)
- Remove duplicate empty repo check in delete branch API (#32569)
- Replace deprecated
math/rand
functions (#30733) - Remove fomantic dimmer module (#30723)
- Add types to fetch,toast,bootstrap,svg (#31627)
- Refactor webhook (#31587)
- Move AddCollabrator and CreateRepositoryByExample to service layer (#32419)
- Refactor RepoRefByType (#32413)
- Refactor: remove redundant err declarations (#32381)
- Refactor markup code (#31399)
- Refactor render system (orgmode) (#32671)
- Refactor render system (#32492)
- Refactor markdown render (#32736 & #32728)
- Refactor repo unit "disabled" check (#31389)
- Refactor route path normalization (#31381)
- Refactor to use UnsafeStringToBytes (#31358)
- Migrate vue components to setup (#32329)
- Refactor globallock (#31933)
- Use correct function name (#31887)
- Use a common message template instead of a special one (#31878)
- Fix a number of Typescript issues (#31877)
- Refactor dropzone (#31482)
- Move custom
tw-
helpers to tailwind plugin (#31184) - Replace
gt-word-break
withtw-break-anywhere
(#31183) - Drop
IDOrderDesc
for listing Actions task and always order byid DESC
(#31150) - Split common-global.js into separate files (#31438)
- Improve detecting empty files (#31332)
- Use
querySelector
over alternative DOM methods (#31280) - Remove jQuery
.text()
(#30506) - Use repo as of renderctx's member rather than a repoPath on metas (#29222)
- Refactor some frontend problems (#32646)
- Refactor DateUtils and merge TimeSince (#32409)
- Replace DateTime with proper functions (#32402)
- Replace DateTime with DateUtils (#32383)
- Convert frontend code to typescript (#31559)
- Refactor maven package registry (#33049) #33057
- Refactor testfixtures #33028
BUGFIXES
- Fix issues with inconsistent spacing in areas (#32607)
- Fix incomplete Actions status aggregations (#32859)
- In some lfs server implementations, they require the ref attribute. (#32838)
- Update the list of watchers and stargazers when clicking watch/unwatch or star/unstar (#32570)
- Fix
recentupdate
sorting bugs (#32505) - Fix incorrect "Target branch does not exist" in PR title (#32222)
- Handle "close" actionable references for manual merges (#31879)
- render plain text file if the LFS object doesn't exist (#31812)
- Fix Null Pointer error for CommitStatusesHideActionsURL (#31731)
- Fix loadRepository error when access user dashboard (#31719)
- Hide the "Details" link of commit status when the user cannot access actions (#30156)
- Fix duplicate dropdown dividers (#32760)
- Fix SSPI button visibility when SSPI is the only enabled method (#32841)
- Fix overflow on org header (#32837)
- Exclude protected branches from recently pushed (#31748)
- Fix large image overflow in comment page (#31740)
- Fix milestone deadline and date related problems (#32339)
- Fix markdown preview $$ support (#31514)
- Fix a compilation error in the Gitpod environment (#32559)
- Fix PR diff review form submit (#32596)
- Fix a number of typescript issues (#32308)
- Fix some function names in comment (#32300)
- Fix absolute-date (#32375)
- Clarify Actions resources ownership (#31724)
- Try to fix ACME directory problem (#33072) #33077
- Inherit submodules from template repository content (#16237) #33068
- Use project's redirect url instead of composing url (#33058) #33064
- Fix toggle commit body button ui when latest commit message is long (#32997) #33034
- Fix package error handling and npm meta and empty repo guide #33112
- Fix empty git repo handling logic and fix mobile view (#33101) #33102
- Fix line-number and scroll bugs (#33094) #33095
- Fix bleve fuzziness search (#33078) #33087
- Fix broken forms #33082
- Fix empty repo updated time (#33120) #33124
- Add missing transaction when set merge #33113
- Fix issue comment number (#30556) #33055
- Fix duplicate co-author in squashed merge commit messages (#33020) #33054
- Fix Agit pull request permission check (#32999) #33005
- Fix scoped label ui when contains emoji (#33007) #33014
- Fix bug on activities (#33008) #33016
- Fix review code comment avatar alignment (#33031) #33032
- Fix templating in pull request comparison (#33025) #33038
- Fix bug automerge cannot be chosed when there is only 1 merge style (#33040) #33043
- Fix settings not being loaded at CLI (#26402) #33048
- Support for email addresses containing uppercase characters when activating user account (#32998) #33001
- Support org labels when adding labels by label names (#32988) #32996
- Do not render truncated links in markdown (#32980) #32983
- Demilestone should not include milestone (#32923) #32979
- Fix Azure blob object Seek (#32974) #32975
- Fix maven pom inheritance (#32943) #32976
- Fix textarea newline handle (#32966) #32977
- Fix outdated tmpl code (#32953) #32961
- Fix commit range paging (#32944) #32962
- Fix repo avatar conflict (#32958) #32960
- Fix trailing comma not matched in the case of alphanumeric issue (#32945)
- Relax the version checking for Arch packages (#32908) #32913
- Add more load functions to make sure the reference object loaded (#32901) #32912
- Filter reviews of one pull request in memory instead of database to reduce slow response because of lacking database index (#33106) #33128
- Fix git remote error check, fix dependencies, fix js error (#33129) #33133
MISC
- Optimize branch protection rule loading (#32280)
- Bump to go 1.23 (#31855)
- Remove unused call to $.HeadRepo in view_title template (#32317)
- Do not display
attestation-manifest
and use short sha256 instead of full sha256 (#32851) - Upgrade htmx to 2.0.4 (#32834)
- Improve JSX/TSX support in code editor (#32833)
- Add User-Agent for gitea's self-implemented lfs client. (#32832)
- Use errors.New to replace fmt.Errorf with no parameters (#32800)
- Add "n commits" link to contributors in contributors graph page (#32799)
- Update dependencies, tweak eslint (#32719)
- Remove all "floated" CSS styles (#32691)
- Show tag name on branch/tag selector if repo shown from tag ref (#32689)
- Use new mail package instead of an unmintained one (#32682)
- Optimize the styling of icon buttons within file-header-right (#32675)
- Validate OAuth Redirect URIs (#32643)
- Support optional/configurable IAMEndpoint for Minio Client (#32581) (#32581)
- Make search box in issue sidebar dropdown list always show when scrolling (#32576)
- Bump CI,Flake and Snap to Node 22 (#32487)
- Update
github.com/meilisearch/meilisearch-go
(#32484) - Add
DEFAULT_MIRROR_REPO_UNITS
andDEFAULT_TEMPLATE_REPO_UNITS
options (#32416) - Update go dependencies (#32389)
- Update JS and PY dependencies (#32388)
- Upgrade rollup to 4.24.0 (#32312)
- Upgrade vue to 3.5.12 (#32311)
- Improve the maintainblity of the reserved username list (#32229)
- Upgrade htmx to 2.0.3 (#32192)
- Count typescript files as frontend for labeling (#32088)
- Only use Host header from reverse proxy (#32060)
- Failed authentications are logged to level Warning (#32016)
- Enhance USER_DISABLED_FEATURES to allow disabling change username or full name (#31959)
- Distinguish official vs non-official reviews, add tool tips, and upgr… (#31924)
- Update mermaid to v11 (#31913)
- Bump relative-time-element to v4.4.3 (#31910)
- Upgrade
htmx
to2.0.2
(#31847) - Add warning message in merge instructions when
AutodetectManualMerge
was not enabled (#31805) - Add types to various low-level functions (#31781)
- Update JS dependencies (#31766)
- Remove unused code from models/repos/release.go (#31756)
- Support delete user email in admin panel (#31690)
- Add
username
to OIDC introspection response (#31688) - Use GetDisplayName() instead of DisplayName() to generate rss feeds (#31687)
- Code editor theme enhancements (#31629)
- Update JS dependencies (#31616)
- Add types for js globals (#31586)
- Add back esbuild-loader for .js files (#31585)
- Don't show hidden labels when filling out an issue template (#31576)
- Allow synchronizing user status from OAuth2 login providers (#31572)
- Display app name in the registration email title (#31562)
- Use stable version of fabric (#31526)
- Support legacy _links LFS batch responses (#31513)
- Fix JS error with disabled attachment and easymde (#31511)
- Always use HTML attributes for avatar size (#31509)
- Use nolyfill to remove some polyfills (#31468)
- Disable issue/PR comment button given empty input (#31463)
- Add simple JS init performance trace (#31459)
- Bump htmx to 2.0.0 (#31413)
- Update JS dependencies, remove
eslint-plugin-jquery
(#31402) - Split org Propfile README to a new tab
overview
(#31373) - Update nix flake and add gofumpt (#31320)
- Code optimization (#31315)
- Enable poetry non-package mode (#31282)
- Optimize profile layout to enhance visual experience (#31278)
- Update
golang.org/x/net
(#31260) - Bump
@github/relative-time-element
to v4.4.1 (#31232) - Remove unnecessary inline style for tab-size (#31224)
- Update golangci-lint to v1.59.0 (#31221)
- Update chroma to v2.14.0 (#31177)
- Update JS dependencies (#31120)
- Improve the handling of
jobs.<job_id>.if
(#31070) - Clean up revive linter config, tweak golangci output (#30980)
- Use CSS
inset
shorthand (#30939) - Forbid deprecated
break-word
in CSS (#30934) - Remove obsolete monaco workaround (#30893)
- Update JS dependencies, add new eslint rules (#30840)
- Fix body margin shifting with modals, fix error on project column edit (#30831)
- Remove disk-clean workflow (#30741)
- Bump
github.com/google/go-github
to v61 (#30738) - Add built js files to eslint ignore (#30737)
- Use
ProtonMail/go-crypto
foropengpg
in tests (#30736) - Upgrade xorm to v1.3.9 and improve some migrations Sync (#29899)
- Added default sorting milestones by name (#27084)
- Enable
unparam
linter (#31277) - Use Alpine 3.21 for the docker images (#32924) #32951
- Bump x/net (#32896) #32899
- Use -s -w ldflags for release artifacts (#33041) #33042
- Remove aws go sdk package dependency (#33029) #33047
Instances on Gitea Cloud will be automatically upgraded to this version during the specified maintenance window.