Bug 284360 - www/gitea: update to 1.23.1 (fixes security vulnerability)
Summary: www/gitea: update to 1.23.1 (fixes security vulnerability)
Status: In Progress
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Vladimir Druzenko
URL: https://blog.gitea.com/release-of-1.2...
Keywords:
Depends on:
Blocks:
 
Reported: 2025-01-26 11:06 UTC by Stefan Bethke
Modified: 2025-01-26 18:48 UTC (History)
3 users (show)

See Also:
stb: maintainer-feedback+

Attachments
port and vuxml (5.16 KB, patch)
2025-01-26 11:06 UTC, Stefan Bethke 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Bethke 2025-01-26 11:06:07 UTC 
Created attachment 257002 [details]
port and vuxml

Announcement: https://blog.gitea.com/release-of-1.23.0/
Release Notes: https://github.com/go-gitea/gitea/releases/tag/v1.23.1 and https://github.com/go-gitea/gitea/releases/tag/v1.23.0


While here, add logging of stderr output, and better explain how to manually add secrets to the config.
Comment 1 commit-hook freebsd_committer freebsd_triage 2025-01-26 18:40:25 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=95b887efad8f60836bed72f9880dfcddb4a5f0bd

commit 95b887efad8f60836bed72f9880dfcddb4a5f0bd
Author:     Stefan Bethke <stb@lassitu.de>
AuthorDate: 2025-01-26 18:35:05 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-01-26 18:35:05 +0000

    www/gitea: Update 1.22.6 → 1.23.1 (fixes security vulnerability)

    Announcement:
    https://blog.gitea.com/release-of-1.23.0/
    Release Notes:
    https://github.com/go-gitea/gitea/releases/tag/v1.23.0
    https://github.com/go-gitea/gitea/releases/tag/v1.23.1

    PR:     284360
    MFH:    2025Q1

 www/gitea/Makefile                |  9 ++++++---
 www/gitea/distinfo                |  6 +++---
 www/gitea/files/app.ini.sample.in | 16 +++++++++-------
 www/gitea/files/gitea.in          |  1 +
 www/gitea/pkg-plist               |  3 +++
 5 files changed, 22 insertions(+), 13 deletions(-)
Comment 2 commit-hook freebsd_committer freebsd_triage 2025-01-26 18:45:28 UTC 
A commit in branch 2025Q1 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=e538d246b3cbb0ab9875c2804a8a7ad612f0dd47

commit e538d246b3cbb0ab9875c2804a8a7ad612f0dd47
Author:     Stefan Bethke <stb@lassitu.de>
AuthorDate: 2025-01-26 18:35:05 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-01-26 18:44:26 +0000

    www/gitea: Update 1.22.6 → 1.23.1 (fixes security vulnerability)

    Announcement:
    https://blog.gitea.com/release-of-1.23.0/
    Release Notes:
    https://github.com/go-gitea/gitea/releases/tag/v1.23.0
    https://github.com/go-gitea/gitea/releases/tag/v1.23.1

    PR:     284360
    MFH:    2025Q1
    (cherry picked from commit 95b887efad8f60836bed72f9880dfcddb4a5f0bd)

 www/gitea/Makefile                |  9 ++++++---
 www/gitea/distinfo                |  6 +++---
 www/gitea/files/app.ini.sample.in | 16 +++++++++-------
 www/gitea/files/gitea.in          |  1 +
 www/gitea/pkg-plist               |  3 +++
 5 files changed, 22 insertions(+), 13 deletions(-)
Comment 3 Vladimir Druzenko freebsd_committer freebsd_triage 2025-01-26 18:48:43 UTC 
My last two commits to security/vuxml/vuln/*.xml were buggy, so I'm not taking the risk again.
Can anyone from Port Secteam do this?