From b1db0ee34b04aa2d749716cf083a94c7f3b8e1fe Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 13 Jun 2024 17:58:45 +0000 Subject: [PATCH] fix(deps): update forgejo docker tag to v1.21.11-2 (maint/v5) (#581) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Update | Change | |---|---|---| | [forgejo](https://forgejo.org) ([source](https://codeberg.org/forgejo/forgejo)) | patch | `1.21.11-1` -> `1.21.11-2` | --- ### Release Notes
forgejo/forgejo (forgejo) ### [`v1.21.11-2`](https://codeberg.org/forgejo/forgejo/blob/HEAD/RELEASE-NOTES.md#12111-2) [The complete list of new commits included in the Forgejo v1.21.11-2 release can be reviewed here](https://codeberg.org/forgejo/forgejo/compare/v1.21.11-1...v1.21.11-2), or from the command line with: ```shell $ git clone https://codeberg.org/forgejo/forgejo $ git -C forgejo log --oneline --no-merges v1.21.11-1..v1.21.11-2 ``` This stable release contains a **security fix**. - Recommended Action We recommend that all Forgejo installations are [upgraded](https://forgejo.org/docs/v1.21/admin/upgrade/) to the latest version as soon as possible. - [Forgejo Semantic Version](https://forgejo.org/docs/v1.21/user/semver/) The semantic version was updated to `6.0.13+0-gitea-1.21.10` - Security fix - [PR](https://codeberg.org/forgejo/forgejo/pulls/4047). Fixed: the OAuth2 implementation does not always require authentication for public clients, a requirement of [RFC 6749 Section 10.2](https://datatracker.ietf.org/doc/html/rfc6749#section-10.2). A malicious client can impersonate another client and obtain access to protected resources if the impersonated client fails to, or is unable to, keep its client credentials confidential.
--- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). Reviewed-on: https://code.forgejo.org/forgejo-helm/forgejo-helm/pulls/581 Co-authored-by: Renovate Bot Co-committed-by: Renovate Bot --- Chart.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Chart.yaml b/Chart.yaml index 7b27d11..2b69f52 100644 --- a/Chart.yaml +++ b/Chart.yaml @@ -3,7 +3,7 @@ name: forgejo description: Forgejo Helm chart for Kubernetes type: application version: 0.0.0 -appVersion: 1.21.11-1 +appVersion: 1.21.11-2 icon: https://code.forgejo.org/forgejo/forgejo/raw/branch/forgejo/assets/logo.svg home: https://forgejo.org/