Affected by GO-2023-1894 and 20 other vulnerabilities

GO-2023-1894: code.gitea.io/gitea Open Redirect vulnerability

GO-2024-3056: Gitea Cross-site Scripting Vulnerability in code.gitea.io/gitea

GO-2025-4258: Gitea mishandles authorization for deletion of releases in code.gitea.io/gitea

GO-2025-4261: Gitea allows attackers to add attachments with forbidden file extensions in code.gitea.io/gitea

GO-2025-4262: Gitea: anonymous user can visit private user's project in code.gitea.io/gitea

GO-2025-4263: Gitea allows XSS because the search input box (for creating tags and branches) is v-html instead of v-text in code.gitea.io/gitea

GO-2025-4264: Gitea sometimes mishandles propagation of token scope for access control within one of its own package registries in code.gitea.io/gitea

GO-2025-4265: Gitea vulnerable to Cross-site Scripting in code.gitea.io/gitea

GO-2025-4266: Gitea inadvertently discloses users' login times by allowing (for example) the lastlogintime explore/users sort order in code.gitea.io/gitea

GO-2025-4267: Gitea doesn't adequately enforce branch deletion permissions after merging a pull request. in code.gitea.io/gitea

GO-2025-4268: Gitea mishandles access to a private resource upon receiving an API token with scope limited to public resources in code.gitea.io/gitea

GO-2026-4274: Gitea's /api/v1/user endpoint has different responses for failed authentication depending on whether a username exists in code.gitea.io/gitea

GO-2026-4362: Gitea improperly exposes issue and pull request titles in code.gitea.io/gitea

GO-2026-4363: Gitea does not properly validate repository ownership when deleting Git LFS locks in code.gitea.io/gitea

GO-2026-4364: Gitea does not properly validate repository ownership when linking attachments to releases in code.gitea.io/gitea

GO-2026-4365: Gitea may send release notification emails for private repositories to users whose access has been revoked in code.gitea.io/gitea

GO-2026-4366: Gitea does not properly verify authorization when canceling scheduled auto-merges via the web interface in code.gitea.io/gitea

GO-2026-4367: Gitea has improper access control for uploaded attachments in code.gitea.io/gitea

GO-2026-4368: Gitea improperly exposes issue titles and repository names through previously started stopwatches in code.gitea.io/gitea

GO-2026-4369: Gitea does not properly validate ownership when toggling OpenID URI visibility in code.gitea.io/gitea

GO-2026-4370: Gitea does not properly validate project ownership in organization project operations in code.gitea.io/gitea

label

package

v1.19.0 Latest Latest Go to latest Published: Mar 20, 2023 License: MIT Imports: 6 Imported by: 8

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/go-gitea/gitea

Documentation ¶

Index ¶

func IsErrTemplateLoad(err error) bool
func LoadFormatted(name string) (string, error)
func NormalizeColor(color string) (string, error)
type ErrTemplateLoad
- func (err ErrTemplateLoad) Error() string
type Label
- func GetTemplateFile(name string) ([]*Label, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func IsErrTemplateLoad ¶

func IsErrTemplateLoad(err error) bool

IsErrTemplateLoad checks if an error is a ErrTemplateLoad.

func LoadFormatted ¶

func LoadFormatted(name string) (string, error)

LoadFormatted loads the labels' list of a template file as a string separated by comma

func NormalizeColor ¶

func NormalizeColor(color string) (string, error)

NormalizeColor normalizes a color string to a 6-character hex code

Types ¶

type ErrTemplateLoad ¶

type ErrTemplateLoad struct {
	TemplateFile  string
	OriginalError error
}

ErrTemplateLoad represents a "ErrTemplateLoad" kind of error.

func (ErrTemplateLoad) Error ¶

func (err ErrTemplateLoad) Error() string

type Label ¶

type Label struct {
	Name        string `yaml:"name"`
	Color       string `yaml:"color"`
	Description string `yaml:"description,omitempty"`
	Exclusive   bool   `yaml:"exclusive,omitempty"`
}

Label represents label information loaded from template

func GetTemplateFile ¶

func GetTemplateFile(name string) ([]*Label, error)

GetTemplateFile loads the label template file by given name, then parses and returns a list of name-color pairs and optionally description.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL