Commits · 4d5c75e5dc80294f8cc26e36beb5f83338469153 · Mirrors / github.com / openSUSE_open-build-service

Mar 28, 2019
- Remove `use_source` in require_package from WebuiController · 4d5c75e5
  David Kang authored Mar 27, 2019
```
Co-authored-by: Dany Marcoux <dmarcoux@suse.com>
```
  4d5c75e5
Mar 26, 2019
- Merge pull request #7273 from dmarcoux/dockerfile-remove-symlink · 127a7a77
  Björn Geuken authored Mar 26, 2019
```
Remove symlink to foreman in Dockerfile
```
  127a7a77
Mar 25, 2019

Remove symlink to foreman in Dockerfile · 7204a3cd

Dany Marcoux authored Mar 25, 2019

This isn't needed anymore as it produces the following error:

ln: failed to create symbolic link '/usr/bin/foreman': File exists

7204a3cd

Mar 20, 2019

Merge pull request #7235 from Ana06/create_flag_authorization_2.9 · ae859959
Dany Marcoux authored Mar 20, 2019
```
Only allow admins to create sourceaccess/access repositories flags
```
ae859959

Only allow admins to create sourceaccess/access repositories flags · d585f51b

Ana María Martínez Gómez authored Mar 20, 2019

Webui::RepositoriesController.create_flag allowed creating the
access/sourceaccess flags, while in
SourceController#project_command_set_flag this is only allowed for
admins.

This was fixed in master in:
https://github.com/openSUSE/open-build-service/pull/7169/commits/5f89387c86be9bcefffe64e78125efa88e3c3c4f

d585f51b

Mar 19, 2019
- Merge pull request #7169 from vpereira/2.9_download_repository_policy · 6d81b077
  Björn Geuken authored Mar 19, 2019
```
2.9 download repository policy
```
  6d81b077
- Just admins are allowed to create DoD repositories, backport from (boo#1125781) · 5f89387c
  Victor Pereira authored Mar 13, 2019
  
  5f89387c
Mar 13, 2019
- Merge pull request #7136 from vpereira/upper_range_event_2_9 · 65551720
  Henne Vogelsang authored Mar 13, 2019
```
Add upper-limit to range to avoid long running queries (boo#1125812)
```
  65551720
Mar 07, 2019
- Add upper-limit to range to avoid long running queries (boo#1125812) · 602d80f6
  Victor Pereira authored Mar 07, 2019
  
  602d80f6
Nov 08, 2018
- Merge pull request #6195 from openSUSE/depfu/update/srcapi-2.9/rack-2.0.6 · 1af86aa0
  Christian Bruckmayer authored Nov 08, 2018
```
🚨 [security] [src/api - 2.9] Update rack: 2.0.5 → 2.0.6 (patch)
```
  1af86aa0
Nov 07, 2018
- Update rack to version 2.0.6 · 631945e2
  depfu[bot] authored Nov 06, 2018
  
  631945e2
Oct 31, 2018
- Merge pull request #6152 from openSUSE/depfu/update/srcapi-2.9/loofah-2.2.3 · 9302d531
  Björn Geuken authored Oct 30, 2018
```
🚨 [security] [src/api - 2.9] Update loofah: 2.2.2 → 2.2.3 (patch)
```
  9302d531
Oct 30, 2018
- Update loofah to version 2.2.3 · 16ad0976
  depfu[bot] authored Oct 30, 2018
  
  16ad0976
Oct 08, 2018
- Merge pull request #6050 from hennevogel/bugfix/nullbytes · 3128820f
  Henne Vogelsang authored Oct 08, 2018
```
Fix xml output for comments
```
  2.9.5
  
  3128820f
- Update 2.9.5 release notes · 8ca9200b
  Henne Vogelsang authored Oct 08, 2018
  
  8ca9200b
- Validate input of comments, without null character · e17c4aac
  Eduardo Navarro authored Sep 18, 2018
```
This prevents the creation of a comment with the null character, that
would make the comment invalid for xml output.

Co-authored-by: Victor Pereira <vpereira@suse.com>
```
  e17c4aac
- Prevent invalid xml output of null characters · 0124d66e
  Eduardo Navarro authored Sep 18, 2018
```
Prevent the xml renderer from throwing a 500 internal server error:

ActionView::Template::Error (string contains null byte)

Co-authored-by: Victor Pereira <vpereira@suse.com>
```
  0124d66e
- [dist] add a note about preinstallimage fix · a344d8cd
  Adrian Schröter authored Oct 08, 2018
  
  a344d8cd
Oct 05, 2018
- [backend] bs_worker: unbreak preinstallimages · 203b45ce
  Michael Schroeder authored Oct 05, 2018
```
Broken with commit 30334760
```
  203b45ce
Oct 04, 2018
- Merge pull request #6015 from hennevogel/bugfix/nullbytes · 1b468833
  Henne Vogelsang authored Oct 04, 2018
```
Prevent creation of a request with an ID attribute
```
  1b468833
- Prevent creation of a request with an ID attribute · 3ce4c557
  Eduardo Navarro authored Sep 26, 2018
```
Co-authored-by: David Kang <dkang@suse.com>
```
  3ce4c557
- Parse xml outside new_from_xml · a68c54f3
  Eduardo Navarro authored Sep 19, 2018
```
This makes possible to add validations of the parsed xml in the
controller.
```
  a68c54f3
- Introduces a commit message template · 3c1fe12c
  Henne Vogelsang authored Oct 04, 2018
```
A bunch of us have talked about what the content of good commit meesages should
look like and came up with this template.
```
  3c1fe12c
- Adopt .gitignore to master · 6a28aa17
  Henne Vogelsang authored Oct 04, 2018
```
So you can switch branches without producing untracked files.
```
  6a28aa17
Sep 26, 2018
- [doc] update release note documentation · 34b5ca01
  Adrian Schröter authored Sep 26, 2018
  
  34b5ca01
- [backend] fix another bug in the gen_meta code · 87b4defd
  Michael Schroeder authored Jul 19, 2018
```
Commit afed7d40 fixed a
problem causing endless rebuilds but introduced a new bug
causing endless rebuilds in other corner cases. That's
why I hate messing with the gen_meta code, it's impossible
to test all corner cases.
```
  87b4defd
- [backend] fix implementation of genmetaalgo 1 in BSBuild · d6c31061
  Michael Schroeder authored Jul 03, 2018
```
It was different to the implementation in perl-BSSolv, leading
to endless rebuilds in some rare cases.
```
  d6c31061
- [backend] disable notification payload pruning · d4f18640
  Michael Schroeder authored Jul 30, 2018
```
Deleting it by timestamp is too dangerous, as the assumption that
the API fetches the payload right after fetching the notification
event is no longer valid. So disable automatic pruning and rely
on the API doing manual delete requests.
```
  d4f18640
- [backend] block wipe events to locked packages · 49e5fbab
  Adrian Schröter authored Aug 17, 2018
  
  49e5fbab
- [dist] initial 2.9.5 release notes file · 5d781d5b
  Adrian Schröter authored Sep 26, 2018
  
  5d781d5b
- [backend] document --recheck-dod option · bf5c913d
  Adrian Schröter authored Sep 26, 2018
  
  bf5c913d
- [backend] bs_admin: add --recheck-dod command to force recheck a DoD · 987e7aed
  Michael Schroeder authored Sep 20, 2018
```
It supports a project or url prefix as argument
```
  987e7aed
Sep 05, 2018
- Merge pull request #5769 from openSUSE/dependabot/bundler/src/api/2.9/ffi-1.9.25 · a9e4726e
  Christian Bruckmayer authored Sep 05, 2018
```
[Security] Bump ffi from 1.9.18 to 1.9.25 in /src/api
```
  a9e4726e
Sep 01, 2018

[Security] Bump ffi from 1.9.18 to 1.9.25 in /src/api · 6cca93f0

dependabot[bot] authored Sep 01, 2018

Bumps [ffi](https://github.com/ffi/ffi) from 1.9.18 to 1.9.25. **This update includes security fixes.**
- [Release notes](https://github.com/ffi/ffi/releases)
- [Changelog](https://github.com/ffi/ffi/blob/master/CHANGELOG.md)
- [Commits](https://github.com/ffi/ffi/compare/1.9.18...1.9.25

)

Signed-off-by: dependabot[bot] <support@dependabot.com>

6cca93f0

Aug 30, 2018
- Merge pull request #5752 from dmarcoux/2.9-disable-travis-notifications · b2a74b0b
  Christian Bruckmayer authored Aug 30, 2018
```
Disable notifications for Travis
```
  b2a74b0b
- Disable notifications for Travis · d6554234
  Dany Marcoux authored Aug 30, 2018
  
  d6554234
Aug 09, 2018
- Merge pull request #5597 from eduardoj/fix_repo_2.9 · efb5a4ef
  Eduardo J authored Aug 09, 2018
```
Fix repository URL for running TravisCI
```
  efb5a4ef
- Fix repository URL for running TravisCI · eec8820f
  Eduardo Navarro authored Aug 09, 2018
```
On 2.9 branch this was pointing to Unstable. This caused not to find
packages already deleted in Unstable, and TravisCI to fail.
```
  eec8820f
Jul 24, 2018
- Merge pull request #5457 from bgeuken/fix_link_2_9 · ba1b6922
  Björn Geuken authored Jul 24, 2018
```
Fix link 2 9
```
  2.9.4
  
  ba1b6922
- [frontend] Update sprockets to version 3.7.2 · bc051893
  Björn Geuken authored Jul 24, 2018
```
This is needed to address CVE-2018-3760.

  https://groups.google.com/forum/#!topic/rubyonrails-security/ft_J--l55fM
```
  bc051893