summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2024-04-19Git 2.39.4v2.39.4Johannes Schindelin
2024-04-19Merge branch 'ownership-checks-in-local-clones'Johannes Schindelin
2024-04-19Merge branch 'defense-in-depth'Johannes Schindelin
2024-04-19fsck: warn about symlink pointing inside a gitdirJohannes Schindelin
2024-04-19core.hooksPath: add some protection while cloningJohannes Schindelin
2024-04-19init.templateDir: consider this config setting protectedJohannes Schindelin
2024-04-19clone: prevent hooks from running during a cloneJohannes Schindelin
2024-04-19Add a helper function to compare file contentsJohannes Schindelin
2024-04-17Merge branch 'icasefs-symlink-confusion'Johannes Schindelin
2024-04-17init: refactor the template directory discovery into its own functionJohannes Schindelin
2024-04-17find_hook(): refactor the `STRIP_EXTENSION` logicJohannes Schindelin
2024-04-17clone: when symbolic links collide with directories, keep the latterJohannes Schindelin
2024-04-17entry: report more colliding pathsJohannes Schindelin
2024-04-17t5510: verify that D/F confusion cannot lead to an RCEJohannes Schindelin
2024-04-17submodule: require the submodule path to contain directories onlyJohannes Schindelin
2024-04-17clone_submodule: avoid using `access()` on directoriesJohannes Schindelin
2024-04-17submodules: submodule paths must not contain symlinksJohannes Schindelin
2024-04-17clone: prevent clashing git dirs when cloning submodule in parallelFilip Hejsek
2024-04-17t7423: add tests for symlinked submodule directoriesFilip Hejsek
2024-04-17has_dir_name(): do not get confused by characters < '/'Filip Hejsek
2024-04-17docs: document security issues around untrusted .git dirsJeff King
2024-04-17upload-pack: disable lazy-fetching by defaultJeff King
2024-04-17fetch/clone: detect dubious ownership of local repositoriesJohannes Schindelin
2024-04-17t0411: add tests for cloning from partial repoFilip Hejsek
2024-04-17builtin/clone: refuse local clones of unsafe repositoriesPatrick Steinhardt
2024-04-17setup.c: introduce `die_upon_dubious_ownership()`Patrick Steinhardt
2024-04-17builtin/clone: abort when hardlinked source and target file differPatrick Steinhardt
2024-04-17builtin/clone: stop resolving symlinks when copying filesPatrick Steinhardt
2024-04-17Merge branch 'js/github-actions-update'Johannes Schindelin
2024-04-17Merge branch 'jc/maint-github-actions-update'Johannes Schindelin
2024-04-17ci(linux32): add a note about Actions that must not be updatedJohannes Schindelin
2024-04-17GitHub Actions: update to github-script@v7Junio C Hamano
2024-04-17ci: bump remaining outdated Actions versionsJohannes Schindelin
2024-04-17GitHub Actions: update to checkout@v4Junio C Hamano
2024-04-17Merge branch 'quicker-asan-lsan'Johannes Schindelin
2024-04-17Merge branch 'jk/test-lsan-denoise-output'Johannes Schindelin
2024-04-16Merge branch 'js/ci-use-macos-13'Johannes Schindelin
2024-04-16Merge branch 'backport/jk/libcurl-8.7-regression-workaround' into maint-2.39Johannes Schindelin
2024-04-16Merge branch 'jk/redact-h2h3-headers-fix' into maint-2.42Johannes Schindelin
2024-04-16Merge branch 'jk/httpd-test-updates'Johannes Schindelin
2024-04-16Merge branch 'jk/http-test-fixes'Johannes Schindelin
2024-04-16ci(linux-asan/linux-ubsan): let's save some timeJohannes Schindelin
2024-04-16test-lib: ignore uninteresting LSan outputJeff King
2024-04-16ci: upgrade to using macos-13Johannes Schindelin
2024-04-16Merge branch 'jh/fsmonitor-darwin-modernize'Johannes Schindelin
2024-04-10remote-curl: add Transfer-Encoding header only for older curlJeff King
2024-04-10INSTALL: bump libcurl version to 7.21.3Jeff King
2024-04-10http: reset POSTFIELDSIZE when clearing curl handleJeff King
2023-09-15http: update curl http/2 info matching for curl 8.3.0Jeff King
2023-09-15http: factor out matching of curl http/2 trace linesJeff King
generated by cgit v1.3 (git 2.53.0) at 2026-04-15 05:49:59 +0000