summaryrefslogtreecommitdiffstats
AgeCommit message (Expand)AuthorLines
2024-04-19Git 2.40.2v2.40.2Johannes Schindelin-2/+9
2024-04-19Sync with 2.39.4Johannes Schindelin-123/+1307
2024-04-19Git 2.39.4v2.39.4Johannes Schindelin-2/+81
2024-04-19Merge branch 'ownership-checks-in-local-clones'Johannes Schindelin-5/+58
2024-04-19Merge branch 'defense-in-depth'Johannes Schindelin-30/+538
2024-04-19fsck: warn about symlink pointing inside a gitdirJohannes Schindelin-0/+117
2024-04-19core.hooksPath: add some protection while cloningJohannes Schindelin-1/+27
2024-04-19init.templateDir: consider this config setting protectedJohannes Schindelin-7/+61
2024-04-19clone: prevent hooks from running during a cloneJohannes Schindelin-1/+94
2024-04-19Add a helper function to compare file contentsJohannes Schindelin-0/+123
2024-04-17Merge branch 'icasefs-symlink-confusion'Johannes Schindelin-57/+559
2024-04-17init: refactor the template directory discovery into its own functionJohannes Schindelin-18/+37
2024-04-17find_hook(): refactor the `STRIP_EXTENSION` logicJohannes Schindelin-7/+11
2024-04-17clone: when symbolic links collide with directories, keep the latterJohannes Schindelin-2/+31
2024-04-17entry: report more colliding pathsJohannes Schindelin-1/+20
2024-04-17t5510: verify that D/F confusion cannot lead to an RCEJohannes Schindelin-0/+24
2024-04-17submodule: require the submodule path to contain directories onlyJohannes Schindelin-5/+113
2024-04-17clone_submodule: avoid using `access()` on directoriesJohannes Schindelin-1/+1
2024-04-17submodules: submodule paths must not contain symlinksJohannes Schindelin-0/+83
2024-04-17clone: prevent clashing git dirs when cloning submodule in parallelFilip Hejsek-2/+66
2024-04-17t7423: add tests for symlinked submodule directoriesFilip Hejsek-0/+66
2024-04-17has_dir_name(): do not get confused by characters < '/'Filip Hejsek-53/+47
2024-04-17docs: document security issues around untrusted .git dirsJeff King-0/+46
2024-04-17upload-pack: disable lazy-fetching by defaultJeff King-0/+46
2024-04-17fetch/clone: detect dubious ownership of local repositoriesJohannes Schindelin-3/+38
2024-04-17t0411: add tests for cloning from partial repoFilip Hejsek-0/+60
2024-04-17builtin/clone: refuse local clones of unsafe repositoriesPatrick Steinhardt-0/+38
2024-04-17setup.c: introduce `die_upon_dubious_ownership()`Patrick Steinhardt-0/+33
2024-04-17builtin/clone: abort when hardlinked source and target file differPatrick Steinhardt-1/+20
2024-04-17builtin/clone: stop resolving symlinks when copying filesPatrick Steinhardt-5/+1
2024-04-17Merge branch 'js/github-actions-update'Johannes Schindelin-10/+10
2024-04-17Merge branch 'jc/maint-github-actions-update'Johannes Schindelin-10/+10
2024-04-17ci(linux32): add a note about Actions that must not be updatedJohannes Schindelin-2/+2
2024-04-17GitHub Actions: update to github-script@v7Junio C Hamano-1/+1
2024-04-17ci: bump remaining outdated Actions versionsJohannes Schindelin-8/+8
2024-04-17GitHub Actions: update to checkout@v4Junio C Hamano-9/+9
2024-04-17Merge branch 'quicker-asan-lsan'Johannes Schindelin-0/+4
2024-04-17Merge branch 'jk/test-lsan-denoise-output'Johannes Schindelin-0/+1
2024-04-16Merge branch 'js/ci-use-macos-13'Johannes Schindelin-21/+30
2024-04-16Merge branch 'backport/jk/libcurl-8.7-regression-workaround' into maint-2.39Johannes Schindelin-1/+14
2024-04-16Merge branch 'jk/redact-h2h3-headers-fix' into maint-2.42Johannes Schindelin-5/+31
2024-04-16Merge branch 'jk/httpd-test-updates'Johannes Schindelin-32/+12
2024-04-16Merge branch 'jk/http-test-fixes'Johannes Schindelin-114/+122
2024-04-16ci(linux-asan/linux-ubsan): let's save some timeJohannes Schindelin-0/+4
2024-04-16test-lib: ignore uninteresting LSan outputJeff King-0/+1
2024-04-16ci: upgrade to using macos-13Johannes Schindelin-7/+5
2024-04-16Merge branch 'jh/fsmonitor-darwin-modernize'Johannes Schindelin-14/+25
2024-04-12repository: avoid leaking `fsmonitor` dataJohannes Schindelin-0/+2
2024-04-10remote-curl: add Transfer-Encoding header only for older curlJeff King-0/+12
2024-04-10INSTALL: bump libcurl version to 7.21.3Jeff King-1/+1
generated by cgit v1.2.3 (git 2.46.0) at 2026-04-29 06:45:48 +0000