From fb22e5ed3d82c97ecf230cde626bbcc8ee12a97b33b0cae178b091a9617e3296 Mon Sep 17 00:00:00 2001
From: Richard Rahl <rrahl0@proton.me>
Date: Fri, 5 Apr 2024 19:02:52 +0000
Subject: [PATCH] Accepting request 1165705 from
 home:rrahl0:branches:devel:tools:scm

- update to 1.21.10-0:
  * CVE-2023-45288 which permits an attacker to cause an HTTP/2 endpoint to
    read arbitrary amounts of header data
  * Fix to not remove repository avatars when the doctor runs with --fix
    on the repository archives.
  * Detect protected branch on branch rename.
  * Don't delete inactive emails explicitly.
  * Fix user interface when a review is deleted without refreshing.
  * Fix paths when finding files via the web interface that were not escaped.
  * Respect DEFAULT_ORG_MEMBER_VISIBLE setting when adding creator to org.
  * Fix duplicate migrated milestones.
  * Fix inline math blocks can't be preceeded/followed by alphanumerical
    characters.

OBS-URL: https://build.opensuse.org/request/show/1165705
OBS-URL: https://build.opensuse.org/package/show/devel:tools:scm/forgejo?expand=0&rev=9
---
 forgejo-src-1.21.10-0.tar.gz     |  3 +++
 forgejo-src-1.21.10-0.tar.gz.asc |  7 +++++++
 forgejo-src-1.21.8-0.tar.gz      |  3 ---
 forgejo-src-1.21.8-0.tar.gz.asc  |  7 -------
 forgejo.changes                  | 17 +++++++++++++++++
 forgejo.spec                     |  2 +-
 node_modules.obscpio             |  4 ++--
 node_modules.spec.inc            |  2 +-
 package-lock.json                |  8 ++++----
 9 files changed, 35 insertions(+), 18 deletions(-)
 create mode 100644 forgejo-src-1.21.10-0.tar.gz
 create mode 100644 forgejo-src-1.21.10-0.tar.gz.asc
 delete mode 100644 forgejo-src-1.21.8-0.tar.gz
 delete mode 100644 forgejo-src-1.21.8-0.tar.gz.asc

diff --git a/forgejo-src-1.21.10-0.tar.gz b/forgejo-src-1.21.10-0.tar.gz
new file mode 100644
index 0000000..da7a6a2
--- /dev/null
+++ b/forgejo-src-1.21.10-0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0cc21835404e40355cf7125b479efebb1fecf2cc17d018d4d54521d75943caf5
+size 58820868
diff --git a/forgejo-src-1.21.10-0.tar.gz.asc b/forgejo-src-1.21.10-0.tar.gz.asc
new file mode 100644
index 0000000..4f17a1b
--- /dev/null
+++ b/forgejo-src-1.21.10-0.tar.gz.asc
@@ -0,0 +1,7 @@
+-----BEGIN PGP SIGNATURE-----
+
+iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZg74swAKCRCkthotxZI3
+EBzXAQCmG82PVpACkS5CtOpszxURBNf5TeAeDfzJQWrT9484OQD/Xhuk00rUL+LY
+hsj8u8sFppW1AgEtM1SufLQsUeZIaAI=
+=+By3
+-----END PGP SIGNATURE-----
diff --git a/forgejo-src-1.21.8-0.tar.gz b/forgejo-src-1.21.8-0.tar.gz
deleted file mode 100644
index 19d89a0..0000000
--- a/forgejo-src-1.21.8-0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7a7b93de246abc2ae1f078165a25e8cd336b50f3328b99af455ac9fd89cb5a7d
-size 58828827
diff --git a/forgejo-src-1.21.8-0.tar.gz.asc b/forgejo-src-1.21.8-0.tar.gz.asc
deleted file mode 100644
index 71e1bf4..0000000
--- a/forgejo-src-1.21.8-0.tar.gz.asc
+++ /dev/null
@@ -1,7 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iHUEABYIAB0WIQTrEU9ebA3CvN0YNVCkthotxZI3EAUCZf8BtwAKCRCkthotxZI3
-EPMdAP44oMzY6PhCP0t9kNtPYlOjnFyBhD0vcPqXhhIwx4bsFQEAnhnblFyF8jv0
-FbrF4nQe/wrM96hzu+wzpFDKKTEgjAA=
-=LltT
------END PGP SIGNATURE-----
diff --git a/forgejo.changes b/forgejo.changes
index ce0149a..ce751c7 100644
--- a/forgejo.changes
+++ b/forgejo.changes
@@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Fri Apr  5 18:39:07 UTC 2024 - Richard Rahl <rrahl0@proton.me>
+
+- update to 1.21.10-0:
+  * CVE-2023-45288 which permits an attacker to cause an HTTP/2 endpoint to
+    read arbitrary amounts of header data
+  * Fix to not remove repository avatars when the doctor runs with --fix
+    on the repository archives.
+  * Detect protected branch on branch rename.
+  * Don't delete inactive emails explicitly.
+  * Fix user interface when a review is deleted without refreshing.
+  * Fix paths when finding files via the web interface that were not escaped.
+  * Respect DEFAULT_ORG_MEMBER_VISIBLE setting when adding creator to org.
+  * Fix duplicate migrated milestones.
+  * Fix inline math blocks can't be preceeded/followed by alphanumerical
+    characters.
+
 -------------------------------------------------------------------
 Thu Mar 28 06:58:20 UTC 2024 - Richard Rahl <rrahl0@proton.me>
 
diff --git a/forgejo.spec b/forgejo.spec
index 1db59ca..693eb17 100644
--- a/forgejo.spec
+++ b/forgejo.spec
@@ -16,7 +16,7 @@
 #
 
 
-%define gitea_version 1.21.8
+%define gitea_version 1.21.10
 %define forgejo_version 0
 %if 0%{?suse_version} > 1600
 # TW
diff --git a/node_modules.obscpio b/node_modules.obscpio
index d51f071..7b83d45 100644
--- a/node_modules.obscpio
+++ b/node_modules.obscpio
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:4ae8c774b10d0e8186ca477b17a554be49834c5b4331f77fc2e2656c674fae0d
-size 265974172
+oid sha256:30c40ffd42989beb35187d7976c1332a890e5c6c96308c7016fe155c62d2820a
+size 265974396
diff --git a/node_modules.spec.inc b/node_modules.spec.inc
index 9424c50..6dacc4f 100644
--- a/node_modules.spec.inc
+++ b/node_modules.spec.inc
@@ -570,7 +570,7 @@ Source10568:         https://registry.npmjs.org/jsonpath-plus/-/jsonpath-plus-6.
 Source10569:         https://registry.npmjs.org/jsonpath-plus/-/jsonpath-plus-7.1.0.tgz#/jsonpath-plus-7.1.0.tgz
 Source10570:         https://registry.npmjs.org/jsonpointer/-/jsonpointer-5.0.1.tgz#/jsonpointer-5.0.1.tgz
 Source10571:         https://registry.npmjs.org/just-extend/-/just-extend-5.1.1.tgz#/just-extend-5.1.1.tgz
-Source10572:         https://registry.npmjs.org/katex/-/katex-0.16.9.tgz#/katex-0.16.9.tgz
+Source10572:         https://registry.npmjs.org/katex/-/katex-0.16.10.tgz#/katex-0.16.10.tgz
 Source10573:         https://registry.npmjs.org/keyv/-/keyv-4.5.3.tgz#/keyv-4.5.3.tgz
 Source10574:         https://registry.npmjs.org/khroma/-/khroma-2.0.0.tgz#/khroma-2.0.0.tgz
 Source10575:         https://registry.npmjs.org/kind-of/-/kind-of-6.0.3.tgz#/kind-of-6.0.3.tgz
diff --git a/package-lock.json b/package-lock.json
index 93ff25d..d8242df 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -27,7 +27,7 @@
         "escape-goat": "4.0.0",
         "fast-glob": "3.3.1",
         "jquery": "3.7.1",
-        "katex": "0.16.9",
+        "katex": "0.16.10",
         "license-checker-webpack-plugin": "0.2.1",
         "lightningcss-loader": "2.1.0",
         "mermaid": "10.6.1",
@@ -6726,9 +6726,9 @@
       "integrity": "sha512-b+z6yF1d4EOyDgylzQo5IminlUmzSeqR1hs/bzjBNjuGras4FXq/6TrzjxfN0j+TmI0ltJzTNlqXUMCniciwKQ=="
     },
     "node_modules/katex": {
-      "version": "0.16.9",
-      "resolved": "https://registry.npmjs.org/katex/-/katex-0.16.9.tgz",
-      "integrity": "sha512-fsSYjWS0EEOwvy81j3vRA8TEAhQhKiqO+FQaKWp0m39qwOzHVBgAUBIXWj1pB+O2W3fIpNa6Y9KSKCVbfPhyAQ==",
+      "version": "0.16.10",
+      "resolved": "https://registry.npmjs.org/katex/-/katex-0.16.10.tgz",
+      "integrity": "sha512-ZiqaC04tp2O5utMsl2TEZTXxa6WSC4yo0fv5ML++D3QZv/vx2Mct0mTlRx3O+uUkjfuAgOkzsCmq5MiUEsDDdA==",
       "funding": [
         "https://opencollective.com/katex",
         "https://github.com/sponsors/katex"