Skip to content

Issues: go-gitea/gitea

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort

Issues list

View and manage all devices that has logged in proposal/accepted We have reviewed the proposal and agree that it should be implemented like that/at all. topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#31095 opened May 27, 2024 by write3371
2FA Can Be Removed Without a Security Check topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/bug
#27690 opened Oct 19, 2023 by ZaxLofful
Invalidate all refresh tokens when refresh token replay attack detected proposal/accepted We have reviewed the proposal and agree that it should be implemented like that/at all. topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#25847 opened Jul 12, 2023 by hickford
Removal/Sanitization of HTML from translations modifies/translation topic/security Something leaks user information or is otherwise vulnerable. Should be fixed!
#24402 opened Apr 28, 2023 by lunny
Ratelimiting user logins topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#21906 opened Nov 23, 2022 by lunny
Improving authentication with hardware keys / FIDO2 / webauthn + 2FA topic/authentication topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#21675 opened Nov 3, 2022 by noerw
3 tasks
Expire Personal Access Token when OAUTH token expires topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#18989 opened Mar 3, 2022 by jasonvriends
AD user password hashes are stored in Gitea database topic/authentication topic/security Something leaks user information or is otherwise vulnerable. Should be fixed!
#14065 opened Dec 19, 2020 by songmeo
1 task done
[Feature] Email notification for unknown sign-ins topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#13572 opened Nov 14, 2020 by elesiuta
6 tasks
spam prevention through honeypots topic/security Something leaks user information or is otherwise vulnerable. Should be fixed! type/proposal The new feature has not been accepted yet but needs to be discussed first.
#11426 opened May 15, 2020 by thehowl
[Feature] [Extend] API Rate Limiting by User Creation Age issue/confirmed Issue has been reviewed and confirmed to be present or accepted to be implemented topic/security Something leaks user information or is otherwise vulnerable. Should be fixed!
#9847 opened Jan 17, 2020 by 6543
ProTip! What’s not been updated in a month: updated:<2024-10-10.