summaryrefslogtreecommitdiff
path: root/git/remote.py
Commit message (Collapse)AuthorAgeFilesLines
* fix/add allow_unsafe_* params in docstrings + fix typoFC Stegerman2023-01-081-0/+9
|
* Fix Sphinx rendering errorsStephan Creutz2022-12-291-4/+7
| | | | | | | | These errors are mostly fixed by either adding blank lines or single spaces for Sphinx documentation key words. The commit solely includes documentation changes, no functional changes.
* Merge pull request #1521 from stsewd/block-insecure-optionsSebastian Thiel2022-12-291-7/+63
|\ | | | | Block insecure options and protocols by default
| * More testsSantos Gallegos2022-12-271-3/+1
| |
| * Updates from reviewSantos Gallegos2022-12-271-12/+9
| |
| * Block unsafe options and protocols by defaultSantos Gallegos2022-12-231-6/+67
| |
* | Document PushInfoListtimski2022-12-291-6/+10
|/
* Fix command injectionSantos Gallegos2022-12-201-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | Add `--` in some commands that receive user input and if interpreted as options could lead to remote code execution (RCE). There may be more commands that could benefit from `--` so the input is never interpreted as an option, but most of those aren't dangerous. Fixed commands: - push - pull - fetch - clone/clone_from and friends - archive (not sure if this one can be exploited, but it doesn't hurt adding `--` :)) For anyone using GitPython and exposing any of the GitPython methods to users, make sure to always validate the input (like if starts with `--`). And for anyone allowing users to pass arbitrary options, be aware that some options may lead fo RCE, like `--exc`, `--upload-pack`, `--receive-pack`, `--config` (https://github.com/gitpython-developers/GitPython/pull/1516). Ref https://github.com/gitpython-developers/GitPython/issues/1517
* reformat according to 'black' configuration file.Sebastian Thiel2022-05-181-85/+27
|
* Run everything through 'black'Sebastian Thiel2022-05-181-194/+344
| | | | | That way people who use it won't be deterred, while it unifies style everywhere.
* Low risk ReDoS vulntheworstcomrade2022-02-201-1/+1
| | | | https://huntr.dev/bounties/8549d81f-dc45-4af7-9f2a-2d70752d8524/
* Extend IterableList[PushInfo] instead of IterableListSjoerd Langkemper2021-11-131-17/+16
|
* Specify type for PushInfoList.errorSjoerd Langkemper2021-11-131-1/+1
|
* Fix type handing on PushInfoListSjoerd Langkemper2021-11-131-3/+4
|
* Rename exception to error, raise_on_error to raise_if_errorSjoerd Langkemper2021-11-131-5/+5
|
* Let remote.push return a PushInfoListSjoerd Langkemper2021-11-131-3/+20
| | | | | | | List-like, so that it's backward compatible. But it has a new method raise_on_error, that throws an exception if anything failed to push. Related to #621
* Fix typing issues with delete_head and Remote.addRuss Allbery2021-09-201-1/+3
| | | | | | | | | | | | | | delete_head and Head.delete historically accept either Head objects or a str name of a head. Adjust the typing to match. This unfortunately requires suppressing type warnings in the signature of RemoteReference.delete, since it inherits from Head but does not accept str (since it needs access to the richer data of RemoteReference). Using assignment to make add an alias for create unfortunately confuses mypy, since it loses track of the fact that it's a classmethod and starts treating it like a staticmethod. Replace with a stub wrapper instead.
* update tests and add a comment about different behaviour of 'push' vs 'fetch'sroet2021-09-181-0/+2
|
* reuse kill_after_timeout kwargsroet2021-09-181-11/+25
|
* reset default timeout to Nonesroet2021-09-181-5/+5
|
* allow for timeout propagationsroet2021-09-181-9/+15
|
* Merge pull request #1318 from Yobmod/mainDominic2021-09-091-2/+2
|\ | | | | General fixes for next release
| * type fixoYobmod2021-08-081-0/+944
| |
| * add type check to conf_encoding (in thoery could be bool or int)Yobmod2021-08-081-944/+0
| |
* | Add encoding to utf-8 for fetch_info_lines;f1000242021-08-241-2/+2
|/ | | | Add encoding to utf-8 for fetch_head_info;
* Minor type fixesYobmod2021-08-021-2/+2
|
* replace more TBDs wiht runtime typesYobmod2021-07-311-5/+5
|
* Rmv with_metaclass shim, make section constraint generic wrt its ↵Yobmod2021-07-241-1/+2
| | | | configparser type
* Replace all Typeguard with cast, revert update to typing-extensions==3.10.0Yobmod2021-07-241-6/+6
|
* Change remaining type comments to py3.6+ typesYobmod2021-07-191-6/+6
|
* Make types in refs compatible with previousYobmod2021-07-191-22/+35
|
* Add remote.url typeYobmod2021-07-091-14/+7
|
* Rmv Diffable assert, add Remoote.url propertyYobmod2021-07-091-0/+8
|
* Try to distinguation git.diff module from diff.Diff.diff and ↵Yobmod2021-07-091-1/+1
| | | | diff.Daffable.diff()
* Add types to submodule.update()Yobmod2021-07-061-4/+7
|
* Type Traversable/list_traverse() better, make IterablleObj a protocolYobmod2021-06-301-0/+2
|
* Type Traversable.traverse() better, start types of submoduleYobmod2021-06-301-9/+7
|
* replace cast()s with asserts in remote.pyYobmod2021-06-251-5/+7
|
* Add '?' to controlcharacter literalYobmod2021-06-251-2/+2
|
* fix assertYobmod2021-06-251-1/+1
|
* Add is_flatLiteral() Typeguard[] to remote.pyYobmod2021-06-251-2/+9
|
* Make IterableList generic and update throughoutYobmod2021-06-241-15/+16
|
* Don't raise on unknown line when parsing stale refs (#1262)Sebastian Thiel2021-06-031-1/+1
|
* flake8 fixesyobmod2021-05-081-43/+54
|
* Add types to Remote. init getattr existsyobmod2021-05-081-3/+3
|
* fix Repo forward refyobmod2021-05-031-1/+1
|
* second pass of adding typesyobmod2021-05-031-15/+21
|
* add types to _from_line()yobmod2021-05-031-6/+7
|
* add overloads to to_progress_instance()yobmod2021-05-031-2/+18
|
* change flags type to intyobmod2021-05-031-4/+4
|
View Lorry Controller Status