github/woodpecker
1
0
Fork 0
mirror of https://github.com/woodpecker-ci/woodpecker.git synced 2026-05-04 20:25:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,819 Commits 35 Branches 101 Tags
7f44472f339d2d498ed445a88dc195548a0020ee
Commit Graph

7819 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
renovate[bot]
7f44472f33 Update dependency isomorphic-dompurify to v3.12.0 (#6532) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 07:16:22 +02:00
renovate[bot]
2b209d33b2 Update woodpeckerci/plugin-release Docker tag to v0.3.1 (#6531) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 07:08:49 +02:00
renovate[bot]
8c3233bc8a Update docs npm deps non-major (#6530) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 03:39:47 +02:00
renovate[bot]
00c9b48cd0 Update docker.io/lycheeverse/lychee Docker tag to v0.24.2 (#6529) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 03:37:23 +02:00
Anbool
c718b03b74 Translated using Weblate (Chinese (Simplified Han script)) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/zh_Hans/
 2026-05-01 21:49:30 +00:00
6543
7cef7a8a15 pipeline runtime: move setting step environment variables into own func and add CI_PIPELINE_STATUS back (#6516) 2026-05-01 15:40:52 +02:00
6543
63fccbed96 Refactor agent rpc retry (#6515) 2026-05-01 12:49:40 +02:00
woodpecker-bot
af313aad34 🎉 Release 3.14.0 (#6514) 
Co-authored-by: 6543 <6543@obermui.de>
v3.14.0 		2026-05-01 11:24:44 +02:00
6543
9d55d0bf07 Create Docs for v3.14.0 (#6163) 
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-05-01 11:01:28 +02:00
renovate[bot]
f3e3b83e37 Update golang-packages (#6524) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-05-01 08:05:29 +02:00
wucm667
1ffa588f87 fix(web): escape HTML in commit messages to prevent XSS (#6523) 
Signed-off-by: wucm667 <stevenwucongmin@gmail.com>
 2026-05-01 03:07:20 +02:00
6543
9c0b2e7a4b docs: better description for when.status filter (#6517) 2026-04-30 18:06:20 +02:00
Ryan Finnie
6ca7159df9 docs: Add woodpecker-shellcheck lint to awesome list (#6521) 2026-04-30 07:24:29 +02:00
Anbool
c1aea9c4ec Translated using Weblate (Chinese (Simplified Han script)) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/zh_Hans/
 2026-04-29 05:55:08 +00:00
6543
01e377e731 Translated using Weblate (Norwegian Bokmål) 
Currently translated at 94.4% (423 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/nb_NO/
 2026-04-29 04:19:50 +00:00
renovate[bot]
54413bf325 Update golang-packages (#6519) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-29 02:43:33 +02:00
Alex Caston
85c71fb01e Kubernetes: precreate workingDir as nonroot when required (#6322) 
### Problem
When the working directory is set to a directory that doesn't exists (for example, as `plugin-git` does), kubelet will pre-create it with ownership set to `root:root` and permissions `0755` . This makes pods running as non-root unable to write to it, causing permission errors.

### Solution
Added a `podInitContainer` function that conditionally creates an init container to pre-create the working directory with the correct permissions before the main step container starts.

### Behavior
- If the pod runs as root (`RunAsUser == 0` or unset), no init container is created. Kubelet handles directory creation automatically
- If the working directory matches a volume mount path exactly, no init container is needed. `FSGroupChangePolicy` handles permissions
- An init container is only created when the working directory is nested within a volume mount path
- The init container uses `busybox:stable-musl` with minimal resource limits (5m CPU, 5Mi memory) and drops all capabilities.

### Related issues and PRs
- Solves the error mentioned in https://github.com/woodpecker-ci/woodpecker/issues/5346#issuecomment-3211408746 without requiring a previous step.
- In addition to #6307 and #6310, this will make it easier to run woodpecker ci workloads in a namespace that enforces [Pod Security Standards](https://kubernetes.io/docs/concepts/security/pod-security-standards/)
 2026-04-28 17:21:45 +02:00
Alex Caston
43dcdc19a1 Kubernetes: Support allowPrivilegeEscalation and capabilities backend_options (#6307) 2026-04-28 17:17:00 +02:00
Rafael Fontenelle
2c801366ee Translated using Weblate (Portuguese) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/pt/
 2026-04-28 14:32:22 +00:00
6543
3278f239ee docs: bump uuid to v14.0.0 (#6510) 2026-04-27 16:13:28 +02:00
woodpecker-bot
b3c86cc904 🎉 Release 3.14.0-rc.2 (#6442) 
Co-authored-by: 6543 <6543@obermui.de>
v3.14.0-rc.2 		2026-04-27 14:51:13 +02:00
6543
60df1c618d Fix workflow hang on services (#6507) 
because we now wait for all steps to trace status back before we return, the defere did not tear down services anymore ...

... we now explicit tear down services and steps after all stages have executed.

Also adds tests to check for that and update the dummy backend to fullfill the interface contract of killing all "running" steps with DestroyWorkflow.
 2026-04-27 09:11:33 +02:00
renovate[bot]
1353401034 Lock file maintenance (#6508) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-04-27 08:12:53 +02:00
6543
d34649de22 Refactor: remove Auth() from Forge interface (#6505) 2026-04-26 15:36:12 +02:00
6543
26c793f650 Translated using Weblate (Bavarian) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/bar/
 2026-04-26 11:20:35 +00:00
qwerty287
43545847f6 Translated using Weblate (German) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/de/
 2026-04-26 08:54:16 +00:00
renovate[bot]
fb4301c0fd Update module github.com/google/go-github/v84 to v85 (#6500) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-26 08:10:37 +02:00
renovate[bot]
4afddf78f5 Update module github.com/getkin/kin-openapi to v0.136.0 (#6503) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-26 03:18:34 +02:00
Bruno Clermont
19190cf1ab fix(cli,server): fix trusted flags copy-paste bug and server nil pointer panic (#6501) 
Co-authored-by: Bruno Clermont <bruno.clermont@gmail.com>
Co-authored-by: 6543 <6543@obermui.de>
 2026-04-25 22:12:55 +02:00
6543
4dd3be7f96 Move wait for log uploads logic out of logger and tracer into pipeline runtime (#6471) 2026-04-25 16:36:26 +02:00
renovate[bot]
a9bf7538e2 Update woodpeckerci/plugin-git Docker tag to v2.9.0 (#6499) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 07:46:27 +02:00
renovate[bot]
f9f39bde2c Update docker.io/mysql Docker tag to v9.7.0 (#6498) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 07:44:22 +02:00
renovate[bot]
f3fac4874e Update docs npm deps non-major (#6496) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 04:14:21 +02:00
renovate[bot]
cb5ac7de92 Update docker.io/lycheeverse/lychee Docker tag to v0.24.1 (#6497) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 04:13:13 +02:00
Njazi Shehu
3fb24d5b3b Add Laravel Forge plugin (#6491) 2026-04-24 16:24:27 +02:00
Kirill Isakov
db70e65d21 Translated using Weblate (Russian) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/ru/
 2026-04-24 07:55:42 +00:00
6543
ea071606b2 Make agent reconnect retry timeout configurable (#6470) 2026-04-23 17:35:39 +02:00
Ralf Haferkamp
9789615aa3 Add 'entrypoint' property to service in schema (#6487) 
Co-authored-by: test taset <devops@opencloud.eu>
 2026-04-23 12:50:59 +02:00
6543
ae19a87b71 Handle re-created forge repos gracefully (#6370) 
Co-authored-by: qwerty287 <80460567+qwerty287@users.noreply.github.com>
 2026-04-23 10:02:09 +02:00
6543
46b73078e9 e2e test wait for grpc server teardown and stop agents (#6479) 2026-04-23 09:57:43 +02:00
renovate[bot]
52ed3f13ed Update golang-packages to v0.36.0 (#6485) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-23 03:04:45 +02:00
6543
8e6084c661 Set default of WOODPECKER_BACKEND_{DOCKER,K8S}_STOP_TIMEOUT to 20s (#6475) 2026-04-22 21:04:40 +02:00
6543
e6a1a42da5 Cleanup server store step interface (#6476) 2026-04-22 17:00:24 +02:00
6543
fa0bfe9038 Add more test cases for rpc label filter (#6483) 2026-04-22 16:55:50 +02:00
6543
91c1b1cf72 Fix flaky TestJWTManager (#6478) 2026-04-22 16:49:28 +02:00
Lê Hoàng Phương
5ed9fc6b0e Add refname to bitbucket commit status (#6482) 2026-04-22 10:39:37 +02:00
renovate[bot]
f1bf85f7e1 Update golang-packages (#6477) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-21 03:52:24 +02:00
Harri Avellan
27ed7da7b0 Fix send on closed channel panic in SSE stream handlers (#6456) 
Co-authored-by: utafrali <tafraliugur@gmail.com>
 2026-04-21 00:31:33 +02:00
6543
dc111824db Add e2e pipeline restart test (#6469) 2026-04-20 08:49:39 +02:00
renovate[bot]
22d8db8049 Lock file maintenance (#6472) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-20 08:46:29 +02:00