self-hosted/woodpecker
1
0
Fork 0
mirror of https://github.com/woodpecker-ci/woodpecker.git synced 2026-06-03 16:35:37 +02:00
Code Issues Releases Activity
7,920 Commits 35 Branches 103 Tags
0fe5bc1b44145803c2d16e8bbdf5da77dd458422
Commit Graph

7920 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
renovate[bot] 37c2999eac Update dependency golangci/golangci-lint to v2.12.0 (#6533) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 10:57:33 +02:00
renovate[bot] 7f44472f33 Update dependency isomorphic-dompurify to v3.12.0 (#6532) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 07:16:22 +02:00
renovate[bot] 2b209d33b2 Update woodpeckerci/plugin-release Docker tag to v0.3.1 (#6531) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 07:08:49 +02:00
renovate[bot] 8c3233bc8a Update docs npm deps non-major (#6530) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 03:39:47 +02:00
renovate[bot] 00c9b48cd0 Update docker.io/lycheeverse/lychee Docker tag to v0.24.2 (#6529) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-05-02 03:37:23 +02:00
Anbool c718b03b74 Translated using Weblate (Chinese (Simplified Han script)) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/zh_Hans/
 2026-05-01 21:49:30 +00:00
6543 7cef7a8a15 pipeline runtime: move setting step environment variables into own func and add CI_PIPELINE_STATUS back (#6516) 2026-05-01 15:40:52 +02:00
6543 63fccbed96 Refactor agent rpc retry (#6515) 2026-05-01 12:49:40 +02:00
woodpecker-bot af313aad34 🎉 Release 3.14.0 (#6514) 
Co-authored-by: 6543 <6543@obermui.de>
v3.14.0 		2026-05-01 11:24:44 +02:00
6543 9d55d0bf07 Create Docs for v3.14.0 (#6163) 
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-05-01 11:01:28 +02:00
renovate[bot] f3e3b83e37 Update golang-packages (#6524) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-05-01 08:05:29 +02:00
wucm667 1ffa588f87 fix(web): escape HTML in commit messages to prevent XSS (#6523) 
Signed-off-by: wucm667 <stevenwucongmin@gmail.com>
 2026-05-01 03:07:20 +02:00
6543 9c0b2e7a4b docs: better description for when.status filter (#6517) 2026-04-30 18:06:20 +02:00
Ryan Finnie 6ca7159df9 docs: Add woodpecker-shellcheck lint to awesome list (#6521) 2026-04-30 07:24:29 +02:00
Anbool c1aea9c4ec Translated using Weblate (Chinese (Simplified Han script)) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/zh_Hans/
 2026-04-29 05:55:08 +00:00
6543 01e377e731 Translated using Weblate (Norwegian Bokmål) 
Currently translated at 94.4% (423 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/nb_NO/
 2026-04-29 04:19:50 +00:00
renovate[bot] 54413bf325 Update golang-packages (#6519) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-29 02:43:33 +02:00
Alex Caston 85c71fb01e Kubernetes: precreate workingDir as nonroot when required (#6322) 
### Problem
When the working directory is set to a directory that doesn't exists (for example, as `plugin-git` does), kubelet will pre-create it with ownership set to `root:root` and permissions `0755` . This makes pods running as non-root unable to write to it, causing permission errors.

### Solution
Added a `podInitContainer` function that conditionally creates an init container to pre-create the working directory with the correct permissions before the main step container starts.

### Behavior
- If the pod runs as root (`RunAsUser == 0` or unset), no init container is created. Kubelet handles directory creation automatically
- If the working directory matches a volume mount path exactly, no init container is needed. `FSGroupChangePolicy` handles permissions
- An init container is only created when the working directory is nested within a volume mount path
- The init container uses `busybox:stable-musl` with minimal resource limits (5m CPU, 5Mi memory) and drops all capabilities.

### Related issues and PRs
- Solves the error mentioned in https://github.com/woodpecker-ci/woodpecker/issues/5346#issuecomment-3211408746 without requiring a previous step.
- In addition to #6307 and #6310, this will make it easier to run woodpecker ci workloads in a namespace that enforces [Pod Security Standards](https://kubernetes.io/docs/concepts/security/pod-security-standards/)
 2026-04-28 17:21:45 +02:00
Alex Caston 43dcdc19a1 Kubernetes: Support allowPrivilegeEscalation and capabilities backend_options (#6307) 2026-04-28 17:17:00 +02:00
Rafael Fontenelle 2c801366ee Translated using Weblate (Portuguese) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/pt/
 2026-04-28 14:32:22 +00:00
6543 3278f239ee docs: bump uuid to v14.0.0 (#6510) 2026-04-27 16:13:28 +02:00
woodpecker-bot b3c86cc904 🎉 Release 3.14.0-rc.2 (#6442) 
Co-authored-by: 6543 <6543@obermui.de>
v3.14.0-rc.2 		2026-04-27 14:51:13 +02:00
6543 60df1c618d Fix workflow hang on services (#6507) 
because we now wait for all steps to trace status back before we return, the defere did not tear down services anymore ...

... we now explicit tear down services and steps after all stages have executed.

Also adds tests to check for that and update the dummy backend to fullfill the interface contract of killing all "running" steps with DestroyWorkflow.
 2026-04-27 09:11:33 +02:00
renovate[bot] 1353401034 Lock file maintenance (#6508) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: qwerty287 <qwerty287@posteo.de>
 2026-04-27 08:12:53 +02:00
6543 d34649de22 Refactor: remove Auth() from Forge interface (#6505) 2026-04-26 15:36:12 +02:00
6543 26c793f650 Translated using Weblate (Bavarian) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/bar/
 2026-04-26 11:20:35 +00:00
qwerty287 43545847f6 Translated using Weblate (German) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/de/
 2026-04-26 08:54:16 +00:00
renovate[bot] fb4301c0fd Update module github.com/google/go-github/v84 to v85 (#6500) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-26 08:10:37 +02:00
renovate[bot] 4afddf78f5 Update module github.com/getkin/kin-openapi to v0.136.0 (#6503) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-26 03:18:34 +02:00
Bruno Clermont 19190cf1ab fix(cli,server): fix trusted flags copy-paste bug and server nil pointer panic (#6501) 
Co-authored-by: Bruno Clermont <bruno.clermont@gmail.com>
Co-authored-by: 6543 <6543@obermui.de>
 2026-04-25 22:12:55 +02:00
6543 4dd3be7f96 Move wait for log uploads logic out of logger and tracer into pipeline runtime (#6471) 2026-04-25 16:36:26 +02:00
renovate[bot] a9bf7538e2 Update woodpeckerci/plugin-git Docker tag to v2.9.0 (#6499) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 07:46:27 +02:00
renovate[bot] f9f39bde2c Update docker.io/mysql Docker tag to v9.7.0 (#6498) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 07:44:22 +02:00
renovate[bot] f3fac4874e Update docs npm deps non-major (#6496) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 04:14:21 +02:00
renovate[bot] cb5ac7de92 Update docker.io/lycheeverse/lychee Docker tag to v0.24.1 (#6497) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-25 04:13:13 +02:00
Njazi Shehu 3fb24d5b3b Add Laravel Forge plugin (#6491) 2026-04-24 16:24:27 +02:00
Kirill Isakov db70e65d21 Translated using Weblate (Russian) 
Currently translated at 100.0% (448 of 448 strings)

Translation: Woodpecker CI/UI
Translate-URL: https://translate.woodpecker-ci.org/projects/woodpecker-ci/ui/ru/
 2026-04-24 07:55:42 +00:00
6543 ea071606b2 Make agent reconnect retry timeout configurable (#6470) 2026-04-23 17:35:39 +02:00
Ralf Haferkamp 9789615aa3 Add 'entrypoint' property to service in schema (#6487) 
Co-authored-by: test taset <devops@opencloud.eu>
 2026-04-23 12:50:59 +02:00
6543 ae19a87b71 Handle re-created forge repos gracefully (#6370) 
Co-authored-by: qwerty287 <80460567+qwerty287@users.noreply.github.com>
 2026-04-23 10:02:09 +02:00
6543 46b73078e9 e2e test wait for grpc server teardown and stop agents (#6479) 2026-04-23 09:57:43 +02:00
renovate[bot] 52ed3f13ed Update golang-packages to v0.36.0 (#6485) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-23 03:04:45 +02:00
6543 8e6084c661 Set default of WOODPECKER_BACKEND_{DOCKER,K8S}_STOP_TIMEOUT to 20s (#6475) 2026-04-22 21:04:40 +02:00
6543 e6a1a42da5 Cleanup server store step interface (#6476) 2026-04-22 17:00:24 +02:00
6543 fa0bfe9038 Add more test cases for rpc label filter (#6483) 2026-04-22 16:55:50 +02:00
6543 91c1b1cf72 Fix flaky TestJWTManager (#6478) 2026-04-22 16:49:28 +02:00
Lê Hoàng Phương 5ed9fc6b0e Add refname to bitbucket commit status (#6482) 2026-04-22 10:39:37 +02:00
renovate[bot] f1bf85f7e1 Update golang-packages (#6477) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-04-21 03:52:24 +02:00
Harri Avellan 27ed7da7b0 Fix send on closed channel panic in SSE stream handlers (#6456) 
Co-authored-by: utafrali <tafraliugur@gmail.com>
 2026-04-21 00:31:33 +02:00
6543 dc111824db Add e2e pipeline restart test (#6469) 2026-04-20 08:49:39 +02:00