add more routes to the "expensive" list#35547
Merged
wxiaoguang merged 1 commit intogo-gitea:mainfrom Sep 29, 2025
Merged
Conversation
Signed-off-by: Steven Noonan <steven@uplinklabs.net>
GiteaBot
added
the
lgtm/need 2
wxiaoguang
approved these changes
Sep 29, 2025
GiteaBot
added
lgtm/need 1
lunny
approved these changes
Sep 29, 2025
GiteaBot
added
lgtm/done
rossigee
pushed a commit
to rossigee/gitea
that referenced
this pull request
Oct 2, 2025
Signed-off-by: Steven Noonan <steven@uplinklabs.net>
rossigee
pushed a commit
to rossigee/gitea
that referenced
this pull request
Oct 4, 2025
Signed-off-by: Steven Noonan <steven@uplinklabs.net>
zjjhot
added a commit
to zjjhot/gitea
that referenced
this pull request
Oct 5, 2025
* giteaofficial/main: fix: auto-expand and auto-scroll for actions logs (go-gitea#35570) (go-gitea#35583) [skip ci] Updated translations via Crowdin [skip ci] Updated translations via Crowdin Fix creating pull request failure when the target branch name is the same as some tag (go-gitea#35552) Use bundled version of spectral (go-gitea#35573) Add rebase push display wrong comments bug (go-gitea#35560) Address some CodeQL security concerns (go-gitea#35572) fix(webhook): prevent tag events from bypassing branch filters targets go-gitea#35449 (go-gitea#35567) Added button to copy file name in PR files (go-gitea#35509) Update JS and PY deps (go-gitea#35565) Enable a few more tsconfig options (go-gitea#35553) Bump github.com/wneessen/go-mail from 0.6.2 to 0.7.1 (go-gitea#35557) add more routes to the "expensive" list (go-gitea#35547) Drop json-iterator dependency (go-gitea#35544) Add proper error message if session provider can not be created (go-gitea#35520) use experimental go json v2 library (go-gitea#35392) Use global lock instead of status pool for cron lock (go-gitea#35507) Move some functions to gitrepo package (go-gitea#35503) Move GetDiverging functions to gitrepo (go-gitea#35524) [skip ci] Updated translations via Crowdin
wxiaoguang
added
backport/done
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
My gitea server uses
REQUIRE_SIGNIN_VIEW = expensive. These are some routes that were being hit by bots repeatedly in an apparent attempt to denial-of-service my gitea server. Both of them were triggeringgitinvocations under the hood, so they really should be in the list of expensive routes. Adding them to the list helped in my situation, so I'm making a PR with these in case it helps others.