HGKeeper

Refactor refresh of repositories

14 months ago, aklitzing

1af17fe86235

Refactor refresh of repositories

Since we use this for other stuff we should split it out from hgweb and
re-use the repository slice for hgweb.

Reviewed at https://reviews.imfreedom.org/r/2434/

1.1.0: (2023-01-04)

* Add a warning message when a duplicate key is loaded. No behavior changes

were made so that users depending on the broken behavior can continue

working. (HGKEEPER-22)

* Removed the mercurial 6.1 pin from the container image.

* Normalize paths before passing them to the authorization checker. This bug

allowed attackers to read repositories they shouldn't have been able to by

adding a / on to the end of the path. The hgkeeper repo in the default

configuration is susceptible to this attack.

1.0.0: (2022-06-21)

* Official first release!

grim/hgkeeper