mirrors/neovim
1
0
Fork 0
mirror of https://github.com/neovim/neovim.git synced 2026-05-26 06:48:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ab41543f8e35f1345db5c4698f291c9b07980f9c
neovim/runtime
History
zeertzjq ab41543f8e vim-patch:9.2.0073: [security]: possible command injection using netrw 
Problem:  [security]: Insufficient validation of hostname and port in
          netrw URIs allows command injection via shell metacharacters
          (ehdgks0627, un3xploitable).
Solution: Implement stricter RFC1123 hostname and IP validation.
          Use shellescape() for the provided hostname and port.

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-m3xh-9434-g336

79348dbbc0

Co-authored-by: Christian Brabandt <cb@256bit.org>
2026-04-23 12:51:11 +08:00
..
autoload
vim-patch:ab02d65: runtime(gzip): Remove compatibility fall-backs, harden random filename generation (#39165)
2026-04-18 06:39:54 +08:00
colors
vim-patch:c99aaf4: runtime(colors): improve catppuccin colorscheme
2026-02-01 08:22:07 +08:00
compiler
vim-patch:9.2.0225: runtime(compiler): No compiler plugin for just (#38424)
2026-03-22 23:14:49 +00:00
doc
ci: drop cirrus #39321
2026-04-22 18:25:07 -04:00
ftplugin
vim-patch:9.2.0371: filetype: ghostty config files are not recognized (#39267)
2026-04-21 02:24:07 +00:00
indent
vim-patch:99ea2b5: runtime(handlebars): adds handlebars template syntax & indent support
2026-03-06 07:59:15 +08:00
keymap
vim-patch:5c855ce: runtime: convert *_utf-8.vim files to actual UTF-8 encoding
2026-01-26 06:53:53 +08:00
lua
feat(treesitter): expand selection to sibling node #38938
2026-04-22 17:10:24 -04:00
pack/dist/opt
vim-patch:9.2.0073: [security]: possible command injection using netrw
2026-04-23 12:51:11 +08:00
plugin
fix(net): handle remote archive URLs via tar/zip browse #38744
2026-04-05 15:22:26 -04:00
queries
build(deps): bump tree-sitter-lua to v0.5.0
2026-02-26 19:26:35 +01:00
scripts
vim-patch:3918f32: runtime(doc): fix incorrect description of 'scrolloffpad'
2026-04-22 10:14:53 +08:00
spell
feat(runtime): import cleanadd.vim from Vim (#17699)
2022-03-13 04:52:45 +00:00
syntax
vim-patch:10040bc: runtime(sh): allow "#" in special derefs
2026-04-22 09:44:53 +08:00
tutor
docs: misc (#37280)
2026-01-07 08:11:42 +08:00
CMakeLists.txt
feat(build): rename io.neovim.nvim to org.neovim.nvim
2026-04-14 11:13:03 -05:00
delmenu.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
embedded_data.zig
build: ship "_core/*" as bytecode (built-into Nvim binary)
2025-12-30 01:44:24 -05:00
example_init.lua
docs: api, plugins, ui2
2026-03-24 00:14:55 +01:00
filetype.lua
docs: use "ev" convention in event-handlers
2026-03-12 11:12:56 +01:00
ftoff.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
ftplugin.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
ftplugof.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
gen_runtime.zig
fix(build): workaround errors in zig build due to stale cache
2025-08-22 19:10:43 +02:00
indent.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
indoff.vim
vim-patch:e978b4534a5e (#24697)
2023-08-13 13:25:10 +01:00
makemenu.vim
vim-patch:9.1.1647: filetype: Cangjie files are not recognized
2025-08-20 07:23:49 +08:00
menu.vim
vim-patch:d5f173c: runtime(menu): fix space before Tab and trailing space
2026-01-20 07:56:50 +08:00
neovim.ico
feat(windows): show icon in terminal titlebar, taskbar #20607
2022-10-13 05:48:12 -07:00
nvim.png
org.neovim.nvim.appdata.xml
feat(build): rename io.neovim.nvim to org.neovim.nvim
2026-04-14 11:13:03 -05:00
org.neovim.nvim.desktop
feat(build): rename io.neovim.nvim to org.neovim.nvim
2026-04-14 11:13:03 -05:00
synmenu.vim
vim-patch:9.1.1647: filetype: Cangjie files are not recognized
2025-08-20 07:23:49 +08:00
windows_icon.rc
feat(win32): embed executable icon
2024-07-02 13:05:16 +02:00