fix(sftpgo): update image ghcr.io/drakkan/sftpgo v2.7.3 → v2.7.4 (#49582)

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [ghcr.io/drakkan/sftpgo](https://redirect.github.com/drakkan/sftpgo) |
patch | `4d47ba4` → `d915394` |

---

> [!WARNING]
> Some dependencies could not be looked up. Check the [Dependency
Dashboard](../issues/18710) for more information.

Add the preset `:preserveSemverRanges` to your config if you don't want
to pin your dependencies.

---

### Release Notes

<details>
<summary>drakkan/sftpgo (ghcr.io/drakkan/sftpgo)</summary>

###
[`v2.7.4`](https://redirect.github.com/drakkan/sftpgo/releases/tag/v2.7.4)

[Compare
Source](https://redirect.github.com/drakkan/sftpgo/compare/v2.7.3...v2.7.4)

##### New features

- Symbolic links: the new `symlink_mode` setting selects, per backend,
whether clients holding the `create_symlinks` permission may create
symbolic links on the local filesystem, the SFTP backend, or both. It is
disabled by default. Creating a link requires `create_symlinks` on both
the link's directory and the directory it points into, so per-directory
permissions are enforced consistently on the path the client requests.
- OIDC redirect: the WebClient OIDC login now preserves a `next`
redirect target across the IdP round-trip.

##### Bug fixes

- httpd: return after a CSRF failure in the web client login. The login
POST handler rendered the CSRF error page but did not return, so
execution fell through into the post-connect hook and the credential
verification pipeline. Added the missing `return` to match the admin
login, password reset, and setup handlers.

##### Hardening

- Improve symbolic links handling and add more test cases.
- httpd: clean and unify the WebClient post-login redirect target
validation.

</details>

---

### Configuration

📅 **Schedule**: (UTC)

- Branch creation
  - At any time (no schedule defined)
- Automerge
  - At any time (no schedule defined)

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Renovate
Bot](https://redirect.github.com/renovatebot/renovate).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9zZnRwZ28iLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL3BhdGNoIl19-->
This commit is contained in:
TrueCharts Bot
2026-06-28 02:20:59 +02:00
committed by GitHub
parent 9bfa9dbc93
commit ea60a1fe89
2 changed files with 3 additions and 3 deletions
+2 -2
View File
@@ -9,7 +9,7 @@ annotations:
trueforge.org/min_helm_version: "3.14"
trueforge.org/train: stable
apiVersion: v2
appVersion: 2.7.3
appVersion: 2.7.4
dependencies:
- name: common
version: 29.6.0
@@ -36,5 +36,5 @@ sources:
- https://github.com/drakkan/sftpgo
- https://github.com/trueforge-org/truecharts/tree/master/charts/stable/sftpgo
type: application
version: 10.5.0
version: 10.5.1
+1 -1
View File
@@ -2,7 +2,7 @@
image:
pullPolicy: IfNotPresent
repository: ghcr.io/drakkan/sftpgo
tag: v2.7.3-plugins@sha256:4d47ba4007a1ddf08739ff4af61b7cec94e8327e57721776bd3f204c029b90d0
tag: v2.7.4-plugins@sha256:d9153947a0758c5eba37441554b5d8ce977a81013cbeea1f9c2d72db607fcbbf
securityContext:
container:
runAsNonRoot: false