Commits · 0cf2ca9deb2facdaa52e706ce4e1cadc484516d9 · Michał Zając / GitLab

Aug 18, 2020
- Update VERSION to 13.0.14-ee · 0cf2ca9d
  GitLab Release Tools Bot authored 4 years ago
  
  View commits for tag v13.0.14-ee v13.0.14-ee
  
  0cf2ca9d
- Update CHANGELOG.md for 13.0.14 · 1b90ef55
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  1b90ef55
- Update CHANGELOG-EE.md for 13.0.14-ee · 2ef51de4
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  2ef51de4
- Update GITALY_SERVER_VERSION to 13.0.14 · cb0bf3b9
  GitLab Release Tools Bot authored 4 years ago
  
  cb0bf3b9
- Merge remote-tracking branch 'dev/13-0-stable-ee' into 13-0-stable-ee · 3265d07f
  GitLab Release Tools Bot authored 4 years ago
  
  3265d07f
Aug 17, 2020
- Update VERSION to 13.0.13-ee · ba855fc0
  GitLab Release Tools Bot authored 4 years ago
  
  View commits for tag v13.0.13-ee v13.0.13-ee
  
  ba855fc0
- Update CHANGELOG.md for 13.0.13 · 96ed082b
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  96ed082b
- Update CHANGELOG-EE.md for 13.0.13-ee · 811051ca
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  811051ca
- Update GITALY_SERVER_VERSION to 13.0.13 · b9164b18
  GitLab Release Tools Bot authored 4 years ago
  
  b9164b18
- Merge branch 'security-deploy-token-impersonate-user-project-13-0' into '13-0-stable-ee' · 0d9802db
  Yorick Peterse authored 4 years ago
  
  Stop deploy token being used as user in ProjectPolicy and GroupPolicy See merge request gitlab-org/security/gitlab!823
  0d9802db
- Merge branch 'security-deploy_token_project_auth-13-0' into '13-0-stable-ee' · a2eac20a
  Yorick Peterse authored 4 years ago
  
  Add check for project access on deploy token check See merge request gitlab-org/security/gitlab!819
  a2eac20a
- Stop deploy token being used as user in ProjectPolicy and GroupPolicy · cf840a09
  Thong Kuah authored 4 years ago
  
  This prevents deploy token from getting permissions for users that happen to have the same id as the deploy token.
  Unverified
  
  cf840a09
- Add check for project access on deploy token check · bc356de2
  Steve Abrams authored 4 years ago and Jaime Martinez committed 4 years ago
  
  When a deploy token is authenticated, project access is checked and rejected if not allowed. Auth spec is fixed to properly test this scenario Update guard clause to allow nil projects to pass for registry access Update LFS spec - now returns 401 for invalid deploy token Fixing flaky tests Add spec for group deploy token as well
  Verified
  
  bc356de2
Aug 05, 2020
- Merge remote-tracking branch 'security/13-0-stable-ee' into 13-0-stable-ee · c606400f
  Mayra Cabrera authored 4 years ago
  
  c606400f
- Merge remote-tracking branch 'dev/13-0-stable-ee' into 13-0-stable-ee · 458fd398
  GitLab Release Tools Bot authored 4 years ago
  
  458fd398
- Update VERSION to 13.0.12-ee · ddb69577
  GitLab Release Tools Bot authored 4 years ago
  
  View commits for tag v13.0.12-ee v13.0.12-ee
  
  ddb69577
- Update CHANGELOG.md for 13.0.12 · 87cab180
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  87cab180
- Update CHANGELOG-EE.md for 13.0.12-ee · 8c603cd7
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  8c603cd7
- Update GITALY_SERVER_VERSION to 13.0.12 · 936c7a8f
  GitLab Release Tools Bot authored 4 years ago
  
  936c7a8f
- Fix location of k3d install script · a349fa7b
  Balasankar "Balu" C authored 4 years ago
  
  Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>
  Unverified
  
  a349fa7b
- Fix location of k3d install script · 335eac9b
  Balasankar "Balu" C authored 4 years ago
  
  Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>
  Unverified
  
  335eac9b
- Update EE changelog about skipping 13.0.11 · a4f59a6a
  Yorick Peterse authored 4 years ago
  
  Unverified
  
  a4f59a6a
- Update changelog about skipping 13.0.11 · 4fb618c3
  Yorick Peterse authored 4 years ago
  
  Unverified
  
  4fb618c3
- Revert "Update CHANGELOG.md for 13.0.11" · e4e7ddcc
  Yorick Peterse authored 4 years ago
  
  This reverts commit f2bb8f44. The packages for 13.0.11 could not be built, which we have to fix using a 13.0.12 release.
  Unverified
  
  e4e7ddcc
- Update VERSION to 13.0.11-ee · 9d5eef0e
  GitLab Release Tools Bot authored 4 years ago
  
  9d5eef0e
- Update CHANGELOG.md for 13.0.11 · f2bb8f44
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  f2bb8f44
- Update CHANGELOG-EE.md for 13.0.11-ee · 49b8044b
  GitLab Release Tools Bot authored 4 years ago
  
  [ci skip]
  49b8044b
- Update GITALY_SERVER_VERSION to 13.0.11 · 021af247
  GitLab Release Tools Bot authored 4 years ago
  
  021af247
Aug 04, 2020
- Merge branch 'security-195-2fa-applications-view-13-0' into '13-0-stable-ee' · 6386b2ec
  Mayra Cabrera authored 4 years ago
  
  2FA not enforced on /profile/applications See merge request gitlab-org/security/gitlab!782
  6386b2ec
- Add enforcing 2fa on in Oauth controllers · 5dc848bd
  Małgorzata Ksionek authored 4 years ago and mksionek committed 4 years ago
  
  Add one more spec Add changelog entry Fix changelog Move concern to doorkeeper base controller Add base metal controller Add new controller Fix Remove 2FA from api-endpoints Add if-clause block around helper method Add controllers tests And implement 2FA enforcement in tokens controllers Remove obsolete let in spec Fix Fix Fix
  5dc848bd
- Merge branch 'security-jobs-view-xss-13-0' into '13-0-stable-ee' · d8f1e2fd
  GitLab Release Tools Bot authored 4 years ago
  
  Fix XSS on jobs view See merge request gitlab-org/security/gitlab!634
  d8f1e2fd
- Fix XSS on jobs view · 7e73df63
  Payton Burdette authored 4 years ago and GitLab Release Tools Bot committed 4 years ago
  
  Fix the XSS vulnerablity on the jobs view.
  7e73df63
- Merge branch 'security-200-dblessing-insufficient-oauth-revocation-13-0' into '13-0-stable-ee' · 9296963c
  GitLab Release Tools Bot authored 4 years ago
  
  Revoke OAuth grants when a user revokes an application See merge request gitlab-org/security/gitlab!758
  9296963c
- Merge branch 'security-rm-202690-13-0' into '13-0-stable-ee' · d1be14ba
  GitLab Release Tools Bot authored 4 years ago
  
  Add a prohibited branches system See merge request gitlab-org/security/gitlab!664
  d1be14ba
- Merge branch 'security-dblessing-oauth-vuln-2-13-0' into '13-0-stable-ee' · 43725e1e
  GitLab Release Tools Bot authored 4 years ago
  
  Verify confirmed email for OAuth Authorize POST endpoint See merge request gitlab-org/security/gitlab!742
  43725e1e
- Merge branch 'security-202687-members-transfer-problem-13-0' into '13-0-stable-ee' · 09dbb308
  GitLab Release Tools Bot authored 4 years ago
  
  Add refreshing projects to transfering groups See merge request gitlab-org/security/gitlab!716
  09dbb308
- Merge branch 'security-fix-xss-in-milestone-tooltip-13-0' into '13-0-stable-ee' · d4832bec
  GitLab Release Tools Bot authored 4 years ago
  
  Escape milestone title in sidebar tooltip See merge request gitlab-org/security/gitlab!735
  d4832bec
- Merge branch 'security-fix-xss-in-markdown-reference-tooltips-13-0' into '13-0-stable-ee' · 36e6579f
  GitLab Release Tools Bot authored 4 years ago
  
  Only support HTML tooltips for scoped labels See merge request gitlab-org/security/gitlab!694
  36e6579f
- Merge branch 'security-fix-import-decompr-issue-13-0' into '13-0-stable-ee' · 22fc94ba
  GitLab Release Tools Bot authored 4 years ago
  
  Add decompressed archive size validation on Project/Group Import See merge request gitlab-org/security/gitlab!654
  22fc94ba
- Merge branch 'security-check-group-exists-before-email-13-0' into '13-0-stable-ee' · bd207470
  GitLab Release Tools Bot authored 4 years ago
  
  Stop excess logs from invite email when group no longer exists See merge request gitlab-org/security/gitlab!722
  bd207470

Admin message

Admin message