This pulls in fix for CVE-2019-5477, where usage of
Nokogiri::CSS::Tokenizer#load_file leads to potential command injection.

Fix broken master: Update karma for new expansion cell markup

Closes gitlab-ee#13439

See merge request gitlab-org/gitlab-ce!31694

André Luís authored 5 years ago and Paul Slaughter committed 5 years ago

Also cleans up spec by:
- Add missing `afterEach ... $destroy`
- Add missing `done` call when `$nextTick` was used

Make clearer that memory team is working to reduce memory requirement

See merge request gitlab-org/gitlab-ce!31647

Emilie Schario authored 5 years ago and Achilleas Pipinellis committed 5 years ago

Make clearer that the memory team is working
to reduce the memory requirement

Update ffi gem to 1.11.1

See merge request gitlab-org/gitlab-ce!31686

This reduces duplication on Omnibus GitLab and saves about ~8 MB of disk
space.

Full list of changes:
https://github.com/ffi/ffi/blob/master/CHANGELOG.md

Backport of https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/14943

See merge request gitlab-org/gitlab-ce!31406

Resolve "Incrementally expand merge request diffs in both direction"

Closes #58035

See merge request gitlab-org/gitlab-ce!30927

- expand upwards
- expand downwards
- expand all

in both inline and parallel views

Split MR widget into etag-cached and non-cached serializers

See merge request gitlab-org/gitlab-ce!31354

Igor Drozdov authored 5 years ago and Douwe Maan committed 5 years ago

Splits auto-refreshing of MR widget into 2 requests:

- the one which uses etag-caching and invalidates the fields on change
- the one without caching

The idea is to gradually move all the fields to etag-cached endpoint

Backport EE code for OAuth applications spec

See merge request gitlab-org/gitlab-ce!31670

Prevent rewritting plain links as embedded

Closes #58494

See merge request gitlab-org/gitlab-ce!31489

Removed duplicate functions from utils.sh

Closes gitlab-ee#13336

See merge request gitlab-org/gitlab-ce!31671

Remove embed metrics feature flag

See merge request gitlab-org/gitlab-ce!31106

Removes the feature flag that controls whether
metrics dashboard urls unfurl the metrics dashboard
charts.

Add ability to download chart CSV from metrics dashboard

Closes #60733

See merge request gitlab-org/gitlab-ce!30760

This MR adds a temporary button to be able to
download the Prometheus metrics from charts
to CSV format.

Bump GitLab Workhorse to v8.8.0

See merge request gitlab-org/gitlab-ce!31676

[CE] Remove default `relative_position` from `epic_issues`

See merge request gitlab-org/gitlab-ce!31514

Resolve "Search loses branch"

Closes #59712

See merge request gitlab-org/gitlab-ce!28282

minghuan lei authored 5 years ago and Paul Slaughter committed 5 years ago

- only in blobs result

Revert "Merge branch '65152-selective-highlight' into 'master'"

See merge request gitlab-org/gitlab-ce!31643

This sanitizes some log messages to be consistent with CE.

Full list of changes:
https://gitlab.com/gitlab-org/gitlab-workhorse/blob/master/CHANGELOG

Fix job log where spans were displayed in block

Closes #65686

See merge request gitlab-org/gitlab-ce!31674

Improve layout of dropdowns in the metrics dashboard page

Closes #64730

See merge request gitlab-org/gitlab-ce!31239

Ensure layout works on xs and sm screens

Add check in case buttons are not present

Apply Prettier to file

Remove unused class and div, reduce margins

Merge branch '62137-add-tooltip-to-improve-clarity-of-detached-label-state-in-the-merge-request-pipeline' into 'master'

Resolve "Add tooltip to improve clarity of "detached" label/state in the merge request pipeline"

Closes #62137

See merge request gitlab-org/gitlab-ce!31626

This is a temporary, not ideal, solution but it fixes the
main issue that the customer are complaining about, which
is that color changes are broken down in several lines which
makes the log not readable.

Backport EE changes to Members::BaseService

See merge request gitlab-org/gitlab-ce!31581

Resolve EE differences in the lib/ directory

See merge request gitlab-org/gitlab-ce!31582

This change was made in EE in MR
https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/14802, but this
was not backported to CE.

This spec used a different title for a spec in EE, while CE duplicated
the same title. This ensures that CE uses the EE version.

Visual review app gitlab storage keys

See merge request gitlab-org/gitlab-ce!31427

Resolve "Remove extra padding from the disabled comment area"

Closes #63671

See merge request gitlab-org/gitlab-ce!31603

Fix Sidekiq scheduling_latency_s

Closes #65748

See merge request gitlab-org/gitlab-ce!31650

Revert milestone filter behavior for "any"  (CE-backport)

See merge request gitlab-org/gitlab-ce!31583