- Oct 01, 2019
-
-
-
GitLab Release Tools Bot authored
[ci skip]
-
Marin Jankovski authored
Fix private feature Elasticsearch leak See merge request gitlab/gitlabhq!3452
-
Mark Chao authored
Add spec to test different combinations. Accept string for required_minimum_access_level Allow more flexible project membership query
-
- Sep 30, 2019
-
-
Stan Hu authored
Fix broken specs : Generate new GPG key in place of expired one Closes #32956 See merge request gitlab-org/gitlab!17853
-
- Sep 26, 2019
-
-
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
Fix Gitaly SearchBlobs flag RPC injection [Gitaly v1.53.4] See merge request gitlab/gitlabhq!3435
-
GitLab Release Tools Bot authored
Check that SAML identity linking validates the origin of the request See merge request gitlab/gitlabhq!3376
-
GitLab Release Tools Bot authored
Gitlab XSS in markdown preview page See merge request gitlab/gitlabhq!3400
-
GitLab Release Tools Bot authored
Merge branch 'security-12717-fix-confidential-issue-assignee-visible-to-guests-12-1' into '12-1-stable' Display only participants that user has permission to see See merge request gitlab/gitlabhq!3403
-
GitLab Release Tools Bot authored
Prevent Bypassing Email Verification using Salesforce See merge request gitlab/gitlabhq!3407
-
GitLab Release Tools Bot authored
Only render fixed number of mermaid blocks See merge request gitlab/gitlabhq!3413
-
GitLab Release Tools Bot authored
Hide disabled project milestones in project settings on group level See merge request gitlab/gitlabhq!3416
-
GitLab Release Tools Bot authored
Redirect user to root path after unsubscribing from private resource See merge request gitlab/gitlabhq!3418
-
GitLab Release Tools Bot authored
Add policy check if cross reference system notes are accessible See merge request gitlab/gitlabhq!3428
-
GitLab Release Tools Bot authored
Cancel all running CI jobs when user is blocked See merge request gitlab/gitlabhq!3438
-
GitLab Release Tools Bot authored
Filter not accessible label events See merge request gitlab/gitlabhq!3442
-
- Sep 25, 2019
-
-
Alexandru Croitor authored
-
Alexandru Croitor authored
-
- Sep 24, 2019
-
-
Paul Okstad authored
-
Kushal Pandya authored
Add argument to catch See merge request gitlab-org/gitlab-ee!15911
-
Jan Provaznik authored
Label events may use cross-project or cross-group references, if the projects are not accessible by user, we don't show these label events.
-
Fabio Pitino authored
This prevents a MITM attack where attacker could still access Git repository if any jobs were running long enough.
-
- Sep 20, 2019
-
-
Alexandru Croitor authored
-
Alexandru Croitor authored
If user unsubsrcribes from a resource that they no longer have access to they should not be revealed the resource path, but be redirected to app root instead. https://gitlab.com/gitlab-org/gitlab-ce/issues/64938
-
- Sep 19, 2019
-
-
-
GitLab Release Tools Bot authored
[ci skip]
-
-
GitLab Release Tools Bot authored
[ci skip]
-
John Jarvis authored
Prepare 12.1.10 release See merge request gitlab-org/gitlab-foss!32979
-
Fix order-dependent spec failures with reCAPTCHA Closes #67133 See merge request gitlab-org/gitlab-ce!32771
-
Rajat Jain authored
-
John Jarvis authored
[12-1-stable] Re-add ignore_column for import columns See merge request gitlab-org/gitlab-foss!32977
-
- Sep 18, 2019
-
-
Stan Hu authored
This `ignore_column` was present for a while but recently removed, but to ensure we don't get error 500s let's keep it for a while.
-
- Sep 16, 2019
-
-
Sebastián Arcila Valenzuela authoredIf the request wasn't initiated by gitlab we shouldn't add the new identity to the user, and instead show that we weren't able to link the identity to the user. This should fix: https://gitlab.com/gitlab-org/gitlab-ce/issues/56509
-
- Sep 11, 2019
