[merge-train skip]

[ci skip]

[ci skip]

Prepare 13.12.13-ee release

See merge request gitlab-org/gitlab!73299

Douglas Barbosa Alexandre authored 3 years ago and John Skarbek committed 3 years ago

Geo: Reduce frequency of redownload attempts

See merge request gitlab-org/gitlab!70329

Luke Duncalfe authored 3 years ago and John Skarbek committed 3 years ago

Quarantine flaky DST specs

See merge request gitlab-org/gitlab!72748

[merge-train skip]

[ci skip]

[ci skip]

[merge-train skip]

[ci skip]

[ci skip]

[merge-train skip]

[ci skip]

[ci skip]

Prepare 13.12.10-ee release

See merge request gitlab-org/gitlab!67748

Fix: Sidekiq workers delete each other's metrics

See merge request gitlab-org/gitlab!66432

Mark Chao authored 3 years ago and GitLab Release Tools Bot committed 3 years ago

Resolve "operator does not exist: integer[] || bigint in app/models/namespace/traversal_hierarchy.rb"

See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/67288

Changelog: changed

alex pooley authored 3 years ago and GitLab Release Tools Bot committed 3 years ago

See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/65954

Changelog: fixed

Michael Kozono authored 3 years ago and GitLab Release Tools Bot committed 3 years ago

See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/65504

Changelog: fixed
EE: true

[merge-train skip]

[ci skip]

[ci skip]

Don't allow to add users to project with email different than group sett

See merge request gitlab-org/security/gitlab!1562

Merge branch 'security-nfriend-hide-project-ci-cd-analytics-for-guests-13-12' into '13-12-stable-ee'

Hide project-level CI/CD Analytics page for Guest users

See merge request gitlab-org/security/gitlab!1575

Merge branch 'security-not-allow-to-impersonate-tokens-while-impersonation-is-off-13-12' into '13-12-stable-ee'

Block pushing with impersonation token if impersonation is disabled

See merge request gitlab-org/security/gitlab!1585

Changelog: security

Changelog: security

This commit updates the project-level CI/CD Analytics page to not be
accessible by Guest users of private projects.

Changelog: security

Add permissions check to pipelines#show action

See merge request gitlab-org/security/gitlab!1618

Do not show email address in error message

See merge request gitlab-org/security/gitlab!1598

Misleading username could lead to impersonation in using SSH Certificates

See merge request gitlab-org/security/gitlab!1611

Remove impersonation token from api response for non-admin user

See merge request gitlab-org/security/gitlab!1567

Only allow invite to be accepted by user with matching email

See merge request gitlab-org/security/gitlab!1634

Configure OmniAuth to use GitLab AppLogger

See merge request gitlab-org/security/gitlab!1617

Merge branch 'security-prevent-guests-from-creating-issues-with-sentry-error-13-12' into '13-12-stable-ee'

Prevent Guest users from creating issues linked to Sentry errors

See merge request gitlab-org/security/gitlab!1599

Updates oauth to 0.5.6

See merge request gitlab-org/security/gitlab!1569

Unauthorized User Can Trigger Deployment to the Protected Environment

See merge request gitlab-org/security/gitlab!1608

Fix tag ref detection for pipelines

See merge request gitlab-org/security/gitlab!1549