- Mar 31, 2022
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
Reuben Pereira authored
Quarantine UsageDataNonSqlMetrics failing test See merge request gitlab-org/security/gitlab!2364
-
Reuben Pereira authored
Merge branch 'rp/quarantine-failing-spec' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2364 Changelog: security
-
GitLab Release Tools Bot authored
Disallow login if password matches a fixed list See merge request gitlab-org/security/gitlab!2357
-
Merge branch 'security-disallowed-passwords-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2357 Changelog: security
-
GitLab Release Tools Bot authored
Update devise-two-factor to 4.0.2 See merge request gitlab-org/security/gitlab!2349
-
Merge branch 'security-update-devise-two-factor-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2349 Changelog: security
-
GitLab Release Tools Bot authored
Limit the number of tags associated with a CI runner See merge request gitlab-org/security/gitlab!2303
-
Merge branch 'pedropombeiro/328593/14.9-limit-number-of-runner-tags' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2303 Changelog: security
-
GitLab Release Tools Bot authored
GitLab Pages Security Updates for 14.9 See merge request gitlab-org/security/gitlab!2327
-
Merge branch 'security-pages-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2327 Changelog: security
-
GitLab Release Tools Bot authored
Upgrade swagger-ui dependency See merge request gitlab-org/security/gitlab!2336
-
Merge branch 'security-swagger-ui-upgrade-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2336 Changelog: security
-
GitLab Release Tools Bot authored
Modify release link format check to avoid regex if string is too long See merge request gitlab-org/security/gitlab!2307
-
Merge branch 'security-273771-confidential-issue-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2307 Changelog: security
-
GitLab Release Tools Bot authored
Masks variables in error messages See merge request gitlab-org/security/gitlab!2308
-
Merge branch 'security-lm-mask-variables-in-error-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2308 Changelog: security
-
GitLab Release Tools Bot authored
Escape user provided string to prevent XSS See merge request gitlab-org/security/gitlab!2313
-
Merge branch 'security-618-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2313 Changelog: security
-
GitLab Release Tools Bot authored
Monkey patch of RDoc to prevent Ruby segfault See merge request gitlab-org/security/gitlab!2321
-
Merge branch 'security-dblessing_rdoc_puma-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2321 Changelog: security
-
- Mar 30, 2022
-
-
GitLab Release Tools Bot authored
Merge branch 'security-597-project-import-maps-members-created_by_id-users-based-on-source-user-id-14-9' into '14-9-stable-ee' Project import maps members' created_by_id users based on source user ID See merge request gitlab-org/security/gitlab!2301
-
Merge branch 'security-597-project-import-maps-members-created_by_id-users-based-on-source-user-id-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2301 Changelog: security
-
GitLab Release Tools Bot authored
Redact InvalidURIError error messages See merge request gitlab-org/security/gitlab!2295
-
Merge branch 'security-37261-clean-passwords-from-invalid-uri-error-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2295 Changelog: security
-
GitLab Release Tools Bot authored
Fix access for approval rules API See merge request gitlab-org/security/gitlab!2322
-
Merge branch 'security-id-fix-approval-rules-access-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2322 Changelog: security
-
GitLab Release Tools Bot authored
Fix kroki exploit See merge request gitlab-org/security/gitlab!2306
-
Merge branch 'security-comment-dos-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2306 Changelog: security
-
GitLab Release Tools Bot authored
Fix blind SSRF when looking up SSH host keys for mirroring See merge request gitlab-org/security/gitlab!2309
-
Merge branch 'security-354059-detect-host-keys-blind-ssrf-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2309 Changelog: security
-
GitLab Release Tools Bot authored
Escape original content in reference redactor See merge request gitlab-org/security/gitlab!2317
-
Merge branch 'security-fix-reference-redactor-xss-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2317 Changelog: security
-
GitLab Release Tools Bot authored
Security fix for CI/CD analytics visibility See merge request gitlab-org/security/gitlab!2304
-
Merge branch 'security-fix-ci-cd-analytics-visibility-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2304 Changelog: security
-
GitLab Release Tools Bot authored
Latest commit exposed through fork of a private project See merge request gitlab-org/security/gitlab!2294
-
Merge branch 'security-lastest-commit-exposed-private-group-guest-user-14-9' into '14-9-stable-ee' See merge request gitlab-org/security/gitlab!2294 Changelog: security
-
GitLab Release Tools Bot authored
Fix Asana integration restricted branch filter See merge request gitlab-org/security/gitlab!2300
-
