- 17 Jan, 2018 10 commits
-
-
James Lopez authored
[10.3] Fix RCE via project import mechanism See merge request gitlab/gitlabhq!2294 (cherry picked from commit dcfec507d6f9ee119d65a832393e7c593af1d3b2) 86d75812 Fix RCE via project import mechanism
-
Robert Speicher authored
Merge branch '41293-fix-command-injection-vulnerability-on-system_hook_push-queue-through-web-hook' into 'security-10-3' Don't allow line breaks on HTTP headers See merge request gitlab/gitlabhq!2277 (cherry picked from commit 7fc0a6fc096768a5604d6dd24d7d952e53300c82) 073b8f9c Don't allow line breaks on HTTP headers
-
Douwe Maan authored
[10.3] Migrate `can_push` column from `keys` to `deploy_keys_project` See merge request gitlab/gitlabhq!2276 (cherry picked from commit f6ca52d31bac350a23938e0aebf717c767b4710c) 1f2bd3c0 Backport to 10.3
-
Sean McGivern authored
check project access on MR create See merge request gitlab/gitlabhq!2273 (cherry picked from commit 1fe2325d6ef2bced4c5e97b57691c894f38b2834) 43e85f49 check project access on MR create
-
Robert Speicher authored
[10.3] Fix path traversal in gitlab-ci.yml cache:key See merge request gitlab/gitlabhq!2270 (cherry picked from commit c32d0c6807dfd41d7838a35742e6d0986871b389) df29094a Fix path traversal in gitlab-ci.yml cache:key
-
Stan Hu authored
Validate project path in Gitlab import - 10.3 port See merge request gitlab/gitlabhq!2268 (cherry picked from commit 94c82376d66fc80d46dd2d5eeb5bade408ec6a7e) 2b94a7c2 Validate project path in Gitlab import
-
Robert Speicher authored
Remove order param from the MilestoneFinder See merge request gitlab/gitlabhq!2259 (cherry picked from commit 14408042e78f2ebc2644f956621b461dbfa3d36d) 155881e7 Remove order param from the MilestoneFinder
-
Jacob Schatz authored
[10.3] Fix XSS in issue label dropdown See merge request gitlab/gitlabhq!2253 (cherry picked from commit 363ffabcebd7bb0d1a2d59ca1a75e4eadb4a4360) ea1fb0ea Fix XSS in issue label dropdown
-
Robert Speicher authored
[10.3] Fix XSS vulnerability in Pipeline job trace See merge request gitlab/gitlabhq!2258 (cherry picked from commit 44caa80ed9a2514a74a5eeab10ff51849d64851b) 5f86f3ff Fix XSS vulnerability in Pipeline job trace
-
Stan Hu authored
Merge branch 'security-10-3-do-not-expose-passwords-or-tokens-in-service-integrations-api' into 'security-10-3' Filter out sensitive fields from the project services API See merge request gitlab/gitlabhq!2281 (cherry picked from commit 476f2576444632f2a9a61b4cead9c1077f2c81d7) 2bcbbda0 Filter out sensitive fields from the project services API
-
- 16 Jan, 2018 30 commits
-
-
Stan Hu authored
Prevent RevList failing on non utf8 paths Closes #41627 See merge request gitlab-org/gitlab-ce!16440
-
Annabel Dunstone Gray authored
fix readability xterm colors Closes #37898 See merge request gitlab-org/gitlab-ce!15921
-
Danny authored
-
Nick Thomas authored
Resolve "postgresql 10 support for GitLab" Closes #42047 See merge request gitlab-org/gitlab-ce!16471
-
Rémy Coutable authored
Update test-and-deploy-ruby-application-to-heroku.md See merge request gitlab-org/gitlab-ce!16500
-
Rémy Coutable authored
Last push widget will show banner for new pushes to previously merged branch Closes #40818 See merge request gitlab-org/gitlab-ce!15728
-
JJ Asghar authored
Converted from type to "stage" due to depreciation. Signed-off-by: JJ Asghar <jjasghar@gmail.com>
-
Filipa Lacerda authored
Add pipeline header padding See merge request gitlab-org/gitlab-ce!16496
-
Tim Zallmann authored
Adjust modal style to new design See merge request gitlab-org/gitlab-ce!16310
-
Stan Hu authored
Resolve "N+1 queries with /projects/:project_id/builds API endpoint" Closes #41957 See merge request gitlab-org/gitlab-ce!16445
-
Douwe Maan authored
Resolve "Wiki uploaded files are missing" Closes #42031 See merge request gitlab-org/gitlab-ce!16499
-
Douwe Maan authored
List backups avilable for restore See merge request gitlab-org/gitlab-ce!16465
-
Phil Hughes authored
dispatcher changes for projects:c* views See merge request gitlab-org/gitlab-ce!16416
-
George Tsiolis authored
-
Nick Thomas authored
-
Fatih Acet authored
Resolve "Icons on forks page are to big" Closes #42046 See merge request gitlab-org/gitlab-ce!16474
-
Simon Knox authored
-
Kamil Trzciński authored
Update auto-deployed prometheus scrape config Closes #41796 See merge request gitlab-org/gitlab-ce!16306
-
Nick Thomas authored
-
Balasankar "Balu" C authored
-
Rémy Coutable authored
Resolve "Cannot search with keyword "merge"" Closes #41666 See merge request gitlab-org/gitlab-ce!16462
-
Rémy Coutable authored
Refactor of buttons _dropdown partial Closes #41921 See merge request gitlab-org/gitlab-ce!16486
-
Rémy Coutable authored
Fix typo in doc_styleguide.md See merge request gitlab-org/gitlab-ce!16481
-
Rémy Coutable authored
Change user settings column width See merge request gitlab-org/gitlab-ce!16479
-
Rémy Coutable authored
Fix top-area inconsistent capitalization See merge request gitlab-org/gitlab-ce!16476
-
Nick Thomas authored
-
James Edwards-Jones authored
-
Rémy Coutable authored
Resolve "Enable Project Milestone Deletion via the API" Closes #41476 See merge request gitlab-org/gitlab-ce!16478
-
Balasankar "Balu" C authored
-
Jacopo authored
Enables project milestone deletion via DELETE /projects/:id/milestones/:milestone_id
-