Merge remote-tracking branch 'dev/master'

CHANGELOG-EE.md

 Please view this file on the master branch, on stable branches it's out of date.
 
+## 13.3.4 (2020-09-02)
+
+- No changes.
+
 ## 13.3.3 (2020-09-02)
 
 ### Security (2 changes)
@@ -262,6 +266,10 @@ Please view this file on the master branch, on stable branches it's out of date.
 - Replace -800 hex value, replace usages with -700. !39734
 
 
+## 13.2.8 (2020-09-02)
+
+- No changes.
+
 ## 13.2.7 (2020-09-02)
 
 ### Security (2 changes)
@@ -661,6 +669,10 @@ Please view this file on the master branch, on stable branches it's out of date.
 - Resolve duplicate use of shorcuts-tree. !36732
 
 
+## 13.1.10 (2020-09-02)
+
+- No changes.
+
 ## 13.1.9 (2020-09-02)
 
 ### Security (2 changes)

CHANGELOG.md

@@ -2,6 +2,13 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 13.3.4 (2020-09-02)
+
+### Security (1 change)
+
+- Protect OAuth endpoints from brute force/password stuffing.
+
+
 ## 13.3.3 (2020-09-02)
 
 ### Security (23 changes, 1 of them is from the community)
@@ -582,6 +589,13 @@ entry.
 - Replace fa-pencil icon with GitLab SVG. !39648
 
 
+## 13.2.8 (2020-09-02)
+
+### Security (1 change)
+
+- Protect OAuth endpoints from brute force/password stuffing.
+
+
 ## 13.2.7 (2020-09-02)
 
 ### Security (23 changes, 1 of them is from the community)
@@ -1679,6 +1693,13 @@ entry.
 - Remove removeIssue logic from list model. (nuwe1)
 
 
+## 13.1.10 (2020-09-02)
+
+### Security (1 change)
+
+- Protect OAuth endpoints from brute force/password stuffing.
+
+
 ## 13.1.9 (2020-09-02)
 
 ### Security (23 changes, 1 of them is from the community)

changelogs/unreleased/security-205-dblessing-oauth-token-brute-force.yml

----
-title: Protect OAuth endpoints from brute force/password stuffing
-merge_request:
-author:
-type: security