Update CHANGELOG.md for 11.6.0

[ci skip]

CHANGELOG.md

@@ -2,6 +2,283 @@
 documentation](doc/development/changelog.md) for instructions on adding your own
 entry.
 
+## 11.6.0 (2018-12-22)
+
+### Security (24 changes, 1 of them is from the community)
+
+- Fix possible XSS attack in Markdown urls with spaces. !2599
+- Update rack to 2.0.6 (for QA environments). !23171 (Takuya Noguchi)
+- Bump nokogiri, loofah, and rack gems for security updates. !23204
+- Encrypt runners tokens. !23412
+- Encrypt CI/CD builds authentication tokens. !23436
+- Configure mermaid to not render HTML content in diagrams.
+- Fix a possible symlink time of check to time of use race condition in GitLab Pages.
+- Removed ability to see private group names when the group id is entered in the url.
+- Fix stored XSS for Environments.
+- Fix persistent symlink in project import.
+- Fixed ability of guest users to edit/delete comments on locked or confidential issues.
+- Fixed ability to comment on locked/confidential issues.
+- Fix CRLF vulnerability in Project hooks.
+- Fix SSRF in project integrations.
+- Resolve reflected XSS in Ouath authorize window.
+- Restrict Personal Access Tokens to API scope on web requests.
+- Provide email notification when a user changes their email address.
+- Don't expose confidential information in commit message list.
+- Validate LFS hrefs before downloading them.
+- Do not follow redirects in Prometheus service when making http requests to the configured api url.
+- Escape user fullname while rendering autocomplete template to prevent XSS.
+- Redact sensitive information on gitlab-workhorse log.
+- Fix milestone promotion authorization check.
+- Prevent a path traversal attack on global file templates.
+
+### Removed (1 change)
+
+- Remove obsolete gitlab_shell rake tasks. !22417
+
+### Fixed (86 changes, 13 of them are from the community)
+
+- Remove limit of 100 when searching repository code. !8671
+- Show error message when attempting to reopen an MR and there is an open MR for the same branch. !16447 (Akos Gyimesi)
+- Fix a bug where internal email pattern wasn't respected. !22516
+- Fix project selector consistency in groups issues / MRs / boards pages. !22612 (Heinrich Lee Yu)
+- Add empty state for graphs with no values. !22630
+- Fix navigating by unresolved discussions on Merge Request page. !22789
+- Fix "merged with [commit]" info for merge requests being merged automatically by other actions. !22794
+- Fixing regression issues on pages settings and details. !22821
+- Remove duplicate primary button in dashboard snippets on small viewports. !22902 (George Tsiolis)
+- Fix API::Namespaces routing to accept namepaces with dots. !22912
+- Switch kubernetes:active with checking in Auto-DevOps.gitlab-ci.yml. !22929
+- Avoid Gitaly RPC errors when fetching diff stats. !22995
+- Removes promote to group label for anonymous user. !23042 (Jacopo Beschi @jacopo-beschi)
+- Fix enabling project deploy key for admins. !23043
+- Align issue status label and confidential icon. !23046 (George Tsiolis)
+- Fix default sorting for subgroups and projects list. !23058 (Jacopo Beschi @jacopo-beschi)
+- Hashed Storage: allow migration to be retried in partially migrated projects. !23087
+- Fix line height of numbers in file blame view. !23090 (Johann Hubert Sonntagbauer)
+- Fixes an issue where default values from models would override values set in the interface (e.g. users would be set to external even though their emails matches the internal email address pattern). !23114
+- Remove display of local Sidekiq process in /admin/sidekiq. !23118
+- Fix unrelated deployment status in MR widget. !23175
+- Respect confirmed flag on secondary emails. !23181
+- Restrict member access level to be higher than that of any parent group. !23226
+- Return real deployment status to frontend. !23270
+- Handle force_remove_source_branch when creating merge request. !23281
+- Avoid creating invalid refs using rugged, shelling out for writing refs. !23286
+- Remove needless auto-capitalization on Wiki page titles. !23288
+- Modify the wording for the knative cluster application to match upstream. !23289 (Chris Baumbauer)
+- Change container width for project import. !23318 (George Tsiolis)
+- Validate chunk size when persist. !23341
+- Resolve Main navbar is broken in certain viewport widths. !23348
+- Gracefully handle references with null bytes. !23365
+- Display commit ID for commit diff discussion on merge request. !23370
+- Pass commit when posting diff discussions. !23371
+- Fix flash notice styling for fluid layout. !23382
+- Add monkey patch to unicorn to fix eof? problem. !23385
+- Commits API: Preserve file content in move operations if unspecified. !23387
+- Disable password autocomplete in mirror form fill. !23402
+- Fix "protected branches only" checkbox not set properly at init. !23409
+- Support RSA and ECDSA algorithms in Omniauth JWT provider. !23411 (Michael Tsyganov)
+- Make KUBECONFIG nil if KUBE_TOKEN is nil. !23414
+- Allow search and sort users at same time on admin users page. !23439
+- Fix: Unstar icon button is misaligned. !23444
+- Fix error when searching for group issues with priority or popularity sort. !23445
+- Fix Order By dropdown menu styling in tablet and mobile screens. !23446
+- Fix collapsing discussion replies. !23462
+- Gracefully handle unknown/invalid GPG keys. !23492
+- Fix multiple commits shade overlapping vertical discussion line. !23515
+- Use read_repository scope on read-only files API. !23534
+- Avoid 500's when serializing legacy diff notes. !23544
+- Fix web hook functionality when the database encryption key is too short. !23573
+- Hide Knative from group cluster applications until supported. !23577
+- Add top padding for nested environment items loading icon. !23580 (George Tsiolis)
+- Improve help and validation sections of maximum build timeout inputs. !23586
+- Fix milestone select in issue sidebar of issue boards. !23625
+- Fix gitlab:web_hook tasks. !23635
+- Avoid caching BroadcastMessage as an ActiveRecord object. !23662
+- Only allow strings in URL::Sanitizer.valid?. !23675
+- Fix a frozen string error in app/mailers/notify.rb. !23683
+- Fix a frozen string error in lib/gitlab/utils.rb. !23690
+- Fix MR resolved discussion counts being too low. !23710
+- Fix a potential frozen string error in app/mailers/notify.rb. !23728
+- Remove unnecessary div from MarkdownField to apply list styles correctly. !23733
+- Display reply field if resolved discussion has no replies. !23801
+- Restore kubernetes:active in Auto-DevOps.gitlab-ci.yml (reverts 22929). !23826
+- Fix mergeUrlParams with fragment URL. !54218 (Thomas Holder)
+- Fixed multiple diff line discussions not expanding.
+- Fixed diff files expanding not loading commit content.
+- Fixed styling of image comment badges on commits.
+- Resolve possible cherry pick API race condition.
+- When user clicks linenumber in MR changes, highlight that line.
+- Remove old webhook logs after 90 days, as documented, instead of after 2.
+- Add an external IP address to the knative cluster application page. (Chris Baumbauer)
+- Fixed duplicate discussions getting added to diff lines.
+- Fix deadlock on ChunkedIO.
+- Show tree collapse button for merge request commit diffs.
+- Use approximate count for big tables for usage statistics.
+- Lock writes to trace stream.
+- Ensure that SVG sprite icons are properly rendered in IE11.
+- Make new branch form fields' fonts consistent.
+- Open first 10 merge request files in IDE.
+- Prevent user from navigating away from file edit without commit.
+- Prevent empty button being rendered in empty state.
+- Adds margins between tags when a job is stuck.
+- Fix Image Lazy Loader for some older browsers.
+- Correctly styles tags in sidebar for job page.
+
+### Changed (34 changes, 9 of them are from the community)
+
+- Include new link in breadcrumb for issues, merge requests, milestones, and labels. !18515 (George Tsiolis)
+- Allow sorting issues and MRs in reverse order. !21438
+- Design improvements to project overview page. !22196
+- Remove auto deactivation when failed to create a pipeline via pipeline schedules. !22243
+- Use group clusters when deploying (DeploymentPlatform). !22308
+- Improve initial discussion rendering performance. !22607
+- removes partially matching of No Label filter and makes it case-insensitive. !22622 (Jacopo Beschi @jacopo-beschi)
+- Use search bar for filtering in dashboard issues / MRs. !22641 (Heinrich Lee Yu)
+- Show different empty state for filtered issues and MRs. !22775 (Heinrich Lee Yu)
+- Relocate JSONWebToken::HMACToken from EE. !22906
+- Resolve Add border around the repository file tree. !23018
+- Change breadcrumb title for contribution charts. !23071 (George Tsiolis)
+- Update environments metrics empty state. !23074 (George Tsiolis)
+- Refine cursor positioning in Markdown Editor for wrap tags. !23085 (Johann Hubert Sonntagbauer)
+- Use reports syntax for SAST in Auto DevOps. !23163
+- SystemCheck: Use a more reliable way to detect current Ruby version. !23291
+- Changed frontmatter filtering to support YAML, JSON, TOML, and arbitrary languages. !23331 (Travis Miller)
+- Don't remove failed install pods after installing GitLab managed applications. !23350
+- Expose merge request pipeline variables. !23398
+- Scope default MR search in WebIDE dropdown to current project. !23400
+- Show user contributions in correct timezone within user profile. !23419
+- Redesign of MR header sections (CE). !23465
+- Auto DevOps: Add echo for each branch of the deploy() function where we run helm upgrade. !23499
+- Updates service to update Kubernetes project namespaces and restricted service account if present. !23525
+- Adjust divider margin to comply with design specs. !23548
+- Adjust dropdown item and header padding to comply with design specs. !23552
+- Truncate merge request titles with periods instead of ellipsis. !23558
+- Remove close icon from projects dropdown in issue boards. !23567
+- Change dropdown divider color to gray-200 (#dfdfdf). !23592
+- Define the default value for only/except policies. !23765
+- Don't show Memory Usage for unmerged MRs.
+- reorder notification settings by noisy-ness. (C.J. Jameson)
+- Changed merge request filtering to be by path instead of name.
+- Make diff file headers sticky.
+
+### Performance (22 changes, 6 of them are from the community)
+
+- Upgrade to Ruby 2.5.3. !2806
+- Removes all the irrelevant code and columns that were migrated from the Project table over to the ProjectImportState table. !21497
+- Approximate counting strategy with TABLESAMPLE. !22650
+- Replace tooltip directive with gl-tooltip diretive in badges, cycle analytics, and diffs. !22770 (George Tsiolis)
+- Validate foreign keys being created and indexed for column with _id. !22808
+- Remove monospace extend. !23089 (George Tsiolis)
+- Use Nokogiri as the ActiveSupport XML backend. !23136
+- Improve memory performance by reducing dirty pages after fork(). !23169
+- Add partial index for ci_builds on project_id and status. !23268
+- Reduce Gitaly calls in projects dashboard. !23307
+- Batch load only data from same repository when lazy object is accessed. !23309
+- Add index for events on project_id and created_at. !23354
+- Remove index for notes on updated_at. !23356
+- Improves performance of Project#readme_url by caching the README path. !23357
+- Populate MR metrics with events table information (migration). !23564
+- Remove unused data from discussions endpoint. !23570
+- Speed up issue board lists in groups with many projects.
+- Use cached size when passing artifacts to Runner.
+- Enable even more frozen string for lib/gitlab. (gfyoung)
+- Enable even more frozen string in lib/gitlab/**/*.rb. (gfyoung)
+- Enable even more frozen string in lib/gitlab/**/*.rb. (gfyoung)
+- Enable even more frozen string for lib/gitlab. (gfyoung)
+
+### Added (32 changes, 13 of them are from the community)
+
+- Add ability to create group level clusters and install gitlab managed applications. !22450
+- Creates /create_merge_request quickaction. !22485 (Jacopo Beschi @jacopo-beschi)
+- Filter by None/Any for labels in issues/mrs API. !22622 (Jacopo Beschi @jacopo-beschi)
+- Chat message push notifications now include links back to GitLab branches. !22651 (Tony Castrogiovanni)
+- Added feature flag to signal content headers detection by Workhorse. !22667
+- Add Discord integration. !22684 (@blackst0ne)
+- Upgrade helm to 2.11.0 and upgrade on every install. !22693
+- Add knative client to kubeclient library. !22968 (cab105)
+- Allow SSH public-key authentication for push mirroring. !22982
+- Allow deleting a Pipeline via the API. !22988
+- #40635: Adds support for cert-manager. !23036 (Amit Rathi)
+- WebIDE: Pressing Ctrl-Enter while typing on the commit message now performs the commit action. !23049 (Thomas Pathier)
+- Adds Any option to label filters. !23111 (Jacopo Beschi @jacopo-beschi)
+- Added glob for CI changes detection. !23128 (Kirill Zaitsev)
+- Add model and relation to store repo full path in database. !23143
+- Add ability to render suggestions. !23147
+- Introduce Knative and Serverless Components. !23174 (Chris Baumbauer)
+- Use BFG object maps to clean projects. !23189
+- Merge request pipelines. !23217
+- Extended user centric tooltips on issue and MR page. !23231
+- Add a rebase API endpoint for merge requests. !23296
+- Add config to prohibit impersonation. !23338
+- Merge request pipeline tag, and adds tags to pipeline view. !23364
+- #52753: HTTPS for JupyterHub installation. !23479 (Amit Rathi)
+- Fill project_repositories for hashed storage projects. !23482
+- Ability to override email for cert-manager. !23503 (Amit Rathi)
+- Allow public forks to be deduplicated. !23508
+- Pipeline trigger variable values are hidden in the UI by default. Maintainers have the option to reveal them. !23518 (jhampton)
+- Add new endpoint to download single artifact file for a ref. !23538
+- Log and pass correlation-id between Unicorn, Sidekiq and Gitaly.
+- Allow user to scroll to top of tab on MR page.
+- Adds states to the deployment widget.
+
+### Other (54 changes, 30 of them are from the community)
+
+- Switch to Rails 5. !21492
+- Migration to write fullpath in all repository configs. !22322
+- Rails5: env is deprecated and will be removed from Rails 5.1. !22626 (Jasper Maes)
+- Update haml_lint to 0.28.0. !22660 (Takuya Noguchi)
+- Update ffaker to 2.10.0. !22661 (Takuya Noguchi)
+- Drop gcp_clusters table. !22713
+- Upgrade minimum required Git version to 2.18.0. !22803
+- Adds new icon size to Vue icon component. !22899
+- Make sure there's only one slash as path separator. !22954
+- Show HTTP response code for Kubernetes errors. !22964
+- Update config map for gitlab managed application if already present on install. !22969
+- Drop default value on status column in deployments table. !22971
+- UI improvements to user's profile. !22977
+- Update asana to 0.8.1. !23039 (Takuya Noguchi)
+- Update asciidoctor to 1.5.8. !23047 (Takuya Noguchi)
+- Make auto-generated icons for subgroups in the breadcrumb dropdown display as a circle. !23062 (Thomas Pathier)
+- Make reply shortcut only quote selected discussion text. !23096 (Thomas Pathier)
+- Fix typo in notebook props. !23103 (George Tsiolis)
+- Fix typos in lib. !23106 (George Tsiolis)
+- Rename diffs store variable. !23123 (George Tsiolis)
+- Fix overlapping navbar separator and overflowing navbar dropdown on small displays. !23126 (Thomas Pathier)
+- Show what RPC is called in the performance bar. !23140
+- Updated Gitaly to v0.133.0. !23148
+- Rails5: Passing a class as a value in an Active Record query is deprecated. !23164 (Jasper Maes)
+- Fix project identicon aligning Harry Kiselev. !23166 (Harry Kiselev)
+- Fix horizontal scrollbar overlapping on horizontal scrolling-tabs. !23167 (Harry Kiselev)
+- Fix bottom paddings of profile header and some markup updates of profile. !23168 (Harry Kiselev)
+- Fixes to AWS documentation spelling and grammar. !23198 (Brendan O'Leary)
+- Adds a PHILOSOPHY.md which references GitLab Product Handbook. !23200
+- Externalize strings from `/app/views/invites`. !23205 (Tao Wang)
+- Externalize strings from `/app/views/project/runners`. !23208 (Tao Wang)
+- Fix typo for scheduled pipeline. !23218 (Davy Defaud)
+- Force content disposition attachment to several endpoints. !23223
+- Upgrade kubeclient to 4.0.0. !23261 (Praveen Arimbrathodiyil @pravi)
+- Update used version of Runner Helm Chart to 0.1.38. !23304
+- render :nothing option is deprecated, Use head method to respond with empty response body. !23311 (Jasper Maes)
+- Passing an argument to force an association to reload is now deprecated. !23334 (Jasper Maes)
+- Externalize strings from `/app/views/snippets`. !23351 (Tao Wang)
+- Fix deprecation: You are passing an instance of ActiveRecord::Base to. !23369 (Jasper Maes)
+- Resolve status emoji being replaced by avatar on mobile. !23408
+- Fix deprecation: render :text is deprecated because it does not actually render a text/plain response. !23425 (Jasper Maes)
+- Fix lack of documentation on how to fetch a snippet's content using API. !23448 (Colin Leroy)
+- Upgrade GitLab Workhorse to v7.3.0. !23489
+- Fallback to admin KUBE_TOKEN for project clusters only. !23527
+- Update used version of Runner Helm Chart to 0.1.39. !23633
+- Show primary button when all labels are prioritized. !23648 (George Tsiolis)
+- Upgrade workhorse to 7.6.0. !23694
+- Upgrade Gitaly to v1.7.1 for correlation-id logging. !23732
+- Fix due date test. !23845
+- Remove unused project method. !54103 (George Tsiolis)
+- Uses new gitlab-ui components in Jobs and Pipelines components.
+- Replaces tooltip directive with the new gl-tooltip directive for consistency in some ci/cd code.
+- Bump gpgme gem version from 2.0.13 to 2.0.18. (asaparov)
+- Enable Rubocop on lib/gitlab. (gfyoung)
+
+
 ## 11.5.5 (2018-12-20)
 
 ### Security (1 change)

changelogs/unreleased/19376-post-bfg-cleanup.yml

----
-title: Use BFG object maps to clean projects
-merge_request: 23189
-author:
-type: added

changelogs/unreleased/1979-redesign-mr-widget-approvals-ce.yml

----
-title: Redesign of MR header sections (CE)
-merge_request: 23465
-author:
-type: changed

changelogs/unreleased/20422-hide-ui-variables-by-default.yml

----
-title: Pipeline trigger variable values are hidden in the UI by default. Maintainers
-  have the option to reveal them.
-merge_request: 23518
-author: jhampton
-type: added

changelogs/unreleased/22548-reopen-error-message.yml

----
-title: Show error message when attempting to reopen an MR and there is an open MR
-  for the same branch
-merge_request: 16447
-author: Akos Gyimesi
-type: fixed

changelogs/unreleased/33705-merge-request-rebase-api.yml

----
-title: Add a rebase API endpoint for merge requests
-merge_request: 23296
-author:
-type: added

changelogs/unreleased/34758-deployment-cluster.yml

----
-title: Use group clusters when deploying (DeploymentPlatform)
-merge_request: 22308
-author:
-type: changed

changelogs/unreleased/34758-group-cluster-controller.yml

----
-title: Add ability to create group level clusters and install gitlab managed applications
-merge_request: 22450
-author:
-type: added

changelogs/unreleased/38495-calendar-activities-in-timezone.yml

----
-title: Show user contributions in correct timezone within user profile
-merge_request: 23419
-author:
-type: changed

changelogs/unreleased/39849_controller_sorts.yml

----
-title: Allow sorting issues and MRs in reverse order
-merge_request: 21438
-author:
-type: changed

changelogs/unreleased/40085-add-a-create_merge_request-quick-action.yml

----
-title: Creates /create_merge_request quickaction
-merge_request: 22485
-author: Jacopo Beschi @jacopo-beschi
-type: added

changelogs/unreleased/40260-reduce-gitaly-calls-project-pipeline-status.yml

----
-title: Reduce Gitaly calls in projects dashboard
-merge_request: 23307
-author:
-type: performance

changelogs/unreleased/40385-prohibit_impersonation.yml

----
-title: Add config to prohibit impersonation
-merge_request: 23338
-author:
-type: added

changelogs/unreleased/41875-allow-pipelines-to-be-deleted-by-project-owners.yml

----
-title: Allow deleting a Pipeline via the API.
-merge_request: 22988
-author:
-type: added

changelogs/unreleased/46544-webide-ctrl-enter-commit-shortcut.yml

----
-title: "WebIDE: Pressing Ctrl-Enter while typing on the commit message now performs the commit action"
-merge_request: 23049
-author: Thomas Pathier
-type: added

changelogs/unreleased/46950-systemcheck-ruby-version.yml

----
-title: 'SystemCheck: Use a more reliable way to detect current Ruby version'
-merge_request: 23291
-author:
-type: changed

changelogs/unreleased/48475-gitlab-pages-settings-regressions.yml

----
-title: Fixing regression issues on pages settings and details
-merge_request: 22821
-author:
-type: fixed

changelogs/unreleased/48496-merge-request-refactor-does-not-highlight-selected-line.yml

----
-title: When user clicks linenumber in MR changes, highlight that line
-merge_request:
-author:
-type: fixed

changelogs/unreleased/48889-populate-merge_commit_sha.yml

----
-title: Fix "merged with [commit]" info for merge requests being merged automatically
-  by other actions
-merge_request: 22794
-author:
-type: fixed

changelogs/unreleased/49479-hide-unmerged-env-perf-stats.yml

----
-title: Don't show Memory Usage for unmerged MRs
-merge_request:
-author:
-type: changed

changelogs/unreleased/49565-ssh-push-mirroring.yml

----
-title: Allow SSH public-key authentication for push mirroring
-merge_request: 22982
-author:
-type: added

changelogs/unreleased/49713-main-navbar-is-broken-in-certain-viewport-widths.yml

----
-title: Resolve Main navbar is broken in certain viewport widths
-merge_request: 23348
-author:
-type: fixed

changelogs/unreleased/49726-upgrade-helm-to-2-11.yml

----
-title: Upgrade helm to 2.11.0 and upgrade on every install
-merge_request: 22693
-author:
-type: added

changelogs/unreleased/50157-extended-user-centric-tooltips.yml

----
-title: Extended user centric tooltips on issue and MR page
-merge_request: 23231
-author:
-type: added

changelogs/unreleased/50264-add-border-around-the-repository-file-tree.yml

----
-title: Resolve Add border around the repository file tree
-merge_request: 23018
-author:
-type: changed

changelogs/unreleased/50341-cleanup-useless-project-import-attributes.yml

----
-title: Removes all the irrelevant code and columns that were migrated from the Project
-  table over to the ProjectImportState table
-merge_request: 21497
-author:
-type: performance

changelogs/unreleased/50626-searching-users-by-the-admin-panel-wipes-query-when-using-sort.yml

----
-title: Allow search and sort users at same time on admin users page
-merge_request: 23439
-author:
-type: fixed

changelogs/unreleased/50839-webide-mr-dropdown-filter.yml

----
-title: Scope default MR search in WebIDE dropdown to current project
-merge_request: 23400
-author:
-type: changed

changelogs/unreleased/51029-status-emoji-currently-replaces-avatar-on-mobile.yml

----
-title: Resolve status emoji being replaced by avatar on mobile
-merge_request: 23408
-author:
-type: other

changelogs/unreleased/51061-readme-url-n-1-rpc-call-resolved.yml

----
-title: Improves performance of Project#readme_url by caching the README path
-merge_request: 23357
-author:
-type: performance

changelogs/unreleased/51083-fix-move-api.yml

----
-title: 'Commits API: Preserve file content in move operations if unspecified'
-merge_request: 23387
-author:
-type: fixed

changelogs/unreleased/51101-can-add-an-existing-group-member-into-a-group-project-with-new-permissions-but-permissions-are-not-overridde.yml

----
-title: Restrict member access level to be higher than that of any parent group
-merge_request: 23226
-author:
-type: fixed

changelogs/unreleased/51122-fix-navigating-discussions.yml

----
-title: Fix navigating by unresolved discussions on Merge Request page
-merge_request: 22789
-author:
-type: fixed

changelogs/unreleased/51138-54026-breadcrumb-subgroups-ellipsis.yml

----
-title: "Make auto-generated icons for subgroups in the breadcrumb dropdown display as a circle"
-merge_request: 23062
-author: Thomas Pathier
-type: fix
\ No newline at end of file

changelogs/unreleased/51243-further-improvements-to-project-overview-ui.yml

----
-title: Design improvements to project overview page
-merge_request: 22196
-author:
-type: changed

changelogs/unreleased/51259-ci-cd-gitlab-ui-1.yml

----
-title: Uses new gitlab-ui components in Jobs and Pipelines components
-merge_request:
-author:
-type: other

changelogs/unreleased/51259-ci-cd-tooltips.yml

----
-title: Replaces tooltip directive with the new gl-tooltip directive for consistency
-  in some ci/cd code
-merge_request:
-author:
-type: other

changelogs/unreleased/51792-dont-delete-failed-install-pods.yml

----
-title: Don't remove failed install pods after installing GitLab managed applications
-merge_request: 23350
-author:
-type: changed

changelogs/unreleased/51959-branch-and-tag-name-links.yml

----
-title: Chat message push notifications now include links back to GitLab branches
-merge_request: 22651
-author: Tony Castrogiovanni
-type: added

changelogs/unreleased/52007-frontmatter-toml-json.yml

----
-title: Changed frontmatter filtering to support YAML, JSON, TOML, and arbitrary languages
-merge_request: 23331
-author: Travis Miller
-type: changed

changelogs/unreleased/52276-jump-to-top-in-merge-request.yml

----
-title: Allow user to scroll to top of tab on MR page
-merge_request:
-author:
-type: added

changelogs/unreleased/52285-omniauth-jwt-ppk-support.yml

----
-title: Support RSA and ECDSA algorithms in Omniauth JWT provider
-merge_request: 23411
-author: Michael Tsyganov
-type: fixed

changelogs/unreleased/52370-filter-by-none-any-for-labels-in-issues-mrs-boards.yml

----
-title: Adds Any option to label filters
-merge_request: 23111
-author: Jacopo Beschi @jacopo-beschi
-type: added

changelogs/unreleased/52371-filter-by-none-any-for-labels-in-issues-mrs-api.yml

----
-title: Filter by None/Any for labels in issues/mrs API
-merge_request: 22622
-author: Jacopo Beschi @jacopo-beschi
-type: added

changelogs/unreleased/52371-removes-patially-matching-no-label-and-makes-it-case-insensitive.yml

----
-title: removes partially matching of No Label filter and makes it case-insensitive
-merge_request: 22622
-author: Jacopo Beschi @jacopo-beschi
-type: changed

changelogs/unreleased/52385-search-bar-for-dashboard-list.yml

----
-title: Use search bar for filtering in dashboard issues / MRs
-merge_request: 22641
-author: Heinrich Lee Yu
-type: changed

changelogs/unreleased/52453-show-subgroups-in-group-create-issue.yml

----
-title: Fix project selector consistency in groups issues / MRs / boards pages
-merge_request: 22612
-author: Heinrich Lee Yu
-type: fixed

changelogs/unreleased/52712-further-ui-improvements-to-profile-overview-tab.yml

----
-title: UI improvements to user's profile
-merge_request: 22977
-author:
-type: other

changelogs/unreleased/52774-fix-svgs-in-ie-11.yml

----
-title: Ensure that SVG sprite icons are properly rendered in IE11
-merge_request:
-author:
-type: fixed

changelogs/unreleased/52828-inconsistency-in-fonts-used-for-branch-name-and-create-from-fields-when-creating-new-branch-from-ui.yml

----
-title: Make new branch form fields' fonts consistent
-merge_request:
-author:
-type: fixed

changelogs/unreleased/52940-fix-internal-email-pattern-not-respected.yml

----
-title: Fix a bug where internal email pattern wasn't respected
-merge_request: 22516
-author:
-type: fixed

changelogs/unreleased/53289-update-haml_lint-to-0-28-0.yml

----
-title: Update haml_lint to 0.28.0
-merge_request: 22660
-author: Takuya Noguchi
-type: other

changelogs/unreleased/53290-incorrect-project-list-order-select-default-label.yml

----
-title: Fix default sorting for subgroups and projects list
-merge_request: 23058
-author: Jacopo Beschi @jacopo-beschi
-type: fixed

changelogs/unreleased/53291-update-ffaker-to-2-10-0.yml

----
-title: Update ffaker to 2.10.0
-merge_request: 22661
-author: Takuya Noguchi
-type: other

changelogs/unreleased/53326-improve-issues-empty-state.yml

----
-title: Show different empty state for filtered issues and MRs
-merge_request: 22775
-author: Heinrich Lee Yu
-type: changed

changelogs/unreleased/53400-unstar-icon-button-is-misaligned.yml

----
-title: 'Fix: Unstar icon button is misaligned'
-merge_request: 23444
-author:
-type: fixed

changelogs/unreleased/53578-fe-deployment-status.yml

----
-title: Adds states to the deployment widget
-merge_request:
-author:
-type: added

changelogs/unreleased/53626-update-config-map-on-install-retry.yml

----
-title: Update config map for gitlab managed application if already present on install
-merge_request: 22969
-author:
-type: other

changelogs/unreleased/53640-follow-up-from-resolve-redesign-activity-feed.yml

-title: Adds new icon size to Vue icon component
-merge_request: 22899
-author:
-type: other

changelogs/unreleased/53659-use-padded-key-for-gcm-ciphers.yml

----
-title: Fix web hook functionality when the database encryption key is too short
-merge_request: 23573
-author:
-type: fixed

changelogs/unreleased/53700-hashed-storagemigration.yml

----
-title: 'Hashed Storage: allow migration to be retried in partially migrated projects'
-merge_request: 23087
-author:
-type: fixed

changelogs/unreleased/53728-warn-in-web-editor-when-user-navigates-away.yml

----
-title: Prevent user from navigating away from file edit without commit
-merge_request:
-author:
-type: fixed

changelogs/unreleased/53816-empty-label-menu-if-not-logged-in.yml

----
-title: Removes promote to group label for anonymous user
-merge_request: 23042
-author: Jacopo Beschi @jacopo-beschi
-type: fixed

changelogs/unreleased/53874-navbar-lowres.yml

----
-title: "Fix overlapping navbar separator and overflowing navbar dropdown on small displays"
-merge_request: 23126
-author: Thomas Pathier
-type: fix

changelogs/unreleased/53988-remove-notes-index-on-updated-at.yml

----
-title: Remove index for notes on updated_at
-merge_request: 23356
-author:
-type: performance

changelogs/unreleased/53992-add-events-index-on-project-id-and-created-at.yml

----
-title: Add index for events on project_id and created_at
-merge_request: 23354
-author:
-type: performance

changelogs/unreleased/53994-add-missing-ci_builds-partial-indices.yml

----
-title: Add partial index for ci_builds on project_id and status
-merge_request: 23268
-author:
-type: performance

changelogs/unreleased/54004-update-asana-to-0-8-1.yml

----
-title: Update asana to 0.8.1
-merge_request: 23039
-author: Takuya Noguchi
-type: other

changelogs/unreleased/54010-update-asciidoctor-to-1-5-8.yml

----
-title: Update asciidoctor to 1.5.8
-merge_request: 23047
-author: Takuya Noguchi
-type: other

changelogs/unreleased/54015-Markdown-Editor-improve-Cursor-placement.yml

----
-title: Refine cursor positioning in Markdown Editor for wrap tags
-merge_request: 23085
-author: Johann Hubert Sonntagbauer
-type: changed

changelogs/unreleased/54021-empty-button.yml

----
-title: Prevent empty button being rendered in empty state
-merge_request:
-author:
-type: fixed

changelogs/unreleased/54032-reply-shortcut-only-discussion-text.yml

----
-title: Make reply shortcut only quote selected discussion text
-merge_request: 23096
-author: Thomas Pathier
-type: fix

changelogs/unreleased/54048-Line-numbers-are-misaligned-in-file-blame-view.yml

----
-title: Fix line height of numbers in file blame view
-merge_request: 23090
-author: Johann Hubert Sonntagbauer
-type: fixed

changelogs/unreleased/54093-the-default_value_for-gem-doesn-t-handle-actioncontroller-parameters-correctly.yml

----
-title: Fixes an issue where default values from models would override values set in
-  the interface (e.g. users would be set to external even though their emails matches
-  the internal email address pattern)
-merge_request: 23114
-author:
-type: fixed

changelogs/unreleased/54160-use-reports-syntax-for-sast-in-auto-devops.yml

----
-title: Use reports syntax for SAST in Auto DevOps
-merge_request: 23163
-author:
-type: changed

changelogs/unreleased/54201-update-rack-to-2-0-6.yml

----
-title: Update rack to 2.0.6 (for QA environments)
-merge_request: 23171
-author: Takuya Noguchi
-type: security

changelogs/unreleased/54218-fix-mergeUrlParams.yml

----
-title: "Fix mergeUrlParams with fragment URL"
-merge_request: 54218
-author: Thomas Holder
-type: fixed

changelogs/unreleased/54336-include-tags-into-pipeline-detail-view.yml

----
-title: Merge request pipeline tag, and adds tags to pipeline view
-merge_request: 23364
-author:
-type: added

changelogs/unreleased/54391-tag.yml

----
-title: Correctly styles tags in sidebar for job page
-merge_request:
-author:
-type: fixed

changelogs/unreleased/54407-fix-limited-intersection-observers.yml

----
-title: Fix Image Lazy Loader for some older browsers
-merge_request:
-author:
-type: fixed

changelogs/unreleased/54571-runner-tags.yml

----
-title: Adds margins between tags when a job is stuck
-merge_request:
-author:
-type: fixed

changelogs/unreleased/54626-able-to-download-a-single-archive-file-with-api-by-ref-name.yml

----
-title: Add new endpoint to download single artifact file for a ref
-merge_request: 23538
-author:
-type: added

changelogs/unreleased/54648-fix-order-by-dropdown-tablet-screens.yml

----
-title: Fix Order By dropdown menu styling in tablet and mobile screens
-merge_request: 23446
-author:
-type: fixed

changelogs/unreleased/54826-use-read_repository-scope-on-read-only-files-endpoints.yml

----
-title: Use read_repository scope on read-only files API
-merge_request: 23534
-author:
-type: fixed

changelogs/unreleased/54857-fix-templates-path-traversal.yml

----
-title: Prevent a path traversal attack on global file templates
-merge_request:
-author:
-type: security

changelogs/unreleased/54975-fix-web-hooks-rake-task.yml

----
-title: Fix gitlab:web_hook tasks
-merge_request: 23635
-author:
-type: fixed

changelogs/unreleased/55104-frozenerror-can-t-modify-frozen-string.yml

----
-title: Fix a frozen string error in app/mailers/notify.rb
-merge_request: 23683
-author:
-type: fixed

changelogs/unreleased/55116-runtimeerror-can-t-modify-frozen-string.yml

----
-title: Fix a frozen string error in lib/gitlab/utils.rb
-merge_request: 23690
-author:
-type: fixed

changelogs/unreleased/55138-fix-mr-discussions-count.yml

----
-title: Fix MR resolved discussion counts being too low
-merge_request: 23710
-author:
-type: fixed

changelogs/unreleased/55183-frozenerror-can-t-modify-frozen-string-in-app-mailers-notify-rb.yml

----
-title: Fix a potential frozen string error in app/mailers/notify.rb
-merge_request: 23728
-author:
-type: fixed

changelogs/unreleased/55402-broken-master-karma-test-failing-in-spec-javascripts-boards-components-issue_due_date_spec-js.yml

----
-title: Fix due date test
-merge_request: 23845
-author:
-type: other

changelogs/unreleased/_acet-fix-flash-styling.yml

----
-title: Fix flash notice styling for fluid layout
-merge_request: 23382
-author:
-type: fixed

changelogs/unreleased/ab-approximate-counts.yml

----
-title: Approximate counting strategy with TABLESAMPLE.
-merge_request: 22650
-author:
-type: performance

changelogs/unreleased/added-glob-for-ci-changes-detection.yml

----
-title: Added glob for CI changes detection
-merge_request: 23128
-author: Kirill Zaitsev
-type: added

changelogs/unreleased/an-gitaly-version-0-133-0.yml

----
-title: Updated Gitaly to v0.133.0
-merge_request: 23148
-author:
-type: other

changelogs/unreleased/ashmckenzie-hmac-token-decode-and-tests.yml

----
-title: Relocate JSONWebToken::HMACToken from EE
-merge_request: 22906
-author:
-type: changed

changelogs/unreleased/auto_devops_kubernetes_active.yml

----
-title: Switch kubernetes:active with checking in Auto-DevOps.gitlab-ci.yml
-merge_request: 22929
-author:
-type: fixed

changelogs/unreleased/blackst0ne-add-discord-service.yml

----
-title: Add Discord integration
-merge_request: 22684
-author: "@blackst0ne"
-type: added

changelogs/unreleased/bump_gpgme_gem.yml

----
-title: Bump gpgme gem version from 2.0.13 to 2.0.18
-merge_request:
-author: asaparov
-type: other

changelogs/unreleased/bvl-use-shell-writeref.yml

----
-title: Avoid creating invalid refs using rugged, shelling out for writing refs
-merge_request: 23286
-author:
-type: fixed

changelogs/unreleased/ce-52811-fix_namespaces_api_routing.yml

----
-title: Fix API::Namespaces routing to accept namepaces with dots
-merge_request: 22912
-author:
-type: fixed

changelogs/unreleased/ce-54109-fix_user_by_any_email.yml

----
-title: Respect confirmed flag on secondary emails
-merge_request: 23181
-author:
-type: fixed

changelogs/unreleased/cert-manager-email.yml

----
-title: Ability to override email for cert-manager
-merge_request: 23503
-author: Amit Rathi
-type: added

changelogs/unreleased/certmanager-temp.yml

----
-title: "#40635: Adds support for cert-manager"
-merge_request: 23036
-author: Amit Rathi
-type: added

changelogs/unreleased/check-if-fetched-data-does-is-complete.yml

----
-title: Validate chunk size when persist
-merge_request: 23341
-author:
-type: fixed

changelogs/unreleased/commit-badge-style-fix.yml

----
-title: Fixed styling of image comment badges on commits
-merge_request:
-author:
-type: fixed

changelogs/unreleased/define-default-value-for-only-except-keys.yml

----
-title: Define the default value for only/except policies
-merge_request: 23765
-author:
-type: changed

changelogs/unreleased/deprecated-instance-find.yml

----
-title: 'Fix deprecation: You are passing an instance of ActiveRecord::Base to'
-merge_request: 23369
-author: Jasper Maes
-type: other

changelogs/unreleased/diff-expand-commit-file.yml

----
-title: Fixed diff files expanding not loading commit content
-merge_request:
-author:
-type: fixed

changelogs/unreleased/diff-fix-expanding.yml

----
-title: Fixed multiple diff line discussions not expanding
-merge_request:
-author:
-type: fixed

changelogs/unreleased/discussion-perf-improvement.yml

----
-title: Improve initial discussion rendering performance
-merge_request: 22607
-author:
-type: changed

changelogs/unreleased/dm-batch-loader-key.yml

----
-title: Batch load only data from same repository when lazy object is accessed
-merge_request: 23309
-author:
-type: performance

changelogs/unreleased/dm-remove-prune-web-hook-logs-worker.yml

----
-title: Remove old webhook logs after 90 days, as documented, instead of after 2
-merge_request:
-author:
-type: fixed

changelogs/unreleased/docs-minor-aws-fixes.yml

----
-title: Fixes to AWS documentation spelling and grammar
-merge_request: 23198
-author: Brendan O'Leary
-type: other

changelogs/unreleased/document-raw-snippet-api.yml

----
-title: Fix lack of documentation on how to fetch a snippet's content using API
-merge_request: 23448
-author: Colin Leroy
-type: other

changelogs/unreleased/drop-default-value-status-deployments.yml

----
-title: Drop default value on status column in deployments table
-merge_request: 22971
-author:
-type: other

changelogs/unreleased/drop-gcp-cluster-table.yml

----
-title: Drop gcp_clusters table
-merge_request: 22713
-author:
-type: other

changelogs/unreleased/expose-mr-pipeline-variables.yml

----
-title: Expose merge request pipeline variables
-merge_request: 23398
-author:
-type: changed

changelogs/unreleased/fix-deadlock-chunked-io.yml

----
-title: Fix deadlock on ChunkedIO
-merge_request:
-author:
-type: fixed

changelogs/unreleased/fix-gb-encrypt-ci-build-token.yml

----
-title: Encrypt CI/CD builds authentication tokens
-merge_request: 23436
-author:
-type: security

changelogs/unreleased/fix-gb-encrypt-runners-tokens.yml

----
-title: Encrypt runners tokens
-merge_request: 23412
-author:
-type: security

changelogs/unreleased/fix-gb-improve-timeout-inputs-help-sections.yml

----
-title: Improve help and validation sections of maximum build timeout inputs
-merge_request: 23586
-author:
-type: fixed

changelogs/unreleased/fix-mr-widget-unrelated-deployment-status.yml

----
-title: Fix unrelated deployment status in MR widget
-merge_request: 23175
-author:
-type: fixed

changelogs/unreleased/fix-multiple-comments-shade-overlap.yml

----
-title: Fix multiple commits shade overlapping vertical discussion line
-merge_request: 23515
-author:
-type: fixed

changelogs/unreleased/fj-47494-upgrade-git-to-2-18-0.yml

----
-title: Upgrade minimum required Git version to 2.18.0
-merge_request: 22803
-author:
-type: other

changelogs/unreleased/fj-clean-content-headers.yml

----
-title: Added feature flag to signal content headers detection by Workhorse
-merge_request: 22667
-author:
-type: added

changelogs/unreleased/fj-force-content-disposition.yml

----
-title: Force content disposition attachment to several endpoints
-merge_request: 23223
-author:
-type: other

changelogs/unreleased/force-reload-arguments-1.yml

----
-title: Passing an argument to force an association to reload is now deprecated
-merge_request: 23334
-author: Jasper Maes
-type: other

changelogs/unreleased/frozen-string-lib-gitlab-even-even-even-more.yml

----
-title: Enable even more frozen string for lib/gitlab
-merge_request:
-author: gfyoung
-type: performance

changelogs/unreleased/frozen-string-lib-gitlab-even-even-more.yml

----
-title: Enable even more frozen string for lib/gitlab
-merge_request:
-author: gfyoung
-type: performance

changelogs/unreleased/frozen-string-lib-gitlab-even-more.yml

----
-title: Enable even more frozen string in lib/gitlab/**/*.rb
-merge_request:
-author: gfyoung
-type: performance

changelogs/unreleased/frozen-string-lib-gitlab-more.yml

----
-title: Enable even more frozen string in lib/gitlab/**/*.rb
-merge_request:
-author: gfyoung
-type: performance

changelogs/unreleased/frozen-string-lib-rubocop.yml

----
-title: Enable Rubocop on lib/gitlab
-merge_request:
-author: gfyoung
-type: other

changelogs/unreleased/gt-add-top-padding-for-nested-environment-items-loading-icon.yml

----
-title: Add top padding for nested environment items loading icon
-merge_request: 23580
-author: George Tsiolis
-type: fixed

changelogs/unreleased/gt-align-issue-status-and-confidential-icon.yml

----
-title: Align issue status label and confidential icon.
-merge_request: 23046
-author: George Tsiolis
-type: fixed

changelogs/unreleased/gt-change-breadcrumb-title-for-contribution-charts.yml

----
-title: Change breadcrumb title for contribution charts
-merge_request: 23071
-author: George Tsiolis
-type: changed

changelogs/unreleased/gt-change-container-width-for-project-import.yml

----
-title: Change container width for project import
-merge_request: 23318
-author: George Tsiolis
-type: fixed

changelogs/unreleased/gt-externalize-app-views-invites.yml

----
-title: Externalize strings from `/app/views/invites`
-merge_request: 23205
-author: Tao Wang
-type: other

changelogs/unreleased/gt-externalize-app-views-project-runners.yml

----
-title: Externalize strings from `/app/views/project/runners`
-merge_request: 23208
-author: Tao Wang
-type: other

changelogs/unreleased/gt-externalize-app-views-snippets.yml

----
-title: Externalize strings from `/app/views/snippets`
-merge_request: 23351
-author: Tao Wang
-type: other

changelogs/unreleased/gt-fix-typo-in-notebook-props.yml

----
-title: Fix typo in notebook props
-merge_request: 23103
-author: George Tsiolis
-type: other

changelogs/unreleased/gt-fix-typos-in-lib.yml

----
-title: Fix typos in lib
-merge_request: 23106
-author: George Tsiolis
-type: other

changelogs/unreleased/gt-remove-instances-of-extend-monospace.yml

----
-title: Remove monospace extend
-merge_request: 23089
-author: George Tsiolis
-type: performance

changelogs/unreleased/gt-remove-unused-project-method.yml

----
-title: Remove unused project method
-merge_request: 54103
-author: George Tsiolis
-type: other

changelogs/unreleased/gt-rename-diffs-store-variable.yml

----
-title: Rename diffs store variable
-merge_request: 23123
-author: George Tsiolis
-type: other

changelogs/unreleased/gt-show-primary-button-when-all-labels-are-prioritized.yml

----
-title: Show primary button when all labels are prioritized
-merge_request: 23648
-author: George Tsiolis
-type: other

changelogs/unreleased/gt-update-env-metrics-empty-state.yml

----
-title: Update environments metrics empty state
-merge_request: 23074
-author: George Tsiolis
-type: changed

changelogs/unreleased/gt-use-gl-tooltip-directive.yml

----
-title: Replace tooltip directive with gl-tooltip diretive in badges, cycle analytics, and diffs
-merge_request: 22770
-author: George Tsiolis
-type: performance

changelogs/unreleased/ide-open-all-mr-files.yml

----
-title: Open first 10 merge request files in IDE
-merge_request:
-author:
-type: fixed

changelogs/unreleased/ignore-failed-pipeline-creation-on-pipeline-schedule.yml

----
-title: Remove auto deactivation when failed to create a pipeline via pipeline schedules
-merge_request: 22243
-author:
-type: changed

changelogs/unreleased/improve_auto_devops_migration_debug.yml

----
-title: 'Auto DevOps: Add echo for each branch of the deploy() function where we run
-  helm upgrade'
-merge_request: 23499
-author:
-type: changed

changelogs/unreleased/include-new-link-in-breadcrumb.yml

----
-title: Include new link in breadcrumb for issues, merge requests, milestones, and labels
-merge_request: 18515
-author: George Tsiolis
-type: changed

changelogs/unreleased/jivl-add-empty-state-graphs-null-values.yml

----
-title: Add empty state for graphs with no values
-merge_request: 22630
-author:
-type: fixed

changelogs/unreleased/jupyter-tls.yml

----
-title: "#52753: HTTPS for JupyterHub installation"
-merge_request: 23479
-author: Amit Rathi
-type: added

changelogs/unreleased/kcj-add-philosophy.yml

----
-title: Adds a PHILOSOPHY.md which references GitLab Product Handbook
-merge_request: 23200
-author:
-type: other

changelogs/unreleased/kubernetes-http-response-code.yml

----
-title: Show HTTP response code for Kubernetes errors
-merge_request: 22964
-author:
-type: other

changelogs/unreleased/legacy_fallback_for_project_clusters_only.yml

----
-title: Fallback to admin KUBE_TOKEN for project clusters only
-merge_request: 23527
-author:
-type: other

changelogs/unreleased/lock-trace-writes.yml

----
-title: Lock writes to trace stream
-merge_request:
-author:
-type: fixed

changelogs/unreleased/mg-fix-knative-application-row.yml

----
-title: Hide Knative from group cluster applications until supported
-merge_request: 23577
-author:
-type: fixed

changelogs/unreleased/move-group-issues-search-cte-up-the-chain.yml

----
-title: Fix error when searching for group issues with priority or popularity sort
-merge_request: 23445
-author:
-type: fixed

changelogs/unreleased/mr-file-tree-commit.yml

----
-title: Show tree collapse button for merge request commit diffs
-merge_request:
-author:
-type: fixed

changelogs/unreleased/mr-origin-23218.yml

----
-title: Fix typo for scheduled pipeline
-merge_request: 23218
-author: Davy Defaud
-type: other

changelogs/unreleased/mr-pipelines-2.yml

----
-title: Merge request pipelines
-merge_request: 23217
-author:
-type: added

changelogs/unreleased/mr-sticky-headers.yml

----
-title: Make diff file headers sticky
-merge_request:
-author:
-type: changed

changelogs/unreleased/mr-tree-filter-path-name.yml

----
-title: Changed merge request filtering to be by path instead of name
-merge_request:
-author:
-type: changed

changelogs/unreleased/multiple-diff-line-discussions-fix.yml

----
-title: Fixed duplicate discussions getting added to diff lines
-merge_request:
-author:
-type: fixed

changelogs/unreleased/non-webkit-scrollbar-fixing.yml

----
-title: Fix horizontal scrollbar overlapping on horizontal scrolling-tabs
-merge_request: 23167
-author: Harry Kiselev
-type: other

changelogs/unreleased/optimise-job-request.yml

----
-title: Use cached size when passing artifacts to Runner
-merge_request:
-author:
-type: performance

changelogs/unreleased/order-of-notification-settings.yml

----
-title: reorder notification settings by noisy-ness
-merge_request:
-author: C.J. Jameson
-type: changed

changelogs/unreleased/osw-fallback-on-blank-refs.yml

----
-title: Avoid Gitaly RPC errors when fetching diff stats
-merge_request: 22995
-author:
-type: fixed

changelogs/unreleased/osw-fix-grouping-by-file-path.yml

----
-title: Avoid 500's when serializing legacy diff notes
-merge_request: 23544
-author:
-type: fixed

changelogs/unreleased/osw-remove-unnused-data-from-diff-discussions.yml

----
-title: Remove unused data from discussions endpoint
-merge_request: 23570
-author:
-type: performance

changelogs/unreleased/osw-update-mr-metrics-with-events-data.yml

----
-title: Populate MR metrics with events table information (migration)
-merge_request: 23564
-author:
-type: performance

changelogs/unreleased/profile-fixing.yml

----
-title: Fix bottom paddings of profile header and some markup updates of profile
-merge_request: 23168
-author: Harry Kiselev
-type: other

changelogs/unreleased/project_identicon_fix.yml

----
-title: Fix project identicon aligning Harry Kiselev
-merge_request: 23166
-author: Harry Kiselev
-type: other

changelogs/unreleased/rails5-active-record-class-value.yml

----
-title: 'Rails5: Passing a class as a value in an Active Record query is deprecated'
-merge_request: 23164
-author: Jasper Maes
-type: other

changelogs/unreleased/rails5-deprecation-render-nothing.yml

----
-title: render :nothing option is deprecated, Use head method to respond with empty
-  response body.
-merge_request: 23311
-author: Jasper Maes
-type: other

changelogs/unreleased/rails5-env-deprecated.yml

----
-title: 'Rails5: env is deprecated and will be removed from Rails 5.1'
-merge_request: 22626
-author: Jasper Maes
-type: other

changelogs/unreleased/remove-blob-search-limit.yml

----
-title: Remove limit of 100 when searching repository code.
-merge_request: 8671
-author:
-type: fixed

changelogs/unreleased/remove-deployment-status-hack-from-backend.yml

----
-title: Return real deployment status to frontend
-merge_request: 23270
-author:
-type: fixed

changelogs/unreleased/remove-duplicate-primary-button-in-dashboard-snippets.yml

----
-title: Remove duplicate primary button in dashboard snippets on small viewports
-merge_request: 22902
-author: George Tsiolis
-type: fixed

changelogs/unreleased/render-text-deprecated.yml

----
-title: 'Fix deprecation: render :text is deprecated because it does not actually render
-  a text/plain response'
-merge_request: 23425
-author: Jasper Maes
-type: other

changelogs/unreleased/retryable_create_or_update_kubernetes_namespace.yml

----
-title: Updates service to update Kubernetes project namespaces and restricted service
-  account if present
-merge_request: 23525
-author:
-type: changed

changelogs/unreleased/revert-1cccfca1.yml

----
-title: Restore kubernetes:active in Auto-DevOps.gitlab-ci.yml (reverts 22929)
-merge_request: 23826
-author:
-type: fixed

changelogs/unreleased/rs-cherry-pick-api.yml

----
-title: Resolve possible cherry pick API race condition
-merge_request:
-author:
-type: fixed

changelogs/unreleased/security-182-update-workhorse.yml

----
-title: Redact sensitive information on gitlab-workhorse log
-merge_request:
-author:
-type: security

changelogs/unreleased/security-2717-xss-username-autocomplete.yml

----
-title: Escape user fullname while rendering autocomplete template to prevent XSS
-merge_request:
-author:
-type: security

changelogs/unreleased/security-2736-prometheus-ssrf.yml

----
-title: Do not follow redirects in Prometheus service when making http requests to the configured api url
-merge_request:
-author:
-type: security

changelogs/unreleased/security-2754-fix-lfs-import.yml

----
-title: Validate LFS hrefs before downloading them
-merge_request:
-author:
-type: security

changelogs/unreleased/security-bvl-exposure-in-commits-list.yml

----
-title: Don't expose confidential information in commit message list
-merge_request:
-author:
-type: security

changelogs/unreleased/security-email-change-notification.yml

----
-title: Provide email notification when a user changes their email address
-merge_request:
-author:
-type: security

changelogs/unreleased/security-fix-pat-web-access.yml

----
-title: Restrict Personal Access Tokens to API scope on web requests
-merge_request:
-author:
-type: security

changelogs/unreleased/security-fix-uri-xss-applications.yml

----
-title: Resolve reflected XSS in Ouath authorize window
-merge_request:
-author:
-type: security

changelogs/unreleased/security-fix-webhook-ssrf-ipv6.yml

----
-title: Fix SSRF in project integrations
-merge_request: 
-author:
-type: security

changelogs/unreleased/security-fj-crlf-injection.yml

----
-title: Fix CRLF vulnerability in Project hooks
-merge_request:
-author:
-type: security

changelogs/unreleased/security-guest-comments.yml

----
-title: Fixed ability to comment on locked/confidential issues.
-merge_request:
-author:
-type: security

changelogs/unreleased/security-guest-comments_2.yml

----
-title: Fixed ability of guest users to edit/delete comments on locked or confidential issues.
-merge_request:
-author:
-type: security

changelogs/unreleased/security-import-symlink.yml

----
-title: Fix persistent symlink in project import
-merge_request:
-author:
-type: security

changelogs/unreleased/security-issue_51301.yml

----
-title: Fix milestone promotion authorization check
-merge_request:
-author:
-type: security

changelogs/unreleased/security-mermaid-xss.yml

----
-title: Configure mermaid to not render HTML content in diagrams
-merge_request:
-author:
-type: security

changelogs/unreleased/security-pages-toctou-race.yml

----
-title: Fix a possible symlink time of check to time of use race condition in GitLab
-  Pages
-merge_request:
-author:
-type: security

changelogs/unreleased/security-private-group.yml

----
-title: Removed ability to see private group names when the group id is entered in
-  the url.
-merge_request:
-author:
-type: security

changelogs/unreleased/security-stored-xss-for-environments.yml

----
-title: Fix stored XSS for Environments
-merge_request:
-author:
-type: security

changelogs/unreleased/security-xss-in-markdown-following-unrecognized-html-element.yml

----
-title: Fix possible XSS attack in Markdown urls with spaces
-merge_request: 2599
-author:
-type: security

changelogs/unreleased/set-kubeconfig-nil-when-token-nil.yml

----
-title: Make KUBECONFIG nil if KUBE_TOKEN is nil
-merge_request: 23414
-author:
-type: fixed

changelogs/unreleased/sh-53180-append-path.yml

----
-title: Make sure there's only one slash as path separator
-merge_request: 22954
-author:
-type: other

changelogs/unreleased/sh-bump-gems-security.yml

----
-title: Bump nokogiri, loofah, and rack gems for security updates
-merge_request: 23204
-author:
-type: security

changelogs/unreleased/sh-bump-ruby-2-5-3.yml

----
-title: Upgrade to Ruby 2.5.3
-merge_request: 2806
-author:
-type: performance

changelogs/unreleased/sh-disable-autocomplete-mirror-settings.yml

----
-title: Disable password autocomplete in mirror form fill
-merge_request: 23402
-author:
-type: fixed

changelogs/unreleased/sh-fix-issue-38317.yml

----
-title: Remove needless auto-capitalization on Wiki page titles
-merge_request: 23288
-author:
-type: fixed

changelogs/unreleased/sh-fix-issue-51220.yml

----
-title: Handle force_remove_source_branch when creating merge request
-merge_request: 23281
-author:
-type: fixed

changelogs/unreleased/sh-fix-issue-53783-ce.yml

----
-title: Fix enabling project deploy key for admins
-merge_request: 23043
-author:
-type: fixed

changelogs/unreleased/sh-fix-mirrors-protected-branches.yml

----
-title: Fix "protected branches only" checkbox not set properly at init
-merge_request: 23409
-author:
-type: fixed

changelogs/unreleased/sh-handle-invalid-gpg-sig.yml

----
-title: Gracefully handle unknown/invalid GPG keys
-merge_request: 23492
-author:
-type: fixed

changelogs/unreleased/sh-handle-string-null-bytes.yml

----
-title: Gracefully handle references with null bytes
-merge_request: 23365
-author:
-type: fixed

changelogs/unreleased/sh-ignore-arrays-url-sanitizer.yml

----
-title: Only allow strings in URL::Sanitizer.valid?
-merge_request: 23675
-author:
-type: fixed

changelogs/unreleased/sh-json-serialize-broadcast-messages.yml

----
-title: Avoid caching BroadcastMessage as an ActiveRecord object
-merge_request: 23662
-author:
-type: fixed

changelogs/unreleased/sh-remove-local-sidekiq-admin-check.yml

----
-title: Remove display of local Sidekiq process in /admin/sidekiq
-merge_request: 23118
-author:
-type: fixed

changelogs/unreleased/sh-truncate-with-periods.yml

----
-title: Truncate merge request titles with periods instead of ellipsis
-merge_request: 23558
-author:
-type: changed

changelogs/unreleased/sh-use-nakayoshi-fork.yml

----
-title: Improve memory performance by reducing dirty pages after fork()
-merge_request: 23169
-author:
-type: performance

changelogs/unreleased/sh-use-nokogiri-xml-backend.yml

----
-title: Use Nokogiri as the ActiveSupport XML backend
-merge_request: 23136
-author:
-type: performance

changelogs/unreleased/speed-up-relative-positioning.yml

----
-title: Speed up issue board lists in groups with many projects
-merge_request:
-author:
-type: performance

changelogs/unreleased/store-correlation-logs.yml

----
-title: Log and pass correlation-id between Unicorn, Sidekiq and Gitaly
-merge_request:
-author:
-type: added

changelogs/unreleased/suggest-change-to-diff-line.yml

----
-title: Add ability to render suggestions
-merge_request: 23147
-author:
-type: added

changelogs/unreleased/switch-rails.yml

----
-title: Switch to Rails 5
-merge_request: 21492
-author:
-type: other

changelogs/unreleased/tc-backfill-full-path-config.yml

----
-title: Migration to write fullpath in all repository configs
-merge_request: 22322
-author:
-type: other

changelogs/unreleased/tc-backfill-hashed-project_repositories.yml

----
-title: Fill project_repositories for hashed storage projects
-merge_request: 23482
-author:
-type: added

changelogs/unreleased/tc-repo-full-path-in-db.yml

----
-title: Add model and relation to store repo full path in database
-merge_request: 23143
-author:
-type: added

changelogs/unreleased/triggermesh-phase2-external-ip.yml

----
-title: Add an external IP address to the knative cluster application page
-merge_request:
-author: Chris Baumbauer
-type: fixed

changelogs/unreleased/triggermesh-phase2-knative-description.yml

----
-title: Modify the wording for the knative cluster application to match upstream
-merge_request: 23289
-author: Chris Baumbauer
-type: fixed

changelogs/unreleased/triggermesh-phase2-serverless-list.yml

----
-title: Introduce Knative and Serverless Components
-merge_request: 23174
-author: Chris Baumbauer
-type: added

changelogs/unreleased/triggermesh-phase2-serverless.yml

----
-title: Add knative client to kubeclient library
-merge_request: 22968
-author: cab105
-type: added

changelogs/unreleased/unicorn-monkey-patch.yml

----
-title: Add monkey patch to unicorn to fix eof? problem
-merge_request: 23385
-author:
-type: fixed

changelogs/unreleased/update-gitlab-runner-helm-chart-to-0-1-39.yml

----
-title: Update used version of Runner Helm Chart to 0.1.39
-merge_request: 23633
-author:
-type: other

changelogs/unreleased/update-gitlab-runner-helm-chart-version.yml

----
-title: Update used version of Runner Helm Chart to 0.1.38
-merge_request: 23304
-author:
-type: other

changelogs/unreleased/upgrade-to-workhorse-7-6-0.yml

----
-title: Upgrade workhorse to 7.6.0
-merge_request: 23694
-author:
-type: other

changelogs/unreleased/upgrade_kubeclient_400.yml

----
-title: Upgrade kubeclient to 4.0.0
-merge_request: 23261
-author: Praveen Arimbrathodiyil @pravi
-type: other

changelogs/unreleased/usage-count.yml

----
-title: Use approximate count for big tables for usage statistics.
-merge_request:
-author:
-type: fixed

changelogs/unreleased/validate-foreign-keys-being-indexed.yml

----
-title: Validate foreign keys being created and indexed for column with _id 
-merge_request: 22808
-author:
-type: performance

changelogs/unreleased/winh-collapse-discussions.yml

----
-title: Fix collapsing discussion replies
-merge_request: 23462
-author:
-type: fixed

changelogs/unreleased/winh-divider-margin.yml

----
-title: Adjust divider margin to comply with design specs
-merge_request: 23548
-author:
-type: changed

changelogs/unreleased/winh-dropdown-divider-color.yml

----
-title: Change dropdown divider color to gray-200 (#dfdfdf)
-merge_request: 23592
-author:
-type: changed

changelogs/unreleased/winh-dropdown-item-padding.yml

----
-title: Adjust dropdown item and header padding to comply with design specs
-merge_request: 23552
-author:
-type: changed

changelogs/unreleased/winh-issue-boards-project-dropdown-close.yml

----
-title: Remove close icon from projects dropdown in issue boards
-merge_request: 23567
-author:
-type: changed

changelogs/unreleased/winh-markdown-preview-lists.yml

----
-title: Remove unnecessary div from MarkdownField to apply list styles correctly
-merge_request: 23733
-author:
-type: fixed

changelogs/unreleased/winh-merge-request-commit-discussion.yml

----
-title: Display commit ID for commit diff discussion on merge request
-merge_request: 23370
-author:
-type: fixed

changelogs/unreleased/winh-merge-request-diff-discussion-commit-id.yml

----
-title: Pass commit when posting diff discussions
-merge_request: 23371
-author:
-type: fixed

changelogs/unreleased/winh-milestone-select.yml

----
-title: Fix milestone select in issue sidebar of issue boards
-merge_request: 23625
-author:
-type: fixed

changelogs/unreleased/winh-resolved-discussions-reply-field.yml

----
-title: Display reply field if resolved discussion has no replies
-merge_request: 23801
-author:
-type: fixed

changelogs/unreleased/workhorse-7-3-0.yml

----
-title: Upgrade GitLab Workhorse to v7.3.0
-merge_request: 23489
-author:
-type: other

changelogs/unreleased/zj-improve-gitaly-pb.yml

----
-title: Show what RPC is called in the performance bar
-merge_request: 23140
-author:
-type: other

changelogs/unreleased/zj-pool-repository-creation.yml

----
-title: Allow public forks to be deduplicated
-merge_request: 23508
-author:
-type: added

changelogs/unreleased/zj-remove-broken-storage.yml

----
-title: Remove obsolete gitlab_shell rake tasks
-merge_request: 22417
-author:
-type: removed