- 29 Apr, 2022 29 commits
-
-
GitLab Release Tools Bot authored
[ci skip]
-
Alessio Caiazza authored
Merge branch 'security-pedropombeiro/330047/use-protected-suffix-for-cache-name-2-14-10' into '14-10-stable-ee' Add suffix to cache name to add isolation See merge request gitlab-org/security/gitlab!2426
-
Pedro Pombeiro authored
Merge branch 'security-pedropombeiro/330047/use-protected-suffix-for-cache-name-2-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2426 Changelog: security
-
GitLab Release Tools Bot authored
Update Import/Export merge/push access levels & exclude ci config path See merge request gitlab-org/security/gitlab!2404
-
George Koltsov authored
Merge branch 'security-update-import-export-pr-branches-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2404 Changelog: security
-
GitLab Release Tools Bot authored
Prevent maintainers from editing PipelineSchedule See merge request gitlab-org/security/gitlab!2421
-
Allison Browne authored
Merge branch 'security-force-ci-schedule-ownership-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2421 Changelog: security
-
GitLab Release Tools Bot authored
Add validation to pypi file sha256 values See merge request gitlab-org/security/gitlab!2415
-
Steve Abrams authored
Merge branch 'security-262724-pypi-sha256-validation-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2415 Changelog: security
-
GitLab Release Tools Bot authored
Conan Token uses PAT rather than ID in payload See merge request gitlab-org/security/gitlab!2412
-
Steve Abrams authored
Merge branch 'security-296866-conan-token-update-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2412 Changelog: security
-
GitLab Release Tools Bot authored
[security] Fix markdown API disclosing issue titles of limited projects See merge request gitlab-org/security/gitlab!2407
-
Brett Walker authored
Merge branch 'security-markdown-api-issue-title-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2407 Changelog: security
-
GitLab Release Tools Bot authored
Merge branch 'security-check-read-note-permissions-before-creating-todo-14-10' into '14-10-stable-ee' Verify that mentioned user can read TODO's note See merge request gitlab-org/security/gitlab!2397
-
Eugenia Grieff authored
Merge branch 'security-check-read-note-permissions-before-creating-todo-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2397 Changelog: security
-
GitLab Release Tools Bot authored
Invalidate markdown cache to clear up stored XSS See merge request gitlab-org/security/gitlab!2418
-
Sincheol (David) Kim authored
Merge branch 'security-654-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2418 Changelog: security
-
GitLab Release Tools Bot authored
Allow rate limiting of deploy tokens See merge request gitlab-org/security/gitlab!2395
-
Sean Arnold authored
Merge branch 'security-342481-deploy-token-support-rack-attack-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2395 Changelog: security
-
GitLab Release Tools Bot authored
Disable wiki access with CI_JOB_TOKEN when improper access level See merge request gitlab-org/security/gitlab!2408
-
Allison Browne authored
Merge branch 'security-wiki-access-from-jobs-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2408 Changelog: security
-
GitLab Release Tools Bot authored
Sanitize error input to prevent HTML/CSS injection in messages See merge request gitlab-org/security/gitlab!2379
-
Laura Montemayor authored
Merge branch 'security-fix-html-css-injection-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2379 Changelog: security
-
GitLab Release Tools Bot authored
Secure debug trace artifact download See merge request gitlab-org/security/gitlab!2376
-
Avielle Wolfe authored
Merge branch 'security-aw-secure-trace-downloads-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2376 Changelog: security
-
GitLab Release Tools Bot authored
Use password type for all secret integration properties See merge request gitlab-org/security/gitlab!2409
-
Markus Koller authored
Merge branch 'security-integrations-password-fields-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2409 Changelog: security
-
GitLab Release Tools Bot authored
Limit CI job group_name regexp See merge request gitlab-org/security/gitlab!2382
-
Furkan Ayhan authored
Merge branch 'security-improve-ci-job-group-name-regexp-14-10' into '14-10-stable-ee' See merge request gitlab-org/security/gitlab!2382 Changelog: security
-
- 21 Apr, 2022 3 commits
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
- 20 Apr, 2022 1 commit
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
- 19 Apr, 2022 7 commits
-
-
Simon Knox authored
Fix iteration cadence read query variable See merge request gitlab-org/gitlab!85355
-
Douglas Barbosa Alexandre authored
Add hidden fields to new about your company page and direct to correct service call See merge request gitlab-org/gitlab!83124
-
Mayra Cabrera authored
Disable image deletion during registry migration See merge request gitlab-org/gitlab!85130
-
Stan Hu authored
Add structured payload to BulkImport workers See merge request gitlab-org/gitlab!85208
-
Stan Hu authored
Use SecurityOrchestrationHelper for both projects and namespaces See merge request gitlab-org/gitlab!85229
-
Alan (Maciej) Paruszewski authored
-
charlie ablett authored
[graphql] Remove use of `accepts_definition` in graphql See merge request gitlab-org/gitlab!84899
-