- 13.12.2019 8 коммитов
-
-
-
John Skarbek создал
Install lsb-release for repo URL construction See merge request gitlab/gitlabhq!3591
-
Kyle Wiebers создал
-
John T Skarbek создал
-
-
-
GitLab Release Tools Bot создал
-
-
- 12.12.2019 3 коммита
-
-
John T Skarbek создал
-
-
-
- 11.12.2019 3 коммита
-
-
GitLab Release Tools Bot создал
-
-
-
- 09.12.2019 2 коммита
-
-
-
Valery Sizov создал
-
- 24.10.2019 3 коммита
-
-
GitLab Release Tools Bot создал
Sanitize search text to prevent XSS See merge request gitlab/gitlabhq!3471
-
GitLab Release Tools Bot создал
Handle Stored XSS for Grafana URL in settings See merge request gitlab/gitlabhq!3483
-
David Wilkins создал
- Extend Gitlab::UrlBlocker to allow relative urls (require_absolute setting). The new `require_absolute` setting defaults to true, which is the existing behavior. - Extend AddressableUrlValidator to accept `require_abosolute` and default to the existing behavior - Add validation for ApplicationSetting#grafana_url to validate that the URL does not contain XSS but can be a valid relative or absolute url. - In the case of existing stored URLs, validate the stored URL does not contain XSS. If the stored URL contains stored XSS or is an otherwise invalid URL, return the default database column value. - Add tests for Gitlab::UrlBlocker to test require_absolute setting - Add tests for AddressableUrlValidator - Add tests for ApplicationSetting#grafana_url
-
- 11.10.2019 1 коммит
-
-
samantha-dev создал
-
- 07.10.2019 3 коммита
-
-
GitLab Release Tools Bot создал
-
GitLab Release Tools Bot создал
-
-
- 02.10.2019 1 коммит
-
-
GitLab Release Tools Bot создал
-
- 01.10.2019 5 коммитов
-
-
GitLab Release Tools Bot создал
-
-
Marin Jankovski создал
Fix private feature Elasticsearch leak See merge request gitlab/gitlabhq!3452
-
Mark Chao создал
Add spec to test different combinations. Accept string for required_minimum_access_level Allow more flexible project membership query
-
Stan Hu создал
Fix broken specs : Generate new GPG key in place of expired one Closes #32956 See merge request gitlab-org/gitlab!17853
-
- 27.09.2019 2 коммита
-
-
GitLab Release Tools Bot создал
-
-
- 26.09.2019 9 коммитов
-
-
GitLab Release Tools Bot создал
Fix Gitaly SearchBlobs flag RPC injection [Gitaly v1.53.4] See merge request gitlab/gitlabhq!3435
-
GitLab Release Tools Bot создал
Check that SAML identity linking validates the origin of the request See merge request gitlab/gitlabhq!3376
-
GitLab Release Tools Bot создал
Gitlab XSS in markdown preview page See merge request gitlab/gitlabhq!3400
-
GitLab Release Tools Bot создал
Merge branch 'security-12717-fix-confidential-issue-assignee-visible-to-guests-12-1' into '12-1-stable' Display only participants that user has permission to see See merge request gitlab/gitlabhq!3403
-
GitLab Release Tools Bot создал
Prevent Bypassing Email Verification using Salesforce See merge request gitlab/gitlabhq!3407
-
GitLab Release Tools Bot создал
Only render fixed number of mermaid blocks See merge request gitlab/gitlabhq!3413
-
GitLab Release Tools Bot создал
Hide disabled project milestones in project settings on group level See merge request gitlab/gitlabhq!3416
-
GitLab Release Tools Bot создал
Redirect user to root path after unsubscribing from private resource See merge request gitlab/gitlabhq!3418
-
GitLab Release Tools Bot создал
Add policy check if cross reference system notes are accessible See merge request gitlab/gitlabhq!3428
-