diff options
author | Brian Neel <brian@gitlab.com> | 2017-08-03 22:20:34 -0400 |
---|---|---|
committer | Brian Neel <brian@gitlab.com> | 2017-08-08 10:50:54 -0400 |
commit | 9770c57fab0315865a33c8b6df269eded0d57b5c (patch) | |
tree | 5a7c7a9fccbce5ef3ccf6b02b1297aace41101fd /app/models/project_feature.rb | |
parent | b612a47da0e0225332a59ab961206f84602ad629 (diff) | |
download | gitlab-ce-9770c57fab0315865a33c8b6df269eded0d57b5c.tar.gz |
Re-enable SqlInjection and CommandInjection
Diffstat (limited to 'app/models/project_feature.rb')
-rw-r--r-- | app/models/project_feature.rb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/app/models/project_feature.rb b/app/models/project_feature.rb index c8fabb16dc1..fb1db0255aa 100644 --- a/app/models/project_feature.rb +++ b/app/models/project_feature.rb @@ -55,7 +55,7 @@ class ProjectFeature < ActiveRecord::Base end def access_level(feature) - public_send(ProjectFeature.access_level_attribute(feature)) + public_send(ProjectFeature.access_level_attribute(feature)) # rubocop:disable GitlabSecurity/PublicSend end def builds_enabled? @@ -80,7 +80,7 @@ class ProjectFeature < ActiveRecord::Base # which cannot be higher than repository access level def repository_children_level validator = lambda do |field| - level = public_send(field) || ProjectFeature::ENABLED + level = public_send(field) || ProjectFeature::ENABLED # rubocop:disable GitlabSecurity/PublicSend not_allowed = level > repository_access_level self.errors.add(field, "cannot have higher visibility level than repository access level") if not_allowed end |