Merge branch 'fix-hamlit-xss' into 'security-9-1'

New Hamlit XSS fix, does not include extraneous changes See merge request !2095
author: Robert Speicher <robert@gitlab.com> 2017-05-02 21:32:14 +0000
committer: Bob Van Landuyt <bob@gitlab.com> 2017-05-10 11:09:35 +0200
commit: 39eee5babd279d0c8f46a173a47f98d2fe1a0cbc (patch)
tree: a41aa5fb1cba3aa3c8e819937040b149f5bbb4a1 /changelogs/unreleased/hamlit-xss-fix.yml
parent: 050d92f8177513b74d6c18d75d35a62f5fa6addd (diff)
download: gitlab-ce-39eee5babd279d0c8f46a173a47f98d2fe1a0cbc.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/changelogs/unreleased/hamlit-xss-fix.yml b/changelogs/unreleased/hamlit-xss-fix.yml
new file mode 100644
index 00000000000..ba4713846e9
--- /dev/null
+++ b/changelogs/unreleased/hamlit-xss-fix.yml
@@ -0,0 +1,4 @@
+---
+title: Fix for XSS in project import view caused by Hamlit filter usage.
+merge_request:
+author:
author	Robert Speicher <robert@gitlab.com>	2017-05-02 21:32:14 +0000
committer	Bob Van Landuyt <bob@gitlab.com>	2017-05-10 11:09:35 +0200
commit	39eee5babd279d0c8f46a173a47f98d2fe1a0cbc (patch)
tree	a41aa5fb1cba3aa3c8e819937040b149f5bbb4a1 /changelogs/unreleased/hamlit-xss-fix.yml
parent	050d92f8177513b74d6c18d75d35a62f5fa6addd (diff)
download	gitlab-ce-39eee5babd279d0c8f46a173a47f98d2fe1a0cbc.tar.gz