Merge branch 'security-package-json-xss' into 'master'

[master] Fix XSS vulnerability sourced from package.json's homepage Closes #2702 See merge request gitlab/gitlabhq!2496
author: Bob Van Landuyt <bob@gitlab.com> 2018-10-01 16:47:16 +0000
committer: Bob Van Landuyt <bob@gitlab.com> 2018-10-01 16:47:16 +0000
commit: 1735088e7c5bf62a8f896a2b0e384964de83d118 (patch)
tree: aba06cb9e7f8df96aed72dfddc2edd8750026e0c /changelogs
parent: b93f1d3cf8d5325c9fc9283afacfca069ddc3d62 (diff)
parent: 3bd607f280b70bdc7c574a4c217168adb1a88ecd (diff)
download: gitlab-ce-1735088e7c5bf62a8f896a2b0e384964de83d118.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/changelogs/unreleased/security-package-json-xss.yml b/changelogs/unreleased/security-package-json-xss.yml
new file mode 100644
index 00000000000..6ab4854e44f
--- /dev/null
+++ b/changelogs/unreleased/security-package-json-xss.yml
@@ -0,0 +1,5 @@
+---
+title: Fix xss vulnerability sourced from package.json
+merge_request:
+author:
+type: security
author	Bob Van Landuyt <bob@gitlab.com>	2018-10-01 16:47:16 +0000
committer	Bob Van Landuyt <bob@gitlab.com>	2018-10-01 16:47:16 +0000
commit	1735088e7c5bf62a8f896a2b0e384964de83d118 (patch)
tree	aba06cb9e7f8df96aed72dfddc2edd8750026e0c /changelogs
parent	b93f1d3cf8d5325c9fc9283afacfca069ddc3d62 (diff)
parent	3bd607f280b70bdc7c574a4c217168adb1a88ecd (diff)
download	gitlab-ce-1735088e7c5bf62a8f896a2b0e384964de83d118.tar.gz