diff options
| author | GitLab Bot <gitlab-bot@gitlab.com> | 2022-11-01 11:52:43 +0000 |
|---|---|---|
| committer | GitLab Bot <gitlab-bot@gitlab.com> | 2022-11-01 11:52:43 +0000 |
| commit | 430576c997e7cfc61b003cf6dbf12817ef899eef (patch) | |
| tree | 7884f12a7837f5029b971e04121a66fb81ffdb34 /lib | |
| parent | afbc608ba558c62cc0475dfb95df3f375049973b (diff) | |
| download | gitlab-ce-430576c997e7cfc61b003cf6dbf12817ef899eef.tar.gz | |
Add latest changes from gitlab-org/security/gitlab@15-5-stable-ee
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/api/ci/secure_files.rb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/api/ci/secure_files.rb b/lib/api/ci/secure_files.rb index 68431df203b..511b6e06cd3 100644 --- a/lib/api/ci/secure_files.rb +++ b/lib/api/ci/secure_files.rb @@ -66,7 +66,7 @@ module API route_setting :authentication, basic_auth_personal_access_token: true, job_token_allowed: true post ':id/secure_files' do secure_file = user_project.secure_files.new( - name: params[:name] + name: Gitlab::Utils.check_path_traversal!(params[:name]) ) secure_file.file = params[:file] |