summaryrefslogtreecommitdiff
path: root/changelogs/unreleased
diff options
context:
space:
mode:
Diffstat (limited to 'changelogs/unreleased')
-rw-r--r--changelogs/unreleased/security-10io-validate-nuget-package-name.yml5
-rw-r--r--changelogs/unreleased/security-runner-csrf-milestone-13-6.yml5
-rw-r--r--changelogs/unreleased/security-unauthorized-access-schedule-variables-milestone-13-6.yml5
3 files changed, 15 insertions, 0 deletions
diff --git a/changelogs/unreleased/security-10io-validate-nuget-package-name.yml b/changelogs/unreleased/security-10io-validate-nuget-package-name.yml
new file mode 100644
index 00000000000..aaf30711868
--- /dev/null
+++ b/changelogs/unreleased/security-10io-validate-nuget-package-name.yml
@@ -0,0 +1,5 @@
+---
+title: Validate nuget package names
+merge_request:
+author:
+type: security
diff --git a/changelogs/unreleased/security-runner-csrf-milestone-13-6.yml b/changelogs/unreleased/security-runner-csrf-milestone-13-6.yml
new file mode 100644
index 00000000000..4b661ecfdc9
--- /dev/null
+++ b/changelogs/unreleased/security-runner-csrf-milestone-13-6.yml
@@ -0,0 +1,5 @@
+---
+title: Add CSRF protection to runner pause and resume
+merge_request: 1021
+author:
+type: security
diff --git a/changelogs/unreleased/security-unauthorized-access-schedule-variables-milestone-13-6.yml b/changelogs/unreleased/security-unauthorized-access-schedule-variables-milestone-13-6.yml
new file mode 100644
index 00000000000..fc6702f8067
--- /dev/null
+++ b/changelogs/unreleased/security-unauthorized-access-schedule-variables-milestone-13-6.yml
@@ -0,0 +1,5 @@
+---
+title: Fix unauthorized user is able to access schedule pipeline variables and values
+merge_request:
+author:
+type: security
View Lorry Controller Status