summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
...
| * | | | | | | | | | Merge branch 'security-fix-html-injection-for-label-description-ce-master' in...GitLab Release Tools Bot2019-08-295-3/+29
| |\ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | Fix HTML injection for label descriptionPatrick Derichs2019-08-055-3/+29
| * | | | | | | | | | | Merge branch 'security-fix_jira_ssrf_vulnerability' into 'master'GitLab Release Tools Bot2019-08-294-1/+82
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Fix DNS rebind vulnerability for JIRA integrationFelipe Artur2019-08-084-1/+82
| | | |_|_|/ / / / / / / | | |/| | | | | | | | |
| * | | | | | | | | | | Merge branch 'security-61974-limit-issue-comment-size' into 'master'GitLab Release Tools Bot2019-08-2914-19/+78
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Limit the size of issuable description and commentsAlexandru Croitor2019-08-2214-19/+78
| * | | | | | | | | | | | Merge branch 'security-59549-add-capcha-for-failed-logins' into 'master'GitLab Release Tools Bot2019-08-2920-32/+307
| |\ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | Add captcha if there are multiple failed login attemptsMałgorzata Ksionek2019-07-3120-32/+307
| * | | | | | | | | | | | | Merge branch 'security-mr-head-pipeline-leak' into 'master'GitLab Release Tools Bot2019-08-293-5/+39
| |\ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | Permission fix for MergeRequestsController#pipeline_statusdrew cimino2019-08-123-5/+39
| * | | | | | | | | | | | | | Merge branch 'security-katex-dos-master' into 'master'GitLab Release Tools Bot2019-08-294-23/+143
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | Enforce max chars and max render time in markdown mathMartin Hanzel2019-08-064-23/+143
| | | |_|_|/ / / / / / / / / / | | |/| | | | | | | | | | | |
| * | | | | | | | | | | | | | Merge branch 'security-project-import-bypass' into 'master'GitLab Release Tools Bot2019-08-295-26/+244
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | Fix project import restricted visibility bypassGeorge Koltsov2019-08-155-26/+244
| | |/ / / / / / / / / / / / /
| * | | | | | | | | | | | | | Merge branch 'security-hide_merge_request_ids_on_emails' into 'master'GitLab Release Tools Bot2019-08-295-18/+89
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | Prevent disclosure of merge request id via emailFelipe Artur2019-08-195-18/+89
| | |/ / / / / / / / / / / / /
| * | | | | | | | | | | | | | Merge branch 'security-id-filter-timeline-activities-for-guests' into 'master'GitLab Release Tools Bot2019-08-292-1/+6
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | Add merge note type as cross referenceIgor Drozdov2019-08-132-1/+6
| * | | | | | | | | | | | | | | Merge branch 'security-group-runners-permissions' into 'master'GitLab Release Tools Bot2019-08-293-43/+173
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | admin_group authorization for Groups::RunnersControllerdrew cimino2019-08-223-43/+173
| * | | | | | | | | | | | | | | | Merge branch 'security-ci-metrics-permissions' into 'master'GitLab Release Tools Bot2019-08-293-8/+64
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | Restrict MergeRequests#test_reports to authenticated users with read-access o...drew cimino2019-08-223-8/+64
| * | | | | | | | | | | | | | | | | Merge branch 'security-sarcila-fix-weak-session-management' into 'master'GitLab Release Tools Bot2019-08-294-0/+71
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | Add User#will_save_change_to_login? to clear reset_password_tokensSebastian Arcila Valenzuela2019-08-214-0/+71
| * | | | | | | | | | | | | | | | | | Merge branch 'security-add-job-activity-limit-ce' into 'master'GitLab Release Tools Bot2019-08-295-2/+43
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | Add active_jobs_limit to plans tableFabio Pitino2019-08-215-2/+43
| * | | | | | | | | | | | | | | | | | | Merge branch 'security-fix-markdown-xss' into 'master'GitLab Release Tools Bot2019-08-298-13/+76
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | | Re-escape whole HTML content instead of only matchJan Provaznik2019-08-238-13/+76
| * | | | | | | | | | | | | | | | | | | | Merge branch 'security-exposed-default-branch' into 'master'GitLab Release Tools Bot2019-08-294-2/+97
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | | | Avoid exposing unaccessible repo data upon GFM processingOswaldo Ferreira2019-08-214-2/+97
| * | | | | | | | | | | | | | | | | | | | | Merge branch 'security-ssrf-kubernetes-dns-12-3' into 'master'GitLab Release Tools Bot2019-08-295-18/+269
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | | | | Column was renamed in 12.2Thong Kuah2019-08-212-2/+2
| | * | | | | | | | | | | | | | | | | | | | | Override hostname when connecting via KubeclientThong Kuah2019-08-215-18/+269
| | | |_|_|_|/ / / / / / / / / / / / / / / / | | |/| | | | | | | | | | | | | | | | | | |
| * | | | | | | | | | | | | | | | | | | | | Merge branch 'security-64711-fix-commit-todos' into 'master'GitLab Release Tools Bot2019-08-293-20/+112
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | | | | Send TODOs for comments on commits correctlyNick Thomas2019-08-233-20/+112
| * | | | | | | | | | | | | | | | | | | | | | Merge branch 'security-gitaly-1.61.0' into 'master'GitLab Release Tools Bot2019-08-292-1/+6
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | | | | | | | | Use Gitaly 1.61.0Jacob Vosmaer2019-08-262-1/+6
| * | | | | | | | | | | | | | | | | | | | | | | Update CHANGELOG.md for 12.2.3GitLab Release Tools Bot2019-08-281-0/+28
| | |_|_|_|_|_|_|_|_|_|_|_|_|_|_|/ / / / / / / | |/| | | | | | | | | | | | | | | | | | | | |
| * | | | | | | | | | | | | | | | | | | | | | Update CHANGELOG.md for 12.2.2GitLab Release Tools Bot2019-08-271-0/+28
| * | | | | | | | | | | | | | | | | | | | | | Update CHANGELOG.md for 12.0.7GitLab Release Tools Bot2019-08-271-0/+28
| |/ / / / / / / / / / / / / / / / / / / / /
* | | | | | | | | | | | | | | | | | | | | | Merge branch 'sh-add-delete-confirmation' into 'master'Michael Kozono2019-08-299-11/+87
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | |_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|_|/ / / / / |/| | | | | | | | | | | | | | | | | | | | |
| * | | | | | | | | | | | | | | | | | | | | Make it harder to delete issuables accidentallyStan Hu2019-08-299-11/+87
* | | | | | | | | | | | | | | | | | | | | | Merge branch 'ce-slack-close-command' into 'master'Mayra Cabrera2019-08-299-9/+218
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | | | | | | | | Add a close issue slack slash commandSarah Yasonik2019-08-299-9/+218
|/ / / / / / / / / / / / / / / / / / / / / /
* | | | | | | | | | | | | | | | | | | | | | Merge branch 'ce-update-es-indexer' into 'master'Mayra Cabrera2019-08-291-1/+1
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | | | | | | | | CE: Update the ES indexer to v1.3.0Nick Thomas2019-08-291-1/+1
|/ / / / / / / / / / / / / / / / / / / / / /
* | | | | | | | | | | | | | | | | | | | | | Merge branch 'patch-git-private-email-instruction' into 'master'Nick Thomas2019-08-292-1/+37
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | | | | | | | | fix: show preferred commit email in empty project pageYuping Zuo2019-08-292-1/+37
|/ / / / / / / / / / / / / / / / / / / / / /
* | | | | | | | | | | | | | | | | | | | | | Merge branch 'tc-cleanup-issue-created-text-mail' into 'master'Mike Greiling2019-08-293-9/+10
|\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | | | | | | | | | | | Bring text mail for new issue & MR more in linetc-cleanup-issue-created-text-mailToon Claes2019-08-273-9/+10
View Lorry Controller Status