summaryrefslogtreecommitdiff
path: root/changelogs
Commit message (Expand)AuthorAgeFilesLines
* Persist `needs:` validation as config errorpersist-needs-errorKamil Trzciński2019-09-041-0/+5
* Delete animation width on global search inputManeschi Romain2019-08-301-0/+5
* Revert "DB change, migratoin and changelog"Lee Tickett2019-08-301-0/+5
* Resolve "Use "moved" instead of "closed" in issue references"Juliette de Rancourt2019-08-301-0/+5
* Merge branch '65251-default-clusters-namespace_per_environment-column-to-true...Ash McKenzie2019-08-301-0/+5
|\
| * Default clusters namespace_per_environment to trueTiger2019-08-301-0/+5
* | URL-encode file links in find fileJan Beckmann2019-08-301-0/+5
|/
* Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhqRobert Speicher2019-08-2922-0/+110
|\
| * Merge branch 'security-enable-image-proxy' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\
| | * Add support for using a Camo proxy serverBrett Walker2019-08-231-0/+5
| * | Merge branch 'security-2853-prevent-comments-on-private-mrs' into 'master'GitLab Release Tools Bot2019-08-291-0/+3
| |\ \
| | * | Prevent unauthorised comments on merge requestsAlex Kalderimis2019-08-071-0/+3
| * | | Merge branch 'security-epic-notes-api-reveals-historical-info-ce-master' into...GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \
| | * | | Filter out old system notes for epicsPatrick Derichs2019-08-281-0/+5
| * | | | Merge branch 'security-personal-snippets' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \
| | * | | | Add direct upload support for personal snippetsJan Provaznik2019-08-231-0/+5
| * | | | | Merge branch 'security-fix-html-injection-for-label-description-ce-master' in...GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \
| | * | | | | Fix HTML injection for label descriptionPatrick Derichs2019-08-051-0/+5
| * | | | | | Merge branch 'security-fix_jira_ssrf_vulnerability' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \
| | * | | | | | Fix DNS rebind vulnerability for JIRA integrationFelipe Artur2019-08-081-0/+5
| | | |_|_|/ / | | |/| | | |
| * | | | | | Merge branch 'security-61974-limit-issue-comment-size' into 'master'GitLab Release Tools Bot2019-08-292-0/+10
| |\ \ \ \ \ \
| | * | | | | | Limit the size of issuable description and commentsAlexandru Croitor2019-08-222-0/+10
| * | | | | | | Merge branch 'security-59549-add-capcha-for-failed-logins' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \
| | * | | | | | | Add captcha if there are multiple failed login attemptsMałgorzata Ksionek2019-07-311-0/+5
| * | | | | | | | Merge branch 'security-mr-head-pipeline-leak' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Permission fix for MergeRequestsController#pipeline_statusdrew cimino2019-08-121-0/+5
| * | | | | | | | | Merge branch 'security-katex-dos-master' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \
| | * | | | | | | | | Enforce max chars and max render time in markdown mathMartin Hanzel2019-08-061-0/+5
| | | |_|_|/ / / / / | | |/| | | | | | |
| * | | | | | | | | Merge branch 'security-project-import-bypass' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \
| | * | | | | | | | | Fix project import restricted visibility bypassGeorge Koltsov2019-08-151-0/+5
| | |/ / / / / / / /
| * | | | | | | | | Merge branch 'security-hide_merge_request_ids_on_emails' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \
| | * | | | | | | | | Prevent disclosure of merge request id via emailFelipe Artur2019-08-191-0/+5
| | |/ / / / / / / /
| * | | | | | | | | Merge branch 'security-id-filter-timeline-activities-for-guests' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \
| | * | | | | | | | | Add merge note type as cross referenceIgor Drozdov2019-08-131-0/+5
| | * | | | | | | | | Update CHANGELOG.md for 12.1.5GitLab Release Tools Bot2019-08-092-10/+0
| | * | | | | | | | | Merge remote-tracking branch 'dev/pokstad1-master-patch-14984'John T Skarbek2019-08-091-0/+5
| | |\ \ \ \ \ \ \ \ \
| | | * | | | | | | | | Update Gitaly to v1.53.2 for security fixPaul Okstad2019-08-011-0/+5
| | | | |_|_|_|/ / / / | | | |/| | | | | | |
| | * | | | | | | | | Fix gitlab api token recoveryVladimir Shushlin2019-08-091-0/+5
| * | | | | | | | | | Merge branch 'security-group-runners-permissions' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | admin_group authorization for Groups::RunnersControllerdrew cimino2019-08-221-0/+5
| * | | | | | | | | | | Merge branch 'security-ci-metrics-permissions' into 'master'GitLab Release Tools Bot2019-08-291-0/+6
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Restrict MergeRequests#test_reports to authenticated users with read-access o...drew cimino2019-08-221-0/+6
| * | | | | | | | | | | | Merge branch 'security-sarcila-fix-weak-session-management' into 'master'GitLab Release Tools Bot2019-08-291-0/+6
| |\ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | Add User#will_save_change_to_login? to clear reset_password_tokensSebastian Arcila Valenzuela2019-08-211-0/+6
| * | | | | | | | | | | | | Merge branch 'security-fix-markdown-xss' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | Re-escape whole HTML content instead of only matchJan Provaznik2019-08-231-0/+5
| * | | | | | | | | | | | | | Merge branch 'security-exposed-default-branch' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | Avoid exposing unaccessible repo data upon GFM processingOswaldo Ferreira2019-08-211-0/+5
| * | | | | | | | | | | | | | | Merge branch 'security-ssrf-kubernetes-dns-12-3' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | | | Override hostname when connecting via KubeclientThong Kuah2019-08-211-0/+5
| | | |_|_|/ / / / / / / / / / / | | |/| | | | | | | | | | | | |