delta/gitlab/gitlab-ce.git - gitlab.com: gitlab-org/gitlab-ce.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-12-03	1	-4/+4
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-12-02	1	-13/+19
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-29	1	-0/+22
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-29	1	-3/+3
\|
*	Merge remote-tracking branch 'dev/master'	Alessio Caiazza	2019-11-27	1	-0/+37
\|\
\| *	Merge branch 'security-filter-related-branches-from-activity-feed' into 'master'	GitLab Release Tools Bot	2019-11-26	1	-0/+37
\| \|\ \| \| \| \| \| \| \| \| \| \| \| \|	Related Branches Visible to Guests in Issue Activity See merge request gitlab/gitlabhq!3537
\| \| *	Restrict branches visible to guests in Issue feed	Kerri Miller	2019-11-20	1	-0/+37
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Notes related to branch creation should not be shown in an issue's activity feed when the user doesn't have access to :download_code.
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-27	1	-17/+3
\|/ /
* \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-26	1	-0/+32
\| \|
* \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-22	1	-1/+1
\| \|
* \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-21	1	-11/+14
\|/
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-19	1	-36/+79
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-19	1	-0/+35
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-19	1	-0/+11
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-15	1	-6/+6
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-15	1	-4/+9
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-14	9	-21/+56
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-13	1	-1/+1
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-13	1	-12/+0
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-13	1	-0/+94
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-11	1	-1/+13
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-08	2	-13/+193
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-08	5	-8/+8
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-08	1	-1/+51
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-07	5	-8/+8
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-07	1	-34/+0
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-06	1	-0/+64
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-04	1	-47/+47
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-01	1	-1/+2
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-11-01	1	-8/+89
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-31	3	-498/+192
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-31	1	-0/+83
\|
*	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-30	1	-4/+4
\|
*	Merge dev.gitlab.org@master into GitLab.com@master	Yorick Peterse	2019-10-30	5	-22/+25
\|\
\| *	Merge branch ↵	GitLab Release Tools Bot	2019-10-29	1	-16/+19
\| \|\ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	'security-ag-hide-private-members-in-project-member-autocomplete' into 'master' Hide private members in project member autocomplete See merge request gitlab/gitlabhq!3212
\| \| *	Pick only those groups that the viewing user has access to,	Aakriti Gupta	2019-09-25	1	-16/+19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	in a project members' list. Add tests for possible scenarios Re-factor and remove N + 1 queries Remove author from changelog Don't use memoisation when not needed Include users part of parents of project's group Re-factor tests Create and add users according to roles Re-use group created earlier Add incomplete test for ancestoral groups Rename method to clarify category of groups Skip pending test, remove comments not needed Remove extra line Include ancestors from invited groups as well Add specs for participants service Add more specs Add more specs use instead of Use public group owner instead of project maintainer to test owner acess Remove tests that have now been moved into participants_service_spec Use :context instead of :all Create nested group instead of creating an ancestor separately Add comment explaining doubt on the failing spec Imrpove test setup Optimize sql queries Refactor specs file Add rubocop disablement Add special case for project owners Add small refactor Add explanation to the docs Fix wording Refactor group check Add small changes in specs Add cr remarks Add cr remarks Add specs Add small refactor Add code review remarks Refactor for better database usage Fix failing spec Remove rubocop offences Add cr remarks
\| * \|	Merge branch 'security-remove-leaky-401-responses-master' into 'master'	GitLab Release Tools Bot	2019-10-29	4	-6/+6
\| \|\ \ \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Private/internal repository enumeration via bruteforce on a vulnerable URL See merge request gitlab/gitlabhq!3454
\| \| * \|	Avoid #authenticate_user! in #route_not_found	Kerri Miller	2019-10-09	4	-6/+6
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This method, #route_not_found, is executed as the final fallback for unrecognized routes (as the name might imply.) We want to avoid `#authenticate_user!` when calling `#route_not_found`; `#authenticate_user!` can, depending on the request format, return a 401 instead of redirecting to a login page. This opens a subtle security exploit where anonymous users will receive a 401 response when attempting to access a private repo, while a recognized user will receive a 404, exposing the existence of the private, hidden repo.
* \| \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-29	1	-0/+50
\| \| \| \|
* \| \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-28	1	-12/+56
\| \| \| \|
* \| \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-26	1	-0/+18
\|/ / /
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-23	7	-31/+27
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-23	3	-192/+498
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-22	1	-0/+27
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-21	3	-7/+43
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-21	1	-2/+186
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-18	4	-44/+93
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@masterlist	GitLab Bot	2019-10-17	1	-6/+119
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-17	1	-3/+80
\| \| \|
* \| \|	Add latest changes from gitlab-org/gitlab@master	GitLab Bot	2019-10-16	2	-5/+16
\| \| \|