Commit message (Expand) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | | | | | | | | Merge branch 'bvl-fix-race-condition-creating-signature' into 'master' | Rémy Coutable | 2019-02-06 | 2 | -1/+49 | |
|\ \ \ \ \ \ \ \ | ||||||
| * | | | | | | | | Avoid race conditions when creating GpgSignature | Bob Van Landuyt | 2019-02-06 | 2 | -1/+49 | |
| | |/ / / / / / | |/| | | | | | | ||||||
* | | | | | | | | Revert "Convert noteable_note_spec.js to Vue test utils" | Winnie Hellmann | 2019-02-06 | 1 | -70/+23 | |
|/ / / / / / / | ||||||
* | | | | | | | Reduce Bundle Size by lazy loading markdown-it | Tim Zallmann | 2019-02-06 | 3 | -44/+132 | |
* | | | | | | | Allow custom squash commit messages | Luke Duncalfe | 2019-02-06 | 11 | -37/+177 | |
* | | | | | | | Merge branch '43681-display-last-activity-and-created-at-datetimes-for-users-... | Filipa Lacerda | 2019-02-06 | 3 | -4/+138 | |
|\ \ \ \ \ \ \ | ||||||
| * | | | | | | | Add last activity to user administration | Brandon Labuschagne | 2019-02-05 | 3 | -4/+138 | |
* | | | | | | | | Merge branch 'cluster_application_version_updated' into 'master' | Grzegorz Bizon | 2019-02-06 | 8 | -104/+56 | |
|\ \ \ \ \ \ \ \ | ||||||
| * | | | | | | | | Refactor specs to run shared parts only when used | Thong Kuah | 2019-02-07 | 7 | -24/+34 | |
| * | | | | | | | | Update version on :installed, not :installing | Thong Kuah | 2019-02-07 | 7 | -84/+16 | |
| * | | | | | | | | Update version column after application is updated | Thong Kuah | 2019-02-06 | 1 | -0/+10 | |
* | | | | | | | | | Merge dev.gitlab.org master into GitLab.com master | Yorick Peterse | 2019-02-06 | 1 | -0/+25 | |
|\ \ \ \ \ \ \ \ \ | ||||||
| * \ \ \ \ \ \ \ \ | Merge branch 'security-makrdown-release-description-vulnerability' into 'master' | Yorick Peterse | 2019-02-06 | 1 | -0/+25 | |
| |\ \ \ \ \ \ \ \ \ | ||||||
| | * | | | | | | | | | Fix Markdown of release notes | Shinya Maeda | 2019-01-30 | 1 | -0/+25 | |
| | * | | | | | | | | | Merge branch '56860-fix-spec-race-condition-upside-the-head' into 'master' | Douglas Barbosa Alexandre | 2019-01-28 | 1 | -0/+3 | |
| | * | | | | | | | | | [master] Pipelines section is available to unauthorized users | Kamil Trzciński | 2019-01-28 | 15 | -53/+223 | |
| | * | | | | | | | | | Merge branch 'fix/security-group-user-removal' into 'master' | Yorick Peterse | 2019-01-25 | 3 | -7/+59 | |
| | |\ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | Add subresources removal to member destroy service | James Lopez | 2019-01-25 | 3 | -7/+59 | |
| | * | | | | | | | | | | Merge branch 'security-import-path-logging' into 'master' | Yorick Peterse | 2019-01-25 | 4 | -3/+51 | |
| | |\ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | Fix path disclosure on Project Import | James Lopez | 2019-01-07 | 4 | -3/+51 | |
| | * | | | | | | | | | | | Merge branch 'security-guests-can-see-list-of-merge-requests' into 'master' | Yorick Peterse | 2019-01-25 | 3 | -9/+110 | |
| | |\ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | Group Guests are no longer able to see merge requests | Tiago Botelho | 2019-01-21 | 3 | -9/+110 | |
| | * | | | | | | | | | | | | Merge branch 'security-import-project-visibility' into 'master' | Yorick Peterse | 2019-01-25 | 2 | -1/+146 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | Fix tree restorer visibility level | James Lopez | 2019-01-24 | 2 | -1/+146 | |
| | * | | | | | | | | | | | | | Merge branch 'security-contributed-projects' into 'master' | Yorick Peterse | 2019-01-25 | 2 | -0/+44 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | Fix contributed projects finder shown private info | James Lopez | 2019-01-08 | 2 | -0/+44 | |
| | * | | | | | | | | | | | | | | Merge branch 'security-do-not-process-mr-ref-for-guests' into 'master' | Yorick Peterse | 2019-01-25 | 1 | -1/+11 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | Don't process MR refs for guests in the notes | Oswaldo Ferreira | 2019-01-10 | 1 | -1/+11 | |
| | * | | | | | | | | | | | | | | | Merge branch 'security-22076-sanitize-url-in-names' into 'master' | Yorick Peterse | 2019-01-25 | 2 | -3/+19 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | Use `sanitize_name` to sanitize URL in user full name | Kushal Pandya | 2019-01-22 | 1 | -3/+5 | |
| | | * | | | | | | | | | | | | | | | Add `sanitize_name` helper to sanitize URLs in user full name | Kushal Pandya | 2019-01-22 | 1 | -0/+14 | |
| | * | | | | | | | | | | | | | | | | Merge branch 'sh-fix-import-redirect-vulnerability' into 'master' | Yorick Peterse | 2019-01-25 | 2 | -3/+16 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | Alias GitHub and BitBucket OAuth2 callback URLs | Stan Hu | 2019-01-22 | 2 | -3/+16 | |
| | * | | | | | | | | | | | | | | | | | [master] Check access rights when creating/updating ProtectedRefs | Francisco Javier López | 2019-01-25 | 1 | -15/+8 | |
| | * | | | | | | | | | | | | | | | | | Merge branch 'security-55320-stored-xss-in-user-status' into 'master' | Tim Zallmann | 2019-01-25 | 1 | -3/+3 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | | | |_|_|_|_|_|_|_|/ / / / / / / / / | | |/| | | | | | | | | | | | | | | | | ||||||
| | | * | | | | | | | | | | | | | | | | Use sanitized user status message for user popover | Dennis Tang | 2019-01-23 | 1 | -3/+3 | |
| | | |/ / / / / / / / / / / / / / / | ||||||
| | * | | | | | | | | | | | | | | | | Merge branch 'security-2767-verify-lfs-finalize-from-workhorse' into 'master' | Yorick Peterse | 2019-01-24 | 1 | -5/+18 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | Verify that LFS upload requests are genuine | Nick Thomas | 2019-01-22 | 1 | -5/+18 | |
| | | |/ / / / / / / / / / / / / / / | ||||||
| | * | | | | | | | | | | | | | | | | Merge branch 'security-project-move-users' into 'master' | Yorick Peterse | 2019-01-24 | 2 | -6/+38 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | Sent notification only to authorized users | Jan Provaznik | 2019-01-23 | 2 | -6/+38 | |
| | | |/ / / / / / / / / / / / / / / | ||||||
| | * | | | | | | | | | | | | | | | | Merge branch 'security-fix-user-email-tag-push-leak' into 'master' | Yorick Peterse | 2019-01-24 | 1 | -2/+2 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | Fix private user email being visible in tag webhooks | Luke Duncalfe | 2019-01-18 | 1 | -2/+2 | |
| | | * | | | | | | | | | | | | | | | | Prefer build() rather than create() | Luke Duncalfe | 2019-01-15 | 1 | -1/+1 | |
| | | | |/ / / / / / / / / / / / / / | | | |/| | | | | | | | | | | | | | | ||||||
| | * | | | | | | | | | | | | | | | | [master] Resolve "[Security] Stored XSS via KaTeX" | Constance Okoghenun | 2019-01-24 | 1 | -1/+17 | |
| | * | | | | | | | | | | | | | | | | Merge branch 'extract-pages-with-rubyzip' into 'master' | Yorick Peterse | 2019-01-24 | 10 | -9/+356 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | Extract GitLab Pages using RubyZip | Kamil Trzciński | 2019-01-22 | 10 | -9/+356 | |
| | * | | | | | | | | | | | | | | | | | Merge branch 'security-commit-status-shown-for-guest-user' into 'master' | Yorick Peterse | 2019-01-24 | 1 | -0/+21 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | | Stop showing ci for guest users | Steve Azzopardi | 2019-01-23 | 1 | -0/+21 | |
| | | | |_|_|_|_|/ / / / / / / / / / / | | | |/| | | | | | | | | | | | | | | | ||||||
| | * | | | | | | | | | | | | | | | | | Merge branch 'security-fix-lfs-import-project-ssrf-forgery' into 'master' | Yorick Peterse | 2019-01-24 | 6 | -53/+240 | |
| | |\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ | ||||||
| | | * | | | | | | | | | | | | | | | | | Added validations to prevent LFS object forgery | Francisco Javier López | 2019-01-21 | 6 | -53/+240 | |
| | | | |_|_|_|_|/ / / / / / / / / / / | | | |/| | | | | | | | | | | | | | | |