From b06a092312b0674eef59e50b20f4f8bd2dd1a8f4 Mon Sep 17 00:00:00 2001
From: Alexandru Croitor <acroitor@gitlab.com>
Date: Wed, 18 Sep 2019 11:26:20 +0300
Subject: Add policy check if cross reference system notes are accessible

---
 .../security-12630-private-system-note-disclosed-in-graphql.yml     | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 changelogs/unreleased/security-12630-private-system-note-disclosed-in-graphql.yml

(limited to 'changelogs')

diff --git a/changelogs/unreleased/security-12630-private-system-note-disclosed-in-graphql.yml b/changelogs/unreleased/security-12630-private-system-note-disclosed-in-graphql.yml
new file mode 100644
index 00000000000..03658c931a3
--- /dev/null
+++ b/changelogs/unreleased/security-12630-private-system-note-disclosed-in-graphql.yml
@@ -0,0 +1,6 @@
+---
+title: Add a policy check for system notes that may not be visible due to cross references
+  to private items
+merge_request:
+author:
+type: security
-- 
cgit v1.2.1