This project is mirrored from https://jihulab.com/gitlab-cn/gitlab.git.
Pull mirroring updated .
- Feb 07, 2024
-
-
GitLab Release Tools Bot authored
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
- Feb 06, 2024
-
-
GitLab Release Tools Bot authored
Fix CI component input Regexp See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3856 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Avielle Wolfe <awolfe@gitlab.com> Co-authored-by:
Furkan Ayhan <furkanayhn@gmail.com>
-
Furkan Ayhan authored
Merge branch 'security-1039-433147-inputs-regexp-dos-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3856 Changelog: security
-
GitLab Release Tools Bot authored
Merge branch 'security-435500-project-maintainers-can-bypass-block-branch-modification-policies-16-6' into '16-6-stable-ee' Make scan result policies block renaming branches See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3840 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Sashi Kumar Kumaresan <skumar@gitlab.com> Co-authored-by:
Dominic Bauer <dbauer@gitlab.com>
-
Dominic Bauer authored
Merge branch 'security-435500-project-maintainers-can-bypass-block-branch-modification-policies-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3840 Changelog: security
-
GitLab Release Tools Bot authored
Merge branch 'security-fix-resource-exhaustion-in-vulnerability-count-by-day-16-6' into '16-6-stable-ee' Limit vulnerabilitiesCountByDay date range to 1 year See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3831 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Tetiana Chupryna <tchupryna@gitlab.com> Co-authored-by:
Brian Williams <bwilliams@gitlab.com>
-
Brian Williams authored
Merge branch 'security-fix-resource-exhaustion-in-vulnerability-count-by-day-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3831 Changelog: security
-
- Feb 01, 2024
-
-
Mayra Cabrera authored
Backport: Update GDK base build image See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/143579 Merged-by:
Mayra Cabrera <mcabrera@gitlab.com> Co-authored-by:
Rémy Coutable <remy@rymai.me>
-
Mayra Cabrera authored
-
- Jan 25, 2024
-
-
GitLab Release Tools Bot authored
-
- Jan 24, 2024
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
Vladimir Glafirov authored
Devfile parser arbitrary file write See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3801 Merged-by:
Vladimir Glafirov <vglafirov@gitlab.com> Approved-by:
Alper Akgun <aakgun@gitlab.com> Co-authored-by:
Vishal Tak <vtak@gitlab.com>
-
Vishal Tak authored
Merge branch 'security-devfile-parser-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3801 Changelog: security
-
GitLab Release Tools Bot authored
Use public email in tags atom feed See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3804 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Patrick Cyiza <jpcyiza@gitlab.com> Co-authored-by:
Robert May <rmay@gitlab.com>
-
Robert May authored
Merge branch 'security-428441-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3804 Changelog: security
-
GitLab Release Tools Bot authored
Fix improper username sanitization See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3786 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Imre Farkas <ifarkas@gitlab.com> Co-authored-by:
agius <andrew@atevans.com>
-
Andrew Evans authored
Merge branch 'security-430236-username-html-injection-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3786 Changelog: security
-
GitLab Release Tools Bot authored
Escape user input before building regex for linker See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3789 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Rutger Wessels <rwessels@gitlab.com> Co-authored-by:
j.seto <jseto@gitlab.com>
-
Jerry Seto authored
Merge branch 'security-1019-redos-cargo-toml-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3789 Changelog: security
-
GitLab Release Tools Bot authored
Do not allow non-team member to set MR assignees/reviewers See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3793 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Suraj Tripathi <stripathi@gitlab.com> Co-authored-by:
Patrick Bajao <ebajao@gitlab.com>
-
Patrick Bajao authored
Merge branch 'security-non-member-mr-assignees-reviewers-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3793 Changelog: security
-
- Jan 19, 2024
-
-
Mayra Cabrera authored
Backport - Bring legacy verification behavior back for repositories See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/141412 Merged-by:
Mayra Cabrera <mcabrera@gitlab.com> Approved-by:
Michael Kozono <mkozono@gitlab.com> Approved-by:
Mayra Cabrera <mcabrera@gitlab.com> Co-authored-by:
Douglas Barbosa Alexandre <dbalexandre@gmail.com>
-
- Jan 17, 2024
-
-
Graeme Gillies authored
Backport: Move release-environments pipeline to be sourced from master See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/141821 Merged-by:
Graeme Gillies <ggillies@gitlab.com> Approved-by:
Jenny Kim <yjeankim@gitlab.com> Approved-by:
Mayra Cabrera <mcabrera@gitlab.com>
-
- Jan 15, 2024
-
-
Graeme Gillies authored
Part of https://gitlab.com/gitlab-com/gl-infra/delivery/-/issues/19905 In order to make development of release-environments easier by reducing backports and skew of code across stable branches, we want to make it so regardless of GitLab version being deployed to a release-environment, we are always using the child-pipeline setup from master. This means we can can make changes to the pipeline setup on `master`, and it will take effect across all stable branches.
-
- Jan 13, 2024
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
- Jan 12, 2024
-
-
Stan Hu authored
Make chat_names table migration idempotent See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/141705 Merged-by:
Stan Hu <stanhu@gmail.com> Approved-by:
Brian Williams <bwilliams@gitlab.com>
-
Stan Hu authored
GitLab 16.5.6, 16.6.4, and 16.7.2 added a migration that added columns `chat_names.encrypted_token` and `chat_names.encrypted_token_iv`. Unfortunately, the migration was added as different filenames. As a result, if users upgrade to 16.5.6 or 16.6.4 first, they'll already have those columns, and the next upgrade to 16.7.2 will fail. To prevent an upgrade failure, we need to make the migration idempotent so that it can be applied again without issues. For reference, these are the filenames that are used in different versions: * 16.8 - db/migrate/20231123160255_add_token_to_chat_names.rb * 16.7 - db/migrate/20231219120134_add_token_to_chat_names.rb * 16.6 - db/migrate/20231215135014_add_token_to_chat_names.rb * 16.5 - db/migrate/20231215145632_add_token_to_chat_names.rb Relates to https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/8371
-
- Jan 11, 2024
-
-
GitLab Release Tools Bot authored
-
- Jan 10, 2024
-
-
GitLab Release Tools Bot authored
[merge-train skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
Consider older commits when resetting codeowner approvals See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3765 Merged-by:
GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com> Approved-by:
Ash McKenzie <amckenzie@gitlab.com> Approved-by:
Kerri Miller <kerrizor@kerrizor.com> Co-authored-by:
j.seto <jseto@gitlab.com>
-
Jerry Seto authored
Merge branch 'security-424398-reset-codeowner-approval-16-6' into '16-6-stable-ee' See merge request gitlab-org/security/gitlab!3765 Changelog: security
-