[merge-train skip]

[ci skip]

[ci skip]

Using builds metadata to determine debug_mode

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3022



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Allison Browne <abrowne@gitlab.com>
Reviewed-by: Allison Browne <abrowne@gitlab.com>
Reviewed-by: Max Fan <mfan@gitlab.com>
Co-authored-by: Max Fan <mfan@gitlab.com>

Merge branch 'security-290955-15.9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3022

Changelog: security

Fix pagination limits for Commits API

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3071



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: James Fargher <proglottis@gmail.com>
Co-authored-by: Vasilii Iakliushin <viakliushin@gitlab.com>

Merge branch 'security-restrict-per-page-limit-for-commits-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3071

Changelog: security

Mask Google IAP account details in Prometheus integration

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3081



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Vitali Tatarintev <vtatarintev@gitlab.com>
Co-authored-by: Peter Leitzen <pleitzen@gitlab.com>

Merge branch 'security-prometheus-integration-mask-creds-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3081

Changelog: security

Stop Group Transfer Service if SAML Provider or SCIM token is present

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3095



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Bogdan Denkovych <bdenkovych@gitlab.com>
Co-authored-by: smriti <sgarg@gitlab.com>

Merge branch 'security-smriti-819/stop_transfer_service_for_saml_sso-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3095

Changelog: security

Protect Datadog API key by changing Datadog site

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3093



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: drew stachon <730684-drew@users.noreply.gitlab.com>
Co-authored-by: bmarjanovic <bmarjanovic@gitlab.com>

Merge branch 'security-389188-confidential-issue-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3093

Changelog: security

Protect integrations' sensitive information exposed via API

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3087



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Patrick Bajao <ebajao@gitlab.com>
Co-authored-by: bmarjanovic <bmarjanovic@gitlab.com>

Merge branch 'security-385669-confidential-issue-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3087

Changelog: security

Disallow maintainer to create an owner access token

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3090



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Manoj M J <mmj@gitlab.com>
Co-authored-by: Jarka Košanová <jarka@gitlab.com>

Merge branch 'security-maintainer-owner-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3090

Changelog: security

Paste only text content in work items title

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3074



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Himanshu Kapoor <info@fleon.org>
Co-authored-by: Dheeraj Joshi <djoshi@gitlab.com>

Merge branch 'security-clipboard-xss-work-items-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3074

Changelog: security

Jira DVCS OAuth Open Redirect Vulnerability

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3077



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Andy Soiron <asoiron@gitlab.com>
Co-authored-by: bmarjanovic <bmarjanovic@gitlab.com>

Merge branch 'security-376046-confidential-issue-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3077

Changelog: security

Block private personal snippet from unauthorized users

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3079



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: Patrick Cyiza <jpcyiza@gitlab.com>

Merge branch 'security-379598-confidential-issue-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3079

Changelog: security

Verify Kroki diagram type

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3056



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Costel Maxim <cmaxim@gitlab.com>
Approved-by: Ethan Urie <eurie@gitlab.com>
Co-authored-by: Brett Walker <bwalker@gitlab.com>

Merge branch 'security-kroki-stored-xss-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3056

Changelog: security

Check read_release permission before showing releases in Tags API

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3060



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Shinya Maeda <shinya@gitlab.com>
Co-authored-by: Alishan Ladhani <aladhani@gitlab.com>

Merge branch 'security-check-release-permission-in-tags-api-15-9' into '15-9-stable-ee'

See merge request gitlab-org/security/gitlab!3060

Changelog: security

Revert "Merge branch 'rs-378267-skip-rebinding-when-http-proxy-set' into 'master'"

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/113135



Merged-by: Steve Abrams <sabrams@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Approved-by: Steve Abrams <sabrams@gitlab.com>
Co-authored-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: Stan Hu <stanhu@gmail.com>

This reverts commit 7c510062, reversing
changes made to 1872c148.

This reverts
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/110842 since it
breaks installations using `no_proxy` for Webhooks:
https://gitlab.com/gitlab-org/gitlab/-/issues/393164

Cherrypick https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112302 into 15-9-stable-ee branch

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112863



Merged-by: Jenny Kim <yjeankim@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: Natalia Tepluhina <ntepluhina@gitlab.com>

[merge-train skip]

[ci skip]

[ci skip]

Remove duplicate blame_file_content QA selector

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112302



Merged-by: Natalia Tepluhina <ntepluhina@gitlab.com>
Approved-by: Illya Klymov <xanf@xanf.me>
Approved-by: Natalia Tepluhina <ntepluhina@gitlab.com>
Co-authored-by: Stanislav Lashmanov <slashmanov@gitlab.com>

(cherry picked from commit 93269160)

7999b545 Remove duplicate blame_file_content QA selector

Prepare 15.9.1-ee release

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112831



Merged-by: Jenny Kim <yjeankim@gitlab.com>
Co-authored-by: Marc Shaw <mshaw@gitlab.com>
Co-authored-by: Jessie Young <jessieyoung@gitlab.com>
Co-authored-by: Natalia Tepluhina <ntepluhina@gitlab.com>
Co-authored-by: Evan Read <eread@gitlab.com>
Co-authored-by: Heinrich Lee Yu <heinrich@gitlab.com>
Co-authored-by: Brian Williams <bwilliams@gitlab.com>

Bump omniauth_openid_connect to v0.6.1

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112781



Merged-by: Marc Shaw <mshaw@gitlab.com>
Approved-by: Rutger Wessels <rwessels@gitlab.com>
Approved-by: Marc Shaw <mshaw@gitlab.com>
Co-authored-by: Stan Hu <stanhu@gmail.com>

(cherry picked from commit ec88e332)

3a400669 Bump omniauth_openid_connect to v0.6.1

See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112595

Changelog: fixed

Merge branch '392706-missaligned-ref-selector-dropdown-button-on-search-page-status-bar' into 'master'

Missaligned ref-selector dropdown button on search page status bar

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112555



Merged-by: Natalia Tepluhina <ntepluhina@gitlab.com>
Approved-by: Sunjung Park <spark@gitlab.com>
Approved-by: Natalia Tepluhina <ntepluhina@gitlab.com>
Approved-by: Stanislav Lashmanov <slashmanov@gitlab.com>
Co-authored-by: Tomas Bulva <tbulva@gitlab.com>

(cherry picked from commit f322bb7d)

ac397840 Suppress margin-bottom 1rem for the button

Document rate limit for Direct transfer

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/112488



Merged-by: Evan Read <eread@gitlab.com>
Co-authored-by: Martin Wortschack <mwortschack@gitlab.com>

(cherry picked from commit b5a9382c)

5f40524e Document rate limit for Direct transfer
bf274b2c Apply 1 suggestion(s) to 1 file(s)