[merge-train skip]

[ci skip]

[ci skip]

Bump ruby dependencies

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/166043



Merged-by: Ahmad Tolba <atolba@gitlab.com>
Approved-by: Aboobacker MK <akarakath@gitlab.com>
Approved-by: Jim Baumgardner <jbaumgardner@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: Drew Blessing <drew@gitlab.com>

[merge-train skip]

[ci skip]

[ci skip]

Revert "Merge branch 'security-psk-fix-external-wiki-integration-dos-17-2' into '17-2-stable-ee'"

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4454



Merged-by: Mayra Cabrera <mcabrera@gitlab.com>
Approved-by: Mayra Cabrera <mcabrera@gitlab.com>
Co-authored-by: John T Skarbek <jtslear@gmail.com>

Merge branch 'revert-7bad7451' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4454

Changelog: security

Improve OpenSSL 3 upgrading warning notes

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/165587



Merged-by: Stan Hu <stanhu@gmail.com>
Approved-by: Eduardo Sanz García <esanz-garcia@gitlab.com>

Fix the vulnerability in the glm_source parameter

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4435



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Gabriel Mazetto <gabriel@gitlab.com>
Co-authored-by: Doug Stull <dstull@gitlab.com>

Merge branch 'cherry-pick-98bf5baa-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4435

Changelog: security

Improve GraphQL log security

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4349



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Greg Myers <gmyers@gitlab.com>
Approved-by: Dzmitry (Dima) Meshcharakou <12459192-dmeshcharakou@users.noreply.gitlab.com>
Reviewed-by: Dzmitry (Dima) Meshcharakou <12459192-dmeshcharakou@users.noreply.gitlab.com>
Co-authored-by: Radamanthus Batnag <rbatnag@gitlab.com>

Merge branch 'security-460289-confidential-issue-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4349

Changelog: security

Add permissions check to project creations from a project template

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4444



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Gavin Hinfey <ghinfey@gitlab.com>
Co-authored-by: Fred Reinink <freinink@gitlab.com>

Merge branch 'security-custom-templates-source-code-disclosure-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4444

Changelog: security

Fix credentials disclosure in mirroring failure

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4447



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Vasilii Iakliushin <viakliushin@gitlab.com>
Co-authored-by: Olaoluwa Oluro <olaoluro@gitlab.com>

Merge branch 'security-scp-url-sanitizer-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4447

Changelog: security

Redirect url in the link validated for being external

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4441



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Drew Blessing <drew@gitlab.com>
Co-authored-by: smriti <sgarg@gitlab.com>

Merge branch 'security-sg-redirect-check-for-releases-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4441

Changelog: security

[17.2] Update edit permissions for DAST profiles

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4356



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Alejandro Rodríguez <alejandro@gitlab.com>
Co-authored-by: Arpit Gogia <12347103-arpitgogia@users.noreply.gitlab.com>

Merge branch 'security-451014-dast-profile-permissions-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4356

Changelog: security

Commit information visible through release atom endpoint for guest users

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4438



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Tomas Bulva <tbulva@gitlab.com>
Approved-by: Kevin Morrison <kmorrison@gitlab.com>
Co-authored-by: Anna Vovchenko <avovchenko@gitlab.com>

Merge branch 'security-469367-commit-info-visible-though-atom-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4438

Changelog: security

Execute environment stop actions as the owner of the action

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4405



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Fabio Pitino <fpitino@gitlab.com>
Co-authored-by: Tiger <twatson@gitlab.com>

Merge branch 'security-run-stop-actions-as-job-owner-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4405

Changelog: security

Prevent code injection in Product Analytics funnels YAML

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4430



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Halil Coban <hcoban@gitlab.com>
Co-authored-by: Robert Hunt <rhunt@gitlab.com>

Merge branch 'security-prevent-code-injection-in-pa-funnels-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4430

Changelog: security

Prevent users with admin_group_member custom ab. to manage custom roles

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4426



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: charlie ablett <cablett@gitlab.com>
Co-authored-by: Jarka Košanová <jarka@gitlab.com>

Merge branch 'security-fix-cr-edit-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4426

Changelog: security

Fixed frontend regex to parse URI

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4420



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Drew Blessing <drew@gitlab.com>
Co-authored-by: smriti <sgarg@gitlab.com>

Merge branch 'security-sg-fix-frontend-uri-parse-regex-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4420

Changelog: security

Merge branch 'security-dblessing_identities_controller_use_session_cookie-17-2' into '17-2-stable-ee'

Use session instead of params for identity linking

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4370



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Andrew Evans <aevans@gitlab.com>
Co-authored-by: Drew Blessing <drew@gitlab.com>

Merge branch 'security-dblessing_identities_controller_use_session_cookie-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4370

Changelog: security

Fix external wiki integration DoS by changing request to HEAD

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4382



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Terri Chu <tchu@gitlab.com>
Co-authored-by: Piotr Skorupa <pskorupa@gitlab.com>

Merge branch 'security-psk-fix-external-wiki-integration-dos-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4382

Changelog: security

Restrict IPs for packages dependency proxy

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4390



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Radamanthus Batnag <rbatnag@gitlab.com>
Co-authored-by: Dzmitry Meshcharakou <12459192-dmeshcharakou@users.noreply.gitlab.com>

Merge branch 'security-1106-ssrf-via-dependency-proxy-17-2' into '17-2-stable-ee'

See merge request gitlab-org/security/gitlab!4390

Changelog: security