- 24 Jan, 2019 34 commits
-
-
Yorick Peterse authored
[master] Verify that LFS upload requests are genuine Closes #2767 See merge request gitlab/gitlabhq!2767
-
Yorick Peterse authored
[master] Send notification only to authorized users when moving a project Closes #2777 See merge request gitlab/gitlabhq!2791
-
Yorick Peterse authored
[master] User email is visible in hook logs if they triggers tag push events Closes #2775 See merge request gitlab/gitlabhq!2789
-
Yorick Peterse authored
[master] Resolve "[Security] Stored XSS via KaTeX" Closes #2760 See merge request gitlab/gitlabhq!2718
-
Constance Okoghenun authored
-
Yorick Peterse authored
Extract pages with rubyzip See merge request gitlab/gitlabhq!2758
-
Yorick Peterse authored
[master] Stop showing ci for guest users on private pipeline See merge request gitlab/gitlabhq!2830
-
Yorick Peterse authored
[master] LFS object forgery in project import Closes #2784 See merge request gitlab/gitlabhq!2719
-
Yorick Peterse authored
[master] Do not expose trigger token when user should not see it See merge request gitlab/gitlabhq!2735
-
Yorick Peterse authored
[master] Fix DoS in reference extraction regexes Closes #2766 See merge request gitlab/gitlabhq!2768
-
Yorick Peterse authored
[master] Fix access to internal wiki when external wiki is enabled Closes #2783 See merge request gitlab/gitlabhq!2769
-
Yorick Peterse authored
[master] GitLab vulnerable to IDN homograph attacks and RTLO attacks See merge request gitlab/gitlabhq!2770
-
Yorick Peterse authored
[master] Use common error for not logged in users when creating issues Closes #2772 See merge request gitlab/gitlabhq!2787
-
Yorick Peterse authored
[master] Revoke award_emoji permissions for confidential issues Closes #2776 See merge request gitlab/gitlabhq!2790
-
Yorick Peterse authored
[master] Fix discussion replies permissions check Closes #2779 See merge request gitlab/gitlabhq!2794
-
Rémy Coutable authored
Improve the handling of tags and branches which contains a `/` when triggering CNG pipelines See merge request gitlab-org/gitlab-ce!24465
-
Rémy Coutable authored
Backport of 54385-board-policy Closes #54385 See merge request gitlab-org/gitlab-ce!24475
-
Kushal Pandya authored
Fix markdown table border Closes #56556 See merge request gitlab-org/gitlab-ce!24601
-
Jacques Erasmus authored
-
Phil Hughes authored
Adds extra sizes in responsive tables See merge request gitlab-org/gitlab-ce!24605
-
Rémy Coutable authored
Resolve "Docs lint passes if a relative link starts with /doc" Closes #56763 See merge request gitlab-org/gitlab-ce!24613
-
Rémy Coutable authored
Also, pass GITLAB_VERSION and GITLAB_ASSETS_TAG to CNG triggered pipelines. Signed-off-by: Rémy Coutable <remy@rymai.me>
-
Rémy Coutable authored
Signed-off-by: Rémy Coutable <remy@rymai.me>
-
Rémy Coutable authored
Quarantine Auto DevOps tests See merge request gitlab-org/gitlab-ce!24623
-
Achilleas Pipinellis authored
Restructure projects template topics Closes #55834 See merge request gitlab-org/gitlab-ce!24448
-
Evan Read authored
-
Achilleas Pipinellis authored
Fix most instances of bare URLs in markdown See merge request gitlab-org/gitlab-ce!24519
-
Evan Read authored
-
Sanad Liaquat authored
-
Stan Hu authored
Log admin status of user when OAuth::User is saved See merge request gitlab-org/gitlab-ce!24602
-
Evan Read authored
Update repository_mirroring.md See merge request gitlab-org/gitlab-ce!24586
-
Evan Read authored
(docs) Updated fields information for push mirror from GitLab to GitHub See merge request gitlab-org/gitlab-ce!24566
-
Nick Thomas authored
Fix 'loose' typo Closes #56248 See merge request gitlab-org/gitlab-ce!24330
-
Nick Thomas authored
Fix 404s for snippet uploads when relative URL root used Closes #56280 See merge request gitlab-org/gitlab-ce!24588
-
- 23 Jan, 2019 6 commits
-
-
Robert Speicher authored
Fix import handling errors in Bitbucket Server importer See merge request gitlab-org/gitlab-ce!24499
-
Stan Hu authored
Allow Gitaly to be built from a custom URL See merge request gitlab-org/gitlab-ce!24616
-
Douglas Barbosa Alexandre authored
Fix 500 errors with legacy appearance logos Closes gitlab-ee#9357 See merge request gitlab-org/gitlab-ce!24615
-
Nick Thomas authored
-
Nick Thomas authored
[API] Omit `X-Total` and `X-Total-Pages` headers when items count is more than 10,000 Closes #42194 and #52674 See merge request gitlab-org/gitlab-ce!23931
-
Stan Hu authored
Prior to GitLab 9.0, attachments were not tracked the `uploads` table, so it was possible that the appearance logos were just stored in the database as a string and mounted via CarrierWave. https://gitlab.com/gitlab-org/gitlab-ce/issues/29240 implemented in GitLab 10.3 was supposed to cover populating the `uploads` table for all attachments, including all the logos from appearances. However, it's possible that didn't work for logos or the `uploads` entry was orphaned. GitLab instances that had a customized logo with no associated `uploads` entry would see Error 500s. The only way to fix this is to delete the `logo` column from the `appearances` table and re-upload the attachment. This change makes things more robust by falling back to the original behavior if the upload is not available. This is a CE backport of https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/9277. Closes https://gitlab.com/gitlab-org/gitlab-ee/issues/9357
-