Update CHANGELOG.md for 12.10.7

[ci skip]

Update CHANGELOG.md for 12.10.7
[ci skip]
4600d6a9 · GitLab Release Tools Bot · 6b63662f · 4600d6a9 · 6b63662f
Commit 4600d6a9 authored May 27, 2020 by GitLab Release Tools Bot
Hide whitespace changes
Inline Side-by-side

Showing with 20 additions and 5 deletions

CHANGELOG.md CHANGELOG.md +20 -0

changelogs/unreleased/security-99-disable-caching-on-api-repo-blobs-raw.yml ...sed/security-99-disable-caching-on-api-repo-blobs-raw.yml +0 -5

No files found.
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -589,6 +589,26 @@ entry.
 - Use visitUrl in Alert management. !32414
+## 12.10.7 (2020-05-27)
+### Security (14 changes)
+- Add an extra validation to Static Site Editor payload.
+- Hide EKS secret key in admin integrations settings.
+- Added data integrity check before updating a deploy key.
+- Display only verified emails on notifications and profile page.
+- Disable caching on repo/blobs/[sha]/raw endpoint.
+- Require confirmed email address for GitLab OAuth authentication.
+- Kubernetes cluster details page no longer exposes Service Token.
+- Fix confirming unverified emails with soft email confirmation flow enabled.
+- Disallow user to control PUT request using mermaid markdown in issue description.
+- Check forked project permissions before allowing fork.
+- Limit memory footprint of a command that generates ZIP artifacts metadata.
+- Fix file enuming using Group Import.
+- Prevent XSS in the monitoring dashboard.
+- Use `gsub` instead of the Ruby `%` operator to perform variable substitution in Prometheus proxy API.
 ## 12.10.6 (2020-05-15)
 ### Fixed (5 changes)

--- a/changelogs/unreleased/security-99-disable-caching-on-api-repo-blobs-raw.yml
+++ b/changelogs/unreleased/security-99-disable-caching-on-api-repo-blobs-raw.yml
---
-title: Disable caching on repo/blobs/[sha]/raw endpoint
-merge_request:
-author:
-type: security