- 28 Apr, 2021 40 commits
-
-
David O'Regan authored
Update button variants to btn-confirm on MR page See merge request gitlab-org/gitlab!60254
-
Alex Kalderimis authored
Show translation levels in UI See merge request gitlab-org/gitlab!59420
-
Kushal Pandya authored
Add gl-form-input class for fields in bitbucket import page See merge request gitlab-org/gitlab!58309
-
Yogi authored
-
Kushal Pandya authored
Add gl-form-input class for fields in fogbugz import page See merge request gitlab-org/gitlab!58312
-
Yogi authored
-
Kushal Pandya authored
Add gl-form-input class for fields in gitea import page See merge request gitlab-org/gitlab!58313
-
Yogi authored
-
Kushal Pandya authored
Prevent DOS from Chaining in Mermaid See merge request gitlab-org/gitlab!60382
-
Kushal Pandya authored
Add gl-form-input class for fields in import page See merge request gitlab-org/gitlab!58316
-
Yogi authored
-
Kushal Pandya authored
Added tracking to the different diff view settings [RUN ALL RSPEC] [RUN AS-IF-FOSS] See merge request gitlab-org/gitlab!59979
-
Mayra Cabrera authored
Add descriptions for GroupMemberRelationEnum See merge request gitlab-org/gitlab!60158
-
🤖 GitLab Bot 🤖 authored
Update Gitaly version See merge request gitlab-org/gitlab!60507
-
Frédéric Caplette authored
Geo Node Status 2.0 - Vuex Spec Cleanup See merge request gitlab-org/gitlab!60151
-
GitLab Release Tools Bot authored
-
Nicolò Maria Mezzopera authored
[VSA] Enable pagination (frontend) See merge request gitlab-org/gitlab!59650
-
Ezekiel Kigbo authored
-
Rajat Jain authored
Don't allow chaining of links to be rendered directly in the Mermaid diagram. Changelog: security
-
Arturo Herrero authored
Add Merge Requests and Requirements Menu See merge request gitlab-org/gitlab!59374
-
Justin Ho authored
We need to use gl-w-auto! since there is width: 100% coming in from styles in .note-form-actions. Ideally we should refactor that and remove the utils used here.
-
Justin Ho authored
-
Justin Ho authored
-
Justin Ho authored
Fix spacing and alignment on xs / md breakpoints
-
Justin Ho authored
-
Justin Ho authored
-
Justin Ho authored
Also update badge variant and add some spacing
-
Yorick Peterse authored
-
Savas Vedova authored
Rename routeQuery to queryString in standard_filter.vue See merge request gitlab-org/gitlab!60371
-
Yorick Peterse authored
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
GitLab Release Tools Bot authored
[ci skip]
-
David Fernandez authored
Any objects other than `User` (such as `DeployToken`) are not allowed Changelog: security
-
Alex Kalderimis authored
Verify that read_api tokens cannot run mutations. Also: adds tests use of OAuth tokens for GraphQL We make some changes to the sessionless_authentication module in order to capture the request_authenticator, so that we can access the token scopes, without making any extra queries. We ensure we always authorize the mutation, which, like all resolvers, needs to opt in to the check. Unlike resolvers, mutations should always raise. So `BaseMutation.authorized?` raises on failure. Logic for handling scopes is pushed down to the `ObjectAuthorization` class, and encapsulated in the `ScopeValidator`, which limits the methods that can be called by resolvers.
-
Alexandru Croitor authored
When an issue is created or updated though API for import purposes we allow providing created_at and updated_at params these would then be reflected also in system notes. Only admins and project owners should be able to set these dates.
-
Mike Kozono authored
-