Commits · b0819e77b5a65d4412b42f27a513c02cc056a2b8 · nexedi / gitlab-ce

01 Jun, 2022 1 commit

Allow only job owner to run interactive terminal · b0819e77

Fabio Pitino authored Jun 01, 2022

Merge branch 'security-only-job-owner-runs-terminal-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2433

Changelog: security

b0819e77

04 May, 2022 6 commits
- Update VERSION files · 459b3357
  GitLab Release Tools Bot authored May 04, 2022
```
[merge-train skip]
```
  459b3357
- Update changelog for 14.10.2 · d1e7b917
  GitLab Release Tools Bot authored May 04, 2022
```
[ci skip]
```
  d1e7b917
- Update Gitaly version to 14.10.2 · d5fa6e03
  GitLab Release Tools Bot authored May 04, 2022
```
[ci skip]
```
  d5fa6e03
- Merge branch '14-10-stable-ee-patch-2' into '14-10-stable-ee' · cb803481
  Alessio Caiazza authored May 04, 2022
```
Prepare 14.10.2-ee release

See merge request gitlab-org/gitlab!86476
```
  cb803481
- Merge branch 'axil-pick-85888-into-14.10' into '14-10-stable-ee-patch-2' · 85f4b5bf
  Alessio Caiazza authored May 04, 2022
```
Pick #85888 into 14.10

See merge request gitlab-org/gitlab!86538
```
  85f4b5bf
- Pick #85888 into 14.10 · a3583e83
  Achilleas Pipinellis authored May 04, 2022
  
  a3583e83
03 May, 2022 10 commits

Resolve "Fork relationship is not respected for certain projects" · 881099bc
Sincheol (David) Kim authored May 02, 2022
```
See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/86102

Changelog: fixed
```
881099bc

Merge branch 'hchouraria-docs-cluster-delete-api-no-cleanup-behavior' into 'master' · f1debf96

Marcin Sedlak-Jakubowski authored Apr 27, 2022

Clarify cluster deletion behavior in APIs

See merge request gitlab-org/gitlab!85913

(cherry picked from commit df9c55ad8cd3c51027836ea57091b6eecc188c16)

15799afe Clarify cluster deletion behavior

f1debf96

Merge branch 'fix-whats-new-image-link' into 'master' · 8f0c00bc

Brian Rhea authored Apr 25, 2022

Fix a broken image link in 14.10 What's New

See merge request gitlab-org/gitlab!85836

(cherry picked from commit da623ca528dcf46f5ee09ee241edba00cb5f66a9)

47b636ed Fix a broken image link

8f0c00bc

Add documentation for mr settings audit events part 1 · 95bfdae5
Evan Read authored Apr 26, 2022
```
See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/85796

Changelog: other
```
95bfdae5

Merge branch 'pks-gitaly-document-git-exec-path-workaround' into 'master' · ee267e3c

Evan Read authored Apr 26, 2022

doc: Extend Gitaly /tmp workaround to cover Git execution path

See merge request gitlab-org/gitlab!85779

(cherry picked from commit e055f15031e62c9c16c350dce1d2b5dfa2666431)

800c4ffb doc: Extend Gitaly /tmp workaround to cover Git execution path

ee267e3c

Merge branch 'fix/84123-regression-unexpected-escaped-html-tag' into 'master' · 85145bfa

Stan Hu authored Apr 25, 2022

Fix: unexpected escaped HTML tag

See merge request gitlab-org/gitlab!85770

(cherry picked from commit 2058906ed7e18910087e9ddbcba90c1c68c8b74c)

42878fb4 Fix: unexpected escaped HTML tag

85145bfa

Fix mappings errors for ES6.8 · 5caac54a

Dmitry Gruzd authored Apr 22, 2022

See https://gitlab.com/gitlab-org/gitlab/-/merge_requests/85633

EE: true
Changelog: fixed

5caac54a

Merge branch 'whats-new-14-10' into 'master' · c5dd9bf2

Alper Akgun authored Apr 22, 2022

What's New 14.10

See merge request gitlab-org/gitlab!85625

(cherry picked from commit 383c298ec36acbde919376243b502845373f9a6f)

f1fcf95c Add what's new entries

c5dd9bf2

Merge branch 'sranasinghe-master-patch-34727' into 'master' · 4882fd58

Michael Kozono authored Apr 28, 2022

Update CI job artifacts verification status

See merge request gitlab-org/gitlab!85587

(cherry picked from commit 214c687ce73c3453bcb9b34d1d97cb55b2e40442)

62338b97 Update CI job artifacts verification status. Ref #359998
2686ca65 Adding a very important space in the table
f0cb7642 Adding object storage via object storage provider and feature flag information

4882fd58

Merge branch 'revert-' into 'master' · 90a29656

Shinya Maeda authored Mar 30, 2022

Revert "Merge branch 'morefice/fix-artifacts-content-type' into 'master'"

See merge request gitlab-org/gitlab!83917

(cherry picked from commit ac64173e)

8a6a8535 Revert "Merge branch 'morefice/fix-artifacts-content-type' into 'master'"

90a29656

02 May, 2022 1 commit
- Merge remote-tracking branch 'dev/14-10-stable-ee' into 14-10-stable-ee · cb823083
  GitLab Release Tools Bot authored May 02, 2022
  
  cb823083
29 Apr, 2022 22 commits

Update VERSION files · d849687d
GitLab Release Tools Bot authored Apr 29, 2022
```
[merge-train skip]
```
d849687d
Update changelog for 14.10.1 · a3c5a866
GitLab Release Tools Bot authored Apr 29, 2022
```
[ci skip]
```
a3c5a866
Update Gitaly version to 14.10.1 · 66d8af26
GitLab Release Tools Bot authored Apr 29, 2022
```
[ci skip]
```
66d8af26

Merge branch... · 369b831e

Alessio Caiazza authored Apr 29, 2022

Merge branch 'security-pedropombeiro/330047/use-protected-suffix-for-cache-name-2-14-10' into '14-10-stable-ee'

Add suffix to cache name to add isolation

See merge request gitlab-org/security/gitlab!2426

369b831e

Add suffix to cache name to add isolation · 9ff0233c

Pedro Pombeiro authored Apr 29, 2022

Merge branch 'security-pedropombeiro/330047/use-protected-suffix-for-cache-name-2-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2426

Changelog: security

9ff0233c

Merge branch 'security-update-import-export-pr-branches-14-10' into '14-10-stable-ee' · 24ecf93c
GitLab Release Tools Bot authored Apr 29, 2022
```
Update Import/Export merge/push access levels & exclude ci config path

See merge request gitlab-org/security/gitlab!2404
```
24ecf93c

Update Import/Export merge/push access levels & exclude ci config path · 40f32316

George Koltsov authored Apr 29, 2022

Merge branch 'security-update-import-export-pr-branches-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2404

Changelog: security

40f32316

Merge branch 'security-force-ci-schedule-ownership-14-10' into '14-10-stable-ee' · 40088098
GitLab Release Tools Bot authored Apr 29, 2022
```
Prevent maintainers from editing PipelineSchedule

See merge request gitlab-org/security/gitlab!2421
```
40088098

Prevent maintainers from editing PipelineSchedule · 2ce38054

Allison Browne authored Apr 29, 2022

Merge branch 'security-force-ci-schedule-ownership-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2421

Changelog: security

2ce38054

Merge branch 'security-262724-pypi-sha256-validation-14-10' into '14-10-stable-ee' · 822d06fa
GitLab Release Tools Bot authored Apr 29, 2022
```
Add validation to pypi file sha256 values

See merge request gitlab-org/security/gitlab!2415
```
822d06fa

Add validation to pypi file sha256 values · afc796f4

Steve Abrams authored Apr 29, 2022

Merge branch 'security-262724-pypi-sha256-validation-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2415

Changelog: security

afc796f4

Merge branch 'security-296866-conan-token-update-14-10' into '14-10-stable-ee' · e9d059fa
GitLab Release Tools Bot authored Apr 29, 2022
```
Conan Token uses PAT rather than ID in payload

See merge request gitlab-org/security/gitlab!2412
```
e9d059fa

Conan Token uses PAT rather than ID in payload · 2679b802

Steve Abrams authored Apr 29, 2022

Merge branch 'security-296866-conan-token-update-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2412

Changelog: security

2679b802

Merge branch 'security-markdown-api-issue-title-14-10' into '14-10-stable-ee' · 1b2e4915
GitLab Release Tools Bot authored Apr 29, 2022
```
[security] Fix markdown API disclosing issue titles of limited projects

See merge request gitlab-org/security/gitlab!2407
```
1b2e4915

[security] Fix markdown API disclosing issue titles of limited projects · 66088697

Brett Walker authored Apr 29, 2022

Merge branch 'security-markdown-api-issue-title-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2407

Changelog: security

66088697

Merge branch 'security-check-read-note-permissions-before-creating-todo-14-10'... · a9371185

GitLab Release Tools Bot authored Apr 29, 2022

Merge branch 'security-check-read-note-permissions-before-creating-todo-14-10' into '14-10-stable-ee'

Verify that mentioned user can read TODO's note

See merge request gitlab-org/security/gitlab!2397

a9371185

Verify that mentioned user can read TODO's note · fd166c1b

Eugenia Grieff authored Apr 29, 2022

Merge branch 'security-check-read-note-permissions-before-creating-todo-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2397

Changelog: security

fd166c1b

Merge branch 'security-654-14-10' into '14-10-stable-ee' · 965fd668
GitLab Release Tools Bot authored Apr 29, 2022
```
Invalidate markdown cache to clear up stored XSS

See merge request gitlab-org/security/gitlab!2418
```
965fd668

Invalidate markdown cache to clear up stored XSS · 0a0aee80

Sincheol (David) Kim authored Apr 29, 2022

Merge branch 'security-654-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2418

Changelog: security

0a0aee80

Merge branch 'security-342481-deploy-token-support-rack-attack-14-10' into '14-10-stable-ee' · 62918264
GitLab Release Tools Bot authored Apr 29, 2022
```
Allow rate limiting of deploy tokens

See merge request gitlab-org/security/gitlab!2395
```
62918264

Allow rate limiting of deploy tokens · 8de55091

Sean Arnold authored Apr 29, 2022

Merge branch 'security-342481-deploy-token-support-rack-attack-14-10' into '14-10-stable-ee'

See merge request gitlab-org/security/gitlab!2395

Changelog: security

8de55091

Merge branch 'security-wiki-access-from-jobs-14-10' into '14-10-stable-ee' · 8f00846e
GitLab Release Tools Bot authored Apr 29, 2022
```
Disable wiki access with CI_JOB_TOKEN when improper access level

See merge request gitlab-org/security/gitlab!2408
```
8f00846e