- 26 9月, 2019 1 次提交
-
-
由 Alexandru Croitor 提交于
-
- 25 9月, 2019 1 次提交
-
-
由 Kushal Pandya 提交于
Add argument to catch See merge request gitlab-org/gitlab-ee!15911
-
- 20 9月, 2019 2 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
由 GitLab Release Tools Bot 提交于
[ci skip]
-
- 19 9月, 2019 5 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
由 GitLab Release Tools Bot 提交于
[ci skip]
-
由 John Jarvis 提交于
Prepare 12.1.10 release See merge request gitlab-org/gitlab-foss!32979
-
由 Mayra Cabrera 提交于
Fix order-dependent spec failures with reCAPTCHA Closes #67133 See merge request gitlab-org/gitlab-ce!32771
-
由 John Jarvis 提交于
[12-1-stable] Re-add ignore_column for import columns See merge request gitlab-org/gitlab-foss!32977
-
- 18 9月, 2019 1 次提交
-
-
由 Stan Hu 提交于
This `ignore_column` was present for a while but recently removed, but to ensure we don't get error 500s let's keep it for a while.
-
- 11 9月, 2019 1 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
- 10 9月, 2019 3 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
由 GitLab Release Tools Bot 提交于
[ci skip]
-
由 GitLab Release Tools Bot 提交于
Set max-age and secure flag for pages auth cookies See merge request gitlab/gitlabhq!3380
-
- 09 9月, 2019 1 次提交
-
-
由 Vladimir Shushlin 提交于
-
- 29 8月, 2019 3 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
由 GitLab Release Tools Bot 提交于
[ci skip]
-
由 Jan Provaznik 提交于
Merge branch '66641-broken-master-real-http-connections-are-disabled-unregistered-request' into 'master' Use `stub_full_request` to fix spec failure Closes #66641 See merge request gitlab-org/gitlab-ce!32259
-
- 28 8月, 2019 4 次提交
-
-
由 John Jarvis 提交于
This reverts commit 4f6293e2.
-
由 GitLab Release Tools Bot 提交于
Return NO_ACCESS if user is nil See merge request gitlab/gitlabhq!3389
-
由 Heinrich Lee Yu 提交于
Also change test URL sequest to .test TLD
-
由 Patrick Derichs 提交于
-
- 27 8月, 2019 4 次提交
-
-
由 GitLab Release Tools Bot 提交于
-
由 GitLab Release Tools Bot 提交于
[ci skip]
-
由 GitLab Release Tools Bot 提交于
Avoid exposing unaccessible repo data upon GFM post processing See merge request gitlab/gitlabhq!3383
-
由 Oswaldo Ferreira 提交于
When post-processing relative links to absolute links RelativeLinkFilter didn't take into consideration that internal repository data could be exposed for users that do not have repository access to the project. This commit solves that by checking whether the user can `download_code` at this repository, avoiding any processing of this filter if the user can't. Additionally, if we're processing for a group ( no project was given), we check if the user can read it in order to expand the href as an extra. That doesn't seem necessarily a breach now, but an extra check doesn't hurt as after all the user needs to be able to `read_group`.
-
- 26 8月, 2019 14 次提交
-
-
由 GitLab Release Tools Bot 提交于
Prevent disclosure of merge request id via email See merge request gitlab/gitlabhq!3351
-
由 GitLab Release Tools Bot 提交于
Send TODOs for comments on commits correctly See merge request gitlab/gitlabhq!3366
-
由 GitLab Release Tools Bot 提交于
Require a captcha after unique failed logins from the same IP See merge request gitlab/gitlabhq!3295
-
由 Małgorzata Ksionek 提交于
Add method to store session ids by ip Add new specs for storing session ids Add cleaning up records after login Add retrieving anonymous sessions Add login recaptcha setting Add new setting to sessions controller Add conditions for showing captcha Add sessions controller specs Add admin settings specs for login protection Add new settings to api Add stub to devise spec Add new translation key Add cr remarks Rename class call Add cr remarks Change if-clause for consistency Add cr remarks Add code review remarks Refactor AnonymousSession class Add changelog entry Move AnonymousSession class to lib Move store unauthenticated sessions to sessions controller Move link to recaptcha info Regenerate text file Improve copy on the spam page Change action filter for storing anonymous sessions Fix rubocop offences Add code review remarks Fix schema Update schema version
-
由 GitLab Release Tools Bot 提交于
Use image proxy to mitigate stealing ip addresses See merge request gitlab/gitlabhq!3231
-
由 GitLab Release Tools Bot 提交于
Limit the size of issuable description and comments See merge request gitlab/gitlabhq!3271
-
由 GitLab Release Tools Bot 提交于
Permission fix for MergeRequestsController#pipeline_status See merge request gitlab/gitlabhq!3278
-
由 GitLab Release Tools Bot 提交于
Enforce max chars and max render time in markdown math See merge request gitlab/gitlabhq!3287
-
由 GitLab Release Tools Bot 提交于
DNS Rebind SSRF in Kubernetes Integration See merge request gitlab/gitlabhq!3289
-
由 GitLab Release Tools Bot 提交于
Fix HTML injection for label description See merge request gitlab/gitlabhq!3298
-
由 GitLab Release Tools Bot 提交于
Ensure only authorised users can create notes on merge requests and issues See merge request gitlab/gitlabhq!3307
-
由 GitLab Release Tools Bot 提交于
Filter out old system notes for epics in notes api endpoint response See merge request gitlab/gitlabhq!3310
-
由 GitLab Release Tools Bot 提交于
Fix DNS rebind vulnerability for JIRA integration See merge request gitlab/gitlabhq!3311
-
由 GitLab Release Tools Bot 提交于
Add merge note type as cross reference See merge request gitlab/gitlabhq!3327
-