CHANGELOG 169 KB
Newer Older
1 2
Please view this file on the master branch, on stable branches it's out of date.

Rémy Coutable's avatar
Rémy Coutable committed
3
v 8.10.0 (unreleased)
4
  - Expose {should,force}_remove_source_branch (Ben Boeckel)
5
  - Disable PostgreSQL statement timeout during migrations
Tiago Botelho's avatar
Tiago Botelho committed
6
  - Fix projects dropdown loading performance with a simplified api cal. !5113 (tiagonbotelho)
7
  - Fix commit builds API, return all builds for all pipelines for given commit. !4849
8
  - Replace Haml with Hamlit to make view rendering faster. !3666
9
  - Refresh the branch cache after `git gc` runs
10
  - Refactor repository paths handling to allow multiple git mount points
11
  - Optimize system note visibility checking by memoizing the visible reference count !5070
12
  - Add Application Setting to configure default Repository Path for new projects
13
  - Delete award emoji when deleting a user
14
  - Remove pinTo from Flash and make inline flash messages look nicer !4854 (winniehell)
Rémy Coutable's avatar
Rémy Coutable committed
15
  - Wrap code blocks on Activies and Todos page. !4783 (winniehell)
16
  - Align flash messages with left side of page content !4959 (winniehell)
17
  - Display tooltip for "Copy to Clipboard" button !5164 (winniehell)
18
  - Use default cursor for table header of project files !5165 (winniehell)
19
  - Display last commit of deleted branch in push events !4699 (winniehell)
20
  - Escape file extension when parsing search results !5141 (winniehell)
21
  - Apply the trusted_proxies config to the rack request object for use with rack_attack
22
  - Upgrade to Rails 4.2.7. !5236
23
  - Add Sidekiq queue duration to transaction metrics.
24
  - Add a new column `artifacts_size` to table `ci_builds` !4964
25
  - Let Workhorse serve format-patch diffs
26
  - Display tooltip for mentioned users and groups !5261 (winniehell)
27
  - Added day name to contribution calendar tooltips
28
  - Make images fit to the size of the viewport !4810
29
  - Fix check for New Branch button on Issue page !4630 (winniehell)
Rémy Coutable's avatar
Rémy Coutable committed
30
  - Fix MR-auto-close text added to description. !4836
31
  - Support U2F devices in Firefox. !5177
32
  - Fix issue, preventing users w/o push access to sort tags !5105 (redetection)
33
  - Add Spring EmojiOne updates.
34
  - Added Rake task for tracking deployments !5320
35
  - Fix fetching LFS objects for private CI projects
Douwe Maan's avatar
Douwe Maan committed
36
  - Add syntax for multiline blockquote using `>>>` fence !3954
37
  - Fix viewing notification settings when a project is pending deletion
38 39
  - Updated compare dropdown menus to use GL dropdown
  - Eager load award emoji on notes
40
  - Fix pagination when sorting by columns with lots of ties (like priority)
41
  - The Markdown reference parsers now re-use query results to prevent running the same queries multiple times !5020
Phil Hughes's avatar
Phil Hughes committed
42
  - Updated project header design
Phil Hughes's avatar
Phil Hughes committed
43
  - Issuable collapsed assignee tooltip is now the users name
44
  - Exclude email check from the standard health check
45
  - Updated layout for Projects, Groups, Users on Admin area !4424
46
  - Fix changing issue state columns in milestone view
47
  - Update health_check gem to version 2.1.0
48
  - Add notification settings dropdown for groups
49
  - Render inline diffs for multiple changed lines following eachother
50
  - Wildcards for protected branches. !4665
51
  - Allow importing from Github using Personal Access Tokens. (Eric K Idema)
52
  - API: Expose `due_date` for issues (Robert Schilling)
53
  - API: Todos !3188 (Robert Schilling)
54
  - API: Expose shared groups for projects and shared projects for groups !5050 (Robert Schilling)
55
  - Add "Enabled Git access protocols" to Application Settings
56
  - Diffs will create button/diff form on demand no on server side
57
  - Reduce size of HTML used by diff comment forms
58
  - Fix user creation with stronger minimum password requirements !4054 (nathan-pmt)
59
  - Only show New Snippet button to users that can create snippets.
60
  - PipelinesFinder uses git cache data
61
  - Track a user who created a pipeline
62
  - Actually render old and new sections of parallel diff next to each other
63
  - Throttle the update of `project.pushes_since_gc` to 1 minute.
64 65
  - Allow expanding and collapsing files in diff view (!4990)
  - Collapse large diffs by default (!4990)
66
  - Fix mentioned users list on diff notes
67
  - Fix creation of deployment on build that is retried, redeployed or rollback
68
  - Check for conflicts with existing Project's wiki path when creating a new project.
69
  - Show last push widget in upstream after push to fork
70
  - Fix stage status shown for pipelines
71
  - Cache todos pending/done dashboard query counts.
72
  - Don't instantiate a git tree on Projects show default view
Paco Guzman's avatar
Paco Guzman committed
73
  - Bump Rinku to 2.0.0
74
  - Remove unused front-end variable -> default_issues_tracker
75
  - ObjectRenderer retrieve renderer content using Rails.cache.read_multi
76
  - Better caching of git calls on ProjectsController#show.
77
  - Avoid to retrieve MR closes_issues as much as possible.
78
  - Add API endpoint for a group issues !4520 (mahcsig)
79
  - Add Bugzilla integration !4930 (iamtjg)
Paco Guzman's avatar
Paco Guzman committed
80
  - Instrument Rinku usage
81
  - Be explicit to define merge request discussion variables
82
  - Metrics for Rouge::Plugins::Redcarpet and Rouge::Formatters::HTMLGitlab
83
  - RailsCache metris now includes fetch_hit/fetch_miss and read_hit/read_miss info.
84
  - Allow [ci skip] to be in any case and allow [skip ci]. !4785 (simon_w)
85
  - Set import_url validation to be more strict
86
  - Memoize MR merged/closed events retrieval
87
  - Don't render discussion notes when requesting diff tab through AJAX
Josh Frye's avatar
Josh Frye committed
88
  - Add basic system information like memory and disk usage to the admin panel
89
  - Don't garbage collect commits that have related DB records like comments
90
  - More descriptive message for git hooks and file locks
Dino M's avatar
Dino M committed
91
  - Aliases of award emoji should be stored as original name. !5060 (dixpac)
92
  - Handle custom Git hook result in GitLab UI
93
  - Allow to access Container Registry for Public and Internal projects
94
  - Allow '?', or '&' for label names
95
  - Fix importer for GitHub Pull Requests when a branch was reused across Pull Requests
96
  - Add date when user joined the team on the member page
97
  - Fix 404 redirect after validation fails importing a GitLab project
98
  - Added setting to set new users by default as external !4545 (Dravere)
99
  - Add min value for project limit field on user's form !3622 (jastkand)
100
  - Reset project pushes_since_gc when we enqueue the git gc call
101
  - Add reminder to not paste private SSH keys !4399 (Ingo Blechschmidt)
102
  - Remove duplicate `description` field in `MergeRequest` entities (Ben Boeckel)
Rasim Demirbay's avatar
Rasim Demirbay committed
103
  - Style of import project buttons were fixed in the new project page. !5183 (rdemirbay)
104
  - Fix GitHub client requests when rate limit is disabled
105
  - Optimistic locking for Issues and Merge Requests (Title and description overriding prevention)
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
106
  - Redesign Builds and Pipelines pages
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
107
  - Change status color and icon for running builds
108
  - Fix markdown rendering for: consecutive labels references, label references that begin with a digit or contains `.`
109
  - Project export filename now includes the project and namespace path
James Lopez's avatar
James Lopez committed
110
  - Fix last update timestamp on issues not preserved on gitlab.com and project imports
James Lopez's avatar
James Lopez committed
111
  - Fix issues importing projects from EE to CE
112
  - Fix creating group with space in group path
113
  - Create Todos for Issue author when assign or mention himself (Katarzyna Kobierska)
James Lopez's avatar
James Lopez committed
114
  - Limit the number of retries on error to 3 for exporting projects
Rémy Coutable's avatar
Rémy Coutable committed
115

116 117 118 119 120
v 8.9.6
  - Fix importing of events under notes for GitLab projects. !5154
  - Fix log statements in import/export. !5129
  - Fix commit avatar alignment in compare view. !5128
  - Fix broken migration in MySQL. !5005
121
  - Overwrite Host and X-Forwarded-Host headers in NGINX !5213
122
  - Keeps issue number when importing from Gitlab.com
Rémy Coutable's avatar
Rémy Coutable committed
123

James Lopez's avatar
James Lopez committed
124 125 126
v 8.9.7 (unreleased)
  - Fix import_data wrongly saved as a result of an invalid import_url

James Lopez's avatar
James Lopez committed
127
v 8.9.6
James Lopez's avatar
James Lopez committed
128
  - Fix importing of events under notes for GitLab projects
Rémy Coutable's avatar
Rémy Coutable committed
129

130 131 132
v 8.9.5
  - Add more debug info to import/export and memory killer. !5108
  - Fixed avatar alignment in new MR view. !5095
133
  - Fix diff comments not showing up in activity feed. !5069
134 135 136 137 138 139 140 141 142
  - Add index on both Award Emoji user and name. !5061
  - Downgrade to Redis 3.2.2 due to massive memory leak with Sidekiq. !5056
  - Re-enable import button when import process fails due to namespace already being taken. !5053
  - Fix snippets comments not displayed. !5045
  - Fix emoji paths in relative root configurations. !5027
  - Fix issues importing events in Import/Export. !4987
  - Fixed 'use shortcuts' button on docs. !4979
  - Admin should be able to turn shared runners into specific ones. !4961
  - Update RedCloth to 4.3.2 for CVE-2012-6684. !4929 (Takuya Noguchi)
143
  - Improve the request / withdraw access button. !4860
144

145 146 147 148 149 150 151 152 153 154 155 156 157
v 8.9.4
  - Fix privilege escalation issue with OAuth external users.
  - Ensure references to private repos aren't shown to logged-out users.
  - Fixed search field blur not removing focus. !4704
  - Resolve "Sub nav isn't showing on file view". !4890
  - Fixes middle click and double request when navigating through the file browser. !4891
  - Fixed URL on label button when filtering. !4897
  - Fixed commit avatar alignment. !4933
  - Do not show build retry link when build is active. !4967
  - Fix restore Rake task warning message output. !4980
  - Handle external issues in IssueReferenceFilter. !4988
  - Expiry date on pinned nav cookie. !5009
  - Updated breakpoint for sidebar pinning. !5019
Alfredo Sumaran's avatar
Alfredo Sumaran committed
158

159 160 161 162 163 164 165 166 167 168 169 170 171 172
v 8.9.3
  - Fix encrypted data backwards compatibility after upgrading attr_encrypted gem. !4963
  - Fix rendering of commit notes. !4953
  - Resolve "Pin should show up at 1280px min". !4947
  - Switched mobile button icons to ellipsis and angle. !4944
  - Correctly returns todo ID after creating todo. !4941
  - Better debugging for memory killer middleware. !4936
  - Remove duplicate new page btn from edit wiki. !4904
  - Use clock_gettime for all performance timestamps. !4899
  - Use memorized tags array when searching tags by name. !4859
  - Fixed avatar alignment in new MR view. !4901
  - Removed fade when filtering results. !4932
  - Fix missing avatar on system notes. !4954
  - Reduce overhead and optimize ProjectTeam#max_member_access performance. !4973
173
  - Use update_columns to bypass all the dirty code on active_record. !4985
174
  - Fix restore Rake task warning message output !4980
James Lopez's avatar
James Lopez committed
175

Patricio Cano's avatar
Patricio Cano committed
176
v 8.9.2
177 178
  - Fix visibility of snippets when searching.
  - Fix an information disclosure when requesting access to a group containing private projects.
Patricio Cano's avatar
Patricio Cano committed
179 180
  - Update omniauth-saml to 1.6.0 !4951

James Lopez's avatar
James Lopez committed
181
v 8.9.1
182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221
  - Refactor labels documentation. !3347
  - Eager load award emoji on notes. !4628
  - Fix some CI wording in documentation. !4660
  - Document `GIT_STRATEGY` and `GIT_DEPTH`. !4720
  - Add documentation for the export & import features. !4732
  - Add some docs for Docker Registry configuration. !4738
  - Ensure we don't send the "access request declined" email to access requesters on project deletion. !4744
  - Display group/project access requesters separately in the admin area. !4798
  - Add documentation and examples for configuring cloud storage for registry images. !4812
  - Clarifies documentation about artifact expiry. !4831
  - Fix the Network graph links. !4832
  - Fix MR-auto-close text added to description. !4836
  - Add documentation for award emoji now that comments can be awarded with emojis. !4839
  - Fix typo in export failure email. !4847
  - Fix header vertical centering. !4170
  - Fix subsequent SAML sign ins. !4718
  - Set button label when picking an option from status dropdown. !4771
  - Prevent invalid URLs from raising exceptions in WikiLink Filter. !4775
  - Handle external issues in IssueReferenceFilter. !4789
  - Support for rendering/redacting multiple documents. !4828
  - Update Todos documentation and screenshots to include new functionality. !4840
  - Hide nav arrows by default. !4843
  - Added bottom padding to label color suggestion link. !4845
  - Use jQuery objects in ref dropdown. !4850
  - Fix GitLab project import issues related to notes and builds. !4855
  - Restrict header logo to 36px so it doesn't overflow. !4861
  - Fix unwanted label unassignment. !4863
  - Fix mobile Safari bug where horizontal nav arrows would flicker on scroll. !4869
  - Restore old behavior around diff notes to outdated discussions. !4870
  - Fix merge requests project settings help link anchor. !4873
  - Fix 404 when accessing pipelines as guest user on public projects. !4881
  - Remove width restriction for logo on sign-in page. !4888
  - Bump gitlab_git to 10.2.3 to fix false truncated warnings with ISO-8559 files. !4884
  - Apply selected value as label. !4886
  - Fix temp file being deleted after the request while importing a GitLab project. !4894
  - Fix pagination when sorting by columns with lots of ties (like priority)
  - Implement Subresource Integrity for CSS and JavaScript assets. This prevents malicious assets from loading in the case of a CDN compromise.
  - Fix user creation with stronger minimum password requirements !4054 (nathan-pmt)
  - Fix a wrong MR status when merge_when_build_succeeds & project.only_allow_merge_if_build_succeeds are true. !4912
  - Add SMTP as default delivery method to match gitlab-org/omnibus-gitlab!826. !4915
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
222
  - Remove duplicate 'New Page' button on edit wiki page
James Lopez's avatar
James Lopez committed
223

Rémy Coutable's avatar
Rémy Coutable committed
224
v 8.9.0
225
  - Fix group visibility form layout in application settings
226
  - Fix builds API response not including commit data
227
  - Fix error when CI job variables key specified but not defined
228
  - Fix pipeline status when there are no builds in pipeline
229
  - Fix Error 500 when using closes_issues API with an external issue tracker
230
  - Add more information into RSS feed for issues (Alexander Matyushentsev)
Alfredo Sumaran's avatar
Alfredo Sumaran committed
231
  - Bulk assign/unassign labels to issues.
Alfredo Sumaran's avatar
Alfredo Sumaran committed
232
  - Ability to prioritize labels !4009 / !3205 (Thijs Wouters)
233
  - Show Star and Fork buttons on mobile.
234
  - Performance improvements on RelativeLinkFilter
235
  - Fix endless redirections when accessing user OAuth applications when they are disabled
236
  - Allow enabling wiki page events from Webhook management UI
Stan Hu's avatar
Stan Hu committed
237
  - Bump rouge to 1.11.0
238
  - Fix issue with arrow keys not working in search autocomplete dropdown
239 240
  - Fix an issue where note polling stopped working if a window was in the
    background during a refresh.
241
  - Pre-processing Markdown now only happens when needed
242
  - Make EmailsOnPushWorker use Sidekiq mailers queue
243
  - Redesign all Devise emails. !4297
244
  - Don't show 'Leave Project' to group members
245
  - Fix wiki page events' webhook to point to the wiki repository
246
  - Add a border around images to differentiate them from the background.
247
  - Don't show tags for revert and cherry-pick operations
248
  - Show image ID on registry page
249
  - Fix issue todo not remove when leave project !4150 (Long Nguyen)
250
  - Allow customisable text on the 'nearly there' page after a user signs up
251
  - Bump recaptcha gem to 3.0.0 to remove deprecated stoken support
252
  - Fix SVG sanitizer to allow more elements
253
  - Allow forking projects with restricted visibility level
254
  - Added descriptions to notification settings dropdown
255
  - Improve note validation to prevent errors when creating invalid note via API
256
  - Reduce number of fog gem dependencies
257
  - Add number of merge requests for a given milestone to the milestones view.
258
  - Implement a fair usage of shared runners
259
  - Remove project notification settings associated with deleted projects
260
  - Fix 404 page when viewing TODOs that contain milestones or labels in different projects
261
  - Add a metric for the number of new Redis connections created by a transaction
262
  - Fix Error 500 when viewing a blob with binary characters after the 1024-byte mark
263
  - Redesign navigation for project pages
Sean McGivern's avatar
Sean McGivern committed
264
  - Fix images in sign-up confirmation email
265
  - Added shortcut 'y' for copying a files content hash URL #14470
266
  - Fix groups API to list only user's accessible projects
Fatih Acet's avatar
Fatih Acet committed
267
  - Fix horizontal scrollbar for long commit message.
268
  - GitLab Performance Monitoring now tracks the total method execution time and call count per method
Kamil Trzciński's avatar
Kamil Trzciński committed
269
  - Add Environments and Deployments
270
  - Redesign account and email confirmation emails
271
  - Don't fail builds for projects that are deleted
272
  - Support Docker Registry manifest v1
273
  - `git clone https://host/namespace/project` now works, in addition to using the `.git` suffix
Stan Hu's avatar
Stan Hu committed
274
  - Bump nokogiri to 1.6.8
275
  - Use gitlab-shell v3.0.0
276
  - Fixed alignment of download dropdown in merge requests
277
  - Upgrade to jQuery 2
Phil Hughes's avatar
Phil Hughes committed
278
  - Adds selected branch name to the dropdown toggle
Patricio Cano's avatar
Patricio Cano committed
279
  - Add API endpoint for Sidekiq Metrics !4653
280
  - Refactoring Award Emoji with API support for Issues and MergeRequests
281
  - Use Knapsack to evenly distribute tests across multiple nodes
282
  - Add `sha` parameter to MR merge API, to ensure only reviewed changes are merged
283
  - Don't allow MRs to be merged when commits were added since the last review / page load
Stan Hu's avatar
Stan Hu committed
284
  - Add DB index on users.state
285
  - Limit email on push diff size to 30 files / 150 KB
286
  - Add rake task 'gitlab:db:configure' for conditionally seeding or migrating the database
Aran Koning's avatar
Aran Koning committed
287
  - Changed the Slack build message to use the singular duration if necessary (Aran Koning)
288
  - Fix race condition on merge when build succeeds
289
  - Added shortcut to focus filter search fields and added documentation #18120
290
  - Links from a wiki page to other wiki pages should be rewritten as expected
291
  - Add option to project to only allow merge requests to be merged if the build succeeds (Rui Santos)
292
  - Added navigation shortcuts to the project pipelines, milestones, builds and forks page. !4393
293
  - Fix issues filter when ordering by milestone
294
  - Disable SAML account unlink feature
295
  - Added artifacts:when to .gitlab-ci.yml - this requires GitLab Runner 1.3
296
  - Bamboo Service: Fix missing credentials & URL handling when base URL contains a path (Benjamin Schmid)
297
  - TeamCity Service: Fix URL handling when base URL contains a path
Alfredo Sumaran's avatar
Alfredo Sumaran committed
298
  - Todos will display target state if issuable target is 'Closed' or 'Merged'
299
  - Validate only and except regexp
300
  - Fix bug when sorting issues by milestone due date and filtering by two or more labels
301
  - POST to API /projects/:id/runners/:runner_id would give 409 if the runner was already enabled for this project
302
  - Add support for using Yubikeys (U2F) for two-factor authentication
303
  - Link to blank group icon doesn't throw a 404 anymore
Josh Frye's avatar
Josh Frye committed
304
  - Remove 'main language' feature
305
  - Toggle whitespace button now available for compare branches diffs #17881
306
  - Pipelines can be canceled only when there are running builds
Timothy Andrew's avatar
Timothy Andrew committed
307
  - Allow authentication using personal access tokens
308
  - Use downcased path to container repository as this is expected path by Docker
Kamil Trzciński's avatar
Kamil Trzciński committed
309
  - Allow to use CI token to fetch LFS objects
310
  - Custom notification settings
311
  - Projects pending deletion will render a 404 page
312
  - Measure queue duration between gitlab-workhorse and Rails
313
  - Added Gfm autocomplete for labels
314
  - Added edit note 'up' shortcut documentation to the help panel and docs screenshot #18114
315
  - Make Omniauth providers specs to not modify global configuration
316
  - Remove unused JiraIssue class and replace references with ExternalIssue. !4659 (Ilan Shamir)
317
  - Make authentication service for Container Registry to be compatible with < Docker 1.11
318
  - Make it possible to lock a runner from being enabled for other projects
319
  - Add Application Setting to configure Container Registry token expire delay (default 5min)
320
  - Cache assigned issue and merge request counts in sidebar nav
321
  - Use Knapsack only in CI environment
322
  - Updated project creation page to match new UI #2542
Josh Frye's avatar
Josh Frye committed
323
  - Cache project build count in sidebar nav
Fatih Acet's avatar
Fatih Acet committed
324
  - Add milestone expire date to the right sidebar
Phil Hughes's avatar
Phil Hughes committed
325
  - Manually mark a issue or merge request as a todo
326
  - Fix markdown_spec to use before instead of before(:all) to properly cleanup database after testing
327
  - Reduce number of queries needed to render issue labels in the sidebar
James Lopez's avatar
James Lopez committed
328
  - Improve error handling importing projects
329
  - Remove duplicated notification settings
330
  - Put project Files and Commits tabs under Code tab
331
  - Decouple global notification level from user model
Connor Shea's avatar
Connor Shea committed
332
  - Replace Colorize with Rainbow for coloring console output in Rake tasks.
Douwe Maan's avatar
Douwe Maan committed
333
  - Add workhorse controller and API helpers
Connor Shea's avatar
Connor Shea committed
334
  - An indicator is now displayed at the top of the comment field for confidential issues.
Fatih Acet's avatar
Fatih Acet committed
335
  - Show categorised search queries in the search autocomplete
336
  - RepositoryCheck::SingleRepositoryWorker public and private methods are now instrumented
337
  - Dropdown for `.gitlab-ci.yml` templates
Alejandro Rodríguez's avatar
Alejandro Rodríguez committed
338
  - Improve issuables APIs performance when accessing notes !4471
339
  - Add sorting dropdown to tags page !4423
Alfredo Sumaran's avatar
Alfredo Sumaran committed
340
  - External links now open in a new tab
341
  - Prevent default actions of disabled buttons and links
Alfredo Sumaran's avatar
Alfredo Sumaran committed
342
  - Markdown editor now correctly resets the input value on edit cancellation !4175
343
  - Toggling a task list item in a issue/mr description does not creates a Todo for mentions
Phil Hughes's avatar
Phil Hughes committed
344
  - Improved UX of date pickers on issue & milestone forms
345
  - Cache on the database if a project has an active external issue tracker.
346
  - Put project Labels and Milestones pages links under Issues and Merge Requests tabs as subnav
James Lopez's avatar
James Lopez committed
347
  - GitLab project import and export functionality
348
  - All classes in the Banzai::ReferenceParser namespace are now instrumented
349
  - Remove deprecated issues_tracker and issues_tracker_id from project model
350
  - Allow users to create confidential issues in private projects
351
  - Measure CPU time for instrumented methods
352
  - Instrument private methods and private instance methods by default instead just public methods
353
  - Only show notes through JSON on confidential issues that the user has access to
354 355
  - Updated the allocations Gem to version 1.0.5
  - The background sampler now ignores classes without names
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
356 357 358 359
  - Update design for `Close` buttons
  - New custom icons for navigation
  - Horizontally scrolling navigation on project, group, and profile settings pages
  - Hide global side navigation by default
Fatih Acet's avatar
Fatih Acet committed
360
  - Fix project Star/Unstar project button tooltip
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
361
  - Remove tanuki logo from side navigation; center on top nav
362
  - Include user relationships when retrieving award_emoji
363
  - Various associations are now eager loaded when parsing issue references to reduce the number of queries executed
364
  - Set inverse_of for Project/Service association to reduce the number of queries
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
365
  - Update tanuki logo highlight/loading colors
366
  - Remove explicit Gitlab::Metrics.action assignments, are already automatic.
367
  - Use Git cached counters for branches and tags on project page
368
  - Cache participable participants in an instance variable.
369
  - Filter parameters for request_uri value on instrumented transactions.
370
  - Remove duplicated keys add UNIQUE index to keys fingerprint column
371
  - ExtractsPath get ref_names from repository cache, if not there access git.
372
  - Show a flash warning about the error detail of XHR requests which failed with status code 404 and 500
373
  - Cache user todo counts from TodoService
374
  - Ensure Todos counters doesn't count Todos for projects pending delete
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
375
  - Add left/right arrows horizontal navigation
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
376
  - Add tooltip to pin/unpin navbar
Annabel Dunstone Gray's avatar
Annabel Dunstone Gray committed
377
  - Add new sub nav style to Wiki and Graphs sub navigation
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
378

379 380 381 382
v 8.8.7
  - Fix privilege escalation issue with OAuth external users.
  - Ensure references to private repos aren't shown to logged-out users.

383 384 385 386
v 8.8.6
  - Fix visibility of snippets when searching.
  - Update omniauth-saml to 1.6.0 !4951

387 388 389 390 391 392 393 394 395 396
v 8.8.5
  - Import GitHub repositories respecting the API rate limit !4166
  - Fix todos page throwing errors when you have a project pending deletion !4300
  - Disable Webhooks before proceeding with the GitHub import !4470
  - Fix importer for GitHub comments on diff !4488
  - Adjust the SAML control flow to allow LDAP identities to be added to an existing SAML user !4498
  - Fix incremental trace upload API when using multi-byte UTF-8 chars in trace !4541
  - Prevent unauthorized access for projects build traces
  - Forbid scripting for wiki files
  - Only show notes through JSON on confidential issues that the user has access to
397
  - Banzai::Filter::UploadLinkFilter use XPath instead CSS expressions
398
  - Banzai::Filter::ExternalLinkFilter use XPath instead CSS expressions
399 400 401

v 8.8.4
  - Fix LDAP-based login for users with 2FA enabled. !4493
402 403
  - Added descriptions to notification settings dropdown
  - Due date can be removed from milestones
404

James Lopez's avatar
James Lopez committed
405
v 8.8.3
406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422
  - Fix 404 page when viewing TODOs that contain milestones or labels in different projects. !4312
  - Fixed JS error when trying to remove discussion form. !4303
  - Fixed issue with button color when no CI enabled. !4287
  - Fixed potential issue with 2 CI status polling events happening. !3869
  - Improve design of Pipeline view. !4230
  - Fix gitlab importer failing to import new projects due to missing credentials. !4301
  - Fix import URL migration not rescuing with the correct Error. !4321
  - Fix health check access token changing due to old application settings being used. !4332
  - Make authentication service for Container Registry to be compatible with Docker versions before 1.11. !4363
  - Add Application Setting to configure Container Registry token expire delay (default 5 min). !4364
  - Pass the "Remember me" value to the 2FA token form. !4369
  - Fix incorrect links on pipeline page when merge request created from fork.  !4376
  - Use downcased path to container repository as this is expected path by Docker. !4420
  - Fix wiki project clone address error (chujinjin). !4429
  - Fix serious performance bug with rendering Markdown with InlineDiffFilter.  !4392
  - Fix missing number on generated ordered list element. !4437
  - Prevent disclosure of notes on confidential issues in search results.
James Lopez's avatar
James Lopez committed
423

424 425 426 427 428 429 430 431 432 433
v 8.8.2
  - Added remove due date button. !4209
  - Fix Error 500 when accessing application settings due to nil disabled OAuth sign-in sources. !4242
  - Fix Error 500 in CI charts by gracefully handling commits with no durations. !4245
  - Fix table UI on CI builds page. !4249
  - Fix backups if registry is disabled. !4263
  - Fixed issue with merge button color. !4211
  - Fixed issue with enter key selecting wrong option in dropdown. !4210
  - When creating a .gitignore file a dropdown with templates will be provided. !4075
  - Fix concurrent request when updating build log in browser. !4183
434

435 436
v 8.8.1
  - Add documentation for the "Health Check" feature
437
  - Allow anonymous users to access a public project's pipelines !4233
438
  - Fix MySQL compatibility in zero downtime migrations helpers
439
  - Fix the CI login to Container Registry (the gitlab-ci-token user)
440

441
v 8.8.0
Douwe Maan's avatar
Douwe Maan committed
442
  - Implement GFM references for milestones (Alejandro Rodríguez)
443
  - Snippets tab under user profile. !4001 (Long Nguyen)
444
  - Fix error when using link to uploads in global snippets
445
  - Fix Error 500 when attempting to retrieve project license when HEAD points to non-existent ref
446
  - Assign labels and milestone to target project when moving issue. !3934 (Long Nguyen)
447
  - Use a case-insensitive comparison in sanitizing URI schemes
448
  - Toggle sign-up confirmation emails in application settings
449
  - Make it possible to prevent tagged runner from picking untagged jobs
450 451
  - Added `InlineDiffFilter` to the markdown parser. (Adam Butler)
  - Added inline diff styling for `change_title` system notes. (Adam Butler)
452
  - Project#open_branches has been cleaned up and no longer loads entire records into memory.
453
  - Escape HTML in commit titles in system note messages
454
  - Improve design of Pipeline View
Kamil Trzciński's avatar
Kamil Trzciński committed
455
  - Fix scope used when accessing container registry
456
  - Fix creation of Ci::Commit object which can lead to pending, failed in some scenarios
457
  - Improve multiple branch push performance by memoizing permission checking
458
  - Log to application.log when an admin starts and stops impersonating a user
459
  - Changing the confidentiality of an issue now creates a new system note (Alex Moore-Niemi)
460 461
  - Updated gitlab_git to 10.1.0
  - GitAccess#protected_tag? no longer loads all tags just to check if a single one exists
462
  - Reduce delay in destroying a project from 1-minute to immediately
463
  - Make build status canceled if any of the jobs was canceled and none failed
Stan Hu's avatar
Stan Hu committed
464
  - Upgrade Sidekiq to 4.1.2
DJ Mountney's avatar
DJ Mountney committed
465
  - Added /health_check endpoint for checking service status
466
  - Make 'upcoming' filter for milestones work better across projects
467
  - Sanitize repo paths in new project error message
468
  - Bump mail_room to 0.7.0 to fix stuck IDLE connections
469
  - Remove future dates from contribution calendar graph.
470
  - Support e-mail notifications for comments on project snippets
471
  - Fix API leak of notes of unauthorized issues, snippets and merge requests
472
  - Use ActionDispatch Remote IP for Akismet checking
473
  - Fix error when visiting commit builds page before build was updated
474
  - Add 'l' shortcut to open Label dropdown on issuables and 'i' to create new issue on a project
475
  - Update SVG sanitizer to conform to SVG 1.1
476
  - Speed up push emails with multiple recipients by only generating the email once
Phil Hughes's avatar
Phil Hughes committed
477
  - Updated search UI
Kamil Trzciński's avatar
Kamil Trzciński committed
478
  - Added authentication service for Container Registry
479
  - Display informative message when new milestone is created
480
  - Sanitize milestones and labels titles
481
  - Support multi-line tag messages. !3833 (Calin Seciu)
482
  - Force users to reset their password after an admin changes it
483
  - Allow "NEWS" and "CHANGES" as alternative names for CHANGELOG. !3768 (Connor Shea)
Alfredo Sumaran's avatar
Alfredo Sumaran committed
484
  - Added button to toggle whitespaces changes on diff view
485
  - Backport GitHub Enterprise import support from EE
486
  - Create tags using Rugged for performance reasons. !3745
Felipe's avatar
Felipe committed
487
  - Allow guests to set notification level in projects
488
  - API: Expose Issue#user_notes_count. !3126 (Anton Popov)
489
  - Don't show forks button when user can't view forks
490
  - Fix atom feed links and rendering
491
  - Files over 5MB can only be viewed in their raw form, files over 1MB without highlighting !3718
492
  - Add support for supressing text diffs using .gitattributes on the default branch (Matt Oakes)
493
  - Add eager load paths to help prevent dependency load issues in Sidekiq workers. !3724
Jacob Schatz's avatar
Jacob Schatz committed
494
  - Added multiple colors for labels in dropdowns when dups happen.
495
  - Show commits in the same order as `git log`
496
  - Improve description for the Two-factor Authentication sign-in screen. (Connor Shea)
497
  - API support for the 'since' and 'until' operators on commit requests (Paco Guzman)
498
  - Fix Gravatar hint in user profile when Gravatar is disabled. !3988 (Artem Sidorenko)
499
  - Expire repository exists? and has_visible_content? caches after a push if necessary
500
  - Fix unintentional filtering bug in Issue/MR sorted by milestone due (Takuya Noguchi)
501
  - Fix adding a todo for private group members (Ahmad Sherif)
Alfredo Sumaran's avatar
Alfredo Sumaran committed
502
  - Bump ace-rails-ap gem version from 2.0.1 to 4.0.2 which upgrades Ace Editor from 1.1.2 to 1.2.3
503
  - Total method execution timings are no longer tracked
Andrei Gliga's avatar
Andrei Gliga committed
504
  - Allow Admins to remove the Login with buttons for OAuth services and still be able to import !4034. (Andrei Gliga)
505
  - Add API endpoints for un/subscribing from/to a label. !4051 (Ahmad Sherif)
506 507
  - Hide left sidebar on phone screens to give more space for content
  - Redesign navigation for profile and group pages
508
  - Add counter metrics for rails cache
509
  - Import pull requests from GitHub where the source or target branches were removed
510
  - All Grape API helpers are now instrumented
511
  - Improve Issue formatting for the Slack Service (Jeroen van Baarsen)
Ludovic Perrine's avatar
Ludovic Perrine committed
512
  - Fixed advice on invalid permissions on upload path !2948 (Ludovic Perrine)
513
  - Allows MR authors to have the source branch removed when merging the MR. !2801 (Jeroen Jacobs)
514
  - When creating a .gitignore file a dropdown with templates will be provided
515
  - Shows the issue/MR list search/filter form and corrects the mobile styling for guest users. #17562
516

517 518 519 520
v 8.7.9
  - Fix privilege escalation issue with OAuth external users.
  - Ensure references to private repos aren't shown to logged-out users.

521 522 523 524
v 8.7.8
  - Fix visibility of snippets when searching.
  - Update omniauth-saml to 1.6.0 !4951

James Lopez's avatar
James Lopez committed
525 526
v 8.7.7
  - Fix import by `Any Git URL` broken if the URL contains a space
527 528 529
  - Prevent unauthorized access to other projects build traces
  - Forbid scripting for wiki files
  - Only show notes through JSON on confidential issues that the user has access to
James Lopez's avatar
James Lopez committed
530

531 532
v 8.7.6
  - Fix links on wiki pages for relative url setups. !4131 (Artem Sidorenko)
Rémy Coutable's avatar
Rémy Coutable committed
533 534
  - Fix import from GitLab.com to a private instance failure. !4181
  - Fix external imports not finding the import data. !4106
535
  - Fix notification delay when changing status of an issue
536
  - Bump Workhorse to 0.7.5 so it can serve raw diffs
James Lopez's avatar
James Lopez committed
537

Timothy Andrew's avatar
Timothy Andrew committed
538 539
v 8.7.5
  - Fix relative links in wiki pages. !4050
540 541
  - Fix always showing build notification message when switching between merge requests !4086
  - Fix an issue when filtering merge requests with more than one label. !3886
542
  - Fix short note for the default scope on build page (Takuya Noguchi)
Timothy Andrew's avatar
Timothy Andrew committed
543

544
v 8.7.4
545 546 547 548 549 550 551
  - Links for Redmine issue references are generated correctly again !4048 (Benedikt Huss)
  - Fix setting trusted proxies !3970
  - Fix BitBucket importer bug when throwing exceptions !3941
  - Use sign out path only if not empty !3989
  - Running rake gitlab:db:drop_tables now drops tables with cascade !4020
  - Running rake gitlab:db:drop_tables uses "IF EXISTS" as a precaution !4100
  - Use a case-insensitive comparison in sanitizing URI schemes
552

553 554
v 8.7.3
  - Emails, Gitlab::Email::Message, Gitlab::Diff, and Premailer::Adapter::Nokogiri are now instrumented
555
  - Merge request widget displays TeamCity build state and code coverage correctly again.
556
  - Fix the line code when importing PR review comments from GitHub. !4010
557
  - Wikis are now initialized on legacy projects when checking repositories
558
  - Remove animate.css in favor of a smaller subset of animations. !3937 (Connor Shea)
559

560
v 8.7.2
561
  - The "New Branch" button is now loaded asynchronously
562
  - Fix error 500 when trying to create a wiki page
563
  - Updated spacing between notification label and button
564
  - Label titles in filters are now escaped properly
565 566

v 8.7.1
567
  - Throttle the update of `project.last_activity_at` to 1 minute. !3848
568 569 570
  - Fix .gitlab-ci.yml parsing issue when hidde job is a template without script definition. !3849
  - Fix license detection to detect all license files, not only known licenses. !3878
  - Use the `can?` helper instead of `current_user.can?`. !3882
571
  - Prevent users from deleting Webhooks via API they do not own
572
  - Fix Error 500 due to stale cache when projects are renamed or transferred
573
  - Update width of search box to fix Safari bug. !3900 (Jedidiah)
574
  - Use the `can?` helper instead of `current_user.can?`
575 576

v 8.7.0
577
  - Gitlab::GitAccess and Gitlab::GitAccessWiki are now instrumented
578
  - Fix vulnerability that made it possible to gain access to private labels and milestones
579
  - The number of InfluxDB points stored per UDP packet can now be configured
580
  - Fix error when cross-project label reference used with non-existent project
581
  - Transactions for /internal/allowed now have an "action" tag set
582
  - Method instrumentation now uses Module#prepend instead of aliasing methods
583
  - Repository.clean_old_archives is now instrumented
584
  - Add support for environment variables on a job level in CI configuration file
585
  - SQL query counts are now tracked per transaction
586 587 588 589
  - The Projects::HousekeepingService class has extra instrumentation
  - All service classes (those residing in app/services) are now instrumented
  - Developers can now add custom tags to transactions
  - Loading of an issue's referenced merge requests and related branches is now done asynchronously
590
  - Enable gzip for assets, makes the page size significantly smaller. !3544 / !3632 (Connor Shea)
Robert Speicher's avatar
Robert Speicher committed
591
  - Add support to cherry-pick any commit into any branch in the web interface (Minqi Pan)
592
  - Project switcher uses new dropdown styling
593
  - Load award emoji images separately unless opening the full picker. Saves several hundred KBs of data for most pages. (Connor Shea)
594
  - Do not include award_emojis in issue and merge_request comment_count !3610 (Lucas Charles)
Felipe's avatar
Felipe committed
595
  - Restrict user profiles when public visibility level is restricted.
Rémy Coutable's avatar
Rémy Coutable committed
596
  - Add ability set due date to issues, sort and filter issues by due date (Mehmet Beydogan)
597
  - All images in discussions and wikis now link to their source files !3464 (Connor Shea).
598
  - Return status code 303 after a branch DELETE operation to avoid project deletion (Stan Hu)
599
  - Add setting for customizing the list of trusted proxies !3524
Felipe's avatar
Felipe committed
600
  - Allow projects to be transfered to a lower visibility level group
601
  - Fix `signed_in_ip` being set to 127.0.0.1 when using a reverse proxy !3524
602
  - Improved Markdown rendering performance !3389
603
  - Make shared runners text in box configurable
604
  - Don't attempt to look up an avatar in repo if repo directory does not exist (Stan Hu)
605
  - API: Ability to subscribe and unsubscribe from issues and merge requests (Robert Schilling)
606
  - Expose project badges in project settings
607
  - Make /profile/keys/new redirect to /profile/keys for back-compat. !3717
608
  - Preserve time notes/comments have been updated at when moving issue
Rémy Coutable's avatar
Rémy Coutable committed
609
  - Make HTTP(s) label consistent on clone bar (Stan Hu)
610
  - Add support for `after_script`, requires Runner 1.2 (Kamil Trzciński)
611
  - Expose label description in API (Mariusz Jachimowicz)
612
  - API: Ability to update a group (Robert Schilling)
613
  - API: Ability to move issues (Robert Schilling)
614
  - Fix Error 500 after renaming a project path (Stan Hu)
615
  - Fix a bug whith trailing slash in teamcity_url (Charles May)
616
  - Allow back dating on issues when created or updated through the API
617
  - Allow back dating on issue notes when created through the API
618 619
  - Propose license template when creating a new LICENSE file
  - API: Expose /licenses and /licenses/:key
Alfredo Sumaran's avatar
Alfredo Sumaran committed
620
  - Fix avatar stretching by providing a cropping feature
621
  - API: Expose `subscribed` for issues and merge requests (Robert Schilling)
Patricio Cano's avatar
Patricio Cano committed
622
  - Allow SAML to handle external users based on user's information !3530
Patricio Cano's avatar
Patricio Cano committed
623
  - Allow Omniauth providers to be marked as `external` !3657
624
  - Add endpoints to archive or unarchive a project !3372
625
  - Fix a bug whith trailing slash in bamboo_url
626
  - Add links to CI setup documentation from project settings and builds pages
627
  - Display project members page to all members
628
  - Handle nil descriptions in Slack issue messages (Stan Hu)
629
  - Add automated repository integrity checks (OFF by default)
Robert Schilling's avatar
Robert Schilling committed
630
  - API: Expose open_issues_count, closed_issues_count, open_merge_requests_count for labels (Robert Schilling)
631
  - API: Ability to star and unstar a project (Robert Schilling)
632
  - Add default scope to projects to exclude projects pending deletion
633
  - Allow to close merge requests which source projects(forks) are deleted.
634
  - Ensure empty recipients are rejected in BuildsEmailService
Minqi Pan's avatar
Minqi Pan committed
635
  - Use rugged to change HEAD in Project#change_head (P.S.V.R)
636
  - API: Ability to filter milestones by state `active` and `closed` (Robert Schilling)
637
  - API: Fix milestone filtering by `iid` (Robert Schilling)
638
  - Make before_script and after_script overridable on per-job (Kamil Trzciński)
Robert Schilling's avatar
Robert Schilling committed
639
  - API: Delete notes of issues, snippets, and merge requests (Robert Schilling)
640
  - Implement 'Groups View' as an option for dashboard preferences !3379 (Elias W.)
Felipe's avatar
Felipe committed
641
  - Better errors handling when creating milestones inside groups
642
  - Fix high CPU usage when PostReceive receives refs/merge-requests/<id>
643
  - Hide `Create a group` help block when creating a new project in a group
644
  - Implement 'TODOs View' as an option for dashboard preferences !3379 (Elias W.)
645
  - Allow issues and merge requests to be assigned to the author !2765
Kamil Trzciński's avatar
Kamil Trzciński committed
646
  - Make Ci::Commit to group only similar builds and make it stateful (ref, tag)
647
  - Gracefully handle notes on deleted commits in merge requests (Stan Hu)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
648
  - Decouple membership and notifications
649
  - Fix creation of merge requests for orphaned branches (Stan Hu)
Robert Schilling's avatar
Robert Schilling committed
650
  - API: Ability to retrieve a single tag (Robert Schilling)
651
  - While signing up, don't persist the user password across form redisplays
Rémy Coutable's avatar
Rémy Coutable committed
652
  - Fall back to `In-Reply-To` and `References` headers when sub-addressing is not available (David Padilla)
653
  - Remove "Congratulations!" tweet button on newly-created project. (Connor Shea)
Willian Molinari's avatar
Willian Molinari committed
654
  - Fix admin/projects when using visibility levels on search (PotHix)
655
  - Build status notifications
Phil Hughes's avatar
Phil Hughes committed
656
  - Update email confirmation interface
657
  - API: Expose user location (Robert Schilling)
658
  - API: Do not leak group existence via return code (Robert Schilling)
Jacob Schatz's avatar
Jacob Schatz committed
659
  - ClosingIssueExtractor regex now also works with colons. e.g. "Fixes: #1234" !3591
660
  - Update number of Todos in the sidebar when it's marked as "Done". !3600
Timothy Andrew's avatar
Timothy Andrew committed
661
  - Sanitize branch names created for confidential issues
662
  - API: Expose 'updated_at' for issue, snippet, and merge request notes (Robert Schilling)
663
  - API: User can leave a project through the API when not master or owner. !3613
664
  - Fix repository cache invalidation issue when project is recreated with an empty repo (Stan Hu)
665
  - Fix: Allow empty recipients list for builds emails service when pushed is added (Frank Groeneveld)
Phil Hughes's avatar
Phil Hughes committed
666
  - Improved markdown forms
667 668 669
  - Diff design updates (colors, button styles, etc)
  - Copying and pasting a diff no longer pastes the line numbers or +/-
  - Add null check to formData when updating profile content to fix Firefox bug
Eni Arinde's avatar
Eni Arinde committed
670
  - Disable spellcheck and autocorrect for username field in admin page
671
  - Delete tags using Rugged for performance reasons (Robert Schilling)
Sebastian Klier's avatar
Sebastian Klier committed
672
  - Add Slack notifications when Wiki is edited (Sebastian Klier)
Phil Hughes's avatar
Phil Hughes committed
673 674
  - Diffs load at the correct point when linking from from number
  - Selected diff rows highlight
Valery Sizov's avatar
Valery Sizov committed
675
  - Fix emoji categories in the emoji picker
676
  - API: Properly display annotated tags for GET /projects/:id/repository/tags (Robert Schilling)
James Lopez's avatar
James Lopez committed
677
  - Add encrypted credentials for imported projects and migrate old ones
678
  - Properly format all merge request references with ! rather than # !3740 (Ben Bodenmiller)
Alfredo Sumaran's avatar
Alfredo Sumaran committed
679
  - Author and participants are displayed first on users autocompletion
Baldinof's avatar
Baldinof committed
680
  - Show number sign on external issue reference text (Florent Baldino)
Phil Hughes's avatar
Phil Hughes committed
681
  - Updated print style for issues
682
  - Use GitHub Issue/PR number as iid to keep references
683
  - Import GitHub labels
Alfredo Sumaran's avatar
Alfredo Sumaran committed
684
  - Add option to filter by "Owned projects" on dashboard page
685
  - Import GitHub milestones
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
686
  - Execute system web hooks on push to the project
687
  - Allow enable/disable push events for system hooks
688
  - Fix GitHub project's link in the import page when provider has a custom URL
Tomasz Maczukin's avatar
Tomasz Maczukin committed
689
  - Add RAW build trace output and button on build page
Tomasz Maczukin's avatar
Tomasz Maczukin committed
690
  - Add incremental build trace update into CI API
Rémy Coutable's avatar
Rémy Coutable committed
691

692 693 694 695 696
v 8.6.9
  - Prevent unauthorized access to other projects build traces
  - Forbid scripting for wiki files
  - Only show notes through JSON on confidential issues that the user has access to

697 698 699 700 701 702 703 704 705 706 707 708 709
v 8.6.8
  - Prevent privilege escalation via "impersonate" feature
  - Prevent privilege escalation via notes API
  - Prevent privilege escalation via project webhook API
  - Prevent XSS via Git branch and tag names
  - Prevent XSS via custom issue tracker URL
  - Prevent XSS via `window.opener`
  - Prevent XSS via label drop-down
  - Prevent information disclosure via milestone API
  - Prevent information disclosure via snippet API
  - Prevent information disclosure via project labels
  - Prevent information disclosure via new merge request page

710
v 8.6.7
Robert Speicher's avatar
Robert Speicher committed
711 712
  - Fix persistent XSS vulnerability in `commit_person_link` helper
  - Fix persistent XSS vulnerability in Label and Milestone dropdowns
713 714
  - Fix vulnerability that made it possible to enumerate private projects belonging to group

715
v 8.6.6
716 717 718
  - Expire the exists cache before deletion to ensure project dir actually exists (Stan Hu). !3413
  - Fix error on language detection when repository has no HEAD (e.g., master branch) (Jeroen Bobbeldijk). !3654
  - Fix revoking of authorized OAuth applications (Connor Shea). !3690
Jeroen Bobbeldijk's avatar
Jeroen Bobbeldijk committed
719
  - Fix error on language detection when repository has no HEAD (e.g., master branch). !3654 (Jeroen Bobbeldijk)
Phil Hughes's avatar
Phil Hughes committed
720 721
  - Issuable header is consistent between issues and merge requests
  - Improved spacing in issuable header on mobile
722

723 724 725 726 727 728 729 730
v 8.6.5
  - Fix importing from GitHub Enterprise. !3529
  - Perform the language detection after updating merge requests in `GitPushService`, leading to faster visual feedback for the end-user. !3533
  - Check permissions when user attempts to import members from another project. !3535
  - Only update repository language if it is not set to improve performance. !3556
  - Return status code 303 after a branch DELETE operation to avoid project deletion (Stan Hu). !3583
  - Unblock user when active_directory is disabled and it can be found !3550
  - Fix a 2FA authentication spoofing vulnerability.
731

732 733
v 8.6.4
  - Don't attempt to fetch any tags from a forked repo (Stan Hu)
734
  - Redesign the Labels page
735

736 737
v 8.6.3
  - Mentions on confidential issues doesn't create todos for non-members. !3374
738 739
  - Destroy related todos when an Issue/MR is deleted. !3376
  - Fix error 500 when target is nil on todo list. !3376
740 741 742 743
  - Fix copying uploads when moving issue to another project. !3382
  - Ensuring Merge Request API returns boolean values for work_in_progress (Abhi Rao). !3432
  - Fix raw/rendered diff producing different results on merge requests. !3450
  - Fix commit comment alignment (Stan Hu). !3466
744
  - Fix Error 500 when searching for a comment in a project snippet. !3468
745 746 747
  - Allow temporary email as notification email. !3477
  - Fix issue with dropdowns not selecting values. !3478
  - Update gitlab-shell version and doc to 2.6.12. gitlab-org/gitlab-ee!280
748

749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769
v 8.6.2
  - Fix dropdown alignment. !3298
  - Fix issuable sidebar overlaps on tablet. !3299
  - Make dropdowns pixel perfect. !3337
  - Fix order of steps to prevent PostgreSQL errors when running migration. !3355
  - Fix bold text in issuable sidebar. !3358
  - Fix error with anonymous token in applications settings. !3362
  - Fix the milestone 'upcoming' filter. !3364 + !3368
  - Fix comments on confidential issues showing up in activity feed to non-members. !3375
  - Fix `NoMethodError` when visiting CI root path at `/ci`. !3377
  - Add a tooltip to new branch button in issue page. !3380
  - Fix an issue hiding the password form when signed-in with a linked account. !3381
  - Add links to CI setup documentation from project settings and builds pages. !3384
  - Fix an issue with width of project select dropdown. !3386
  - Remove redundant `require`s from Banzai files. !3391
  - Fix error 500 with cancel button on issuable edit form. !3392 + !3417
  - Fix background when editing a highlighted note. !3423
  - Remove tabstop from the WIP toggle links. !3426
  - Ensure private project snippets are not viewable by unauthorized people.
  - Gracefully handle notes on deleted commits in merge requests (Stan Hu). !3402
  - Fixed issue with notification settings not saving. !3452
770

Rémy Coutable's avatar
Rémy Coutable committed
771 772 773 774 775 776 777 778 779 780 781 782 783 784
v 8.6.1
  - Add option to reload the schema before restoring a database backup. !2807
  - Display navigation controls on mobile. !3214
  - Fixed bug where participants would not work correctly on merge requests. !3329
  - Fix sorting issues by votes on the groups issues page results in SQL errors. !3333
  - Restrict notifications for confidential issues. !3334
  - Do not allow to move issue if it has not been persisted. !3340
  - Add a confirmation step before deleting an issuable. !3341
  - Fixes issue with signin button overflowing on mobile. !3342
  - Auto collapses the navigation sidebar when resizing. !3343
  - Fix build dependencies, when the dependency is a string. !3344
  - Shows error messages when trying to create label in dropdown menu. !3345
  - Fixes issue with assign milestone not loading milestone list. !3346
  - Fix an issue causing the Dashboard/Milestones page to be blank. !3348
Rémy Coutable's avatar
Rémy Coutable committed
785 786

v 8.6.0
787
  - Add ability to move issue to another project
James Lopez's avatar
James Lopez committed
788
  - Prevent tokens in the import URL to be showed by the UI
789
  - Fix bug where wrong commit ID was being used in a merge request diff to show old image (Stan Hu)
790
  - Add confidential issues
Stan Hu's avatar
Stan Hu committed
791
  - Bump gitlab_git to 9.0.3 (Stan Hu)
792
  - Fix diff image view modes (2-up, swipe, onion skin) not working (Stan Hu)
793
  - Support Golang subpackage fetching (Stan Hu)
Stan Hu's avatar
Stan Hu committed
794
  - Bump Capybara gem to 2.6.2 (Stan Hu)
795
  - New branch button appears on issues where applicable
796
  - Contributions to forked projects are included in calendar
797
  - Improve the formatting for the user page bio (Connor Shea)
798
  - Easily (un)mark merge request as WIP using link
799
  - Use specialized system notes when MR is (un)marked as WIP
800 801 802
  - Removed the default password from the initial admin account created during
    setup. A password can be provided during setup (see installation docs), or
    GitLab will ask the user to create a new one upon first visit.
James Lopez's avatar
James Lopez committed
803
  - Fix issue when pushing to projects ending in .wiki
Rémy Coutable's avatar
Rémy Coutable committed
804
  - Properly display YAML front matter in Markdown
805
  - Add support for wiki with UTF-8 page names (Hiroyuki Sato)
806
  - Fix wiki search results point to raw source (Hiroyuki Sato)
807
  - Don't load all of GitLab in mail_room
Rémy Coutable's avatar
Rémy Coutable committed
808
  - Add information about `image` and `services` field at `job` level in the `.gitlab-ci.yml` documentation (Pat Turner)
809
  - HTTP error pages work independently from location and config (Artem Sidorenko)
810
  - Update `omniauth-saml` to 1.5.0 to allow for custom response attributes to be set
811
  - Memoize @group in Admin::GroupsController (Yatish Mehta)
812
  - Indicate how much an MR diverged from the target branch (Pierre de La Morinerie)
813
  - Added omniauth-auth0 Gem (Daniel Carraro)
814
  - Add label description in tooltip to labels in issue index and sidebar
815
  - Strip leading and trailing spaces in URL validator (evuez)
816
  - Add "last_sign_in_at" and "confirmed_at" to GET /users/* API endpoints for admins (evuez)
817
  - Return empty array instead of 404 when commit has no statuses in commit status API
818
  - Decrease the font size and the padding of the `.anchor` icons used in the README (Roberto Dip)
819
  - Rewrite logo to simplify SVG code (Sean Lang)
820 821
  - Allow to use YAML anchors when parsing the `.gitlab-ci.yml` (Pascal Bach)
  - Ignore jobs that start with `.` (hidden jobs)
822
  - Hide builds from project's settings when the feature is disabled
823
  - Allow to pass name of created artifacts archive in `.gitlab-ci.yml`
824
  - Refactor and greatly improve search performance
825
  - Add support for cross-project label references
826
  - Ensure "new SSH key" email do not ends up as dead Sidekiq jobs
827
  - Update documentation to reflect Guest role not being enforced on internal projects
828
  - Allow search for logged out users
829
  - Allow to define on which builds the current one depends on
830
  - Allow user subscription to a label: get notified for issues/merge requests related to that label (Timothy Andrew)
831
  - Fix bug where Bitbucket `closed` issues were imported as `opened` (Iuri de Silvio)
Ruben Alexis's avatar
Ruben Alexis committed
832
  - Don't show Issues/MRs from archived projects in Groups view
833
  - Fix wrong "iid of max iid" in Issuable sidebar for some merged MRs
834
  - Fix empty source_sha on Merge Request when there is no diff (Pierre de La Morinerie)
Alfredo Sumaran's avatar
Alfredo Sumaran committed
835
  - Increase the notes polling timeout over time (Roberto Dip)
836
  - Add shortcut to toggle markdown preview (Florent Baldino)
837
  - Show labels in dashboard and group milestone views
838
  - Fix an issue when the target branch of a MR had been deleted
Tiago Botelho's avatar
Tiago Botelho committed
839
  - Add main language of a project in the list of projects (Tiago Botelho)
840
  - Add #upcoming filter to Milestone filter (Tiago Botelho)
841
  - Add ability to show archived projects on dashboard, explore and group pages
842
  - Remove fork link closes all merge requests opened on source project (Florent Baldino)
843
  - Move group activity to separate page
844
  - Create external users which are excluded of internal and private projects unless access was explicitly granted
845
  - Continue parameters are checked to ensure redirection goes to the same instance
846
  - User deletion is now done in the background so the request can not time out
Geoffrey Lalonde's avatar
Geoffrey Lalonde committed
847
  - Canceled builds are now ignored in compound build status if marked as `allowed to fail`
848
  - Trigger a todo for mentions on commits page
849
  - Let project owners and admins soft delete issues and merge requests
Rémy Coutable's avatar
Rémy Coutable committed
850

851 852 853 854
v 8.5.13
  - Prevent unauthorized access to other projects build traces
  - Forbid scripting for wiki files

855 856 857 858 859 860 861 862 863 864 865
v 8.5.12
  - Prevent privilege escalation via "impersonate" feature
  - Prevent privilege escalation via notes API
  - Prevent privilege escalation via project webhook API
  - Prevent XSS via Git branch and tag names
  - Prevent XSS via custom issue tracker URL
  - Prevent XSS via `window.opener`
  - Prevent information disclosure via snippet API
  - Prevent information disclosure via project labels
  - Prevent information disclosure via new merge request page

866 867 868
v 8.5.11
  - Fix persistent XSS vulnerability in `commit_person_link` helper

869 870 871
v 8.5.10
  - Fix a 2FA authentication spoofing vulnerability.

872 873 874
v 8.5.9
  - Don't attempt to fetch any tags from a forked repo (Stan Hu).

875 876 877
v 8.5.8
  - Bump Git version requirement to 2.7.4

Douwe Maan's avatar
Douwe Maan committed
878
v 8.5.7
879
  - Bump Git version requirement to 2.7.3
Rémy Coutable's avatar
Rémy Coutable committed
880

881 882 883
v 8.5.6
  - Obtain a lease before querying LDAP

884
v 8.5.5
885 886 887 888
  - Ensure removing a project removes associated Todo entries
  - Prevent a 500 error in Todos when author was removed
  - Fix pagination for filtered dashboard and explore pages
  - Fix "Show all" link behavior
Rémy Coutable's avatar
Rémy Coutable committed
889

890
v 8.5.4
891 892
  - Do not cache requests for badges (including builds badge)

893 894
v 8.5.3
  - Flush repository caches before renaming projects
895
  - Sort starred projects on dashboard based on last activity by default
Ruben Alexis's avatar
Ruben Alexis committed
896
  - Show commit message in JIRA mention comment
897
  - Makes issue page and merge request page usable on mobile browsers.
Phil Hughes's avatar
Phil Hughes committed
898
  - Improved UI for profile settings
899

Robert Speicher's avatar
Robert Speicher committed
900 901
v 8.5.2
  - Fix sidebar overlapping content when screen width was below 1200px
902 903
  - Don't repeat labels listed on Labels tab
  - Bring the "branded appearance" feature from EE to CE
Robert Speicher's avatar
Robert Speicher committed
904
  - Fix error 500 when commenting on a commit
905
  - Show days remaining instead of elapsed time for Milestone
906
  - Fix broken icons on installations with relative URL (Artem Sidorenko)
907
  - Fix issue where tag list wasn't refreshed after deleting a tag
Jun Naruse's avatar
Jun Naruse committed
908
  - Fix import from gitlab.com (KazSawada)
909 910
  - Improve implementation to check read access to forks and add pagination
  - Don't show any "2FA required" message if it's not actually required
911
  - Fix help keyboard shortcut on relative URL setups (Artem Sidorenko)
912 913
  - Update Rails to 4.2.5.2
  - Fix permissions for deprecated CI build status badge
914
  - Don't show "Welcome to GitLab" when the search didn't return any projects
915
  - Add Todos documentation
Rémy Coutable's avatar
Rémy Coutable committed
916 917 918

v 8.5.1
  - Fix group projects styles
919
  - Show Crowd login tab when sign in is disabled and Crowd is enabled (Peter Hudec)
Rémy Coutable's avatar
Rémy Coutable committed
920 921 922 923 924 925 926 927 928 929
  - Fix a set of small UI glitches in project, profile, and wiki pages
  - Restrict permissions on public/uploads
  - Fix the merge request side-by-side view after loading diff results
  - Fix the look of tooltip for the "Revert" button
  - Add when the Builds & Runners API changes got introduced
  - Fix error 500 on some merged merge requests
  - Fix an issue causing the content of the issuable sidebar to disappear
  - Fix error 500 when trying to mark an already done todo as "done"
  - Fix an issue where MRs weren't sortable
  - Issues can now be dragged & dropped into empty milestone lists. This is also
930
    possible with MRs
Rémy Coutable's avatar
Rémy Coutable committed
931 932 933
  - Changed padding & background color for highlighted notes
  - Re-add the newrelic_rpm gem which was removed without any deprecation or warning (Stan Hu)
  - Update sentry-raven gem to 0.15.6
934
  - Add build coverage in project's builds page (Steffen Köhler)
935
  - Changed # to ! for merge requests in activity view
936 937

v 8.5.0
938
  - Fix duplicate "me" in tooltip of the "thumbsup" awards Emoji (Stan Hu)
939
  - Cache various Repository methods to improve performance
Ashley Smith's avatar
Ashley Smith committed
940
  - Fix duplicated branch creation/deletion Webhooks/service notifications when using Web UI (Stan Hu)
941
  - Ensure rake tasks that don't need a DB connection can be run without one
942
  - Update New Relic gem to 3.14.1.311 (Stan Hu)
943
  - Add "visibility" flag to GET /projects api endpoint
944
  - Add an option to supply root email through an environmental variable (Koichiro Mikami)
945
  - Ignore binary files in code search to prevent Error 500 (Stan Hu)
Stan Hu's avatar
Stan Hu committed
946
  - Render sanitized SVG images (Stan Hu)
947
  - Support download access by PRIVATE-TOKEN header (Stan Hu)
948
  - Upgrade gitlab_git to 7.2.23 to fix commit message mentions in first branch push
949
  - Add option to include the sender name in body of Notify email (Jason Lee)
950
  - New UI for pagination
Robert Speicher's avatar