Commits · 5a292c1f28111e2a9a56b8530b9b705f2e04ae2e · GitLab.org / GitLab

May 06, 2024

Merge branch 'security-github-media-cdn-ssrf' into 'master' · 5a292c1f

GitLab Release Tools Bot authored 10 months ago

Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4005



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Gregorius Marco <gmarco@gitlab.com>
Approved-by: Aaron Huntsman <ahuntsman@gitlab.com>
Approved-by: Greg Myers <gmyers@gitlab.com>
Reviewed-by: Greg Myers <gmyers@gitlab.com>
Co-authored-by: Ivane Gkomarteli <igkomarteli@gitlab.com>

5a292c1f

Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github · da3b71d7
Ivane Gkomarteli authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-github-media-cdn-ssrf' into 'master'

See merge request gitlab-org/security/gitlab!4005

Changelog: security
```
da3b71d7

Merge branch 'security-dblessing_jwt_confirm_id_link' into 'master' · 9e1ec51d

GitLab Release Tools Bot authored 10 months ago

Require confirmation before linking JWT identity

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3971



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Ragnar Hardarson <rhardarson@gitlab.com>
Approved-by: Paul Gascou-Vaillancourt <pgascouvaillancourt@gitlab.com>
Approved-by: Greg Alfaro <galfaro@gitlab.com>
Approved-by: Andrew Evans <aevans@gitlab.com>
Approved-by: Harsha Muralidhar <hmuralidhar@gitlab.com>
Approved-by: Bogdan Denkovych <bdenkovych@gitlab.com>
Reviewed-by: Andrew Evans <aevans@gitlab.com>
Reviewed-by: Greg Myers <gmyers@gitlab.com>
Reviewed-by: Ragnar Hardarson <rhardarson@gitlab.com>
Co-authored-by: Drew Blessing <drew@gitlab.com>

9e1ec51d

Require confirmation before linking JWT identity · a8a9e972
Drew Blessing authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-dblessing_jwt_confirm_id_link' into 'master'

See merge request gitlab-org/security/gitlab!3971

Changelog: security
```
a8a9e972

Merge branch 'security-fix-escape-filters' into 'master' · b8084693

GitLab Release Tools Bot authored 10 months ago

ReDos in escape and commit reference filters

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3964



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Allison Browne <abrowne@gitlab.com>
Approved-by: Kevin Morrison <kmorrison@gitlab.com>
Reviewed-by: Allison Browne <abrowne@gitlab.com>
Reviewed-by: Panos Kanellidis <pkanellidis@gitlab.com>
Co-authored-by: Brett Walker <bwalker@gitlab.com>

b8084693

ReDos in escape and commit reference filters · 6f8fe6cf
Brett Walker authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-fix-escape-filters' into 'master'

See merge request gitlab-org/security/gitlab!3964

Changelog: security
```
6f8fe6cf

Merge branch 'security-pins-max-size' into 'master' · 66abf88b

GitLab Release Tools Bot authored 10 months ago

Check request size before updating user pins

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3981



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Serhii Yarynovskyi <syarynovskyi@gitlab.com>
Approved-by: Mario Celi <mcelicalderon@gitlab.com>
Approved-by: Nikhil George <ngeorge@gitlab.com>
Co-authored-by: Thomas Hutterer <thutterer@gitlab.com>

66abf88b

Check request size before updating user pins · 996b8bd9
Thomas Hutterer authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-pins-max-size' into 'master'

See merge request gitlab-org/security/gitlab!3981

Changelog: security
```
996b8bd9

Merge branch 'security-google-chat-integration-regex' into 'master' · c4c51932

GitLab Release Tools Bot authored 10 months ago

Update BaseMessage::RELATIVE_LINK_REGEX regex

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3959



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: James Nutt <jnutt@gitlab.com>
Approved-by: Robert May <rmay@gitlab.com>
Approved-by: Nikhil George <ngeorge@gitlab.com>
Co-authored-by: George Koltsov <gkoltsov@gitlab.com>

c4c51932

Update BaseMessage::RELATIVE_LINK_REGEX regex · acca1773
George Koltsov authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-google-chat-integration-regex' into 'master'

See merge request gitlab-org/security/gitlab!3959

Changelog: security
```
acca1773

Merge branch 'security-discord-integration-regex' into 'master' · 8724f9f9

GitLab Release Tools Bot authored 10 months ago

Update Integrations::Discord::ATTACHMENT_REGEX regex

See merge request https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/3953



Merged-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>
Approved-by: Nikhil George <ngeorge@gitlab.com>
Approved-by: Luke Duncalfe <lduncalfe@gitlab.com>
Reviewed-by: Luke Duncalfe <lduncalfe@gitlab.com>
Reviewed-by: James Nutt <jnutt@gitlab.com>
Co-authored-by: George Koltsov <gkoltsov@gitlab.com>

8724f9f9

Update Integrations::Discord::ATTACHMENT_REGEX regex · 04bc3196
George Koltsov authored 10 months ago and GitLab Release Tools Bot committed 10 months ago
```
Merge branch 'security-discord-integration-regex' into 'master'

See merge request gitlab-org/security/gitlab!3953

Changelog: security
```
04bc3196

Merge branch 'sranasinghe-master-patch-64e1' into 'master' · 242854c7

Achilleas Pipinellis authored 10 months ago

Update versions impacted - Geo checksum mismatch in projects

See merge request !151927



Merged-by: Achilleas Pipinellis <axil@gitlab.com>
Reviewed-by: Achilleas Pipinellis <axil@gitlab.com>
Co-authored-by: Sampath Ranasinghe <sranasinghe@gitlab.com>

Verified

242854c7

Update versions impacted - Geo checksum mismatch in projects · f1e1ecaf
Sampath Ranasinghe authored 10 months ago

Verified

f1e1ecaf

Merge branch 'copy_more_attributes_from_epic_rather_than_params' into 'master' · bfb22302

Nicolas Dular authored 10 months ago

Fix an use case of updated_at getting out of sync

See merge request !151694



Merged-by: Nicolas Dular <ndular@gitlab.com>
Approved-by: Kassio Borges <kborges@gitlab.com>
Approved-by: Nicolas Dular <ndular@gitlab.com>
Co-authored-by: Alexandru Croitor <acroitor@gitlab.com>

Verified

bfb22302

Merge branch '454336-policies-pipeline-execution-integration-test' into 'master' · d2fed495

Artur Fedorov authored 10 months ago

Add integration test for pipeline execution policy type

See merge request gitlab-org/gitlab!151961



Merged-by: Artur Fedorov <afedorov@gitlab.com>
Approved-by: Alexander Turinske <aturinske@gitlab.com>
Reviewed-by: Artur Fedorov <afedorov@gitlab.com>

Verified

d2fed495

This MR adds integration test · 44074a08
Artur Fedorov authored 10 months ago
```
New integration tests are required
for new pipeline execution policy
```
Verified

44074a08

Merge branch 'move-full-stop-out-of-learn-more' into 'master' · cea521ab

Thong Kuah authored 10 months ago

Move Full stop out of "Learn More."

See merge request !150908



Merged-by: Thong Kuah <tkuah@gitlab.com>
Approved-by: Thong Kuah <tkuah@gitlab.com>
Co-authored-by: fkhe <Falk.Haendler@t-systems.com>
Co-authored-by: Falk Händler <falk.haendler@telekom.de>

Verified

cea521ab

Move Full stop out of "Learn More." · 13b3bd91
Falk Händler authored 10 months ago

Verified

13b3bd91

Merge branch 'master-i18n' into 'master' · 10e24d05

Bob Van Landuyt authored 10 months ago

New Crowdin updates (May 2024)

See merge request !149560



Merged-by: Bob Van Landuyt <bob@gitlab.com>
Approved-by: Bob Van Landuyt <bob@gitlab.com>
Co-authored-by: Martin Wortschack <mwortschack@gitlab.com>

Verified

10e24d05

New Crowdin updates (May 2024) · 5d082179
GitLab Crowdin Bot authored 10 months ago

Verified

5d082179

Merge branch '443405_update_schema_for_instance_level_tables' into 'master' · a5f05f03

Aleksei Lipniagov authored 10 months ago

Update schema to gitlab_main_clusterwide for instance wide tables

See merge request !151767



Merged-by: Aleksei Lipniagov <alipniagov@gitlab.com>
Approved-by: Hitesh Raghuvanshi <hraghuvanshi@gitlab.com>
Approved-by: Omar Qunsul <oqunsul@gitlab.com>
Approved-by: Aleksei Lipniagov <alipniagov@gitlab.com>
Reviewed-by: Huzaifa Iftikhar <hiftikhar@gitlab.com>
Co-authored-by: huzaifaiftikhar1 <hiftikhar@gitlab.com>

Verified

a5f05f03

Update schema to gitlab_main_clusterwide for instance wide tables · 36f67aff
Huzaifa Iftikhar authored 10 months ago

Verified

36f67aff

Merge branch 'hmehra-update-member-role-audit-events' into 'master' · f2865479

Aleksei Lipniagov authored 10 months ago

Update docs for custom roles audit events

See merge request !151864



Merged-by: Aleksei Lipniagov <alipniagov@gitlab.com>
Approved-by: Adie (she/her) <avpfestin@gitlab.com>
Approved-by: Ashraf Khamis <akhamis@gitlab.com>
Approved-by: Aleksei Lipniagov <alipniagov@gitlab.com>
Reviewed-by: Aleksei Lipniagov <alipniagov@gitlab.com>
Co-authored-by: Hinam Mehra <hmehra@gitlab.com>

Verified

f2865479

Update docs for custom roles audit events · 06a1ff9c
Hinam Mehra authored 10 months ago

Verified

06a1ff9c

Merge branch 'manojmj-master-patch-71254' into 'master' · 0e565515

Imre Farkas authored 10 months ago

Scope feature flag to user

See merge request !152046



Merged-by: Imre Farkas <ifarkas@gitlab.com>
Approved-by: Imre Farkas <ifarkas@gitlab.com>
Co-authored-by: Manoj M J <mmj@gitlab.com>

Verified

0e565515

Scope feature flag to user · b5feef88
Manoj M J authored 10 months ago

Verified

b5feef88

Merge branch '460242-overflow-hidden' into 'master' · 049edac8

Artur Fedorov authored 10 months ago

Remove overflow:hidden from gl-card

See merge request !151909



Merged-by: Artur Fedorov <afedorov@gitlab.com>
Approved-by: Julia Miocene <jmiocene@gitlab.com>
Approved-by: Daniel Tian <dtian@gitlab.com>
Approved-by: Artur Fedorov <afedorov@gitlab.com>
Co-authored-by: Annabel Dunstone Gray <annabel.dunstone@gmail.com>

Verified

049edac8

Merge branch 'renovate/frontend-observability-packages' into 'master' · d1547936

Miguel Rincon authored 10 months ago

Update dependency @sentry/browser to v7.113.0

See merge request !152001



Merged-by: Miguel Rincon <mrincon@gitlab.com>
Approved-by: Miguel Rincon <mrincon@gitlab.com>
Co-authored-by: GitLab Renovate Bot <gitlab-bot@gitlab.com>

Verified

d1547936

Merge branch 'andrey-cng-doctor-command' into 'master' · befe01b2

Niko Belokolodov authored 10 months ago

Cng orchestrator gem doctor command

Closes gitlab-org/quality/quality-engineering/team-tasks#2648

See merge request !151380



Merged-by: Niko Belokolodov <nbelokolodov@gitlab.com>
Approved-by: Will Meek <wmeek@gitlab.com>
Approved-by: Serhii Yarynovskyi <syarynovskyi@gitlab.com>
Approved-by: Anastasia McDonald <amcdonald@gitlab.com>
Approved-by: Niko Belokolodov <nbelokolodov@gitlab.com>
Co-authored-by: Andrejs Cunskis <acunskis@gitlab.com>

Verified

befe01b2

Implement doctor command · 55a9251a

Andrejs Cunskis authored 10 months ago

Add base log method

Improve output code

Update qa lockfile

Add tests for doctor command

Verified

55a9251a

Merge branch 'pedropombeiro/413956/2-disable-runner-registration-tokens-on-groups' into 'master' · b935e84b

Pedro Pombeiro authored 10 months ago

Disable runner registration tokens for all groups on .com

See merge request !150562



Merged-by: Pedro Pombeiro <noreply@pedro.pombei.ro>
Approved-by: Adam Hegyi <ahegyi@gitlab.com>
Reviewed-by: George Koltsov <gkoltsov@gitlab.com>
Reviewed-by: Pedro Pombeiro <noreply@pedro.pombei.ro>
Reviewed-by: Corinna Gogolok <cgogolok@gitlab.com>

Verified

b935e84b

Disable runner registration tokens for all groups on .com · 6b1a45ad
Pedro Pombeiro authored 10 months ago
```
Changelog: changed
```
Verified

6b1a45ad

Merge branch 'dont-test-ruby-3.0-for-internal-gems' into 'master' · ee324a3c

David Dieulivol authored 10 months ago

Drop Ruby 3.0 in CI configs

See merge request !151899



Merged-by: David Dieulivol <ddieulivol@gitlab.com>
Approved-by: Lee Tickett <ltickett@gitlab.com>
Approved-by: Nao Hashizume <nhashizume@gitlab.com>
Approved-by: David Dieulivol <ddieulivol@gitlab.com>
Reviewed-by: Rémy Coutable <remy@rymai.me>
Co-authored-by: Rémy Coutable <remy@rymai.me>

Verified

ee324a3c

Merge branch 'cngo-refactor-i18n-issues-list' into 'master' · 189c3f67

David Pisek authored 10 months ago

Refactor i18n code in issues list code

See merge request !151923



Merged-by: David Pisek <dpisek@gitlab.com>
Approved-by: Briley Sandlin <bsandlin@gitlab.com>
Approved-by: David Pisek <dpisek@gitlab.com>
Co-authored-by: Coung Ngo <cngo@gitlab.com>

Verified

189c3f67

Merge branch 'pb-skip-requested-changes-check' into 'master' · b9e3db30

Marc Shaw authored 10 months ago

Skip requested changes check when setting MWCP

See merge request !151314



Merged-by: Marc Shaw <mshaw@gitlab.com>
Approved-by: Phil Hughes <me@iamphill.com>
Approved-by: Marc Shaw <mshaw@gitlab.com>
Co-authored-by: Patrick Bajao <ebajao@gitlab.com>

Verified

b9e3db30

Merge branch '432501-cablett-issue-analytics-null-username' into 'master' · f0f1d928

Pavel Shutsin authored 10 months ago

Ensure assignee array has values before passing argument to finder

See merge request !151639



Merged-by: Pavel Shutsin <pshutsin@gitlab.com>
Approved-by: Adam Hegyi <ahegyi@gitlab.com>
Approved-by: Pavel Shutsin <pshutsin@gitlab.com>
Co-authored-by: charlieablett <cablett@gitlab.com>

Verified

f0f1d928

Merge branch '20240502-clavimoniere-board-lane-header-sticky-fix' into 'master' · 4fb6e396

Michael Lunøe authored 10 months ago

Prevent board epic lane header from moving before sticky

See merge request !151824



Merged-by: Michael Lunøe <michael.lunoe@gmail.com>
Approved-by: Annabel Dunstone Gray <annabel.dunstone@gmail.com>
Approved-by: Marina Mosti <mmosti@gitlab.com>
Approved-by: Michael Lunøe <michael.lunoe@gmail.com>
Co-authored-by: Chad Lavimoniere <clavimoniere@gitlab.com>

Verified

4fb6e396

Merge branch '358113-specs-find_by_testid' into 'master' · e006aee1

Abdul Wadood authored 10 months ago

Replace generic ".breadcrumbs" selector in specs with find_by_testid

See merge request !151906



Merged-by: Abdul Wadood <awadood@gitlab.com>
Approved-by: Ravi Kumar <rkumar@gitlab.com>
Approved-by: Abdul Wadood <awadood@gitlab.com>
Co-authored-by: Thomas Hutterer <thutterer@gitlab.com>

Verified

e006aee1

Merge branch 'blabuschagne-master-patch-9284' into 'master' · 594c0aed

Lorena Ciutacu authored 10 months ago

Update CH data storage statement

See merge request !151915



Merged-by: Lorena Ciutacu <lciutacu@gitlab.com>
Approved-by: Adam Hegyi <ahegyi@gitlab.com>
Approved-by: charlie ablett <cablett@gitlab.com>
Approved-by: Lorena Ciutacu <lciutacu@gitlab.com>
Co-authored-by: Brandon Labuschagne <blabuschagne@gitlab.com>

Verified

594c0aed