-
Update encoding method for logs_tree request 1 of 1 checklist item completed
- Merged
- 33
- Approved
updated -
Use dedicated signing key for CI_JOB_JWT (take 3) 0 of 13 checklist items completed
- Merged
- 56
- Approved
updated -
Path traversal middleware: log the execution time in ms 1 of 1 checklist item completed
- Merged
- 7
- Approved
updated -
Remove channel properties from API when channels are masked 1 of 1 checklist item completed!129497 16.4Community contribution HackerOne IntegrationDiscord Leading Organization WeaknessCWE-200 backend bugvulnerability devopsmanage groupimport and integrate linked-issue pipeline:mr-approved priority3 releasedpublished sectiondev security security-fix-in-public severity3 typebug workflowpost-deploy-db-production
- Merged
- 20
- Approved
updated -
When user has 2FA enabled do not attempt OAuth password auth 0 of 1 checklist item completed
- Merged
- 11
- Approved
updated -
Embed dedicated JWT container user info in container registry JWT 1 of 1 checklist item completed!127622 16.3
- Merged
- 21
- Approved
updated -
Improve checks for path traversal validation 0 of 13 checklist items completed
- Merged
- 110
- Approved
updated -
Remove live preview feature from GitLab 1 of 1 checklist item completed!108512 15.9Architecture Evolution Blueprint HackerOne Technical Writing WeaknessCWE-284 backend bugvulnerability devopscreate docsimprovement documentation frontend groupeditor [DEPRECATED] pipeline:mr-approved priority3 product intelligence product intelligenceapproved releasedpublished sectiondev security severity3 typebug workflowpost-deploy-db-production
- Merged
- 56
- Approved
updated -
Generate JWT for authentication and provide it to CI jobs 8 of 13 checklist items completed
- Merged
- 247
- 4
- Approved
updated -
Auto-Remediation - Bot profile - Frontend 4 of 4 checklist items completed!44085 13.5AST Leadership Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning backend devopssecure direction frontend groupcomposition analysis published sectionsec security sub-issue typefeature workflowproduction
- Merged
- 47
- Approved
updated -
!133093 16.5Category:Source Code Management Deliverable HackerOne WeaknessCWE-284 backend bugvulnerability devopscreate frontend frontend-weight3 groupsource code pipeline:mr-approved priority4 releasedcandidate sectiondev security security-issue-escalated severity4 twtriaged typebug workflowpost-deploy-db-production
- Merged
- 52
- 2
- Approved
updated -
Upgrade Doorkeeper to 4.4.3 7 of 21 checklist items completed
- Merged
- 35
- Approved
updated -
Add support for encrypted SMTP credentials 8 of 10 checklist items completed
- Merged
- 27
- 1
- Approved
updated -
RackAttack: extend basic authentication detection for rate limiting 10 of 13 checklist items completed
- Merged
- 62
- 2
- Approved
updated -
Add new function for reading/writing encrypted config files 3 of 13 checklist items completed
- Merged
- 63
- Approved
updated -
Don't modify env in request forgery protection 5 of 11 checklist items completed
- Merged
- 6
- Approved
updated -
Sanitize slack-formatted links in chat messages 0 of 1 checklist item completed
- Merged
- 36
- Approved
updated -
Remove association between ChatName and Integration - Step 2 1 of 1 checklist item completed!107823 15.8
- Merged
- 32
- Approved
updated -
Adds absolute path check for dashboard config 0 of 1 checklist item completed
- Merged
- 11
- Approved
updated