-
!156701 17.3AppSecWeighttrivial Category:Container Registry Deliverable HackerOne Package:P1 SLABreached SLOMissed WeaknessCWE-77 backend bugvulnerability devopspackage gcp+gitlab integration groupauthentication pipelinetier-3 pipeline:mr-approved priority2 releasedpublished sectioncore platform security security-fix-in-public severity2 typebug workflowpost-deploy-db-production
- Merged
-
-
- 23
- Approved
updated -
!154111 17.2AppSecWeightmedium AppSecWorkTypestable counterpart Data WarehouseNot Impacted Technical Writing UI text backend database databasereview pending devopsverify docsfeature documentation feature flag feature flagexists featureaddition grouppipeline security pipelinetier-3 pipeline:mr-approved releasedpublished rspec:slow test detected sectionci security typefeature workflowpost-deploy-db-production
- Merged
-
-
- 61
- 1
- Approved
updated -
!156699 17.2Category:Container Registry Deliverable HackerOne Package:P1 SLABreached SLOMissed WeaknessCWE-77 backend bugvulnerability devopspackage gcp+gitlab integration groupauthentication pipelinetier-3 pipeline:mr-approved priority2 releasedpublished sectioncore platform security security-fix-in-public severity2 typebug workflowpost-deploy-db-production
- Merged
-
-
- 5
- Approved
updated -
Improve Conan package registry authentication method 0 of 1 checklist item completed!157771 17.3
- Merged
-
-
- 140
- Approved
updated -
!159526 17.3AppSecWeightsmall AppSecWorkTypestable counterpart Application Security Team Category:Subscription Management Unplanned backend devopsfulfillment feature flag featureaddition groupsubscription management pipelinetier-3 pipeline:mr-approved releasedpublished rspec:slow test detected sectionfulfillment security typefeature workflowpost-deploy-db-production
- Merged
-
-
- 44
- Approved
updated -
- Merged
-
-
- 28
- Approved
updated -
Add basic auth support to Maven download endpoints 1 of 1 checklist item completed
- Merged
-
-
- 73
- Approved
updated -
Re-run background migration for PersonalAccessToken#expires_at 1 of 1 checklist item completed!123002 16.1Deliverable HackerOne WeaknessCWE-840 backend background-migrationfinalized bugfunctional database database-testing-automation databaseapproved devopsfoundations documentation groupauthentication and authorization [DEPRECATED] pipeline:mr-approved priority3 releasedpublished sectiondev security severity3 typebug workflowpost-deploy-db-production
- Merged
-
-
- 43
- Approved
updated -
Rack middleware for path traversal checks 1 of 1 checklist item completed
- Merged
-
-
- 75
- Approved
updated -
Debian CRUD group distribution endpoints 1 of 14 checklist items completed
- Merged
-
-
- 62
- Approved
updated -
RubyGems API skeleton and authentication [RUN ALL RSPEC] [RUN AS-IF-FOSS] 5 of 6 checklist items completed
- Merged
-
- 47
- Approved
updated -
Enable uploading of SVG images for Design Management 8 of 9 checklist items completed
- Merged
-
- 90
- Approved
updated -
Use pipeline creation rate limit from application settings 1 of 1 checklist item completed!87223 15.1Application Limits Category:Continuous Integration Eng-ConsumerInfrastructure Eng-Inter-DeptRate Limits Eng-ProducerDevelopment Engineering Allocation OKR-FY24Q2 SLOMissed VerifyP1 availabilitylimit backend corrective action devopsverify documentation feature flag grouppipeline execution infradev priority2 releasedcandidate sectionops security severity2 typebug workflowproduction
- Merged
-
-
- 26
- Approved
updated -
Use native Gitaly pagination for Branch list API 1 of 13 checklist items completed
- Merged
-
- 58
- Approved
updated -
!133093 16.5Category:Source Code Management Deliverable HackerOne WeaknessCWE-284 backend bugvulnerability devopscreate frontend frontend-weight3 groupsource code pipeline:mr-approved priority4 releasedcandidate sectiondev security security-issue-escalated severity4 twtriaged typebug workflowpost-deploy-db-production
- Merged
-
-
- 52
- 2
- Approved
updated -
Utilize show_diff_preview_in_email column 0 of 1 checklist item completed!98547 16.11
- Merged
-
-
- 195
- Approved
updated -
Warn user about tokens in the comments 1 of 1 checklist item completed
- Merged
-
-
- 32
- Approved
updated -
- Merged
-
-
- 46
- Approved
updated -
Resolve "IP whitelisting for Geo-enabling functionality in the primary" 7 of 13 checklist items completed
- Merged
-
- 96
- Approved
updated -
!144953 16.10Category:Continuous Integration Deliverable HackerOne QA VerifyP1 WeaknessCWE-284 backend bugvulnerability cicdactive customer devopsverify documentation feature flag feature flagexists grouppipeline execution pipelinetier-3 pipeline:mr-approved priority3 releasedpublished sectionci security security-fix-in-public severity3 typebug workflowpost-deploy-db-production
- Merged
-
-
- 25
- Approved
updated