-
Delete symlinks after extracting files 0 of 1 checklist item completedgitlab!113577 15.10
-
GitLab Upgrade Alert - Security Upgrade Alert Modal 1 of 1 checklist item completedgitlab!105875 15.7
-
Make schemes a required field in Gitlab::UrlBlocker 0 of 1 checklist item completed
-
Run dependency scan on MR pipelines 4 of 10 checklist items completed
-
Add secrets detection 1 of 1 checklist item completed
-
Introduce rendering timeout to Banzai SyntaxHighlight filter 1 of 1 checklist item completed
-
Switch to UBI8-minimal 3 of 12 checklist items completedgitlab-org/security-products/analyzers/semgrep!165 15.6
-
Switch to UBI8-minimal 3 of 12 checklist items completedgitlab-org/security-products/analyzers/secrets!183 15.6
-
Switch to ubi8-minimal 4 of 12 checklist items completedgitlab-org/security-products/analyzers/kics!56 15.5
-
Update `cmark-gfm` and `commonmarker` gems due to vulnerability 1 of 1 checklist item completed
-
Prevent login using autogenerated passwords 1 of 1 checklist item completedgitlab!99031 15.5
-
gitlab-org/ruby/gems/gitlab-styles!128 15.5
-
Verify gem checksums against committed file 1 of 1 checklist item completedgitlab!98508 15.5Deliverable FY23Q3 Technical Writing backend corrective action development guidelines devopssystems docsfeature documentation featureenhancement groupdistribution group::distributionbuild priority2 quad-planningcomplete-no-action releasedpublished sectioncore platform security security-awardsawarded typefeature workflowpost-deploy-db-production
-
Resolve "Email the user when their two-factor OTP attempt is wrong" 1 of 1 checklist item completed
-
Disable access to Sawyer Resource dynamic methods 0 of 1 checklist item completed
-
Generate Gemfile.checksum file 1 of 1 checklist item completedgitlab!98154 15.4
-
Upgrade to OmniAuth 2.0 1 of 1 checklist item completedgitlab!96595 15.4Deliverable FY23Q3 FedRAMPVulnerability authentication backend devopsmanage groupauthentication and authorization [DEPRECATED] maintenancerefactor pipeline:skip-undercoverage priority1 quad-planningcomplete-no-action releasedpublished sectiondev security security-awardsawarded security-backlogreview-complete securitybotignore severity1 typemaintenance workflowpost-deploy-db-production
-
Update script to (optionally) revoke actively used PATs 1 of 1 checklist item completed