Skip to content
Snippets Groups Projects

chore(deps): update dependency https://gitlab.com/gitlab-org/gitlab-foss.git to v16.1.1

Merged Kubitus Bot requested to merge renovate/gitlab into main

This MR contains the following updates:

Package Update Change
https://gitlab.com/gitlab-org/gitlab-foss.git minor 16.0.5 -> 16.1.1

Release Notes

gitlab-org/gitlab-foss (https://gitlab.com/gitlab-org/gitlab-foss.git)

v16.1.1

Compare Source

Security (12 changes)
  • Revert 'security-leaked-ci-job-token-permission-16-1' from '16-1' (merge request)
  • Use fully qualified ref when loading code owner file (merge request)
  • Maintainer can leak masked webhook secrets by manipulating URL masking (merge request)
  • Remove approvals when the only commit gets amended (merge request)
  • Add authorization validation to GithubController#failures action (merge request)
  • Fix for fork permissions check in compare controller (merge request)
  • Webhook token leaked in Sidekiq logs if log format is 'default' (merge request)
  • Mitigate epic reference filter ReDOS (merge request)
  • Increasing security for CI_JOB_TOKEN on public and internal projects (merge request)
  • Adjust access to value stream create, edit and destroy actions (merge request)
  • Sanitize user email addresses in admin confirm user dialog (merge request)
  • Obfuscate email of service desk issue creator in issue REST API (merge request)

v16.1.0

Compare Source

Added (224 changes)
Fixed (205 changes)
Changed (307 changes)
Deprecated (1 change)
Removed (32 changes)
Security (23 changes)
Performance (12 changes)
Other (98 changes)

v16.0.6

Compare Source

Security (12 changes)
  • Revert 'security-leaked-ci-job-token-permission-16-0' from '16-0'" (merge request)
  • Use fully qualified ref when loading code owner file (merge request)
  • Maintainer can leak masked webhook secrets by manipulating URL masking (merge request)
  • Remove approvals when the only commit gets amended (merge request)
  • Add authorization validation to GithubController#failures action (merge request)
  • Fix for fork permissions check in compare controller (merge request)
  • Webhook token leaked in Sidekiq logs if log format is 'default' (merge request)
  • Mitigate epic reference filter ReDOS (merge request)
  • Increasing security for CI_JOB_TOKEN on public and internal projects (merge request)
  • Adjust access to value stream create, edit and destroy actions (merge request)
  • Sanitize user email addresses in admin confirm user dialog (merge request)
  • Obfuscate email of service desk issue creator in issue REST API (merge request)

Configuration

:date: Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

:vertical_traffic_light: Automerge: Enabled.

:recycle: Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

:no_bell: Ignore: Close this MR and you won't be reminded about this update again.


  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by Kubitus Bot

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
Please register or sign in to reply
Loading