- 06 Jun, 2019 7 commits
-
-
Daniel Gerhardt authored
* Use String#sub with RegEx instead of String#delete_prefix
-
Daniel Gerhardt authored
* Use match instead match? * Use String#chomp instead of String#delete_prefix
-
Daniel Gerhardt authored
* Use match instead match?
-
Daniel Gerhardt authored
This reverts commit ca3e9b97, reversing changes made to 89686b90. The way Discord integration is implemented causes dependency problems.
-
Daniel Gerhardt authored
This reverts commit 07ec2c7b.
-
Daniel Gerhardt authored
* Use match instead match?
-
Daniel Gerhardt authored
-
- 30 May, 2019 2 commits
-
-
Stan Hu authored
This was renamed in GitLab 11.11, so the backport needs to use the original name.
-
Oswaldo Ferreira authored
-
- 27 May, 2019 1 commit
-
-
Kerri Miller authored
First reported: https://gitlab.com/gitlab-org/gitlab-ce/issues/60143 When the page slug is "javascript:" and we attempt to link to a relative path (using `.` or `..`) the code will concatenate the slug and the uri. This MR adds a guard to that concat step that will return `nil` if the incoming slug matches against any of the "unsafe" slug regexes; currently this is only for the slug "javascript:" but can be extended if needed. Manually tested against a non-exhaustive list from OWASP of common javascript XSS exploits that have to to with mangling the "javascript:" method, and all are caught by this change or by existing code that ingests the user-specified slug.
-
- 22 May, 2019 1 commit
-
-
Douwe Maan authored
Gitlab::HTTP now resolves the hostname only once, verifies the IP is not blocked, and then uses the same IP to perform the actual request, while passing the original hostname in the `Host` header and SSL SNI field.
-
- 21 May, 2019 1 commit
-
-
Felipe Artur authored
Fix milestone titles being leaked using search API when users cannot read milestones
-
- 06 May, 2019 1 commit
-
-
Mark Chao authored
Prevents refspec as branch name, which would bypass branch protection when used in conjunction with rebase. HEAD seems to be a special case with lots of occurrence, so it is considered valid for now. Another special case is `refs/head/*`, which can be imported.
-
- 03 May, 2019 1 commit
-
-
Patrick Derichs authored
-
- 01 May, 2019 2 commits
-
-
charlieablett authored
-
charlieablett authored
-
- 30 Apr, 2019 3 commits
-
-
charlieablett authored
-
charlieablett authored
-
charlieablett authored
-
- 26 Apr, 2019 1 commit
-
-
charlieablett authored
-
- 25 Apr, 2019 1 commit
-
-
Małgorzata Ksionek authored
Refactor api events class to use external helper Move specs from old class Add changelog and magic string Refactor events class to be more explicit Remove blank line
-
- 24 Apr, 2019 1 commit
-
-
charlieablett authored
-
- 23 Apr, 2019 1 commit
-
-
Douwe Maan authored
Bring back Rugged implementation of ListCommitsByOid See merge request gitlab-org/gitlab-ce!27441 (cherry picked from commit 6a72ab22) 2fc4de6a Bring back Rugged implementation of ListCommitsByOid
-
- 11 Apr, 2019 5 commits
-
-
John Jarvis authored
This reverts commit 348d5a1d, reversing changes made to 93e32156.
-
John Jarvis authored
[11.9] Revert "Remove HipChat integration from GitLab" See merge request gitlab-org/gitlab-ce!27257
-
Sean McGivern authored
This reverts commit a5378665.
-
Kamil Trzciński authored
Improve performance of PR import See merge request gitlab-org/gitlab-ce!27121 (cherry picked from commit f15caf01) f3ad51f8 Improve performance of PR import
-
Sean McGivern authored
Allow to use untrusted ruby syntax See merge request gitlab-org/gitlab-ce!26905 (cherry picked from commit 7dcc3003) 9bc4fbf1 Allow to use untrusted Regexp via feature flag
-
- 02 Apr, 2019 4 commits
-
-
Sean McGivern authored
Avoid excessive recursive calls with Rugged TreeEntries Closes #59759 See merge request gitlab-org/gitlab-ce!26813 (cherry picked from commit d7583add) 8686e012 Avoid excessive recursive calls with Rugged TreeEntries
-
Douwe Maan authored
Fix API /project/:id/branches not returning correct merge status Closes #56250 See merge request gitlab-org/gitlab-ce!26785 (cherry picked from commit 2db4e79f) cedbb336 Fix API /project/:id/branches not returning correct merge status 2675581c Revise merged branch check to green light up to N branches
-
Yorick Peterse authored
Force to recreate all diffs on import Closes #59353 See merge request gitlab-org/gitlab-ce!26480 (cherry picked from commit afb6e8e3) 7fbfb199 Force to recreate all diffs on import
- 28 Mar, 2019 1 commit
-
-
Jan Provaznik authored
-
- 26 Mar, 2019 1 commit
-
-
Jan Provaznik authored
Adds a rake task which can be used for removing EXIF data from existing uploads.
-
- 25 Mar, 2019 4 commits
-
-
Douglas Barbosa Alexandre authored
GitHub importer: Use the project creator to create branches from forks Closes #59396 See merge request gitlab-org/gitlab-ce!26510
-
Douwe Maan authored
Allow users to create protected branches via CLI Closes #59289 See merge request gitlab-org/gitlab-ce!26413 (cherry picked from commit b36fc6d5) 438485ef Allow users to create protected branches via CLI
-
Douwe Maan authored
Fix duplicated bottom match line Closes #59147 See merge request gitlab-org/gitlab-ce!26402 (cherry picked from commit 7d3c5d88) 8723f292 Fix diff bottom expand button appears twice
-
- 20 Mar, 2019 2 commits
-
-
Stan Hu authored
Merge branch '59208-fix-error-500-on-every-page-when-active-broadcast-message-present-after-upgrading-to-11-9-0' into 'master' Gracefully handles excluded fields from attributes during serialization on JsonCache Closes #59208 See merge request gitlab-org/gitlab-ce!26368 (cherry picked from commit cc5095ed) 7028b376 Gracefully handles excluded fields from attributes during serialization 1c7a2c05 Add CHANGELOG entry
-
Douglas Barbosa Alexandre authored
GitHub import: Create new branches as project owner See merge request gitlab-org/gitlab-ce!26335 (cherry picked from commit 6e74eb4e) 1e6ea914 GitHub import: Create new branches as project owner
-