Commits · v10.3.5 · Forest Godfrey / gitlab-ce

18 Jan, 2018 2 commits
- Update VERSION to 10.3.5 · 7c30d486
  
  Oswaldo Ferreira authored Jan 18, 2018
  
  7c30d486
- Update CHANGELOG.md for 10.3.5 · d00552e7
  Oswaldo Ferreira authored Jan 18, 2018
```
[ci skip]
```
  d00552e7
17 Jan, 2018 2 commits
- Merge branch 'fj-42112-fix-deploy-keys-migration-mysql-10-3' into '10-3-stable' · 4e8103f1
  Stan Hu authored Jan 17, 2018
```
[10.3] Fix bug in security release with deploy keys migration

See merge request gitlab-org/gitlab-ce!16530
```
  4e8103f1
- [10.3] Fix bug in security release with deploy keys migration · 0869d947
  Francisco Javier López authored Jan 17, 2018
  
  0869d947
10 Jan, 2018 3 commits
- Update VERSION to 10.3.4 · 56dc7222
  Oswaldo Ferreira authored Jan 10, 2018
  
  56dc7222
- Update CHANGELOG.md for 10.3.4 · f58e165b
  Oswaldo Ferreira authored Jan 10, 2018
```
[ci skip]
```
  f58e165b
- Merge branch '10-3-stable-patch-4' into '10-3-stable' · b60908b8
  Oswaldo Ferreira authored Jan 10, 2018
```
Prepare 10.3.4 Security Release

See merge request gitlab/gitlabhq!2288
```
  b60908b8
09 Jan, 2018 2 commits

Merge branch 'jej/fix-disabled-oauth-access-10-3' into 'security-10-3' · d2536bf5

authored Jan 09, 2018

[10.3] Prevent login with disabled OAuth providers

See merge request gitlab/gitlabhq!2296

(cherry picked from commit 4936650427ffc88e6ee927aedbb2c724d24b094c)

a0f9d222 Prevents login with disabled OAuth providers

d2536bf5

Merge branch 'fl-ipythin-10-3' into 'security-10-3' · 9c53c64e

authored Jan 09, 2018

Port of [10.2] Sanitizes IPython notebook output

See merge request gitlab/gitlabhq!2285

(cherry picked from commit 1c46e031c70706450a8e0ae730f4c323b72f9e4c)

aac035fe Port of [10.2] Sanitizes IPython notebook output

9c53c64e

08 Jan, 2018 1 commit

Merge branch 'fix/import-rce-10-3' into 'security-10-3' · 056d35ca

authored Jan 08, 2018

[10.3] Fix RCE via project import mechanism

See merge request gitlab/gitlabhq!2294

(cherry picked from commit dcfec507d6f9ee119d65a832393e7c593af1d3b2)

86d75812 Fix RCE via project import mechanism

056d35ca

07 Jan, 2018 9 commits

Merge branch… · a95e1013

authored Jan 05, 2018

Merge branch '41293-fix-command-injection-vulnerability-on-system_hook_push-queue-through-web-hook' into 'security-10-3'

Don't allow line breaks on HTTP headers

See merge request gitlab/gitlabhq!2277

(cherry picked from commit 7fc0a6fc096768a5604d6dd24d7d952e53300c82)

073b8f9c Don't allow line breaks on HTTP headers

a95e1013

Merge branch 'sh-migrate-can-push-to-deploy-keys-projects-10-3' into 'security-10-3' · 65c5cdb6

authored Jan 05, 2018

[10.3] Migrate `can_push` column from `keys` to `deploy_keys_project`

See merge request gitlab/gitlabhq!2276

(cherry picked from commit f6ca52d31bac350a23938e0aebf717c767b4710c)

1f2bd3c0 Backport to 10.3

65c5cdb6

Merge branch '41567-projectfix' into 'security-10-3' · 523050b6

authored Jan 05, 2018

check project access on MR create

See merge request gitlab/gitlabhq!2273

(cherry picked from commit 1fe2325d6ef2bced4c5e97b57691c894f38b2834)

43e85f49 check project access on MR create

523050b6

Merge branch 'ac/fix-path-traversal' into 'security-10-3' · 7c4f7c28

authored Jan 03, 2018

[10.3] Fix path traversal in gitlab-ci.yml cache:key

See merge request gitlab/gitlabhq!2270

(cherry picked from commit c32d0c6807dfd41d7838a35742e6d0986871b389)

df29094a Fix path traversal in gitlab-ci.yml cache:key

7c4f7c28

Merge branch 'sh-validate-path-project-import-10-3' into 'security-10-3' · 11cf1869

authored Jan 04, 2018

Validate project path in Gitlab import - 10.3 port

See merge request gitlab/gitlabhq!2268

(cherry picked from commit 94c82376d66fc80d46dd2d5eeb5bade408ec6a7e)

2b94a7c2 Validate project path in Gitlab import

11cf1869

Merge branch 'milestones-finder-order-fix' into 'security-10-3' · c8de335e

authored Jan 05, 2018

Remove order param from the MilestoneFinder

See merge request gitlab/gitlabhq!2259

(cherry picked from commit 14408042e78f2ebc2644f956621b461dbfa3d36d)

155881e7 Remove order param from the MilestoneFinder

c8de335e

Merge branch 'label-xss-10-3' into 'security-10-3' · 6c5bc18b

authored Dec 15, 2017

[10.3] Fix XSS in issue label dropdown

See merge request gitlab/gitlabhq!2253

(cherry picked from commit 363ffabcebd7bb0d1a2d59ca1a75e4eadb4a4360)

ea1fb0ea Fix XSS in issue label dropdown

6c5bc18b

Merge branch 'ac/41346-xss-ci-job-output' into 'security-10-3' · 64a70d38

authored Dec 21, 2017

[10.3] Fix XSS vulnerability in Pipeline job trace

See merge request gitlab/gitlabhq!2258

(cherry picked from commit 44caa80ed9a2514a74a5eeab10ff51849d64851b)

5f86f3ff Fix XSS vulnerability in Pipeline job trace

64a70d38

Merge branch… · bb430504

authored Jan 06, 2018

Merge branch 'security-10-3-do-not-expose-passwords-or-tokens-in-service-integrations-api' into 'security-10-3'

Filter out sensitive fields from the project services API

See merge request gitlab/gitlabhq!2281

(cherry picked from commit 476f2576444632f2a9a61b4cead9c1077f2c81d7)

2bcbbda0 Filter out sensitive fields from the project services API

bb430504

02 Jan, 2018 4 commits
- Update VERSION to 10.3.3 · 888cf314
  Tiago Botelho authored Jan 02, 2018
  
  888cf314
- Update CHANGELOG.md for 10.3.3 · 50c984b7
  Tiago Botelho authored Jan 02, 2018
```
[ci skip]
```
  50c984b7
- Merge branch '10-3-stable-patch-3' into '10-3-stable' · daf88e02
  LUKE BENNETT authored Jan 02, 2018
```
Prepare 10.3.3 release

See merge request gitlab-org/gitlab-ce!16163
```
  daf88e02
- Merge branch 'sh-fix-spam-update-404' into 'master' · f5c2ad7f
  Sean McGivern authored Jan 01, 2018
```
Fix 404 error after a user edits an issue description and solves the reCAPTCHA

Closes #41445

See merge request gitlab-org/gitlab-ce!16167

(cherry picked from commit ac35636f)

b8f5a7d5 Fix 404 error after a user edits an issue description and solves the reCAPTCHA
```
  f5c2ad7f
29 Dec, 2017 3 commits

Merge branch '41492-mr-comment-fix' into 'master' · e0d6049d

authored Dec 29, 2017

Fix links to old commits in merge request comments

Closes #41492

See merge request gitlab-org/gitlab-ce!16152

(cherry picked from commit cdda83eb)

c1ea4afa Fix links to old commits in merge requests

e0d6049d

Merge branch 'sh-handle-orphaned-deploy-keys' into 'master' · aa51106b

authored Dec 25, 2017

Gracefully handle orphaned write deploy keys in /internal/post_receive

Closes #41466

See merge request gitlab-org/gitlab-ce!16127

(cherry picked from commit 228f42b5)

36bdf3dc Gracefully handle orphaned write deploy keys in /internal/post_receive

aa51106b

Merge branch 'gitaly-opt-out' into 'master' · 6a8df993

authored Dec 28, 2017

Unmark Gitaly features as OPT_OUT until the gRPC proxy issue is fixed

Closes #38333

See merge request gitlab-org/gitlab-ce!16155

(cherry picked from commit 0ea75205)

7ed28b90 Unmark Gitaly features as OPT_OUT until the gRPC proxy issue is fixed

6a8df993

28 Dec, 2017 2 commits
- Update VERSION to 10.3.2 · 5fbc5f2f
  Tiago Botelho authored Dec 28, 2017
  
  5fbc5f2f
- Update CHANGELOG.md for 10.3.2 · 199151cf
  Tiago Botelho authored Dec 28, 2017
```
[ci skip]
```
  199151cf
27 Dec, 2017 4 commits

Merge branch 'sh-fix-mysql-migration-10-3' into 'master' · 9580ddbc

authored Dec 27, 2017

Fix migration for removing orphaned issues.moved_to_id values in MySQL and PostgreSQL

Closes #41498

See merge request gitlab-org/gitlab-ce!16141

(cherry picked from commit ff3e9af6)

5cacdc4e Fix migration for removing orphaned issues.moved_to_id values in MySQL
dfdf22c7 Fix PostgreSQL implementation of migration
e97671b8 Simplify implementation and allow for batch updates in MySQL

9580ddbc

Update VERSION to 10.3.1 · 63aec1bf
Tiago Botelho authored Dec 27, 2017

63aec1bf
Update CHANGELOG.md for 10.3.1 · 6d436158
Tiago Botelho authored Dec 27, 2017
```
[ci skip]
```
6d436158
Merge branch '10-3-stable-patch-1' into '10-3-stable' · 66cb7c35
Tiago authored Dec 27, 2017
```
Prepare 10.3.1 release

See merge request gitlab-org/gitlab-ce!16134
```
66cb7c35

26 Dec, 2017 7 commits

Add missing changelog on 4feee8aa · 64b84958
Oswaldo Ferreira authored Dec 26, 2017

64b84958
Merge branch '10-3-stable' into '10-3-stable-patch-1' · 4feee8aa
Oswaldo Ferreira authored Dec 26, 2017
```
Resolve #41448

See merge request gitlab-org/gitlab-ce!16124
```
4feee8aa

Merge branch 'sh-handle-anonymous-clones-project-moved' into 'master' · 97ff3fcd

authored Dec 26, 2017

Fix Error 500s with anonymous clones for a project that has moved

Closes #41457

See merge request gitlab-org/gitlab-ce!16128

(cherry picked from commit a5a0f3f7)

a83c41f6 Fix Error 500s with anonymous clones for a project that has moved
b6c711fd Disable redirect messages for anonymous clones

97ff3fcd

Merge branch 'bvl-fix-unlinking-with-lfs-objects' into 'master' · 3560b93e

authored Dec 20, 2017

Don't link LFS-objects multiple times.

Closes #41241

See merge request gitlab-org/gitlab-ce!16006

(cherry picked from commit 6e42fac3)

ac862490 Don't link LFS-objects multiple times.

3560b93e

Merge branch 'pawel/reduce_cardinality_of_prometheus_metrics' into 'master' · daa9be9e

authored Dec 21, 2017

Reduce cardinality of some of GitLab's Prometheus metrics and fix observed duration reporting.

Closes #41045

See merge request gitlab-org/gitlab-ce!15881

(cherry picked from commit 92e15071)

e391fe1d Reduce cardinality of gitlab_cache_operation_duration_seconds histogram
b02db1f4 Fix gitaly_call_histogram to observe times in seconds correctly
a8ebed60 Make `System.monotonic_time` retun seconds represented by float with microsecond precision
3c545133 Fix tests and formatting
ed715b79 use in_milliseconds rails helper
040167f0 Use seconds where possible, and convert to milliseconds for Influxdb consumption
10af36f0 add missing word to pawel-reduce_cardinality_of_prometheus_metrics.yml

daa9be9e

Merge branch 'dm-issue-move-transaction-error' into 'master' · b976a57c

authored Dec 22, 2017

Execute project hooks and services after commit when moving an issue

Closes #41324

See merge request gitlab-org/gitlab-ce!16108

(cherry picked from commit 87dbf984)

16b8297e Execute project hooks and services after commit when moving an issue

b976a57c

Merge branch 'fix-cluster-enviroment-missing' into 'master' · 8552ff86

authored Dec 19, 2017

Fix cluster enviroment missing

See merge request gitlab-org/gitlab-ce!15973

(cherry picked from commit 888ed309)

9616e70a Allow environment_scope in cluster controllers
8a13ef41 Add environment scope field to cluster forms
56f719f8 Revert save button caption change
dd66c6a2 Use helper for feature check in cluster partials
2b45ae09 Hardcode clusters helper in CE
ecba48bd Inverse the has_multiple_clusters? helper usage

8552ff86

23 Dec, 2017 1 commit
- Use AtomicReference instead of AtomicFixnum · 20f46637
  Mike Limansky authored Dec 23, 2017
  
  20f46637