Re-enable SqlInjection and CommandInjection

author: Brian Neel <brian@gitlab.com> 2017-08-04 05:20:34 +0300
committer: Brian Neel <brian@gitlab.com> 2017-08-08 17:50:54 +0300
commit: 9770c57fab0315865a33c8b6df269eded0d57b5c (patch)
tree: 5a7c7a9fccbce5ef3ccf6b02b1297aace41101fd /app/models/project_feature.rb
parent: b612a47da0e0225332a59ab961206f84602ad629 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/app/models/project_feature.rb b/app/models/project_feature.rb
index c8fabb16dc1..fb1db0255aa 100644
--- a/app/models/project_feature.rb
+++ b/app/models/project_feature.rb
@@ -55,7 +55,7 @@ class ProjectFeature < ActiveRecord::Base
   end
 
   def access_level(feature)
-    public_send(ProjectFeature.access_level_attribute(feature))
+    public_send(ProjectFeature.access_level_attribute(feature)) # rubocop:disable GitlabSecurity/PublicSend
   end
 
   def builds_enabled?
@@ -80,7 +80,7 @@ class ProjectFeature < ActiveRecord::Base
   # which cannot be higher than repository access level
   def repository_children_level
     validator = lambda do |field|
-      level = public_send(field) || ProjectFeature::ENABLED
+      level = public_send(field) || ProjectFeature::ENABLED # rubocop:disable GitlabSecurity/PublicSend
       not_allowed = level > repository_access_level
       self.errors.add(field, "cannot have higher visibility level than repository access level") if not_allowed
     end
author	Brian Neel <brian@gitlab.com>	2017-08-04 05:20:34 +0300
committer	Brian Neel <brian@gitlab.com>	2017-08-08 17:50:54 +0300
commit	9770c57fab0315865a33c8b6df269eded0d57b5c (patch)
tree	5a7c7a9fccbce5ef3ccf6b02b1297aace41101fd /app/models/project_feature.rb
parent	b612a47da0e0225332a59ab961206f84602ad629 (diff)