Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/Gemfile.lock
AgeCommit message (Collapse)Author
2019-01-31Extract GitLab Pages using RubyZipKamil Trzciński
RubyZip allows us to perform strong validation of expanded paths where we do extract file. We introduce the following additional checks to extract routines: 1. None of path components can be symlinked, 2. We drop privileges support for directories, 3. Symlink source needs to point within the target directory, like `public/`, 4. The symlink source needs to exist ahead of time.
2019-01-26Bump Sidekiq to 5.2.5Stan Hu
This reduces duplication caused by gitlab-monitor already shipping Sidekiq 5.2.5. The only changes appear to be minor: https://github.com/mperham/sidekiq/blob/master/Changes.md
2019-01-25Use http_max_redirects opt to replace monkeypatchThong Kuah
http_max_redirects was introduced in 4.2.2, so upgrade kubeclient. The monkey-patch was global so we will have to check that all instances of Kubeclient::Client are handled. Spec all methods of KubeClient This should provide better confidence that we are indeed disallowing redirection in all cases
2019-01-18Bump rbtrace version to 0.4.11Stan Hu
This change renames a dependency and fixes a minor bug, but this upgrade is happening because Gitaly will be receiving rbtrace as a dependency.
2019-01-17Merge branch '26375-markdown-footnotes-not-working' into 'master'Lin Jen-Shin
Markdown footnotes not working Closes #26375 See merge request gitlab-org/gitlab-ce!24168
2019-01-17Update to nokogiri 1.10.1Brett Walker
2019-01-17Conditionally initialize the global opentracing tracerAndrew Newdigate
This change will instantiate an OpenTracing tracer and configure it as the global tracer when the GITLAB_TRACING environment variable is configured. GITLAB_TRACING takes a "connection string"-like value, encapsulating the driver (eg jaeger, etc) and options for the driver. Since each service, whether it's written in Ruby or Golang, uses the same connection-string, it should be very easy to configure all services in a cluster, or even a single development machine to be setup to use tracing. Note that this change does not include instrumentation or propagation changes as this is a way of breaking a previous larger change into components. The instrumentation and propagation changes will follow in separate changes.
2019-01-15Adopt Fugit to replace Rufus::SchedulerLin Jen-Shin
2019-01-15Update sidekiq-cron 0.6.0 -> 1.0Pirate Praveen
2019-01-12Update gitlab-styles to 2.5.1Jasper Maes
2019-01-12Fix ambiguous brackets in task listsJared Deckard
2019-01-09Bump CarrierWave to 1.3.1Stan Hu
This avoids an extra HEAD request when making request for auth URL. Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/56096
2019-01-09Update nokogiri to 1.10.0Brett Walker
and truncato to 0.7.11
2019-01-08Merge branch 'update-pg' into 'master'Rémy Coutable
Update pg 0.18.4 -> 1.0 See merge request gitlab-org/gitlab-ce!17829
2019-01-03Merge branch 'sh-bump-mini-test' into 'master'Lin Jen-Shin
Bump minitest to 5.11.3 to match Gitaly version See merge request gitlab-org/gitlab-ce!24070
2019-01-03Update gems in Gemfile and qa/Gemfile to be consistentStan Hu
This will allow developers to run `bundle install` on both directories and avoid additional calls to RubyGems for local development. Also sets up the possibility of improved caching as mentioned in https://gitlab.com/gitlab-org/gitlab-ce/issues/55843.
2019-01-02Merge branch 'blackst0ne-bump-rails-cve-2018-16476' into 'master'Grzegorz Bizon
Bump Ruby on Rails to 5.0.7.1 See merge request gitlab-org/gitlab-ce!23396
2019-01-01Merge branch 'sh-bump-omniauth-google-gem' into 'master'Sean McGivern
Upgrade Omniauth and JWT gems to switch away from Google+ API Closes #55668 See merge request gitlab-org/gitlab-ce!24068
2018-12-31Merge branch 'rails52-dbcleaner' into 'master'Stan Hu
Bump database_cleaner version Closes #55539 See merge request gitlab-org/gitlab-ce!23985
2018-12-30Bump minitest to 5.11.3 to match Gitaly versionStan Hu
This prevents us from shipping duplicate versions of this gem.
2018-12-29Upgrade Omniauth and JWT gems to switch away from Google+ APIStan Hu
* omniauth-google-oauth2: Google will be deprecating its support for the Google+ API, which currently omniauth-google-oauth2 uses to retrieve user info. The bump in omniauth-google-oauth2 requires an upgrade to ruby-jwt v2+ to support the verification of multiple issue providers (https://github.com/zquestz/omniauth-google-oauth2/pull/345). * jwt: This has the most number of changes that need to be reviewed: https://github.com/jwt/ruby-jwt/blob/master/CHANGELOG.md * oauth2: Needed to support ruby-jwt v2+: https://github.com/oauth-xx/oauth2/blob/master/CHANGELOG.md * omniauth-azure-oauth2 needs a version bump to support ruby-jwt v2+. * omniauth: This version bump only involves backstage improvements: https://github.com/omniauth/omniauth/releases Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/55668
2018-12-27Update pg to ~> 1.1Pirate Praveen
2018-12-24Bump CarrierWave to 1.3.0 and remove monkey patchesStan Hu
Full list of changes: https://github.com/carrierwaveuploader/carrierwave/blob/master/CHANGELOG.md
2018-12-21Bump database_cleaner versionJan Provaznik
should fix issue with: undefined method `schema_migrations_table_name' for ActiveRecord::Migrator:Class https://gitlab.com/gitlab-org/gitlab-ee/-/jobs/135978879
2018-12-21Bump Ruby on Rails to 5.0.7.1blackst0ne
Fix the CVE-2018-16476 vulnerability.
2018-12-21Update minimum version of nokogiriPirate Praveen
Fixes: ActionView::Template::Error (undefined method `add_class' for #<Nokogiri::XML::Element:0x0055dbff5252e8>
2018-12-19Fix sidekiq-reliable-fetch versionValery Sizov
2018-12-19Merge branch 'zj-pool-destruction' into 'master'Kamil Trzciński
Leave object pools when destroying projects Closes gitaly#1415 See merge request gitlab-org/gitlab-ce!23869
2018-12-19Leave object pools when destroying projectsZeger-Jan van de Weg
This action doesn't lean on reduplication, so a short call can me made to the Gitaly server to have the object pool remove its remote to the project pending deletion. https://gitlab.com/gitlab-org/gitaly/blob/f6cd55357/internal/git/objectpool/link.go#L58 When an object pool doesn't have members, this would invalidate the need for a pool. So when a project leaves the pool, the pool will be destroyed on the background. Fixes: https://gitlab.com/gitlab-org/gitaly/issues/1415
2018-12-18Merge branch 'deprecated-alias-method-chain' into 'master'Rémy Coutable
Fix deprecation: alias_method_chain is deprecated. Please, use Module#prepend instead See merge request gitlab-org/gitlab-ce!23887
2018-12-17Bump gitlab-reliable-fetcher gemValery Sizov
2018-12-17Fix deprecation: alias_method_chain is deprecated. Please, use ↵Jasper Maes
Module#prepend instead
2018-12-12Specify sass ~> 3.5 in GemfilePirate Praveen
2018-12-10Bump sentry-raven gem to 2.7.4Stan Hu
Contains only minor fixes from 2.7.2: https://github.com/getsentry/raven-ruby/releases
2018-12-07Add feature flag for workhorse content type calculationFrancisco Javier López
2018-12-06Update gitaly-proto to v1.3.0Nick Thomas
2018-12-06Upgrade rspec-parameterized to 0.4.1Stan Hu
rspec-parameterized 0.4.0 fails spectacularly with Ruby 2.5.3 with the following error: ``` RuntimeError: No such frame, gone beyond end of stack! ``` This happens because of a Ruby bug in https://bugs.ruby-lang.org/issues/15105. The binding_of_caller gem induces this failure. This upgrade switches to the binding_of_ninja gem, which does not have the same problem.
2018-12-04Update batch-loader dependencyDouwe Maan
2018-12-03Bump gpgme gem version from 2.0.13 to 2.0.18Abulhair Saparov
2018-11-30Manually edited the Gemfile.lock to make the gitlab-ce pipeline happy.Matthias Fechner
2018-11-29Merge branch '51083-fix-move-api' into 'master'Rémy Coutable
Commits API: Preserve file content in move operations if unspecified Closes #52974 et #51083 See merge request gitlab-org/gitlab-ce!23387
2018-11-28Add monkey patch to unicorn to fix eof? problemKamil Trzciński
Rack with Unicorn is unable to handle chunked requests due to private `eof?` method. This exposes `eof?` not changing `rack` behavior. Issue: https://gitlab.com/gitlab-org/gitlab-ee/issues/8539
2018-11-27Update Gitaly and gitaly-protoNick Thomas
2018-11-27Merge branch 'upgrade_kubeclient_400' into 'master'Kamil Trzciński
Upgrade kubeclient to 4.0.0 See merge request gitlab-org/gitlab-ce!23261
2018-11-27Merge branch 'bvl-use-shell-writeref' into 'master'Douwe Maan
Don't use rugged write-ref anymore See merge request gitlab-org/gitlab-ce!23286
2018-11-27Upgrade kubeclient to 4.0.0Thong Kuah
Bumps kubeclient and its dependencies from 3.1.0 to 4.0.0.
2018-11-26Update gitaly and gitaly-protoBob Van Landuyt
2018-11-23Upgrade better_errors gem to 2.5.0Stan Hu
This gem is only used for development, and the latest version has been tested with Rails 5/Ruby 2.5. Changes: https://github.com/BetterErrors/better_errors/releases
2018-11-20Upgrade escape_utils to 1.2.1Stan Hu
This matches the version shipped in gitaly-ruby. The main changes between 1.1.1 and 1.2.1 are CI-related improvements: https://github.com/brianmario/escape_utils/compare/1.1.1...1.2.1
2018-11-20Merge branch 'sh-bump-gems-security' into 'master'Douglas Barbosa Alexandre
Bump nokogiri, loofah, and rack gems for security updates See merge request gitlab-org/gitlab-ce!23204
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-19 15:40:32 +0300