Age | Commit message (Collapse) | Author |
|
Resolve "Remove rails-deprecated_sanitizer"
Closes #17014
See merge request gitlab-org/gitlab-ce!27268
|
|
Update capybara and selenium-webdriver
See merge request gitlab-org/gitlab-ce!27201
|
|
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
|
|
|
|
Signed-off-by: Rémy Coutable <remy@rymai.me>
|
|
This reverts commit a5378665a1dc0b9c8dc3a4fa279a0eb78aac5aac.
|
|
Update Rails to 5.0.7.2
Closes #58963
See merge request gitlab-org/gitlab-ce!27022
|
|
This update has two important fixes:
1. It reverts the monkey patch introduced in
https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/23385 since
https://github.com/rack/rack/pull/1201 is now part of the release.
2. Preserve forwarded IP address for trusted proxy chains
(https://github.com/rack/rack/pull/1343).
|
|
This fixes a number of issues as described in
https://weblog.rubyonrails.org/releases/.
Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/58963
|
|
Add `GetArchiveRequest` to git-archive params.
Modifies `Git::Repository#archive_metadata` to append `path`
to `ArchivePrefix` so it'll not hit the cache of repository archive
when it already exists.
|
|
The new version requires `python3` to be available. In omnibus
installation this is already a reality as we are currently pathing
previous `gitlab-markup` version to use `python3` instead of `python2`.
We are now requiring `python3` with the gem without having to patch it.
As a consequence to also make it easy to use it in development, we've
introduced a `Pipfile` and `Pipfile.lock`, working similarly to
`Gemfile` and `Gemfile.lock`, and added documentation on how to use
them.
|
|
- Also remove boostrap 4 migration adapter
|
|
Bump httparty to version 1.16.4
Closes #44342
See merge request gitlab-org/gitlab-ce!25893
|
|
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
|
|
This version bump makes things consistent between Gitaly and
fixes a significant number of bugs:
https://github.com/libgit2/libgit2/releases
This also decreases disk space of Omnibus builds by ~30 MB.
There is also a workaround for
https://github.com/libgit2/rugged/issues/785. If Gitaly or another
process changes .gitconfig while Rugged has the file loaded,
Rugged::Repository#each_key will report stale values unless a lookup is
done first.
This bug only manifests in a spec because we are using both Gitaly and
Rugged at the same time there, and we normally don't use Rugged in the
CE/EE code in this way.
|
|
Signed-off-by: Rémy Coutable <remy@rymai.me>
|
|
Update recaptcha gem from 3.x to 4.11
See merge request gitlab-org/gitlab-ce!25921
|
|
Remove references to the vendored copies of At.js and jquery.carat
as well as the legacy rails wrapper gem.
|
|
|
|
|
|
|
|
This reverts merge request !17871
|
|
|
|
When `force` is set to `true` and `start_branch` is set, the
branch will be ovewritten with the new commit based on the
`HEAD` of the `start_branch`.
This commit includes changes to update the `gitaly-proto` gem.
|
|
Allow raw `tls_options` to be passed in LDAP configuration
Closes #46391
See merge request gitlab-org/gitlab-ce!20678
|
|
We've previously exposed ca_file and ssl_version but there are many
possible options that can be used inside tls_options. Instead of
exposing individual ones, simply expose the entire hash so it can
be passed in and we won't have to add things in the future.
|
|
1.4.1 contains a number of bug fixes and performance improvements:
https://github.com/Shopify/bootsnap/blob/master/CHANGELOG.md
|
|
|
|
Fixes issue with AWS V4 signatures not working with Ceph S3:
https://github.com/fog/fog-aws/issues/462
|
|
Adds the ground work for writing into
the merge ref refs/merge-requests/:iid/merge the
merge result between source and target branches of
a MR, without further side-effects such as
mailing, MR updates and target branch changes.
|
|
Bump version_sorter to version 2.2.4
See merge request gitlab-org/gitlab-ce!25487
|
|
Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
|
|
Webmock 3.5.0 brings Ruby 2.6 support.
|
|
Unicorn 5.3.1 fixes a GC issue that causes a crash, and Unicorn 5.4.1
quiets some warnings for Ruby 2.6. More details:
https://github.com/defunkt/unicorn/releases
|
|
This release fixes a bug in handling certain ed25519 keys. For more
details, see this GitHub issue:
https://github.com/bensie/sshkey/issues/34
|
|
|
|
Send project name with Gitaly repository requests
Closes gitaly#1394
See merge request gitlab-org/gitlab-ce!23373
|
|
Upgrade gitaly-proto to 1.10.0 to have this field.
|
|
update js_regex 2.2.1 -> 3.1
See merge request gitlab-org/gitlab-ce!24433
|
|
This engine was replaced with CommonMarker in 11.4, it was deprecated
since then.
|
|
'19745-forms-with-task-lists-can-be-overwritten-when-editing-simultaneously' into 'master'
Forms with task lists can be overwritten when editing simultaneously
See merge request gitlab-org/gitlab-ce!23938
|
|
In commit 6fa5fd8515e0f2d5a6341134560021f353d84362 the `require: false`
was removed to ensure the Gem was loaded at run time. Unfortunately, the
`require` necessary for the rubyzip Gem is "zip" and not "rubyzip". As a
result, Bundler would not require the Gem. This meant that we would
still run into constant errors when referring to `Zip::File`.
|
|
pages:deploy step was failing with the following error:
```
unitialized constant SafeZip::Extract::Zip
```
Since license_finder already pulls in rubyzip, we can make it
a required gem. We also use the scope operator to make the reference to
Zip::File explicit.
|
|
RubyZip allows us to perform strong validation of
expanded paths where we do extract file.
We introduce the following additional checks
to extract routines:
1. None of path components can be symlinked,
2. We drop privileges support for directories,
3. Symlink source needs to point within the target directory,
like `public/`,
4. The symlink source needs to exist ahead of time.
|
|
v2.1.0 was published wrongly by the package author.
|
|
|
|
|
|
http_max_redirects was introduced in 4.2.2, so upgrade kubeclient.
The monkey-patch was global so we will have to check that all instances
of Kubeclient::Client are handled.
Spec all methods of KubeClient
This should provide better confidence that we are indeed disallowing
redirection in all cases
|
|
Markdown footnotes not working
Closes #26375
See merge request gitlab-org/gitlab-ce!24168
|
|
|