Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/lib/gitlab/url_blocker.rb
AgeCommit message (Expand)Author
2021-02-01Add latest changes from gitlab-org/security/gitlab@13-8-stable-eeGitLab Bot
2020-11-19Add latest changes from gitlab-org/gitlab@13-6-stable-eev13.6.0-rc42GitLab Bot
2020-03-31Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2020-03-16Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-10-04Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-09-13Add latest changes from gitlab-org/gitlab@masterGitLab Bot
2019-09-05Allow not resolvable urls when rebinding setting is disabledFrancisco Javier López
2019-07-29Fix broken master because of security mergeFrancisco Javier López
2019-07-29Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhqRobert Speicher
2019-07-24[ADD] outbound requests whitelistReuben Pereira
2019-07-15Fix Server Side Request Forgery mitigation bypassFrancisco Javier López
2019-07-12Don't use bang method when there is no safe methodReuben Pereira
2019-05-30Add DNS rebinding protection settingsOswaldo Ferreira
2019-05-30Protect Gitlab::HTTP against DNS rebinding attackDouwe Maan
2019-04-11Align UrlValidator to validate_url gem implementation.Thong Kuah
2019-01-07Add table and model for error tracking settingsReuben Pereira
2018-12-06Allow URLs to be validated as ascii_onlyJames Edwards-Jones
2018-11-29Merge branch 'security-11-5-fix-webhook-ssrf-ipv6' into 'security-11-5'Steve Azzopardi
2018-11-29Merge branch 'security-fj-crlf-injection' into 'master'Cindy Pallares
2018-11-29Merge branch 'security-stored-xss-for-environments' into 'master'Cindy Pallares
2018-10-25Merge branch 'sh-block-other-localhost' into 'master'Thiago Presa
2018-10-22Enable frozen string for lib/gitlab/*.rbgfyoung
2018-09-06Block loopback addresses in UrlBlockerStan Hu
2018-08-13Block link-local addresses in URLBlockerStan Hu
2018-06-11Avoid checking the user format in every url validationFrancisco Javier López
2018-06-01Add validation to webhook and service URLs to ensure they are not blocked bec...Francisco Javier López
2018-04-02Rename allow_private_networks to allow_local_networkDouwe Maan
2018-04-02Make error messages even more descriptiveDouwe Maan
2018-04-02Raise more descriptive errors when URLs are blockedDouwe Maan
2018-03-21Merge branch 'fj-15329-services-callbacks-ssrf' into 'security-10-6'Douwe Maan
2017-11-09Merge branch 'ssrf-protections-round-2' into 'security-10-1'Douwe Maan
2017-08-10Merge branch 'rs-alphanumeric-ssh-params' into 'security-9-4'James Edwards-Jones
2017-03-21Merge branch 'ssrf' into 'security' Rubén Dávila
2017-03-21Merge branch 'ssrf' into 'security' Douwe Maan
    generated by cgit v1.2.3 (git 2.25.1) at 2024-07-13 14:48:17 +0300