Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/spec
AgeCommit message (Expand)Author
2018-11-26Merge branch 'security-fix-uri-xss-applications-11-3' into 'security-11-3'Steve Azzopardi
2018-11-26[11.3] Fix CRLF issue in UrlValidatorFrancisco Javier López
2018-11-26Merge branch 'security-11-3-fix-webhook-ssrf-ipv6' into 'security-11-3'Steve Azzopardi
2018-11-26[11.3] Fixed ability to comment on and edit/delete comments on locked or conf...Chantal Rollison
2018-11-26Resolve reflected XSS in Ouath authorize windowJames Lopez
2018-11-26Merge branch 'security-fix-pat-web-access-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-11-3-xss-in-markdown-following-unrecognized-html-eleme...Steve Azzopardi
2018-11-23Merge branch 'security-mermaid-xss-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-bvl-exposure-in-commits-list-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-issue_51301-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-2736-prometheus-ssrf-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-11-3-stored-xss-for-environments' into 'security-11-3'Steve Azzopardi
2018-11-23Merge branch 'security-private-group-11-3' into 'security-11-3'Steve Azzopardi
2018-11-23Update code to use API scope on PAT authJames Lopez
2018-11-19Don't use fragment cache on commit pageBob Van Landuyt
2018-11-19Add failing test for XSS in mermaid diagramsWinnie Hellmann
2018-11-18Merge branch 'sh-fix-issue-54189-11-3' into 'security-11-3'Steve Azzopardi
2018-11-18Merge branch 'security-11-3-2717-xss-username-autocomplete' into 'security-11-3'Steve Azzopardi
2018-11-18Prevent templated services from being importedStan Hu
2018-11-16Sanitize output of SpacedLinkFilterBrett Walker
2018-11-14No redirects in prometheus servicerpereira2
2018-11-14Fix milestone promotion authorizationFelipe Artur
2018-11-14Validate URI scheme also for internal URIAlessio Caiazza
2018-11-12Fix SSRF in project integrationsFrancisco Javier López
2018-11-12Fix user name autocomplete XSS when name contains HTMLKushal Pandya
2018-11-07Fixed read name of private groupsChantal Rollison
2018-10-25Merge branch 'security-11-3-2717-fix-issue-title-xss' into 'security-11-3'Jan Provaznik
2018-10-25Merge branch 'security-redact-links-11-3' into 'security-11-3'Jan Provaznik
2018-10-25Merge branch 'security-fix/control-headers-11-3' into 'security-11-3'Jan Provaznik
2018-10-25Merge branch 'sh-validate-wiki-attachments-11-3' into 'security-11-3'Thiago Presa
2018-10-25Merge branch 'security-if-51113-hash_tokens-11-3' into 'security-11-3'Jan Provaznik
2018-10-25Merge branch 'security-11-3-51527-xss-in-mr-source-branch' into 'security-11-3'Thiago Presa
2018-10-25Merge branch 'sh-block-other-localhost-11-3' into 'security-11-3'Thiago Presa
2018-10-25Merge branch 'sh-validate-wiki-attachments-11-3' into 'security-11-3'Thiago Presa
2018-10-24Merge branch 'security-11-3-2717-fix-issue-title-xss' into 'security-11-3'Jan Provaznik
2018-10-24Merge branch 'security-redact-links-11-3' into 'security-11-3'Jan Provaznik
2018-10-24Validate Wiki attachments are valid temporary filesStan Hu
2018-10-23Redact unsubscribe links in issuable textsJan Provaznik
2018-10-23Fix content caching for non auth usersJames Lopez
2018-10-23[11.3] Persist only SHA digest of PersonalAccessToken#tokenImre Farkas
2018-10-23Merge branch 'security-11-3-51527-xss-in-mr-source-branch' into 'security-11-3'Thiago Presa
2018-10-19Add spec to test HTML escaping while rendering autocompleteKushal Pandya
2018-10-13Prevent SSRF attacks in HipChat integrationStan Hu
2018-10-13Fix XSS in MR source branch namePaul Slaughter
2018-10-12Fix MR discussion not loaded issueMark Chao
2018-10-12Revert "Merge branch '51958-fix-mr-discussion-loading' into 'master'"Bob Van Landuyt
2018-10-12Merge branch 'sh-fix-project-deletion-with-export' into 'master'Robert Speicher
2018-10-12Merge branch '51958-fix-mr-discussion-loading' into 'master'Phil Hughes
2018-10-04Merge branch 'security-bw-confidential-titles-through-markdown-api-11-3' into...Bob Van Landuyt
2018-10-04Merge branch 'security-fix-leaking-private-project-namespace-11-3' into 'secu...Bob Van Landuyt
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-16 21:51:29 +0300