CHANGELOG 5.15 KB
Newer Older
1 2 3 4
v2.6.13
  - Add push-branches command
  - Add delete-remote-branches command

James Lopez's avatar
James Lopez committed
5 6 7
v2.6.12
  - Fix git-annex issue not working using custom SSH port repositories

8 9 10 11 12
v2.6.11
  - Increase HTTP timeout and log request durations
  - Workaround for a Webrick issue on Ruby 2.2
  - New optional `--force` parameter for `gitlab-projects fetch-remote`

Jeroen Nijhof's avatar
Jeroen Nijhof committed
13 14 15
v2.6.10
  - Add git gc for housekeeping

16 17 18
v2.6.9
  - Remove trailing slashes from gitlab_url

19
v2.6.8
20
  - Revert git-lfs-authenticate command from white list
Douwe Maan's avatar
Douwe Maan committed
21

Douwe Maan's avatar
Douwe Maan committed
22 23 24 25
v2.6.7
  - Exit with non-zero status when import-repository fails
  - Add fetch-remote command

Artem V. Navrotskiy's avatar
Artem V. Navrotskiy committed
26
v2.6.6
27
  - Do not clean LANG environment variable for the git hooks when working through the SSH-protocol
28
  - Add git-lfs-authenticate command to white list (this command is used by git-lfs for SSO authentication through SSH-protocol)
Jacob Vosmaer's avatar
Jacob Vosmaer committed
29
  - Handle git-annex and gcryptsetup
30

Robert Speicher's avatar
Robert Speicher committed
31 32 33
v2.6.5
  - Handle broken symlinks in create-hooks

34 35
v2.6.4
  - Remove keys from authorized_keys in-place
36
  - Increase batch_add_keys lock timeout to 300 seconds
Valery Sizov's avatar
Valery Sizov committed
37
  - If git-annex is enabled set GIT_ANNEX_SHELL_LIMITED variable
38

39 40 41
v2.6.3
  - Prevent keys with a very specific comment from accidentally being deleted.

42 43
v2.6.2
  - Include ecdsa keys in `gitlab_keys list-keys`.
44
  - Refactor logic around GL_ID
45

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
46 47 48
v2.6.1
  - Write errors to stderr to get git to abort and show them as such.

49
v2.6.0
50 51
  - Prevent character encoding issues by sending received changes as raw data.

52 53 54
v2.5.4
  - Remove recursive commands from bin/install

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
55 56 57
v2.5.3
  - Improve git-annex integration

58 59 60
v2.5.2
  - Safer line sub for git-annex command

61 62 63
v2.5.1
  - Expect broadcast message to return empty JSON if no message now

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
64
v2.5.0
65
  - Support git-annex tool (disabled by default)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
66
  - Add rubocop (Ruby static code analyzer) for development
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
67

68 69 70
v2.4.3
  - Print broadcast message if one is available

71 72 73
v2.4.2
  - Pass git changes list as string instead of array

Valery Sizov's avatar
Valery Sizov committed
74 75 76
v2.4.1
  - Access token masking in url before loging

77
v2.4.0
Valery Sizov's avatar
Valery Sizov committed
78
  - Show error message when git push is rejected
79

80 81 82
v2.2.0
  - Support for custom hooks (Drew Blessing and Jose Kahan)

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
83 84 85
v2.1.0
  - Use secret token with GitLab internal API. Requires GitLab 7.5 or higher

86
v2.0.1
Douwe Maan's avatar
Douwe Maan committed
87
  - Send post-receive changes to redis as a string instead of array
88

89 90
v2.0.0
  - Works with GitLab v7.3+
Job van der Voort's avatar
Job van der Voort committed
91
  - Replace raise with abort when checking path to prevent path exposure
92
  - Handle invalid number of arguments on remote commands
Douwe Maan's avatar
Douwe Maan committed
93
  - Replace update hook with pre-receive and post-receive hooks.
94
  - Symlink the whole hooks directory
95
  - Ignore missing repositories in create-hooks
96
  - Connect to Redis via sockets by default
Job van der Voort's avatar
Job van der Voort committed
97

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
98 99 100
v1.9.7
  - Increased test coverage
  - By default use direct unicorn connection (localhost:8080)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
101
  - Fix wrong repo path send to GitLab by GitlabUpdate hook
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
102

103 104 105
v1.9.6
  - Explicitly require 'timeout' from the standard library

106 107
v1.9.5
  - Put authorized_keys.lock in the same directory as authorized_keys
108
  - Use lock file when add new entries to authorized_keys
109

110 111 112
v1.9.4
  - Use lock file when modify authorized_keys

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
113 114 115
v1.9.3
  - Ignore force push detection for new branch or branch remove push

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
116
v1.9.2
Douwe Maan's avatar
Douwe Maan committed
117
  - Add support for force push detection
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
118

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
119
v1.9.1
Douwe Maan's avatar
Douwe Maan committed
120
  - Update hook sends branch and tag name
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
121

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
122 123 124 125
v1.9.0
  - Call api in update hook for both ssdh and http push. Requires GitLab 6.7+
  - Pass oldrev and newrev to api.allowed?

126 127 128
v1.8.5
  - Add `gitlab-keys batch-add-keys` subcommand for authorized_keys rebuilds

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
129 130 131
v1.8.4
  - Dont do import if repository exists

132 133 134
v1.8.3
  - Add timeout option for repository import

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
135 136 137
v1.8.2
  - Fix broken 1.8.1

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
138 139 140 141 142
v1.8.1
  - Restrict Environment Variables
  - Add bin/create-hooks command
  - More safe shell execution

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
143 144 145
v1.8.0
  - Fix return values in GitlabKeys

Dmitriy Zaporozhets's avatar
1.7.9  
Dmitriy Zaporozhets committed
146 147 148
v1.7.9
  - Fix escape of repository path for custom ssh port

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
149
v1.7.8
Jacob Vosmaer's avatar
Jacob Vosmaer committed
150
  - Escape repository path to prevent relative links (CVE-2013-4583)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
151 152

v1.7.7
Jacob Vosmaer's avatar
Jacob Vosmaer committed
153 154
  - Separate options from arguments with -- (CVE-2013-4582)
  - Bypass shell and use stdlib JSON for GitlabUpdate (CVE-2013-4581)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
155

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
156 157 158
v1.7.6
  - Fix gitlab-projects update-head for improted repo when branch exists but not listed in refs/head

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
159 160 161
v1.7.5
  - Remove keys from authorized_keys using ruby instead of shell

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
162
v1.7.4
Jacob Vosmaer's avatar
Jacob Vosmaer committed
163
  - More protection against shell injection (CVE-2013-4546)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
164

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
165
v1.7.3
Jacob Vosmaer's avatar
Jacob Vosmaer committed
166
  - Use Kernel#open to append lines to authorized_keys (CVE-2013-4490)
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
167

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
168 169 170
v1.7.2
  - More safe command execution

171 172 173
v1.7.1
  - Fixed issue when developers are able to push to protected branches that contain a '/' in the branch name.

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
174 175 176
v1.7.0
  - Clean authorized_keys file with `gitlab-keys clear`

177 178 179 180
v1.6.0
  - Create branch/tag functionality
  - Remove branch/tag functionality

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
181 182 183 184 185 186
v1.5.0
  - Logger
  - Ability to specify ca_file/ca_path
  - Update-head command for project
  - Better regexp for key_id inside shell

187 188 189
v1.4.0
  - Regex used in rm-key command was too lax

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
190 191 192
v1.3.0
  - Fork-project command
  - Custom redis configuration
Akzhan Abdulin's avatar
Akzhan Abdulin committed
193 194
  - Interpret login with deploy key as anonymous one

195 196
v1.2.0
  - Return non-zero result if gitlab-projects and gitlab-keys execution was not successful
Akzhan Abdulin's avatar
Akzhan Abdulin committed
197
  - http_settings configuration option added
198

Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
199 200 201 202
v1.1.0
  - added mv-project feature
  - increased test coverage

203
v1.0.4
Dmitriy Zaporozhets's avatar
Dmitriy Zaporozhets committed
204
  - requires gitlab c9ca15e
Johannes Schleifenbaum's avatar
Johannes Schleifenbaum committed
205
  - don't use post-receive file any more. Make all updates in update
206 207
  - fixed issue with invalid GL_USER
  - use GL_ID instead of GL_USER