Commits · 29399b2e60a5a22e49973d99e611137549712ac4 · nexedi / gitlab-ce

24 Nov, 2021 1 commit

Use a more precise Sourcegraph URL in CSP · 29399b2e

dcouture authored Oct 27, 2021

Allowing the entire sourcegraph instanc creates
a possibility for CSP bypass as it's possible to host
arbitrary javascript on sourcegraph. This change
restricts the allowed sourcegraph URLs to the api

Changelog: security

29399b2e

19 Nov, 2021 39 commits
- Merge branch 'clarify-group-member-lock-docs' into 'master' · cd889ce4
  Jose Ivan Vargas authored Nov 19, 2021
```
Clarify behaviour of group member lock feature

See merge request gitlab-org/gitlab!72397
```
  cd889ce4
- Clarify behaviour of group member lock feature · 8680ad43
  Lee Tickett authored Nov 19, 2021
  
  8680ad43
- Merge branch 'qa/zm-qtn-content-editor-ff' into 'master' · b8d8edd3
  Tanya Pazitny authored Nov 19, 2021
```
Quarantine content_editor_spec due to progressive feature flag rollout

See merge request gitlab-org/gitlab!74928
```
  b8d8edd3
- Merge branch 'chronic-duration-input' into 'master' · c8d7cf7a
  Olena Horal-Koretska authored Nov 19, 2021
```
Add ChronicDurationInput component

See merge request gitlab-org/gitlab!73686
```
  c8d7cf7a
- Merge branch 'update-experiment-rollout-issue-template' into 'master' · 31c9e3cb
  Doug Stull authored Nov 19, 2021
```
Update Experiment Rollout issue template

See merge request gitlab-org/gitlab!74866
```
  31c9e3cb
- Quarantine stale test due to feature flag rollout · 3ddc8ba3
  Zeff Morgan authored Nov 19, 2021
  
  3ddc8ba3
- Update with review feedback · 33320f0a
  Kyle Edwards authored Nov 19, 2021
  
  33320f0a
- Merge branch 'renovate/gitlab-uisvg' into 'master' · 2581cc2e
  Olena Horal-Koretska authored Nov 19, 2021
```
Update dependency @gitlab/ui to v32.39.0

See merge request gitlab-org/gitlab!74910
```
  2581cc2e
- Merge branch 'fneill-ctrt-group-devops-adoption' into 'master' · 39fad48a
  Suzanne Selhorn authored Nov 19, 2021
```
Fneill CTRT group devops adoption part 1

See merge request gitlab-org/gitlab!73753
```
  39fad48a
- Fneill CTRT group devops adoption part 1 · ed94a770
  Fiona Neill authored Nov 19, 2021
  
  ed94a770
- Merge branch 'refactor-pipeline-process-service-spec' into 'master' · b374f9b3
  Igor Drozdov authored Nov 19, 2021
```
Refactor unnecessary shared tests

See merge request gitlab-org/gitlab!74768
```
  b374f9b3
- Merge branch 'peterhegman/add-rspec-helpers-for-modals' into 'master' · 6c72b77a
  Kerri Miller authored Nov 19, 2021
```
Add Rspec modal helpers

See merge request gitlab-org/gitlab!74564
```
  6c72b77a
- Add Rspec modal helpers · de6e5507
  Peter Hegman authored Nov 19, 2021
  
  de6e5507
- Merge branch 'allow-squashing-single-commit' into 'master' · 7c2bc065
  Kerri Miller authored Nov 19, 2021
```
Allow squashing in MRs with single commit

See merge request gitlab-org/gitlab!74464
```
  7c2bc065
- Merge branch 'issue_344279_last_6' into 'master' · 67c6a42a
  David Fernandez authored Nov 19, 2021
```
Fix offenses introduced by Style/OpenStructUse `nuget_packages_shared_examples.rb`

See merge request gitlab-org/gitlab!74203
```
  67c6a42a
- Merge branch 'cdybenko-master-patch-60353' into 'master' · d496369a
  Suzanne Selhorn authored Nov 19, 2021
```
Expose more of the Portfolio Management features in this list

See merge request gitlab-org/gitlab!74913
```
  d496369a
- Expose more of the Portfolio Management features in this list · 723ecd41
  Christen Dybenko authored Nov 19, 2021
  
  723ecd41
- Merge branch 'fix_schema_validation_logic' into 'master' · 0bc7bc10
  Alper Akgun authored Nov 19, 2021
```
Fix security report schema validation logic

See merge request gitlab-org/gitlab!74793
```
  0bc7bc10
- Merge branch 'docs-align-rails-cheatsheet' into 'master' · 5bf8f7f7
  Amy Qualls authored Nov 19, 2021
```
Docs: Align Rails cheatsheet with style guide

See merge request gitlab-org/gitlab!74679
```
  5bf8f7f7
- Docs: Align Rails cheatsheet with style guide · c1dc7311
  Katrin Leinweber authored Nov 19, 2021
  
  c1dc7311
- Update dependency @gitlab/ui to v32.39.0 · 863e313c
  GitLab Renovate Bot authored Nov 19, 2021
  
  863e313c
- Merge branch '327808-duedateinheritedsource' into 'master' · 6f1b8a86
  Jarka Košanová authored Nov 19, 2021
```
Expose epic inherited start and due date via GraphQL

See merge request gitlab-org/gitlab!72726
```
  6f1b8a86
- Expose epic inherited start and due date via GraphQL · 26cefd97
  Jan Beckmann authored Nov 19, 2021
  
  26cefd97
- Merge branch 'feature/gb/add-pipeline-creation-chain-logger' into 'master' · 4d7f479a
  Fabio Pitino authored Nov 19, 2021
```
Instrument pipeline creation chain with a new logger

See merge request gitlab-org/gitlab!72996
```
  4d7f479a
- Instrument pipeline creation chain with a new logger · 451b4cc9
  Grzegorz Bizon - OOO until Nov 22nd authored Nov 19, 2021
  
  451b4cc9
- Merge branch '322755-split-ce-ee' into 'master' · c867a760
  Andrew Fontaine authored Nov 19, 2021
```
Split issues list refactor into CE and EE

See merge request gitlab-org/gitlab!74426
```
  c867a760
- Split issues list refactor into CE and EE · 78b867a8
  Coung Ngo authored Nov 19, 2021
  
  78b867a8
- Merge branch 'update-gitlab-experiment-to-0.6.5' into 'master' · 296654cd
  Jarka Košanová authored Nov 19, 2021
```
Release gitlab-experiment version 0.6.5

See merge request gitlab-org/gitlab!74544
```
  296654cd
- Release gitlab-experiment version 0.6.5 · 588c7e38
  Jeremy Jackson authored Nov 19, 2021
  
  588c7e38
- Merge branch '2256-add-issue-contact-quick-actions' into 'master' · 157d8bb6
  Peter Leitzen authored Nov 19, 2021
```
Add customer relations contact quick actions

See merge request gitlab-org/gitlab!73413
```
  157d8bb6
- Merge branch 'renovate/content-editor-packages' into 'master' · 94bf8fed
  Enrique Alcántara authored Nov 19, 2021
```
Update Content Editor Packages

See merge request gitlab-org/gitlab!74832
```
  94bf8fed
- Merge branch 'pl-rake-gettext-lint-parallel' into 'master' · 5dd1f9f6
  Alper Akgun authored Nov 19, 2021
```
Parallelize `rake gettext:lint` to improve runtime

See merge request gitlab-org/gitlab!74883
```
  5dd1f9f6
- Merge branch '342916-merge_train_when_pipeline_succeeds_docs_path' into 'master' · a03565ac
  Jacques Erasmus authored Nov 19, 2021
```
Migrate merge train when docs path

See merge request gitlab-org/gitlab!73278
```
  a03565ac
- Migrate merge train when docs path · 31bad576
  David O'Regan authored Nov 19, 2021
  
  31bad576
- Merge branch 'mle/use-figure-for-snippet' into 'master' · f24e45c9
  Vitaly Slobodin authored Nov 19, 2021
```
Use figure instead of article element

See merge request gitlab-org/gitlab!70705
```
  f24e45c9
- Merge branch... · 823805b5
  Jarka Košanová authored Nov 19, 2021
```
Merge branch '342715-db-timeout-when-loading-environment-in-projects-blobcontroller-show-2' into 'master'

Optimize EnvironmentsByDeploymentsFinder query

See merge request gitlab-org/gitlab!74526
```
  823805b5
- Add issue customer relations contacts quick actions · b5e6f7b3
  Lee Tickett authored Oct 20, 2021
```
Add support for adding and removing crm contacts to/from issues
via quick actions

Changelog: added
```
  b5e6f7b3
- Merge branch '342177-promote-invite-members-dropdown' into 'master' · cc2f3a8c
  Sean McGivern authored Nov 19, 2021
```
Make invite members in quick menu permanent

See merge request gitlab-org/gitlab!74760
```
  cc2f3a8c
- Merge branch 'fc-fix-scrolling-problem-with-multiple-errors' into 'master' · f4da99f5
  Nicolò Maria Mezzopera authored Nov 19, 2021
```
Improve error messages experience in pipeline editor

See merge request gitlab-org/gitlab!74543
```
  f4da99f5