- 27 Nov, 2018 1 commit
-
-
Mario de la Ossa authored
When creating comments, sending different noteable IDs for target_id and note[:noteable_id] would allow you to bypass comment creation security if the user had creation permissions for target_id. The comment would be created in note[:noteable_id]. Also made it so that users cannot edit/delete their comments on a noteable that becomes unreadable to them (if it gets flagged confidential and they don't have read access for example)
-
- 26 Nov, 2018 39 commits
-
-
Rémy Coutable authored
CE upstream - 2018-11-26 14:21 UTC See merge request gitlab-org/gitlab-ee!8588
-
Dmitriy Zaporozhets authored
i18n: externalize strings from 'app/views/layouts' See merge request gitlab-org/gitlab-ee!8587
-
George Tsiolis authored
-
GitLab Bot authored
# Conflicts: # locale/gitlab.pot [ci skip]
-
Dmitriy Zaporozhets authored
[EE] i18n: externalize strings from 'app/views/shared/members' See merge request gitlab-org/gitlab-ee!8474
-
Fatih Acet authored
Update externalized strings from `/app/views/project/runners` See merge request gitlab-org/gitlab-ce!23347
-
Dmitriy Zaporozhets authored
i18n: externalize strings from 'app/views/shared/members' See merge request gitlab-org/gitlab-ce!23125
-
Tao Wang authored
Signed-off-by:Tao Wang <twang2218@gmail.com>
-
🤖 GitLab Bot 🤖 authored
CE upstream - 2018-11-26 13:21 UTC See merge request gitlab-org/gitlab-ee!8586
-
GitLab Bot authored
-
Stan Hu authored
Batch load only data from same repository when lazy object is accessed See merge request gitlab-org/gitlab-ce!23309
-
Tao Wang authored
Signed-off-by:
Rémy Coutable <remy@rymai.me>
-
Tao Wang authored
Signed-off-by:
-
Sean McGivern authored
CE upstream - 2018-11-26 10:21 UTC Closes gitaly#1406 See merge request gitlab-org/gitlab-ee!8582
-
Grzegorz Bizon authored
Cache project HEAD to prevent unnecessary Gitaly calls See merge request gitlab-org/gitlab-ce!23307
-
Grzegorz Bizon authored
Allow to store null variables Closes #54379 See merge request gitlab-org/gitlab-ce!23299
-
Grzegorz Bizon authored
CE Backport: Extract Gitlab::Prometheus::QueryVariables See merge request gitlab-org/gitlab-ce!23335
-
Fatih Acet authored
Refactor issue boards switcher to single file Vue component (CE-port) See merge request gitlab-org/gitlab-ce!23274
-
Fatih Acet authored
Refactor issue boards switcher to single file Vue component See merge request gitlab-org/gitlab-ee!8519
-
Grzegorz Bizon authored
CE port for qa-193-ldap-group-sync EE branch See merge request gitlab-org/gitlab-ce!22834
-
Sean McGivern authored
-
Grzegorz Bizon authored
E2E QA Tests - LDAP Admin user sync and Group sync with group cn and user filter See merge request gitlab-org/gitlab-ee!8234
-
George Tsiolis authored
-
George Tsiolis authored
-
Phil Hughes authored
Add @vue/test-utils as dev dependency See merge request gitlab-org/gitlab-ce!23345
-
GitLab Bot authored
# Conflicts: # locale/gitlab.pot [ci skip]
-
Douwe Maan authored
-
Douwe Maan authored
By specifying `key`, we get a different lazy batch loader for each repository, which means that accessing a lazy object from one repository will only result in that repository's objects being fetched, not those of other repositories, saving us some unnecessary Gitaly lookups.
-
Fatih Acet authored
Externalize strings from `/app/views/project/runners` See merge request gitlab-org/gitlab-ce!23208
-
Heinrich Lee Yu authored
-
Heinrich Lee Yu authored
-
Heinrich Lee Yu authored
-
Heinrich Lee Yu authored
-
Heinrich Lee Yu authored
-
Rémy Coutable authored
Exclude qa-frontend from running on docs-only branches See merge request gitlab-org/gitlab-ce!23327
-
Rémy Coutable authored
Instruct against squashing in CE to EE MRs See merge request gitlab-org/gitlab-ce!23330
-
Fatih Acet authored
Attempt to fix lazy loader spec transient failure Closes #49511 See merge request gitlab-org/gitlab-ce!22918
-
Luke Bennett authored
-
Phil Hughes authored
Fix documentation on using prettier for a specific directory See merge request gitlab-org/gitlab-ce!23336
-
