All Versions
662
Latest Version
Avg Release Cycle
13 days
Latest Release
1923 days ago

Changelog History
Page 57

  • v10.1.7 Changes

    January 18, 2018
    • No changes.

  • v10.1.6 Changes

    January 11, 2018

    ๐Ÿ”’ Security (8 changes, 1 of them is from the community)

    • ๐Ÿ›  Fix writable shared deploy keys.
    • Filter out sensitive fields from the project services API. (Robert Schilling)
    • ๐Ÿ›  Fix RCE via project import mechanism.
    • Prevent OAuth login POST requests when a provider has been disabled.
    • Prevent a SQL injection in the MilestonesFinder.
    • ๐Ÿ”€ Check user authorization for source and target projects when creating a merge request.
    • ๐Ÿ›  Fix path traversal in gitlab-ci.yml cache:key.
    • ๐Ÿ›  Fix XSS vulnerability in pipeline job trace.

  • v10.1.5 Changes

    December 07, 2017

    ๐Ÿ”’ Security (5 changes)

    • ๐Ÿ›  Fix e-mail address disclosure through member search fields
    • Prevent creating issues through API when user does not have permissions
    • Prevent an information disclosure in the Groups API
    • ๐Ÿ›  Fix user without access to private Wiki being able to see it on the project page
    • ๐Ÿ›  Fix Cross-Site Scripting (XSS) vulnerability while editing a comment

  • v10.1.4 Changes

    November 14, 2017

    ๐Ÿ›  Fixed (4 changes)

    • Don't try to create fork network memberships for forks with a missing source. !15366
    • Formats bytes to human reabale number in registry table.
    • Prevent error when authorizing an admin-created OAauth application without a set owner.
    • โšก๏ธ Prevents position update for image diff notes.

  • v10.1.3 Changes

    November 10, 2017
    • ๐Ÿ”’ [SECURITY] Prevent OAuth phishing attack by presenting detailed wording about app to user during authorization.
    • ๐Ÿ›  [FIXED] Fix cancel button not working while uploading on the new issue page. !15137
    • ๐Ÿ›  [FIXED] Fix webhooks recent deliveries. !15146 (Alexander Randa (@randaalex))
    • ๐Ÿ›  [FIXED] Fix issues with forked projects of which the source was deleted. !15150
    • ๐Ÿ›  [FIXED] Fix GPG signature popup info in Safari and Firefox. !15228
    • 0๏ธโƒฃ [FIXED] Make sure group and project creation is blocked for new users that are external by default.
    • ๐Ÿ”€ [FIXED] Fix arguments Import/Export error importing project merge requests.
    • ๐Ÿ“œ [FIXED] Fix diff parser so it tolerates to diff special markers in the content.
    • [FIXED] Fix a migration that adds merge_requests_ff_only_enabled column to MR table.
    • ๐Ÿ›  [FIXED] Render 404 when polling commit notes without having permissions.
    • ๐Ÿ”€ [FIXED] Show error message when fast-forward merge is not possible.
    • ๐Ÿ›  [FIXED] Avoid regenerating the ref path for the environment.
    • ๐ŸŽ [PERFORMANCE] Remove Filesystem check metrics that use too much CPU to handle requests.

  • v10.1.2 Changes

    November 08, 2017
    • ๐Ÿ”’ [SECURITY] Add X-Content-Type-Options header in API responses to make it more difficult to find other vulnerabilities.
    • ๐Ÿ”’ [SECURITY] Properly translate IP addresses written in decimal, octal, or other formats in SSRF protections in project imports.
    • ๐Ÿ›  [FIXED] Fix TRIGGER checks for MySQL.

  • v10.1.1 Changes

    October 31, 2017
    • 0๏ธโƒฃ [FIXED] Auto Devops kubernetes default namespace is now correctly built out of gitlab project group-name. !14642 (Mircea Danila Dumitrescu)
    • ๐Ÿ›  [FIXED] Forbid the usage of Redis#keys. !14889
    • ๐Ÿ›  [FIXED] Make the circuitbreaker more robust by adding higher thresholds, and multiple access attempts. !14933
    • ๐Ÿ›  [FIXED] Only cache last push event for existing projects when pushing to a fork. !14989
    • ๐Ÿ›  [FIXED] Fix bug preventing secondary emails from being confirmed. !15010
    • ๐Ÿ›  [FIXED] Fix broken wiki pages that link to a wiki file. !15019
    • โฌ†๏ธ [FIXED] Don't rename paths that were freed up when upgrading. !15029
    • ๐Ÿ›  [FIXED] Fix bitbucket login. !15051
    • โšก๏ธ [FIXED] Update gitaly in GitLab 10.1 to 0.43.1 for temp file cleanup. !15055
    • ๐Ÿ›  [FIXED] Use the correct visibility attribute for projects in system hooks. !15065
    • ๐Ÿ›  [FIXED] Normalize LDAP DN when looking up identity.
    • ๐Ÿ›  [FIXED] Adds callback functions for initial request in clusters page.
    • ๐Ÿ›  [FIXED] Fix missing Import/Export issue assignees.
    • ๐Ÿ›  [FIXED] Allow boards as top level route.
    • ๐Ÿ”€ [FIXED] Fix widget of locked merge requests not being presented.
    • ๐Ÿ›  [FIXED] Fix editing issue description in mobile view.
    • ๐Ÿ›  [FIXED] Fix deletion of container registry or images returning an error.
    • ๐Ÿ›  [FIXED] Fix the writing of invalid environment refs.
    • [CHANGED] Store circuitbreaker settings in the database instead of config. !14842
    • โšก๏ธ [CHANGED] Update default disabled merge request widget message to reflect a general failure. !14960
    • ๐ŸŽ [PERFORMANCE] Stop merge requests with thousands of commits from timing out. !15063

  • v10.1.0 Changes

    October 22, 2017
    • ๐Ÿ”’ [SECURITY] Use a timeout on certain git operations. !14872
    • ๐Ÿ”’ [SECURITY] Move project repositories between namespaces when renaming users.
    • ๐Ÿ”’ [SECURITY] Prevent an open redirect on project pages.
    • ๐Ÿ”’ [SECURITY] Prevent a persistent XSS in user-provided markup.
    • ๐Ÿšš [REMOVED] Remove the ability to visit the issue edit form directly. !14523
    • ๐Ÿšš [REMOVED] Remove animate.js and label animation.
    • ๐Ÿ›  [FIXED] Perform prometheus data endpoint requests in parallel. !14003
    • ๐Ÿ›  [FIXED] Escape quotes in git username. !14020 (Brandon Everett)
    • ๐Ÿ›  [FIXED] Fixed non-UTF-8 valid branch names from causing an error. !14090
    • ๐Ÿ›  [FIXED] Read import sources from setting at first initialization. !14141 (Visay Keo)
    • ๐Ÿ’ป [FIXED] Display full pre-receive and post-receive hook output in GitLab UI. !14222 (Robin Bobbitt)
    • ๐Ÿ›  [FIXED] Fix incorrect X-axis labels in Prometheus graphs. !14258
    • โšก๏ธ [FIXED] Fix the default branches sorting to actually be 'Last updated'. !14295
    • ๐Ÿ›  [FIXED] Fixes project denial of service via gitmodules using Extended ASCII. !14301
    • ๐Ÿ”ง [FIXED] Fix the filesystem shard health check to check all configured shards. !14341
    • ๐Ÿ›  [FIXED] Compare email addresses case insensitively when verifying GPG signatures. !14376 (Tim Bishop)
    • ๐Ÿ›  [FIXED] Allow the git circuit breaker to correctly handle missing repository storages. !14417
    • ๐Ÿ›  [FIXED] Fix rake gitlab:incoming_email:check and make it report the actual error. !14423
    • ๐Ÿ›  [FIXED] Does not check if an invariant hashed storage path exists on disk when renaming projects. !14428
    • ๐Ÿ›  [FIXED] Also reserve refs/replace after importing a project. !14436
    • ๐Ÿ›  [FIXED] Fix profile image orientation based on EXIF data gvieira37. !14461 (gvieira37)
    • ๐Ÿš€ [FIXED] Move the deployment flag content to the left when deployment marker is near the end. !14514
    • ๐Ÿ›  [FIXED] Fix notes type created from import. This should fix some missing notes issues from imported projects. !14524
    • ๐Ÿ›  [FIXED] Fix bottom spacing for dropdowns that open upwards. !14535
    • ๐Ÿ›  [FIXED] Adjusts tag link to avoid underlining spaces. !14544 (Guilherme Vieira)
    • ๐Ÿ›  [FIXED] Add missing space in Sidekiq memory killer log message. !14553 (Benjamin Drung)
    • ๐Ÿ›  [FIXED] Ensure no exception is raised when Raven tries to get the current user in API context. !14580
    • ๐Ÿ›  [FIXED] Fix edit project service cancel button position. !14596 (Matt Coleman)
    • ๐Ÿ›  [FIXED] Fix case sensitive email confirmation on signup. !14606 (robdel12)
    • ๐Ÿ”’ [FIXED] Whitelist authorized_keys.lock in the gitlab:check rake task. !14624
    • ๐Ÿ”€ [FIXED] Allow merge in MR widget with no pipeline but using "Only allow merge requests to be merged if the pipeline succeeds". !14633
    • ๐Ÿ›  [FIXED] Fix navigation dropdown close animation on mobile screens. !14649
    • ๐Ÿ›  [FIXED] Fix the project import with issues and milestones. !14657
    • ๐Ÿ›  [FIXED] Use explicit boolean true attribute for show-disabled-button in Vue files. !14672
    • ๐Ÿ›  [FIXED] Make tabs on top scrollable on admin dashboard. !14685 (Takuya Noguchi)
    • ๐Ÿ›  [FIXED] Fix broken Y-axis scaling in some Prometheus graphs. !14693
    • ๐Ÿ›  [FIXED] Search or compare LDAP DNs case-insensitively and ignore excess whitespace. !14697
    • ๐Ÿ›  [FIXED] Allow prometheus graphs to correctly handle NaN values. !14741
    • ๐Ÿ›  [FIXED] Don't show an "Unsubscribe" link in snippet comment notifications. !14764
    • ๐Ÿ›  [FIXED] Fixed duplicate notifications when added multiple labels on an issue. !14798
    • ๐Ÿ›  [FIXED] Fix alignment for indeterminate marker in dropdowns. !14809
    • โšก๏ธ [FIXED] Fix error when updating a forked project with deleted ForkedProjectLink. !14916
    • ๐Ÿ›  [FIXED] Correctly render asset path for locales with a region. !14924
    • ๐Ÿ›  [FIXED] Fix the external URLs generated for online view of HTML artifacts. !14977
    • โฑ [FIXED] Reschedule merge request diff background migrations to catch failures from 9.5 run.
    • ๐Ÿ”€ [FIXED] fix merge request widget status icon for failed CI.
    • ๐Ÿ›  [FIXED] Fix the number representing the amount of commits related to a push event.
    • ๐Ÿ”€ [FIXED] Sync up hover and legend data across all graphs for the prometheus dashboard.
    • ๐Ÿ›  [FIXED] Fixes mini pipeline graph in commit view.
    • ๐Ÿ›  [FIXED] Fix comment deletion confirmation dialog typo.
    • ๐Ÿ›  [FIXED] Fix project snippets breadcrumb link.
    • โฑ [FIXED] Make usage ping scheduling more robust.
    • ๐Ÿ”€ [FIXED] Make "merge ongoing" check more consistent.
    • ๐Ÿ‘ท [FIXED] Add 1000+ counters to job page.
    • ๐Ÿ”€ [FIXED] Fixed issue/merge request breadcrumb titles not having links.
    • ๐Ÿ›  [FIXED] Fixed commit avatars being centered vertically.
    • ๐Ÿ›  [FIXED] Tooltips in the commit info box now all face the same direction. (Jedidiah Broadbent)
    • ๐Ÿ›  [FIXED] Fixed navbar title colors leaking out of the navbar.
    • ๐Ÿ”€ [FIXED] Fix bug that caused merge requests with diff notes imported from Bitbucket to raise errors.
    • ๐Ÿ›  [FIXED] Correctly detect multiple issue URLs after 'Closes...' in MR descriptions.
    • 0๏ธโƒฃ [FIXED] Set default scope on PATs that don't have one set to allow them to be revoked.
    • ๐Ÿ›  [FIXED] Fix application setting to cache nil object.
    • ๐Ÿ›  [FIXED] Fix image diff swipe handle offset to correctly align with the frame.
    • ๐Ÿ›  [FIXED] Force non diff resolved discussion to display when collapse toggled.
    • ๐Ÿ›  [FIXED] Fix resolved discussions not expanding on side by side view.
    • ๐Ÿ›  [FIXED] Fixed the sidebar scrollbar overlapping links.
    • ๐Ÿ›  [FIXED] Issue board tooltips are now the correct width when the column is collapsed. (Jedidiah Broadbent)
    • ๐Ÿ›  [FIXED] Improve autodevops banner UX and render it only in project page.
    • ๐Ÿ“ˆ [FIXED] Fix typo in cycle analytics breaking time component.
    • 0๏ธโƒฃ [FIXED] Force two up view to load by default for image diffs.
    • ๐Ÿ›  [FIXED] Fixed milestone breadcrumb links.
    • 0๏ธโƒฃ [FIXED] Fixed group sort dropdown defaulting to empty.
    • ๐Ÿ”€ [FIXED] Fixed notes not being scrolled to in merge requests.
    • ๐Ÿ›  [FIXED] Adds Event polyfill for IE11.
    • โšก๏ธ [FIXED] Update native unicode emojis to always render as normal text (previously could render italicized). (Branka Martinovic)
    • ๐Ÿ‘ท [FIXED] Sort JobsController by id, not created_at.
    • ๐Ÿ›  [FIXED] Fix revision and total size missing for Container Registry.
    • ๐Ÿ›  [FIXED] Fixed milestone issuable assignee link URL.
    • ๐Ÿ›  [FIXED] Fixed breadcrumbs container expanding in side-by-side diff view.
    • ๐Ÿ”€ [FIXED] Fixed merge request widget merged & closed date tooltip text.
    • ๐Ÿ›  [FIXED] Prevent creating multiple ApplicationSetting instances.
    • ๐Ÿ›  [FIXED] Fix username and ID not logging in production_json.log for Git activity.
    • ๐Ÿ›  [FIXED] Make Redcarpet Markdown renderer thread-safe.
    • ๐Ÿ›  [FIXED] Two factor auth messages in settings no longer overlap the button. (Jedidiah Broadbent)
    • ๐Ÿ’… [FIXED] Made the "remember me" check boxes have consistent styles and alignment. (Jedidiah Broadbent)
    • ๐Ÿ›  [FIXED] Prevent branches or tags from starting with invalid characters (e.g. -, .).
    • ๐Ÿšš [DEPRECATED] Removed two legacy config options. (Daniel Voogsgerd)
    • [CHANGED] Show notes number more user-friendly in the graph. !13949 (Vladislav Kaverin)
    • [CHANGED] Link SAML users to LDAP by email. !14216
    • ๐Ÿ”€ [CHANGED] Display whether branch has been merged when deleting protected branch. !14220
    • [CHANGED] Make the labels in the Compare form less confusing. !14225
    • [CHANGED] Confirmation email shows link as text instead of human readable text. !14243 (bitsapien)
    • [CHANGED] Return only group's members in user dropdowns on issuables list pages. !14249
    • 0๏ธโƒฃ [CHANGED] Added defaults for protected branches dropdowns on the repository settings. !14278
    • [CHANGED] Show confirmation modal before deleting account. !14360
    • ๐Ÿ”€ [CHANGED] Allow creating merge requests across a fork network. !14422
    • [CHANGED] Re-arrange script HTML tags before template HTML tags in .vue files. !14671
    • [CHANGED] Create idea of read-only database. !14688
    • [CHANGED] Add active states to nav bar counters.
    • [CHANGED] Add view replaced file link for image diffs.
    • [CHANGED] Adjust tooltips to adhere to 8px grid and make them more readable.
    • [CHANGED] breadcrumbs receives padding when double lined.
    • [CHANGED] Allow developer role to admin milestones.
    • ๐Ÿ‘‰ [CHANGED] Stop using Sidekiq for updating Key#last_used_at.
    • [CHANGED] Include GitLab full name in Slack messages.
    • [ADDED] Expose last pipeline details in API response when getting a single commit. !13521 (Mehdi Lahmam (@mehlah))
    • [ADDED] Allow to use same periods for different housekeeping tasks (effectively skipping the lesser task). !13711 (cernvcs)
    • [ADDED] Add GitLab-Pages version to Admin Dashboard. !14040 (travismiller)
    • [ADDED] Commenting on image diffs. !14061
    • [ADDED] Script to migrate project's repositories to new Hashed Storage. !14067
    • ๐Ÿ”€ [ADDED] Hide close MR button after merge without reloading page. !14122 (Jacopo Beschi @jacopo-beschi)
    • [ADDED] Add Gitaly version to Admin Dashboard. !14313 (Jacopo Beschi @jacopo-beschi)
    • [ADDED] Add 'closed_at' attribute to Issues API. !14316 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ”€ [ADDED] Add tooltip for milestone due date to issue and merge request lists. !14318 (Vitaliy @blackst0ne Klachkov)
    • [ADDED] Improve list of sorting options. !14320 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ“‡ [ADDED] Add client and call site metadata to Gitaly calls for better traceability. !14332
    • ๐Ÿ— [ADDED] Strip gitlab-runner section markers in build trace HTML view. !14393
    • [ADDED] Add online view of HTML artifacts for public projects. !14399
    • [ADDED] Create Kubernetes cluster on GKE from k8s service. !14470
    • ๐Ÿ‘ [ADDED] Add support for GPG subkeys in signature verification. !14517
    • ๐Ÿ“œ [ADDED] Parse and store gitlab-runner timestamped section markers. !14551
    • 0๏ธโƒฃ [ADDED] Add "implements" to the default issue closing message regex. !14612 (Guilherme Vieira)
    • [ADDED] Replace tag: true into :tag in the specs. !14653 (Jacopo Beschi @jacopo-beschi)
    • ๐Ÿ”’ [ADDED] Discussion lock for issues and merge requests.
    • [ADDED] Add an API endpoint to determine the forks of a project.
    • [ADDED] Add help text to runner edit: tags should be separated by commas. (Brendan O'Leary)
    • [ADDED] Only copy old/new code when selecting left/right side of parallel diff.
    • [ADDED] Expose avatar_url when requesting list of projects from API with simple=true.
    • [ADDED] A confirmation email is now sent when adding a secondary email address. (digitalmoksha)
    • ๐Ÿ”€ [ADDED] Move Custom merge methods from EE.
    • ๐Ÿ‘ [ADDED] Makes @mentions links have a different styling for better separation.
    • [ADDED] Added tabs to dashboard/projects to easily switch to personal projects.
    • [OTHER] Extract AutocompleteController#users into finder. !13778 (Maxim Rydkin, Mayra Cabrera)
    • โœ… [OTHER] Replace 'project/wiki.feature' spinach test with an rspec analog. !13856 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ“„ [OTHER] Expand docs for changing username or group path. !13914
    • ๐Ÿšš [OTHER] Move lib/ci to lib/gitlab/ci. !14078 (Maxim Rydkin)
    • [OTHER] Decrease Cyclomatic Complexity threshold to 13. !14152 (Maxim Rydkin)
    • [OTHER] Decrease Perceived Complexity threshold to 15. !14160 (Maxim Rydkin)
    • โœ… [OTHER] Replace project/group_links.feature spinach test with an rspec analog. !14169 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the project/milestone.feature spinach test with an rspec analog. !14171 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the profile/emails.feature spinach test with an rspec analog. !14172 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the project/team_management.feature spinach test with an rspec analog. !14173 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ”€ [OTHER] Replace the 'project/merge_requests/accept.feature' spinach test with an rspec analog. !14176 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ— [OTHER] Replace the 'project/builds/summary.feature' spinach test with an rspec analog. !14177 (Vitaliy @blackst0ne Klachkov)
    • โšก๏ธ [OTHER] Optimize the boards' issues fetching. !14198
    • ๐Ÿ”€ [OTHER] Replace the 'project/merge_requests/revert.feature' spinach test with an rspec analog. !14201 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the 'project/issues/award_emoji.feature' spinach test with an rspec analog. !14202 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the 'profile/active_tab.feature' spinach test with an rspec analog. !14239 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the 'search.feature' spinach test with an rspec analog. !14248 (Vitaliy @blackst0ne Klachkov)
    • [OTHER] Load sidebar participants avatars only when visible. !14270
    • [OTHER] Adds gitlab features and components to usage ping data. !14305
    • โœ… [OTHER] Replace the 'project/archived.feature' spinach test with an rspec analog. !14322 (Vitaliy @blackst0ne Klachkov)
    • โช [OTHER] Replace the 'project/commits/revert.feature' spinach test with an rspec analog. !14325 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the 'project/snippets.feature' spinach test with an rspec analog. !14326 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ“š [OTHER] Add link to OpenID Connect documentation. !14368 (Markus Koller)
    • โฌ†๏ธ [OTHER] Upgrade doorkeeper-openid_connect. !14372 (Markus Koller)
    • โฌ†๏ธ [OTHER] Upgrade gitlab-markup gem. !14395 (Markus Koller)
    • [OTHER] Index projects on repository storage. !14414
    • โœ… [OTHER] Replace the 'project/shortcuts.feature' spinach test with an rspec analog. !14431 (Vitaliy @blackst0ne Klachkov)
    • โœ… [OTHER] Replace the 'project/service.feature' spinach test with an rspec analog. !14432 (Vitaliy @blackst0ne Klachkov)
    • ๐ŸŽ [OTHER] Improve GitHub import performance. !14445
    • ๐Ÿ–จ [OTHER] Add basic sprintf implementation to JavaScript. !14506
    • ๐Ÿ”€ [OTHER] Replace the 'project/merge_requests.feature' spinach test with an rspec analog. !14621 (Vitaliy @blackst0ne Klachkov)
    • โšก๏ธ [OTHER] Update GitLab Pages to v0.6.0. !14630
    • ๐Ÿ“š [OTHER] Add documentation to summarise project archiving. !14650
    • ๐Ÿšš [OTHER] Remove 'Repo' prefix from API entites. !14694 (Vitaliy @blackst0ne Klachkov)
    • ๐Ÿ“ˆ [OTHER] Removes cycle analytics service and store from global namespace.
    • [OTHER] Improves i18n for Auto Devops callout.
    • [OTHER] Exports common_utils utility functions as modules.
    • ๐ŸŽ [OTHER] Use simple=true for projects API in Projects dropdown for better search performance.
    • โšก๏ธ [OTHER] Change index on ci_builds to optimize Jobs Controller.
    • ๐Ÿ”€ [OTHER] Add index for merge_requests.merge_commit_sha.
    • [OTHER] Add (partial) index on Labels.template.
    • [OTHER] Cache issue and MR template names in Redis.
    • [OTHER] changed dashed border button color to be darker.
    • [OTHER] Speed up permission checks.
    • ๐Ÿ“„ [OTHER] Fix docs for lightweight tag creation via API.
    • [OTHER] Clarify artifact download via the API only accepts branch or tag name for ref.
    • [OTHER] Change recommended MySQL version to 5.6.
    • [OTHER] Bump google-api-client Gem from 0.8.6 to 0.13.6.
    • [OTHER] Detect when changelog entries are invalid.
    • ๐Ÿ”€ [OTHER] Use a UNION ALL for getting merge request notes.
    • ๐Ÿšš [OTHER] Remove an index on ci_builds meant to be only temporary.
    • ๐Ÿšš [OTHER] Remove a SQL query from the todos index page.
    • ๐Ÿ‘Œ Support custom attributes on users. !13038 (Markus Koller)
    • ๐Ÿ‘€ made read-only APIs for public merge requests available without authentication. !13291 (haseebeqx)
    • Hide read_registry scope when registry is disabled on instance. !13314 (Robin Bobbitt)
    • ๐Ÿ‘€ creation of keys moved to services. !13331 (haseebeqx)
    • โž• Add username as GL_USERNAME in hooks.

  • v10.0.7 Changes

    December 07, 2017

    ๐Ÿ”’ Security (5 changes)

    • ๐Ÿ›  Fix e-mail address disclosure through member search fields
    • Prevent creating issues through API when user does not have permissions
    • Prevent an information disclosure in the Groups API
    • ๐Ÿ›  Fix user without access to private Wiki being able to see it on the project page
    • ๐Ÿ›  Fix Cross-Site Scripting (XSS) vulnerability while editing a comment

  • v10.0.5 Changes

    November 03, 2017
    • ๐Ÿ›  [FIXED] Fix incorrect X-axis labels in Prometheus graphs. !14258
    • ๐Ÿ›  [FIXED] Fix rake gitlab:incoming_email:check and make it report the actual error. !14423
    • ๐Ÿ›  [FIXED] Does not check if an invariant hashed storage path exists on disk when renaming projects. !14428
    • ๐Ÿ›  [FIXED] Fix bottom spacing for dropdowns that open upwards. !14535
    • ๐Ÿ›  [FIXED] Fix the project import with issues and milestones. !14657
    • ๐Ÿ›  [FIXED] Fix broken Y-axis scaling in some Prometheus graphs. !14693
    • ๐Ÿ›  [FIXED] Fixed duplicate notifications when added multiple labels on an issue. !14798
    • โฌ†๏ธ [FIXED] Don't rename paths that were freed up when upgrading. !15029
    • ๐Ÿ”€ [FIXED] Fixed issue/merge request breadcrumb titles not having links.
    • ๐Ÿ›  [FIXED] Fix application setting to cache nil object.
    • ๐Ÿ›  [FIXED] Fix missing Import/Export issue assignees.
    • ๐Ÿ›  [FIXED] Allow boards as top level route.
    • ๐Ÿ›  [FIXED] Fixed milestone breadcrumb links.
    • ๐Ÿ”€ [FIXED] Fixed merge request widget merged & closed date tooltip text.
    • ๐Ÿ”€ [FIXED] fix merge request widget status icon for failed CI.