ยซ Changelog History


Gitlab CI v13.2.10 Release Notes

Release Date: 2020-10-01 // over 3 years ago

  • ๐Ÿ”’ Security (14 changes)

    • Do not store session id in Redis.
    • ๐Ÿ›  Fix permission checks when updating confidentiality and milestone on issues or merge requests.
    • Purge unaccepted member invitations older than 90 days.
    • โž• Adds feature flags plan limits.
    • ๐ŸŒ Prevent SVG XSS via Web IDE.
    • Ensure user has no solo owned groups before triggering account deletion.
    • ๐Ÿ”’ Security fix safe params helper.
    • ๐Ÿš€ Do not bypass admin mode when authenticated with deploy token.
    • ๐Ÿ›  Fixes release asset link filepath ReDoS.
    • Ensure global ID is of Annotation type in GraphQL destroy mutation.
    • Validate that membership expiry dates are not in the past.
    • Rate limit adding new email and re-sending email confirmation.
    • ๐Ÿ›  Fix redaction of confidential Todos.
    • โšก๏ธ Update GitLab Runner Helm Chart to 0.19.4.