Gitlab CI v15.0.5 Release Notes

Release Date: 2022-07-28 // 4 months ago
  • ๐Ÿ”’ Security (18 changes)

    • ๐Ÿ”’ [Security datadog integration leaking](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2595))
    • ๐Ÿš€ [Prevent users who cannot admin a public project from viewing deploy keys](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2642))
    • ๐Ÿ”’ [Add additional condition to accept invitation](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2654))
    • [Update GITLAB_PAGES_VERSION](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2583))
    • ๐Ÿ— [Add html_escape to build_details_entity](gitlab-org/security/git[email protected]) ([merge request](gitlab-org/security/gitlab!2611))
    • ๐Ÿ”’ [Check permissions when filtering by contact or organization](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2646))
    • ๐Ÿ”’ [Use author to run subscribed pipeline](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2559))
    • ๐Ÿ”’ [Remove prohibited branches after project import](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2588))
    • [Remove feature flag ci_yaml_limit_size](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2631))
    • ๐Ÿ”’ [Maintainer can change the visibility of Project and Group](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2617))
    • ๐Ÿ”’ [Do not link unverified secondary emails with any users](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2626))
    • ๐Ÿ”’ [Forbid exchanging access token for ROP flow to users required 2FA setup](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2620))
    • ๐Ÿ”’ [Remove todos from confidential notes when user loses access](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2609))
    • [Remove group_bot_user and group_access_token after group delete](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2635))
    • ๐Ÿ”’ [Protect integration secrets](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2586))
    • ๐Ÿ”’ [Protect Grafana and Sentry integrations](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2577))
    • ๐Ÿ”’ [Fix IDOR in Jira issue show action](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2649))
    • ๐Ÿ”’ [Limit proxied requests to Grafana API](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2598))