Gitlab CI v15.1.4 Release Notes

Release Date: 2022-07-28 // 4 months ago
  • ๐Ÿ”’ Security (18 changes)

    • ๐Ÿ”’ [Security datadog integration leaking](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2594))
    • ๐Ÿš€ [Prevent users who cannot admin a public project from viewing deploy keys](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2641))
    • ๐Ÿ”’ [Add additional condition to accept invitation](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2655))
    • [Update GITLAB_PAGES_VERSION](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2584))
    • ๐Ÿ— [Add html_escape to build_details_entity](gitlab-org/security/git[email protected]) ([merge request](gitlab-org/security/gitlab!2610))
    • ๐Ÿ”’ [Check permissions when filtering by contact or organization](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2645))
    • ๐Ÿ”’ [Use author to run subscribed pipeline](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2558))
    • ๐Ÿ”’ [Remove prohibited branches after project import](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2589))
    • [Remove feature flag ci_yaml_limit_size](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2630))
    • ๐Ÿ”’ [Maintainer can change the visibility of Project and Group](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2618))
    • ๐Ÿ”’ [Do not link unverified secondary emails with any users](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2627))
    • ๐Ÿ”’ [Forbid exchanging access token for ROP flow to users required 2FA setup](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2621))
    • ๐Ÿ”’ [Remove todos from confidential notes when user loses access](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2608))
    • [Remove group_bot_user and group_access_token after group delete](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2634))
    • ๐Ÿ”’ [Protect integration secrets](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2585))
    • ๐Ÿ”’ [Protect Grafana and Sentry integrations](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2576))
    • ๐Ÿ”’ [Fix IDOR in Jira issue show action](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2648))
    • ๐Ÿ”’ [Limit proxied requests to Grafana API](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2597))