Gitlab CI v15.2.1 Release Notes

Release Date: 2022-07-28 // 4 months ago
  • ๐Ÿ”’ Security (18 changes)

    • ๐Ÿ”’ [Security datadog integration leaking](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2643))
    • ๐Ÿš€ [Prevent users who cannot admin a public project from viewing deploy keys](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2640))
    • ๐Ÿ”’ [Add additional condition to accept invitation](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2656))
    • [Update GITLAB_PAGES_VERSION](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2615))
    • ๐Ÿ— [Add html_escape to build_details_entity](gitlab-org/security/git[email protected]) ([merge request](gitlab-org/security/gitlab!2636))
    • ๐Ÿ”’ [Check permissions when filtering by contact or organization](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2644))
    • ๐Ÿ”’ [Use author to run subscribed pipeline](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2616))
    • ๐Ÿ”’ [Remove prohibited branches after project import](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2590))
    • [Remove feature flag ci_yaml_limit_size](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2602))
    • ๐Ÿ”’ [Maintainer can change the visibility of Project and Group](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2619))
    • ๐Ÿ”’ [Do not link unverified secondary emails with any users](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2651))
    • ๐Ÿ”’ [Forbid exchanging access token for ROP flow to users required 2FA setup](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2622))
    • ๐Ÿ”’ [Remove todos from confidential notes when user loses access](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2632))
    • [Remove group_bot_user and group_access_token after group delete](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2633))
    • ๐Ÿ”’ [Protect Grafana and Sentry integrations](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2639))
    • ๐Ÿ”’ [Protect integration secrets](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2638))
    • ๐Ÿ”’ [Fix IDOR in Jira issue show action](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2647))
    • ๐Ÿ”’ [Limit proxied requests to Grafana API](gitlab-org/security/[email protected]) ([merge request](gitlab-org/security/gitlab!2606))