GitLab EE - 15.0.0
Security
(2022-05-20)
Added (147 changes)
- Self-managed SAML Group Links and Membership Updater (merge request) GitLab Enterprise Edition
- Show error message in pipeline alert (merge request)
- Upgrade GitLab Pages to 1.58.0 (merge request)
- Drag and drop list items on issue page (merge request)
- Default enable automated_email_provision feature flag (merge request) GitLab Enterprise Edition
- Bump Gitlab Shell version to 14.3.0 (merge request)
- Add documentation for inactive project deletion feature (merge request)
- Enable confidential_notes FF by default (merge request)
- Add slack_app_signing_secret to settings (merge request)
- Add a 409 error page (merge request)
- Store pipeline creation rate limit into application settings (merge request)
- Add REPOSITORIES_STORAGES option to backups (merge request)
- Add option to disable seperated caches by @Taucher2003 (merge request)
- Merge Agents and Agent Tokens API docs by @tuxtimo (merge request)
- Enable poetry.lock dependency scanning (merge request) GitLab Enterprise Edition
- Add exclude from free user cap to namespace settings (merge request)
- Add infinite scrolling to project dropdown (merge request) GitLab Enterprise Edition
- Enable feature flag iteration_cadences (merge request) GitLab Enterprise Edition
- GraphQL: Add maintenance_note to RunnerType (merge request)
- Use Gemnasium FIPS images automatically (merge request)
- Default CRM feature flags to on by @leetickett (merge request)
- Add link from issue contacts to issues list by @leetickett (merge request)
- Add alert banner to usage quota seats page (merge request) GitLab Enterprise Edition
- Extend /help/instance_configuration with CI/CD limits by @wwwjon (merge request)
- Make group import history page size persistent by @wspwebben (merge request)
- Add registry migration guard timeout settings (merge request)
- Add group push rule changes to audit log (merge request) GitLab Enterprise Edition
- Bump Gitlab Shell version to 14.2.0 (merge request)
- Add inactive projects deletion feature (merge request)
- GraphQL: Add allowStaleRunnerPruning to Group (merge request) GitLab Enterprise Edition
- Add merge_request.draft to push options by @svdj (merge request)
- Add NamespaceCiCdSettingsUpdate mutation (merge request) GitLab Enterprise Edition
- Add API to set membership state (merge request) GitLab Enterprise Edition
- Add export size limit for projects by @wwwjon (merge request)
- Add API endpoint for repository size recalculation (merge request)
- Convert newline symbols in description push options to actual newlines by @svdj (merge request)
- Support security report schema version 14.1.2 (merge request)
- Add Runner separation by plan PoC (merge request)
- Display a cancel button in policies page (merge request) GitLab Enterprise Edition
- Implement Cluster Agent Tokens REST API by @tuxtimo (merge request)
- Increased the time tracking report modal size by @zillemarco (merge request)
- Allow pruning of stale group runners (merge request) GitLab Enterprise Edition
- Add index to namespace_ci_cd_settings table (merge request)
- Allow linking CRM organizations to contacts by @leetickett (merge request)
- Backfill draft status column using corrected regex (merge request)
- Validate a tag does not have an existing release (merge request)
- Exposed user permissions for each timelog entry by @zillemarco (merge request)
- Bump Gitlab Shell to 14.1.1 (merge request)
- Add 2 last DORA metric tiles to VSA (merge request) GitLab Enterprise Edition
- Add Architecture and Platform to runner details (merge request)
- Add
Follow
/Unfollow
button to user popover (merge request) - Enable ServicePing timings reporting (merge request)
- Support storage_size_limit in PlanLimits API (merge request)
- Add project's shared_runners_duration to GraphQL (merge request) GitLab Enterprise Edition
- Add group_inheritance_type to deploy access level and approval rule API (merge request) GitLab Enterprise Edition
- Add deployment metadata when firing hooks (merge request)
- CI: update cluster-integration/auto-build-image by @willianpaixao (merge request)
- Enable the querying of security training urls by language (merge request) GitLab Enterprise Edition
- Add namespace_ci_cd_settings table (merge request)
- Update Project stats on Container Registry event (merge request)
- Add PREVIOUS_BACKUP option to backup.rake (merge request)
- Enable aggregated VSA by default (merge request)
- Add CRM argument handling for issue list filters by @leetickett (merge request)
- Enable updated_diff_expansion_buttons by default (merge request)
- Remove related_epics_widget feature flag (merge request)
- GraphQL: Add platform/arch runner fields (merge request)
- Background job to trim namespaces over limit (merge request) GitLab Enterprise Edition
- Adds container_registry_size to namespace_root_storage_statistics (merge request)
- Start storing changed_at in seat statistics worker (merge request)
- Background Migrations - Mutli DB Admin UI (merge request)
- Allow editing media URL and alt in content editor (merge request)
- Add last_cleanup_deleted_tags graphql field (merge request)
- Record blocked epics removed on usage data (merge request) GitLab Enterprise Edition
- Add deletion warning email template for inactive projects (merge request)
- Add page description to pipeline security tab (merge request) GitLab Enterprise Edition
- Enable Group Level Security Policies in GraphQL API (merge request) GitLab Enterprise Edition
- Allow users to enforce auth checks on upload on a project level (merge request)
- Moving approval notifications from EE to FOSS (merge request)
- Add the packages cleanup policy model (merge request)
- Add tracking events to group and project pages (merge request)
- Handle timeout status in GitLab migration (merge request)
- Add GraphQL API to fetch Group Security Policies (merge request) GitLab Enterprise Edition
- Added prefetching for tasks in issue description (merge request)
- Prepare notes confidential index (merge request)
- Expose container_registry_size via GraphQL (merge request)
- Add CRM arguments to GraphQL issue resolver by @leetickett (merge request)
- Fix pipelines field performance in the package GraphQL type (merge request)
- Add support for sticky header on scroll for epics (merge request) GitLab Enterprise Edition
- Allow (un)following someone in the user popover by @KevSlashNull (merge request)
- Add API endpoint for fetching all resource groups for a project (merge request)
- Add last_cleanup_deleted_tag count column (merge request)
- Add access action for environments (merge request)
- Set custom error budgets (merge request)
- Edit environments tier with API (merge request)
- Expose environments tier over API (merge request)
- Audit IP allowlist editing (merge request) GitLab Enterprise Edition
- Send blocked users to Arkose (merge request) GitLab Enterprise Edition
- Add inherited group membership option for protected environment auth (merge request)
- Add active/state to CRM graphql queries/mutations by @leetickett (merge request)
- Extend Plan limits API with CI/CD limits properties by @wwwjon (merge request)
- Scroll to top of vulnerability list when filters changed (merge request) GitLab Enterprise Edition
- Add group wiki visibility toggle to group settings by @fjsanpedro (merge request)
- Add verify action for environments (merge request)
- Add auditing of runner token reset operations (merge request) GitLab Enterprise Edition
- Add
BackgroundMigrationRecord
cop to avoidActiveRecord::Base
(merge request) - Expose billable members membership_state (merge request) GitLab Enterprise Edition
- Refactor the usage quotas -> ci/cd minutes page (merge request) GitLab Enterprise Edition
- Added autofocus on 'Search projects' input by @maksimanisimov1 (merge request)
- Log downstream pipeline creation (merge request)
- Show deployment approval on deployments page (merge request) GitLab Enterprise Edition
- Allow editing link URL and title in content editor (merge request)
- Over limit members in namespaces with a free plan (merge request) GitLab Enterprise Edition
- Revoke agent token from the UI (merge request)
- Enable touch_project_repository_state_updated_at FF by default (merge request) GitLab Enterprise Edition
- Enable VSA reggregation worker by default (merge request)
- Add Workhorse support for FIPS encryption (merge request)
- Backfill all ProjectSetting records (merge request)
- Add delete button to runner details page (merge request)
- Make ArkoseLabs namespace configurable (merge request)
- feat: Add SAST.latest and Secret-Detection.latest templates (merge request)
- Add audit events for merge request settings (merge request) GitLab Enterprise Edition
- Ensure max_seats_used_changed_at stays up to date (merge request)
- Start storing change date for max_seats_used (merge request)
- Add documentation link to CI/CD Variables Form (merge request)
- Support for TLS config on Workhorse (merge request)
- Move
MigrationRecord
intoV1_0
(merge request) - Add
RuboCop::Cop::Migration::MigrationRecord
rule (merge request) - Add releases to GitLab Project Migration (merge request) GitLab Enterprise Edition
- Update container registry size in project stats (merge request)
- Add runner executor to runner details page (merge request)
- Add executorName to GraphQL API (merge request)
- Add delayed group deletion application setting (merge request)
- Quickly copy code blocks in the Content Editor (merge request)
- Add option for submit field in DAST Configuration (merge request) GitLab Enterprise Edition
- Add topics title (model, management, API) by @wwwjon (merge request)
- Auto continue markdown lists (merge request)
- Expose
_links.cluster_agents
field in project REST API by @tuxtimo (merge request) - GraphQL: filter group members by access level (merge request)
- Add scan_finding rules into project settings (merge request) GitLab Enterprise Edition
- Added the possibility to remove a timelog from an issuable by @zillemarco (merge request)
- Measure metric collection time (merge request)
- Add group attributes pipeline to group bulk import (merge request) GitLab Enterprise Edition
- Add namespace settings attributes pipeline to group bulk imports (merge request) GitLab Enterprise Edition
- Distribute GitHub import jobs by default (merge request)
- Improve Geo project-out-of-date detection mechanism (merge request)
- Add iteration quickaction displays ID format on autocomplete (merge request) GitLab Enterprise Edition
- Draft: Allow a subset of a blame to be requested from the REST API (merge request)
Fixed (133 changes)
- Fix incident sticky header status badge (merge request)
- Ensure present_on_default_branch is set to true when branch is merged (merge request) GitLab Enterprise Edition
- Fix VerificationStateBackfillWorker re-enqueue process (merge request) GitLab Enterprise Edition
- Downgrade auto-deploy-image to v2.25.0 (merge request)
- Added condition for opening modal (merge request)
- Rename Dismiss VulnerabilitiesFinding mutation (merge request) GitLab Enterprise Edition
- Backfill notes that have null discussion_id (merge request)
- Do not try to create issue links without issues while ingesting reports (merge request) GitLab Enterprise Edition
- Fix error on issues list due to restricted visibility level (merge request)
- Fix comment form action button title (merge request) GitLab Enterprise Edition
- Fix state badge icon and link text color (merge request) GitLab Enterprise Edition
- Correct wrapping on PMG (merge request)
- Start the next ConsistencyWorker run from where it left (merge request)
- Add removed Dependency Scanning jobs as dummies (merge request)
- Update upstream/downstream borders (merge request)
- Change confidential comments doc to internal notes by @leetickett (merge request)
- Display SSO link prior to save (merge request) GitLab Enterprise Edition
- Remove unused batch_size in ExpireOAuthTokens (merge request)
- Add top margin to auto fix card on vulnerability report (merge request) GitLab Enterprise Edition
- Fix user popover overflow and follow/unfollow button alignment (merge request)
- Fix file include-type for CI lint Graphql endpoint (merge request)
- Fix haml conditional logic parsing error in master (merge request) GitLab Enterprise Edition
- Compare agent version against KAS version (merge request)
- Fix scroll to hash (merge request)
- Do not export and import max_pages_size from groups (merge request)
- Fix associated release link on tag page (merge request)
- Preserve branch filter state after delete (merge request)
- Ensure base work item types are created where needed (merge request)
- Fix redirect loop when requiring verification and experiment is inactive (merge request)
- Gracefully handle invalid states when filtering environments (merge request)
- Fix awards focus style overflow (merge request)
- Change cancel button variant/color to danger/red by @leetickett (merge request)
- Backfill finished_at when it is nil for successful deployments (merge request)
- Keep fragment identifier when performing an OAuth redirect (merge request)
- Fix error with initializiation of protected environments feature (merge request)
- Fix group path suggestion bug (merge request)
- Fix Create Vulnerability button height on mobile view (merge request) GitLab Enterprise Edition
- Fix operations dashboard card pipeline background by @mrtgncr733 (merge request)
- Fix assignee filtering on group/issues list (merge request)
- Only poll environment folder if expanded (merge request)
- Change prop type inside the cleanup_status component (merge request)
- Added update to epicsCount (merge request) GitLab Enterprise Edition
- Add DeployTokenAuthor as new type of NullAuthor (merge request) GitLab Enterprise Edition
- Fix error when fetching inherited security execution policy in GraphQL (merge request) GitLab Enterprise Edition
- Fix redirect anchor on Web IDE admin settings by @vaiil (merge request)
- Format dates as UTC (merge request) GitLab Enterprise Edition
- Preserve roadmap timeframe type in page URL (merge request) GitLab Enterprise Edition
- Address several edge cases in ProcessSupervisor (merge request)
- Fixes DAST Profile not found issue (merge request) GitLab Enterprise Edition
- Replicate deletion of remote stored files (merge request) GitLab Enterprise Edition
- Update column name for consistency (merge request) GitLab Enterprise Edition
- Make group scope consistent for scan_finding rules (merge request) GitLab Enterprise Edition
- Re-add usage_data_diff_searches flag (merge request)
- Increase read timeout for Jira requests (merge request)
- Fix the button distance on the milestone page (merge request)
- Fix DORA metric Graphql type (merge request) GitLab Enterprise Edition
- Enable admin to see project level MR analytics (merge request) GitLab Enterprise Edition
- Return 404 on Jira issues if integration inactive (merge request) GitLab Enterprise Edition
- Find feedback based on UUID (merge request) GitLab Enterprise Edition
- Set ProjectAttributesPipeline to be a file extraction pipeline (merge request)
- Add deploy token handling in audit event generation (merge request) GitLab Enterprise Edition
- Include only opened epics in issue bulk actions (merge request) GitLab Enterprise Edition
- Add missing restrict_gitlab_migration to migration (merge request)
- Add error handling for sec config license fetch (merge request) GitLab Enterprise Edition
- Keep "No parent" when page is refreshed (merge request)
- Fix bug when reinstalling Slack app (merge request) GitLab Enterprise Edition
- Remove duplicate records to fix PG::CardinalityViolation on ingestion (merge request) GitLab Enterprise Edition
- Skip initializers in the doctor:secrets task for encrypted data (merge request)
- Fix wiki form not rendering on validation error (merge request)
- Show operation id's by default (SwaggerUI) (merge request)
- Fix typo in event destination GQL docs (merge request) GitLab Enterprise Edition
- Update modal token when its resetting (merge request)
- Forbid recursion during Feature.enabled? (merge request)
- Make minute limit banner dismissible (merge request)
- Load group Vulnerability Report when only subgroups have projects (merge request) GitLab Enterprise Edition
- Fix modal backdrop in dark mode (merge request)
- Fix blob header responsiveness (merge request)
- Fix CRM issue search with vue_issues_list by @leetickett (merge request)
- Use
initialTitle
prop as is for title component (merge request) - Allow auditor to read project MR analytics (merge request) GitLab Enterprise Edition
- Fix CRM drawer positioning by @leetickett (merge request)
- Fix transparent table header background on vulnerability report (merge request) GitLab Enterprise Edition
- Migrate form to allow render of UI components (merge request) GitLab Enterprise Edition
- Prevent CRM actions when feature disabled by @leetickett (merge request)
- Move CI pipelines migration to a lower stage during Gitlab Migration (merge request)
- Fix next badge margin (merge request)
- Fix quota counting issue on invite quota limits (merge request) GitLab Enterprise Edition
- Fix browser history for group/project issues page (merge request)
- Fix ZenTao integration when api_url is setup by @chaomao (merge request)
- Allow create_merge_request_in when download_code is allowed (merge request)
- Enable the FF ci_expand_environment_name_and_url (merge request)
- Remove outdated loop prevention check by @andreas.kloeckner (merge request)
- Allow admin to edit requirements (merge request) GitLab Enterprise Edition
- More consistent copy to clipboard buttons (merge request)
- Use pathIdSeparator to format linked epic ref (merge request)
- Fix eslint errors and jest snapshot test by @Ffinnis (merge request)
- Parse only the related artifacts (merge request) GitLab Enterprise Edition
- Hide iteration menu from user namespaced project (merge request) GitLab Enterprise Edition
- Fix mermaid copy to clipboard button by @leetickett (merge request)
- Resolve "Reorder HEAD tags for better performance" (merge request)
- Remove create_project_settings feature flag (merge request)
- Use root ancestor group in buy minutes path (merge request) GitLab Enterprise Edition
- Expose url on discussion award emoji (merge request)
- Nullify merge_request_metrics pipeline_id on pipeline deletion (merge request)
- Fix alignment of cannot merge icon in sidebar (merge request)
- Resolve project filter dropdown overflowing on long names (merge request)
- Fix left over resources when unassigning (merge request) GitLab Enterprise Edition
- Fix mappings errors for ES6.8 (merge request) GitLab Enterprise Edition
- Fix ee css bundles not loading (merge request)
- Fix missing DB duration keys for multiple databases (merge request)
- Use the authoritative file sort to order discussions (merge request)
- Prevent orphaned JobArtifacts in SSF (merge request) GitLab Enterprise Edition
- Fix color picker focus when clicking on a label by @FFxSquall (merge request)
- Fix regression in reactive cache implementation for Environment model (merge request)
- Match dotenv variable limits across subscription plans (merge request)
- Fix check in license load rake task (merge request) GitLab Enterprise Edition
- Resolve group_path to full_path when creating compliance frameworks (merge request) GitLab Enterprise Edition
- Disable STI behavior on
MigrationRecord
(merge request) - Use execCommand(βinsertTextβ) to fix undo (merge request)
- Run repository checks if Geo is not enabled (merge request) GitLab Enterprise Edition
- Fix font weight for snippet count (merge request)
- Add newDirectoryPath computed prop (merge request)
- Fix unintended line breaks were inserted using Japanese IME on MacOS by @hiroponz (merge request)
- Set started_at only once by @Taucher2003 (merge request)
- Fix manual pipeline icons in dark mode (merge request)
- Assign commands should be case insensitive (merge request)
- Fix repository analytics ref dropdown (merge request)
- Use primary for internal registry migration API (merge request)
- Fix raising error in reactive cache setter of kubernetes platform (merge request)
- Fix test case by avoiding lazy evaluation (merge request) GitLab Enterprise Edition
- Show Infrastructure menu item for auditors (merge request) GitLab Enterprise Edition
- Wait until ArkoseLabs token is set before resubmitting (merge request)
- Group analytics lookup group by full_path only (merge request) GitLab Enterprise Edition
Changed (239 changes)
- Allow MR approvals API endpoint for auditors (merge request) GitLab Enterprise Edition
- Enable feature and clean up feature flags (merge request)
- Added link to invite users to contribute to translations by @anshulriyal (merge request)
- Reset skipped container repositories (merge request)
- Moves locking of merge request to dropdown (merge request)
- Moves the To Do button down (merge request)
- internal/git: Pass in GL_ID, GL_USERNAME to receive-pack and upload-pack (merge request)
- Project-level Secure Files upload/remove UI (merge request)
- Move backend documentation paths to frontend for vulnerability report (merge request) GitLab Enterprise Edition
- Split text for kbd shortcut (merge request)
- feature_flags: Default-enable use of filtered quarantine commits (merge request)
- Add permissions to pre-existing commit documents (merge request) GitLab Enterprise Edition
- Change way default CSP is loaded from config (merge request)
- Remove logic from Secret Detection script (merge request)
- Remove vertical padding on branch names (merge request)
- Expose RootStorageStatistics#container_registry_size vis GQL (merge request)
- Update ServicePing metric category to Operational (merge request)
- Hides images on ipynb diff (merge request)
- Improve vulnerability report mobile layout (merge request) GitLab Enterprise Edition
- Turn resolved threads badge green when resolved (merge request)
- Update order of MR header buttons (merge request)
- Add shared runner data to usage quota (merge request)
- Update SAST IaC analyzer major version (merge request)
- Changed :deletion_adjourned_period to a number field (merge request) GitLab Enterprise Edition
- Remove unused CSS class by @mehulsharma (merge request)
- Use active sidekiq router's queues for sidekiq/queue_metrics API (merge request)
- Rename confidential notes to internal notes (merge request) GitLab Enterprise Edition
- Change the text is made bold (merge request) GitLab Enterprise Edition
- Migrate create label button (merge request)
- Update MR merge conflict HTML email (merge request)
- Change certificate_based_clusters FF default to false (merge request)
- Add error alert for Elasticsearch version incompatible (merge request) GitLab Enterprise Edition
- Move backend documentation paths to frontend for vulnerability report (merge request) GitLab Enterprise Edition
- Test one remediation solving two vulnerabilities (merge request) GitLab Enterprise Edition
- Improve Security::Validators::SchemaValidator specs (merge request)
- Update issuable state badge style (merge request)
- Change style of trigger job in pipeline graph (merge request)
- Add props for cancel button by @HerrShmulke (merge request)
- Migrate todo button in collapsed sidebar (merge request) GitLab Enterprise Edition
- Background Migrations - Cleanup Margins (merge request)
- Expand navbar search field when focused (merge request)
- Removes status checks add status field feature flag (merge request) GitLab Enterprise Edition
- Persist group name and use path for destination name (merge request)
- Migrate button in service desk settings (merge request)
- Update GITLAB_KAS_VERSION to 15.0.0 (merge request)
- Fix invalid automatic cadence records (merge request)
- API: Runner status can return "stale" (merge request)
- Enable enhanced_notify_css by default (merge request)
- Migrate purchase storage buttons to confirm (merge request)
- Migrate create jira issue button (merge request) GitLab Enterprise Edition
- Use tertiary confirm dropdown for version switcher (merge request)
- Change discussions to threads in mr settings (merge request)
- Update SAST analyzer major versions (merge request)
- git: Parse and display gitaly limit error (merge request)
- Removing permissions attribute from Secure Files model (merge request)
- Enable approval status new names feature (merge request) GitLab Enterprise Edition
- Update stable Terraform and add stable SAST-IaC template (merge request)
- Migrate button in move for test cases (merge request)
- Update lock invite options (merge request)
- Update package namespace settings permissions (merge request)
- Remove head-variant from GlTable (merge request)
- Migrate create iteration button to confirm (merge request)
- Migrate approve with password modal (merge request) GitLab Enterprise Edition
- Migration with access_token for approval project (merge request) GitLab Enterprise Edition
- Replace issuable sort dropdown (merge request)
- Remove sudo runner registration instructions macos (merge request)
- Add GlBadge with link to Jira vulnerabilities (merge request) GitLab Enterprise Edition
- Do not update project stats for incremental repack (merge request)
- Migrate empty state button for needs (merge request)
- Move report not configured components into specific folders (merge request) GitLab Enterprise Edition
- Upgrade DAST templates to version 3 (merge request) GitLab Enterprise Edition
- Bring Container Scanning to Free (merge request)
- Fix(Subscription errors): handle expired + general (merge request) GitLab Enterprise Edition
- Update dependency proxy settings permissions (merge request)
- Migrate button in vulnerability history (merge request)
- Migrate merge button to confirm (merge request)
- Migrate create incident button (merge request)
- Migrate fork button in diff file (merge request)
- Migrate checkbox to require Jira issue (merge request) GitLab Enterprise Edition
- Update container cleanup policy permissions (merge request)
- Migrate cluster buttons to confirm (merge request)
- Update auto-deploy-image to v2.26.0 (merge request)
- Prevent changing out of hierarchy sharing (merge request) GitLab Enterprise Edition
- Changes labels on merge request dropdown (merge request)
- Geo - Remove legacy redirects (merge request) GitLab Enterprise Edition
- Update documentation for environment multiple stop actions (merge request)
- Deprecate GraphQL type for Network Policies (merge request) GitLab Enterprise Edition
- Deprecate threat_monitoring from GraphQL enum for alerts (merge request) GitLab Enterprise Edition
- Migrate checkboxes when editing runners (merge request)
- Reduce frequently visited projects/groups timeout (merge request)
- Migrate view incident button to confirm (merge request)
- Migrate button in increase storage modal (merge request)
- Migrate apply button in date picker (merge request)
- Update prometheus to 15.x in cluster-management template (merge request)
- Migrate checkboxes for deploy tokens (merge request)
- Migrate success button to confirm (merge request)
- Remove directly addressed references (merge request) GitLab Enterprise Edition
- Update documentation for failed status checks (merge request)
- Migrate use template button (merge request) GitLab Enterprise Edition
- Migrates button in vulnerability header (merge request)
- Migrate create label button in sidebar (merge request)
- Migrate add projects button to confirm (merge request)
- Remove security_scan_succeeded column by @svdj (merge request)
- Migrate add framework button to confirm (merge request)
- Migrate add to review button to confirm (merge request)
- Remove FF for environment multiple stop actions (merge request)
- Hides package delete action for users without permission (merge request)
- Change warning message on partial cleanup runs (merge request)
- Add select all option for scanners (merge request) GitLab Enterprise Edition
- Add dependency proxy total size inside usage quotas (merge request)
- Remove
new_vulnerability_form
feature flag (merge request) GitLab Enterprise Edition - Update edit profile page form styling (merge request)
- Add awaiting memberhips in billable members API (merge request) GitLab Enterprise Edition
- Remove integrations.type column (merge request)
- Separate Sidekiq metrics and health-checks server (merge request)
- Feat(Legacy License): move to admin/settings page (merge request) GitLab Enterprise Edition
- Update Vulnerability Management database docs (merge request)
- Update text for the existing mr widget (merge request) GitLab Enterprise Edition
- Reset the original color for security rules (merge request) GitLab Enterprise Edition
- Update search SystemCheck to latest versions (merge request) GitLab Enterprise Edition
- This MR adds new empty state (merge request) GitLab Enterprise Edition
- Add updated date to to-do sort options (merge request)
- Update scan result policies related (merge request) GitLab Enterprise Edition
- Allow Slack app to be reinstalled (merge request) GitLab Enterprise Edition
- Clean up error logging in integrations (merge request)
- Display feature flag name in edit page's title (merge request)
- Use field DSL in CI integrations (merge request)
- Replace Pages confirmation modals with GlModal (merge request)
- Initial commit for skipped to created state (merge request)
- Upgrade warnings about deprecated commands (merge request)
- Add margin to year dropdown (merge request)
- Enable omniauth_initializer_fullhost_proc by default for Geo SSO (merge request)
- Improve shared runner toggle interations (merge request)
- Return back to runner view after successful edit (merge request)
- Visually separate DORA metrics from key VSA metrics (merge request)
- Remove use of md5 by @mehulsharma (merge request)
- Boards - Make scope indicator dynamic (merge request)
- Added Donβt filter milestone option to board scope (merge request) GitLab Enterprise Edition
- Lock invite options when reaches user limit (merge request)
- Update GenericCommitStatus badges (merge request)
- Improved title-related warning on test case (merge request)
- Remove redirection of outdated status by @mehulsharma (merge request)
- Updates delete icon button in runner table by @mehulsharma (merge request)
- Remove .thead-white class from GlTables (merge request) GitLab Enterprise Edition
- Update runner status summary upon filtering (merge request)
- Boards: Polish top buttons on mobile (merge request)
- Gitaly: Increase timeout for repository_size to long_timeout (merge request)
- Improve loading for work item detail (merge request)
- Stops hiding dependency proxy image prefix data behind loader (merge request)
- Remove h2 from breadcrumbs by @KevSlashNull (merge request)
- Remove usages of deprecated
self_signed_cert
option (merge request) - Migrate checkbox to GitLabUI (merge request) GitLab Enterprise Edition
- Update copy text for self metrics toggle (merge request)
- Boards - Fix click on label adds filter with new filtered search (merge request)
- Fix broken docs UI links (merge request)
- Display loading spinner instead of text (merge request)
- Use gitlab-ui checkbox for signin oauth settings (merge request)
- Decrease priority of run pipeline button (merge request)
- This MR adds new feature flag for DAST redesign (merge request) GitLab Enterprise Edition
- Limit group invites from projects to also use prevent setting (merge request)
- Prevent projects creating group links outside hierarchy (merge request)
- Allow Reporters to admin milestones and iterations (merge request)
- Update issuable confidentiality UI & status text (merge request)
- Refactor On-demand scans page header section (merge request) GitLab Enterprise Edition
- Upgrade Container Scanning analyzer version (merge request) GitLab Enterprise Edition
- Geo Sites Form - Cleanup Learn more links (merge request) GitLab Enterprise Edition
- Geo Sites - Cleanup Learn more links (merge request) GitLab Enterprise Edition
- Refresh vulnerabilities on vulnerability list after bulk select is done (merge request) GitLab Enterprise Edition
- Flip order of packages and monitor in project sidebar (merge request) GitLab Enterprise Edition
- Use topic title instead of name in UI by @wwwjon (merge request)
- Do not disable snippet form submit button to enforce validation (merge request)
- Replace filter field with search-box-by-click on import repositories by @Xubunter (merge request)
- Hide confirmation required error state by @HerrShmulke (merge request)
- Use button-group on vulns-over-time chart (merge request) GitLab Enterprise Edition
- Replace approved with passed in status check api (merge request) GitLab Enterprise Edition
- Adjust sign in columns and padding to accommodate Arkose (merge request) GitLab Enterprise Edition
- Display security training config based on license (merge request)
- Add border radius (merge request)
- This MR changes layout of new/edit DAST scanner configuration (merge request) GitLab Enterprise Edition
- Make status param required (merge request) GitLab Enterprise Edition
- Update Security Policy Configuration to not exclude rules from pipeline (merge request) GitLab Enterprise Edition
- Update avatar counter styles (merge request)
- Move path navigation below filters for VSA (merge request)
- Remove vulnerability_report_pagination feature flag (merge request) GitLab Enterprise Edition
- Change elements order on the import project page by @cheshirecat902 (merge request)
- Correct styles for select project split button (merge request)
- Adds Ci::Bridge to RetryJobService (merge request)
- Allow pages root domain to be used as custom domain by @mlegner (merge request)
- Improve UI text of sign-up restrictions (merge request)
- Move .thead-white to apply to GlTable as well (merge request)
- Unbox issue board lists (merge request)
- Hide security rules for non ultimate licenses (merge request) GitLab Enterprise Edition
- Remove a question thatβs irrelevant for invitation (merge request) GitLab Enterprise Edition
- Updated personal access token references (merge request) GitLab Enterprise Edition
- Allow to delete error packages from package registry (merge request)
- Feat(Subcsription): update general error message (merge request) GitLab Enterprise Edition
- This MR changes the order of elements (merge request)
- Remove fixed bar from merge request page (merge request)
- Update the gitlab-pages documentation (merge request)
- Fix GlTable not displaying styles properly (merge request)
- Remove .service-installation class and polish UI (merge request)
- Use tertiary category for content editor bubble menu (merge request)
- Fix function and view for autovacuum activity (merge request)
- Fix misleading error for job dependencies (merge request)
- Updates anchor links UI (merge request)
- Use new serialized started_at on job in the ui (merge request)
- Don't track Jupiter notebook exceptions (merge request)
- Repeat failed migrations with fix (merge request)
- Wrap toolbar, increase size, and remove dividers (merge request)
- Change pipeline editor branch terminology (merge request)
- Deprecate old Advanced Search migrations (merge request) GitLab Enterprise Edition
- Correct mattermost slash commands integration clipboard buttons (merge request)
- Dropped Runner features column by @mehulsharma (merge request)
- Change how cached images set for deletion are displayed (merge request)
- Replace generic checkbox with GitLab UI element (merge request)
- Use tertiary button for file header actions (merge request)
- Make fingerprint nullable for group_deploy_keys table (merge request)
- Remove hover animation from downstream pipelines (merge request)
- Migrate all checkboxes (merge request) GitLab Enterprise Edition
- Reduce padding to match alignment (merge request)
- Improve runner edit form design (merge request)
- Remove job list in runner Edit page (merge request)
- Enable route_hll_to_snowplow by default (merge request)
- Use deferrable constraint to bulk cadence update (merge request)
- Remove secure_vulnerability_training feature flag (merge request)
- Improve trial only CTAs in Learn GitLab (merge request)
- Use systemd notification and watchdog feature for sidekiq service by @behrmann (merge request)
- Update right sidebar design (merge request)
- Fix default job_arguments for batched migrations (merge request)
- Add "ee" type to projectionist config (merge request)
- Migrate DAST profile library links with new route (merge request) GitLab Enterprise Edition
- Limit number of related epics (merge request) GitLab Enterprise Edition
- Praefect docs: update list-untracked-repositories subcommand (merge request)
- Warn if database connections opened in routes file (merge request)
- Globally enable enforce_security_report_validation (merge request) GitLab Enterprise Edition
- Remove history and upload btns from project page (merge request)
- Replace generic checkbox with GitLab UI component (merge request) GitLab Enterprise Edition
- Use pajamas checkbox for admin application form (merge request)
- Migrate unique index from MD5 to SHA256 fingerprints (merge request)
Deprecated (3 changes)
- Create deprecation entry for legacyMode (merge request)
- Remove coverage CI detection at project setting level (merge request)
- Move required pipeline configuration to GitLab Ultimate (merge request) GitLab Enterprise Edition
Removed (64 changes)
- Update post-deploy migration in order to only (merge request) GitLab Enterprise Edition
- Remove temporary traversal_id indexes (merge request)
- Geo: Remove Legacy Job Artifact replication (merge request)
- Remove tracing feature via feature flag (merge request)
- Replace
clusters
withagents
in scan execution policies (merge request) GitLab Enterprise Edition - Drop sorting by title functionality from the vulnerability report page (merge request) GitLab Enterprise Edition
- Remove sorting vulnerabilities by title functionality (merge request) GitLab Enterprise Edition
- Remove Monitor Logs feature (merge request)
- Remove elastic stack from cluster management template (merge request)
- Remove the pipelines field (merge request)
- Remove deprecated Dependency Scanning analyzers (merge request)
- Remove
omniauth-kerberos
gem (merge request) GitLab Enterprise Edition - Add background migration to expiry all OAuth tokens (merge request)
- Remove support for Cluster Image Scanning Analyzer (merge request) GitLab Enterprise Edition
- Remove namespaces partial index (merge request)
- Remove 'not_connected' status value (merge request)
- Remove ability for SSH key expiration to be optional (merge request) GitLab Enterprise Edition
- Remove OAuth 2.0 Implicit grant flow (merge request)
- Drop support for deprecated security report schemas (merge request)
- Remove Vulnerability-Check from the backend (merge request) GitLab Enterprise Edition
- Remove dynamic check for feature flag (merge request)
- Remove namespaces partial index (merge request)
- Remove background migration with potential data loss (merge request)
- Remove container security charts from the Cluster Management template (merge request) GitLab Enterprise Edition
- Removes types and type keyword (merge request)
- Enforce token expiry for OAuth applications (merge request)
- Remove Vulnerability-Check from frontend (merge request) GitLab Enterprise Edition
- Object storage: Remove background_upload configurations (merge request)
- Remove Network Policies from Policies Controller (merge request) GitLab Enterprise Edition
- Remove deprecated DS_DEFAULT_ANALYZERS (merge request)
- Remove epic feature discovery moment on EE (merge request) GitLab Enterprise Edition
- Remove Network Policies routes and controller (merge request) GitLab Enterprise Edition
- Remove Managed-Cluster-Applications.gitlab-ci.yml (merge request)
- Remove vulnerability_reads_table feature flag (merge request) GitLab Enterprise Edition
- Remove network alerts (merge request) GitLab Enterprise Edition
- Remove cobertura from artifacts:reports (merge request)
- Do not allow expired personal access tokens to work (merge request)
- Remove Network Policies metrics (merge request) GitLab Enterprise Edition
- Remove the form-based GKE / EKS creation page (merge request)
- Remove disabled alerts section from settings page (merge request)
- Remove Serverless from GitLab (merge request)
- Remove artifacts:reports:cluster_applications (merge request)
- Remove orphaned route users/pipeline_quota (merge request) GitLab Enterprise Edition
- Remove ignored column for Test Reports (merge request)
- Omit tags when retrieving a list of registry repositories in a group by @feistel (merge request)
- Remove workhorse_use_sidechannel feature flag (merge request)
- Remove Versions on base PackageType by @feistel (merge request)
- Remove deprecated GraphQL query (merge request)
- Remove unused Prometheus Alert crud code (merge request)
- Remove group_releases_finder_inoperator feature flag (merge request)
- Remove lfk_fair_queueing feature flag (merge request)
- Remove all code related to Gitlab::RequestProfile (merge request)
- Remove defaultMergeCommitMessageWithDescription GraphQL field (merge request)
- Remove env_last_deployment_by_finished_at feature flag (merge request)
- Remove repository push audit event feature (merge request) GitLab Enterprise Edition
- Remove job_deployment_count feature flag (merge request)
- Remove all documentation related to Gitlab::RequestProfile (merge request)
- Remove eye icon on package detail page by @Ffinnis (merge request)
- Remove tmp index used for data migration (merge request)
- Remove ability to change type of a shared runner (merge request)
- Remove support for uses_legacy_database_config (merge request)
- Remove deprecated geo:db:* rake tasks (merge request) GitLab Enterprise Edition
- Remove clusterAgentTokenDelete GraphQL mutation (merge request)
- Remove temporary max seats used in subscription indices (merge request)
Security (16 changes)
- Sanitize URL for project selection button (merge request)
- Remove sha from project/releases.json (merge request)
- Sanitize error input to prevent HTML/CSS injection in messages
- Allow rate limiting of deploy tokens
- Prevent maintainers from editing PipelineSchedule
- Invalidate markdown cache to clear up stored XSS
- Verify that mentioned user can read TODO's note
- Update Import/Export merge/push access levels & exclude ci config path
- Add validation to pypi file sha256 values
- [security] Fix markdown API disclosing issue titles of limited projects
- Conan Token uses PAT rather than ID in payload
- Disable wiki access with CI_JOB_TOKEN when improper access level
- Secure debug trace artifact download
- Add suffix to cache name to add isolation
- Use password type for all secret integration properties
- Limit CI job group_name regexp
Performance (11 changes)
- Use efficient in operator query for fetching group & project activities (merge request)
- Restrict unique index for alerts with fingerprints (merge request)
- Add index to vulnerability_feedback.finding_uuid (merge request)
- changes_access: Speed up commit-based access checks for new refs again (merge request)
- Re-use already collected ServicePing data (merge request)
- Remove subscribed key from epic initial data (merge request) GitLab Enterprise Edition
- Improve epics finder authorization performance (merge request) GitLab Enterprise Edition
- Simplify query to find existing alert (merge request)
- Remove extra GraphQL query when loading alert list (merge request)
- Optimize followed users tabs (merge request)
- Preload some associations in EnvironmentSerializer (merge request)
Other (92 changes)
- Add Pages public folder check (merge request)
- Enable geo_use_clone_on_first_sync by default (merge request) GitLab Enterprise Edition
- Fix saas test by @chaomao (merge request)
- Add notes temp index synchronously (merge request)
- Move Rails/HasManyOrHasOneDependent into separate TODO file by @anshulriyal (merge request)
- Move Style/CaseLikeIf into separate TODO file by @anshulriyal (merge request)
- Move Rails/CreateTableWithTimestamps into separate TODO file by @anshulriyal (merge request)
- Move Style/EmptyMethod into separate TODO file by @anshulriyal (merge request)
- Fix sidekiq config test by @chaomao (merge request)
- Log result for ci_runners_stale_group_runners_prune_worker_cron (merge request) GitLab Enterprise Edition
- Move RSpec/RepeatedExampleGroupBody into separate TODO file by @anshulriyal (merge request)
- Move Style/HashAsLastArrayItem into separate TODO file by @anshulriyal (merge request)
- Move Rails/WhereExists into separate TODO file by @anshulriyal (merge request)
- Move Rails/InverseOf into separate TODO file by @anshulriyal (merge request)
- Move Rails/ActiveRecordCallbacksOrder into separate TODO file by @anshulriyal (merge request)
- Move Rails/NegateInclude into separate TODO file by @anshulriyal (merge request)
- Move Style/KeywordParametersOrder into separate TODO file by @anshulriyal (merge request)
- Moved Rails/ApplicationController into separate TODO file by @anshulriyal (merge request)
- Moved Style/Lambda into separate TODO file by @anshulriyal (merge request)
- Move RSpec/PredicateMatcher into separate TODO file by @anshulriyal (merge request)
- Move Rails/ContentTag into separate TODO file by @anshulriyal (merge request)
- Move RSpec/ExpectChange into separate TODO file by @anshulriyal (merge request)
- Move Style/AccessorGrouping into separate TODO file by @anshulriyal (merge request)
- Moved Style/RedundantRegexpEscape into separate TODO file by @anshulriyal (merge request)
- Move Rails/IndexWith into separate TODO file by @anshulriyal (merge request)
- Move Style/BarePercentLiterals into separate TODO file by @anshulriyal (merge request)
- Move RSpec/ScatteredLet into seprate TODO file by @anshulriyal (merge request)
- Move Performance/ConstantRegexp into separate TODO file by @anshulriyal (merge request)
- Move Rails/HelperInstanceVariable into separate TODO file by @anshulriyal (merge request)
- Move RSpec/ReturnFromStub into separate TODO file by @anshulriyal (merge request)
- Move Rails/RakeEnvironment into separate TODO file by @anshulriyal (merge request)
- Move Style/FormatString into separate TODO file by @anshulriyal (merge request)
- Move Performance/CollectionLiteralInLoop into separate TODO file by @anshulriyal (merge request)
- Moved Style/SingleArgumentDig into separate TODO file by @anshulriyal (merge request)
- Cleanup ci_reduce_persistent_ref_writes feature flag (merge request)
- Move Rails/LexicallyScopedActionFilter into separate TODO file by @anshulriyal (merge request)
- Moved Style/NumericLiteralPrefix into separate TODO file by @anshulriyal (merge request)
- Move Rails/FilePath into separate TODO file by @anshulriyal (merge request)
- Move Naming/RescuedExceptionsVariableName into separate TODO file by @anshulriyal (merge request)
- Moved Style/StringConcatenation into separate TODO file by @anshulriyal (merge request)
- Prevent incorrect usage of tracking_attrs helper (merge request)
- Nullify label events in batches when user is deleted (merge request)
- Fix namespaces helper test by @chaomao (merge request)
- Fix trial status widget test by @chaomao (merge request)
- Cap MR diff render tracking events to 24h (merge request)
- Remove gitaly_replace_wiki_update_page flag (merge request)
- Use OS tempdir for artifact metadata (merge request)
- Remove the packages_graphql_pipelines_resolver feature flag (merge request)
- Remove fix_related_environments_for_merge_requests feature flag (merge request)
- Improve snowplow function by returning bool type (merge request)
- Validate work_item_type_id is NOT NULL for new issue records (merge request)
- Move Rails/SquishedSQLHeredocs into separate TODO file by @anshulriyal (merge request)
- Remove gitlab-shell sidechannel feature flag (merge request)
- Remove ci_variables_builder_config_variables feature flag (merge request)
- Remove tabs_normal and use tab_single partial instead (merge request)
- Moved Style/RedundantInterpolation into separate TODO file by @anshulriyal (merge request)
- Move Style/HashEachMethods into separate TODO file by @anshulriyal (merge request)
- Move Rails/RedundantForeignKey into separate TODO file by @anshulriyal (merge request)
- Move Rails/Pick into separate TODO file by @anshulriyal (merge request)
- Add an empty newline test to Ansi2Json (merge request)
- Remove dependency_proxy_for_private_groups feature flags by @feistel (merge request)
- Add temporary index deployments (merge request)
- Clean up after fixing regression (merge request)
- Find projects affected when membership changes are made in group (merge request)
- Remove
runner_read_only_admin_view
feature flag (merge request) - Let
/page
quick action to support case-insensitive escalation policy names (merge request) GitLab Enterprise Edition - Bump Gitlab Shell to v14.0.0 (merge request)
- Remove container_registry_expiration_policies_throttling feature flag by @feistel (merge request)
- Remove ci_pending_builds_table_resiliency feature flag (merge request)
- Fix various kwargs issues (merge request)
- Clean up FixMergeRequestDiffCommitUsers background migration (merge request)
- Add repository push audit event worker (merge request) GitLab Enterprise Edition
- Fix RSpec/TimecopTravel offenses (Part 1/2) by @KevSlashNull (merge request)
- Expose CI include links (merge request)
- Add documentation for merge request setting audit events (merge request)
- Use vulnerability_report.vue for agent and pipeline reports (merge request) GitLab Enterprise Edition
- Clean up deployment_approval_rules feature flag (merge request)
- Remove container_registry_follow_redirects_middleware feature flag by @feistel (merge request)
- Extend reduced cost factor to all public projects (merge request) GitLab Enterprise Edition
- Drop, then create function (merge request)
- Bump Gitlab Shell to v13.25.2 (merge request)
- Add documentation for mr settings audit events part 1 (merge request)
- Backfill SSL verification for integrations with known-good hostnames (merge request)
- Limit to current PG user (merge request)
- Make vulnerability report more reusable (merge request) GitLab Enterprise Edition
- Remove feature flag scan_result_policy (merge request) GitLab Enterprise Edition
- Remove runner_list_group_view_vue_ui feature flag (merge request)
- Add VulnerabilityReportTab component (merge request) GitLab Enterprise Edition
- Add view containing autovacuum information (merge request)
- Clean up selection summary (merge request) GitLab Enterprise Edition
- Move methods to build email unsubscribe link to helper (merge request) GitLab Enterprise Edition
- Deprecate
push_rules_supersede_code_owners
feature flag (merge request)
Security
Security wording was detected, but no CVEs were found.
Details
date
May 20, 2022, midnight
name
15.0.0
type
Major
π
Register or login to:
- πView and search all GitLab EE releases.
- π οΈCreate and share lists to track your tools.
- π¨Setup notifications for major, security, feature or patch updates.
- πMuch more coming soon!