GitLab EE - 16.9.0
Security
(2024-02-14)
Added (145 changes)
- Ensure at least one permission is selected during member role creation (merge request) GitLab Enterprise Edition
- Allow signing in to Active Directory with smart card (merge request) GitLab Enterprise Edition
- Add POST /personal_access_tokens/self/rotate endpoint by @stalb (merge request)
- Track traversal sync events, update vulnerability reads accordingly (merge request) GitLab Enterprise Edition
- Add achievements UI (merge request)
- Update BulkImports::Failure to display subrelation that failed to import (merge request)
- Add branchRuleDelete graphql mutation (merge request)
- This MR adds experiment promotion banner (merge request) GitLab Enterprise Edition
- Add settting math_rendering_limits_enabled (merge request)
- Add basic testing functionality for group level (merge request) GitLab Enterprise Edition
- Sync create indexes and prepare FK for p_ci_builds upstream_pipeline_id (merge request)
- Added first part of the command palete update (merge request)
- Add composite PK to ci_stages (merge request)
- Adds download API v4 endpoint for project avatar (merge request)
- Add designs widget to work items (merge request)
- Adds convert_to_ticket quick action (merge request)
- Sort resources by released_at (merge request)
- Adding SemanticVersionable concern to Ml::ModelVersion (merge request)
- Add member guideline to admin appearance settings by @bufferoverflow (merge request)
- Allow adding groups to CI_JOB_TOKEN allowlist graphQL mutation (merge request)
- Log audit event for member events and custom roles (merge request) GitLab Enterprise Edition
- Add concurrency option on sidekiq-cluster CLI (merge request)
- Add alert about the gitops keyword deprecation (merge request)
- Enable new finding modal on MR widget by default (merge request) GitLab Enterprise Edition
- feature: Add keyset pagination to the list of package protection rules by @gerardo-navarro (merge request)
- Added cut line for board lists with WIP limit (merge request) GitLab Enterprise Edition
- Release terraform module registry at (sub)group level (merge request)
- Match Container Scanning SBOM component (merge request) GitLab Enterprise Edition
- Add GraphQL API for projects/groups linked to security policy project (merge request) GitLab Enterprise Edition
- Added table and model for instance level destination (merge request) GitLab Enterprise Edition
- Adding tables and models for group streaming destinations (merge request) GitLab Enterprise Edition
- Add rich text editor in design notes (merge request)
- Add rich text editor to release descriptions (merge request)
- Add rich text editor in requirements (merge request)
- Add rich text editor in vulnerabilities (merge request)
- Validate the foreign key & add to routing table auto_canceled_by_id (merge request)
- Add catalog_verified_namespace table (merge request)
- Feat: transition to JiHu callout frontend (merge request)
- Feat: add entries for JH about repo blob viewers (merge request)
- Add organizations support to PushRules (merge request) GitLab Enterprise Edition
- Add rewrite_history method to the Gitaly cleanup client (merge request)
- Prepare async index for p_ci_builds.runner_id and commit_id (merge request)
- Add CVSS data to vulnerabilities GraphQL API (merge request) GitLab Enterprise Edition
- Add separate tab for the K8s Pods (merge request)
- Update the analyzer for merge_request title and description (merge request) GitLab Enterprise Edition
- Reject commits breaking GitGuardian policies (merge request) GitLab Enterprise Edition
- Add the user access level claim to ID tokens (merge request)
- Add allow/disallow duplicate terraform modules setting to UI (merge request)
- Track Insights merge request chart item click events (merge request) GitLab Enterprise Edition
- Extend drill-down functionality to all issuables Insights charts (merge request) GitLab Enterprise Edition
- Extend Projects API with a new parameter
repository_object_format
(merge request) - Allow creation of group-level custom-roles on self-managed instances (merge request) GitLab Enterprise Edition
- Add groups to CI_JOB_TOKEN allowlist (merge request)
- Add feature flag for progressive rollout of CVS (merge request)
- Sync create indexes for p_ci_builds auto_canceled_by_id and commit_id (merge request)
- Create ProjectPlanLimits type (merge request)
- Added updated to releases api (merge request)
- Add group vulnerability report denormalisation fields to vuln_reads (merge request)
- Sort resources by released_at (merge request)
- Ingest source_package_name as source_package (merge request) GitLab Enterprise Edition
- Add direct members metric to VSD counts (merge request) GitLab Enterprise Edition
- Enable the ci_workflow_auto_cancel_on_new_commit feature (merge request)
- Add Privacy Policy and Terms acceptance component (merge request) GitLab Enterprise Edition
- Assign instance-level custom roles to user (merge request) GitLab Enterprise Edition
- Add
archived
andtraversal_ids
columns tosbom_occurrences
(merge request) - Add version to fetch readme (merge request)
- Update the analyzer for epic description and title (merge request) GitLab Enterprise Edition
- Add sorting support to organization projects GraphQL query (merge request)
- Enabled has remediations filter by default (merge request) GitLab Enterprise Edition
- Release concurrency limit for Sidekiq (merge request) GitLab Enterprise Edition
- Add GraphQL mutation to refresh standards adherence checks (merge request) GitLab Enterprise Edition
- Document how to configure mutual TLS for Webhooks (merge request)
- Add available_from_access_level to custom abilities (merge request) GitLab Enterprise Edition
- Add index on sbom_occurrences table on project_id, (merge request) GitLab Enterprise Edition
- Add repository x-ray usage tracking telemetry (merge request) GitLab Enterprise Edition
- Add manage roles link to roles dropdowm (merge request) GitLab Enterprise Edition
- Allow filtering by unknown license (merge request) GitLab Enterprise Edition
- Create packages_terraform_module_metadata table & corresponding model (merge request)
- Show admin mode within active sessions view by @bufferoverflow (merge request)
- Port Star button to Vue app by @espadav8 (merge request)
- Criticial Security Alert - Latest Stable Patch (merge request)
- Add description field to GraphQL MemberEntity (merge request) GitLab Enterprise Edition
- Add WorkItems Rolledup Dates mutation GraphQL (merge request) GitLab Enterprise Edition
- Expose ID in Types::Projects::BranchRuleType (merge request)
- Adds instance admins to organization_users as owners (merge request)
- Add verification_level to GraphQL ComponentType by @imskr (merge request)
- Expose securityPolicyProject for project or group in GraphQL API (merge request) GitLab Enterprise Edition
- feat: Integration in container auth service by @gerardo-navarro (merge request)
- feat: Validation for container_path_pattern by @gerardo-navarro (merge request)
- Add composite PK to ci_job_artifacts (merge request)
- Added FF (merge request) GitLab Enterprise Edition
- Add Search::Zoekt::Repository model (merge request) GitLab Enterprise Edition
- feat: Protected packages: Create protection rules in project setting ui by @gerardo-navarro (merge request)
- Prepare async index for p_ci_builds.upstream_pipeline_id and commit_id (merge request)
- Add protectableBranches to ProjectType (merge request)
- Add a new analyzer title_analyzer (merge request) GitLab Enterprise Edition
- Add preload for autocomplete_sources/members (merge request)
- Add the code_analyzer for notes note (merge request) GitLab Enterprise Edition
- REST API support for getting commit sequence/count by @travis.finch (merge request)
- Adds graphql search options for Ml::ModelVersion (merge request)
- Migration to remove work_items from issues index (merge request) GitLab Enterprise Edition
- SAML reauth banner for issues and merge requests dashboard (merge request) GitLab Enterprise Edition
- Prepare async index for auto_canceled_by_id_convert_to_bigint (merge request)
- Publish ApprovalsResetEvent when approvals are reset on push (merge request) GitLab Enterprise Edition
- Members API: Allow group Owners to obtain enterprise users emails (merge request) GitLab Enterprise Edition
- Add
is_forked
field to project GraphQL type (merge request) - Removes moved_mr_sidebar flag (merge request)
- Finalize BackfillPartitionId for ci_pipelines related tables (merge request)
- Add "Contributor count" metric to Value Streams Dashboard (merge request) GitLab Enterprise Edition
- Add category to /spend quick action (merge request)
- Allow group Owners to view enterprise users emails on UI/Members page (merge request) GitLab Enterprise Edition
- Add name and description for WebHooks (merge request)
- Update front-end to create instance-level custom roles (merge request) GitLab Enterprise Edition
- Add maxAccessLevel field to project and group type (merge request)
- Log when GraphQL query has deprecated arguments (merge request)
- Add Direct Transfer Stats API (merge request)
- Add timestamp for sbom_source_packages (merge request)
- Add GitLab for Slack app integration to REST API (merge request)
- Check if DB external command config parsed output is a Hash (merge request)
- AI Agent list view (merge request) GitLab Enterprise Edition
- Unsubscribe individual issue email participants from issue (merge request)
- Define global identifiers for branch rules (merge request)
- Allow configuring git access protocol via Groups API (merge request)
- Add get ServicePing API endpoint (merge request)
- Remove dev feature flag: track_geo_secondary_git_op_action (merge request) GitLab Enterprise Edition
- Add description field to CI Variables drawer (merge request)
- Introduce BeyondIdentity integration to verify GPG keys (merge request)
- Add support for cancelled subscription licenses (merge request)
- Enable geo_skip_download_if_exists by default (merge request) GitLab Enterprise Edition
- Audit CI artifact download (merge request) GitLab Enterprise Edition
- Enable Jira integration issues and vulnerabilities on the group level (merge request)
- Add participants widget (merge request)
- Hide count and table header in empty state (merge request) GitLab Enterprise Edition
- Remove pipeline_name_search feature flag (merge request)
- GraphQL: Add systemId argument to
CiRunner.managers
(merge request) - Allow setting inheritance type on protected env (merge request) GitLab Enterprise Edition
- Allow providing extra DB config through an external command (merge request)
- Added arugment error when pipeline is nil by @chirayu999 (merge request)
- Enforce workspaces_quota and workspaces_per_user_quota (merge request)
- Add verification_level to catalog_resources by @imskr (merge request)
- Allow specifying extra Redis config from external command (merge request)
- Record previous weight when updating issue weight (merge request) GitLab Enterprise Edition
- Add VSA added to iteration event (merge request) GitLab Enterprise Edition
- Add standards adherence refresh worker (merge request) GitLab Enterprise Edition
- Track git operations from geo sites (merge request) GitLab Enterprise Edition
Fixed (145 changes)
- Filter committers with merge commits as well when users are loaded (merge request) GitLab Enterprise Edition
- Fix CODEOWNERS rule to ignore Verify specs for lib (merge request)
- Contributor analytics: User commit counts update for time period (merge request)
- Fix missing outbound_local_requests_allowlist parameter (merge request)
- Fix line anchor hrefs for legacy viewers (merge request)
- Fixes rendering issue with the sidebar on printed pages (merge request)
- Avoid mutating OpenSSL::PKey::EC keys (merge request)
- Fix X509::Signature#x509_issuer not working with OpenSSL 3 (merge request)
- Added RefreshImportWorker to Bitbucket Cloud/Server stage workers (merge request)
- Remove math rendering exception for wikis (merge request)
- Use component_version_id for project finder (merge request) GitLab Enterprise Edition
- Revert "Merge branch 'ag/356965-bug-sm-awaiting-user-signup-badge' into 'master' " (merge request)
- Update DiffNote's line_range during importing (merge request)
- Fix approvers loading for approval_policy type (merge request) GitLab Enterprise Edition
- Fix with_hosted_plan when used with trial: nil (merge request) GitLab Enterprise Edition
- Disable autocomplete sources feature flag (merge request)
- Handle row for "others" in runner usage breakdown (merge request) GitLab Enterprise Edition
- Update workhorse timeout to 55s (merge request) GitLab Enterprise Edition
- Milestone burndown chart consistency fixes (merge request) GitLab Enterprise Edition
- Fix limited visibility of variable values in dropdown by @antonkalmykov (merge request)
- Fix scan execution policy without ci file (merge request) GitLab Enterprise Edition
- Allow users w/ read_code permission to search code (merge request) GitLab Enterprise Edition
- Fix issue with selecting expired milestones in RTE (merge request)
- Fix SBOM ingestion errors caused by input file path validation (merge request)
- Fix changelog tag detection logic (merge request)
- Issue board - Fix updating total list weight (merge request) GitLab Enterprise Edition
- This MR fixes wrong wording for policy scope (merge request) GitLab Enterprise Edition
- Fix OIDC and id_token issuer mismatch (merge request)
- Revert "Merge branch '427437-preload-autocomplete_sources-members-retry' into 'master'" (merge request)
- Allow move to failed, from pending or failed (merge request) GitLab Enterprise Edition
- Fix MockCI REST API (merge request)
- Display runner dashboard ClickHouse features (merge request)
- Return allow_force_push: false always when security policy enforced (merge request) GitLab Enterprise Edition
- Fix broken upload progress indicator (merge request)
- Fix the error when the fork is linked to itself (merge request)
- Fix absent parameters in runner usage resolver (merge request)
- Save message in chat api (merge request) GitLab Enterprise Edition
- Fix issue with copying task lists (merge request)
- Fix bug where date strings where incorrectly formatted (merge request) GitLab Enterprise Edition
- Fix API branches OpenAPI YAML parameters by @Sineaggi (merge request)
- Select report_type based on feature flag when (merge request) GitLab Enterprise Edition
- Allow loading of Hashie::Mash in YAML (merge request)
- Update mermaid to fix upstream render bug (merge request)
- Use clearer label for iteration report calc mode (merge request) GitLab Enterprise Edition
- Update the list of supported protocols for Settings API (merge request)
- Reindex wikis to adopt new structure of id (merge request) GitLab Enterprise Edition
- Set default vulnerability_states for empty states (merge request) GitLab Enterprise Edition
- Fix snippets overflowing bug (merge request)
- Fix group filter and pagination bug (merge request)
- Check project policy_configuration ids on syncing compliance framework (merge request) GitLab Enterprise Edition
- Fix the lingering outdated codeowner rules issue (merge request)
- Fix reviews import and E2E in GitHub Import (merge request)
- Add dark mode modal specific timeline entry styles (merge request)
- Change logic of oauth_authorization_path for GitLab Jira App (merge request)
- Fix pipeline page timeout (merge request)
- VSD - Group merge request throughput should include subgroups (merge request) GitLab Enterprise Edition
- Fix Redis 6.0 compatibility breakage with Sidekiq 7 gem (merge request)
- Pass outbound_local_requests_whitelist to ProjectImporter (merge request)
- Fix mermaid diagrams in dark mode on linux (merge request)
- Fix webhooks to POST correct MR state after create (merge request)
- Partial unique index on issuable-resource-links (merge request)
- Use update services to unassign from issuables (merge request)
- Fixes Rspec for FOSS edition (merge request)
- Fix outdated pages brunch ci template (merge request)
- Update semver_dialects gem (merge request) GitLab Enterprise Edition
- Remove archived projects from the group vulnerability report filter (merge request) GitLab Enterprise Edition
- Direct transfer: Handle case where bulk import status is nil (merge request)
- Make notification dropdown flippable by @bahek2462774 (merge request)
- Update Kontra security training token (merge request) GitLab Enterprise Edition
- Geo: Fix verification timeout of registry records (merge request) GitLab Enterprise Edition
- Fix alignment of note emoji btn on hover (merge request)
- Fix email update on LDAP sync (merge request) GitLab Enterprise Edition
- Downcase checksum in with_file_sha256 nuget symbol scope (merge request)
- Fix epic subscription (merge request)
- Hide draft comment note text when editing the comment (merge request)
- Update star count component to work when logged out by @espadav8 (merge request)
- Add worker to sync approval rules with preexisting state (merge request) GitLab Enterprise Edition
- Make sure the key attribute is unique (merge request)
- This MR fixes code source selection (merge request) GitLab Enterprise Edition
- This MR fixes adding extra characters (merge request) GitLab Enterprise Edition
- Redirect to correct page after dashboard SAML reauth (merge request) GitLab Enterprise Edition
- Fix vulnerability statistics adjustment service (merge request) GitLab Enterprise Edition
- Make nuget symbol files search case-insensitive (merge request)
- Use
hidden
to prevent scollbars on inline math (merge request) - Fix Members::DestroyService audit bug with removing subresources (merge request) GitLab Enterprise Edition
- Use static list for dependency list licenses (merge request) GitLab Enterprise Edition
- Fix invalid records with FK not valid (merge request)
- Only set CI_HAS_OPEN_REQUIREMENTS when licensed (merge request) GitLab Enterprise Edition
- Emoji Picker button hover misalignment fix (merge request)
- Respect inherited font-size in markdown code block (merge request)
- Load filter targets dynamically (merge request) GitLab Enterprise Edition
- Allow non-development environments to perform local project imports (merge request)
- Use active and correct add_on_purchase (merge request) GitLab Enterprise Edition
- Remove transaction around object pool mirroring (merge request)
- Fix 403 error when using job token to access public project (merge request)
- Fix creation of instance-level member roles (merge request) GitLab Enterprise Edition
- Handle invalid API JSON input gracefully (merge request)
- Change SAML group lock self-managed to work on group sync and group SAML (merge request) GitLab Enterprise Edition
- Stop allowing approvals to be changed post merge (merge request)
- Use LFS change size for pushes, not total size (merge request) GitLab Enterprise Edition
- Fix NoMethodError from Projects::BlobController#show (merge request) GitLab Enterprise Edition
- Disable pipeline_stage_set_last_modified FF (merge request)
- Fix breadcrumb and page title for Wiki/New page (merge request)
- Only perform workspace agent validation on create (merge request) GitLab Enterprise Edition
- Fix issue search when created from another locale (merge request)
- Revert: Fix pages with case sensitive paths (merge request)
- Execute hooks from timelog create service by @zillemarco (merge request)
- Fix punctuation on profile edit page (merge request)
- Fix error in Mapper::Normalizer when CI include value type is invalid (merge request)
- Bump semver_dialects gem (merge request)
- Fix Gitlab::Llm::Completions::Chat default value for the options param (merge request) GitLab Enterprise Edition
- Fix current_license_title namespace translation (merge request)
- Truncate commit author on blame view when under 3 lines (merge request)
- Fix action/rule deletion bug (merge request) GitLab Enterprise Edition
- Vulnerability Details: Fix generic report types (merge request) GitLab Enterprise Edition
- Group dropdown on New Project page respects visibility settings (merge request)
- Add with-header class to root element in minimal and devise empty views (merge request)
- Set modal title to finding title (merge request) GitLab Enterprise Edition
- Defer ConnectionPool instrumentation setup (merge request)
- Create merge request button: Fix spacing in dropdown (merge request)
- Improve decimal precision for small VSD metric values (merge request) GitLab Enterprise Edition
- Update review button variant (merge request)
- Fix issue with pasting images in RTE (merge request)
- Referencing a user with "me" could result in an incorrect quick action (merge request) GitLab Enterprise Edition
- Update nullable on author field on NoteType (merge request)
- Allow non-admin access to user activities (merge request)
- Add team members to policy project only when not added for the group (merge request) GitLab Enterprise Edition
- Use component_version_id instead component_id for (merge request) GitLab Enterprise Edition
- Fix pages with case sensitive paths (merge request)
- Ensure SVGs are properly compiled (merge request)
- Fix source code highlighting when using relative URL (merge request)
- Fixes project export task issue (merge request)
- Use different localStorage sorting key by @bahek2462774 (merge request)
- Remember BACKUP for untarred backups (merge request)
- Nullify
dismissal_reason
when a vulnerability is un-dismissed (merge request) GitLab Enterprise Edition - Fix GitLab typo in empty state group page (merge request)
- MR Media report widget alignment fix (merge request)
- Hide viz designer button until product analytics onboarded (merge request) GitLab Enterprise Edition
- Update RTV and ETV to use subscription ID (merge request) GitLab Enterprise Edition
- Diff controls alignment fix (merge request)
- Validate repo import scope (merge request)
- Add VulnerabilitiesFinder for scan result policies (merge request) GitLab Enterprise Edition
- Issues list: spacing between labels (merge request)
- Resolve feedback banner not showing on the behavior dashboard (merge request) GitLab Enterprise Edition
- Unify dividing line color in commit info-well (merge request)
Changed (209 changes)
- Show subscription next term start date (merge request) GitLab Enterprise Edition
- Filter out unlincensed work item widget definitions (merge request) GitLab Enterprise Edition
- Add rails payload to zoekt indexing callbacks (merge request) GitLab Enterprise Edition
- Update deployment tests to vue 3 (merge request)
- Update comment form tests for vue 3 (merge request)
- Reorganize profile page layout (merge request)
- Enable CRM by default (merge request)
- Uses similarity sort for projects query (merge request)
- Fixing rubocop exceptions no. 7 (merge request)
- Remove
determine_blank_ref_based_on_gitaly_object_format
feature flag (merge request) - Changes for optimizing expiring worker (merge request)
- Add group by dropdown on adherence report (merge request) GitLab Enterprise Edition
- Reposition catalog setting by @jzeng88 (merge request)
- Improve analytics settings copy (merge request) GitLab Enterprise Edition
- Migrate label empty state component (merge request)
- Pipeline manual action: Migrate dropdown to GlDisclosureDropdown (merge request)
- Update old Geo DB docs link (merge request) GitLab Enterprise Edition
- Replace UI usages of shared runner with instance runner (merge request)
- Show alert in CI Variable drawer (merge request)
- Rewrite Cloud Connector architecture docs (merge request)
- Fix security policy source to not trigger pipelines for tags (merge request)
- Enhance navigation in findings drawer with tooltip and button group (merge request) GitLab Enterprise Edition
- Add new integration logos (merge request)
- Premium customers can use GitLab Duo Chat (merge request) GitLab Enterprise Edition
- Set minimum Redis version in system check to 6.0.0 (merge request)
- Add new route /bulk_imports/:id/history (merge request)
- Add tooltip with help docs to license scanning widget (merge request)
- Fixing rubocop exceptions in tests no 8 (merge request)
- Fixes issue actions presentation at small size (merge request)
- Add runner usage breakdown to dashboard (merge request) GitLab Enterprise Edition
- Remove .borderless, .nav-links-unboxed (merge request)
- Support nested arrays in CI config
stages
by @suyash-chavan (merge request) - Expose committed_before and committed_after (merge request)
- Update GITLAB_PAGES_VERSION (merge request)
- Use 'last_activity_at' for project list order by last updated (merge request)
- Add import stats to bulk_import_history_app (merge request)
- Invite Group Modal - Use new API on project view (merge request)
- Disable new schedule button (merge request)
- Remove
compliance_standards_adherence_csv_export
feature flag (merge request) GitLab Enterprise Edition - Rename Infrastructure Registry page title to Terraform Module Registry (merge request)
- This MR changes flow for compliance framework (merge request) GitLab Enterprise Edition
- Show various MR keyboard shortcuts in tooltips (merge request)
- Migrates .d-md-flex to .gl-md-display-flex! (merge request)
- Add approvalPolicies field and deprecate scanResultPolicies (merge request) GitLab Enterprise Edition
- Replace taskable argument with name (merge request)
- Align X Ray permission model to Duo Pro Add On (merge request) GitLab Enterprise Edition
- Move order of collaborators import (merge request)
- Update permissions for adding a child issue to an epic (merge request)
- Enable dora_performers_score_panel feature flag by default (merge request) GitLab Enterprise Edition
- Update ui text for MR comment filters (merge request)
- Auto approve pending members on user cap disable (merge request) GitLab Enterprise Edition
- Update sbom occurrence source fields ingestion (merge request) GitLab Enterprise Edition
- Pipeline MiniGraph: Migrate dropdown to GlDisclosureDropdown (merge request)
- Add severity sort for group level dependencies (merge request) GitLab Enterprise Edition
- Refine Add code task copy (merge request) GitLab Enterprise Edition
- Update help text for GitHub import PAT field (merge request)
- Migrate buttons in overflow_warning_component.rb (merge request)
- Add delimiters to large numbers in analytics chart tooltips (merge request) GitLab Enterprise Edition
- Remove code_suggestions_claude21 flag (merge request) GitLab Enterprise Edition
- Use container registry API to fetch a tag (merge request)
- Update dependency auto-deploy-image to v2.80.1 (merge request)
- Update styles for services table (merge request)
- Remove CRM organizations navigation menu item (merge request)
- Updated URLs for "Issues closed" links in Value Streams Dashboard (merge request)
- Migrates full width class (merge request)
- Remove projectPath argument from ciCatalogResourcesResolver (merge request)
- Migrates height utility classes (merge request)
- Use radio buttons for admin group permission (merge request)
- Add GlSingleStat to haml (merge request)
- Remove
scan_result_policy_merge_base_pipeline
feature flag (merge request) - Adds
jira_connect_public_key_storage_enabled
field (merge request) - Custom role UI enhancements (merge request) GitLab Enterprise Edition
- Detect usage of pinned nav item and handle section expanded state (merge request)
- Do not pre-select group import target namespaces (merge request)
- Remove use_cloud_connector_lb feature flag (merge request)
- Update policy type param for editing to use approval_policy (merge request) GitLab Enterprise Edition
- Add limits for license names (merge request) GitLab Enterprise Edition
- Migrate float-right to gl-float-right (merge request)
- This MR changes schema for external file path (merge request) GitLab Enterprise Edition
- WorkItemDelete mutations handle group by @imskr (merge request)
- Add blame data to simple viewer (merge request)
- Hides user checkbox that allows group creation (merge request)
- Work item - mobile ancestors widget (merge request)
- Migrates .align-items-center to .gl-align-items-center (merge request)
- Refactor FindChangedPaths RPC call for initial commits (merge request)
- Update match_on_inclusion to match_on_inclusion_license (merge request) GitLab Enterprise Edition
- Remove help text about creating groups when creating a project (merge request)
- Allow local request origin when in dev (merge request)
- Add item_to_preload method in helper and migrations (merge request) GitLab Enterprise Edition
- Clean up caching importer by @imskr (merge request)
- Remove todo for group_saml/sso_state_spec (merge request)
- Add cleanup to testAuthServer (merge request)
- Use finished deployments in Environments stop actions (merge request)
- Migrate .lh-100 to .gl-line-height-1 (merge request)
- Remove sms_send_wait_time feature flag (merge request)
- Migrates flex-wrap (merge request)
- Enable github_import_lock_user_finder feature flag by default (merge request)
- Import resources using GitHub Import timeline API (merge request)
- Update dependency auto-deploy-image to v2.80.0 (merge request)
- Implementing Trial Discover Page Experiment Stage 1 (merge request) GitLab Enterprise Edition
- Enable geo_proxy_check_pipeline_refs by default (merge request) GitLab Enterprise Edition
- Show find file and permalink shortcut in tooltip (merge request)
- Improve dark-mode theme in sign in/up pages (merge request)
- Hide keyboard shortcuts in tooltips when disabled (merge request) GitLab Enterprise Edition
- Update pipeline findings description and report label (merge request) GitLab Enterprise Edition
- Migrate existing policy to approval_policy on replace (merge request) GitLab Enterprise Edition
- Use traversal_ids for project search (merge request) GitLab Enterprise Edition
- Add /remove_parent quick action for work items (merge request)
- Change Web App Manifest
display
frombrowser
tostandalone
by @LasseRosenow (merge request) - Code dropdown: Migrate to GlDisclosureDropdown (merge request)
- Update dependency auto-deploy-image to v2.79.0 (merge request)
- Productize tier_badge experiment (merge request) GitLab Enterprise Edition
- Removes dot from edit board button (merge request)
- Support
approval_policy
in JSON schema (merge request) GitLab Enterprise Edition - Update po files (merge request)
- Set minimum Redis version in system check to v6.2.0 (merge request)
- Move runner description field under configuration (merge request)
- Finalize UUID backfilling before column type migration cleanup occurs (merge request)
- Feat(Feature flag): remove key_contacts_management (merge request) GitLab Enterprise Edition
- Allow workhorse extra config command to have arguments (merge request)
- Remove the prefix_ci_build_tokens feature flag (merge request)
- Add component names to resource item (merge request)
- Emoji picker: Migrate dropdown to GlDisclosureDropdown (merge request)
- Update gitlab-pages (merge request)
- FF use_sync_service_token_worker enabled by default (merge request)
- Improve specs for GroupSaml::SsoState (merge request) GitLab Enterprise Edition
- Update vendor/spdx.json to v3.22 (merge request)
- Update documentation (merge request) GitLab Enterprise Edition
- Excludes Ml::Models from showing up on Experiments (merge request)
- Replace geo empty state illustration (merge request)
- Use t.Cleanup for startWorkhorseServerWithConfig startWorkhorseServer (merge request)
- Use t.Cleanup in upstream_test (merge request)
- Use t.Cleanup in range_test (merge request)
- Use t.Cleanup in artifacts_upload_test (merge request)
- Add UI polish to issue analytics table (merge request)
- Simplify active_since? (merge request) GitLab Enterprise Edition
- Admin area overview: Update stats component (merge request)
- Update character_set to v1.8.0 (merge request)
- Copy adjustment for /billings page Duo Pro hand-raise PQL (merge request) GitLab Enterprise Edition
- Logs large IN lists (merge request)
- Improvements in vertical spacing sign-in page (merge request)
- Expose setting category on Internal Events for migration purposes (FE) (merge request)
- This MR adds branch exceptions selector (merge request) GitLab Enterprise Edition
- Improve avatar on vulnerability details page (merge request) GitLab Enterprise Edition
- Allow to revert/cherry-pick squashed MRs with FF strategy (merge request)
- Move OWASP 2021 group behind a feature flag (merge request) GitLab Enterprise Edition
- Format analytics dashboards data tables with delimiters (merge request) GitLab Enterprise Edition
- Group overview: Make items keyboard accessibile (merge request)
- Allow for DNS Zone change in RD Config (merge request) GitLab Enterprise Edition
- Remove the feature flag prefix_scim_tokens (merge request)
- Add
includeArchived: true | false
togroupProjects
graphQL (merge request) - Adds Application Setting (merge request)
- Add Max Code indexing concurrency setting (merge request) GitLab Enterprise Edition
- Include subgroups in adherence export (merge request) GitLab Enterprise Edition
- Use content editor's serializer for copy_as_gfm (merge request)
- Allow embedding relative BMP images in markdown by @ignapk (merge request)
- Spec approval service for instance SAML approval (merge request) GitLab Enterprise Edition
- Add alert for user signed up with join a project option (merge request) GitLab Enterprise Edition
- Enable sbom_occurrences_vulnerabilities FF (merge request) GitLab Enterprise Edition
- Add a conditional for project or group avatar (merge request)
- Migrate milestone actions button to pajamas component (merge request)
- Setup cssbundling-rails by @ar-mali (merge request)
- Remove node backoffs for deletion and indexing requests (merge request) GitLab Enterprise Edition
- Add a separate target for basic merge request search (merge request)
- Update dependency auto-deploy-image to v2.78.0 (merge request)
- Support CS in PossiblyAffectedOccurrencesFinder (merge request) GitLab Enterprise Edition
- Migrate preview button in group templates (merge request)
- Migrate button in app/views/users/unsubscribes/show.html.haml (merge request)
- Removes database migrations up to 15-9-stable-ee (merge request)
- Enable license_compliance_widget_category by default (merge request) GitLab Enterprise Edition
- Noted lack of Duo Chat support in Web IDE on SM (merge request)
- Remove unused file (merge request)
- Migrate buttons in awards_block.html.haml (merge request)
- Update pipeline editor empty state (merge request)
- Remove true-up validation for cloud licenses (merge request) GitLab Enterprise Edition
- Updated copy for due pro hand-raise PQL on billings page (merge request) GitLab Enterprise Edition
- Show Needs triage instead of DETECTED in finding modals (merge request) GitLab Enterprise Edition
- Footer links disappear on small viewports (merge request)
- Clean CI usage w/ optional "deep clean" when banning users on GitLab.com (merge request) GitLab Enterprise Edition
- Service accounts can be added to LDAP-synced groups (merge request) GitLab Enterprise Edition
- Migrate button in clone_panel to Pajamas component (merge request)
- Make review emails more readable (merge request)
- Add index for events to efficiently query user contributions [SYNC] by @zzaakiirr (merge request)
- Merge request approval widget: Use small button (merge request)
- Add approval group rule post endpoint (merge request) GitLab Enterprise Edition
- Show email on the user popover (merge request)
- Admin area dashboard cleanup (merge request)
- Update pipeline illustrations (merge request)
- Introduce separate targets for global search indexing (merge request) GitLab Enterprise Edition
- Change importing alert to warning (merge request)
- Trims input fields in maven dependency proxy settings (merge request)
- Improve Cookie Preferences button on mobile (merge request)
- Assignees button migration (merge request)
- Update dependency auto-deploy-image to v2.77.0 (merge request)
- Migrate {hll_counters}_i_code_review_create_mr from hll to int (merge request)
- Add warning when project creation is noone (merge request)
- Limit project description in sidebar (merge request)
- Update project-level analytics settings strings (merge request) GitLab Enterprise Edition
- Display the related MR's for the pipeline header (merge request)
- GitHub importer: Rename "link" as "attachment" (merge request)
- Removing FF persist_failed_pipelines_from_schedules (merge request)
- Update FF with actor (merge request)
- Remove feature flag package_metadata_advisory_sync (merge request) GitLab Enterprise Edition
- Update tab name (merge request)
- Fix accessibility issues in spam logs (merge request)
- Allow multiple requirements for custom abilities (merge request) GitLab Enterprise Edition
- Update feature tests (merge request)
- Make security policy stages order take precedence (merge request) GitLab Enterprise Edition
- Remove bitbucket_importer_exponential_backoff feature flag (merge request)
Deprecated (1 change)
Removed (31 changes)
- Remove repository renamed event code (merge request) GitLab Enterprise Edition
- Removes can_approve_deployment? method by @tedtran2019 (merge request) GitLab Enterprise Edition
- Delete two Sidekiq reliable_fetcher flags (merge request)
- Remove ProjectRepositoryState model (merge request) GitLab Enterprise Edition
- Delete the 'ci_accept_trace' feature flag (merge request)
- Remove members_api_expose_enterprise_users_emails_only feature flag (merge request) GitLab Enterprise Edition
- Clean up code suggestions non-owner alert (merge request) GitLab Enterprise Edition
- Remove legacy hashed storage migration code (merge request) GitLab Enterprise Edition
- Remove readme_html field from Ci::Catalog::Resource (merge request)
- Remove bitbucket_server_convert_mentions_to_users (merge request)
- Remove pagination count (merge request)
- Remove references to zoekt_indexed_namespaces and drop table (merge request)
- Remove project_overwrite_service_tracking FF (merge request)
- Remove usage of AutoFixWorker (merge request)
- Remove unused controller code and old view (merge request)
- Drop
vulnerabilities
Column From SbomOccurences (merge request) - Revert "Merge branch '416662-free-storage-limit-alert' into 'master'" (merge request)
- refactor: Drop col column 'package_name_pattern_ilike_query' Part 1 by @gerardo-navarro (merge request)
- Remove the GCP technical demo views (merge request)
- refactor: Remove ignore rule for renamed attr 'container_path_pattern' by @gerardo-navarro (merge request)
- Delete WorkItemUpdateTask mutation (merge request)
- Drop ignored columns from geo_node_statuses table (merge request)
- Remove summary tab from K8s overview (merge request)
- Drops unused index index_on_projects_lower_path from projects (merge request)
- Remove gl_analytics_tracking Feature Flag (merge request)
- Removes bitbucket_server_importer_exponential_backoff feature flag (merge request)
- Remove unused dependency scanning jobs (merge request)
- Cleanup the linear query feature flags (merge request)
- Remove generate tests code (merge request)
- Remove lfs-check feature flag (merge request)
- Remove superseded SSH certificates protocol option (merge request)
Security (11 changes)
- Restrict group access token creation for custom roles
- Limit vulnerabilitiesCountByDay date range to 1 year
- Make scan result policies block renaming branches
- Fix CI component input Regexp
- Add zuora_payment_method_xid to CreditCardValidation
- Fix improper username sanitization
- Do not allow non-team member to set MR assignees/reviewers
- Use public email in tags atom feed
- Escape user input before building regex for linker
- Devfile parser arbitrary file write
- Adds absolute path check (merge request) GitLab Enterprise Edition
Performance (18 changes)
- Add pagination to UsersController#contributed (merge request)
- Add an additional preload to prevent n+1 in new project page (merge request) GitLab Enterprise Edition
- Creating an internal Ci::Pipeline will send an internal event (merge request)
- Remove FF reading p_ci_pipeline_variables (merge request)
- Reduce N+1 approval rules related queries on GraphQL request (merge request) GitLab Enterprise Edition
- Disable unused coverage in MR pipeline list (merge request)
- Reduce memory allocations when iterating over an Enumerator (merge request)
- Add ff to read from p_ci_pipeline_variables (merge request)
- Preload policy requirements for group projects count (merge request) GitLab Enterprise Edition
- Use the rust based markdown engine (merge request)
- Add index to WebHooks on project based hooks (merge request)
- Cleanup unused index and fk for ci_build_trace_metadata (merge request)
- Remove duplicated index_user_callouts_on_user_id index (merge request)
- Add unbind hook to SafeHtml directive (merge request)
- Clean up feature flag "reorder_garbage_collection_calls" (merge request)
- Add index on [name, pipeline_id] to ci_pipeline_metadata (merge request)
- Remove batch_route_updates feature flag (merge request)
- Refactor GroupsFinder and (hopefully) fix performance issue (merge request)
Other (147 changes)
- Re-enqueue backfilling of the default organization owners (merge request)
- Partition ci_job_artifacts table (merge request)
- Add sharding keys for importers (merge request)
- Prepare partitioning constraint for ci_stages (merge request)
- [Refactoring] Extract common code in commit.html.haml (merge request)
- Add Duo-Pro telemetry header to AIGW request (merge request) GitLab Enterprise Edition
- Add desired sharding keys for vulnerability_management (merge request)
- Add desired sharding keys for deployment_management (merge request)
- Add desired sharding keys for design_management (merge request)
- Add desired sharding keys for compliance_management (merge request)
- Remove obsolete FK between ci_stages and p_ci_builds (merge request)
- Feature gate group code suggestion access policies (merge request) GitLab Enterprise Edition
- Prevent adding records with null attributes to users and user_preference (merge request)
- Upgrade redis gem to v5 (merge request)
- Add rake task to list orphan final artifact objects (merge request)
- Geo: Disable pipeline ref created events (merge request) GitLab Enterprise Edition
- Docs: Update enable the feature flag link for pages (merge request)
- feat: Protected packages: Use capitalized casing in setting ui table by @gerardo-navarro (merge request)
- Docs: GitLab pages Domain-level redirects enabled on Gitlab.com (merge request)
- Removes pipeline_warnings method by @tedtran2019 (merge request)
- Add sharding keys for remote_development (merge request)
- Introduce FK for routing table (merge request)
- Enable refactoring Project.has_ci_config_file? (merge request)
- Clean up vsa_predefined_date_ranges feature flag (merge request)
- Create index for merge_request_metrics by @schurzi (merge request)
- Add not null constraint to noteable_type (merge request)
- Backfill default protection branch defaults in application setting (merge request)
- Add desired sharding keys for mlops (merge request)
- Add desired sharding keys for user_profile (merge request)
- Add desired sharding keys for continuous_delivery (merge request)
- Add desired sharding keys for value_stream_management (merge request)
- Remove partition filter feature flag (merge request)
- Add sharding keys for continuous_integration (merge request)
- Fix wrong error reason for protected packages by @gerardo-navarro (merge request)
- Remove references to graphql_git_blame (merge request)
- Add sharding keys for source_code_management (merge request)
- Add desired sharding keys for continuous_integration (merge request)
- Add desired sharding keys for code_review_workflow (merge request)
- Add desired sharding keys for portfolio_management (merge request)
- Refactor ForkService class (merge request)
- Rename paginated table page bundle to be reusable (merge request)
- Remove geo proxy related dev feature flags (merge request) GitLab Enterprise Edition
- Add sharding keys for gitaly (merge request)
- Use QueuesMetadata for Sidekiq status (merge request)
- Use PipelineTriggers::UpdateService in endpoints by @missy-davies (merge request)
- Improve the storing of approvals at merge time (merge request)
- Change column title and adjust empty rule (merge request) GitLab Enterprise Edition
- Splits the migration to enqueue BBMs separately (merge request)
- Remove feature flag i_ci_secrets_management_vault_build_created (merge request)
- Fixes Button spacing by @NIKU-SINGH (merge request)
- Add desired sharding keys for source_code_management (merge request)
- Add desired sharding keys for pages (merge request)
- Add desired sharding keys for infrastructure_as_code (merge request)
- Add desired sharding keys for wiki (merge request)
- Analyze parent table after partitioning (merge request)
- Add sharding keys for dependency_management (merge request)
- Add sharding keys for geo_replication (merge request)
- Add sharding keys for build_artifacts (merge request)
- Add sharding keys for package_registry (merge request)
- Migrate sidekiq status from SharedState to QueuesMetadata (merge request)
- Add CRUD services for pipeline trigger tokens by @missy-davies (merge request)
- Change revoked approvals to reset approvals (merge request)
- Split out one of the mergeability conflict checks (merge request)
- Specify GitLab SSHD in FIPS compliance docs (merge request)
- Update gitaly gem to 16.9.0.pre.rc2 version (merge request)
- Add check constraint to ensure star_count is non-negative (merge request)
- Add sharding keys for security_policy_management (merge request)
- Add sharding keys for feature_flags (merge request)
- Finalize batched migration BackfillCatalogResourceVersionsReleasedAt (merge request)
- Create index to support group direct members count (merge request)
- Update p_ci_builds FKs to ci_stages to include partition_id (merge request)
- Add desired sharding keys for code_testing (merge request)
- Rename StuckImportWorker to StaleImportWorker (merge request)
- Remove Gitlab::Redis::ClusterSharedState migration helper (merge request)
- Prepare partitioning constraint for ci_job_artifacts 2 (merge request)
- Add sharding keys for value_stream_management (merge request)
- Add sharding keys for vulnerability_management (merge request)
- Add sharding keys for wiki (merge request)
- Cleanup the update_default_organization_users (merge request)
- Return ServiceResponse for Pypi::CreatePackageService by @gerardo-navarro (merge request)
- Use shorter notation for conditional classes (merge request)
- test: Apply recommended matchers from testing library by @gerardo-navarro (merge request)
- Stop requesting the diff stats for tracing related diffs (merge request)
- Add visible names for all MR approval rule table headers (merge request) GitLab Enterprise Edition
- Swap system_note_metadata.id to bigint (merge request)
- Creating new event based metric for Ci Builds (merge request)
- Replace icons with corresponding options (merge request)
- Remove increase_jira_import_issues_timeout feature flag (merge request)
- refactor: Reference regex utility directly in Packages::Protection::Rule by @gerardo-navarro (merge request)
- Prepare partitioning constraint for ci_job_artifacts (merge request)
- Ensure uniqueness ci_pipeline_variables ids (merge request)
- Avoids db hit to get
id
, instead using it from the loaded object (merge request) - Async create index to support counting group members (merge request)
- Remove validate_import_decompressed_archive_size feature flag (merge request)
- Finalize BackfillOwaspTopTenOfVulnerabilityReads (merge request)
- Add sharding keys for audit_events (merge request)
- Fix workspaces url_prefix field (merge request) GitLab Enterprise Edition
- Add onboarding_status to user_details and implement use (merge request)
- Update job_artifacts docs with new project ID location by @mitar (merge request)
- Remove project import level (merge request)
- Cleanup highlight_js_worker feature flag (merge request)
- Remove default values for partition_id (merge request)
- Don't send email when importing members using DirectTransfer (merge request)
- Add sharding keys for global_search (merge request)
- Add sharding keys for secrets_management (merge request)
- Add sharding keys for onboarding (merge request)
- Add sharding keys for consumables_cost_management (merge request)
- Add sharding keys for dependency_proxy (merge request)
- Add sharding keys for infrastructure_as_code (merge request)
- Add sharding keys for integrations (merge request)
- Add sharding keys for software_composition_analysis (merge request)
- Add sharding keys for cell (merge request)
- Silence only the first instance RedisClient::ConnectionError (merge request)
- Fix MultiStore .close to skip if no connections borrowed (merge request)
- Create routing table for ci_pipeline_variables (merge request)
- Backfill catalog_resource_versions released_at column (merge request)
- chore: Added missing feature_category for CurrentUserMode tests by @gerardo-navarro (merge request)
- Add sharding keys for continuous_delivery (merge request)
- Enable optimise GitHub import attachments feature (merge request)
- Cleanup scan_result_policies_block_force_push FF (merge request) GitLab Enterprise Edition
- Fixes gettext autofix (merge request)
- Update migration's signature (merge request)
- Adjust rule controles to new design (merge request) GitLab Enterprise Edition
- Prepare partitioning constraint for ci_pipeline_variables (merge request)
- Add FK for bigint conversion for .com (merge request)
- Add sharding keys for instance_resiliency (merge request)
- Add sharding keys for portfolio_management (merge request)
- Add sharding keys for requirements_management (merge request)
- Add sharding keys for dynamic_application_security_testing (merge request)
- Add sharding keys for deployment_management (merge request)
- Add sharding keys for mlops (merge request)
- Create index asynchronously for merge_request_metrics by @schurzi (merge request)
- Fix cross joins on group members (merge request)
- Document best practices for components README (merge request)
- Add new fields (merge request)
- Migrate deprecated buttons to pajamas component by @missy-davies (merge request)
- Introduce
golangci
to Workhorse (merge request) - Cleanup blobBlameInfo feature flag (merge request)
- Add guidelines for becoming a maintainer of GitLab Pages (merge request)
- Add index for the new primary key on system_note_metadata (merge request)
- Remove bulk_import_limit_concurrent_batches flag (merge request)
- Move MentionsConverter to Import namespace (merge request)
- Validate merge_request_diffs.project_id foreign key (merge request)
- Add sharding key to agent_user_access_project_authorizations (merge request)
- Add sharding keys for feature category fuzz_testing (merge request)
- Add sharding keys for feature category container_registry (merge request)
- Protected packages: Align logic for protection rules across registries by @gerardo-navarro (merge request)
EE (1 change)
Security
Security wording was detected, but no CVEs were found.
Details
date
Feb. 14, 2024, midnight
name
16.9.0
type
Minor
👇
Register or login to:
- 🔍View and search all GitLab EE releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!