| ... | ... | @@ -2,6 +2,34 @@ |
|
|
|
documentation](doc/development/changelog.md) for instructions on adding your own
|
|
|
|
entry.
|
|
|
|
|
|
|
|
## 11.9.3 (2019-03-27)
|
|
|
|
|
|
|
|
### Security (8 changes)
|
|
|
|
|
|
|
|
- Disallow guest users from accessing Releases.
|
|
|
|
- Fix PDF.js vulnerability.
|
|
|
|
- Hide "related branches" when user does not have permission.
|
|
|
|
- Fix XSS in resolve conflicts form.
|
|
|
|
- Added rake task for removing EXIF data from existing uploads.
|
|
|
|
- Return cached languages if they've been detected before.
|
|
|
|
- Disallow updating namespace when updating a project.
|
|
|
|
- Use UntrustedRegexp for matching refs policy.
|
|
|
|
|
|
|
|
|
|
|
|
## 11.9.2 (2019-03-26)
|
|
|
|
|
|
|
|
### Security (8 changes)
|
|
|
|
|
|
|
|
- Disallow guest users from accessing Releases.
|
|
|
|
- Fix PDF.js vulnerability.
|
|
|
|
- Hide "related branches" when user does not have permission.
|
|
|
|
- Fix XSS in resolve conflicts form.
|
|
|
|
- Added rake task for removing EXIF data from existing uploads.
|
|
|
|
- Return cached languages if they've been detected before.
|
|
|
|
- Disallow updating namespace when updating a project.
|
|
|
|
- Use UntrustedRegexp for matching refs policy.
|
|
|
|
|
|
|
|
|
|
|
|
## 11.9.1 (2019-03-25)
|
|
|
|
|
|
|
|
### Fixed (7 changes)
|
| ... | ... | @@ -548,6 +576,32 @@ entry. |
|
|
|
- Creates mixin to reduce code duplication between CE and EE in graph component.
|
|
|
|
|
|
|
|
|
|
|
|
## 11.7.10 (2019-03-28)
|
|
|
|
|
|
|
|
### Security (7 changes)
|
|
|
|
|
|
|
|
- Disallow guest users from accessing Releases.
|
|
|
|
- Fix PDF.js vulnerability.
|
|
|
|
- Hide "related branches" when user does not have permission.
|
|
|
|
- Fix XSS in resolve conflicts form.
|
|
|
|
- Added rake task for removing EXIF data from existing uploads.
|
|
|
|
- Disallow updating namespace when updating a project.
|
|
|
|
- Use UntrustedRegexp for matching refs policy.
|
|
|
|
|
|
|
|
|
|
|
|
## 11.7.8 (2019-03-26)
|
|
|
|
|
|
|
|
### Security (7 changes)
|
|
|
|
|
|
|
|
- Disallow guest users from accessing Releases.
|
|
|
|
- Fix PDF.js vulnerability.
|
|
|
|
- Hide "related branches" when user does not have permission.
|
|
|
|
- Fix XSS in resolve conflicts form.
|
|
|
|
- Added rake task for removing EXIF data from existing uploads.
|
|
|
|
- Disallow updating namespace when updating a project.
|
|
|
|
- Use UntrustedRegexp for matching refs policy.
|
|
|
|
|
|
|
|
|
|
|
|
## 11.7.7 (2019-03-19)
|
|
|
|
|
|
|
|
### Security (2 changes)
|
| ... | ... | |
| ... | ... | |