root
/
gitlab-ce
mirror of https://gitlab.com/free-releases/gitlab-ce.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
109,564 Commits 9,131 Branches 1,640 Tags 2 GiB
Commit Graph

16 Commits

Author SHA1 Message Date
GitLab Bot 5875e92ecf Add latest changes from gitlab-org/gitlab@master 2022-07-05 21:08:45 +00:00
GitLab Bot f62efc3864 Add latest changes from gitlab-org/gitlab@master 2022-05-02 15:10:10 +00:00
GitLab Bot 30f229be4c Add latest changes from gitlab-org/gitlab@master 2022-02-03 01:19:28 +00:00
GitLab Bot 563d0d3bc9 Add latest changes from gitlab-org/gitlab@master 2022-01-12 06:11:00 +00:00
GitLab Bot b684feb6c8 Add latest changes from gitlab-org/gitlab@master 2021-08-12 06:10:10 +00:00
GitLab Bot f8975b16d1 Add latest changes from gitlab-org/gitlab@master 2021-07-01 21:08:38 +00:00
GitLab Bot 729eabcb41 Add latest changes from gitlab-org/gitlab@master 2020-08-31 12:10:39 +00:00
GitLab Bot bf593ae68b Add latest changes from gitlab-org/gitlab@master 2020-08-10 12:09:55 +00:00
GitLab Bot c59765a50a Add latest changes from gitlab-org/gitlab@master 2020-06-24 18:09:03 +00:00
GitLab Bot 967812838c Add latest changes from gitlab-org/gitlab@master 2020-03-23 18:09:25 +00:00
GitLab Bot 18a102a5b9 Add latest changes from gitlab-org/gitlab@master 2019-11-08 03:06:48 +00:00
George Koltsov e5e1c907c0 Add outbound requests setting for system hooks 
This MR adds new application setting to network section
`allow_local_requests_from_system_hooks`. Prior to this change
system hooks were allowed to do local network requests by default
and we are adding an ability for admins to control it.
 2019-08-02 15:39:18 +01:00
Douwe Maan a9bcddee4c Protect Gitlab::HTTP against DNS rebinding attack 
Gitlab::HTTP now resolves the hostname only once, verifies the IP is not
blocked, and then uses the same IP to perform the actual request, while
passing the original hostname in the `Host` header and SSL SNI field.
 2019-05-30 10:47:31 -03:00
Heinrich Lee Yu 880792a04e Catch `RedirectionTooDeep` Exception in webhooks 2018-10-19 05:55:06 +00:00
Douwe Maan 2e3bc6a941
Raise more descriptive errors when URLs are blocked 2018-04-02 17:20:01 +02:00
Douwe Maan 95ced3bb5f Merge branch 'fj-15329-services-callbacks-ssrf' into 'security-10-6' 
Server Side Request Forgery in Services and Web Hooks

See merge request gitlab/gitlabhq!2337
 2018-03-21 14:39:21 +00:00