gitlab-ce/CHANGELOG.md

Note: This file is automatically generated. Please see the developer documentation for instructions on adding your own entry.

17.1.0 (2024-06-19)

Added (180 changes)

• Allow admin_runner ability to change shared runner setting (merge request) GitLab Enterprise Edition
• Update services to create custom software license (merge request) GitLab Enterprise Edition
• Protected containers: Add help text for repository path pattern input by @gerardo-navarro (merge request)
• Move document for CS for registry (merge request) GitLab Enterprise Edition
• Add new duo pro discover page (merge request) GitLab Enterprise Edition
• Changed association of frameworks with projects (merge request) GitLab Enterprise Edition
• Add support for new placeholders by @TamsilAmani (merge request)
• Add admin_runners custom ability (merge request) GitLab Enterprise Edition
• Add worker to aggregate last 30-day catalog resource usage data (merge request)
• Add cargo to supported sbom and sync types (merge request)
• Add project settings sections to command mode results (merge request)
• Configuring Topology Service in Rails (merge request)
• Add ML Model filters to the "package files" screen (merge request)
• Include SAST Advanced in configuration UI allowlist (merge request)
• Group level work items support group level references (merge request)
• Add search in wiki sidebar (merge request)
• Render icons beside suggestions (merge request)
• Display temporary extension expiration banner (merge request) GitLab Enterprise Edition
• Add logs header details (merge request)
• Cleanup index terraform module archive FF (merge request)
• Create new custom Permission: read_crm_contact by @ChaelCodes (merge request) GitLab Enterprise Edition
• Use custom models for duo chat features (merge request) GitLab Enterprise Edition
• Add ssh-upload-pack endpoint to handle Git over SSH requests (merge request) GitLab Enterprise Edition
• Add embedding reference and call it on condition (merge request) GitLab Enterprise Edition
• Add related issues to Merge Request API by @zzaakiirr (merge request)
• Add partition_id to Ci::Sources::Project (merge request)
• Expose configuration in API and UI (merge request)
• Filter projects by marked for deletion by @imskr (merge request) GitLab Enterprise Edition
• Add urls to generated changelogs by @Taucher2003 (merge request)
• Add count field to WorkItemConnection (merge request)
• Progress bar & status to model artifact importer (merge request)
• Exposed note body first line on GraphQL by @zillemarco (merge request)
• Add external MR diffs to gitlab-backup task by @zzaakiirr (merge request)
• Add support for rendering icons (merge request)
• Add identifier_external_ids column to vulnerability_reads (merge request)
• Protected packages: Label "protected" for package detail page on group by @gerardo-navarro (merge request)
• Clean up duo_chat_display_source feature flag (merge request) GitLab Enterprise Edition
• Adds sort by publish date for container registry tags list (merge request)
• GraphQL changes to fetch vulnerability severities count with limits (merge request) GitLab Enterprise Edition
• Allow actor override when GitHub and BBS disabled (merge request)
• Early access program participation checkbox (merge request) GitLab Enterprise Edition
• Add approval_policy_rule_id to approval rules and related tables (merge request)
• Add organization to vuln export for sharding (merge request) GitLab Enterprise Edition
• Add verified creator badge (merge request)
• Protected packages: REST API GET package protection rules by @nwittstruck (merge request)
• Improves empty state on model registry model page (merge request)
• Add star count as sorting option for CICD Catalog (merge request)
• Validate form input for version and model name (merge request)
• Create partitions for new audit event tables (merge request)
• Add support for Redis extra config command to ActionCable (merge request)
• Filter projects by marked for deletion by @imskr (merge request) GitLab Enterprise Edition
• Allow selecting project for project level items (merge request)
• Protected containers: Update protection rules in project settings ui by @gerardo-navarro (merge request)
• Handle declined event for bitbucket server importer by @ivantedja (merge request)
• Adding gcp audit event destination validator (merge request) GitLab Enterprise Edition
• Add pmg README.md (merge request)
• Add admin_runners custom ability (merge request) GitLab Enterprise Edition
• Add support for Sentinel usernames in Workhorse (merge request)
• Default enable diff_preview_in_email (merge request)
• Add CVS for CS document (merge request) GitLab Enterprise Edition
• Add security policies projects join table (merge request) GitLab Enterprise Edition
• Display timestamp in log lines (merge request)
• GraphQL: Add fullPath argument in runnerUsage query (merge request) GitLab Enterprise Edition
• Add sorting by component_name to dependency list aggregations (merge request)
• Backfill work_item_dates_sources with epic dates data (merge request)
• Add confirmation message on manual job with confirmation message by @lifez (merge request)
• Remove repository_tree_gitaly_pagination feature flag (merge request)
• Add source code to /explain_vulnerability tool (merge request) GitLab Enterprise Edition
• Add Restore Pages Deployment Mutation (merge request)
• Enable integration API for admin integrations custom ability (merge request) GitLab Enterprise Edition
• Add PagesDeployment to deletePagesDeployment Mutation (merge request)
• Adjust the mistral promprt for 22b (merge request) GitLab Enterprise Edition
• GraphQL: Add fullPath argument in runnerUsageByProject query (merge request) GitLab Enterprise Edition
• Filter by marked_for_deletion_on in groups graphql by @imskr (merge request) GitLab Enterprise Edition
• Add support for latest_tag by @TamsilAmani (merge request)
• Add PagesDeployments to Project type (merge request)
• Enable show_container_registry_tag_signatures feature flag by default (merge request) GitLab Enterprise Edition
• Add admin integrations custom permission (merge request) GitLab Enterprise Edition
• Improve observability by various Git LFS metrics (merge request)
• Add GraphQL mutation projectTextReplace (merge request)
• Adds published message for each container registry image repository (merge request)
• Create separate elastic queue for embeddings (merge request) GitLab Enterprise Edition
• Log token info for GraphQL requests (merge request)
• Add Limit for CVS for CS (merge request) GitLab Enterprise Edition
• Add a new task initial_indexing for Zoekt::SchedulingService (merge request) GitLab Enterprise Edition
• Add option to add custom html header tags via gitlab.yml config by @bufferoverflow (merge request)
• Add support for custom headers in webhook API by @Taucher2003 (merge request)
• Audit when product analytics settings are changed (merge request) GitLab Enterprise Edition
• Protected packages: REST API DELETE package protection rules by @nwittstruck (merge request)
• Remove single_relation_import feature flag (merge request)
• Add audit event for web hook creation (merge request) GitLab Enterprise Edition
• Include custom role name in members exports (merge request) GitLab Enterprise Edition
• GraphQL: Add runnerManager field to CiJob (merge request)
• GraphQL: Add managers field to CiRunner (merge request)
• Add trigram indexes on email column by @zzaakiirr (merge request)
• Add partition_id to Ci::PipelineMessage (merge request)
• Backfilling of work_item_parent_links from epics parent_id (merge request)
• Introduce ci_pipeline_variables_minimum_role (merge request)
• Finalize BackfillPartitionIdCiDailyBuildGroupReportResult (merge request)
• Created blueprint for pipeline mini graph (merge request)
• Add explain vulnerability tool (merge request) GitLab Enterprise Edition
• Add a cleanup worker for removable add-on purchases (merge request) GitLab Enterprise Edition
• Add WorkItemAddClosingMergeRequest mutation to GQL API (merge request)
• Audit when product analytics settings are changed (merge request) GitLab Enterprise Edition
• Filter groups by marked_for_deletion_on by @imskr (merge request)
• Add spec for the handleClusterError helper by @antonkalmykov (merge request)
• Add resolver for product analytics project settings (merge request) GitLab Enterprise Edition
• Update doc for single_relation_import flag status (merge request)
• Add API-Security CI template (merge request) GitLab Enterprise Edition
• Add index for sorting by highest severity (merge request)
• Add projects dropdown to work_item_links_form component (merge request)
• Adds support for dynamic schemas with date range filters (merge request) GitLab Enterprise Edition
• Include none argument owasp_top_10 filter (merge request) GitLab Enterprise Edition
• Filter the pods list be clicking at the pod stat (merge request)
• feature: Create a new model and version and upload artifacts (merge request)
• Send configured API key to AI Gateway (merge request) GitLab Enterprise Edition
• Adds a mergeTrainIndex field to merge requests (merge request) GitLab Enterprise Edition
• Introduce data source for overtime DORA metrics (merge request) GitLab Enterprise Edition
• Add partition_id to Ci::DailyBuildGroupReportResult (merge request)
• feature: Create new model version & import artifacts (merge request)
• Adds last_activity_on to Members table (merge request)
• Add capability to support error codes on Duo Chat backend (merge request) GitLab Enterprise Edition
• [Feature Flag] Cleans up large_ipynb_diffs (merge request)
• Backfill related epic links to issue links (merge request)
• Add security policy scheduled scans concurrency limit (merge request) GitLab Enterprise Edition
• Add graphql mutation endpoint to run VerifyNamespaceService (merge request) GitLab Enterprise Edition
• Add not valid foreign key to namespaces.parent_id (merge request)
• Expose Vulnerabilities::StateTransition ID in GraphQL (merge request) GitLab Enterprise Edition
• Extend label GraphQL search with field list (merge request)
• Add GraphQL filters by deployments (merge request)
• Add migration helpers (un)prepare_partitioned_async_index (merge request)
• Add calendar endpoint for PATs (merge request)
• Audit event tables (merge request)
• Add two options to configure target availability check in API Security (merge request)
• Add project level filter (merge request) GitLab Enterprise Edition
• Create a GraphQL query for contributed projects by @yasuk (merge request)
• Simplify wiki print functionality (merge request)
• Create car type (merge request) GitLab Enterprise Edition
• Displays the last published date for container repository (merge request)
• Render solution html in vulnerability modal (merge request) GitLab Enterprise Edition
• Downscale pasted retina images (merge request)
• Add delete_user ability to OrganizationUser permission type (merge request)
• Add hand raise lead to the duo pro trial widget popover (merge request) GitLab Enterprise Edition
• Validate work item presence in epics (merge request)
• Add pipeline validator to check identity verification (merge request) GitLab Enterprise Edition
• Remove google_cloud_support_feature_flag feature flag (merge request)
• Add Rake task to update project storage (merge request)
• Update type of subscription_add_on_purchases started_at column (merge request) GitLab Enterprise Edition
• Add GraphQL mutation projectBlobsRemove (merge request)
• Add BulkImport cancel API for instance admins (merge request)
• Add AI telemetry endpoint (merge request) GitLab Enterprise Edition
• Allow adding members by username by @imskr (merge request)
• Trigger GraphQl subscription when WorkItem hierarchy change (merge request)
• feature: Delete model version (merge request)
• Sync unique index creation for ci_pipelines.partition_id (merge request)
• Create audit events when deployments are approved or rejected (merge request) GitLab Enterprise Edition
• Upload artifacts to an existing machine learning model version (merge request)
• Support directory structure in generic package registry (merge request)
• Add pipeline validator to check identity verification (merge request) GitLab Enterprise Edition
• Release Silent Admin Exports feature (merge request)
• Added the featureFlagEnabled query field (merge request)
• Create migration to add started_at to subscription_add_on_purchases (merge request) GitLab Enterprise Edition
• Add new option to filter projects in GraphQL (merge request)
• Zoekt: Add callback service (merge request) GitLab Enterprise Edition
• Use the zoekt_settings in the Admin settings (merge request)
• Sync funnels when config project changes (merge request) GitLab Enterprise Edition
• Add X-Gitlab-Version to Cloud Connector headers (merge request) GitLab Enterprise Edition
• Run migrations in milestone order (merge request)
• Skip audit event on download of export, if silent (merge request)
• Redirect wiki pages on renaming them (merge request)
• Add GraphQL mutation for product analytics project settings (merge request) GitLab Enterprise Edition
• Add initial duo pro trial status popover (merge request) GitLab Enterprise Edition
• Feature to delete artifacts from a model version (merge request)
• Add a new IndexingTaskWorker (merge request) GitLab Enterprise Edition
• Adds custom API server support for Telegram (merge request)
• Backend code for self-hosted LLM server instance configuration (merge request)
• Add API for trigger group test webhook by @lifez (merge request) GitLab Enterprise Edition
• Prepare async index for ci_pipelines.partition_id related (merge request)
• Add manage_merge_request_settings custom permission (merge request)
• Add custom software licenses table (merge request) GitLab Enterprise Edition

Fixed (191 changes)

• Check email confirmation status of active users (merge request) GitLab Enterprise Edition
• Fix the multiple zoekt_tasks creation for delete_repo (merge request) GitLab Enterprise Edition
• Force UTF-8 encoding on CSV export files (merge request) GitLab Enterprise Edition
• Ensure Workhorse log writers are closed to avoid Goroutine leaks (merge request)
• Update replication troubleshooting snippets (merge request) GitLab Enterprise Edition
• Fix fork badge always shown in pipelines page (merge request)
• Increase JWT expiration from 1 to 10 mins (merge request) GitLab Enterprise Edition
• Fixed issue with command palette shortcut (merge request)
• Remove performance bar from jira connect (merge request)
• Update Bitbucket Cloud Importer to map users by uuid (merge request)
• Fix product analytics manager offering UI (merge request) GitLab Enterprise Edition
• Implement segmented vulnerability export mechanism for large groups (merge request) GitLab Enterprise Edition
• Create worker to store security reports by project (merge request) GitLab Enterprise Edition
• Work item hierarchy change system notes use full references (merge request)
• Allow labels to be specified with absolute path (merge request)
• Change FF to beta and default enable (merge request) GitLab Enterprise Edition
• Show wiki sidebar content in history and changes (merge request)
• Increase SQL query threashold on work_items test (merge request)
• MR widget: Fix alignment (merge request)
• Wiki: Fix last edited author (merge request)
• Remove unused issue card weight filtering functionality (merge request)
• Fix publishing npm package with custom root folder name (merge request)
• Fixed overflowing layout on the compare revisions page by @zillemarco (merge request)
• Wiki: Fix header spacings on published pages and create page (merge request)
• Delete project_ref_name_in_pipeline feature flag (merge request)
• Wrap wiki history commit message (merge request)
• Fix approvals text alignment (merge request)
• Use gl-background-color-default for .gl-new-card-add-form background (merge request)
• Sync updated_at attribute when updating epic (merge request) GitLab Enterprise Edition
• Fix inviting members with a custom role (merge request) GitLab Enterprise Edition
• Remove the archived projects from the security dashboard (merge request) GitLab Enterprise Edition
• Remove branch on jira when deleted on gitlab (merge request)
• Update "shared runners enabled" setting on subgroup builds (merge request)
• Ignore wiki links that have missing href (merge request)
• Hide Exact code search in preferences when zoekt setting is disabled (merge request) GitLab Enterprise Edition
• This MR fixes project selection (merge request) GitLab Enterprise Edition
• fix: Add zero-padded mapping for OWASP 2021 vuln categories (merge request) GitLab Enterprise Edition
• Fix links and tree drag and drop on FF (merge request)
• Update Merge train system note (merge request)
• Fix calculating direct_members count (merge request) GitLab Enterprise Edition
• Fix the limit logic for containing refs requests (merge request)
• Add reject_non_dco_commits to push rules REST API (merge request) GitLab Enterprise Edition
• Use primary DB for authenticating artifacts downloads (merge request)
• Cleanup ci_runner_projects records with null project_id (merge request)
• Cleanup ci_runner_namespaces records with null namespace_id (merge request)
• Take broadcast message height into account in board height (merge request)
• Use blue color for subscribed state and active todo (merge request)
• Fix Epics::UpdateService to only sync changed attributes (merge request) GitLab Enterprise Edition
• Respect carraige return in new job log viewer (merge request)
• Update an expired test certificate (merge request)
• Do not error when assigning issue to same epic (merge request) GitLab Enterprise Edition
• Restrict GraphQL API to only documented token types (merge request)
• Fix fullPath for cross projects work items (merge request)
• This MR fix bottom loader (merge request) GitLab Enterprise Edition
• Fix missing filename when downloading generic package in release page (merge request)
• Verify the namespace_id on duo pro trial service layer (merge request) GitLab Enterprise Edition
• Add spacing between framework pill and title in adherence list (merge request)
• Execute the task even the repo is not found (merge request) GitLab Enterprise Edition
• Update ShortcutsBlob data (merge request)
• Show correct policies subheader for a group (merge request) GitLab Enterprise Edition
• Fixes incorrect wrapping in styled log lines (merge request)
• Wiki sidebar: Fix hover in Darkmode (merge request)
• Add analyze_interval for IntRangeStrategy (merge request)
• Add frontend scripts to assets hash calculation (merge request)
• Fix loading spinner spacing on child issues and epics (merge request) GitLab Enterprise Edition
• Parses job log logs when lines gets split in chunks (merge request)
• Remove card border for issue boards (merge request)
• Enable extra slug sanitization on user provisioning (merge request)
• Accept integer parameter in runner_type for GetUsageServiceBase (merge request) GitLab Enterprise Edition
• Adds ancestors on the index Explore>Groups page (merge request)
• Update MemberRoles::RolesFinder and Members::UpdateService (merge request)
• Modify machine learning version input description (merge request)
• Fixes issue with valid Notebooks not diffing (merge request)
• Fix merge request padding (merge request)
• Remove the user_detail creation derisk feature flag (merge request)
• Fix ancestor widget appearance in Epic sidebar (merge request) GitLab Enterprise Edition
• Allow more wiki types to be searchable (merge request) GitLab Enterprise Edition
• Fixes auditing non-changing fields for product analytics (merge request) GitLab Enterprise Edition
• Fix vertical spacing of collapse MR sidebar btn (merge request)
• Forbid branch protection updates with blocking policy in place (merge request) GitLab Enterprise Edition
• Ensure complete messages are not passed to DuoChat in chunks (merge request) GitLab Enterprise Edition
• Fix nav control layout for new dropdowns (merge request)
• Fix upgrade message link in operations dashboard (merge request)
• Delegate GroupHook URL validation to base class (merge request) GitLab Enterprise Edition
• Fix the other icons being shown in loading state (merge request)
• Fix serialization error on CI Lint with including a CI component (merge request)
• Fix code reloading for Sidekiq in development (merge request)
• Fix button spacing and updating UI text to use sentence case (merge request) GitLab Enterprise Edition
• Fix protected branches deploy key selection for FOSS (merge request)
• Remove the experiment_features_enabled check (merge request) GitLab Enterprise Edition
• Fix visualization designer showing confirm modal after saving (merge request) GitLab Enterprise Edition
• Update StuckExportJobsWorker to not fail parallel export jobs (merge request)
• Vite config: Fix open in editor url (merge request)
• Expose 'Is using seat' badge for Auditors (merge request) GitLab Enterprise Edition
• Differentiate vulnerability security scanner (merge request) GitLab Enterprise Edition
• Use compact pagination on explore page when total pages is unavailable (merge request)
• Exclude child pipelines from tag and branch query (merge request)
• Fix registry list extra padding between list items (merge request)
• Include Group Links in access level check (merge request) GitLab Enterprise Edition
• Fix work items showing icons and actions when not found (merge request)
• Fix missing BATCH_SIZE constant (merge request)
• Fix ActiveModel::UnknownAttributeError for initialize_with_readme (merge request)
• Add a check to use the different URL for namespace (merge request) GitLab Enterprise Edition
• Fix misleading error message when assigining sec policy project (merge request) GitLab Enterprise Edition
• Group visibility levels: Show all radio button with correct attributes by @gerardo-navarro (merge request)
• Fix display of performance bar in relative root installations (merge request)
• Fix Cloud Connector service catalog is stale (merge request)
• Use safe_params to persevere sort params (merge request)
• Use localstorage to remember swimlane state for boards (merge request)
• Generic Registry: Fix a bug when downloading files with sign symbol (merge request)
• List all users in the Admin > Users (merge request)
• Do not allow creating Service Accounts for a subgroup (merge request) GitLab Enterprise Edition
• Fix child pipeline badge is broken in CI header (merge request)
• Fix Firefox Drag and Drop on epic lists (merge request) GitLab Enterprise Edition
• Fixes typo for CS JOB (merge request) GitLab Enterprise Edition
• Fix @ autocomplete when search requests overlap (merge request)
• Allow branch protection updates via API with block_branch_modification (merge request) GitLab Enterprise Edition
• Set height: auto only on images with both dimension set (merge request)
• Move modal and drawer out of container style (merge request)
• Import fork MR when target branch couldn't be created (merge request)
• Fix doc link to project topics (merge request)
• Add default branch to branches API cache_context (merge request)
• Fix gitlab:db:decomposition:migrate task (merge request)
• Fix dark mode hover for admin/credentials row user email (merge request) GitLab Enterprise Edition
• Set imported from value for project export import (merge request)
• Include headers in LfsDownloadObject (merge request)
• Set height: auto on images (merge request)
• Fix registry search sorting layout in mobile screen sizes (merge request)
• Parameterize path after regex validation failure (merge request)
• Use text-subtle instead of a disabled class for badge img empty (merge request)
• A11y fix: make sure "+" button can be focused in wiki sidebar (merge request)
• Fix "shared_audit_event_id_seq" already exists (merge request)
• Fix batched finish worker reenqueue delay (merge request)
• Ignore imported column in relevant models (merge request)
• Show current wiki page as active (merge request)
• Fix default branch protection settings (merge request)
• Use label text color for remove button icon in MR filter bar token (merge request)
• Avoid idling in transaction when exporting with Parallel Project Export (merge request)
• Only lookup by username if ops flag is enabled (merge request)
• Roadmap - Fix alignment of epics with no start date (merge request) GitLab Enterprise Edition
• Filter labels already applied out of recently used suggestions (merge request)
• Fix broken link in CI Catalog verified badge (merge request)
• Fix webhooks temporary disabled too long, too fast (merge request)
• Update member roles REST API doc (merge request)
• Handle project creation error on git push (merge request)
• Fix roadmap settings drawer offset height (merge request) GitLab Enterprise Edition
• Fix access levels for default branch protection (merge request)
• Disable promote button for in flight request (merge request)
• Fix insert table box in rich text editor (merge request)
• Ensure label text color is used for label filter in MR search bar (merge request)
• Do not allow group Owners create Service accounts on Self-managed (merge request) GitLab Enterprise Edition
• Fix an overwrite bug in the gcs metrics concern (merge request)
• Skip pre-receive SD on deletes (merge request) GitLab Enterprise Edition
• Fix board swimlanes headers background (merge request)
• Prevent error in copy_metadata quick action (merge request)
• Update imported value when cloning and moving issues (merge request)
• Fix an N+1 situation (merge request)
• Move Direct Transfer project entities creation to a later stage (merge request)
• Reset project counters after relation import (merge request)
• MR commit message: Fix existing message dropdown selection (merge request)
• Restrict repository_object_format update for PUT projects/:id (merge request)
• Correctly handle nil assignee arguments (merge request)
• Fix dropdown behavior in ProtectedBranchHelpers to fix flaky test (merge request)
• Fix hidden code navigation tabs (merge request)
• Fix error when calling GQL ciConfig endpoint with include:component (merge request)
• Ensure BLPOP/BRPOP returns nil instead of raising ReadTimeoutError (merge request)
• Use consistent encoding with startup js to fetch commit data (merge request)
• Expose project settings in REST API only for maintainer+ users (merge request)
• Fix approval policy to include group level protected branch (merge request) GitLab Enterprise Edition
• Fix N+1 query in /api/v4/projects/:id/jobs endpoint (merge request)
• Only include the duo pro widget data if ultimate trial is absent (merge request) GitLab Enterprise Edition
• Fix counts for Search Within filter on issues list (merge request)
• Fix instance templates pagination (merge request) GitLab Enterprise Edition
• MR: Show sidebar expand button on md breakpoint (merge request)
• Make pending invitations search case insensitive (merge request)
• Fixes "retryable" value for merge train pipelines as JSON (merge request) GitLab Enterprise Edition
• Change column default when the connections match (merge request)
• Link squashed, fast-forwarded merge requests to deployments (merge request)
• Fix broken DORA performers score Storybook story (merge request) GitLab Enterprise Edition
• Resolve flash of light styles when using auto color mode (merge request)
• Increase Atlassian token constraint (merge request)
• Fix webhook warning permission check (merge request) GitLab Enterprise Edition
• Bugfix file type icon resizes (merge request)
• Fix Sidekiq migration timeout (merge request)
• Fix OpenTofu CI/CD template backport (merge request)
• Fix collapsing sections in job log viewer (merge request)
• Project transfer fix for ES indexing (merge request) GitLab Enterprise Edition
• Support Epic -> WorkItem sync of imported_from (merge request) GitLab Enterprise Edition
• Right align snippet comment actions dropdown (merge request)
• Fix blob viewer line numbers (merge request)
• Fix flow metrics handling of null assignees (merge request)

Changed (308 changes)

• Improve Analytics dashboards schema errors (merge request) GitLab Enterprise Edition
• Drop beta tag on Duo Pro promotion (merge request)
• Dont identify a user using a deploy key (merge request)
• Always show project count for group dependency list (merge request) GitLab Enterprise Edition
• Add the proper empty state when wiki page not found (merge request)
• Re-sync basic epic fields to work items (merge request)
• Declare StoreSecurityReportsByProjectWorker memory-bound (merge request) GitLab Enterprise Edition
• Rename work_items_mvc_2 to work_items_alpha (merge request)
• Rename for reauthentication vs just password (merge request) GitLab Enterprise Edition
• Reset input field when closing the modal to delete merged branches (merge request)
• Display easy to read error messages for Duo Chat (merge request) GitLab Enterprise Edition
• Work items: Migrate headline to use type scale (merge request)
• Improve VSD warning messages for failed API requests (merge request) GitLab Enterprise Edition
• Replace funnel name attribute with file name (merge request) GitLab Enterprise Edition
• Update wiki page titles (merge request)
• Update analytics settings page with link to dashboards page (merge request) GitLab Enterprise Edition
• Add padding to OWASP identifiers (merge request) GitLab Enterprise Edition
• Fixes incorrect params passed to Workato (merge request) GitLab Enterprise Edition
• Changes for project owners to receive email notifications (merge request)
• Check for related_epics ff when linking epics (merge request) GitLab Enterprise Edition
• Improve markdown syntax highlighting (merge request)
• Enable user searching by partial email for admins by @zzaakiirr (merge request)
• Update PMG architecture blueprint (merge request)
• Fix spacing of new wiki form help text (merge request)
• Fixed search page flicker (merge request)
• Improve the look of the token access table (merge request)
• Doc(Feature rollout): extend of monitoring (merge request)
• Don't show viewed file tooltip on scroll (merge request)
• Issuable: Migrate title (merge request)
• Changes model candidates to use ml_model packages (merge request)
• Handle errors in different formats (merge request) GitLab Enterprise Edition
• Configure the Claude 3 Haiku model for VE (merge request) GitLab Enterprise Edition
• Added create method in MemberApproval, modified promotion mgmt util (merge request) GitLab Enterprise Edition
• Wiki: Clean up code for injecting props (merge request)
• Merge request: Migrate headline to use type scale (merge request)
• Issuables: Update alignment of open and closed status badge icons (merge request)
• Route LLM requests to AI Gateway (merge request)
• Remove prevent_issue_epic_search feature flag (merge request) GitLab Enterprise Edition
• Update bulk assign service to include iterable triggers (merge request) GitLab Enterprise Edition
• Add links to description in AI impact analytics dashboard (merge request) GitLab Enterprise Edition
• Validate that all or no analytics settings are defined (merge request) GitLab Enterprise Edition
• Replace issues.milestone_id index by a [milestone_id, id] (merge request)
• Save sidebar entries collapsed state (merge request)
• Search flyout: Bump project avatar size to 32 (merge request)
• Rename /explain_vulnerability Duo slash command (merge request) GitLab Enterprise Edition
• Remove security_policies_unassign_redundant_policy_projects FF (merge request)
• Auto-select the current project (merge request)
• Remove search_query_builder feature flag (merge request) GitLab Enterprise Edition
• Wiki custom sidebar: Store pages state in localStorage (merge request)
• Reduce runner stale timeout from 3 months to 7 days (merge request)
• SPP no secrets no message docs update (merge request)
• Update beta documentation (merge request)
• Improve TOC functionality in rich text editor (merge request)
• Update dependency ai-gateway to v1.7.0 (merge request)
• Update docs path to secret push protection (merge request)
• Break out downstream pipelines (merge request)
• Show alert on web IDE start error (merge request)
• Updated popover text of system_id column on runner page by @catinbag (merge request)
• Wiki: Create & edit sidebar changes (merge request)
• Migrates gl-display-block to gl-block (merge request)
• Wiki: Show more actions dropdown on pages (merge request)
• Change gitlab:elastic:index to async worker (merge request) GitLab Enterprise Edition
• Hide create wiki page button if inadequate permissions (merge request)
• Removes alpha from CI Catalog fields (merge request)
• Increase prominence of the context header (merge request)
• Add possibility to change allowed to merge groups (merge request) GitLab Enterprise Edition
• Show additional error details from CubeJS 400 responses (merge request) GitLab Enterprise Edition
• chore: Remove the following gitlab embeddings rake task (merge request) GitLab Enterprise Edition
• Make locking message consistent (merge request)
• Update PMG architecture blueprint (merge request)
• Add Google Cloud IAM integration metrics to Service Ping (merge request) GitLab Enterprise Edition
• Change title for bulk seat assignment/removal (merge request) GitLab Enterprise Edition
• Add page counter to wiki sidebar (merge request)
• Adds a new client that uses basic auth to fetch from prometheus (merge request)
• Migrate d-block to gl-block (merge request)
• Fix hr color in navigation sidebar on darkmode (merge request)
• Overhaul OAuth page (merge request)
• Wiki history: Use card container (merge request)
• Add jira client call (merge request)
• Only show "Merge request was removed from train" for open MRs (merge request) GitLab Enterprise Edition
• Wiki templates: Remove limited container (merge request)
• Remove FF allow_user_variables_by_minimum_role (merge request)
• Revert MR https://gitlab.com/gitlab-org/gitlab/-/merge_requests/154228 (merge request)
• Migrates gl-sm-display- classes to Tailwind (merge request)
• Update dependency ai-gateway to v1.6.1 (merge request)
• Update PreventIndexCreation rule (merge request)
• Move all elastic rake tasks to service (merge request) GitLab Enterprise Edition
• Wiki: Adds in-page editing functionality (merge request)
• Update Rails to 7.0.8.4 (merge request)
• Update pmg query (merge request)
• Refactor groups API by @imskr (merge request) GitLab Enterprise Edition
• Use sentence case for edit page, remove hr (merge request)
• Wiki sidebar: Change alignment of sidebar header (merge request)
• Add connection mode column to cluster agents (merge request)
• Allow retry of merge train pipeline while its running (merge request)
• Rename doc page to secret push protection (merge request)
• Add polling to jobs tabs on pipeline (merge request)
• Add WorkItems reference (merge request) GitLab Enterprise Edition
• No longer require magic username for Git over HTTPS with OAuth token by @hickford (merge request)
• Show collapsed directory when custom wiki sidebar exists (merge request)
• Add hasChildrenWithinTimeframe field to epics (merge request) GitLab Enterprise Edition
• Add a param to indicate the purchase request is from GitLab.com (merge request) GitLab Enterprise Edition
• Migrate gl-lg-display-* classes to Tailwind (merge request)
• Update GitLab Pages version (merge request)
• Migrate d-flex to gl-flex (merge request)
• Update pmg architecture blueprint (merge request)
• Replace gl-white-space-normal class (merge request)
• Migrates gl-display-none! to !gl-hidden (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v4.1.0 (merge request)
• Rollout github_import_lock_user_finder feature flag (merge request)
• Display username when advising of LFS lock (merge request)
• Rename CI and pipeline minute to compute minute (merge request)
• Replace "via" with "with" in email copy and event timeline (merge request)
• Bumping PAT last used timestamp will not trigger sticky writes (merge request)
• Rename Migration/BackgroundMigrationBaseClass rubocop rule by @zzaakiirr (merge request)
• Make page breadcrumbs auto-adjust to available width (merge request)
• Add edit to edit page breadcrumb (merge request)
• Consolidate Board scope for i18n (merge request)
• Update product analytics onboarding permissions (merge request) GitLab Enterprise Edition
• Add a banner informing about token expiration (merge request)
• This MR removed feature flag (merge request) GitLab Enterprise Edition
• Wiki: Migrate content to Vue (merge request)
• Remove DORA Performers Score panel from built-in project VSD (merge request) GitLab Enterprise Edition
• Enable filtered search on Vulnerability Report (merge request) GitLab Enterprise Edition
• Migrate your work pages to use new typescale (merge request)
• Migrates gl-md-display-* classes to Tailwind (merge request)
• Separate pipeline stages files (merge request)
• Tailwind: Migrate heading utility classes (merge request)
• Fix approval groups finder (merge request) GitLab Enterprise Edition
• Remove Attributes column from Inherited CI/CD Variables table (merge request)
• Skip timestamps in log if present when generating HTML (merge request)
• Avoid overflows (merge request) GitLab Enterprise Edition
• Show toast message when merge request is removed from train (merge request) GitLab Enterprise Edition
• Add Jenkins migration callout (merge request)
• Clarifies issue list error state (merge request)
• Fix alignment of wiki sitemap and templates pages (merge request)
• Rename "Limit access..." to "Grant access..." (merge request)
• Align notes on mobile (merge request)
• Replace gl-line-clamp with the Tailwind equivalent (merge request)
• Update file index.md (merge request)
• Add tracking event for Compute Minutes/Storage checkout page views (merge request) GitLab Enterprise Edition
• Update @gitlab/web-ide and gitlab-vscode-extension (merge request)
• Improve analytics dashboards descriptions (merge request) GitLab Enterprise Edition
• WorkItemAddClosingMergeRequest mutation allows URLs and full references (merge request)
• Replace 'gl-overflow-wrap-anywhere' to Tailwind equivalent (merge request)
• Add iid to work item title (merge request)
• Persist scan execution policies to database (merge request) GitLab Enterprise Edition
• Productize trial_disover_page experiment (merge request) GitLab Enterprise Edition
• Move legacy pipeline mini graph (merge request)
• Update "Upgrade your plan to improve repositories" banner (merge request)
• Reduce number of tokens sent for RCA (merge request) GitLab Enterprise Edition
• Change issues from index to upsert for Elasticsearch (merge request) GitLab Enterprise Edition
• refactor: Introduce a Vue-based UI for Pages (merge request)
• Pipeline graph: Improves accessibility when using keyboard (merge request)
• Update dependency auto-deploy-image to v2.93.0 (merge request)
• Improve UX for 404 error for Duo Pro trial page (merge request) GitLab Enterprise Edition
• Update GitLab Pages version (merge request)
• Consolidate iteration filters for issues (merge request) GitLab Enterprise Edition
• Update breaking changes banner (merge request) GitLab Enterprise Edition
• Include session_cookie_token_prefix in KAS session cookie (merge request)
• Add alignment to prevent button height to grow (merge request)
• Rate limit project / group notifications per user (merge request)
• Allow redirecting wiki directories on rename (merge request)
• Add NOT NULL constraint to "path_locks.project_id" (merge request)
• Add metric start date tooltip to AI impact dashboard (merge request) GitLab Enterprise Edition
• Create parent links for imported epics (merge request)
• Migrate d-inline-block to gl-inline-block (merge request)
• Docs(Epic Header): add entry to describe counts (merge request) GitLab Enterprise Edition
• Update page title of history page (merge request)
• Move AI Powered Features by @jzeng88 (merge request)
• Remove Kotlin and Scala from MR pipelines by @l.s.andringa1 (merge request) GitLab Enterprise Edition
• Scaffold component for visualization designer overhaul (merge request) GitLab Enterprise Edition
• Replace curl with gcloud commands in GAM integration (merge request)
• Add enum to graphql mutation (merge request) GitLab Enterprise Edition
• Remove beta notice for import with projects (merge request)
• Feat(Purchase): remove key_contacts_management_v2 (merge request) GitLab Enterprise Edition
• Value stream dashboard label filter no longer matches description (merge request) GitLab Enterprise Edition
• Convert GraphQL fullPath fields to ID types (merge request)
• Change removal milestone of ZenTao to 18.0 (merge request)
• Update UI of the MR approval rules banner (merge request) GitLab Enterprise Edition
• Remove "New list button has moved" popover (merge request)
• Change gl-overflow-wrap-break to gl-break-words (merge request)
• Update button and footer description on company form (merge request) GitLab Enterprise Edition
• Help page: Fix badge alignment and migrate headline class (merge request)
• Cascade duo_features_enabled on save (merge request) GitLab Enterprise Edition
• Update software license policies table (merge request) GitLab Enterprise Edition
• Convert GraphQL IID fields from ID to String types (merge request)
• Apply one rate limit to all webhook test endpoints (merge request)
• Remove collapsed description field for snippets form (merge request)
• Increase WorkItem max children (merge request)
• Add allowed to merge drawer (merge request)
• Diff: use own class for setting max-width (merge request)
• Remove font weight 100 and 300 (merge request) GitLab Enterprise Edition
• Fix for broadcast messages not staying dismissed by @robyrne (merge request)
• Early access program tracking by namespace settings (merge request)
• Change 'warning' banner to 'info' on the Terraform state page by @antonkalmykov (merge request)
• Migrate d-none to gl-hidden (merge request)
• Moved MememberManagement namespaced files to GitlabSubscriptions (merge request) GitLab Enterprise Edition
• Update ruby-lsp to v0.16.7 and prism to v0.29.0 (merge request)
• Use Duo icon and label in editor (merge request) GitLab Enterprise Edition
• Wiki create/edit form cleanup (merge request)
• Remove "Already signed in with SAML" (merge request) GitLab Enterprise Edition
• Update in-progress product analytics onboarding state (merge request) GitLab Enterprise Edition
• Cleanup FF saas_user_caps (merge request) GitLab Enterprise Edition
• Pages: Update UI (merge request)
• Drop default value for p_ci_builds.auto_canceled_by_partition_id (merge request)
• Link to deployment details page for waiting-for-approval jobs (merge request) GitLab Enterprise Edition
• Allow instance adminstrators to link work items (merge request)
• Regenerate OpenAPI documentation of REST API (merge request)
• Move board delete to board configuration modal (merge request)
• Align wording between group and project restore confirmation by @antonkalmykov (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.91.0 (merge request)
• Remove beta status from AI impact analytics dashboard (merge request) GitLab Enterprise Edition
• Wiki: Clone repository changes (merge request)
• Drop redudnant vuln_reads indices, improve unnested_in_filters (merge request)
• Remove invalid remote mirror records without "project_id" (merge request)
• Add epics.issue_id NOT NULL constraint (merge request) GitLab Enterprise Edition
• Add allowedParentTypes to Hierarchy widget (merge request)
• Update visualization designer to preview code in YAML (merge request) GitLab Enterprise Edition
• Add routing field to issues index (merge request) GitLab Enterprise Edition
• Enable use of #deduplicated_size for self-managed (merge request)
• Add feedback mechanism for AI cube query generation (merge request) GitLab Enterprise Edition
• Update error message and layout (merge request)
• Remove Scala and Kotlin from Spotbugs job in Static Analysis CI template (merge request) GitLab Enterprise Edition
• Downcase invite emails as the service layer (merge request)
• Use sentence case for edit snippet title (merge request)
• Remove FF mark_cvs_vulnerabilities_as_resolved (merge request) GitLab Enterprise Edition
• Update neighbor gem to 0.3.2 (merge request)
• Updating ci_pipeline_schedule_variables with sharding key (merge request)
• Make GITLAB_LOG_LEVEL affect more logs (merge request)
• Update edit wiki page and template titles (merge request)
• Move wiki edited by text below title (merge request)
• Add ci_integration_jenkins model function (merge request)
• Remove unused indices on sbom_occurrences (merge request)
• Update GitLab Pages version (merge request)
• Update wiki sidebar (merge request)
• Add frontend URL validation for uploading metrics images (edit modal) by @antonkalmykov (merge request)
• Add allowed to merge drawer (merge request)
• Feat(Epic Header and Board): Align presentation (merge request) GitLab Enterprise Edition
• Using self-hosted llm models name as differentiator (merge request) GitLab Enterprise Edition
• Ignore additional registry migration fields (merge request)
• Wiki: Update docs (merge request)
• Only query the fields needed (merge request)
• Wiki: Move template link to kebab menu (merge request)
• Remove permission check skipping (merge request) GitLab Enterprise Edition
• Improve Analytics dashboards schema errors (merge request) GitLab Enterprise Edition
• Add aria label to labels search (merge request)
• Update redis-client to v0.22.2 (merge request)
• Do not perform git housekeeping when repository does not exist (merge request) GitLab Enterprise Edition
• Update wiki templates layout (merge request)
• Show edit pending comment button on mobile (merge request)
• Excludes pre-release versions from latest and shorthand (merge request)
• Change included text for GitLab Duo generated commit message (merge request)
• Remove enter key listener on states table actions form by @archish27 (merge request)
• Remove duplicated indexes in post migration (merge request)
• Make media and list items draggable (merge request)
• Hide RCA button on the job logs page (merge request)
• Change edit board to "Configure board" (merge request)
• Remove duo chat ga flag (merge request) GitLab Enterprise Edition
• Wiki page: Add delete option to kebab menu (merge request)
• Updated error text for incorrect branch name when creating by @catinbag (merge request)
• Handle product analytics urls endding with slash (merge request) GitLab Enterprise Edition
• Add Search reference (merge request) GitLab Enterprise Edition
• Add query builder format class (merge request) GitLab Enterprise Edition
• Update product analytics onboarding flow settings clearing (merge request) GitLab Enterprise Edition
• Updated the Upgrade GitLab Runner link by @catinbag (merge request)
• Remove epic work item sync feature flags (merge request) GitLab Enterprise Edition
• Create wikis without content (merge request)
• Replace approval selectors with User/Group selectors (merge request) GitLab Enterprise Edition
• Add new page button to wiki sitemap (merge request)
• Wiki edit page: Move delete button to action row (merge request)
• AI Generate commit message: Change text of button (merge request)
• Remove static webhook feature flags (merge request)
• Export private emails in seat usage quota export (merge request) GitLab Enterprise Edition
• Update ES sizing for single node clusters (merge request) GitLab Enterprise Edition
• Display custom role title in invitation emails (merge request)
• Add imported badge to design notes (merge request)
• Move board optons into dropdown and change config button (merge request)
• Change logic for beyond identity GPG keys alert message (merge request)
• Only return ID from Elasticsearch response (merge request) GitLab Enterprise Edition
• Move update trigger to pop up modal by @missy-davies (merge request)
• Use confirm variant for new wiki template (merge request)
• Used gitlab ui utilities in feature flag form by @catinbag (merge request)
• Add link to the project in the self-managed provider card (merge request) GitLab Enterprise Edition
• Externalize interpret_service_spec by @jzeng88 (merge request)
• Disable Rails console's IRB's autocompletion by default (merge request)
• Add indicator when Cube query is loading slow (merge request) GitLab Enterprise Edition
• Release compliance frameworks report csv feature (merge request) GitLab Enterprise Edition
• Make edited text always gray (merge request)
• Update styling of framework report drawer (merge request) GitLab Enterprise Edition
• Clean up duo_chat_ga_alert flag and feature (merge request) GitLab Enterprise Edition
• Remove saml_reload feature flag (merge request)
• Clean up duo_pro_trial_alert feature flag by @robyrne (merge request) GitLab Enterprise Edition
• Updates GitLab Pages version (merge request)
• Swap columns trigger_request_id and erased_by_id for p_ci_builds (merge request)
• Implement a web hook create service (merge request) GitLab Enterprise Edition
• Improve CI/CD lead time analytics rendering of small values (merge request) GitLab Enterprise Edition
• Minor UX updates to explore projects (merge request)
• Restrict accesss requests when group has reached member limit (merge request) GitLab Enterprise Edition
• Migrate d-inline to gl-inline (merge request)
• Remove log_execution_time_path_traversal_middleware feature flag (merge request)
• Remove rate_limit_oauth_api feature flag (merge request)
• Migrates d-inline-flex go gl-inline-flex (merge request)
• Remove use_database_for_dependency_export feature flag (merge request) GitLab Enterprise Edition
• Default group_multi_select_tokens feature flag to true (merge request)
• Change gl-word-break-word to gl-break-anywhere (merge request)
• Append a percentage symbol to the end of work item progress (merge request) GitLab Enterprise Edition
• Simplify text of Google Cloud runner registration (merge request)

Removed (29 changes)

• Remove confidence parameter from vulnerability_findings API (merge request) GitLab Enterprise Edition
• Remove deprecated ci_runners columns (merge request)
• Revert MR button in forked project issues (merge request)
• Remove combined_analytics_dashboards feature flag (merge request) GitLab Enterprise Edition
• Remove code_suggestion_events_in_click_house FF (merge request) GitLab Enterprise Edition
• Removes the cascade_duo_features_enabled_setting feature flag (merge request)
• Remove BBM job classes up to 16.3 (merge request)
• Remove temporary duo pro settings banners (merge request)
• Cleanup product_analytics_admin_settings flag (merge request)
• Remove unused Geo::RepositoriesChangedEvent (merge request) GitLab Enterprise Edition
• Remove ai_tracking_data_gathering feature flag (merge request) GitLab Enterprise Edition
• Cleanup product_analytics_beta_optin flag (merge request)
• Removes temporary index on project_statistics (merge request)
• Remove migration columns in container repository (merge request)
• Removed product analytics dashboard feature flag by @archish27 (merge request)
• Remove backfill_workspace_personal_access_token_spec (merge request)
• Remove migration-related columns from settings (merge request)
• Remove gitops Deprecation Alert (merge request)
• Remove AI experimentation endpoints (merge request) GitLab Enterprise Edition
• Remove ignore columns rule for legacy event-related tables (merge request) GitLab Enterprise Edition
• Remove use_or_default_operator feature flag (merge request) GitLab Enterprise Edition
• Renamed relatedMergeRequests field on WorkItem Development widget (merge request)
• Remove unused code (merge request) GitLab Enterprise Edition
• Remove browse template button from the pipeline editor by @yonghyun.jin13 (merge request)
• Remove all code related to clusters/integrations (merge request)
• Remove the BuildSuccessWorker (merge request)
• Remove approval_rules_drawer feature flag (merge request)
• Remove integer column and trigger function for ci_pipelines (merge request)
• Remove use_faster_code_owner_file_exist_check feature flag (merge request) GitLab Enterprise Edition

Security (21 changes)

• Verify Asana access token when testing Asana integration
• Bump KAS version
• Improve go_package_regex to prevent ReDoS attacks
• XSS and content injection raw XHTML files on IOS devices
• Fix ReDoS in CI Interpolation
• Set IP address in sidekiq (merge request)
• Prevent PDF.js from evaluating scripts (merge request)
• Add text limit to ci_runners text fields (merge request)
• Caching test_report api response to reduce calculations (merge request)
• Fail create commit status on pipeline_id / sha mismatch (merge request)
• Restrict access to Secure artifacts to developer role (merge request)
• Use UntrustedRegexp for gollum pattern (merge request)
• Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html (merge request)
• Prevent PDF.js from evaluating scripts (merge request)
• Add text limit to ci_runners text fields (merge request)
• Caching test_report api response to reduce calculations (merge request)
• Fail create commit status on pipeline_id / sha mismatch (merge request)
• Update KAS version (merge request)
• Restrict access to Secure artifacts to developer role (merge request)
• Use UntrustedRegexp for gollum pattern (merge request)
• Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html (merge request)

Performance (10 changes)

• Add index to package files on package_id, status and file extension (merge request)
• Improves groups controller specs (merge request)
• Memoize common rules:changes evaluations in pipeline creation (merge request)
• Enable and remove ci_rules_exists_pattern_matches_cache (merge request)
• Fix N+1 problem in the pipeline bridges API endpoint (merge request)
• Skip groups query in @ autocomplete if not needed (merge request)
• Delay devise login lock settings (merge request)
• Optimize todos query when filtering by group (merge request)
• Add index to package files on file_name and file_sha256 (merge request)
• Analyze partitioned tables every 3 days (merge request)

Other (334 changes)

• Add the zoekt application setting zoekt_auto_index_root_namespace (merge request) GitLab Enterprise Edition
• Add and backfill project_id for external_status_checks_protected_branche (merge request)
• Add and backfill project_id for merge_request_review_llm_summaries (merge request)
• Protected packages + containers: Set alpha for GraphQL protection rules by @gerardo-navarro (merge request)
• Backfilling ci_pipelines project_id (merge request)
• Prepare async creation for merge_requests.head_pipeline_id (merge request)
• Add and backfill project_id for vulnerability_issue_links (merge request)
• Fix some Style/EmptyMethod offenses by @phot0n (merge request)
• Drop FF respawn_assign_resource_worker (merge request)
• Removes extra period from FK docs (merge request)
• Adds a note about using BIGINT Fks (merge request)
• Define events and metrics for Find file instrumentation (merge request)
• Add sharding-key on upcoming_reconciliations (merge request) GitLab Enterprise Edition
• Remove duplicated index from boards_epic_board_recent_visits (merge request)
• Add and backfill project_id for operations_strategies_user_lists (merge request)
• Add and backfill project_id for sbom_occurrences_vulnerabilities (merge request)
• Add and backfill project_id for packages_debian_project_distribution_key (merge request)
• Add and backfill project_id for merge_request_blocks (merge request)
• Add and backfill group_id for epic_user_mentions (merge request)
• Include accessibility tests for classing and rapid diffs (merge request)
• Remove overage_members_modal feature flag (merge request)
• Implement train_type (merge request) GitLab Enterprise Edition
• Add and backfill project_id for status_check_responses (merge request)
• Add and backfill project_id for release_links (merge request)
• Fix missing traversal_ids for vulnerability_reads records (merge request)
• refactor: Apply best practices to visibility helper test by @gerardo-navarro (merge request)
• refactor: Protected packages: Collection of wording changes by @gerardo-navarro (merge request)
• Quarantine a flaky test (merge request)
• Add and backfill group_id for packages_debian_group_distribution_keys (merge request)
• Add and backfill project_id for merge_request_assignment_events (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add and backfill project_id for packages_debian_publications (merge request)
• Remove index_identities_on_provider DB index (merge request)
• Quarantine a flaky test (merge request)
• Improve UI text in custom notification settings (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Protected packages: Use positive logic to protected_up_to_access_level by @gerardo-navarro (merge request)
• Add and backfill project_id for dast_site_validations (merge request)
• Add and backfill project_id for vulnerability_merge_request_links (merge request)
• Add and backfill project_id for operations_feature_flags_issues (merge request)
• Docs: Support mutual TLS in GitLab Pages with GitLab API (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add a metric ZoektSearchEnabledMetric (merge request) GitLab Enterprise Edition
• Release augmenting package registry GCS signed URLs with metadata (merge request)
• Remove column default (merge request) GitLab Enterprise Edition
• Add and backfill project_id for dast_pre_scan_verifications (merge request)
• Draft: Add sharding key tracking issues for security_policy_management (merge request)
• Resolve Layout/ArgumentAlignment offenses 82 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Remove duplicated index from boards_epic_user_preferences (merge request)
• Remove duplicated index from board_user_preferences (merge request)
• Mark 20230426195404 as obsolete (merge request) GitLab Enterprise Edition
• Add and backfill project_id for vulnerability_state_transitions (merge request)
• Add and backfill project_id for merge_request_assignees (merge request)
• Add and backfill project_id for dast_site_profile_secret_variables (merge request)
• Mark 20230518064300 as obsolete (merge request) GitLab Enterprise Edition
• Add and backfill project_id for terraform_state_versions (merge request)
• Add and backfill project_id for project_relation_exports (merge request)
• Add organization_id column (merge request) GitLab Enterprise Edition
• Draft: Add sharding key tracking issues for requirements_management (merge request)
• Draft: Add sharding key tracking issues for incident_management (merge request)
• Add and backfill project_id for draft_notes (merge request)
• Draft: Add sharding key tracking issues for geo_replication (merge request)
• Remove ai_gateway_docs_search flag (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Draft: Add sharding key tracking issues for continuous_delivery (merge request)
• Draft: Add sharding key tracking issues for integrations (merge request)
• Add and backfill project_id for vulnerability_user_mentions (merge request)
• Add and backfill project_id for operations_strategies (merge request)
• Add and backfill project_id for dast_profiles_tags (merge request)
• Remove untrusted Bitbucket identities and related fallback (merge request)
• Resolve Layout/ArgumentAlignment offenses 68 by @gauravmarwal (merge request)
• Drop unused index_vulnerability_occurrences_on_project_fingerprint (merge request)
• Use normal font weight for board view dropdown toggles (merge request)
• Make approver to-do and email consistent (merge request) GitLab Enterprise Edition
• Remove tree method from ExtractsRef (merge request)
• Updated documentation & fixed rate limit user by @archish27 (merge request)
• Resolve Layout/ArgumentAlignment offenses 65 by @gauravmarwal (merge request)
• Protected container: Add help page for protected containers by @gerardo-navarro (merge request)
• Add and backfill project_id for ml_experiment_metadata (merge request)
• Add and backfill namespace_id for user_achievements (merge request)
• Remove use_ids_for_markdown_upload_urls flag (merge request)
• Remove default values ci_daily_build_group_report_results#partition_id (merge request)
• Update feature category for MergeWorker (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Refactor ExtractsRef to use RefExtractor logic (merge request)
• Remove obsolete Advanced search migrations (merge request) GitLab Enterprise Edition
• Remove FF auto_merge_when_incomplete_pipeline_succeeds (merge request)
• Remove unnecessary allows between gitlab_schemas (merge request)
• Add and backfill project_id for packages_build_infos (merge request)
• Add a new FF disable_zoekt_search_for_saas (merge request) GitLab Enterprise Edition
• Add and backfill namespace_id for design_management_versions (merge request)
• Draft: Add sharding key tracking issues for release_evidence (merge request)
• Remove "use_remote_service_update_service" feature flag (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Finalize migration BackfillDeploymentApprovalsProjectId (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/FirstArrayElementIndentation 1 offenses by @archish27 (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add and backfill project_id for wiki_page_slugs (merge request)
• Quarantine a flaky test (merge request)
• Drop temp_index_on_notes_with_null_noteable_type from notes table (merge request)
• Resolve Layout/ArgumentAlignment offenses 75 by @gauravmarwal (merge request)
• Protected packages: Add help text for name pattern input by @gerardo-navarro (merge request)
• Quarantine a flaky test (merge request) GitLab Enterprise Edition
• Add and backfill project_id for remote_development_agent_configs (merge request)
• Add and backfill project_id for dora_daily_metrics (merge request)
• Resolve Layout/ArgumentAlignment offenses 73 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Finalize migration BackfillClusterAgentTokensProjectId (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add not null constraint for releases.project_id (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 4 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Draft: Add sharding key tracking issues for code_review_workflow (merge request)
• Add and backfill agent_project_id for agent_activity_events (merge request)
• Draft: Add sharding key tracking issues for cell (merge request)
• Backfill epic_issues records into work_items (merge request)
• Resolve Layout/ArgumentAlignment offenses 79 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 86 by @gauravmarwal (merge request)
• Fix Layout/SpaceInLambdaLiteral 8 offenses by @archish27 (merge request)
• Remove unnecessary allows between gitlab_schemas (merge request)
• Add and backfill group_id for boards_epic_user_preferences (merge request)
• Fix Layout/MultilineOperationIndentation 3 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 6 offenses by @archish27 (merge request)
• Draft: Add sharding key tracking issues for system_access (merge request)
• Use RemoteMirrors::DestroyService for push mirror deletion (merge request)
• Draft: Add sharding key tracking issues for importers (merge request)
• Remove unused approval auto merge worker (merge request)
• Resolve Layout/ArgumentAlignment offenses 71 by @gauravmarwal (merge request)
• Fix Lint/SymbolConversion 1 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Remove duplicated index from board_project_recent_visits (merge request)
• Fix Layout/SpaceInLambdaLiteral 4 offenses by @archish27 (merge request)
• Fix Lint/SymbolConversion 3 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Lint/SymbolConversion 8 offenses by @archish27 (merge request)
• Consolidate MWCP feature flags into 1 (merge request)
• Resolve Layout/ArgumentAlignment offenses 74 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 85 by @gauravmarwal (merge request)
• Cleanup approval_policy_parent_child_pipeline feature flag (merge request) GitLab Enterprise Edition
• Remove remove_refactor_auto_merge feature flag (merge request)
• Draft: Add sharding key tracking issues for devops_reports (merge request)
• DROP temp_notes_backup table (merge request)
• Draft: Add sharding key tracking issues for team_planning (merge request)
• Validate notes.noteable_type NOT NULL constraint SYNC (merge request)
• Resolve Layout/ArgumentAlignment offenses 80 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 78 by @gauravmarwal (merge request)
• Fix Layout/SpaceInLambdaLiteral 7 offenses by @archish27 (merge request)
• Resolve Layout/ArgumentAlignment offenses 72 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 66 by @gauravmarwal (merge request)
• Add sharding key tracking issues for continuous_integration (merge request)
• Fix Layout/SpaceInLambdaLiteral 22 offenses by @archish27 (merge request)
• Add and backfill group_id for boards_epic_lists (merge request)
• Draft: Add sharding key tracking issues for build_artifacts (merge request)
• Fix Layout/FirstArrayElementIndentation 4 offenses by @archish27 (merge request)
• Add sharding key for VSA tables (merge request)
• Fix Layout/FirstArrayElementIndentation 2 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 10 offenses by @archish27 (merge request)
• Finalize migration BackfillCatalogResourceVersionSemVer (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 11 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 11 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Make copy for entering URLs consistent (merge request) GitLab Enterprise Edition
• Drop the temporary index from vulnerability_reads table (merge request)
• Draft: Add sharding key tracking issues for secrets_management (merge request)
• Add and backfill namespace_id for design_management_repositories (merge request)
• Add and backfill namespace_id for design_management_designs (merge request)
• Fix Layout/SpaceInLambdaLiteral 5 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 14 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInLambdaLiteral 2 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 9 offenses by @archish27 (merge request)
• Draft: Add sharding key tracking issues for portfolio_management (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Clean up ai_chat_enabled_namespace_ids feature flag (merge request)
• Draft: Add sharding key tracking issues for audit_events (merge request)
• Quarantine a flaky test (merge request)
• Resolve Layout/FirstHashElementIndentation 3 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Fix Lint/AmbiguousRegexpLiteral 2 offenses by @archish27 (merge request)
• Add and backfill group_id for audit_events_streaming_event_type_filters (merge request)
• Clean up arkose_labs_phone_verification_challenge FF (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Add and backfill group_id for audit_events_streaming_headers (merge request)
• Mark 20230530500000 as obsolete (merge request) GitLab Enterprise Edition
• Draft: Add sharding key tracking issues for user_profile (merge request)
• Update capitalization of beta and experiment in ui (merge request)
• Finalize migration BackfillNugetNormalizedVersion (merge request)
• Add and backfill group_id for boards_epic_board_labels (merge request)
• Fix Layout/ArgumentAlignment offenses 44 by @gauravmarwal (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Remove the use_only_onboarding_status_db_value feature flag (merge request) GitLab Enterprise Edition
• Resolve Layout/ArgumentAlignment offenses 49 by @gauravmarwal (merge request) GitLab Enterprise Edition
• Draft: Add sharding key tracking issues for package_registry (merge request)
• Resolve Layout/ArgumentAlignment offenses 70 by @gauravmarwal (merge request)
• Add and backfill group_id for boards_epic_board_positions (merge request)
• Update validations for Push Mirrors (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/SpaceInLambdaLiteral 16 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Finalize issue search data backfill migration (merge request)
• Resolve Layout/FirstHashElementIndentation 2 by @gauravmarwal (merge request)
• Ignore manually created MergeRequestsClosinIssues records (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 8 offenses by @archish27 (merge request)
• Resolve Layout/ArgumentAlignment offenses 67 by @gauravmarwal (merge request)
• Mark 20230519142363 as obsolete (merge request) GitLab Enterprise Edition
• Mark 20230428500000 as obsolete (merge request) GitLab Enterprise Edition
• Mark 20230613555555 as obsolete (merge request) GitLab Enterprise Edition
• Quarantine protected_branches_access_control_ce_shared_examples.rb (merge request)
• Draft: Add sharding key tracking issues for feature_flags (merge request)
• Extract GitLab-Shell JWT token verification into a class (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add sharding key tracking issues for source_code_management (merge request)
• Mark 20230503064300 as obsolete (merge request) GitLab Enterprise Edition
• Remove Message about moved Pages Menu entry (merge request)
• Draft: Add sharding key tracking issues for purchase (merge request)
• Draft: Add sharding key tracking issues for metrics (merge request)
• Draft: Add sharding key tracking issues for consumables_cost_management (merge request)
• Draft: Add sharding key tracking issues for groups_and_projects (merge request)
• Draft: Add sharding key tracking issues for compliance_management (merge request)
• Fix Layout/SpaceInLambdaLiteral 12 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/SpaceInLambdaLiteral 23 offenses by @archish27 (merge request)
• Remove or_issuable_queries feature flag (merge request)
• Mark 20230519500012 as obsolete (merge request) GitLab Enterprise Edition
• Remove k8s_watch_api feature flag (merge request)
• Mark 20230427555555 as obsolete (merge request) GitLab Enterprise Edition
• Fix Layout/MultilineOperationIndentation 1 offenses by @archish27 (merge request)
• Remove alpha label (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Remove feature flag "use_remote_mirror_create_service" (merge request)
• Protected packages: Shorten GraphQL field protectionRuleExists Part 2 by @gerardo-navarro (merge request)
• Fix Layout/ArgumentAlignment offenses 16 by @gauravmarwal (merge request)
• Fix Layout/SpaceInLambdaLiteral 17 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Finalize BackupAndRemoveNotesWithNullNoteableType migration (merge request)
• Fix Layout/SpaceInLambdaLiteral 9 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 19 offenses by @archish27 (merge request)
• Fix Layout/LineContinuationLeadingSpace 3 by @archish27 (merge request)
• Fix Lint/DeprecatedConstants Layout/FirstArgumentIndentation offenses by @archish27 (merge request)
• Add sync index and swap columns (merge request)
• Fix Lint/AmbiguousRegexpLiteral 4 offenses by @archish27 (merge request)
• Remove duplicated index from alert_management_http_integrations (merge request)
• Fix Layout/MultilineOperationIndentation 4 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInsideParens offenses 5 by @archish27 (merge request) GitLab Enterprise Edition
• Draft: Add sharding key tracking issues for seat_cost_management (merge request)
• Fix Layout/SpaceInLambdaLiteral 6 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 21 offenses by @archish27 (merge request)
• Finalize migration BackfillArchivedAndTraversalIdsToVulnerabilityReads (merge request)
• Draft: Add sharding key tracking issues for global_search (merge request)
• Fix Layout/SpaceInsideParens offenses 4 by @archish27 (merge request) GitLab Enterprise Edition
• Update Node-Express template with an updated code (merge request)
• Add and backfill project_id for approval_project_rules_users (merge request)
• Finalize BackfillEpicBasicFieldsToWorkItemRecord background migration (merge request)
• Draft: Add sharding key tracking issues for deployment_management (merge request)
• Draft: Add sharding key tracking issues for release_orchestration (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Resolve Layout/FirstHashElementIndentation 14 by @gauravmarwal (merge request)
• Resolve Layout/FirstHashElementIndentation 1 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 87 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 84 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Resolve Layout/ArgumentAlignment offenses 81 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 77 by @gauravmarwal (merge request)
• Resolve Layout/ArgumentAlignment offenses 69 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Remove disable_developer_access_to_admin_vulnerability feature flag (merge request) GitLab Enterprise Edition
• Remove autovacuum skip for ci_builds related BBMs (merge request)
• Remove pool_key label in connection pool metrics (merge request)
• Fix Layout/ArgumentAlignment offenses 4 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/ArgumentAlignment offenses 11 by @gauravmarwal (merge request)
• Add and backfill project_id for approval_merge_request_rules (merge request)
• Fix Lint/SymbolConversion 4 offenses by @archish27 (merge request)
• Fix Layout/FirstArrayElementIndentation 2 offenses by @archish27 (merge request) GitLab Enterprise Edition

fix (1 change)

• Update Web IDE dependency to receive duo fixes (merge request)

17.0.2 (2024-06-11)

Fixed (1 change)

• Fix instance templates pagination GitLab Enterprise Edition

Changed (1 change)

• Only query the fields needed

Security (4 changes)

• XSS and content injection raw XHTML files on IOS devices (merge request)
• Improve go_package_regex to prevent ReDoS attacks (merge request)
• Fix ReDoS in CI Interpolation (merge request)
• Verify Asana access token when testing Asana integration (merge request)

17.0.1 (2024-05-21)

Fixed (2 changes)

• Don't fail so loudly if default work item type is invalid
• Ensure BLPOP/BRPOP returns nil instead of raising ReadTimeoutError

Security (7 changes)

• Prevent PDF.js from evaluating scripts (merge request)
• Caching test_report api response to reduce calculations (merge request)
• Restrict access to Secure artifacts to developer role (merge request)
• Fail create commit status on pipeline_id / sha mismatch (merge request)
• Use UntrustedRegexp for gollum pattern (merge request)
• Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html (merge request)
• Add text limit to ci_runners text fields (merge request)

17.0.0 (2024-05-15)

Added (164 changes)

• Add more actions to work item sticky header (merge request)
• Expose webhook name and description fields in API (merge request)
• Expose VSA metrics via GraphQL (merge request)
• Update project policy to use admin_push_rules (merge request) GitLab Enterprise Edition
• Document migration to multiple databases for Streaming Replication setup (merge request)
• Auto assign the new members a duo pro seat (merge request) GitLab Enterprise Edition
• Augment GCS signed URLs with GitLab metadata for package registry (merge request)
• Add automatic color mode (merge request)
• Enable ai_gateway_docs_search as beta feature (merge request) GitLab Enterprise Edition
• Set imported_from for Direct Transfer objects (merge request)
• Adding create and delete apis for group namespace filters (merge request) GitLab Enterprise Edition
• Cleanup default_branch_protection_defaults feature flag (merge request)
• Warn when pages multiple deployments is disabled (merge request) GitLab Enterprise Edition
• Add admin_web_hook ability to custom roles (merge request) GitLab Enterprise Edition
• Add new params in protected branch creation (merge request) GitLab Enterprise Edition
• Add reassigned_by_user to import_source_users (merge request)
• Migrate Value streams dashboard to shared analytics dashboards (merge request)
• Enable approval_policy_disable_bot_comment by default (merge request) GitLab Enterprise Edition
• Add creator relationship to namespaces (merge request)
• Add mutation for clearing project runner cache (merge request)
• Enables external participants for Service Desk (merge request)
• Add tooltip with raw counts to AI usage rate values in AI Impact table (merge request) GitLab Enterprise Edition
• Expose imported status for relevant entities (merge request)
• Update project_saved_replies_flag to default true (merge request) GitLab Enterprise Edition
• Delete users unconfirmed secondary emails after 3 days (merge request)
• Add labels and assignees widgets to work items create mutation (merge request)
• Allow additional parameter: published_at for sorting (merge request)
• Expose last_published_at field from API (merge request)
• Add a worker to remove stuck canceling jobs (merge request)
• Bypass secrets check via push option (merge request)
• Implement default branch protection defaults (merge request)
• Adds Phorge logo (merge request)
• Organization owner project permissions (merge request)
• Add BranchRuleExternalStatusCheckDestroy mutation (merge request) GitLab Enterprise Edition
• Adds templating functionality to new participant email (merge request)
• Add gql option to ciCatalogResources to sort by usage (merge request)
• Adding aws audit event destination validator (merge request) GitLab Enterprise Edition
• Protected packages: Show protection info in package detail page by @gerardo-navarro (merge request)
• Add scan result policy deprecated warning (merge request) GitLab Enterprise Edition
• Add imported_from column (merge request)
• Backfill work items for epics (merge request)
• Clean up auto_request_phone_number_verification_exemption feature flag (merge request) GitLab Enterprise Edition
• Support rules:exists subkeys paths, project, and ref (merge request)
• Allow group owners to enable duo pro auto assign (merge request) GitLab Enterprise Edition
• Roll out deployment details page (merge request)
• Add validation error to input (merge request) GitLab Enterprise Edition
• Protected packages: Use icon only for delete rule button by @gerardo-navarro (merge request)
• Adds Beta badge for analytics dashboards (merge request) GitLab Enterprise Edition
• Secrets push check uses project level settings (merge request)
• This MR adds drawer for pipeline execution (merge request) GitLab Enterprise Edition
• Index vulnerability_reads for common group-level queries (merge request)
• Add status to Ci::Partition (merge request)
• Make view Jira issues configurable via API by @ivantedja (merge request)
• Add Update avatar api endpoint for current user by @lifez (merge request)
• Add audit event for deleting web hooks (merge request) GitLab Enterprise Edition
• Add silent_admin_exports_enabled setting (merge request)
• Allow groups to be added to the inbound allowlist (merge request)
• Support deep linking to search results on the CI/CD catalogue page by @espadav8 (merge request)
• Add setting for enabling CS for Registry (merge request) GitLab Enterprise Edition
• Create BranchRuleExternalStatusCheckUpdate mutation (merge request) GitLab Enterprise Edition
• Added validation of http destinations (merge request) GitLab Enterprise Edition
• Add empty states for deployment approvals (merge request) GitLab Enterprise Edition
• Finalize BackfillVulnerabilityReadsClusterAgent migration (merge request)
• Add achievementsPath to NamespaceType for graphql by @ChaelCodes (merge request)
• Add UI components for Beyond Identity check exclusions (merge request)
• Add status field to CustomizableDashboard GraphQL API (merge request) GitLab Enterprise Edition
• Add support for ordering group runners by most active (merge request)
• Added CreateService (merge request) GitLab Enterprise Edition
• Add manual_confirmation by @lifez (merge request)
• Frontend work for regex filter on Zoekt code search (merge request)
• Remove "update_changelog_logic" FF (merge request)
• Limit the number of active versioned pages deployments (merge request)
• Added model for instance namespace filters (merge request) GitLab Enterprise Edition
• Sort labels by relevance on search (merge request)
• Add VerifyNamespaceService to change validation_level (merge request)
• Synch add tmp indexes for vulnerability_occurrences backfill (merge request)
• Adds support to filter packages by status (merge request)
• Rate limit internal X-Ray scan API endpoint (merge request) GitLab Enterprise Edition
• Clean up arkose_labs_signup_data_exchange feature flag (merge request) GitLab Enterprise Edition
• Create partitioned merge_request_diff_files_* table (merge request)
• Add pipeline source check for security_policy_default (merge request) GitLab Enterprise Edition
• This MR adds pipeline execution queries (merge request) GitLab Enterprise Edition
• Adds system note when external participant unsubscribes (merge request)
• Add Bitbucket Cloud Import API (merge request)
• Add enable_auto_assign_gitlab_duo_pro_seats setting (merge request) GitLab Enterprise Edition
• Add support to list child pipelines in project (merge request)
• Default enable approval_policy_parent_child_pipeline (merge request) GitLab Enterprise Edition
• Finish value stream stages read GraphQL API (merge request) GitLab Enterprise Edition
• Support X-Original-To headers for email ingestion (merge request)
• Support banned projects in VisibilityIcon component by @espadav8 (merge request)
• Move Analytics settings to a new admin settings section (merge request) GitLab Enterprise Edition
• This MR adds new resolver (merge request) GitLab Enterprise Edition
• Add ID of runner owner group in ci_running_builds (merge request)
• Add REST API endpoints to list, create, delete instance member roles (merge request) GitLab Enterprise Edition
• Refactor refresh user assignments jobs (merge request) GitLab Enterprise Edition
• Allow fetching related merge requests on a WorkItem (merge request)
• feat: Add throttle app settings for unauthenticated GIT HTTP requests by @gerardo-navarro (merge request)
• Prepare async index for p_ci_builds.user_id (merge request)
• Add GraphQL API for policy violations (merge request) GitLab Enterprise Edition
• Add missing arguments for creating a work item epic (merge request)
• Reconcile Seat Overage (merge request) GitLab Enterprise Edition
• Early Access Program tracking init (merge request)
• Add full log viewer (merge request)
• Add frontend for user registration restrictions (merge request) GitLab Enterprise Edition
• Create index on user_add_on_assignments (merge request)
• Updated requesting changes blocking behaviour (merge request)
• Add limit warning message (merge request) GitLab Enterprise Edition
• Add admin compliance framework as custom ability (merge request) GitLab Enterprise Edition
• Add solution_html to PipelineSecurityReportFindingType (merge request) GitLab Enterprise Edition
• Show which group user approved for (merge request) GitLab Enterprise Edition
• Add new fields for orchestration helper (merge request) GitLab Enterprise Edition
• Document pitfalls with upgrading PostgreSQL across glibc versions (merge request)
• Improve backup logging by log levels by @imskr (merge request)
• Added create and delete api for instance level event filters (merge request) GitLab Enterprise Edition
• Sync create indexes and validate fks for ci_pipelines bigint id (merge request)
• Allow users to select which group to approve as (merge request) GitLab Enterprise Edition
• This MR adds new humanization rules (merge request) GitLab Enterprise Edition
• Add actions dropdown to work item links (merge request)
• Add functions to search for merge_user in merge request view by @schurzi (merge request)
• Saved MemberRoleId when passed (merge request) GitLab Enterprise Edition
• Track Secret Detection vulnerabilities as they move within the file (merge request) GitLab Enterprise Edition
• Add weight to iteration issue list (merge request) GitLab Enterprise Edition
• Use Progressive Web App (PWA) icon as apple-touch-icon if defined by @bufferoverflow (merge request)
• Expose trigger short token to CI by @kevin.gosa (merge request)
• Support GitLab flavored markdown in finding modal description (merge request) GitLab Enterprise Edition
• Add secure schemas version 15.1.0 (merge request)
• Extracted Billable code to a shared util file (merge request) GitLab Enterprise Edition
• GraphQL: Add upgradeStatus field to RunnerManagerType (merge request) GitLab Enterprise Edition
• Support epoch millis when ingesting alerts (merge request)
• Audit Event when merge request approval setting is updated (merge request) GitLab Enterprise Edition
• Add REST API to update pages settings by @jzeng88 (merge request) GitLab Enterprise Edition
• Obfuscate external participants emails in system notes (merge request)
• Protected packages: Delete protection rules in project settings ui by @gerardo-navarro (merge request)
• Jira issues - Display error message returned from jira response (merge request)
• Expose auto_stop_at in Environments api by @devDavidBox (merge request)
• Show admin mode within active sessions view (remove feature flag) by @bufferoverflow (merge request)
• Add new panel title interpolation options to analytics dashboards (merge request) GitLab Enterprise Edition
• Add imported column to resources (merge request)
• Add support for showing a popover for milestones in GFM (merge request)
• Exposed web_path on the MR GraphQL type by @zillemarco (merge request)
• Expose project/namespace IDs in internal/allowed response (merge request)
• Add edit button to policies list in edit screen (merge request) GitLab Enterprise Edition
• Added MemberApprovalFinder (merge request) GitLab Enterprise Edition
• Remove the tailwind_all_the_way feature flag (merge request)
• Added keyboard shortcut (merge request)
• Add a branch check for default security policy config (merge request) GitLab Enterprise Edition
• Prepare async index for p_ci_builds.project_id (merge request)
• Add confirmation when closing blocked work items (merge request)
• Add setting for enabling CS for Registry (merge request) GitLab Enterprise Edition
• Add feature flag for stopping CH data ingestion (merge request) GitLab Enterprise Edition
• Prepare async indexes and fks for ci_pipelines.id_convert_to_bigint (merge request)
• Sync create indexes p_ci_builds runner_id (merge request)
• Add median time to merge metric to VSD (merge request) GitLab Enterprise Edition
• Add milestone and iteration to board card (merge request)
• Added possibility to sort todos from GraphQL by @zillemarco (merge request)
• Always submit note via key shortcut with shift (merge request)
• Adds a new keep file to remove duplicated indexes (merge request)
• Add migration for semver_prefixed column (merge request)
• Use object exist check for codeowners file (merge request) GitLab Enterprise Edition
• Show warning when a group webhook is disabled (merge request)
• Add error to indicate email is linked to an account pending deletion (merge request)
• Remove exempt_paid_namespace_members_...from_identity_verification FF (merge request) GitLab Enterprise Edition
• Remove internal_events_for_product_analytics FF (merge request)
• GraphQL: Add queuedDuration field to CiJobsStatistics (merge request) GitLab Enterprise Edition

Fixed (161 changes)

• Trigger epic dates update when adding or removing a child epic (merge request) GitLab Enterprise Edition
• Fix default protected branch settings for user namespace (merge request)
• Fix a dependency proxy upload premature interruption in workhorse (merge request)
• Fixes requested access users when excluding guests (merge request) GitLab Enterprise Edition
• Add break-all class to stages dropdown (merge request)
• Normalize golang component name when looking up their license (merge request)
• Fix code suggestions and diagrams in rich text (merge request)
• Merge commit message: Use monospace font (merge request)
• Fix custom dashboards not saving on non-"main" branch (merge request) GitLab Enterprise Edition
• Exclude ci_secure_files from Workhorse-accelerated types (merge request)
• Fix license approval policy for pre-existing license_state (merge request) GitLab Enterprise Edition
• Rescue errors in ActionCable #connect (merge request)
• Hide download button on blob viewer (merge request)
• Fix text on vulnerability report alert (merge request) GitLab Enterprise Edition
• Fix NoMethodError for BranchesController (merge request)
• Prevent WebIDE from crashing on message (merge request)
• Add requested_path to readmeHtml field resolver (merge request)
• Handle dashboard pointer in sync funnels worker (merge request) GitLab Enterprise Edition
• Fix blob border radius (merge request)
• Add word break to the job log sidebar (merge request)
• Release calling after_script on cancel (merge request)
• Reject zero-length component names and versions (merge request) GitLab Enterprise Edition
• Correctly handle empty default branch protection defaults (merge request)
• Fix alignment in rolled up dates widget (merge request)
• Exclude YAML languages in the wiki search results (merge request) GitLab Enterprise Edition
• Fix escaping dismissal descriptions on MR widget (merge request) GitLab Enterprise Edition
• Update fetch path of raw logs (merge request)
• Handle an empty "subjectAltName" field for X.509 certificates (merge request)
• Calculate correct access level of members invited through group (merge request)
• High contrast mode fixes for topbar and sidebar navigation (merge request)
• Fix milestone dropdown on incident sidebar (merge request)
• Preserve approval rules when role changes (merge request)
• Allow auto merge on created and blocked pipelines (merge request)
• Fix 500 errors when viewing empty CI artifacts image (merge request)
• Fix notice for projects (merge request) GitLab Enterprise Edition
• Upgrade to semver_dialects 3.0.0 (merge request) GitLab Enterprise Edition
• SSO enforcement: Sessionless activity does not need to be allowed for Owner without session (merge request) GitLab Enterprise Edition
• Add apk to supported package managers (merge request) GitLab Enterprise Edition
• Handle window popstate events for registry search (merge request)
• Release raising permissions of group APIs to owner for package settings (merge request)
• Load the system cert pool when dialing websocket channels in workhorse by @jlsalmon (merge request)
• Fixed flaky billable member spec (merge request) GitLab Enterprise Edition
• Fix broken link to CI troubleshooting doc from merge requests (merge request)
• Cancel outdated deployments for jobs with resource groups (merge request)
• Fix race condition when changing dashboard filters quickly (merge request) GitLab Enterprise Edition
• gitlab-zip-metadata: Ensure 0-byte files have a size field (merge request)
• Disable sidekiq shard validation for /admin/sidekiq path (merge request)
• Show global search filter button when sidebar is auto collapsed (merge request)
• Update pipeline_triggers plan limits to 25k for Premium and Ultimate (merge request)
• Fix handling of analytics visualizations with hyphens (merge request) GitLab Enterprise Edition
• Prevent board epic lane header from moving before sticky (merge request) GitLab Enterprise Edition
• Adjust left and right margins of board top bar and content (merge request)
• Allow developers to create an issue for a vulnerability (merge request) GitLab Enterprise Edition
• Fix board epic swimlane header background in dark mode (merge request) GitLab Enterprise Edition
• Improve issue searches for URLs (merge request)
• Upgrade to grpc v1.63.0 (merge request)
• Ignore tag pipelines for MR approval policies (merge request) GitLab Enterprise Edition
• Rescue from validation errors when uploading terraform modules (merge request)
• Allow access to roles/permissions page via read_member_role permission (merge request) GitLab Enterprise Edition
• Ensure assignee array has values before passing argument to finder (merge request)
• Fix dark mode search token coloring and dropdown active/hover colors (merge request)
• Casts finalized_by migration version to an integer (merge request)
• Do not overwrite findings_by_commits hash (merge request)
• Allow admins to be able to link issues (merge request)
• Changed the email validation for only encoded chars (merge request)
• Fix resetting approvals when pipeline is manual (merge request) GitLab Enterprise Edition
• Use tmpdir for relation import extraction (merge request)
• Consume response stream to finish when calling UserMergeBranch (merge request)
• Fix style of search tokens in dark mode (merge request)
• Fix pattern matching for prevent_pushing_and_force_pushing (merge request) GitLab Enterprise Edition
• Align project avatar to the top by @grace-chung (merge request)
• Fix loading state for group invite modal (merge request) GitLab Enterprise Edition
• Schedule Dora updates after MR linking process (merge request) GitLab Enterprise Edition
• Sync approval rules even when security_scans are duplicated (merge request) GitLab Enterprise Edition
• Account for protected branches without backing git refs (merge request) GitLab Enterprise Edition
• Include template in deprecated flafinder-sast job (merge request)
• Add AzureRM support to orphan artifacts cleanup (merge request)
• Fix work item child status icon color (merge request)
• Use locale-specific formatting for numbers in the AI Impact dashboard (merge request) GitLab Enterprise Edition
• Allows ml_model pending destruction (merge request)
• Fixes issue with registry search query params when removed (merge request)
• MR list: Fix overlapping search icon (merge request)
• Create refs/merge-requests/:iid/head refs for imported merge requests (merge request)
• Fixed MR list layout on mobile by @zillemarco (merge request)
• Apply truncation to other Pypi metadatum fields (merge request)
• Legacy HAML filtered search: Fix reset search (merge request)
• Zoekt search enable should respect expiriment setting (merge request) GitLab Enterprise Edition
• Replace markdown escpae filters (merge request)
• Allow Developers to create external issue links for vulnerabilities (merge request) GitLab Enterprise Edition
• Always return the direct member of an object that requests it (merge request)
• Fix blurry avatars in Members list (merge request)
• Branch target settings: Change spacing of table row (merge request) GitLab Enterprise Edition
• Avoid sub-group destruction in group link synchronization (merge request)
• Fix project_path sorting scopes in Packages::Package model (merge request)
• Fix flaky test in Epics > User uses quick actions (merge request) GitLab Enterprise Edition
• Fix bug of coverage check approval rules (merge request)
• Decouple read_vulnerability from read_dependency (merge request) GitLab Enterprise Edition
• Update XRay Add-On Access check (merge request) GitLab Enterprise Edition
• Show zero based coverage (merge request)
• Only allow documented token types for GraphQL authentication (merge request)
• Fix inherited member source not visible to subgroup members (merge request)
• Fix bug preventing instance settings being inherited by project (merge request) GitLab Enterprise Edition
• Fix empty CommitMessage error (merge request)
• Pass correct reference for modal work item (merge request)
• Fix trailing slash in Maven dependency proxy upstream URL (merge request)
• Reject git LFS push when the namespace is over the free tier user limit (merge request) GitLab Enterprise Edition
• Fix broadcast message text in darkmode (merge request)
• Do not move "You" to front of emoji award list (merge request)
• Zoekt: Fix exact search mode (merge request) GitLab Enterprise Edition
• fix: Avoids whitespace when displaying the version number by @gerardo-navarro (merge request)
• Fix type error when the file_name is not set (merge request)
• Resolve query performance regression on sbom reports (merge request) GitLab Enterprise Edition
• Add fullPath to CatalogResource graphl query (merge request)
• Fixes N+1 on ExperimentsController (merge request)
• Fixed drawer view with two column (merge request)
• Resolve homepage tooltip covering sidebar contents (merge request)
• Pipeline: Fix dropdown item focus in darkmode (merge request)
• Fix vulnerability list table head (merge request) GitLab Enterprise Edition
• Improve extra_slug_path_sanitization account creation (merge request)
• Truncate/Wrap around exit codes larger than 32767 (merge request)
• Render alert when raw text search attempted in Issue Analytics (merge request) GitLab Enterprise Edition
• Clear license caches before license reset in seat link sync (merge request) GitLab Enterprise Edition
• Let merge request sidebar scroll (merge request)
• Non-admins can change "Allow runner registration token" (merge request)
• Migrate deprecated dropdown in pipeline deployment widget (merge request)
• Package detail: Assets table adjustments (merge request)
• Fix N+1 queries with autocomplete recent items (merge request) GitLab Enterprise Edition
• Let sidekiq handle retries (merge request) GitLab Enterprise Edition
• Fix math block alert rendering (merge request)
• Add missing handler for protected branches Deploy key (merge request)
• Fix todo count going from 99+ down to 98 (merge request)
• Fixes deleting last page of package assets deleting entire package (merge request)
• Allow incomplete bucket for Secure Files in object storage config (merge request)
• Package registry detail page: Use secondary text for help text (merge request)
• Skip license capacity check for security policy bot user (merge request) GitLab Enterprise Edition
• Fix box-shadow colors in Tailwind (merge request)
• Fixes missing webUrl on associated projects (merge request) GitLab Enterprise Edition
• Add gl-text-left to stage name in job (merge request)
• Fix Usage Overview panel title's popover positioning (merge request) GitLab Enterprise Edition
• Only add to merge train if not already there (merge request) GitLab Enterprise Edition
• Fix bottom popover arrow color (merge request) GitLab Enterprise Edition
• Fix toggle behavior for board iteration and label edits (merge request) GitLab Enterprise Edition
• Work items widgets: Fix alignments of items (merge request)
• Add jitter to StoreSecurityReportsWorker lock retries (merge request) GitLab Enterprise Edition
• Fix link to self-hosted docs in sidebar help menu (merge request)
• Fix prominent create board button alignment (merge request)
• Fix error for truncated height (merge request)
• Fix incorrect locked state for missing group settings (merge request) GitLab Enterprise Edition
• Fix FetchPolicyApproversService for ComplianceFramework (merge request) GitLab Enterprise Edition
• Use new math ability of markdown parser (merge request)
• Update split i18n strings to be more translatable (merge request)
• Fix built-in shadows in empty state dashboard SVGs (merge request)
• Fixing Flaky Test in ConsistencyCheckService (merge request)
• Fix LFS token check & add test for specific case by @kevin.gosa (merge request)
• When localStorage draft exists for comment reply, show it on load (merge request)
• Fix missing webUrl for associated framework projects (merge request) GitLab Enterprise Edition
• Update fog-google to v1.24.1 (merge request)
• Return Snippet.none when not referencing a project (merge request)
• Remove "fork_targets_finder_with_parents" feature flag (merge request)
• Fix downstream pipeline background color in dark mode (merge request)
• Remove lazy_merge_request_committers feature flag (merge request)

Changed (228 changes)

• Show project that invited group users on usage quota > seats page (merge request)
• Make default admin email not a known value (merge request)
• Fix(Confirm Order): handle 3DS failure (merge request) GitLab Enterprise Edition
• Add a generic error message when the error response is not of JSON type by @antonkalmykov (merge request)
• Use Claude 3 for some parts of Duo Chat (merge request) GitLab Enterprise Edition
• Add visual indicators for some items (merge request)
• Remove 'Get Started' page during registration (merge request) GitLab Enterprise Edition
• Use full-width for both inline and side-by-side diffs in compare (merge request)
• Update empty settings search result page (merge request)
• Remove :jira_multiple_project_keys feature flag (merge request)
• Remove role=button from related issues input (merge request)
• Add logging for keep-around references (merge request)
• Update how header anchors ids are generated (merge request)
• Remove use_database_for_dependencies_api feature flag (merge request) GitLab Enterprise Edition
• Update global search comments results UI (merge request)
• Update "removal" language to "deletion" for groups by @antonkalmykov (merge request) GitLab Enterprise Edition
• Allow overriding restricted variables from Scan Execution Policy (merge request) GitLab Enterprise Edition
• Improves alert message when multiple error packages exist (merge request)
• Adds logo for Pumble integration (merge request)
• Disable runner registration tokens on self-managed instances (merge request)
• Swap primary key with bigint column for ci_pipelines (merge request)
• Remove feature flag from downstream pipeline (merge request)
• Clean up cs_connect_with_sales feature and productize feature (merge request) GitLab Enterprise Edition
• Remove FF "allow_nokogiri_parse_huge_xml" (merge request)
• Changed timelogCreate mutation to not require the spentAt field by @zillemarco (merge request)
• Release changing npm package upload from sync to async (merge request)
• Updating ci_build and pipeline tracking data_category (merge request)
• Makes issue list title inline (merge request)
• Updating help text for Ci/Cd (merge request)
• Use database for dependency exports (merge request) GitLab Enterprise Edition
• Remove double border on todo row hover (merge request)
• Skip committer email checks for commits signed by GitLab (merge request)
• Replace gl-word-break-all to gl-break-all (merge request)
• Upgrade to semgrep v5 (merge request) GitLab Enterprise Edition
• Edit scheduled policy to inform that scan executes around provided time (merge request) GitLab Enterprise Edition
• Auto expand merge commit message field (merge request)
• Refactor text-gl-muted and use gl-text-secondary instead (merge request)
• Disable deprecated SAST analyzers for 17.0 release (merge request) GitLab Enterprise Edition
• MR commit message: Add AI icon to generate commit message feature (merge request)
• Add link to log viewer for long logs (merge request)
• Remove remove_jwks_endpoint FF (merge request)
• Remove Feature Flag remove_shared_jwts (merge request)
• Merge request widget: Fix action button height (merge request)
• Releases: Migrate item to use GlCard (merge request)
• Set Claude 3 sonnet as code generation default (merge request) GitLab Enterprise Edition
• Merge request list: Add new MR and more actions to Vue FF (merge request)
• Simplify UI text of Google Artifact Management (merge request) GitLab Enterprise Edition
• Upgrade DAST to use version 5 (merge request)
• Don't upsert work item types if not found in the DB (merge request)
• Sync indexes and swap columns user_id for p_ci_builds (merge request)
• Breadcrumbs text made more intuitive on new entities pages in Groups by @catinbag (merge request)
• Fix alignment for global search filter row (merge request)
• Added Branches page link to New Branch page breadcrumbs by @catinbag (merge request)
• Override bootstrap margin (merge request)
• Remove FF activity_filter_has_mr (merge request) GitLab Enterprise Edition
• Renames invite_email quickaction to add_email (merge request)
• Ignore migration-related fields in app settings (merge request)
• Update parent link validate_max_children validation (merge request)
• Remove link icons from search code results (merge request)
• Disable runner registration tokens for all groups on .com (merge request)
• Default-enable fallback_behavior flags (merge request) GitLab Enterprise Edition
• Adds WAL receiver saturation indicator (merge request)
• Update global search milestone results page (merge request)
• Groups and Projects - Update invite tab name (merge request)
• Add batched migration to remove namespace from OS components (merge request)
• Remove overflow:hidden from gl-card (merge request)
• Rename report abuse to administrator to report abuse in dropdowns (merge request) GitLab Enterprise Edition
• Ignore migration columns in container repository (merge request)
• Update empty search result (merge request)
• This MR updates text rendering (merge request) GitLab Enterprise Edition
• Update license_finder to v7.1.0 (merge request)
• Create new group settings page for analytics (merge request) GitLab Enterprise Edition
• Remove overflow shadow in favor of border on readme (merge request)
• Show most recent contact in runner details (merge request)
• Modify breadcrumbs text by @jzeng88 (merge request)
• Move repository cleanup under maintenance section (merge request)
• Update time tracking report (merge request)
• Update illustrations for a chart with no jobs (merge request)
• Update quick action language (merge request)
• Protected containers: Use icon only for delete rule button by @gerardo-navarro (merge request)
• Add "Imported" badge to Notes (merge request)
• Prevented jobs allowed to fail from cancelling the pipeline by @zillemarco (merge request)
• Added highlighting of incorrect branch name on new branch page by @catinbag (merge request)
• Update terraform states UI (merge request)
• Removed published data for error packages by @jzeng88 (merge request)
• Remove experiment flag from Analytics GraphQL (merge request) GitLab Enterprise Edition
• Update Usage Overview panel to support subgroups (merge request) GitLab Enterprise Edition
• Move Zoekt to Search::Zoekt namespace by @jzeng88 (merge request) GitLab Enterprise Edition
• Remove overflow:hidden from gl-card (merge request)
• Enable /confidential quickaction for tasks (merge request)
• Remove extra borders around filter (merge request)
• Secret detection CLI message update (merge request)
• Add modal for epic work item creation (merge request) GitLab Enterprise Edition
• Update component include to use $CI_SERVER_FQDN (merge request)
• Apply rate limit to project hook test API endpoint (merge request)
• Removes "new" badge next to fleet dashboard link (merge request)
• Remove the left and right borders from the registry search block by @antonkalmykov (merge request)
• Update schema for clusterwide tables in threat insights (merge request)
• Update constants in catalog (merge request)
• Update major version to 5 for DAST API/API Fuzzing (merge request)
• Reset pagination on grouping change (merge request) GitLab Enterprise Edition
• Use "Previous" instead of "Prev" in pagination (merge request)
• Make metadata processing optional for Secure Files (merge request)
• Remove admin_user_filtered_nav feature flag (merge request)
• Log zoekt node name in scheduling service (merge request) GitLab Enterprise Edition
• Merge request list: Migrate actions to Vue (merge request)
• Sync indexes and swap columns project_id for p_ci_builds (merge request)
• Sync indexes and swap columns project_id for p_ci_builds
• Update dependency auto-build-image to v4 (merge request)
• Move new list button out of board header into board content (merge request)
• Used constant for CSS classes in pipeline_failed_jobs_widget test by @catinbag (merge request)
• Restrict member roles REST API (merge request) GitLab Enterprise Edition
• Used gitlab-ui classes for time_ago in pipelines_page by @catinbag (merge request)
• Update the global search users results page (merge request)
• Add support for DAST 5 to DAST templates (merge request)
• Use database for dependencies API (merge request) GitLab Enterprise Edition
• Clean up epics/issues/MR search results (merge request)
• Refactor argument splat for edit framework handler (merge request) GitLab Enterprise Edition
• Pipeline Graph page: Improve repsonsive behavior of dropdown (merge request)
• Update milestone labels tab (merge request)
• Pipeline MiniGraph: Update tooltip content and direction (merge request)
• Add new illustrations to product analytics onboarding flow (merge request) GitLab Enterprise Edition
• Add "Imported" badge to Snippet header (merge request)
• Update flux_resource_path (merge request)
• Update ProjectPipelinesResolver preloads (merge request) GitLab Enterprise Edition
• Added margin top to pipeline tabs (merge request)
• Always allow reading external pipeline builds (merge request)
• Update permissions to relate issues (merge request) GitLab Enterprise Edition
• Check membership with all_group_members (merge request) GitLab Enterprise Edition
• Add "Imported" badge to designs (merge request)
• User profile readme: Add ability to use hash scrollTo event (merge request)
• Move platform selection to runners "register" step (merge request)
• Remove FF activity_filter_has_remediations (merge request) GitLab Enterprise Edition
• Change project_level_sbom_occurrences default (merge request) GitLab Enterprise Edition
• Removes link to log viewer (merge request)
• Improve registry search query params generation (merge request)
• Update syntax options drawer title (merge request)
• Align presentation of pending deletion tab by @r2abreu (merge request) GitLab Enterprise Edition
• Add frontend validation for framework names (merge request) GitLab Enterprise Edition
• Only show project limits alert on affected project (merge request) GitLab Enterprise Edition
• Remove purchase_code_suggestions feature flag (merge request) GitLab Enterprise Edition
• Highlight search text on the global search result page (merge request)
• Remove start_pre_import method (merge request) GitLab Enterprise Edition
• Fix(Purchase addon): handle errors in the frontend (merge request) GitLab Enterprise Edition
• Fix(Purchase): handle 3DS error in the frontend (merge request) GitLab Enterprise Edition
• Swap columns runner_id for p_ci_builds (merge request)
• Issue list: Update search bar (merge request)
• Return or display Gitlab version if GITLAB_KAS_VERSION is a SHA (merge request)
• Render Storage Usage Quotas for Profile in CE (merge request)
• Fix bottom border for the last commit block (merge request)
• Update grpc to v1.62.0 and gitlab-labkit to v0.32.0 by @gitlab-dependency-update-bot (merge request)
• Update multiple entries in a single input guidance text (merge request)
• Replace "Play" with "Run" in pipeline action button titles (merge request)
• Add "Imported" text to User profile activity (merge request)
• Branch Rules: Allow to merge section with edit (merge request)
• Replace references to deprecated runner fields (merge request)
• Update badges on project security configuration page (merge request)
• Milestone header: Migrate kebab menu to GlDisclosureDropdown (merge request)
• Merge request: Show code dropdown on small screens (merge request)
• Remove usage of latest for non catalog resource projects (merge request)
• Remove lock icon from admin mode setting (merge request)
• GraphQL: Rename RunnerMembershipFilter to CiRunnerMembershipFilter (merge request)
• GraphQL: Change CiRunnerType.projects default sort order (merge request)
• Upgrade Secret Detection Analyzer to v6 in CI templates (merge request)
• Allow migrations to be skipped on condition (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v3 (merge request)
• Add new stream only audit event for repo download of public projects (merge request) GitLab Enterprise Edition
• Migrate explore search and sort to filtered search bar (merge request)
• Update time tracking UI (merge request)
• Change to work item namespace query (merge request)
• Add "Imported" badge to epic header (merge request) GitLab Enterprise Edition
• Change Duo Chat default final error message to be more friendly (merge request) GitLab Enterprise Edition
• Remove connecting lines in group list (merge request)
• Remove 'and' from component list (merge request)
• Capture running builds on non-shared runners (merge request)
• Update Usage Overview panel to support subgroups (merge request) GitLab Enterprise Edition
• Add "Imported" badge to MR header (merge request)
• Update analytics docs links for some metrics (merge request)
• Support JOB-TOKEN authentication header for generic packages (merge request)
• Format dates on analytics dashboards (merge request) GitLab Enterprise Edition
• Add imported badge on issue page (merge request)
• Fix display Mermaid plots in project CI/CD setting pages by @dannyelcf (merge request)
• Fix hover underline in comments icon in list view (merge request)
• Hide archived filter toggle with selected project (merge request)
• Display commit title instead of message (merge request)
• Update dependency auto-build-image to v2.1.0 (merge request)
• Upgrade Container Scanning to v7 (merge request)
• Upgrade to Gemnasium v5 (merge request) GitLab Enterprise Edition
• Package registry list: Change metadata appearance (merge request)
• Use GITLAB_LOG_LEVEL for Geo logs (merge request) GitLab Enterprise Edition
• Unblock fail-open license_scanning rules without target pipeline (merge request) GitLab Enterprise Edition
• Update description field component (merge request)
• Update URLs for Terraform module registry pages by @jzeng88 (merge request)
• Change unneeded js test attribute to data attribute by @bahek2462774 (merge request)
• Remove restrict_member_roles feature-flag (merge request) GitLab Enterprise Edition
• Redesign create custom role permissions list (merge request) GitLab Enterprise Edition
• Add Duo Chat GA alert (merge request) GitLab Enterprise Edition
• Turn off the Trial Abandonment Survey sent from the GitLab application (merge request) GitLab Enterprise Edition
• Cleanup Feature Flag: usage_quotas_for_all_editions (merge request)
• Add fallback_behavior property to MR approval policies (merge request) GitLab Enterprise Edition
• Move close action first (merge request)
• Use GITLAB_LOG_LEVEL for Sidekiq server logs (merge request)
• Protected packages: Use icon only for remove action (merge request)
• Remove :new_pipeline_graph FF (merge request)
• Update dependency auto-deploy-image to v2.90.0 (merge request)
• Remove duo_chat_current_resource_by_default feature flag (merge request)
• Pipeline graph items: Change tooltip orientation, content (merge request)
• Save resource verification level on publish (merge request)
• Add limitation for semi-linear/ff merge trains (merge request) GitLab Enterprise Edition
• Make basic information section expanded by default (merge request) GitLab Enterprise Edition
• Update "View raw" link (merge request)
• Move harbor integration sidemenu entry from operate to deploy (merge request)
• Show alert when project transfer is still running (merge request)
• Adjust the update password page (merge request)
• Register Sidekiq queues only from routing rules (merge request)
• Update compliance framework badge (merge request) GitLab Enterprise Edition
• MR sidebar: Put loading icon after participants title (merge request)
• Fix flaky test by sorting dependencies (merge request) GitLab Enterprise Edition
• Allow migrations to be skipped on condition (merge request) GitLab Enterprise Edition
• Cleanup gitlab_duo_chat_requests_to_ai_gateway feature flag (merge request)
• Bringing back ability to use iterations in incidents by @SlickDomique (merge request) GitLab Enterprise Edition
• Remove unnecessary div for vulnerability modal footer (merge request) GitLab Enterprise Edition
• Relax constraints when consolidated object storage settings is enabled (merge request)
• Pipeline Graph Drodpown: Use fluidWidth (merge request)
• Adjust border radius of collapsed conflicted file (merge request)
• Remove usages of sub-header-block by @espadav8 (merge request)
• GraphQL: Rename CiRunnerUpgradeStatusType to CiRunnerUpgradeStatus (merge request)
• Update advice for QA selectors in rubocop output (merge request)

Deprecated (5 changes)

• Return an empty pipelines in the package REST API payload (merge request)
• Disable the migration MigrateZoektSettingsInApplicationSettings (merge request)
• Sunset deprecated args for UpdateRepositoryStorageWorker#perform (merge request)
• REST: Deprecate runner details API fields (merge request)
• Remove CreateEmptyEmbeddingsRecordsWorker class by @jzeng88 (merge request) GitLab Enterprise Edition

Removed (59 changes)

• Remove license compliance app (merge request) GitLab Enterprise Edition
• Remove unused code_suggesitons project setting (merge request)
• Remove security_policies_breaking_changes feature flag (merge request) GitLab Enterprise Edition
• Remove confidential attribute from Note (merge request)
• Drop table geo_hashed_storage_migrated_events (merge request)
• Remove usages of deprecated runner fields (merge request)
• Remove compliance framework from settings (merge request) GitLab Enterprise Edition
• Remove Facebook OmniAuth integration (merge request)
• Delete temporary_storage_increase feature flag (merge request) GitLab Enterprise Edition
• Remove Twitter OmniAuth integration (merge request)
• Remove deprecated canDestroy and canDelete GraphQL fields (merge request)
• Remove loading status spinner for hand raise lead button (merge request) GitLab Enterprise Edition
• Remove min and max_concurrency option in Sidekiq cluster (merge request)
• Remove deprecate_unified_approval_rules feature flag (merge request)
• Remove beta badge (merge request)
• Remove unused FK(s) on geo_event_log table (merge request)
• Remove calls to the import API endpoints (merge request)
• Remove dead code from details page (merge request)
• Remove unused Dependency Scanning jobs (merge request)
• Remove ScanResultPolicy.groupApprovers graphql field (merge request) GitLab Enterprise Edition
• Remove deprecated Geo prometheus metrics (merge request) GitLab Enterprise Edition
• Drop path column (merge request)
• Remove Dependency Scanning artifact from CS template (merge request)
• Remove deprecated GitLab Agent GitOps docs (merge request)
• Remove migration worker files and update queues yml (merge request)
• Replace flawfinder analyzer with semgrep (merge request)
• Remove list_repos Rake task (merge request)
• Remove total_weight from BoardList type (merge request) GitLab Enterprise Edition
• Goodbye sentry-raven (merge request)
• Removes old funnels endpoint (merge request) GitLab Enterprise Edition
• Remove visual review tools (merge request)
• Remove required pipeline configuration feature (merge request) GitLab Enterprise Edition
• Remove vendored omniauth-azure-oauth2 by @bufferoverflow (merge request)
• Remove support for match_on_inclusion (merge request) GitLab Enterprise Edition
• GraphQL: Remove deprecated CiRunnerType fields (merge request)
• Remove License Scanning CI templates (merge request) GitLab Enterprise Edition
• Remove onboarding_step_url column from user_details (merge request) GitLab Enterprise Edition
• GraphQL: Remove deprecated DISABLED_WITH_OVERRIDE value (merge request)
• Remove support for newly_detected vulnerability status (merge request) GitLab Enterprise Edition
• Remove VSA cumulative duration FF (merge request) GitLab Enterprise Edition
• Replace NodeJS and PHPCS analyzer with semgrep (merge request)
• Remove cadence_validation feature flag (merge request) GitLab Enterprise Edition
• Remove :simplified_labels FF (merge request)
• Remove networkpolicies field from ProjectType (merge request) GitLab Enterprise Edition
• Remove message field from Vulnerability GraphQL type (merge request) GitLab Enterprise Edition
• Remove deprecated DORA API fields (merge request) GitLab Enterprise Edition
• Drop diff summaries table (merge request)
• Remove min and max_concurrency option in Sidekiq cluster (merge request)
• Clean up duo_pro_trials_for_free_plans feature flag (merge request) GitLab Enterprise Edition
• Dropping unsused table external_approval_rules_protected_branches (merge request)
• Remove queue selector and negate options from Sidekiq cluster CLI (merge request)
• Remove shared avatar for security policy bots (merge request) GitLab Enterprise Edition
• Remove legacy replication details routes redirection (merge request) GitLab Enterprise Edition
• Remove current_stage argument from EntityWorker (merge request)
• Remove deprecated confidence field from GraphQL (merge request) GitLab Enterprise Edition
• Remove GraphQL field hasSolutions from VulnerabilityType (merge request) GitLab Enterprise Edition
• Remove ci_catalog_create_metadata feature flag (merge request)
• Remove the feature flag filter_saml_response (merge request)
• Remove auto_fix for security settings (merge request)

Security (18 changes)

• Prevent deploy token bypass for external authentication (Part 2) (merge request)
• Fix confidentiality check optimization
• Enforce per_page validation for Branches/TagsFinders
• Prevent namespace banned users from reading project todos
• Validate request origin before MR approval
• ReDoS in GitRefsFinder when using wildcards in branch search
• Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github
• Require confirmation before linking JWT identity
• ReDos in escape and commit reference filters
• Check request size before updating user pins
• Update BaseMessage::RELATIVE_LINK_REGEX regex
• Update Integrations::Discord::ATTACHMENT_REGEX regex
• Fix guest access for setting time estimate on issues (merge request)
• Forbid untrusted sign-ins to GitLab with Bitbucket and fix related uid
• fix: Validate security report version against schema during parsing
• Validation for encoded formatting characters
• Protect against ReDoS in FileFinder with wildcard filters
• Ensure PAT scope is validated everywhere for GraphQL/ActionCable

Performance (9 changes)

• Improve ServiceHook and SystemHook specs (merge request)
• Remove pipelines schedules delay feature flag (merge request)
• Remove ExclusiveLease on setting last_activity_on (merge request)
• Release avoiding copy operation in terraform modules upload (merge request)
• Remove index index_vulnerabilities_on_detected_at_and_id by @jzeng88 (merge request)
• Use backend filtering for @ autocomplete (merge request)
• Don't update vulnerability_reads records unnecessarily (merge request) GitLab Enterprise Edition
• Direct answering instead of using IssueReader (merge request) GitLab Enterprise Edition
• Add limit to RelatedPipelinesFinder (merge request) GitLab Enterprise Edition

Other (191 changes)

• Fix Layout/LineContinuationLeadingSpace 1 by @archish27 (merge request) GitLab Enterprise Edition
• Document bounded_contexts.yml in Software Design Guides (merge request)
• Protected packages: Shorten GraphQL field for by @gerardo-navarro (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/ArgumentAlignment offenses 25 by @gauravmarwal (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 17 offenses by @archish27 (merge request)
• Removes database migrations up to 16-2-stable-ee (merge request)
• Refactor "(s)" in quick actions (merge request)
• Protected packages: Scope feature flag check to project by @gerardo-navarro (merge request)
• Drop duplicate index on p_ci_runner_machine_builds (merge request)
• Fix Layout/MultilineOperationIndentation 2 offenses by @archish27 (merge request)
• Remove resolve_all_organization_groups feature flag (merge request)
• Quarantine a flaky test (merge request)
• Drop unused index on ci_pipelines_config (merge request)
• Fix Layout/SpaceInLambdaLiteral 3 offenses by @archish27 (merge request)
• Enable webui_members_inherited_users feature flag by default (merge request)
• Fix Layout/ArgumentAlignment offenses 30 by @gauravmarwal (merge request)
• Docs: Update default auth_redirect_uri (merge request)
• Remove ci_create_partitions_102 feature flag (merge request)
• Remove duplicated index from abuse_reports (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Remove useless method from Issuable::DestroyService by @zzaakiirr (merge request)
• Fix workhorse linter warnings (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add new invite_email column index on members for new query (merge request)
• Remove duplicated index from board_group_recent_visits (merge request)
• Allow CORS for /oauth/token/info (merge request)
• Fix Layout/ArgumentAlignment offenses 23 by @gauravmarwal (merge request)
• Fix Layout/SpaceInsideParens offenses 5 by @archish27 (merge request) GitLab Enterprise Edition
• Track redirection counts within a Redis pipeline (merge request)
• Fix Layout/SpaceInsideParens offenses 2 by @archish27 (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Fix Layout/ArgumentAlignment offenses 31 by @gauravmarwal (merge request)
• Use Gitlab::Redis::ClusterUtil in redis cache store patch (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add icon to issues on child epics when filtering epics (merge request) GitLab Enterprise Edition
• Remove cron job details for CreateEmptyEmbeddingsRecordsWorker (merge request)
• Fix Layout/ArgumentAlignment offenses 2 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 21 by @gauravmarwal (merge request)
• Mark 20230415500000 MigrateWikisToSeparateIndex migration as obsolete (merge request) GitLab Enterprise Edition
• Mark AddHashedRootNamespaceIdToIssues as obsolete (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 14 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 19 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 29 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 8 by @gauravmarwal (merge request)
• Add specs for Gitlab::VulnerabilityScanning::SecurityScanner by @jzeng88 (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Remove FF check when creating synced work items (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 13 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 6 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 18 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 27 by @gauravmarwal (merge request)
• Fix Layout/LineContinuationLeadingSpace 4 offenses by @archish27 (merge request)
• Schedule async indexes (merge request)
• Release FF environment_stop_actions_include_all_finished_deployments (merge request)
• Remove obsolete Advanced search migrations (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceBeforeBlockBraces Layout/TrailingWhitespace offenses by @archish27 (merge request)
• Fix Layout/SpaceInsideParens offenses 1 by @archish27 (merge request)
• Add and backfill project_id for approval_merge_request_rule_sources (merge request)
• Move emails_disabled inversion to REST API (merge request)
• Mark 20230320011400 AddHashedRootNamespaceIdToCommits as obsolete (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Remove duplicated code from MirrorsController#update (merge request) GitLab Enterprise Edition
• Remove unused code from MergeRequest model (merge request)
• Rubocop: Fixes warning for GraphQL/resolver_method_length by @nwittstruck (merge request)
• Add trigger function reset (merge request)
• Finalize migration BackfillHasRemediationsOfVulnerabilityReads (merge request)
• Add sharding key tracking issues for Threat Insights (merge request)
• Update trigger function for merge_request_metrics (merge request)
• Populate Ci::Partition first record (merge request)
• Remove MR locked state index synchronously (merge request)
• Fix Layout/MultilineOperationIndentation 5 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousRegexpLiteral 6 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousRegexpLiteral 5 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousRegexpLiteral 3 offenses by @archish27 (merge request)
• Fix Lint/AmbiguousRegexpLiteral 1 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInLambdaLiteral 18 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 15 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInLambdaLiteral 13 offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInLambdaLiteral 10 offenses by @archish27 (merge request)
• Fix Layout/SpaceInLambdaLiteral 1 offenses by @archish27 (merge request)
• Fix Lint/SymbolConversion 9 offenses by @archish27 (merge request)
• Fix Lint/SymbolConversion 7 offenses by @archish27 (merge request)
• Fix Lint/SymbolConversion 2 offenses by @archish27 (merge request) GitLab Enterprise Edition
• docs: Add missing access levels for minimum_access_level_for_x fields by @gerardo-navarro (merge request)
• Fix Layout/ArgumentAlignment offenses 28 by @gauravmarwal (merge request)
• Use Pajamas input for approval count (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 26 by @gauravmarwal (merge request)
• Initial commit of bounded_contexts.yml file (merge request)
• Fix Lint/AmbiguousOperatorPrecedence 7 offenses by @archish27 (merge request)
• Fix Layout/ArgumentAlignment offenses 22 by @gauravmarwal (merge request)
• Mark BackfillWikiPermissionsInMainIndex search migration as obsolete (merge request) GitLab Enterprise Edition
• Fix Rails/NegateInclude 1 by @archish27 (merge request) GitLab Enterprise Edition
• Switch merge_request_metrics pipeline_id to bigint (merge request)
• Fix Layout/ArgumentAlignment offenses 20 by @gauravmarwal (merge request)
• Switch merge_trains pipeline_id to bigint (merge request)
• Lint fixes OrAssignmentToConstant RedundantStringCoercion EnvMocking by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 17 by @gauravmarwal (merge request)
• Update epic deletion confirmation (merge request)
• Fix Layout/ArgumentAlignment offenses 15 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 12 by @gauravmarwal (merge request)
• Mark 20230325200700 search migration as obsolete (merge request) GitLab Enterprise Edition
• Mark 20230321202400 search migration as obsolete (merge request) GitLab Enterprise Edition
• Mark 20230321091100 search migration as obsolete (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 10 by @gauravmarwal (merge request)
• Mark 20230316150000 search migration as obsolete (merge request) GitLab Enterprise Edition
• Fix Layout/ArgumentAlignment offenses 7 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 5 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses 3 by @gauravmarwal (merge request)
• Fix Layout/ArgumentAlignment offenses by @gauravmarwal (merge request)
• Fix Style/RedundantInterpolation offenses by @archish27 (merge request)
• Fix Layout/SpaceInsideBlockBraces offenses by @gauravmarwal (merge request)
• Add Sidekiq shard-awareness validator (merge request) GitLab Enterprise Edition
• Quarantine a flaky test (merge request)
• Allow MultiStore to be initialised with Redis clients (merge request)
• Add and backfill project_id for wiki_repository_states (merge request)
• Fix Layout/HashAlignment Layout/LeadingCommentSpace offenses by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/LineContinuationLeadingSpace 2 by @archish27 (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInsideParens offenses 7 by @archish27 (merge request) GitLab Enterprise Edition
• Delete FF (merge request)
• Use Pajamas components for approval password form (merge request) GitLab Enterprise Edition
• Fix Layout/SpaceInsideParens offenses 3 by @archish27 (merge request)
• Remove container_scanning_continuous_vulnerability_scans flag (merge request)
• Remove ExtractsPath module from ProjectsController (merge request)
• Fix Layout/LeadingCommentSpace offenses by @archish27 (merge request)
• Clean up linked_work_items feature flag (merge request)
• Mark 20230307102400 advanced search migration as obsolete (merge request) GitLab Enterprise Edition
• Update Pages without wildcard DNS docs (merge request)
• Fix Style/HashAsLastArrayItem Offenses (merge request)
• Remove a MR index with state_id, iid synchronously (merge request)
• Include itemprop attribute in project avatar component by @espadav8 (merge request)
• Draft: Add sharding key tracking issues for design_management (merge request)
• Fix Lin/AmbiguousRange Offenses (merge request)
• Fix RSpec/HooksBeforeExamples Offenses (merge request)
• Change maxWorkers configuration (merge request)
• Add DEV flag for jest (merge request)
• Protected containers: Use service response shared examples in tests by @gerardo-navarro (merge request)
• Swap packages_build_infos pipeline_id to bigint (merge request)
• Swap vulnerability_feedback pipeline_id to bigint (merge request)
• Add JSON validation spec for zoekt/node.rb by @jzeng88 (merge request) GitLab Enterprise Edition
• Finalize migration BackfillHasMergeRequestOfVulnerabilityReads (merge request)
• Apply Sidekiq sharding router to Sidekiq::Job::Setter (merge request)
• Remove the temporary patch for "listing commits failed" error (merge request)
• Fix warning by adding feature category to pipeline specs by @b310-jannik (merge request)
• refactor: Rename names of attributes related to access levels by @gerardo-navarro (merge request)
• Add desired sharding keys for metrics (merge request)
• Update MAX_RUN_TIME to match max HTTP request time (merge request) GitLab Enterprise Edition
• Add and backfill namespace_id for work_item_parent_links (merge request)
• Add and backfill project_id for workspace_variables (merge request)
• Remove create_vulnerability_jira_issue_via_graphql feature flag (merge request) GitLab Enterprise Edition
• Remove feature flag for custom webhook templates by @kevin.gosa (merge request)
• Revert "Merge branch '434291-refactor-pat-policy' into 'master'" (merge request)
• Remove custom_webhook_headers feature flag by @Taucher2003 (merge request)
• Quarantine a flaky test (merge request)
• Remove group_user_saml feature flag (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Introduce service "RemoteMirrors::CreateService" (merge request) GitLab Enterprise Edition
• Release FF link_fast_forward_merge_requests_to_deployment (merge request)
• Cleanup add_policy_approvers_to_rules feature flag (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Remove inputs from catalog_resource_components (merge request)
• Add relaxed sharding keys for runner (merge request)
• Quarantine a flaky test (merge request)
• Include psudonymised user id into X Ray scan req (merge request) GitLab Enterprise Edition
• Migrate self-managed custom roles to the instance-level roles (merge request)
• Feature cleanup flag wiki_content_background_job by @ivantedja (merge request)

16.11.4 (2024-06-11)

Security (4 changes)

• XSS and content injection raw XHTML files on IOS devices (merge request)
• Improve go_package_regex to prevent ReDoS attacks (merge request)
• Fix ReDoS in CI Interpolation (merge request)
• Verify Asana access token when testing Asana integration (merge request)

16.11.3 (2024-05-21)

Fixed (2 changes)

• Ensure BLPOP/BRPOP returns nil instead of raising ReadTimeoutError
• Fix Sidekiq migration timeout

Security (7 changes)

• Prevent PDF.js from evaluating scripts (merge request)
• Caching test_report api response to reduce calculations (merge request)
• Restrict access to Secure artifacts to developer role (merge request)
• Fail create commit status on pipeline_id / sha mismatch (merge request)
• Use UntrustedRegexp for gollum pattern (merge request)
• Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html (merge request)
• Add text limit to ci_runners text fields (merge request)

16.11.2 (2024-05-07)

Fixed (1 change)

• Changed the email validation for only encoded chars (merge request)

Changed (1 change)

• Return or display Gitlab version if GITLAB_KAS_VERSION is a SHA

Security (11 changes)

• Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github (merge request)
• Prevent namespace banned users from reading project todos (merge request)
• ReDoS in GitRefsFinder when using wildcards in branch search (merge request)
• ReDos in escape and commit reference filters (merge request)
• Validate request origin before MR approval (merge request)
• Check request size before updating user pins (merge request)
• Enforce per_page validation for Branches/TagsFinders (merge request)
• Update Integrations::Discord::ATTACHMENT_REGEX regex (merge request)
• Update BaseMessage::RELATIVE_LINK_REGEX regex (merge request)
• Require confirmation before linking JWT identity (merge request)
• Fix confidentiality check optimization (merge request)

16.11.1 (2024-04-24)

Security (5 changes)

• Validation for encoded formatting characters (merge request)
• Forbid untrusted sign-ins to GitLab with Bitbucket and fix related uid (merge request)
• Ensure PAT scope is validated everywhere for GraphQL/ActionCable (merge request)
• Protect against ReDoS in FileFinder with wildcard filters (merge request)
• fix: Validate security report version against schema during parsing (merge request)

16.11.0 (2024-04-17)

Added (121 changes)

• Add skip secret detection audit event (merge request) GitLab Enterprise Edition
• Added added_approver to the todo action enum in GraphQL by @zillemarco (merge request)
• Add setting for enabling pre-receive SD (merge request) GitLab Enterprise Edition
• Added pending member for project listing page (merge request) GitLab Enterprise Edition
• Merge branch 'add-support-for-v-prefix' into 'master' (merge request)
• Simplifies SemanticVersionable concern (merge request)
• Added model for external_status_checks_protected_branches (merge request) GitLab Enterprise Edition
• Update URL with cursor to load a specific page (merge request) GitLab Enterprise Edition
• Added update api for instance level audit streaming (merge request) GitLab Enterprise Edition
• Add endpoint for checking relation import status (merge request)
• Utilize show_diff_preview_in_email column by @joe-snyder (merge request)
• Add API for trigger project webhook by @lifez (merge request)
• Add displaying list of linked policies to framework table (merge request) GitLab Enterprise Edition
• Change admin users search filter by @bahek2462774 (merge request)
• Protected packages: Show protected label in packages list by @gerardo-navarro (merge request)
• Added delete api for instance level audit streaming (merge request) GitLab Enterprise Edition
• Update query for elevated_guests to use occupies_seat (merge request) GitLab Enterprise Edition
• Frontend work for regex filter on Zoekt code search (merge request)
• Enabled product_analytics_billing by default (merge request) GitLab Enterprise Edition
• Added update api for group audit event destinations (merge request) GitLab Enterprise Edition
• Remove experiment flag for product analytics (merge request) GitLab Enterprise Edition
• Add co_authored_by placeholder to suggestions template (merge request)
• New tests for project dropdown actions by @espadav8 (merge request)
• Obfuscate external participants emails in system notes (merge request)
• Update group policy to use admin_push_rules (merge request) GitLab Enterprise Edition
• Added delete api for group audit event destinations (merge request) GitLab Enterprise Edition
• Add top-level namespace to Usage Overview panel (merge request) GitLab Enterprise Edition
• Add pre_receive_secret_detection_enabled param (merge request)
• Protected containers: Create protection rules in project setting ui by @gerardo-navarro (merge request)
• Add catalog component usage tracking in pipeline sequence (merge request)
• Implement the ability to use shorthand for semantic versions (merge request)
• Add client for generating vertex embedding (merge request) GitLab Enterprise Edition
• Expose metadata fields on Milestone type (merge request)
• Document encryption support for Google Cloud Storage (GCS) (merge request)
• This MR adds new filter option (merge request) GitLab Enterprise Edition
• Added list api for listing instance level audit event destinations (merge request) GitLab Enterprise Edition
• Added create api for instance audit event streaming destinations (merge request) GitLab Enterprise Edition
• Adds "Allow runner registration token" setting to top-level group (merge request)
• Rollout new custom roles UI (merge request) GitLab Enterprise Edition
• This MR adds new policy type (merge request) GitLab Enterprise Edition
• Add referrer_type filtering to containerRepository tags GraphQL query (merge request)
• Enable group_saved_replies_flag by default (merge request)
• Add manage security policy as custom ability (merge request) GitLab Enterprise Edition
• Initialize bigint conversion for vulnerability_occurrence_pipelines (merge request)
• Initialize bigint conversion for merge_trains (merge request)
• Initialize bigint conversion for merge_trains (merge request)
• Initialize bigint conversion for packages_build_infos (merge request)
• Initialize bigint conversion for vulnerability_feedback (merge request)
• Add a new worker to process the pipeline creation for sep (merge request) GitLab Enterprise Edition
• Removed auto_cancel_pipeline_on_job_failure feature flag by @zillemarco (merge request)
• Add runner creation status by @imskr (merge request)
• Add close on escape support (merge request) GitLab Enterprise Edition
• Initialize bigint conversion for merge_requests (merge request)
• Add accessLevel & isLastOrganizationOwner fields to organizationUser (merge request)
• Improve the performance of group-level vulnerability export (merge request)
• Enable Custom Webhook Headers feature by @Taucher2003 (merge request)
• Consider child pipelines for MR approval policies (merge request) GitLab Enterprise Edition
• Add development widget (feature flags) (merge request) GitLab Enterprise Edition
• Beyond Identity: Add option to exclude service accounts (merge request)
• Add verified badge (merge request)
• Add runner wait time stats by namespace (merge request) GitLab Enterprise Edition
• Support minimal access base for custom roles (merge request)
• Add object_attributes.action for note webhooks (merge request)
• Add cadence validation for sep creation (merge request) GitLab Enterprise Edition
• Enable combined analytics dashboards by default (merge request) GitLab Enterprise Edition
• Create and list apis for group audit events (merge request) GitLab Enterprise Edition
• Default enable producy analytics admin settings FF (merge request) GitLab Enterprise Edition
• Enabling FF ci_retry_on_exit_codes on SM (merge request)
• Add API endpoint to return current SSO session expiry time (merge request) GitLab Enterprise Edition
• Add REST API endpoint to sync push mirrors (merge request)
• Rollout security_policies_policy_scope_project by default (merge request) GitLab Enterprise Edition
• Add custom webhook headers by @Taucher2003 (merge request)
• Remomve FF for search_add_archived_filter_to_zoekt (merge request) GitLab Enterprise Edition
• Enalbed the global Duo Chat button (merge request) GitLab Enterprise Edition
• Validate check null constraint for vulnerability_reads#traversal_ids (merge request)
• Switch Groups UX to emails_enabled by @joe-snyder (merge request) GitLab Enterprise Edition
• New Audit Event when approval rule is updated (merge request) GitLab Enterprise Edition
• Add list of tag in external pipeline validation api by @lifez (merge request)
• This MR adds breaking changes icon (merge request) GitLab Enterprise Edition
• Add user count to Usage Overview panel on Value Streams Dashboard (merge request) GitLab Enterprise Edition
• Update JiraConnect app_descriptor (merge request)
• Finalize BackfillHasIssuesForExternalIssueLinks background migration (merge request)
• Enable create_vulnerability_jira_issue_via_graphql by default (merge request) GitLab Enterprise Edition
• feat: Protected containers: Protection rules in project settings ui by @gerardo-navarro (merge request)
• Add a new column zoekt_settings in the application_settings (merge request)
• Add a shared avatar image for security policy bots (merge request)
• Add Create New Merge Request button to issues in forked projects (merge request)
• Accept generation_type parameter (merge request) GitLab Enterprise Edition
• Add autocomplete support for wiki pages (merge request)
• Introduces hidden variable to group and ci variables (merge request)
• Enable GitLab for Slack app for Instances and Groups (merge request)
• Add indirect membership API endpoint (merge request) GitLab Enterprise Edition
• Expose created_at field in Tags API (merge request)
• Add topic support for Telegram (merge request)
• Wait for ClickHouse workers before running migrations (merge request)
• Add default_branch attribute to Groups API (merge request)
• Add post migration to set value of occupies_seat column (merge request)
• Add setting for pre-receive secret detection (merge request) GitLab Enterprise Edition
• Remove feature toggle for policy scope (merge request) GitLab Enterprise Edition
• Add '/clear' to Duo Chat commands in addition to '/clean' (merge request) GitLab Enterprise Edition
• Add setting for enabling CS for Registry (merge request) GitLab Enterprise Edition
• AddOnPurchase process trial attribute (merge request) GitLab Enterprise Edition
• Add detailed view for pods and services (merge request)
• Add array types to CI inputs (merge request)
• Add full_path GQL field to ResourceType (merge request)
• Add report abuse button (merge request)
• Add access keyword in artifacts (merge request)
• Finalize PurgeSecurityScansWithEmptyFindingData migration (merge request)
• Work item two column loading skeleton (merge request)
• Add trial column to subscription_add_on_purchases table (merge request) GitLab Enterprise Edition
• Add migration to index all projects (merge request) GitLab Enterprise Edition
• Add usage_count columns to catalog tables (merge request)
• Add a worker Zoekt::MarkReadyWorker (merge request) GitLab Enterprise Edition
• Validate the foreign key & add to routing table commit_id (merge request)
• Add avatar to new achievement form (merge request)
• Add humanized role to removal events in audit details (merge request) GitLab Enterprise Edition
• Added model for instance level event type filters (merge request) GitLab Enterprise Edition
• Add frontend filter for zoekt code search (merge request) GitLab Enterprise Edition
• Add spec column to catalog_resource_components (merge request)
• Make traversal_ids column nullable if it's already not (merge request)
• Add not valid null check constraint for traversal_ids (merge request)

Fixed (141 changes)

• Update pages ci templates - Gatsby (merge request)
• Consider merge request pipelines for license approval policies (merge request) GitLab Enterprise Edition
• Disable personal access tokens for enterprise users (merge request) GitLab Enterprise Edition
• Fix ArgumentError in ProjectApprovalRules API (merge request) GitLab Enterprise Edition
• Add row gap between rows of codeowner approver avatars (merge request) GitLab Enterprise Edition
• Fix hover state of emoji on snippets (merge request)
• Hide New subgroup button if visibility is restricted (merge request)
• Ensure command pallet search respects current ref (merge request)
• Escape markdown characters for Telegram integration (merge request)
• Fix job log link regex (merge request)
• Fix undefined method error when package.json is malformed (merge request)
• Remove unnecessary md header divider when previewing (merge request)
• Fix NoMethodError when an array parameter has an invalid format (merge request) GitLab Enterprise Edition
• MR approval widget: Align text correctly (merge request)
• [Batched Migration] Fix corrupted scanner_ids of vulnerability_reads (merge request) GitLab Enterprise Edition
• Temporarily restore old breadcrumbs UX (merge request)
• Avoid bad MIN query plan during batch count (merge request) GitLab Enterprise Edition
• Show status, milestone and statistics on service desk issue list (merge request)
• Clean up instrumentation key in analytics controller (merge request) GitLab Enterprise Edition
• MR widget approvals: Auto update approvals (merge request)
• Let sub group api update default branch protection defaults (merge request)
• Fix migration error when updating from GitLab 16.9 to 16.10 (merge request)
• MR sidebar: Fix reviewers loading icon position (merge request)
• MR approval in MR list: Fix display of total approvals (merge request) GitLab Enterprise Edition
• Skip license capacity check for security policy bot user (merge request) GitLab Enterprise Edition
• Preserve indirect memberships (merge request)
• Fix border radius on MR diffs (merge request)
• Adapt Graphql path depending on GitHub API endpoint by @daniel.marks (merge request)
• Migrate sbom_occurrences.component_name to match (merge request)
• Fix pipeline complete condition and include manual state (merge request) GitLab Enterprise Edition
• Use 2x image source for avatars smaller than 96px (merge request)
• Prevent access to achievements for private groups (merge request)
• This MR fix scope column in policy list (merge request) GitLab Enterprise Edition
• Fix missing validation for Branches::CreateService (merge request)
• Make milestone titles unique in group hierarchy (merge request)
• Correct parse the canEdit permission for project dropdown items by @espadav8 (merge request)
• Fix 500 error in Commits API when the repository is empty (merge request)
• MR widget: Fix alignment of approval button and text (merge request)
• Fix "Import with projects" button not showing (merge request)
• Fix board scope assignee dropdown results (merge request) GitLab Enterprise Edition
• Invert emails_disabled into emails_enabled (merge request)
• Use locale-specific formatting for VSD table numbers (merge request) GitLab Enterprise Edition
• Correct diff colors & highlighting for none theme by @jameschensmith (merge request)
• Disable sending of Link header in preload_link_tag (merge request)
• Fix job sidebar when artifact access is restricted (merge request)
• This is a small breaking change, and while it's not being done in the by @gitlab-dependency-update-bot (merge request)
• Fix the test report modal (merge request)
• Fix handling of DAGs within a stage in AtomicProcessingService (merge request)
• Fix Duo Chat Popover Design Managment overlapping Bug (merge request)
• Fix epic links in issue sidebar changing to work item link (merge request)
• Fix NoMethodError for tags#date (merge request)
• Support large wiki content in webhooks by @ivantedja (merge request)
• Fix included avatar in the code copy (merge request)
• Use a correct link to group templates docs (merge request) GitLab Enterprise Edition
• Fix URL validator for mirror services when using localhost (merge request)
• Expose branches_to_be_notified field for Telegram API (merge request)
• Fix duplicate "Job suceeded lines" (merge request)
• WIP OVERWRITE LATER (merge request)
• Fail sync when a primary connection is unvailable (merge request) GitLab Enterprise Edition
• Trigger Epic events after transaction has been finished (merge request) GitLab Enterprise Edition
• Update vulnerability_reads scanner in the ingestion pipeline (merge request) GitLab Enterprise Edition
• Strip keywords from chat final answer (merge request) GitLab Enterprise Edition
• Fix native browser navigation in MR single-file mode (merge request)
• Fixes race condition for GFM rendering on issuable description (merge request)
• Branches list: Fix focus states (merge request)
• Fix cache timeout for commands (merge request)
• Fix wiki URLs for wiki webhooks by @ivantedja (merge request)
• Fix size of design management todo button (merge request)
• Strip cookies for asset requests in development and test (merge request)
• Remove echarts <5.x workaround in lead_time_charts (merge request) GitLab Enterprise Edition
• Fix styling of Incident timeline tab in dark mode (merge request)
• Fixes a horizontal scrolling issue for json tables by @fagerburg (merge request)
• Fix blurry avatars when size < 48 (merge request)
• Fix the deprecated_properties method (merge request) GitLab Enterprise Edition
• Pipeline Sec: Fix issue with deleted Jira issue (merge request) GitLab Enterprise Edition
• Fix component include path rendered in the components tab (merge request)
• Fix handling of DAGs within a stage in AtomicProcessingService (merge request)
• Fix handleLocationHash behavior for MRs and issuables (merge request)
• Fix commit status API incorrectly overwriting MR head pipeline (merge request)
• Pipeline Sec: Fix Jira issue creation (merge request) GitLab Enterprise Edition
• Handle null owner when indexing projects (merge request) GitLab Enterprise Edition
• Add search functionality to sub group autocomplete (merge request) GitLab Enterprise Edition
• Initialize hiding tooltip for links with tooltips when clicked (merge request)
• Fix design management notification buttons feature flag (merge request)
• ActionController::UrlGenerationError for old path redirects (merge request)
• Use vue routes for group custom Value Stream Dashboard (merge request) GitLab Enterprise Edition
• Set traversal_ids and archived attributes always (merge request) GitLab Enterprise Edition
• Fix 500 error for erroneous content in markdown footnotes (merge request)
• Update pages ci templates - Nanoc (merge request)
• Fix start_is_fixed and due_date_is_fixed default (merge request) GitLab Enterprise Edition
• Skip migration when the partitioned FK exists (merge request)
• Handle missing pipeline user name in terraform registry UI (merge request)
• Reset pagination page (merge request)
• Fix leave action label for project members (merge request)
• Replace space with HTML entity (merge request) GitLab Enterprise Edition
• Apply inline validation to admin deletion protection settings (merge request) GitLab Enterprise Edition
• Fix webhook test send wrong object kind for tag_push_event by @lifez (merge request)
• Use semaphore for storing security reports (merge request) GitLab Enterprise Edition
• Fix character escaping in fork divergence message (merge request)
• Zoekt: Retry indexing if too many requests (merge request) GitLab Enterprise Edition
• Update pages ci templates - Lektor (merge request)
• Fix focus state for dark mode rounded bottom markdown input (merge request)
• Fix invalid CI input array type default value (merge request)
• Update redis-client to v0.21.1 (merge request)
• Include all changes made to issuable in hook data (merge request)
• Fix markdown header for uses with restricted items (merge request)
• Fix VSD column names not matching the date range (merge request) GitLab Enterprise Edition
• Fix apparent spacing of issuable sidebar content (merge request)
• Pass plan when create trials (merge request) GitLab Enterprise Edition
• Remove ci_fix_input_types feature flag (merge request)
• Fix import of Gitea projects with a dot in owner name or project name by @Cerdic (merge request)
• Strip namespaces from OS component names (merge request) GitLab Enterprise Edition
• Fix check for adminPath in home_panel.vue (merge request)
• Keep scope conditions for associations (merge request)
• Fix the case when mirror trigger builds is not set (merge request) GitLab Enterprise Edition
• Fix new project group templates pagination (merge request) GitLab Enterprise Edition
• Fixes update analytics dashboards project settings (merge request) GitLab Enterprise Edition
• Change CRM Contacts help icon color (merge request)
• Fix line width which separating the timeline events by @antonkalmykov (merge request)
• Pipeline Sec Report: handle Jira issues (merge request) GitLab Enterprise Edition
• Enable 'self' in Content-Security-Policy worker-src directive (merge request)
• Ensure labels in inapplicable task list items are crossed out (merge request)
• Delete callback should use namespace_id (merge request) GitLab Enterprise Edition
• Fix the permission check for pull mirroring (merge request) GitLab Enterprise Edition
• Update pages ci templates - JBake, Jekyll, Jigsaw (merge request)
• Fix Vite HMR Content Security Policy rules (merge request)
• Fix breadcrumb style broken in external_file page (merge request)
• Remove indentation logic to fix Objective child list (merge request)
• Adjust border radius of rounded note input (merge request)
• Project item template: Fix alignment of CI/CD Catalog badge (merge request)
• Return 401 when user sign ins but password authentication is not allowed (merge request)
• Fix autocomplete for long items (merge request)
• Fix scheduling service statement timeout (merge request) GitLab Enterprise Edition
• Make the recently added not null migration no-op (merge request)
• Fix the deprecated_properties method (merge request) GitLab Enterprise Edition
• Allow reset password when password auth is partially disabled (merge request)
• Upgrade gitlab-fog-azure-rm to v1.9.1 (merge request)
• Fix commit markdown parsing with word boundaries (merge request)
• Record unassignment notes for removed member by @euko (merge request)
• Fix Gitlab::HTTP_V2 allowed_internal_uris https scheme (merge request)
• Transfer group labels by @euko (merge request)

Changed (167 changes)

• Place relation import endpoint behind feature flag (merge request)
• Add Google Artifact Registry count to Service Ping (merge request) GitLab Enterprise Edition
• Enable approval rues drawer feature flag (merge request)
• Not throwing error when token not present (merge request)
• Add help text for agent selector on env settings page by @jzeng88 (merge request)
• Improve system note messaging for assumed merges (merge request)
• Export for the new frameworks report (frontend) (merge request) GitLab Enterprise Edition
• Redirect profile ssh keys to user settings (merge request) GitLab Enterprise Edition
• Fix deprecated properties method for multiple policies (merge request) GitLab Enterprise Edition
• Enable moving issue children by default (merge request)
• Redirect profile gpg keys to user settings (merge request)
• Enable epic_color_highlight feature flag by default (merge request) GitLab Enterprise Edition
• Display descendant policies in compliance framework report (merge request) GitLab Enterprise Edition
• Allow relation tree restorer to import single relation (merge request)
• Enable analytics dashboards animations and floating panels (merge request) GitLab Enterprise Edition
• Update feature flag modal text (merge request)
• This MR updates copy for pipeline execution type (merge request) GitLab Enterprise Edition
• Add pagination for the approval rules in the Merge requests settings by @antonkalmykov (merge request) GitLab Enterprise Edition
• Remove orphaned indices for a namespace (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.89.0 (merge request)
• Hide the created_by attribute from group/project non-admins (merge request)
• Limit counters on group deletion (merge request)
• Remove Beta Labels from DuoChat Callout and Sidebar (merge request) GitLab Enterprise Edition
• Add unicode_escaped_blob field (merge request)
• Swap pipeline columns for p_ci_builds (merge request)
• Add info about release notes for policy rename (merge request) GitLab Enterprise Edition
• MR widget: Use secondary text style for merge train message (merge request) GitLab Enterprise Edition
• Snippets: Move embed and clone to actions (merge request)
• MR list: Show self approval (merge request)
• Update design of the pipeline graph (merge request)
• Pipeline overview page: Migrate dropdown to GlDisclosureDropdown (merge request)
• Reduce sbom_occurrences table writes (merge request) GitLab Enterprise Edition
• Added information to product analytics docs (merge request) GitLab Enterprise Edition
• Add the container to the cadence validation ff check (merge request) GitLab Enterprise Edition
• Fix project overview bugs (merge request)
• Allow relation tree restorer to import single relation (merge request)
• Remove scan_result_policies_block_unprotecting_branches feature flag (merge request) GitLab Enterprise Edition
• Left-align activity timestamps on mobile (merge request)
• Remove the need for SaaS to configure Product Analytics (merge request)
• Add action menu to milestone row on milestones page (merge request)
• Move viewed file tooltip to the left; only show on hover (merge request)
• Capture running builds on non-shared runners (merge request)
• Update epics foreign key on parent_id to nullify on delete (merge request)
• Merge request list: Improve approvals (merge request)
• Add metadata database alert to registry pages in the UI (merge request)
• Enable security_policies_unassign_redundant_policy_projects FF (merge request) GitLab Enterprise Edition
• Add a personal argument to Query.projects by @yasuk (merge request)
• Combine snippet embed and clone buttons into single code dropdown (merge request)
• Drop workhorse_google_client feature flag (merge request)
• Update text in deployment approval modal (merge request) GitLab Enterprise Edition
• Distribute scheduled pipelines from Scan Execution Policy (merge request) GitLab Enterprise Edition
• Update DevOps Reports illustrations (merge request) GitLab Enterprise Edition
• Update DevOps Adoption empty state illustration (merge request) GitLab Enterprise Edition
• Update ES shard size rake task and guidelines (merge request) GitLab Enterprise Edition
• Update release empty state illustration (merge request)
• Add sales call to action when onboarding without purchase (merge request) GitLab Enterprise Edition
• Moves ml_experiment_tracking to group::mlops (merge request)
• Truncate individual names (merge request)
• Replace GlAvatar with ProjectAvatar in GroupItems by @espadav8 (merge request)
• Adjust default_enabled to true for wiki_content_background_job flag by @ivantedja (merge request)
• Remove sub-header background from Compare revisions form by @espadav8 (merge request)
• Search iterations in descending order (merge request) GitLab Enterprise Edition
• Allow admins to disable runner registration token (merge request)
• Update issue filter search illustration (merge request)
• Trigger search file modal when searching (merge request)
• Cleanup web_ide_settings_sync feature flag (merge request)
• Update color and spacing of releases page (merge request)
• Make merge conflict file stand out more (merge request)
• Update the cadence documentation for sep (merge request)
• Add alphabetical sort for branch names by @gauravmarwal (merge request)
• Enable product_analytics_beta_option by default (merge request)
• Make product_analytics_dashboards default enabled (merge request)
• Add a validation to the scan execution policy cadence (merge request) GitLab Enterprise Edition
• Update MR changes empty state (merge request)
• Adds logo to MattermostSlashCommands (merge request)
• Update analytics dashboard observability (merge request) GitLab Enterprise Edition
• Keep compliance frameworks for project transfers (merge request) GitLab Enterprise Edition
• This MR adds scope column to policies list (merge request) GitLab Enterprise Edition
• Refactor BulkIndexer to able to handle other document references (merge request) GitLab Enterprise Edition
• Add Mattermost logo (merge request)
• Blocks unprovisioned access to product analytics apis (merge request) GitLab Enterprise Edition
• Add empty state for sidebar CRM widget (merge request)
• Snippets delete modal improvements (merge request)
• This MR adds branch exceptions selector (merge request) GitLab Enterprise Edition
• Move Google Cloud instructions to reduce duplication (merge request)
• Adding alert for duo pro trials for existing users (merge request) GitLab Enterprise Edition
• Deprecate security_auto_fix from graphql type (merge request)
• Show package processing error message returned from API (merge request)
• Add columns for require_reauthentication_to_approve (merge request)
• MR more actions dropdown: Improve alignment on small viewports (merge request)
• Issuables: Improve more actions on smaller devices (merge request)
• Update CreateIssueForm to support Japanese IME (merge request) GitLab Enterprise Edition
• Snippets page: Adjust header elements to match issuables (merge request)
• Change button text from "Create/add new role" to "Create role" (merge request) GitLab Enterprise Edition
• Collapse sidebar on ESC key if in overlay mode (merge request)
• Stop calling the migration's workers and update them to no-op (merge request)
• Unify the more actions kebab menu tooltip behavior (merge request)
• Snippets page: Migrates dropdown to GlDisclosureDropdown (merge request)
• Update dependency auto-deploy-image to v2.88.0 (merge request)
• Improve UX feedback when project deploy feature flags limit is reached by @antonkalmykov (merge request)
• Add provider selection in product analytics onboarding (merge request) GitLab Enterprise Edition
• Add descendant filter to security policies graphql query (merge request) GitLab Enterprise Edition
• Clarify supported signed commits types (merge request) GitLab Enterprise Edition
• Edit branch rule name (merge request)
• Improve license matching when evaluating policies (merge request) GitLab Enterprise Edition
• Update project and group transfer modal text (merge request)
• Updated gitlab-ui and refactored duo chat (merge request) GitLab Enterprise Edition
• This MR adds policy scope to a drawer (merge request) GitLab Enterprise Edition
• Add empty state for discussion in sidebar (merge request)
• Remove namespace alias from DORA performance counts by @jzeng88 (merge request) GitLab Enterprise Edition
• Update importers to use application settings to limit number of jobs (merge request)
• Add placeholder and validation for linkedin profile input (merge request)
• Set AddOnPurchase trail value in CreateService (merge request) GitLab Enterprise Edition
• Use static_holmes instead of charlock_holmes (merge request)
• Make consistent padding in the package asset table row by @antonkalmykov (merge request)
• Add groups_direct field in JWT for Vault integration by @alexandru.jieanu (merge request)
• Export for the new frameworks report (backend) (merge request) GitLab Enterprise Edition
• This MR changes key name for license rule (merge request) GitLab Enterprise Edition
• Well segment: Change border color to default gray-100 (merge request)
• Reorganization project overview page (merge request)
• Fix formatting of issue summaries (merge request) GitLab Enterprise Edition
• Use textarea for collapsed snippet description (merge request)
• Disable file path input until project is selected (merge request)
• Fix and refactor snippets list view (merge request)
• Update markdown styles for quoted lists (merge request)
• Upgrade Elasticsearch version to 8.11.4 (merge request)
• Hide invited group name and source from project/group non-admins (merge request)
• Show Duo Pro button for ultimate trial (merge request) GitLab Enterprise Edition
• Remove claude 2.1 feature flag (merge request)
• Delete redundant policy configurations on assignment (merge request) GitLab Enterprise Edition
• Add $gl-padding margin bottom to
  in open

  (merge request)
• Remove CI_COMPONENT_FQDN variable (merge request)
• Updates model registry table docs with correct schema (merge request)
• Migrate button-class-vue in todo.vue (merge request)
• Cleanup snippets edit page (merge request)
• Update deprecation milestone for job token setting (merge request)
• Change username validation message by @jzeng88 (merge request) GitLab Enterprise Edition
• Backport Work Item copy changes to legacy issuables (merge request)
• Updating tab title (merge request)
• Display project and subgroup counters when deleting group (merge request)
• Issuables: Mark destructive action (delete) as such (merge request)
• Migrates user access badge to use GlBadge (merge request)
• Add logging for JWT errors (merge request)
• Add thread count and remove participants from sidebar (merge request)
• User profile: Hide sidebar if user is blocked (merge request)
• Improved CI YAML schema tests by @zillemarco (merge request)
• Fix runner form headings to match Pajamas (merge request)
• Display created and finshed pipeline times (merge request)
• Use standardized panel errors for Value stream dashboard (merge request) GitLab Enterprise Edition
• Add tooltip to snippet visibility icon (merge request)
• Migrates code dropdown to Vue (merge request)
• Cleaned up code_suggestions_ga_owner_alert feature flag (merge request) GitLab Enterprise Edition
• Improve loading states of sidebar items (merge request)
• Log if pipeline creation limit might be exceeded (merge request)
• Show deployment count (merge request)
• Refactor enterprise_user trait into factory by @jzeng88 (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.87.0 (merge request)
• Change username text color to use same across UI (merge request)
• Remove feature flag fetch_tags_from_registry_api (merge request)
• Remove api: API::Internal::ContainerRegistry::Migration (merge request)
• Do not expand CI predefined TRIGGER_PAYLOAD variable by @vytautasbert (merge request)
• Block compliance fraework removal when there are linked policies (merge request) GitLab Enterprise Edition
• Raise atom feed title length limit to 160 characters by @kxxt (merge request)
• Fix pagination issue on adherences report (merge request) GitLab Enterprise Edition
• Trim further file content for code suggestions (merge request) GitLab Enterprise Edition
• Update milestone icon (merge request) GitLab Enterprise Edition
• Reject project CI jobs on reserved policy stages (merge request) GitLab Enterprise Edition

Deprecated (1 change)

• Deprecate GITLAB_SHARED_RUNNERS_REGISTRATION_TOKEN (merge request)

Removed (19 changes)

• Remove about section (merge request)
• Remove CH analytics related feature flags (merge request) GitLab Enterprise Edition
• Remove modify_auto_fix_setting (merge request)
• Remove beta badge (merge request)
• Clean up default_to_import_tab experiment (merge request)
• Remove ff and policy information related to (merge request)
• Remove the backend changes for automatic diff summary (merge request)
• Remove ignore column rule from GeoNodeStatus (merge request) GitLab Enterprise Edition
• Remove runner registration compatibility alert (merge request)
• refactor: Drop col 'package_name_pattern_ilike_query' Part 3 by @gerardo-navarro (merge request)
• Remove CI text interpolation code (merge request)
• Clean up auto_fix related action and services (merge request) GitLab Enterprise Edition
• Remove final mentions of Ai::SyncServiceTokenWorker (merge request) GitLab Enterprise Edition
• Remove github_import_extended_events feature flag (merge request)
• CI/CD Catalog experiment badge (merge request)
• Remove CH materialized view rebuilding FFs (merge request)
• Remove latest_version from Ci::Catalog::ResourceType (merge request)
• Remove frontend code for security_auto_fix with (merge request) GitLab Enterprise Edition
• Remove ignore column by @imskr (merge request)

Security (7 changes)

• Fix stored xss using the gollum filter (merge request)
• Update Gitlab::Regex::Packages#slack_link_regex (merge request)
• Fix XSS in autocomplete in rich text editor (merge request)
• Correctly parse attachments for junit result (merge request)
• Fix stored xss in wikis using the abstract_reference_filter
• Limit the number of emojis we will transform
• Remove unsafe-inline from CSP (merge request)

Performance (8 changes)

• Preload vulnerability_reads for vulnerability records (merge request) GitLab Enterprise Edition
• Preload releases for Tags API (merge request)
• Added index for member_approval on member_namespace_id and status (merge request)
• Release skipping copy operation in generic packages upload (merge request)
• Enable and remove the FF ci_rule_exists_extension_optimization (merge request)
• Avoid duplicated keys in ProtectedBranches cache (merge request)
• Use replica DB to read ContainerRepository requiring_cleanup ids (merge request)
• Optimize performance of ambiguous ref detection (merge request)

Other (113 changes)

• Removed Tanukibot from Translations by @NIKU-SINGH (merge request) GitLab Enterprise Edition
• Drop a partial index we no longer need (merge request)
• Add relaxed sharding keys for groups_and_projects (merge request)
• Update artifact_state to include partition_id filter for job_artifacts (merge request)
• Remove identity_verification feature flag (merge request)
• Enable save_policy_violation_data by default (merge request) GitLab Enterprise Edition
• Add relaxed sharding keys for source_code_management (merge request)
• Add relaxed sharding keys for continuous_delivery (merge request)
• Add Sidekiq shard-support for active jobs (merge request)
• Update status of namespace in URL path to Beta from Experiment (merge request)
• Add relaxed sharding keys for vulnerability_management (merge request)
• Add relaxed sharding keys for devops_reports (merge request)
• Add relaxed sharding keys for importers (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Support classic tokens only (merge request)
• Adjust UI to new designs (merge request)
• Revert 'ci-rules-exists-add-paths-project-ref' (merge request)
• Return all visible groups for the Organization.groups GraphQL query (merge request)
• Globally enabled the Duo Chat callout (merge request) GitLab Enterprise Edition
• Remove feature flags related to FF merge trains (merge request)
• Remove sbom_occurrences_vulnerabilities feature flag (merge request) GitLab Enterprise Edition
• Remove the FF ci_parallel_remote_includes (merge request)
• Protected packages: Use namespace for external string by @gerardo-navarro (merge request)
• Protected packages + containers: Adjust style and wording in settings UI by @gerardo-navarro (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Quarantine a flaky test (merge request)
• Add and backfill project_id for deployment_approvals (merge request)
• Drop an unnecessary index on merge_requests (merge request)
• Clean up dora_performers_score_panel feature flag (merge request) GitLab Enterprise Edition
• Add relaxed sharding keys for system_access (merge request)
• Add a migration to backfill zoekt_settings in application_settings (merge request) GitLab Enterprise Edition
• Add relaxed sharding keys for pipeline_composition (merge request)
• Add sharding keys for continuous_delivery (merge request)
• Add closes_work_item column to merge_requests_closing_issues (merge request)
• Remove FF search_add_archived_filter_to_zoekt (merge request) GitLab Enterprise Edition
• Fix Style/KeywordParametersOrder offenses by @harryminsky (merge request) GitLab Enterprise Edition
• Fix Lint/RedundantDirGlobSort offenses (merge request)
• Quarantine a flaky test (merge request)
• Add relaxed sharding keys for release_orchestration (merge request)
• Add relaxed sharding keys for continuous_integration (merge request)
• Explicitly pass organization when a user namespace is created (merge request)
• Remove collapse_generated_diff_files FF (merge request)
• Remove search_index_all_projects FF (merge request) GitLab Enterprise Edition
• Remove a partial index with locked_state on merge_requests (merge request)
• Remove usages of FullPath and SetFullPath RPCs (merge request)
• Move ref validation to services (merge request)
• Add development widget to work item types (merge request)
• Create events definitions and reference them on UI elements (merge request)
• Refactor LfsStorageController#upload_finalize into service by @missy-davies (merge request)
• Add relaxed sharding keys for team_planning (merge request)
• Enforce not-null constraint vs_code_settings version (merge request)
• Migrate inputs to spec on CI components table (merge request)
• Remove "fetch_commits_for_bitbucket_server" feature flag (merge request)
• Remove security_policies_policy_scope feature flag (merge request) GitLab Enterprise Edition
• Move right side panel into its own component by @espadav8 (merge request)
• Remove use_registration_type_db_value feature flag (merge request) GitLab Enterprise Edition
• Add next desired sharding keys for code_review_workflow (merge request)
• Add next desired sharding keys for incident_management (merge request)
• Add next desired sharding keys for portfolio_management (merge request)
• Finalize backfill vs_code_settings table migration (merge request)
• Remove arkose_labs_signup_challenge feature flag (merge request)
• Protected containers: Resolve duplicate test assertions by @gerardo-navarro (merge request)
• Add desired sharding keys for geo_replication (merge request)
• Remove group_analytics_dashboards feature flag (merge request) GitLab Enterprise Edition
• Add storage_shard label by decomposing instrumentation class name (merge request)
• Remove feature flag use_partition_id_filter_on_ci_job_artifacts (merge request)
• Finalize migration BackfillDefaultOrganizationUsers (merge request)
• Protected containers: Adjust error message in docker client by @gerardo-navarro (merge request)
• Add desired sharding keys for audit_events (merge request)
• Add desired sharding keys for package_registry (merge request)
• Add desired sharding keys for team_planning (merge request)
• Add desired sharding keys for portfolio_management (merge request)
• Add desired sharding keys for incident_management (merge request)
• Add desired sharding keys for service_desk (merge request)
• Add desired sharding keys for error_tracking (merge request)
• Add desired sharding keys for metrics (merge request)
• Update schema for clusterwide tables in web_ide (merge request)
• Update schema for clusterwide tables in team_planning (merge request)
• Update schema for clusterwide tables in importers (merge request)
• Update schema for clusterwide tables in system_access (merge request)
• Update schema for clusterwide tables in user_profile (merge request)
• Update schema for clusterwide tables in deployment_management (merge request)
• Use PipelineTriggers::DestroyService across endpoints by @missy-davies (merge request)
• Add missing attributes in the search/count endpoint (merge request)
• Update artifacts queries to use partition_id filter (merge request)
• Adds sharding_key to internal_ids (merge request)
• Add sharding keys for error_tracking (merge request)
• Add sharding keys for metrics (merge request)
• Add sharding keys for navigation (merge request)
• Add sharding keys for service_desk (merge request)
• Add sharding keys for incident_management (merge request)
• Remove epic_events_on_contributions_calendar feature flag (merge request)
• Use partitioned foreign key between ci_builds and ci_stages (merge request)
• Use routing tables for ci_job_artifacts and ci_stages (merge request)
• Add relation import tracker and table (merge request)
• Show alert to explain where code suggestions moved (merge request) GitLab Enterprise Edition
• Adding p_ci_build_names table and model (merge request)
• Refactor push_rules_helpers_spec.rb to improve tests speed (merge request) GitLab Enterprise Edition
• Update indentation on yaml docs (merge request)
• Adjust naming in admin network settings by @gerardo-navarro (merge request)
• refactor: Add feature category for rack attack tests by @gerardo-navarro (merge request)
• Finalize migration BackfillDefaultOrganizationOwnersAgain (merge request)
• Remove "external_pipeline_validation_service_url" feature flag (merge request)
• Port the project admin button to Vue by @espadav8 (merge request)
• Drop promote_ultimate_features_at column (merge request)
• Finalize the backfill migration for onboarding status step url (merge request)
• Remove ClusterRepositoryCache migration helper class (merge request)

16.10.7 (2024-06-11)

Security (4 changes)

• XSS and content injection raw XHTML files on IOS devices (merge request)
• Improve go_package_regex to prevent ReDoS attacks (merge request)
• Fix ReDoS in CI Interpolation (merge request)
• Verify Asana access token when testing Asana integration (merge request)

Other (1 change)

• Quarantine a flaky test

16.10.6 (2024-05-21)

Fixed (1 change)

• Ensure BLPOP/BRPOP returns nil instead of raising ReadTimeoutError

Security (6 changes)

• Prevent PDF.js from evaluating scripts (merge request)
• Caching test_report api response to reduce calculations (merge request)
• Fail create commit status on pipeline_id / sha mismatch (merge request)
• Use UntrustedRegexp for gollum pattern (merge request)
• Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html (merge request)
• Add text limit to ci_runners text fields (merge request)

16.10.5 (2024-05-07)

Fixed (1 change)

• Changed the email validation for only encoded chars (merge request)

Changed (1 change)

• Return or display Gitlab version if GITLAB_KAS_VERSION is a SHA

Security (11 changes)

• Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github (merge request)
• Prevent namespace banned users from reading project todos (merge request)
• ReDoS in GitRefsFinder when using wildcards in branch search (merge request)
• ReDos in escape and commit reference filters (merge request)
• Validate request origin before MR approval (merge request)
• Check request size before updating user pins (merge request)
• Enforce per_page validation for Branches/TagsFinders (merge request)
• Update Integrations::Discord::ATTACHMENT_REGEX regex (merge request)
• Update BaseMessage::RELATIVE_LINK_REGEX regex (merge request)
• Require confirmation before linking JWT identity (merge request)
• Fix confidentiality check optimization (merge request)

16.10.4 (2024-04-24)

Fixed (1 change)

• Update vulnerability_reads scanner in the ingestion pipeline GitLab Enterprise Edition

Security (5 changes)

• Validation for encoded formatting characters (merge request)
• Forbid untrusted sign-ins to GitLab with Bitbucket and fix related uid (merge request)
• Ensure PAT scope is validated everywhere for GraphQL/ActionCable (merge request)
• Protect against ReDoS in FileFinder with wildcard filters (merge request)
• fix: Validate security report version against schema during parsing (merge request)

16.10.3 (2024-04-12)

No changes.

16.10.2 (2024-04-09)

Fixed (1 change)

• Fix URL validator for mirror services when using localhost

Security (3 changes)

• Update Gitlab::Regex::Packages#slack_link_regex (merge request)
• Fix XSS in autocomplete in rich text editor (merge request)
• Correctly parse attachments for junit result (merge request)

16.10.1 (2024-03-27)

Fixed (2 changes)

• Update redis-client to v0.21.1
• Fix new project group templates pagination GitLab Enterprise Edition

Security (3 changes)

• Merge branch 'dchevalier2-master-patch-88770' into 'master' (merge request)
• Limit the number of emojis we will transform (merge request)
• Fix stored xss in wikis using the abstract_reference_filter (merge request)

16.10.0 (2024-03-20)

Added (115 changes)

• Add drawer to list of linked policies (merge request) GitLab Enterprise Edition
• Command palette default opening state - part 3 (merge request)
• Expose repository object format via GitInfo (merge request)
• Add deprecated_policy field for approval policies (merge request)
• Add approval rules drawer component (merge request) GitLab Enterprise Edition
• Expose external issue links to Vulnerabilities if any (merge request) GitLab Enterprise Edition
• Add table to track CI component usage (merge request)
• Add Pages URL anchor (merge request)
• Update Jira::JqlBuilderService to support multiple project keys (merge request)
• Add new achievement UI (merge request)
• Protected containers: GraphQL query for container protection rules by @gerardo-navarro (merge request)
• Add runner creation metrics (merge request) GitLab Enterprise Edition
• Allow to enable/disable ClickHouse for analytics (merge request) GitLab Enterprise Edition
• Adds Destroy action to delete models (merge request)
• Added event type filters for group audit event destinations (merge request) GitLab Enterprise Edition
• This MR adds alert banner (merge request) GitLab Enterprise Edition
• Create partitioned merge_request_diff_commits copy (merge request)
• Allow toggling duo_features_enabled settings via REST API (merge request) GitLab Enterprise Edition
• Document runner long polling configuration (merge request)
• Prepare async indices for dependency list aggregations (merge request)
• Add GitHub integration's logo (merge request) GitLab Enterprise Edition
• Add Cloud Connector docs for new backends (merge request)
• Synchronously add indexes for new vulnerability_occurrences cols (merge request)
• Backfill semvar columns of existing catalog versions (merge request)
• Allow toggling duo_features_enabled on Groups via GraphQL (merge request) GitLab Enterprise Edition
• API customizations for service account user (merge request)
• Add diff_id to diff file links (merge request)
• Check duo_features_enabled setting by default (merge request) GitLab Enterprise Edition
• Add policy list when editing compliance framework (merge request) GitLab Enterprise Edition
• Backfill has_issues for Vulnerability::Read rows with ExternalIssueLink (merge request)
• Remove "dynamic_empty_tree_id" feature flag (merge request)
• Adds /convert_to_ticket quick action (merge request)
• Adds activity page to Organization level (merge request)
• Backfill archived and traversal_ids for vulnerability_reads (merge request)
• Cloud Connector: support extra claims in JWT (merge request) GitLab Enterprise Edition
• Add visibility filter in groups API by @imskr (merge request)
• Update JiraConnect app_descriptor (merge request)
• Add user permission type for finding (merge request) GitLab Enterprise Edition
• [Ban AI] Audit duo_features_enabled changes (merge request) GitLab Enterprise Edition
• Add application limit on downstream pipelines (merge request)
• Show admin mode within active sessions view by @bufferoverflow (merge request)
• Add support for templates in wikis (merge request)
• Add filter support for enterprise in GraphQL group members by @imskr (merge request)
• Add service to send Arkose truth data (merge request)
• Add php support for semgrep (merge request)
• Adds logo for DroneCI integration (merge request)
• Remove WIP feature flag (merge request) GitLab Enterprise Edition
• Add initial & latest pipeline IDs to vulnerability_occurrences (merge request)
• Add Remove Group custom ability (merge request) GitLab Enterprise Edition
• Add support for sorting GET /groups/:id/projects by star count by @imskr (merge request)
• Configurable session cookie token prefix (merge request)
• Add CI_COMPONENT_FQDN variable and usage instructions (merge request)
• Add table to support new group-agent authorization strategy for RD (merge request)
• feat: Protected packages: Update protection rules in project settings ui by @gerardo-navarro (merge request)
• Expose groups and projects allow list counters on graphQL (merge request)
• Add time tracking widget to the work item update mutation (merge request)
• Show target branch of MRs in Global Search by @santigl (merge request)
• Add at least one approval by non author SOC 2 adherence check (merge request) GitLab Enterprise Edition
• Add occupies_seat column to member_roles table (merge request) GitLab Enterprise Edition
• Add REST API to fetch project's groups allowlist (merge request)
• Add starrers_path to Catalog::ResourceType (merge request)
• Added documentation for workflow:auto_cancel:on_job_failure by @zillemarco (merge request)
• Add new checkbox for optional data in service ping (merge request)
• Display message when git rate limited by failed auth attempts (merge request)
• Add new generic worker to handle auto merges from events (merge request)
• This MR adds policy scope on project level (merge request) GitLab Enterprise Edition
• Remove ci_data_ingestion_to_click_house feature flag (merge request)
• Remove run_clickhouse_migrations_automatically feature flag (merge request)
• Added code to queue member promotion request (merge request) GitLab Enterprise Edition
• Add deployments_count field (merge request)
• Copy VSA query params to issue analytics link (merge request) GitLab Enterprise Edition
• Add ops flag to disable cookie-based language switcher (merge request)
• Added first part of the command palete update - part 2 (merge request)
• Add an avatar to security policy bot (merge request) GitLab Enterprise Edition
• Add yaml_error_messages graphql field (merge request)
• Add VSA aggregation status to GraphQL (merge request) GitLab Enterprise Edition
• Add ops FF to reduce the export batch size (merge request)
• Add Cloud Connector developer docs (merge request)
• Add endpoint to update group approval rules (merge request) GitLab Enterprise Edition
• Default enable collapse_generated_diff_files feature (merge request)
• Add option to sort ciCatalogResources by star count (merge request)
• Add duo_features_enabled cascading setting (merge request) GitLab Enterprise Edition
• Bulk ingest archived and traversal_ids values for security reports (merge request) GitLab Enterprise Edition
• Add parallel_project_export feature flag (merge request)
• Update denoramlized vuln read archived when projects are archived (merge request) GitLab Enterprise Edition
• Prepare issues table to backfill work items for epics (merge request)
• Keep showing create issue loading spinner while redirecting (merge request) GitLab Enterprise Edition
• Purge old security_scans records on self-hosted installations (merge request)
• Add custom payload template to webhooks by @Taucher2003 (merge request)
• Adds association count on organization level (merge request)
• Add migration to add count fields to projects (merge request) GitLab Enterprise Edition
• Add metrics for keep-around ref creation (merge request)
• Add remove_child quick action for work items (merge request)
• Support job:rules:interruptible in CI config (merge request)
• Add semantic version validation for catalog versions (merge request)
• Adds attribution_notice to Bugzilla integration (merge request)
• Run security reports ingestion for pipeline blocked with manual jobs (merge request) GitLab Enterprise Edition
• Add Kubernetes overview on the Environment details page (merge request)
• Enable VSA cumulative duration calculation (merge request) GitLab Enterprise Edition
• Adds search support to user organizations GraphQL query (merge request)
• Add configuration settings for Arkose client API (merge request)
• WorkItems rolledup dates: make fixed dates nullable on graphql (merge request) GitLab Enterprise Edition
• Add throttling to bulk assignments (merge request) GitLab Enterprise Edition
• Reuse existing projects & groups resolvers for Organization (merge request)
• Cancel a pipeline when configured to auto cancel on first job failure by @zillemarco (merge request)
• feat: Protected packages: Delete protection rules in project settings ui by @gerardo-navarro (merge request)
• Replace FKs for p_ci_job_artifacts (merge request)
• Validate the foreign key & add to routing table upstream_pipeline_id (merge request)
• Sync create indexes and prepare FK for p_ci_builds commit_id (merge request)
• Prepare async index for p_ci_builds.runner_id and project_id (merge request)
• Use built-in multiline block quotes from parser (merge request)
• Add application setting for limit of merge request approval policies (merge request) GitLab Enterprise Edition
• Enable project redirect when fetching CI components (merge request)
• Add the ability to sort findings (merge request) GitLab Enterprise Edition
• Fix WorkItems::RolledupDatesFinder (merge request) GitLab Enterprise Edition

Fixed (165 changes)

• AdvisoryScanner recovers invalid version error (merge request) GitLab Enterprise Edition
• Add rake task to delete orphan artifact objects (merge request)
• Fixed search input at small sizes (merge request)
• Fix sidebar padding problem for issue lists (merge request)
• Fix incorrect dashboards link within onboarding flow (merge request) GitLab Enterprise Edition
• Bulk deletes should respect search_index_all_projects FF (merge request) GitLab Enterprise Edition
• Fix links to project issues redirect to wrong server by @lifez (merge request)
• Truncate description and solution when ingesting Vulnerabilities (merge request) GitLab Enterprise Edition
• Fix a bug when mvn uses the dependency proxy with basic auth (merge request)
• Fix style problems for issues list on small screen (merge request)
• Fix Repository analytics commit statistics failing to render (merge request)
• Allow users to use _EXCLUDED_ANALYZERS variable in SEP (merge request) GitLab Enterprise Edition
• Update pages ci templates - Hexo, Hugo, Hyde (merge request)
• Design management: Fix overflow of video (merge request)
• Limit security policy project resolver suggestions (merge request) GitLab Enterprise Edition
• Make sure spinner occupies enough vertical space (merge request)
• Issuable sidebar: Improve promotions and hide empty section (merge request)
• Change bootstrap migration reset font weight bold value (merge request)
• Prevent mutating line endings (merge request)
• Resolve validation failing for theme_id when previous dark mode value 11 (merge request)
• Add exit status when backup fail by @lifez (merge request)
• Clear search input when selecting or deselecting a reviewer (merge request)
• Refactor Vue shared SettingsBlock (merge request) GitLab Enterprise Edition
• Clarify ambiguous instructions (merge request) GitLab Enterprise Edition
• Fix encoding error when downloading archive (merge request)
• Resolve Issue list page size control overlap (merge request)
• Fix pagination in wiki pages and templates (merge request)
• Ensure that scan-policies stage is added after .pre (merge request) GitLab Enterprise Edition
• Fix compliance framework graphql query to return correct policies (merge request) GitLab Enterprise Edition
• Ensure scope validation only for classic pats (merge request)
• Reload HEAD diff when MR is marked as mergeable (merge request)
• Fix for avatar cache not clearing on update (merge request)
• Fix Issues Analytics first-of-month loading error (merge request) GitLab Enterprise Edition
• Fix namespace reset (merge request)
• Prepare push rules for committer email change (merge request)
• Empty repo: Hide empty sidebar blocks (merge request)
• Fix incorrect audit event name being logged when a user is rejected (merge request) GitLab Enterprise Edition
• Style fixes for board top bar on small screens (merge request) GitLab Enterprise Edition
• Emoji picker: Fix icon for legacy notes (merge request)
• Fix policy variables in scheduled pipelines (merge request) GitLab Enterprise Edition
• Enable feature flag "fetch_commits_for_bitbucket_server" by default (merge request)
• Fix missing require for users development seed (merge request)
• Fix finding modal when dismissed by is null (merge request) GitLab Enterprise Edition
• Fix user having custom role in multiple objects in a hierarchy (merge request) GitLab Enterprise Edition
• Use sentence case for DORA metrics titles (merge request) GitLab Enterprise Edition
• Update pipeline_triggers plan limits to 25k for trials and opensource (merge request)
• This MR fixes header for security policies (merge request) GitLab Enterprise Edition
• Change "Create new Value Stream" to "New value Stream" (merge request) GitLab Enterprise Edition
• Fix DiffStatsType encoding error (merge request)
• Use user locale to display delimiters and separators in storage usage (merge request) GitLab Enterprise Edition
• Export & Import diff note's diff file (merge request)
• Handle version conflict errors in ElasticDeleteProjectWorker (merge request) GitLab Enterprise Edition
• Assignees widget dropdown reordering of selected users (merge request)
• Inspect start_branch_name if provided (merge request)
• Fix search within Environments folder (merge request)
• Move focus to "What's new" drawer when opened (merge request)
• Fix page overflow with long MR titles (merge request)
• Release fetching all npm package tags (merge request)
• Update Duo Pro Card to to show Add seats button for SM (merge request) GitLab Enterprise Edition
• Supply the sequence name to the partitioning helper (merge request)
• Fix autocomplete issue on design management comment form (merge request)
• Run specs with elastic_clean trait (merge request)
• Fix link to check out MRs locally (merge request)
• Do not raise CI lint exception if repository is empty (merge request)
• Remove memoization for existing_sequence (merge request)
• Fixes missing "cancel" job button in admin jobs (merge request)
• Fix line highlighting (merge request)
• Fix auth to dependency proxy with service account (merge request)
• Add SaaS check when fetching instance member roles (merge request)
• Proposed format changes for CI/CD Analytics (merge request)
• Include epic events on Profile page heat map by @zzaakiirr (merge request)
• Manage external issue tracker links to Vulnerabilities using events (merge request) GitLab Enterprise Edition
• Change DuoChat z-index value to put it behind the feedback modal (merge request) GitLab Enterprise Edition
• Check merge request's head_sha pipeline instead of latest (merge request) GitLab Enterprise Edition
• Expose auth_method for remote mirrors via API (merge request)
• Fix container repositories checksum mismatch errors (merge request) GitLab Enterprise Edition
• Make enum consistent to vulnerability enum (merge request) GitLab Enterprise Edition
• Change query for assignee users to autocomplete query (merge request)
• Fix composability of :published_event with :not_publish_event (merge request)
• Fixes duplicate users in search suggestions (merge request)
• Fix boolean and number input types (merge request)
• Google Chat: Support inline replies by @robbie-demuth (merge request)
• Web IDE Link: Hide button if empty (merge request)
• Fix multi-line highlighting (merge request)
• Use pre-wrap to both preserve whitespace and wrap long lines (merge request)
• Use sentence case for VSA Lifecycle metric titles (merge request) GitLab Enterprise Edition
• Fixes bug where Geo servers may leave orphaned Upload rep. stuck (merge request) GitLab Enterprise Edition
• Update proxied request to use secondary for push_from_secondary (merge request) GitLab Enterprise Edition
• Fix alert showing for unlimited schedules (merge request)
• Add support for sidebar, example and openblock in AsciiDoc (merge request)
• Fixed contributor count metric in VSD comparison table (merge request) GitLab Enterprise Edition
• Fix popover position for dependency list export (merge request) GitLab Enterprise Edition
• Increase packages_pypi_metadata keywords text limit (merge request)
• Re-introduce drop user_interacted_projects table (merge request)
• Do not remove indentation when pasting in code block (merge request)
• Geo: Fix incorrect return values (merge request) GitLab Enterprise Edition
• Hide roles and permissions page from admin area when in SaaS mode (merge request) GitLab Enterprise Edition
• Fix required approvals for mixed policies (merge request) GitLab Enterprise Edition
• Handle projects not found in Zoekt indexer worker (merge request) GitLab Enterprise Edition
• Handle a deletion of deployments for the removed repository (merge request)
• Fix link anchors for synthetic system notes (merge request)
• Fix issue with uploading images sometimes (merge request)
• Merge when checks pass should not need a pipeline to merge (merge request)
• Fix participants query in MR list page (merge request)
• Fix Container Registry Path (merge request)
• Job status: Add missing status text to GraphQL query (merge request)
• Improve show/hide logic of cube query generation frontend (merge request) GitLab Enterprise Edition
• Ensure errors.css is interpreted as UTF-8 encoding (merge request)
• Keep code dropdown open when focusing clone inputs (merge request)
• Fixed Shows branch name in non-blobs scopes (merge request)
• Fix policy bot comment layout (merge request) GitLab Enterprise Edition
• Fix overwriting the SOURCE_CODE variable in Code Quality (merge request)
• Emoji picker height in user edit profile page (merge request)
• Fix highlight worker event ordering (merge request)
• Fix vulnerabilities seeder (merge request)
• Don't escape query in "Search or go to..." modal twice by @syvb (merge request)
• Mark issuable-resource-links as unique on create by @tomasz.skorupa (merge request) GitLab Enterprise Edition
• Fix queue purge security scans migration (merge request)
• Enable user/group pages access when namespace_in_path is enabled (merge request)
• Pipeline Status: Add aria-label (merge request)
• Adds the empty string fallback for organization description field (merge request)
• Check the actual bytesize of a Sentry JSON payload (merge request)
• Fix delete text on attach file toolbar button (merge request)
• Profile page: Fix whitepsace issue (merge request)
• Fix boolean and number input types (merge request)
• Make /clear_weight work when weight is 0 (merge request) GitLab Enterprise Edition
• Adds users_organization_path to the organization home page (merge request)
• Make bundler-checksum work with RubyGems 3.5.6 (merge request)
• Repository: Fix code owners question icon color (merge request) GitLab Enterprise Edition
• Board - Fix creating issue in board scoped to iteration (merge request) GitLab Enterprise Edition
• Add conditional operator to check for descriptionVersion being null (merge request)
• Mark code_suggestions as ignored (merge request)
• Fix alert showing for guest/reporter (merge request)
• Project list item: Fix avatar spacing and alignment (merge request)
• Add a safeguard against non-matching diff discussion positions (merge request)
• Prevent policy bot message on non-applicable branches (merge request) GitLab Enterprise Edition
• Set correct state for Apply button after action (merge request) GitLab Enterprise Edition
• Scope rejected projects query for better performance (merge request) GitLab Enterprise Edition
• Hide "email a new issue" on archived issues lists (merge request)
• Consider pipelines with supported sources for MR approval policy (merge request) GitLab Enterprise Edition
• Fix Search::Zoekt.index? logic (merge request) GitLab Enterprise Edition
• Remove gl-z-index-200 from inline findings icon (merge request) GitLab Enterprise Edition
• Reintroduces error tracking approximate user count (merge request)
• Rename security dashboard graphql error alert (merge request) GitLab Enterprise Edition
• Fix including CI files in pipeline execution policy (merge request) GitLab Enterprise Edition
• Ignore compliance CI config when source is on-demand DAST scan (merge request) GitLab Enterprise Edition
• Merge request checks: Fix right alignment of actions (merge request)
• Readme: Fix anchor overflow behavior when collapsed (merge request)
• Update pages ci templates - Doxygen (merge request)
• Fix Geo: Personal snippets not syncing (merge request) GitLab Enterprise Edition
• Vulnerability Details: Fix code-snippet rendering (merge request) GitLab Enterprise Edition
• This MR fixes alignment (merge request) GitLab Enterprise Edition
• Add error recovery for package metadata sync (merge request)
• Readmore shadow: Fix darkmode (merge request)
• Fix GitLab for Slack app disabled when uninstalled (merge request)
• Add spacing to "Awaiting user signup" badge by @yonghyun.jin13 (merge request)
• Fix the name of a missing svg for the tests reports (merge request)
• Changes the empty state illustation from CI/CD Analytics (merge request)
• Fix error from using inputs in some cases (merge request)
• Fix deny_all_requests_except_allowed of AddressableUrlValidator (merge request)
• Fix File Browser height update on merge request tab change (merge request)
• Account for typed code block responses from the LLM (merge request) GitLab Enterprise Edition
• Make variable value listbox searchable (merge request)
• Hide exposed artifacts when there are none (merge request)
• Fix permissions check for runner usage by project (merge request)

Changed (207 changes)

• Change pipeline schedule button text (merge request)
• Update MR empty states (merge request)
• Updated the texts in the Protected environments under CI/CD Settings tab by @antonkalmykov (merge request) GitLab Enterprise Edition
• Projects: Improve pending deletion visibility and message (merge request)
• Audit member access on destroy (merge request) GitLab Enterprise Edition
• Design management add ability to toggle comments (merge request)
• Clarify audit event type script text (merge request)
• Improve error message when job is missing an artifact (merge request)
• Disable release button for catalog resources (merge request)
• Guided setup for Google Cloud IAM integration - 3 (merge request) GitLab Enterprise Edition
• This MR changed default state for policy scope (merge request) GitLab Enterprise Edition
• Update todo and notifications for work items (merge request)
• Update commits empty state (merge request)
• Update kubernetes cluster empty state (merge request)
• Added new columns and removed unwanted not null constraint (merge request) GitLab Enterprise Edition
• Allow milestones to be specified by full path (merge request)
• Assign default security policy stage (merge request) GitLab Enterprise Edition
• Improve environments dashboard (merge request) GitLab Enterprise Edition
• Update frontend versioning (merge request)
• Decouple dark color mode from navigation themes (merge request)
• Update UI text by @jrachelr1 (merge request)
• Modified source of the current scope (merge request)
• Align merge request sticky header with static header (merge request)
• Change column null for traversal_ids of the vulnerability_reads (merge request)
• Migrate sbom_components.name so to match PEP 503 (merge request)
• File header: Use variable instead of magic number (merge request)
• apps/pipeline_details: Copy full commit id (merge request)
• User profile sidebar: Fix alignment of user details (merge request)
• Expose policy_scope in security policy graphql API (merge request) GitLab Enterprise Edition
• Update compare empty state (merge request)
• Rename variable to CI_SERVER_FQDN to match expected value (merge request)
• Remove cached_conflicts_with_types feature flag (merge request)
• Correctly style labels in filtered search (merge request)
• Update docs to clarify framework removal (merge request) GitLab Enterprise Edition
• Projects: Improve archived visibility and message (merge request)
• Removes database migrations up to 16-1-stable-ee (merge request)
• Update service desk empty state illustration (merge request)
• Update surface alerts empty state illustration (merge request)
• Guided setup for Google Cloud IAM integration - 2 (merge request) GitLab Enterprise Edition
• Only show epic lane header shadow when it overlaps (merge request) GitLab Enterprise Edition
• Use new ScalarValidator for variables CI keyword (merge request)
• Billing page does not scale with large font sizes (merge request) GitLab Enterprise Edition
• Removes testable method from EWM (merge request)
• Change todo re-add button icon and title (merge request)
• Update Terraform modules empty state illustration (merge request)
• Remove merge_request_diff_generated_subscription feature flag (merge request)
• This MR adds validation for policy scope (merge request) GitLab Enterprise Edition
• Keeps compliance frameworks for project transfers (merge request) GitLab Enterprise Edition
• Update incident empty state illustration (merge request)
• Consolidate all google cloud support feature flags into one (merge request) GitLab Enterprise Edition
• Guided setup for Google Cloud IAM integration - 1 (merge request) GitLab Enterprise Edition
• Update to redis-client v0.21.0 (merge request)
• Update profile empty state (merge request)
• Update UI text replacing 'catalog resource' with 'catalog project' (merge request)
• Add environments empty state illustration (merge request)
• Swap columns auto_canceled_by for p_ci_builds (merge request)
• Remove sort direction sync between columns on vulnerability report (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.86.0 (merge request)
• Remove "ref_extract_sha256" feature flag (merge request)
• Backfill traversal_ids and archived to sbom_occurrences (merge request)
• Update copy for trials/duo_pro/new (merge request) GitLab Enterprise Edition
• Add a link to the starrer's page on project stars in the CI/CD catalog by @antonkalmykov (merge request)
• Expands adherence report group by dropdown (merge request) GitLab Enterprise Edition
• Update docs for security_approval_policies_limit application setting (merge request)
• Add safe rel attribute on links with target "_blank" (merge request)
• Update MR sidebar reviewer status icons (merge request)
• Expose policy_scope in policy graphql API (merge request) GitLab Enterprise Edition
• Rename Google Artifact Registry integration (merge request) GitLab Enterprise Edition
• AI docs: explicitly mention use of HTTPS (merge request)
• Default enable FF include_manual_to_pipeline_completion (merge request) GitLab Enterprise Edition
• Add image size recommendation to avatar settings (merge request)
• Allow adding an Organization to an User Namespace (merge request)
• Allow /help to accept either page title in front matter or in Markdown (merge request)
• Update scaler and overlay color on design detail (merge request)
• Link fast-forward Merge Requests to deployment (merge request)
• Mark vulnerabilitiesRemoveAllFromProject mutation as stable (merge request) GitLab Enterprise Edition
• Replace geo-replication-empty illustration (merge request) GitLab Enterprise Edition
• This MR adds new properties for toggle_list (merge request) GitLab Enterprise Edition
• Improve Google Cloud IAM integration UI text (merge request) GitLab Enterprise Edition
• Rollout zoekt_cache_search_responses feature (merge request) GitLab Enterprise Edition
• This MR select all reset option (merge request) GitLab Enterprise Edition
• Render project name with namespace in runner usage (merge request) GitLab Enterprise Edition
• Design management - Move issue title (merge request)
• Change security pipeline execution policy stages strategy (merge request) GitLab Enterprise Edition
• Cleanup update_vuln_reads_traversal_ids_via_event FF (merge request) GitLab Enterprise Edition
• Emphasize integration reset button (merge request)
• Activity feed: Make content better searchable (merge request)
• Remove outdated illustrations (merge request)
• Pipeline MiniGraph dropdown: Keep open when modifier is pressed (merge request)
• Project/Group overview: Add settings link to kebab menu (merge request)
• Add optional project labels to keep-around ref metrics (merge request)
• Add option to keep shared groups when filtered by parent (merge request) GitLab Enterprise Edition
• Use pluralized string for Job/Jobs count label on jobs/pipelines page by @antonkalmykov (merge request)
• Make the date format consistently across the CI/CD Catalog by @antonkalmykov (merge request)
• Redact SAMLResponse from logs (merge request)
• Darken light blue and green theme for contrast (merge request)
• Add illustration to Value Stream Analytics empty state (merge request)
• Upgraded Web IDE to 0.0.1-dev-20240226152102 (merge request)
• Added namespace actor to PA billing feature flag (merge request) GitLab Enterprise Edition
• Update design management discussion as per new UX (merge request)
• Add color_mode_id column to users table (merge request)
• Allow /help to accept either index.md or _index.md as a docs index page (merge request)
• Update regex for normalize_pypi to align with (merge request)
• Cleanup free_user_cap_over_limit_email FF (merge request) GitLab Enterprise Edition
• Add prefix to Operations::FeatureFlagsClient#token by @jzeng88 (merge request)
• Use skeleton loader for artifacts loading state (merge request)
• Additional cleanup for external usernames on oAuth and LDAP sign up (merge request)
• Design management - Move todo button (merge request)
• Update Cloud Connector architecture blueprint (merge request)
• Replace manual and failed pipeline illustrations (merge request) GitLab Enterprise Edition
• Enable continuous container scanning by default (merge request) GitLab Enterprise Edition
• Default enable FF search_index_all_projects (merge request) GitLab Enterprise Edition
• Replace milestone promotion banner with alert (merge request)
• Update Rails to 7.0.8.1 (merge request)
• Update GITLAB_PAGES_VERSION (merge request)
• Update version outdated text (merge request)
• Add approval group rule get endpoint (merge request) GitLab Enterprise Edition
• Reword Project.services field deprecation (merge request)
• Beautify groups (merge request)
• Use helpPagePath to Render terraform module registry links by @jzeng88 (merge request)
• Remove $white color to improve dark mode (merge request)
• Update dependency auto-deploy-image to v2.85.0 (merge request)
• Remove backtrace silencer for app dir (merge request)
• Open Deployments tab when no K8s integration set for Environment (merge request)
• Enable custom_webhook_template by default by @Taucher2003 (merge request)
• Profile page: Increase spacing after profile avatar (merge request)
• Clean up successful free_trial_registration_redesign experiment (merge request) GitLab Enterprise Edition
• Remove feature flag and update docs (merge request)
• Add ability to unsubscribe from design management notifications (merge request)
• Make sign in tabs fully Pajamas compliant (merge request)
• Remove Gitlab.com check for ContainerRepository#size (merge request)
• Add Search::Zoekt::Task (merge request)
• This MR extend compliance framework list (merge request) GitLab Enterprise Edition
• GCP WLIF script improvements (merge request) GitLab Enterprise Edition
• Show more specific error messages (merge request)
• Add logos to JetBrains integrations (merge request)
• Update default bot comment text when approvals required (merge request) GitLab Enterprise Edition
• Clean up encoding_logs_tree FF (merge request)
• Update column title (merge request)
• Renaming column type to category for external audit event destinations (merge request) GitLab Enterprise Edition
• Add additional analytics dashboard user events (merge request) GitLab Enterprise Edition
• Moves full stop out of "Learn More" link by @r2abreu (merge request)
• Replace cluster_popover illustration (merge request)
• Declare service_access_tokens table clusterwide (merge request)
• Fix emoji picker (merge request)
• Design management - Update layout of image preview (merge request)
• Update branch rules via global id (merge request) GitLab Enterprise Edition
• Fix pull lfs files issue by @chaomao (merge request) GitLab Enterprise Edition
• Use entity full_path for page title / breadcrumbs (merge request)
• Clarified work items FF naming (merge request)
• Epic boards - Display Ancestors in sidebar when subepics are allowed (merge request) GitLab Enterprise Edition
• Backfill non-instance admins into the organization users table (merge request)
• Switch repository backups to use manifests only (merge request)
• Remove the Kubernetes overview section from the Environments page (merge request)
• Implement BranchRules::UpdateService (merge request)
• Change route for /details to /failures with id (merge request)
• Add form validation for cube query generation input (merge request) GitLab Enterprise Edition
• Update repositories analytics empty states (merge request) GitLab Enterprise Edition
• Expand sidekiq queue_groups to default (merge request)
• Change vulnerabilities.finding_id column to NOT NULL (merge request) GitLab Enterprise Edition
• Pipeline MiniGraph: Migrate dropdown to GlDisclosureDropdown (merge request)
• Changed Terraform Modules history wording by @jzeng88 (merge request)
• Fix bitbucket spread cal job by @imskr (merge request)
• Update dependency auto-deploy-image to v2.83.0 (merge request)
• Refactor compliance frameworks export backend (merge request) GitLab Enterprise Edition
• Fix blurry avatar in profile (merge request)
• Clean up promote_ultimate_features experiment (merge request) GitLab Enterprise Edition
• Now allowing expired trials to see Trial Discover Page (merge request) GitLab Enterprise Edition
• Route projects by root namespace id (merge request) GitLab Enterprise Edition
• Open "Create Slack app" link in new tab (merge request)
• api/runners: Expose maintenance_note in details and editing (merge request)
• Code dropdown: Migrate to GlDisclosureDropdown (merge request)
• User profile: Show 7 achievements instead of 3 (merge request)
• Reorders work item sidebar widgets (merge request)
• Adjust environment and sync status badges on environments page by @antonkalmykov (merge request)
• Use color for protected/default branches/tags (#439551) by @abh80 (merge request)
• Use createdAt instead of releasedAt (merge request)
• Update cube query generation UI (merge request) GitLab Enterprise Edition
• Update sha method depending of release presence (merge request)
• Fixing rubocop exceptions in tests (merge request)
• Rename "Runner" header to "Runner configuration" (merge request)
• workhorse: Downgrade incomplete multipart uploads to 400 errors (merge request)
• Remove redundant "runner statuses" popover in the runners list (merge request)
• Sort personal projects on profile page by last_activity_at (merge request)
• Unify collapse\expand all unresolved threads action (merge request)
• Improve environments dashboard (merge request)
• Enable group_level_dependencies_filtering by default (merge request) GitLab Enterprise Edition
• Abbreviate long numbers in groups/projects list (merge request)
• Remove namespace validation for policy_scope (merge request) GitLab Enterprise Edition
• Allow only top level groups for ApprovalGroupRules (merge request) GitLab Enterprise Edition
• Dashboard: Use SingleStatComponent (merge request) GitLab Enterprise Edition
• Update redis-client to v0.20.0 (merge request)
• Use less ambiguous parameter names in CI lint API (merge request)
• Use Duo Chat for explain code feature (merge request) GitLab Enterprise Edition
• Add tabs to Environment details page (merge request)
• Truncate long dashboard descriptions on list page (merge request) GitLab Enterprise Edition
• Populate topics slug column from name column by @zzaakiirr (merge request)
• Update layout and styling of billing/plan_component (merge request) GitLab Enterprise Edition
• Update milestone banner illustration (merge request) GitLab Enterprise Edition
• Update alert settings tests (merge request)
• Move color widget update to a callback (merge request) GitLab Enterprise Edition
• Only allow group approval rules to be created by group admins (merge request) GitLab Enterprise Edition
• MR approval widget: Fix alignment (merge request)
• MR ready message: Fix alignments (merge request)
• Update UI text with purchasing instructions (merge request) GitLab Enterprise Edition
• Migrate todos empty state component (merge request)
• Migrate applications empty state component (merge request)

Removed (24 changes)

• Remove auto fix worker with migration (merge request)
• Remove issues_completed_analytics_feature_flag FF (merge request)
• Remove unused EOA bronze banner code and feature flag (merge request)
• Remove use_primary_for_update_computations FF (merge request)
• Remove ci_catalog_components_tab (merge request)
• Remove obsolete logic behind a feature flag (merge request)
• Drop third_party_ai_features_enabled column (merge request)
• Remove delayed project/group columns by @imskr (merge request)
• Geo DB migrations to remove force_to_redownload column from 5 tables (merge request) GitLab Enterprise Edition
• Drop temporary index on vulnerabilities table (merge request)
• Drop project_repository_states table (merge request)
• Remove build hooks worker and associated code by @Varedis (merge request)
• Remove old finding modal from MR security widget (merge request) GitLab Enterprise Edition
• Remove deprecated /code_suggestions/tokens endpoint (merge request) GitLab Enterprise Edition
• Remove the user_interacted_projects table by @missy-davies (merge request)
• Remove license_compliance_widget_category feature flag (merge request)
• Remove upload_ready from pages deployment by @imskr (merge request)
• Removing feature flag audit_events_streaming_namespace_filter (merge request) GitLab Enterprise Edition
• refactor: Drop col 'package_name_pattern_ilike_query' Part 2 by @gerardo-navarro (merge request)
• Remove deprecated BulkImports::StuckImportWorker (merge request)
• Drop product_analytics_events_experimental table (merge request)
• Remove ci_guard_for_catalog_resources ff (merge request)
• Delete the usage_data_api feature flag (merge request)
• Clean up SafelyChangeColumnDefault for CI models by @imskr (merge request)

Security (15 changes)

• Filter SAML saml_response (merge request)
• Add client-side detection for GitLab tokens (merge request)
• Reset approvals when reopening a MR
• Restrict group token rotation for custom roles
• Update rack to v2.2.8.1 (merge request)
• Ensure LDAP user cannot sign in with password
• Invalidate markdown cache to clear up stored XSS
• Ensure LDAP users cannot reset local password to bypass LDAP
• Add a limit to CodeOwners reference extractor regex
• Adds authorization for analytics settings
• Fix Stored-XSS in user's profile page: Change markup used for pronouns
• Check project read access in Environments and Operations dashboard
• Disallow assigning higher role than current user
• Disallow users to modify deploy key title
• Use merge_head_diff for codeowners when merge request is mergeable

Performance (16 changes)

• Use the AvatarCache for commits/events (merge request)
• Reduce N+1 queries when approvals by committers are not allowed (merge request) GitLab Enterprise Edition
• Fix N+1 problems in Groups API (merge request) GitLab Enterprise Edition
• refactor: Debounce GET requests for notes after submitting MR review by @gerardo-navarro (merge request)
• RegisterJobService will use partition pruning (merge request)
• Enable ci_parallel_remote_includes feature flag (merge request)
• Remove duplicated indexes for source code (merge request)
• Remove FF reading p_ci_pipeline_variables (merge request)
• Reduce N+1 queries when approvals by committers are not allowed (merge request) GitLab Enterprise Edition
• Reduce N+1 queries when MRs has blocking MRs (merge request) GitLab Enterprise Edition
• Skip status preloads in pipeline lists (merge request)
• Cache private email regex for a request (merge request)
• Remove unused index on ci_pipeline_metadata (merge request)
• Stop calculating if blob is binary on creation (merge request)
• Removing FF track_ci_build_created_internal_event (merge request)
• Preload downstream pipelines when serializing bridge jobs (merge request)

Other (120 changes)

• Remove compliance_framework_report_ui feature flag (merge request) GitLab Enterprise Edition
• refactor: Fix typo in code by @gerardo-navarro (merge request)
• Revert "Merge branch..." (merge request)
• Update job_artifacts queries to use partition_id filter (merge request)
• Fix Workhorse linter warnings (merge request)
• Revert changes to import stages (merge request)
• Migrate table to gl-table by @hsbhangu (merge request) GitLab Enterprise Edition
• Enables lock_retries by default in migrations (merge request)
• Add cell local schema (merge request)
• refactor: Fix rubocop todos for maven package files by @gerardo-navarro (merge request)
• Add missing sharding keys (merge request)
• Clean up tmp FKs p_ci_stages (merge request)
• Add and validate FKs to p_ci_stages (merge request)
• Protected packages: Show alert message on fetching error by @gerardo-navarro (merge request)
• Clean up current_organization_middleware feature flag (merge request)
• Validate uniqnuess of member role name (merge request)
• chore: Remove sidekiq_job_completion_metric_initialize feature flag (merge request)
• Improve handling group_path param (merge request)
• Remove security_findings_finder_lateral_join FF (merge request) GitLab Enterprise Edition
• refactor: Fix rubocop issues in Pypi::CreatePackageService by @gerardo-navarro (merge request)
• Remove cron schedule for removed job (merge request)
• Protected packages: Return ServiceResponse for CreateMavenPackageService by @gerardo-navarro (merge request)
• Remove assign_compliance_project_service feature flag (merge request) GitLab Enterprise Edition
• Add cluster wide schema (merge request)
• Remove resolve_organization_groups feature flag (merge request)
• Backup and remove orphaned notes (merge request)
• Backfill onboarding_status_step_url from orginal column (merge request)
• Remove project_path_sort feature flag (merge request)
• Add sharding keys for application_instrumentation (merge request)
• refactor: Fix rubocop issues for Npm::CreatePackageService by @gerardo-navarro (merge request)
• Use defined table header across the module (merge request) GitLab Enterprise Edition
• Replace FKs for p_ci_stages (merge request)
• Add database transaction duration to logs (merge request)
• Add cell scope with sharding key (merge request)
• Add next desired sharding keys for dynamic_application_security_testing (merge request)
• Add next desired sharding keys for code_review_workflow (merge request)
• Update schemas and shared keys for source_code_management (merge request)
• Use data-testid instead of js- class for project approvals (merge request) GitLab Enterprise Edition
• Remove geo_proxy_check_pipeline_refs feature flag (merge request) GitLab Enterprise Edition
• Add visibility_level to organizations (merge request)
• Migrate search empty states and update banner illustration (merge request)
• Add self-managed migration (merge request)
• Add cluster_wide schema to add_ons (merge request)
• Update remote mirror failure email (merge request)
• Change gitlab_schema for user_credit_card_validations (merge request)
• Add clusterwide schema (merge request)
• Ensure ID uniqueness on p_ci_stages (merge request)
• Enforce not-null constraint vs_code_settings uuid (merge request)
• Remove identity_verification_auto_ban feature flag (merge request) GitLab Enterprise Edition
• Making a quick action spec rely less on the frontend (merge request)
• Update Transfer Data project blueprint with new Clickhouse fields (merge request)
• Allowing cross db transactions and joins between clusterwide and main (merge request)
• Add and backfill project_id for cluster_agent_tokens (merge request)
• Delete service_desk_vue_list feature flag (merge request)
• Remove cron schedule for removed job (merge request)
• Create routing table for ci_stages (merge request)
• Remove cron schedule for removed job (merge request)
• Fix secret config validation by @alberts-gitlab (merge request)
• Remove arkose_labs_oauth_signup_challenge feature flag (merge request) GitLab Enterprise Edition
• Allow to persist Clickhouse state (merge request)
• Remove sync_project_archival_status_to_sbom_occurrences feature flag (merge request) GitLab Enterprise Edition
• Introduce empty_tree_id to correctly work with SHA256 repository (merge request)
• Refactor planning component currency symbol by @chaomao (merge request) GitLab Enterprise Edition
• Remove group_level_dependencies_filtering feature flag (merge request) GitLab Enterprise Edition
• test: Fix wrong param for shared example 'error service response' by @gerardo-navarro (merge request)
• Clean up tmp FKs p_ci_job_artifacts (merge request)
• Remove enable_new_sentry_clientside_integration (merge request)
• Add ClusterRepositoryCache class for migration (merge request)
• Finalize backfill vs_code_settings column migrations (merge request)
• Remove arkose_labs_trial_signup_challenge feature flag (merge request) GitLab Enterprise Edition
• Add next desired sharding keys for package_registry (merge request)
• Add next desired sharding keys for importers (merge request)
• Add next desired sharding keys for feature_flags (merge request)
• Add next desired sharding keys for source_code_management (merge request)
• Cleanup bigint conversion for system_note_metadata (merge request)
• test: Refactor tests to leverage service response shared examples by @gerardo-navarro (merge request)
• Drop use_sync_service_token_worker FF (merge request)
• Validate FKs p_ci_job_artifacts self managed (merge request)
• Remove feature flag ci_workflow_auto_cancel_on_new_commit (merge request)
• Prepare partitioning constraint for ci_stages (merge request)
• Add temporary index for locating orphaned notes (merge request)
• Remove references to code suggestions group setting (merge request) GitLab Enterprise Edition
• Remove update_organization_users feature flag (merge request)
• Add self-managed migration (merge request)
• Use UpdateService, add more spec coverage (merge request) GitLab Enterprise Edition
• Clean up self-hosted sent_notifications bigint (merge request)
• Add desired sharding keys for importers (merge request)
• Add desired sharding keys for team_planning (merge request)
• Remove FF dependency_scanning_on_advisory_ingestion (merge request) GitLab Enterprise Edition
• Remove proxy-through-com logic for CS (merge request)
• Add violation_data to scan_result_policy_violations (merge request)
• Update the Kaniko template to make the job be extendible by @kjetilho (merge request)
• Ensure uniqueness p_ci_job_artifacts IDs (merge request)
• Rename CreateEmptyEmbeddingsRecordsWorker by @jzeng88 (merge request) GitLab Enterprise Edition
• Add transaction check to ExclusiveLease (merge request)
• Remove ignore_column for project_import_level (merge request)
• Remove security_policies_sync_preexisting_state feature flag (merge request) GitLab Enterprise Edition
• Fixes for MR Widget implementation and tests to support Vue compat (merge request)
• Remove unused code (merge request)
• Rename EMPTY_TREE_ID constant (merge request)
• Remove feature flag "store_object_format" (merge request)
• Update "Duo Pro" copy to "GitLab Duo Pro" in UI (merge request) GitLab Enterprise Edition
• Add patch for find_or_create_by (merge request)
• Add desired sharding keys for security_policy_management (merge request)
• Remove feature flag security_policies_unenforceable_rules_notification (merge request) GitLab Enterprise Edition
• Finalize UpdateDelayedProjectRemovalToNullForUserNamespaces migration (merge request)
• Cleanup geo_pipeline_replication feature flag (merge request) GitLab Enterprise Edition
• Include prepared_at in the MR hook data (merge request)
• Cleanup search_filter_by_ability feature flag (merge request) GitLab Enterprise Edition
• Add desired sharding keys for package_registry (merge request)
• Add desired sharding keys for feature_flags (merge request)
• Add desired sharding keys for dynamic_application_security_testing (merge request)
• Add desired sharding keys for geo_replication (merge request)
• Remove ci_job_token_groups_allowlist feature flag (merge request)
• Add desired sharding keys for secrets_management (merge request)
• Remove select_ancestors_of_paginated_items feature flag (merge request)
• Add sharding keys for auto_devops (merge request)
• Add sharding keys for code_review_workflow (merge request)
• Add sharding keys for system_access (merge request)
• Add sharding keys for purchase (merge request)

16.9.8 (2024-05-09)

No changes.

16.9.7 (2024-05-07)

Fixed (1 change)

• Changed the email validation for only encoded chars (merge request)

Changed (1 change)

• Return or display Gitlab version if GITLAB_KAS_VERSION is a SHA

Security (11 changes)

• Update GITHUB_MEDIA_CDN to avoid SSRF when importing from Github (merge request)
• Prevent namespace banned users from reading project todos (merge request)
• ReDoS in GitRefsFinder when using wildcards in branch search (merge request)
• ReDos in escape and commit reference filters (merge request)
• Validate request origin before MR approval (merge request)
• Check request size before updating user pins (merge request)
• Enforce per_page validation for Branches/TagsFinders (merge request)
• Update Integrations::Discord::ATTACHMENT_REGEX regex (merge request)
• Update BaseMessage::RELATIVE_LINK_REGEX regex (merge request)
• Require confirmation before linking JWT identity (merge request)
• Fix confidentiality check optimization (merge request)

16.9.6 (2024-04-24)

Security (5 changes)

• Validation for encoded formatting characters (merge request)
• Forbid untrusted sign-ins to GitLab with Bitbucket and fix related uid (merge request)
• Ensure PAT scope is validated everywhere for GraphQL/ActionCable (merge request)
• Protect against ReDoS in FileFinder with wildcard filters (merge request)
• fix: Validate security report version against schema during parsing (merge request)

16.9.5 (2024-04-12)

No changes.

16.9.4 (2024-04-09)

Security (3 changes)

• Update Gitlab::Regex::Packages#slack_link_regex (merge request)
• Fix XSS in autocomplete in rich text editor (merge request)
• Correctly parse attachments for junit result (merge request)

16.9.3 (2024-03-27)

Fixed (1 change)

• Fix new project group templates pagination GitLab Enterprise Edition

Security (2 changes)

• Limit the number of emojis we will transform (merge request)
• Fix stored xss in wikis using the abstract_reference_filter (merge request)

16.9.2 (2024-03-06)

Fixed (2 changes)

• Backport 145801 (Fix CI linter error when repository is empty) to 16.9
• Fix container repositories checksum mismatch errors GitLab Enterprise Edition

Security (2 changes)

• Restrict group token rotation for custom roles (merge request)
• Reset approvals when reopening a MR (merge request)

16.9.1 (2024-02-20)

Fixed (2 changes)

• Fix Duo Chat CORS issue by updating web-ide package
• Fix deny_all_requests_except_allowed of AddressableUrlValidator

Security (10 changes)

• Add a limit to CodeOwners reference extractor regex (merge request)
• Ensure LDAP user cannot sign in with password (merge request)
• Ensure LDAP users cannot reset local password to bypass LDAP (merge request)
• Disallow assigning higher role than current user (merge request)
• Check project read access in Environment and Operations dashboard (merge request)
• Fix Stored-XSS in user's profile page: Change markup used for pronouns (merge request)
• Invalidate markdown cache to clear up stored XSS (merge request)
• Disallow users to modify deploy key title (merge request)
• Adds authorization for analytics settings (merge request)
• Use merge_head_diff for codeowners when merge request is mergeable (merge request)

16.9.0 (2024-02-14)

Added (145 changes)

• Ensure at least one permission is selected during member role creation (merge request) GitLab Enterprise Edition
• Allow signing in to Active Directory with smart card (merge request) GitLab Enterprise Edition
• Add POST /personal_access_tokens/self/rotate endpoint by @stalb (merge request)
• Track traversal sync events, update vulnerability reads accordingly (merge request) GitLab Enterprise Edition
• Add achievements UI (merge request)
• Update BulkImports::Failure to display subrelation that failed to import (merge request)
• Add branchRuleDelete graphql mutation (merge request)
• This MR adds experiment promotion banner (merge request) GitLab Enterprise Edition
• Add settting math_rendering_limits_enabled (merge request)
• Add basic testing functionality for group level (merge request) GitLab Enterprise Edition
• Sync create indexes and prepare FK for p_ci_builds upstream_pipeline_id (merge request)
• Added first part of the command palete update (merge request)
• Add composite PK to ci_stages (merge request)
• Adds download API v4 endpoint for project avatar (merge request)
• Add designs widget to work items (merge request)
• Adds convert_to_ticket quick action (merge request)
• Sort resources by released_at (merge request)
• Adding SemanticVersionable concern to Ml::ModelVersion (merge request)
• Add member guideline to admin appearance settings by @bufferoverflow (merge request)
• Allow adding groups to CI_JOB_TOKEN allowlist graphQL mutation (merge request)
• Log audit event for member events and custom roles (merge request) GitLab Enterprise Edition
• Add concurrency option on sidekiq-cluster CLI (merge request)
• Add alert about the gitops keyword deprecation (merge request)
• Enable new finding modal on MR widget by default (merge request) GitLab Enterprise Edition
• feature: Add keyset pagination to the list of package protection rules by @gerardo-navarro (merge request)
• Added cut line for board lists with WIP limit (merge request) GitLab Enterprise Edition
• Release terraform module registry at (sub)group level (merge request)
• Match Container Scanning SBOM component (merge request) GitLab Enterprise Edition
• Add GraphQL API for projects/groups linked to security policy project (merge request) GitLab Enterprise Edition
• Added table and model for instance level destination (merge request) GitLab Enterprise Edition
• Adding tables and models for group streaming destinations (merge request) GitLab Enterprise Edition
• Add rich text editor in design notes (merge request)
• Add rich text editor to release descriptions (merge request)
• Add rich text editor in requirements (merge request)
• Add rich text editor in vulnerabilities (merge request)
• Validate the foreign key & add to routing table auto_canceled_by_id (merge request)
• Add catalog_verified_namespace table (merge request)
• Feat: transition to JiHu callout frontend (merge request)
• Feat: add entries for JH about repo blob viewers (merge request)
• Add organizations support to PushRules (merge request) GitLab Enterprise Edition
• Add rewrite_history method to the Gitaly cleanup client (merge request)
• Prepare async index for p_ci_builds.runner_id and commit_id (merge request)
• Add CVSS data to vulnerabilities GraphQL API (merge request) GitLab Enterprise Edition
• Add separate tab for the K8s Pods (merge request)
• Update the analyzer for merge_request title and description (merge request) GitLab Enterprise Edition
• Reject commits breaking GitGuardian policies (merge request) GitLab Enterprise Edition
• Add the user access level claim to ID tokens (merge request)
• Add allow/disallow duplicate terraform modules setting to UI (merge request)
• Track Insights merge request chart item click events (merge request) GitLab Enterprise Edition
• Extend drill-down functionality to all issuables Insights charts (merge request) GitLab Enterprise Edition
• Extend Projects API with a new parameter repository_object_format (merge request)
• Allow creation of group-level custom-roles on self-managed instances (merge request) GitLab Enterprise Edition
• Add groups to CI_JOB_TOKEN allowlist (merge request)
• Add feature flag for progressive rollout of CVS (merge request)
• Sync create indexes for p_ci_builds auto_canceled_by_id and commit_id (merge request)
• Create ProjectPlanLimits type (merge request)
• Added updated to releases api (merge request)
• Add group vulnerability report denormalisation fields to vuln_reads (merge request)
• Sort resources by released_at (merge request)
• Ingest source_package_name as source_package (merge request) GitLab Enterprise Edition
• Add direct members metric to VSD counts (merge request) GitLab Enterprise Edition
• Enable the ci_workflow_auto_cancel_on_new_commit feature (merge request)
• Add Privacy Policy and Terms acceptance component (merge request) GitLab Enterprise Edition
• Assign instance-level custom roles to user (merge request) GitLab Enterprise Edition
• Add archived and traversal_ids columns to sbom_occurrences (merge request)
• Add version to fetch readme (merge request)
• Update the analyzer for epic description and title (merge request) GitLab Enterprise Edition
• Add sorting support to organization projects GraphQL query (merge request)
• Enabled has remediations filter by default (merge request) GitLab Enterprise Edition
• Release concurrency limit for Sidekiq (merge request) GitLab Enterprise Edition
• Add GraphQL mutation to refresh standards adherence checks (merge request) GitLab Enterprise Edition
• Document how to configure mutual TLS for Webhooks (merge request)
• Add available_from_access_level to custom abilities (merge request) GitLab Enterprise Edition
• Add index on sbom_occurrences table on project_id, (merge request) GitLab Enterprise Edition
• Add repository x-ray usage tracking telemetry (merge request) GitLab Enterprise Edition
• Add manage roles link to roles dropdowm (merge request) GitLab Enterprise Edition
• Allow filtering by unknown license (merge request) GitLab Enterprise Edition
• Create packages_terraform_module_metadata table & corresponding model (merge request)
• Show admin mode within active sessions view by @bufferoverflow (merge request)
• Port Star button to Vue app by @espadav8 (merge request)
• Criticial Security Alert - Latest Stable Patch (merge request)
• Add description field to GraphQL MemberEntity (merge request) GitLab Enterprise Edition
• Add WorkItems Rolledup Dates mutation GraphQL (merge request) GitLab Enterprise Edition
• Expose ID in Types::Projects::BranchRuleType (merge request)
• Adds instance admins to organization_users as owners (merge request)
• Add verification_level to GraphQL ComponentType by @imskr (merge request)
• Expose securityPolicyProject for project or group in GraphQL API (merge request) GitLab Enterprise Edition
• feat: Integration in container auth service by @gerardo-navarro (merge request)
• feat: Validation for container_path_pattern by @gerardo-navarro (merge request)
• Add composite PK to ci_job_artifacts (merge request)
• Added FF (merge request) GitLab Enterprise Edition
• Add Search::Zoekt::Repository model (merge request) GitLab Enterprise Edition
• feat: Protected packages: Create protection rules in project setting ui by @gerardo-navarro (merge request)
• Prepare async index for p_ci_builds.upstream_pipeline_id and commit_id (merge request)
• Add protectableBranches to ProjectType (merge request)
• Add a new analyzer title_analyzer (merge request) GitLab Enterprise Edition
• Add preload for autocomplete_sources/members (merge request)
• Add the code_analyzer for notes note (merge request) GitLab Enterprise Edition
• REST API support for getting commit sequence/count by @travis.finch (merge request)
• Adds graphql search options for Ml::ModelVersion (merge request)
• Migration to remove work_items from issues index (merge request) GitLab Enterprise Edition
• SAML reauth banner for issues and merge requests dashboard (merge request) GitLab Enterprise Edition
• Prepare async index for auto_canceled_by_id_convert_to_bigint (merge request)
• Publish ApprovalsResetEvent when approvals are reset on push (merge request) GitLab Enterprise Edition
• Members API: Allow group Owners to obtain enterprise users emails (merge request) GitLab Enterprise Edition
• Add is_forked field to project GraphQL type (merge request)
• Removes moved_mr_sidebar flag (merge request)
• Finalize BackfillPartitionId for ci_pipelines related tables (merge request)
• Add "Contributor count" metric to Value Streams Dashboard (merge request) GitLab Enterprise Edition
• Add category to /spend quick action (merge request)
• Allow group Owners to view enterprise users emails on UI/Members page (merge request) GitLab Enterprise Edition
• Add name and description for WebHooks (merge request)
• Update front-end to create instance-level custom roles (merge request) GitLab Enterprise Edition
• Add maxAccessLevel field to project and group type (merge request)
• Log when GraphQL query has deprecated arguments (merge request)
• Add Direct Transfer Stats API (merge request)
• Add timestamp for sbom_source_packages (merge request)
• Add GitLab for Slack app integration to REST API (merge request)
• Check if DB external command config parsed output is a Hash (merge request)
• AI Agent list view (merge request) GitLab Enterprise Edition
• Unsubscribe individual issue email participants from issue (merge request)
• Define global identifiers for branch rules (merge request)
• Allow configuring git access protocol via Groups API (merge request)
• Add get ServicePing API endpoint (merge request)
• Remove dev feature flag: track_geo_secondary_git_op_action (merge request) GitLab Enterprise Edition
• Add description field to CI Variables drawer (merge request)
• Introduce BeyondIdentity integration to verify GPG keys (merge request)
• Add support for cancelled subscription licenses (merge request)
• Enable geo_skip_download_if_exists by default (merge request) GitLab Enterprise Edition
• Audit CI artifact download (merge request) GitLab Enterprise Edition
• Enable Jira integration issues and vulnerabilities on the group level (merge request)
• Add participants widget (merge request)
• Hide count and table header in empty state (merge request) GitLab Enterprise Edition
• Remove pipeline_name_search feature flag (merge request)
• GraphQL: Add systemId argument to CiRunner.managers (merge request)
• Allow setting inheritance type on protected env (merge request) GitLab Enterprise Edition
• Allow providing extra DB config through an external command (merge request)
• Added arugment error when pipeline is nil by @chirayu999 (merge request)
• Enforce workspaces_quota and workspaces_per_user_quota (merge request)
• Add verification_level to catalog_resources by @imskr (merge request)
• Allow specifying extra Redis config from external command (merge request)
• Record previous weight when updating issue weight (merge request) GitLab Enterprise Edition
• Add VSA added to iteration event (merge request) GitLab Enterprise Edition
• Add standards adherence refresh worker (merge request) GitLab Enterprise Edition
• Track git operations from geo sites (merge request) GitLab Enterprise Edition

Fixed (145 changes)

• Filter committers with merge commits as well when users are loaded (merge request) GitLab Enterprise Edition
• Fix CODEOWNERS rule to ignore Verify specs for lib (merge request)
• Contributor analytics: User commit counts update for time period (merge request)
• Fix missing outbound_local_requests_allowlist parameter (merge request)
• Fix line anchor hrefs for legacy viewers (merge request)
• Fixes rendering issue with the sidebar on printed pages (merge request)
• Avoid mutating OpenSSL::PKey::EC keys (merge request)
• Fix X509::Signature#x509_issuer not working with OpenSSL 3 (merge request)
• Added RefreshImportWorker to Bitbucket Cloud/Server stage workers (merge request)
• Remove math rendering exception for wikis (merge request)
• Use component_version_id for project finder (merge request) GitLab Enterprise Edition
• Revert "Merge branch 'ag/356965-bug-sm-awaiting-user-signup-badge' into 'master' " (merge request)
• Update DiffNote's line_range during importing (merge request)
• Fix approvers loading for approval_policy type (merge request) GitLab Enterprise Edition
• Fix with_hosted_plan when used with trial: nil (merge request) GitLab Enterprise Edition
• Disable autocomplete sources feature flag (merge request)
• Handle row for "others" in runner usage breakdown (merge request) GitLab Enterprise Edition
• Update workhorse timeout to 55s (merge request) GitLab Enterprise Edition
• Milestone burndown chart consistency fixes (merge request) GitLab Enterprise Edition
• Fix limited visibility of variable values in dropdown by @antonkalmykov (merge request)
• Fix scan execution policy without ci file (merge request) GitLab Enterprise Edition
• Allow users w/ read_code permission to search code (merge request) GitLab Enterprise Edition
• Fix issue with selecting expired milestones in RTE (merge request)
• Fix SBOM ingestion errors caused by input file path validation (merge request)
• Fix changelog tag detection logic (merge request)
• Issue board - Fix updating total list weight (merge request) GitLab Enterprise Edition
• This MR fixes wrong wording for policy scope (merge request) GitLab Enterprise Edition
• Fix OIDC and id_token issuer mismatch (merge request)
• Revert "Merge branch '427437-preload-autocomplete_sources-members-retry' into 'master'" (merge request)
• Allow move to failed, from pending or failed (merge request) GitLab Enterprise Edition
• Fix MockCI REST API (merge request)
• Display runner dashboard ClickHouse features (merge request)
• Return allow_force_push: false always when security policy enforced (merge request) GitLab Enterprise Edition
• Fix broken upload progress indicator (merge request)
• Fix the error when the fork is linked to itself (merge request)
• Fix absent parameters in runner usage resolver (merge request)
• Save message in chat api (merge request) GitLab Enterprise Edition
• Fix issue with copying task lists (merge request)
• Fix bug where date strings where incorrectly formatted (merge request) GitLab Enterprise Edition
• Fix API branches OpenAPI YAML parameters by @Sineaggi (merge request)
• Select report_type based on feature flag when (merge request) GitLab Enterprise Edition
• Allow loading of Hashie::Mash in YAML (merge request)
• Update mermaid to fix upstream render bug (merge request)
• Use clearer label for iteration report calc mode (merge request) GitLab Enterprise Edition
• Update the list of supported protocols for Settings API (merge request)
• Reindex wikis to adopt new structure of id (merge request) GitLab Enterprise Edition
• Set default vulnerability_states for empty states (merge request) GitLab Enterprise Edition
• Fix snippets overflowing bug (merge request)
• Fix group filter and pagination bug (merge request)
• Check project policy_configuration ids on syncing compliance framework (merge request) GitLab Enterprise Edition
• Fix the lingering outdated codeowner rules issue (merge request)
• Fix reviews import and E2E in GitHub Import (merge request)
• Add dark mode modal specific timeline entry styles (merge request)
• Change logic of oauth_authorization_path for GitLab Jira App (merge request)
• Fix pipeline page timeout (merge request)
• VSD - Group merge request throughput should include subgroups (merge request) GitLab Enterprise Edition
• Fix Redis 6.0 compatibility breakage with Sidekiq 7 gem (merge request)
• Pass outbound_local_requests_whitelist to ProjectImporter (merge request)
• Fix mermaid diagrams in dark mode on linux (merge request)
• Fix webhooks to POST correct MR state after create (merge request)
• Partial unique index on issuable-resource-links (merge request)
• Use update services to unassign from issuables (merge request)
• Fixes Rspec for FOSS edition (merge request)
• Fix outdated pages brunch ci template (merge request)
• Update semver_dialects gem (merge request) GitLab Enterprise Edition
• Remove archived projects from the group vulnerability report filter (merge request) GitLab Enterprise Edition
• Direct transfer: Handle case where bulk import status is nil (merge request)
• Make notification dropdown flippable by @bahek2462774 (merge request)
• Update Kontra security training token (merge request) GitLab Enterprise Edition
• Geo: Fix verification timeout of registry records (merge request) GitLab Enterprise Edition
• Fix alignment of note emoji btn on hover (merge request)
• Fix email update on LDAP sync (merge request) GitLab Enterprise Edition
• Downcase checksum in with_file_sha256 nuget symbol scope (merge request)
• Fix epic subscription (merge request)
• Hide draft comment note text when editing the comment (merge request)
• Update star count component to work when logged out by @espadav8 (merge request)
• Add worker to sync approval rules with preexisting state (merge request) GitLab Enterprise Edition
• Make sure the key attribute is unique (merge request)
• This MR fixes code source selection (merge request) GitLab Enterprise Edition
• This MR fixes adding extra characters (merge request) GitLab Enterprise Edition
• Redirect to correct page after dashboard SAML reauth (merge request) GitLab Enterprise Edition
• Fix vulnerability statistics adjustment service (merge request) GitLab Enterprise Edition
• Make nuget symbol files search case-insensitive (merge request)
• Use hidden to prevent scollbars on inline math (merge request)
• Fix Members::DestroyService audit bug with removing subresources (merge request) GitLab Enterprise Edition
• Use static list for dependency list licenses (merge request) GitLab Enterprise Edition
• Fix invalid records with FK not valid (merge request)
• Only set CI_HAS_OPEN_REQUIREMENTS when licensed (merge request) GitLab Enterprise Edition
• Emoji Picker button hover misalignment fix (merge request)
• Respect inherited font-size in markdown code block (merge request)
• Load filter targets dynamically (merge request) GitLab Enterprise Edition
• Allow non-development environments to perform local project imports (merge request)
• Use active and correct add_on_purchase (merge request) GitLab Enterprise Edition
• Remove transaction around object pool mirroring (merge request)
• Fix 403 error when using job token to access public project (merge request)
• Fix creation of instance-level member roles (merge request) GitLab Enterprise Edition
• Handle invalid API JSON input gracefully (merge request)
• Change SAML group lock self-managed to work on group sync and group SAML (merge request) GitLab Enterprise Edition
• Stop allowing approvals to be changed post merge (merge request)
• Use LFS change size for pushes, not total size (merge request) GitLab Enterprise Edition
• Fix NoMethodError from Projects::BlobController#show (merge request) GitLab Enterprise Edition
• Disable pipeline_stage_set_last_modified FF (merge request)
• Fix breadcrumb and page title for Wiki/New page (merge request)
• Only perform workspace agent validation on create (merge request) GitLab Enterprise Edition
• Fix issue search when created from another locale (merge request)
• Revert: Fix pages with case sensitive paths (merge request)
• Execute hooks from timelog create service by @zillemarco (merge request)
• Fix punctuation on profile edit page (merge request)
• Fix error in Mapper::Normalizer when CI include value type is invalid (merge request)
• Bump semver_dialects gem (merge request)
• Fix Gitlab::Llm::Completions::Chat default value for the options param (merge request) GitLab Enterprise Edition
• Fix current_license_title namespace translation (merge request)
• Truncate commit author on blame view when under 3 lines (merge request)
• Fix action/rule deletion bug (merge request) GitLab Enterprise Edition
• Vulnerability Details: Fix generic report types (merge request) GitLab Enterprise Edition
• Group dropdown on New Project page respects visibility settings (merge request)
• Add with-header class to root element in minimal and devise empty views (merge request)
• Set modal title to finding title (merge request) GitLab Enterprise Edition
• Defer ConnectionPool instrumentation setup (merge request)
• Create merge request button: Fix spacing in dropdown (merge request)
• Improve decimal precision for small VSD metric values (merge request) GitLab Enterprise Edition
• Update review button variant (merge request)
• Fix issue with pasting images in RTE (merge request)
• Referencing a user with "me" could result in an incorrect quick action (merge request) GitLab Enterprise Edition
• Update nullable on author field on NoteType (merge request)
• Allow non-admin access to user activities (merge request)
• Add team members to policy project only when not added for the group (merge request) GitLab Enterprise Edition
• Use component_version_id instead component_id for (merge request) GitLab Enterprise Edition
• Fix pages with case sensitive paths (merge request)
• Ensure SVGs are properly compiled (merge request)
• Fix source code highlighting when using relative URL (merge request)
• Fixes project export task issue (merge request)
• Use different localStorage sorting key by @bahek2462774 (merge request)
• Remember BACKUP for untarred backups (merge request)
• Nullify dismissal_reason when a vulnerability is un-dismissed (merge request) GitLab Enterprise Edition
• Fix GitLab typo in empty state group page (merge request)
• MR Media report widget alignment fix (merge request)
• Hide viz designer button until product analytics onboarded (merge request) GitLab Enterprise Edition
• Update RTV and ETV to use subscription ID (merge request) GitLab Enterprise Edition
• Diff controls alignment fix (merge request)
• Validate repo import scope (merge request)
• Add VulnerabilitiesFinder for scan result policies (merge request) GitLab Enterprise Edition
• Issues list: spacing between labels (merge request)
• Resolve feedback banner not showing on the behavior dashboard (merge request) GitLab Enterprise Edition
• Unify dividing line color in commit info-well (merge request)

Changed (209 changes)

• Show subscription next term start date (merge request) GitLab Enterprise Edition
• Filter out unlincensed work item widget definitions (merge request) GitLab Enterprise Edition
• Add rails payload to zoekt indexing callbacks (merge request) GitLab Enterprise Edition
• Update deployment tests to vue 3 (merge request)
• Update comment form tests for vue 3 (merge request)
• Reorganize profile page layout (merge request)
• Enable CRM by default (merge request)
• Uses similarity sort for projects query (merge request)
• Fixing rubocop exceptions no. 7 (merge request)
• Remove determine_blank_ref_based_on_gitaly_object_format feature flag (merge request)
• Changes for optimizing expiring worker (merge request)
• Add group by dropdown on adherence report (merge request) GitLab Enterprise Edition
• Reposition catalog setting by @jzeng88 (merge request)
• Improve analytics settings copy (merge request) GitLab Enterprise Edition
• Migrate label empty state component (merge request)
• Pipeline manual action: Migrate dropdown to GlDisclosureDropdown (merge request)
• Update old Geo DB docs link (merge request) GitLab Enterprise Edition
• Replace UI usages of shared runner with instance runner (merge request)
• Show alert in CI Variable drawer (merge request)
• Rewrite Cloud Connector architecture docs (merge request)
• Fix security policy source to not trigger pipelines for tags (merge request)
• Enhance navigation in findings drawer with tooltip and button group (merge request) GitLab Enterprise Edition
• Add new integration logos (merge request)
• Premium customers can use GitLab Duo Chat (merge request) GitLab Enterprise Edition
• Set minimum Redis version in system check to 6.0.0 (merge request)
• Add new route /bulk_imports/:id/history (merge request)
• Add tooltip with help docs to license scanning widget (merge request)
• Fixing rubocop exceptions in tests no 8 (merge request)
• Fixes issue actions presentation at small size (merge request)
• Add runner usage breakdown to dashboard (merge request) GitLab Enterprise Edition
• Remove .borderless, .nav-links-unboxed (merge request)
• Support nested arrays in CI config stages by @suyash-chavan (merge request)
• Expose committed_before and committed_after (merge request)
• Update GITLAB_PAGES_VERSION (merge request)
• Use 'last_activity_at' for project list order by last updated (merge request)
• Add import stats to bulk_import_history_app (merge request)
• Invite Group Modal - Use new API on project view (merge request)
• Disable new schedule button (merge request)
• Remove compliance_standards_adherence_csv_export feature flag (merge request) GitLab Enterprise Edition
• Rename Infrastructure Registry page title to Terraform Module Registry (merge request)
• This MR changes flow for compliance framework (merge request) GitLab Enterprise Edition
• Show various MR keyboard shortcuts in tooltips (merge request)
• Migrates .d-md-flex to .gl-md-display-flex! (merge request)
• Add approvalPolicies field and deprecate scanResultPolicies (merge request) GitLab Enterprise Edition
• Replace taskable argument with name (merge request)
• Align X Ray permission model to Duo Pro Add On (merge request) GitLab Enterprise Edition
• Move order of collaborators import (merge request)
• Update permissions for adding a child issue to an epic (merge request)
• Enable dora_performers_score_panel feature flag by default (merge request) GitLab Enterprise Edition
• Update ui text for MR comment filters (merge request)
• Auto approve pending members on user cap disable (merge request) GitLab Enterprise Edition
• Update sbom occurrence source fields ingestion (merge request) GitLab Enterprise Edition
• Pipeline MiniGraph: Migrate dropdown to GlDisclosureDropdown (merge request)
• Add severity sort for group level dependencies (merge request) GitLab Enterprise Edition
• Refine Add code task copy (merge request) GitLab Enterprise Edition
• Update help text for GitHub import PAT field (merge request)
• Migrate buttons in overflow_warning_component.rb (merge request)
• Add delimiters to large numbers in analytics chart tooltips (merge request) GitLab Enterprise Edition
• Remove code_suggestions_claude21 flag (merge request) GitLab Enterprise Edition
• Use container registry API to fetch a tag (merge request)
• Update dependency auto-deploy-image to v2.80.1 (merge request)
• Update styles for services table (merge request)
• Remove CRM organizations navigation menu item (merge request)
• Updated URLs for "Issues closed" links in Value Streams Dashboard (merge request)
• Migrates full width class (merge request)
• Remove projectPath argument from ciCatalogResourcesResolver (merge request)
• Migrates height utility classes (merge request)
• Use radio buttons for admin group permission (merge request)
• Add GlSingleStat to haml (merge request)
• Remove scan_result_policy_merge_base_pipeline feature flag (merge request)
• Adds jira_connect_public_key_storage_enabled field (merge request)
• Custom role UI enhancements (merge request) GitLab Enterprise Edition
• Detect usage of pinned nav item and handle section expanded state (merge request)
• Do not pre-select group import target namespaces (merge request)
• Remove use_cloud_connector_lb feature flag (merge request)
• Update policy type param for editing to use approval_policy (merge request) GitLab Enterprise Edition
• Add limits for license names (merge request) GitLab Enterprise Edition
• Migrate float-right to gl-float-right (merge request)
• This MR changes schema for external file path (merge request) GitLab Enterprise Edition
• WorkItemDelete mutations handle group by @imskr (merge request)
• Add blame data to simple viewer (merge request)
• Hides user checkbox that allows group creation (merge request)
• Work item - mobile ancestors widget (merge request)
• Migrates .align-items-center to .gl-align-items-center (merge request)
• Refactor FindChangedPaths RPC call for initial commits (merge request)
• Update match_on_inclusion to match_on_inclusion_license (merge request) GitLab Enterprise Edition
• Remove help text about creating groups when creating a project (merge request)
• Allow local request origin when in dev (merge request)
• Add item_to_preload method in helper and migrations (merge request) GitLab Enterprise Edition
• Clean up caching importer by @imskr (merge request)
• Remove todo for group_saml/sso_state_spec (merge request)
• Add cleanup to testAuthServer (merge request)
• Use finished deployments in Environments stop actions (merge request)
• Migrate .lh-100 to .gl-line-height-1 (merge request)
• Remove sms_send_wait_time feature flag (merge request)
• Migrates flex-wrap (merge request)
• Enable github_import_lock_user_finder feature flag by default (merge request)
• Import resources using GitHub Import timeline API (merge request)
• Update dependency auto-deploy-image to v2.80.0 (merge request)
• Implementing Trial Discover Page Experiment Stage 1 (merge request) GitLab Enterprise Edition
• Enable geo_proxy_check_pipeline_refs by default (merge request) GitLab Enterprise Edition
• Show find file and permalink shortcut in tooltip (merge request)
• Improve dark-mode theme in sign in/up pages (merge request)
• Hide keyboard shortcuts in tooltips when disabled (merge request) GitLab Enterprise Edition
• Update pipeline findings description and report label (merge request) GitLab Enterprise Edition
• Migrate existing policy to approval_policy on replace (merge request) GitLab Enterprise Edition
• Use traversal_ids for project search (merge request) GitLab Enterprise Edition
• Add /remove_parent quick action for work items (merge request)
• Change Web App Manifest display from browser to standalone by @LasseRosenow (merge request)
• Code dropdown: Migrate to GlDisclosureDropdown (merge request)
• Update dependency auto-deploy-image to v2.79.0 (merge request)
• Productize tier_badge experiment (merge request) GitLab Enterprise Edition
• Removes dot from edit board button (merge request)
• Support approval_policy in JSON schema (merge request) GitLab Enterprise Edition
• Update po files (merge request)
• Set minimum Redis version in system check to v6.2.0 (merge request)
• Move runner description field under configuration (merge request)
• Finalize UUID backfilling before column type migration cleanup occurs (merge request)
• Feat(Feature flag): remove key_contacts_management (merge request) GitLab Enterprise Edition
• Allow workhorse extra config command to have arguments (merge request)
• Remove the prefix_ci_build_tokens feature flag (merge request)
• Add component names to resource item (merge request)
• Emoji picker: Migrate dropdown to GlDisclosureDropdown (merge request)
• Update gitlab-pages (merge request)
• FF use_sync_service_token_worker enabled by default (merge request)
• Improve specs for GroupSaml::SsoState (merge request) GitLab Enterprise Edition
• Update vendor/spdx.json to v3.22 (merge request)
• Update documentation (merge request) GitLab Enterprise Edition
• Excludes Ml::Models from showing up on Experiments (merge request)
• Replace geo empty state illustration (merge request)
• Use t.Cleanup for startWorkhorseServerWithConfig startWorkhorseServer (merge request)
• Use t.Cleanup in upstream_test (merge request)
• Use t.Cleanup in range_test (merge request)
• Use t.Cleanup in artifacts_upload_test (merge request)
• Add UI polish to issue analytics table (merge request)
• Simplify active_since? (merge request) GitLab Enterprise Edition
• Admin area overview: Update stats component (merge request)
• Update character_set to v1.8.0 (merge request)
• Copy adjustment for /billings page Duo Pro hand-raise PQL (merge request) GitLab Enterprise Edition
• Logs large IN lists (merge request)
• Improvements in vertical spacing sign-in page (merge request)
• Expose setting category on Internal Events for migration purposes (FE) (merge request)
• This MR adds branch exceptions selector (merge request) GitLab Enterprise Edition
• Improve avatar on vulnerability details page (merge request) GitLab Enterprise Edition
• Allow to revert/cherry-pick squashed MRs with FF strategy (merge request)
• Move OWASP 2021 group behind a feature flag (merge request) GitLab Enterprise Edition
• Format analytics dashboards data tables with delimiters (merge request) GitLab Enterprise Edition
• Group overview: Make items keyboard accessibile (merge request)
• Allow for DNS Zone change in RD Config (merge request) GitLab Enterprise Edition
• Remove the feature flag prefix_scim_tokens (merge request)
• Add includeArchived: true | false to groupProjects graphQL (merge request)
• Adds Application Setting (merge request)
• Add Max Code indexing concurrency setting (merge request) GitLab Enterprise Edition
• Include subgroups in adherence export (merge request) GitLab Enterprise Edition
• Use content editor's serializer for copy_as_gfm (merge request)
• Allow embedding relative BMP images in markdown by @ignapk (merge request)
• Spec approval service for instance SAML approval (merge request) GitLab Enterprise Edition
• Add alert for user signed up with join a project option (merge request) GitLab Enterprise Edition
• Enable sbom_occurrences_vulnerabilities FF (merge request) GitLab Enterprise Edition
• Add a conditional for project or group avatar (merge request)
• Migrate milestone actions button to pajamas component (merge request)
• Setup cssbundling-rails by @ar-mali (merge request)
• Remove node backoffs for deletion and indexing requests (merge request) GitLab Enterprise Edition
• Add a separate target for basic merge request search (merge request)
• Update dependency auto-deploy-image to v2.78.0 (merge request)
• Support CS in PossiblyAffectedOccurrencesFinder (merge request) GitLab Enterprise Edition
• Migrate preview button in group templates (merge request)
• Migrate button in app/views/users/unsubscribes/show.html.haml (merge request)
• Removes database migrations up to 15-9-stable-ee (merge request)
• Enable license_compliance_widget_category by default (merge request) GitLab Enterprise Edition
• Noted lack of Duo Chat support in Web IDE on SM (merge request)
• Remove unused file (merge request)
• Migrate buttons in awards_block.html.haml (merge request)
• Update pipeline editor empty state (merge request)
• Remove true-up validation for cloud licenses (merge request) GitLab Enterprise Edition
• Updated copy for due pro hand-raise PQL on billings page (merge request) GitLab Enterprise Edition
• Show Needs triage instead of DETECTED in finding modals (merge request) GitLab Enterprise Edition
• Footer links disappear on small viewports (merge request)
• Clean CI usage w/ optional "deep clean" when banning users on GitLab.com (merge request) GitLab Enterprise Edition
• Service accounts can be added to LDAP-synced groups (merge request) GitLab Enterprise Edition
• Migrate button in clone_panel to Pajamas component (merge request)
• Make review emails more readable (merge request)
• Add index for events to efficiently query user contributions [SYNC] by @zzaakiirr (merge request)
• Merge request approval widget: Use small button (merge request)
• Add approval group rule post endpoint (merge request) GitLab Enterprise Edition
• Show email on the user popover (merge request)
• Admin area dashboard cleanup (merge request)
• Update pipeline illustrations (merge request)
• Introduce separate targets for global search indexing (merge request) GitLab Enterprise Edition
• Change importing alert to warning (merge request)
• Trims input fields in maven dependency proxy settings (merge request)
• Improve Cookie Preferences button on mobile (merge request)
• Assignees button migration (merge request)
• Update dependency auto-deploy-image to v2.77.0 (merge request)
• Migrate {hll_counters}_i_code_review_create_mr from hll to int (merge request)
• Add warning when project creation is noone (merge request)
• Limit project description in sidebar (merge request)
• Update project-level analytics settings strings (merge request) GitLab Enterprise Edition
• Display the related MR's for the pipeline header (merge request)
• GitHub importer: Rename "link" as "attachment" (merge request)
• Removing FF persist_failed_pipelines_from_schedules (merge request)
• Update FF with actor (merge request)
• Remove feature flag package_metadata_advisory_sync (merge request) GitLab Enterprise Edition
• Update tab name (merge request)
• Fix accessibility issues in spam logs (merge request)
• Allow multiple requirements for custom abilities (merge request) GitLab Enterprise Edition
• Update feature tests (merge request)
• Make security policy stages order take precedence (merge request) GitLab Enterprise Edition
• Remove bitbucket_importer_exponential_backoff feature flag (merge request)

Deprecated (1 change)

• Add deprecation for Ubuntu 18.04 (merge request)

Removed (31 changes)

• Remove repository renamed event code (merge request) GitLab Enterprise Edition
• Removes can_approve_deployment? method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Delete two Sidekiq reliable_fetcher flags (merge request)
• Remove ProjectRepositoryState model (merge request) GitLab Enterprise Edition
• Delete the 'ci_accept_trace' feature flag (merge request)
• Remove members_api_expose_enterprise_users_emails_only feature flag (merge request) GitLab Enterprise Edition
• Clean up code suggestions non-owner alert (merge request) GitLab Enterprise Edition
• Remove legacy hashed storage migration code (merge request) GitLab Enterprise Edition
• Remove readme_html field from Ci::Catalog::Resource (merge request)
• Remove bitbucket_server_convert_mentions_to_users (merge request)
• Remove pagination count (merge request)
• Remove references to zoekt_indexed_namespaces and drop table (merge request)
• Remove project_overwrite_service_tracking FF (merge request)
• Remove usage of AutoFixWorker (merge request)
• Remove unused controller code and old view (merge request)
• Drop vulnerabilities Column From SbomOccurences (merge request)
• Revert "Merge branch '416662-free-storage-limit-alert' into 'master'" (merge request)
• refactor: Drop col column 'package_name_pattern_ilike_query' Part 1 by @gerardo-navarro (merge request)
• Remove the GCP technical demo views (merge request)
• refactor: Remove ignore rule for renamed attr 'container_path_pattern' by @gerardo-navarro (merge request)
• Delete WorkItemUpdateTask mutation (merge request)
• Drop ignored columns from geo_node_statuses table (merge request)
• Remove summary tab from K8s overview (merge request)
• Drops unused index index_on_projects_lower_path from projects (merge request)
• Remove gl_analytics_tracking Feature Flag (merge request)
• Removes bitbucket_server_importer_exponential_backoff feature flag (merge request)
• Remove unused dependency scanning jobs (merge request)
• Cleanup the linear query feature flags (merge request)
• Remove generate tests code (merge request)
• Remove lfs-check feature flag (merge request)
• Remove superseded SSH certificates protocol option (merge request)

Security (11 changes)

• Restrict group access token creation for custom roles
• Limit vulnerabilitiesCountByDay date range to 1 year
• Make scan result policies block renaming branches
• Fix CI component input Regexp
• Add zuora_payment_method_xid to CreditCardValidation
• Fix improper username sanitization
• Do not allow non-team member to set MR assignees/reviewers
• Use public email in tags atom feed
• Escape user input before building regex for linker
• Devfile parser arbitrary file write
• Adds absolute path check (merge request) GitLab Enterprise Edition

Performance (18 changes)

• Add pagination to UsersController#contributed (merge request)
• Add an additional preload to prevent n+1 in new project page (merge request) GitLab Enterprise Edition
• Creating an internal Ci::Pipeline will send an internal event (merge request)
• Remove FF reading p_ci_pipeline_variables (merge request)
• Reduce N+1 approval rules related queries on GraphQL request (merge request) GitLab Enterprise Edition
• Disable unused coverage in MR pipeline list (merge request)
• Reduce memory allocations when iterating over an Enumerator (merge request)
• Add ff to read from p_ci_pipeline_variables (merge request)
• Preload policy requirements for group projects count (merge request) GitLab Enterprise Edition
• Use the rust based markdown engine (merge request)
• Add index to WebHooks on project based hooks (merge request)
• Cleanup unused index and fk for ci_build_trace_metadata (merge request)
• Remove duplicated index_user_callouts_on_user_id index (merge request)
• Add unbind hook to SafeHtml directive (merge request)
• Clean up feature flag "reorder_garbage_collection_calls" (merge request)
• Add index on [name, pipeline_id] to ci_pipeline_metadata (merge request)
• Remove batch_route_updates feature flag (merge request)
• Refactor GroupsFinder and (hopefully) fix performance issue (merge request)

Other (147 changes)

• Re-enqueue backfilling of the default organization owners (merge request)
• Partition ci_job_artifacts table (merge request)
• Add sharding keys for importers (merge request)
• Prepare partitioning constraint for ci_stages (merge request)
• [Refactoring] Extract common code in commit.html.haml (merge request)
• Add Duo-Pro telemetry header to AIGW request (merge request) GitLab Enterprise Edition
• Add desired sharding keys for vulnerability_management (merge request)
• Add desired sharding keys for deployment_management (merge request)
• Add desired sharding keys for design_management (merge request)
• Add desired sharding keys for compliance_management (merge request)
• Remove obsolete FK between ci_stages and p_ci_builds (merge request)
• Feature gate group code suggestion access policies (merge request) GitLab Enterprise Edition
• Prevent adding records with null attributes to users and user_preference (merge request)
• Upgrade redis gem to v5 (merge request)
• Add rake task to list orphan final artifact objects (merge request)
• Geo: Disable pipeline ref created events (merge request) GitLab Enterprise Edition
• Docs: Update enable the feature flag link for pages (merge request)
• feat: Protected packages: Use capitalized casing in setting ui table by @gerardo-navarro (merge request)
• Docs: GitLab pages Domain-level redirects enabled on Gitlab.com (merge request)
• Removes pipeline_warnings method by @tedtran2019 (merge request)
• Add sharding keys for remote_development (merge request)
• Introduce FK for routing table (merge request)
• Enable refactoring Project.has_ci_config_file? (merge request)
• Clean up vsa_predefined_date_ranges feature flag (merge request)
• Create index for merge_request_metrics by @schurzi (merge request)
• Add not null constraint to noteable_type (merge request)
• Backfill default protection branch defaults in application setting (merge request)
• Add desired sharding keys for mlops (merge request)
• Add desired sharding keys for user_profile (merge request)
• Add desired sharding keys for continuous_delivery (merge request)
• Add desired sharding keys for value_stream_management (merge request)
• Remove partition filter feature flag (merge request)
• Add sharding keys for continuous_integration (merge request)
• Fix wrong error reason for protected packages by @gerardo-navarro (merge request)
• Remove references to graphql_git_blame (merge request)
• Add sharding keys for source_code_management (merge request)
• Add desired sharding keys for continuous_integration (merge request)
• Add desired sharding keys for code_review_workflow (merge request)
• Add desired sharding keys for portfolio_management (merge request)
• Refactor ForkService class (merge request)
• Rename paginated table page bundle to be reusable (merge request)
• Remove geo proxy related dev feature flags (merge request) GitLab Enterprise Edition
• Add sharding keys for gitaly (merge request)
• Use QueuesMetadata for Sidekiq status (merge request)
• Use PipelineTriggers::UpdateService in endpoints by @missy-davies (merge request)
• Improve the storing of approvals at merge time (merge request)
• Change column title and adjust empty rule (merge request) GitLab Enterprise Edition
• Splits the migration to enqueue BBMs separately (merge request)
• Remove feature flag i_ci_secrets_management_vault_build_created (merge request)
• Fixes Button spacing by @NIKU-SINGH (merge request)
• Add desired sharding keys for source_code_management (merge request)
• Add desired sharding keys for pages (merge request)
• Add desired sharding keys for infrastructure_as_code (merge request)
• Add desired sharding keys for wiki (merge request)
• Analyze parent table after partitioning (merge request)
• Add sharding keys for dependency_management (merge request)
• Add sharding keys for geo_replication (merge request)
• Add sharding keys for build_artifacts (merge request)
• Add sharding keys for package_registry (merge request)
• Migrate sidekiq status from SharedState to QueuesMetadata (merge request)
• Add CRUD services for pipeline trigger tokens by @missy-davies (merge request)
• Change revoked approvals to reset approvals (merge request)
• Split out one of the mergeability conflict checks (merge request)
• Specify GitLab SSHD in FIPS compliance docs (merge request)
• Update gitaly gem to 16.9.0.pre.rc2 version (merge request)
• Add check constraint to ensure star_count is non-negative (merge request)
• Add sharding keys for security_policy_management (merge request)
• Add sharding keys for feature_flags (merge request)
• Finalize batched migration BackfillCatalogResourceVersionsReleasedAt (merge request)
• Create index to support group direct members count (merge request)
• Update p_ci_builds FKs to ci_stages to include partition_id (merge request)
• Add desired sharding keys for code_testing (merge request)
• Rename StuckImportWorker to StaleImportWorker (merge request)
• Remove Gitlab::Redis::ClusterSharedState migration helper (merge request)
• Prepare partitioning constraint for ci_job_artifacts 2 (merge request)
• Add sharding keys for value_stream_management (merge request)
• Add sharding keys for vulnerability_management (merge request)
• Add sharding keys for wiki (merge request)
• Cleanup the update_default_organization_users (merge request)
• Return ServiceResponse for Pypi::CreatePackageService by @gerardo-navarro (merge request)
• Use shorter notation for conditional classes (merge request)
• test: Apply recommended matchers from testing library by @gerardo-navarro (merge request)
• Stop requesting the diff stats for tracing related diffs (merge request)
• Add visible names for all MR approval rule table headers (merge request) GitLab Enterprise Edition
• Swap system_note_metadata.id to bigint (merge request)
• Creating new event based metric for Ci Builds (merge request)
• Replace icons with corresponding options (merge request)
• Remove increase_jira_import_issues_timeout feature flag (merge request)
• refactor: Reference regex utility directly in Packages::Protection::Rule by @gerardo-navarro (merge request)
• Prepare partitioning constraint for ci_job_artifacts (merge request)
• Ensure uniqueness ci_pipeline_variables ids (merge request)
• Avoids db hit to get id, instead using it from the loaded object (merge request)
• Async create index to support counting group members (merge request)
• Remove validate_import_decompressed_archive_size feature flag (merge request)
• Finalize BackfillOwaspTopTenOfVulnerabilityReads (merge request)
• Add sharding keys for audit_events (merge request)
• Fix workspaces url_prefix field (merge request) GitLab Enterprise Edition
• Add onboarding_status to user_details and implement use (merge request)
• Update job_artifacts docs with new project ID location by @mitar (merge request)
• Remove project import level (merge request)
• Cleanup highlight_js_worker feature flag (merge request)
• Remove default values for partition_id (merge request)
• Don't send email when importing members using DirectTransfer (merge request)
• Add sharding keys for global_search (merge request)
• Add sharding keys for secrets_management (merge request)
• Add sharding keys for onboarding (merge request)
• Add sharding keys for consumables_cost_management (merge request)
• Add sharding keys for dependency_proxy (merge request)
• Add sharding keys for infrastructure_as_code (merge request)
• Add sharding keys for integrations (merge request)
• Add sharding keys for software_composition_analysis (merge request)
• Add sharding keys for cell (merge request)
• Silence only the first instance RedisClient::ConnectionError (merge request)
• Fix MultiStore .close to skip if no connections borrowed (merge request)
• Create routing table for ci_pipeline_variables (merge request)
• Backfill catalog_resource_versions released_at column (merge request)
• chore: Added missing feature_category for CurrentUserMode tests by @gerardo-navarro (merge request)
• Add sharding keys for continuous_delivery (merge request)
• Enable optimise GitHub import attachments feature (merge request)
• Cleanup scan_result_policies_block_force_push FF (merge request) GitLab Enterprise Edition
• Fixes gettext autofix (merge request)
• Update migration's signature (merge request)
• Adjust rule controles to new design (merge request) GitLab Enterprise Edition
• Prepare partitioning constraint for ci_pipeline_variables (merge request)
• Add FK for bigint conversion for .com (merge request)
• Add sharding keys for instance_resiliency (merge request)
• Add sharding keys for portfolio_management (merge request)
• Add sharding keys for requirements_management (merge request)
• Add sharding keys for dynamic_application_security_testing (merge request)
• Add sharding keys for deployment_management (merge request)
• Add sharding keys for mlops (merge request)
• Create index asynchronously for merge_request_metrics by @schurzi (merge request)
• Fix cross joins on group members (merge request)
• Document best practices for components README (merge request)
• Add new fields (merge request)
• Migrate deprecated buttons to pajamas component by @missy-davies (merge request)
• Introduce golangci to Workhorse (merge request)
• Cleanup blobBlameInfo feature flag (merge request)
• Add guidelines for becoming a maintainer of GitLab Pages (merge request)
• Add index for the new primary key on system_note_metadata (merge request)
• Remove bulk_import_limit_concurrent_batches flag (merge request)
• Move MentionsConverter to Import namespace (merge request)
• Validate merge_request_diffs.project_id foreign key (merge request)
• Add sharding key to agent_user_access_project_authorizations (merge request)
• Add sharding keys for feature category fuzz_testing (merge request)
• Add sharding keys for feature category container_registry (merge request)
• Protected packages: Align logic for protection rules across registries by @gerardo-navarro (merge request)

EE (1 change)

• Add remediation badge to vulnerability report (merge request)

16.8.7 (2024-04-12)

No changes.

16.8.6 (2024-04-09)

Security (3 changes)

• Update Gitlab::Regex::Packages#slack_link_regex (merge request)
• Fix XSS in autocomplete in rich text editor (merge request)
• Correctly parse attachments for junit result (merge request)

16.8.5 (2024-03-27)

Security (2 changes)

• Limit the number of emojis we will transform (merge request)
• Fix stored xss in wikis using the abstract_reference_filter (merge request)

16.8.4 (2024-03-06)

Fixed (3 changes)

• Backport 145801 (Fix CI linter error when repository is empty) to 16.8
• Fix container repositories checksum mismatch errors GitLab Enterprise Edition
• Use the backup database connection while restoring timeouts

Security (2 changes)

• Restrict group token rotation for custom roles (merge request)
• Reset approvals when reopening a MR (merge request)

16.8.3 (2024-02-20)

Added (1 change)

• Allow creation of group-level custom-roles on self-managed instances GitLab Enterprise Edition

Fixed (3 changes)

• Avoid mutating OpenSSL::PKey::EC keys
• Fix X509::Signature#x509_issuer not working with OpenSSL 3
• Fix urlblocker validate calls with more options

Security (9 changes)

• Add a limit to CodeOwners reference extractor regex (merge request)
• Ensure LDAP user cannot sign in with password (merge request)
• Ensure LDAP users cannot reset local password to bypass LDAP (merge request)
• Disallow assigning higher role than current user (merge request)
• Check project read access in Environments and Operations dashboard (merge request)
• Invalidate markdown cache to clear up stored XSS (merge request)
• Disallow users to modify deploy key title (merge request)
• Adds authorization for analytics settings (merge request)
• Use merge_head_diff for codeowners when merge request is mergeable (merge request)

16.8.2 (2024-02-07)

Fixed (3 changes)

• Fix Redis 6.0 compatibility breakage with Sidekiq 7 gem
• Defer ConnectionPool instrumentation setup
• Fix invalid records with FK not valid

Security (4 changes)

• Fix CI component input Regexp (merge request)
• Make scan result policies block renaming branches (merge request)
• Restrict group access token creation for custom roles (merge request)
• Limit vulnerabilitiesCountByDay date range to 1 year (merge request)

16.8.1 (2024-01-24)

Fixed (1 change)

• Optimize garbage collection process

Changed (1 change)

• Migrate {hll_counters}_i_code_review_create_mr from hll to int

Security (5 changes)

• Devfile parser arbitrary file write (merge request)
• Use public email in tags atom feed (merge request)
• Fix improper username sanitization (merge request)
• Escape user input before building regex for linker (merge request)
• Do not allow non-team member to set MR assignees/reviewers (merge request)

16.8.0 (2024-01-17)

Added (113 changes)

• Enable security_policies_policy_scope by default (merge request) GitLab Enterprise Edition
• Enable compliance framework report by default (merge request) GitLab Enterprise Edition
• Improve issue weight system notes (merge request) GitLab Enterprise Edition
• Release the Maven dependency proxy (merge request)
• Make delete members API rate limit configurable (merge request)
• Adds support for mlflow experiment search (merge request)
• Adds ML Agent and AgentVersion models (merge request) GitLab Enterprise Edition
• Add code suggestions available to user graphql type (merge request) GitLab Enterprise Edition
• API option for returning top level namespaces only (merge request)
• Protected packages: Display busy table with loading icon by @gerardo-navarro (merge request)
• Add sorting to member roles GraphQL query (merge request) GitLab Enterprise Edition
• Log audit events when updating and deleting member roles (merge request) GitLab Enterprise Edition
• Add partition_id to Ci::PipelineConfig (merge request)
• Add Duo Chat access check to GraphQL API (merge request)
• Backfill zoekt_enabled_namespaces and zoekt_indices (merge request) GitLab Enterprise Edition
• Add description field for Ci::InstanceVariable and InheritedCiVariable (merge request)
• Add partition_id to Ci::PipelineArtifact (merge request)
• Add partition_id to Ci::PipelineMetadata (merge request)
• Remove manage_project_access_tokens FF (merge request) GitLab Enterprise Edition
• Ensure backfill of default branch protection setting (merge request)
• Group by OWASP Top 10 (merge request) GitLab Enterprise Edition
• Allow User to be specified for a CI Image or Service by @ar-mali (merge request)
• Add index project_id, component_version_id and id (merge request) GitLab Enterprise Edition
• Add support for inapplicable task items in RTE (merge request)
• Remove ff cache_control_headers_for_openid_jwks (merge request)
• Added gitlab_tags helper to MLflow API (merge request)
• Add GCP Secret Manager CI integration (merge request) GitLab Enterprise Edition
• Added tests to guardrail missing scopes (merge request)
• Release Pipeline execution polices as an experiment (merge request) GitLab Enterprise Edition
• Add ability to admin_terraform_state to custom roles (merge request) GitLab Enterprise Edition
• Add support for rich text editor in comment templates (merge request)
• Add rich text editor in iterations (merge request) GitLab Enterprise Edition
• Add owasp_top_10 filter to VulnerabilitySeverityCount GraphQL API (merge request) GitLab Enterprise Edition
• Add pages project settings API (merge request)
• Add mutation to update color (merge request) GitLab Enterprise Edition
• Expose epic-issue permissions in GraphQL (merge request)
• Add support for table alignment in RTE (merge request)
• Add Your resources tab to CI/CD Catalog (merge request)
• Wrap the serched text with double quotes when exact_search is passed (merge request) GitLab Enterprise Edition
• Add documentation for migration helpers (merge request) GitLab Enterprise Edition
• Enable ci_data_ingestion_to_click_house by default (merge request) GitLab Enterprise Edition
• Added initial Diffblue Cover integration by @roxspring (merge request)
• Redefine referenced FK ci_job_artifacts for self managed (merge request)
• Send Arkose Data Exchange payload on signup challenge initialization (merge request) GitLab Enterprise Edition
• Add system_id param to GET runners/:id/jobs endpoint (merge request)
• Use new GraphQL client to paginate deploy keys (merge request)
• feat: Protected packages: Project settings ui package protection rules by @gerardo-navarro (merge request)
• Replace clickhouse_ci_analytics FF with database config check (merge request)
• Create namespace descendants table (merge request)
• Add support for global HTTP TLS client cert (merge request)
• Migrate config_version for non-terminated workspaces (merge request) GitLab Enterprise Edition
• Hard limit daily phone verification transactions (merge request) GitLab Enterprise Edition
• Add Experiment badge and popover (merge request) GitLab Enterprise Edition
• Add WorkItems Rolledup Dates widget (merge request)
• Finalize BackfillPartitionIdCiPipelineChatData (merge request)
• Validate referenced FK constraints ci_job_artifacts (merge request)
• Add source_xid attribute to the ErrorTracking (merge request) GitLab Enterprise Edition
• Add ci_restrict_pipeline_cancellation_role to update project api (merge request) GitLab Enterprise Edition
• Support fetching versioned readme from GQL ciCatalogResource endpoint (merge request)
• workhorse: Support generating configuration via external command (merge request)
• Add setting to enforce 2FA for admins (merge request)
• Add color widget to work items (merge request) GitLab Enterprise Edition
• Add GraphQL to list all organizations in an instance for admin area (merge request)
• Cleanup truncate_ci_merge_request_description FF (merge request)
• Add migration to add_work_item_type_id to issues index (merge request) GitLab Enterprise Edition
• Add support for updating member_role permissions (merge request) GitLab Enterprise Edition
• Change data source for project level dependencies (merge request) GitLab Enterprise Edition
• Remove slash_commands_file_content flag (merge request) GitLab Enterprise Edition
• Enable SAML group sync for customizable roles (merge request) GitLab Enterprise Edition
• Add migration to add_work_item_type_id to issues index (merge request) GitLab Enterprise Edition
• Add Harbor to integrations docs (merge request)
• Schedule removal of invalid Vulnerabilities (merge request)
• Add online and offline dashboard panels (merge request) GitLab Enterprise Edition
• Add CI/CD Catalog alert to releases page (merge request)
• Add pagination to compliance framework report (merge request) GitLab Enterprise Edition
• Adding Model Version Metadata to MLflow (merge request)
• Add Manage group access tokens custom permission (merge request) GitLab Enterprise Edition
• Add graphql query to list policies for compliance framework (merge request) GitLab Enterprise Edition
• Add Google Play to integrations docs (merge request)
• Add support for cancelling drag on Esc (merge request)
• Add organization specification for group creation (merge request)
• Add a setting to allow/disallow duplicate Terraform modules (merge request)
• Add referrers to container repository tags in GraphQL API (merge request)
• Emit event when a release is published by @oelmekki (merge request)
• Expose instance level custom roles (merge request) GitLab Enterprise Edition
• Add new fields to GroupType (merge request)
• Add delete button to edit compliance framework page (merge request) GitLab Enterprise Edition
• Add zoekt enabled namespace and indices (merge request) GitLab Enterprise Edition
• Cache users from Bitbucket Server (merge request)
• Clean up BE for SecurityConfigurationController (merge request) GitLab Enterprise Edition
• Add name and path as fields for version type (merge request)
• Add feature toggle for security policies policy scope (merge request) GitLab Enterprise Edition
• Cache users from Bitbucket Server (merge request)
• Add discussion locked property to work item notes widget (merge request)
• Redefine referenced FK ci_job_artifacts (merge request)
• Add partition_id to Ci::PipelineChatData (merge request)
• Add props field to SBOM component parser (merge request)
• Add migration to add_work_item_type_id to issues index (merge request) GitLab Enterprise Edition
• Add organization specification for group creation (merge request)
• Add API for SBOM occurrences related-vulnerabilities (merge request) GitLab Enterprise Edition
• Add feature toggle for security policies policy scope (merge request) GitLab Enterprise Edition
• Add Delete Project custom permission (merge request) GitLab Enterprise Edition
• Adds CI minutes usage CSV export button (merge request) GitLab Enterprise Edition
• Enhance Security configuration response with features (merge request)
• Introduce verified_ca commit signature verification status (merge request) GitLab Enterprise Edition
• Add GraphQL fields to check if MR allows mutliple assignees/reviewers (merge request)
• Add index to ci_job_artifacts referenced FK (merge request)
• Add issue_id to epics (merge request)
• Add support to search by work item links in token input (merge request)
• Adding new scope for_container_path for container protection rule by @gerardo-navarro (merge request)
• Reference Terraform modules from a project (merge request)
• Clear work item types reactive cache when importing restrictions (merge request)
• Add diff_by_file_hash merge request action (merge request)

Fixed (103 changes)

• Fix migration error in sent_notifications migration (merge request)
• Validate import collaborator scope (merge request)
• Fix display of selected timezone for cities with duplicated identifiers (merge request)
• Fix unresolved OpenApi references (merge request)
• Make chat_names table migration idempotent (merge request)
• Add conditional chaining for systemNoteMetadata (merge request)
• Truncate source_title & source_url when creating BulkImports::Failure (merge request)
• Fix error when security policy CI contains no jobs (merge request) GitLab Enterprise Edition
• Fetch tag notes on release refresh (merge request)
• Work items lists: Fix focus ring overflow issue (merge request)
• Return error message when there is unlinked security policy project (merge request) GitLab Enterprise Edition
• Fix group milestone deletion by @Taucher2003 (merge request)
• Remove next badge from logged out header (merge request)
• Update Flux sync status for bad config (merge request)
• Package Metadata DB with v prefix (merge request) GitLab Enterprise Edition
• Fix preview button for instance templates (merge request) GitLab Enterprise Edition
• Fix broken state when undoing after uploading (merge request)
• Fix alignment issue with scan summary (merge request) GitLab Enterprise Edition
• Fix broken source maps after quick actions (merge request)
• Align icon with text in Code Quality widget (merge request)
• Fix wiki menus background color in darkmode by @lvckyapi (merge request)
• Breadcrumb: Remove extra whitespace when avatar is used (merge request)
• Fix date for state change in vulnerability discussions (merge request) GitLab Enterprise Edition
• Show unsupported message for doc tool SM (merge request) GitLab Enterprise Edition
• Implement GCP/AWS orphan artifacts clean up task (merge request)
• Show merge help text for failed pipelines (merge request)
• Fix Markdown not rendering in CI/CD catalog (merge request)
• Fix "error on credentials page for PATs with deleted group/project" (merge request) GitLab Enterprise Edition
• Fix duplicated policy approval rules in rule details (merge request) GitLab Enterprise Edition
• Fix Group#owned_by? and #has_user? methods to handle nil (merge request)
• Ignore pending access requests when calculating the highest group role (merge request)
• Update file size validation (merge request)
• Fix error creating pipeline with external policy CI (merge request) GitLab Enterprise Edition
• Add uniqueness validation to topic (merge request)
• Add estimate system note on issuable creation (merge request)
• Fix getting single custom role through graphQL (merge request) GitLab Enterprise Edition
• Fix locations count (merge request) GitLab Enterprise Edition
• Open file link for new modal in new tab (merge request) GitLab Enterprise Edition
• GraphQL doc update (merge request) GitLab Enterprise Edition
• Display error message when an existing stage name is used (merge request) GitLab Enterprise Edition
• Sec Finding details: Fix double-hash for file loc (merge request) GitLab Enterprise Edition
• Fix path generation error for #switch (merge request)
• Pipline Mini Graph: Fix max length for item (merge request)
• Issues list: Don't render empty closed badge (merge request)
• Show inherited security policies when user has access to project only (merge request) GitLab Enterprise Edition
• Remove relative_url from markdown preview in RTE (merge request)
• Make bundler-checksum work with Bundler v2.5.0 (part 2) (merge request)
• Add spacing between account providers (merge request)
• Fix long session expiry for some requests (merge request)
• Prevent unnecessary sessions in API requests (merge request)
• Provide ref to BlameData query (merge request)
• Fix the vulnerability statistic calculation logic (merge request) GitLab Enterprise Edition
• Show top-bar full width when right-sidebar is present (merge request)
• Right sidebar gutter toggle fix position (merge request)
• Fix: Remember me cookie not set when bypassing by @gerardo-navarro (merge request)
• Fix TypeError for invalid package.json dependencies (merge request)
• Fix NoMethodError for track event method (merge request)
• Clear runner heartbeat when the last manager is removed (merge request)
• Fix file browser drag handle height (merge request)
• Fix 500 error when anonymous user visits explore/catalog (merge request)
• Add missing ci_sources_pipelines indexes for self-host (merge request)
• Add the missing definition for Discord integration (merge request)
• Allow auditors to view job history of a runner (merge request) GitLab Enterprise Edition
• Make bundler-checksum work with bundler v2.5.0+ (merge request)
• Add sorting for the name column of the policies table by @vinod.kumar827 (merge request) GitLab Enterprise Edition
• Use toast for preferences saved notification (merge request)
• Fixed clicking global Duo Chat button after dismissed callout (merge request) GitLab Enterprise Edition
• Add scheduled DAST scans to be executed by security policy bot (merge request) GitLab Enterprise Edition
• Fix Gradle publish failure in FIPS mode (merge request)
• Exclude artifact & package sizes when calculating project export limit (merge request)
• Add infinite scrolling to projects_dropdown (merge request)
• Pipeline Sec: remove ext-link icons from alerts (merge request) GitLab Enterprise Edition
• Fixes VSA dropdowns when editing an existing stage (merge request) GitLab Enterprise Edition
• Update issuable assignment change email copy (merge request)
• Fix 500 error when not signed in (merge request) GitLab Enterprise Edition
• Fix change_column_type_concurrently for migration v2 (merge request)
• Avoid mapping by connected GitHub accounts during gitea import (merge request)
• Fix missing page_bundles CSS for Jira issues (merge request) GitLab Enterprise Edition
• Fix commit references being rendered inadvertently (merge request)
• Fix conflicting MR link when MR created from fork by @zzaakiirr (merge request)
• Fix GitHub Import worker spread calculation (merge request)
• Fix Zero shot prompt validation error (merge request) GitLab Enterprise Edition
• Add label-for attributes (merge request) GitLab Enterprise Edition
• Escape unicode null characters before parsing the security report (merge request) GitLab Enterprise Edition
• Fix browser navigation for vulnerability tabs (merge request) GitLab Enterprise Edition
• Check if owner account exists (merge request)
• Fixed an incorrect parameter for deleting draft notes in the API (merge request)
• Do not run ElasticCommitIndexerWorker on secondary geo nodes by @zzaakiirr (merge request) GitLab Enterprise Edition
• Exclude archived projects from group project templates list (merge request) GitLab Enterprise Edition
• Ensure timestamps are set for manually created vulnerabilities (merge request) GitLab Enterprise Edition
• Project overview mirrored message improvements (merge request) GitLab Enterprise Edition
• Use VulnerabilityReadsFinder for InstanceSecurityDashboard counts (merge request) GitLab Enterprise Edition
• Project overivew: Add permission check for edit button (merge request)
• Ingest owasp_top_10 for multiple identifiers finding map (merge request) GitLab Enterprise Edition
• Fix more badge in issuables lists (merge request)
• Fix alignment of buttons on readme only preference (merge request)
• Fix issues with Member Roles API (merge request) GitLab Enterprise Edition
• Fix cluster reindexing document_count (merge request) GitLab Enterprise Edition
• Fix Advanced search dropdowns (merge request)
• Skip calculating signature fingerprint for certificates (merge request)
• Ensure the approvals can not be changed after merge (merge request)
• Allow assigning of guests to confidential issues (merge request)
• Remove refresh_statistics_on_unlink_fork feature flag (merge request)

Changed (128 changes)

• Refactor start_and_due_date to use callbacks by @imskr (merge request)
• Replace autodevops illustrations with devops-sm (merge request)
• Show assignee and label shortcuts in tooltip (merge request)
• Migrate deprecated sorting-item vue component (merge request) GitLab Enterprise Edition
• Default enable group_analytics_dashboards feature flag (merge request) GitLab Enterprise Edition
• Enable security_policies_unenforceable_rules_notification by default (merge request) GitLab Enterprise Edition
• Add Cookie Preferences button in the footer (merge request)
• Migrate deprecated sorting-item vue component (merge request) GitLab Enterprise Edition
• Enable ff_require_saml_auth_to_approve by default (merge request) GitLab Enterprise Edition
• Add flag and disable Container Scanning CVS (merge request)
• Show edit issuable and wiki shortcut in tooltip (merge request) GitLab Enterprise Edition
• Scope epics internal_ids generation to issues usage (merge request)
• Add sbom_occurrence_properties table (merge request)
• Add feedback banner to product analytics dashboards (merge request) GitLab Enterprise Edition
• System note tweaks (merge request)
• Update dependency auto-deploy-image to v2.76.1 (merge request)
• Change order within admin appearance settings page by using the ABC by @bufferoverflow (merge request)
• Add keyboard shortcut to Web IDE dropdown option (merge request)
• Store full include path for CI components (merge request)
• Fix 500 error when Jira host is unreachable (merge request)
• This MR adds popover to experiment feature (merge request) GitLab Enterprise Edition
• Change variable modal action button to save (merge request)
• Replace deprecated dropdown on new project page by @daniel_magnus.bader (merge request)
• This MR fixes usage of reserved names (merge request) GitLab Enterprise Edition
• Enabling sast_reports_in_inline_diff flag by default in 16.8 (merge request) GitLab Enterprise Edition
• Change button alignment on variable drawer (merge request)
• Stop deleting merged MRs approval rules (merge request)
• Enabling audit_events_streaming_namespace_filter by default (merge request) GitLab Enterprise Edition
• Enable issues_completed_analytics_feature_flag feature flag by default (merge request) GitLab Enterprise Edition
• Add waiting time between phone verification code sends (merge request) GitLab Enterprise Edition
• Update GITLAB_PAGES_VERSION (merge request)
• Code suggestions: Update condition to check cut-off date (merge request)
• Standardize customizable permission type (merge request) GitLab Enterprise Edition
• Add warning to group creation page to avoid using dot (merge request)
• Refactor description widget to use callbacks by @imskr (merge request)
• Show copy source branch shortcut in tooltip (merge request)
• Ensure dashboards change to 1 column mode at small sizes (merge request) GitLab Enterprise Edition
• Filter out banned users in Contribution Analytics (merge request) GitLab Enterprise Edition
• Remove the commit count button (merge request)
• Move Cloud Seed files to cloud_seed namespace (merge request)
• Update nio4r gem to v2.7.0 (merge request)
• This MR fixes component registration in tests (merge request) GitLab Enterprise Edition
• Improve tests for filtering admin runners by creator by @zzaakiirr (merge request)
• Switch Zero Shot agent request traffic to AI Gateway (merge request) GitLab Enterprise Edition
• Make review emails easier to view on mobile (merge request)
• Current user todos widget service to use callbacks by @imskr (merge request)
• Drop dependency on nokogiri for GitLab gems (merge request)
• Use (merge) base pipelines as SRP comparison pipelines (merge request) GitLab Enterprise Edition
• Remove pending_status_check_responses ff (merge request) GitLab Enterprise Edition
• Remove timeout_status_check_responses ff (merge request) GitLab Enterprise Edition
• Increase the height of square and landscape logos (merge request)
• This MR fixes component registration in tests (merge request) GitLab Enterprise Edition
• Project overview: Reorder more dropdown items (merge request)
• Remove extra space around preferences link in shortcuts modal (merge request)
• Add migration to drop documents with old schema version (merge request) GitLab Enterprise Edition
• Adds tooltip to clarify container image storage (merge request)
• Update uri gem to v0.13.0 (merge request)
• This MR fixes component registration in tests (merge request) GitLab Enterprise Edition
• This MR fixes component registration in tests (merge request) GitLab Enterprise Edition
• Add Dismissal Reason to the vulnerability csv report (merge request) GitLab Enterprise Edition
• Improve accessibility in the two factor page (merge request)
• Add icon to branch and tag (merge request)
• Default ci_finished_builds timestamps to zero (merge request)
• Remove feature flag package_metadata_advisory_sync (merge request) GitLab Enterprise Edition
• This MR adds pagination for toggle list (merge request) GitLab Enterprise Edition
• Remove validation of title_html and description_html (merge request) GitLab Enterprise Edition
• Remove scan_result_policy_license_scanning_merge_base_pipeline flag (merge request) GitLab Enterprise Edition
• Add possibility to add new branch rules (merge request)
• Add order and bump migration version (merge request) GitLab Enterprise Edition
• Make value field resizable in CI Variables form (merge request)
• Replace epics issue_id foreign key to nullify on delete (merge request)
• Add validations for bucket name for AWS (merge request) GitLab Enterprise Edition
• Synchronously validate finding_id FK on vulnerabilities (merge request) GitLab Enterprise Edition
• Return 401 token invalid form graphql (merge request)
• Update dependency auto-deploy-image to v2.76.0 (merge request)
• Allow personal namespaces to use aggregated VSA (merge request) GitLab Enterprise Edition
• Asynchronously validate finding_id foreign key on vulnerabilities (merge request) GitLab Enterprise Edition
• Add a prefix to CI Build tokens behind a feature flag (merge request)
• Changed milestone burn chart to use segmented control by @zillemarco (merge request)
• Add tooltip to move card button in boards (merge request)
• Remove rules from target branch rules name (merge request) GitLab Enterprise Edition
• Add CI runner managers finder by @zzaakiirr (merge request)
• api: Expose archived field for CI jobs (merge request)
• Relocate admin mode switch from command palette to user menu (merge request)
• Add published_at to ContainerRegistry::Tag (merge request)
• Remove custom styling of tab elements (merge request)
• Added control to limit users to create group/project (merge request)
• Remove btn-group class from all listbox helper (merge request)
• Remove final instances of group_icon by @yonghyun.jin13 (merge request)
• Move organization_users to gitlab_main_cell (merge request)
• Add frontend for standards adherence export (merge request) GitLab Enterprise Edition
• This MR adds policy scope to a drawer (merge request) GitLab Enterprise Edition
• Save external_identifiers on ImportFailure for file import relations (merge request)
• Add slug to topics by @zzaakiirr (merge request)
• Reset repository checksum before publishing an updated event (merge request) GitLab Enterprise Edition
• Added modifier for wild card count link (merge request)
• Fixing jest spec violations for Vue.js v3 Migration (merge request)
• Use specific FullPathResolver descriptions by @ayushya0612 (merge request)
• Update description in CI/CD Variables settings (merge request)
• Send GitLab version and hostname during instance activation (merge request) GitLab Enterprise Edition
• Save phone verification record when the number relates to a banned user (merge request) GitLab Enterprise Edition
• Add index for events to efficiently query user contributions by @zzaakiirr (merge request)
• Set default vuln report filter to 'Still Detected' (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.72.0 (merge request)
• Change i_code_review_create_mr metric to total counts (merge request)
• Add a prefix to SCIM tokens behind a feature flag (merge request) GitLab Enterprise Edition
• Change telesign_intelligence feature flag type to ops (merge request) GitLab Enterprise Edition
• Notes: Refactor CSS (merge request)
• Analytics dashboards UI polish (merge request) GitLab Enterprise Edition
• Fix images not pasting in RTE (merge request)
• Remove in_product_marketing_emails model and table (merge request)
• Use plural form for packages & registries settings alerts by @zzaakiirr (merge request)
• This MR updated yaml preview (merge request) GitLab Enterprise Edition
• Compare most recent SBOM pipeline for license approval policies (merge request) GitLab Enterprise Edition
• Improve info on Free Public Namespaces (merge request) GitLab Enterprise Edition
• Center the content of the login page (merge request)
• Add params and sorting to group users API (merge request) GitLab Enterprise Edition
• Refactor code_suggestions_ga_non_owner_alert feature spec (merge request) GitLab Enterprise Edition
• Remove restyle_login_page feature flag (merge request)
• Remove feature flag ci_job_token_scope (merge request)
• MR code button: Migrate to GlButton (merge request)
• Use /react as the primary command (merge request)
• Introduce a timeout when finding or creating a container repository (merge request)
• Update dependency auto-deploy-image to v2.71.1 (merge request)
• Update users stats tables to use full width (merge request)
• Refactor notifications service by @imskr (merge request)
• Update feedback banner by @davidwatts111 (merge request)
• Updating policy ui by @davidwatts111 (merge request) GitLab Enterprise Edition

Removed (43 changes)

• Delete skip_refresh_project_policies feature flag (merge request) GitLab Enterprise Edition
• Remove convert_user_to_group_managed_accounts, remove_non_gma_memberships FFs and related code (merge request) GitLab Enterprise Edition
• Remove code_suggestions_used_by_default flag (merge request) GitLab Enterprise Edition
• Clean up environment alert experiment (merge request)
• Remove namespace CI Catalog (merge request) GitLab Enterprise Edition
• Remove geo_repository_replicator_legacy_behaviour feature flag (merge request) GitLab Enterprise Edition
• Remove unused tag_name and tag_path from VersionType (merge request)
• Drop epic_id Column From Vulnerabilities (merge request)
• Drop milestone_id Column From Vulnerabilities (merge request)
• Remove browrsersdk_tracking feature flag (merge request)
• Remove CA page size feature flag (merge request) GitLab Enterprise Edition
• Drop start_date Column From Vulnerabilities (merge request)
• Remove individual permissions from MemberRole API (merge request) GitLab Enterprise Edition
• Drop updated_by_id Column From Vulnerabilities (merge request)
• Drop last_edited_by_id Column From Vulnerabilities (merge request)
• Drop last_edited_at Column From Vulnerabilities (merge request)
• Removes sidebar_build_class method by @tedtran2019 (merge request)
• Removes format_project_count method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Cleanup the feature flag inherit_higher_access_levels_no_cross_join (merge request)
• Remove delayed_project_removal_help_text by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes ci_status_for_statuseable method by @tedtran2019 (merge request)
• Drop due_date Column From Vulnerabilities (merge request)
• Removes ci_variable_masked? method by @tedtran2019 (merge request)
• Removes root_ancestor_namespace method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Remove temp index from members table (merge request)
• Removes environment_for_build method by @tedtran2019 (merge request)
• Removes ci_variable_type_options method by @tedtran2019 (merge request)
• Removes pipeline_status_cache_key method by @tedtran2019 (merge request)
• Removes omnibus_protected_paths_throttle? method by @tedtran2019 (merge request)
• Removes vulnerability_data_with_category method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes show_trial_namespace_select? method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes any_project_not_in_hashed_storage? method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes show_profile_token_expiry_notification? by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes sort_title_project_name method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes methods from sorting_titles_values_helper by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes keep_deleted_option_label method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes delayed_deletion_disabled method by @tedtran2019 (merge request) GitLab Enterprise Edition
• Remove gitlab_routing_helper.rb: upgrade_plan_path by @tedtran2019 (merge request) GitLab Enterprise Edition
• Remove geo_helper.rb: prepare_error_app_data by @tedtran2019 (merge request) GitLab Enterprise Edition
• Removes users_helper.rb: users_sentence by @tedtran2019 (merge request) GitLab Enterprise Edition
• Drop start_date_sourcing_milestone_id Col From Vulnerabilities (merge request)
• Drop due_date_sourcing_milestone_id Col From Vulnerabilities (merge request)
• Drop index users_forbidden_state_idx (merge request)

Performance (4 changes)

• Cleanup referenced FK ci_job_artifacts (merge request)
• Bulk create license scan result policies (merge request) GitLab Enterprise Edition
• Remove feature flag optimize_where_full_path_in (merge request)
• Add pagination to UsersController#groups (merge request)

Other (73 changes)

• Refactor member roles front-end to use GraphQL instead of REST API (merge request) GitLab Enterprise Edition
• Add a constraint to ensure application_settings.rate_limits is a hash (merge request)
• Clean up FF scan_result_any_merge_request from backend (merge request) GitLab Enterprise Edition
• Remove unused prompt files for completion and generation (merge request)
• Fix tooltips on group "Shared projects" view by @antonykor.ak (merge request)
• Prepare partitioning constraints for ci_pipeline_variables (merge request)
• Add sharding keys for feature category compliance_management (merge request)
• Add sharding key group_id to agent_user_access_group_authorizations (merge request)
• Add sharding key project_id to agent_project_authorizations (merge request)
• Remove geo_proxy_lfs_batch_requests feature flag (merge request) GitLab Enterprise Edition
• Remove FF bulk_imports_batched_import_export (merge request)
• test: Test for feature flag in package registry settings by @gerardo-navarro (merge request)
• Fix text alignment in GitLab Pages Domain-level redirects (merge request)
• Protected packages: Return ServiceResponse for CreateNpmPackageService by @gerardo-navarro (merge request)
• Move group_setting app outside components directory (merge request) GitLab Enterprise Edition
• Docs: Support domain-level redirects (merge request)
• Ignore project_import_level column (merge request)
• Remove in_factory_bot_create? (merge request)
• Create index asynchronously for system_note_metadata (merge request)
• Remove bulk_import_details_page feature flag (merge request)
• Add support for split button loading (merge request) GitLab Enterprise Edition
• Remove default values ci_pipeline_chat_data#partition_id (merge request)
• Remove feature flag security_policies_variables_precedence (merge request) GitLab Enterprise Edition
• Add role to organization_users and assign creator as owner (merge request)
• Rename app component to reflect its purpose (merge request) GitLab Enterprise Edition
• Backfill namespace_id for issue_search_data (merge request)
• refactor: Add missing feature category to controller tests by @gerardo-navarro (merge request)
• Refactor ForkService tests (merge request)
• Stablize test to remove side effects (merge request)
• Drop plain-text columns from user_credit_card_validations table (merge request)
• Add index for owasp_top_10 to vulnerability_reads (merge request)
• Fix a false-positive test (merge request)
• Remove the FF use_gitlab_http_v2 (merge request)
• Remove feature flag user_approval_rules_removal (merge request)
• Backfill version field batch migration (merge request)
• Upgrade the Sidekiq gem to v7.1.6 (merge request)
• Remove create_user_ns_outside_model feature flag (merge request)
• Docs: GitLab Pages rate-limiting for IPv6 should be based on /64 prefix (merge request)
• Ban use of License in ApplicationSetting model (merge request) GitLab Enterprise Edition
• Show the most correct set of approval rules post merge (merge request)
• Migrates OmniAuth login button to use Pajamas (merge request)
• Update AI generated MR text (merge request)
• Remove feature flag always_set_pipeline_failure_reason (merge request)
• Backfill owasp_top_10 on existing vulnerability_reads records (merge request)
• test: Remove duplicate test cases for Npm::CreatePackageService by @gerardo-navarro (merge request)
• Remove feature flag allow_streaming_instance_audit_events_to_amazon_s3 (merge request) GitLab Enterprise Edition
• Schedule async validation for merge_request_diffs.project_id FK (merge request)
• test: Align and refactor test structure for package protection by @gerardo-navarro (merge request)
• Remove vite feature flag (merge request)
• Remove old summarize mr worker (merge request)
• Refactor event sync worker (merge request)
• Finalize batched background migrations (merge request)
• Create index_issues_on_namespace_id_iid_unique index SYNC (merge request)
• No-op migration due to incident (merge request)
• Refactor Gitlab::Git::Tree#where method (merge request) GitLab Enterprise Edition
• Reuse fallback's connection pool if identical (merge request)
• Remove use of deprecated_clipboard_button by @missy-davies (merge request)
• Remove ci_editor_ai_conversations table and related jobs (merge request)
• Initialize conversion of geo_event_id column type (merge request) GitLab Enterprise Edition
• Remove FF: updated_ai_powered_features_menu_for_sm (merge request)
• Resolving some group and project cross joins (merge request)
• Remove unused index (merge request)
• Move modal components to seperate directory (merge request) GitLab Enterprise Edition
• Refactor assignees widget service by @imskr (merge request)
• Migrate to Pajamas::AvatarComponent for _member by @tedtran2019 (merge request)
• Aligning variable name in test relaed to protected containers by @gerardo-navarro (merge request)
• Refactor repository storage move worker scheduling by @tedtran2019 (merge request)
• Refactor UI text for To-Do List empty state (merge request)
• Preload saml_provider unconditionally to fix N+1 queries (merge request) GitLab Enterprise Edition
• Finalize system_note_metadata bigint backfill (merge request)
• Finalize merge_request_diffs.project_id backfill (merge request)
• Bump the finalize_after date of backfill migration (merge request)
• Remove code_suggestions_completion_api feature (merge request) GitLab Enterprise Edition

16.7.7 (2024-03-06)

Fixed (1 change)

• Use the backup database connection while restoring timeouts

Security (1 change)

• Reset approvals when reopening a MR (merge request)

16.7.6 (2024-02-20)

Fixed (2 changes)

• Avoid mutating OpenSSL::PKey::EC keys
• Fix X509::Signature#x509_issuer not working with OpenSSL 3

Security (9 changes)

• Add a limit to CodeOwners reference extractor regex (merge request)
• Ensure LDAP user cannot sign in with password (merge request)
• Ensure LDAP users cannot reset local password to bypass LDAP (merge request)
• Disallow assigning higher role than current user (merge request)
• Check project read access in Environments and Operations dashboard (merge request)
• Invalidate markdown cache to clear up stored XSS (merge request)
• Disallow users to modify deploy key title (merge request)
• Adds authorization for analytics settings (merge request)
• Use merge_head_diff for codeowners when merge request is mergeable (merge request)

16.7.5 (2024-02-07)

Fixed (1 change)

• Update dependency prometheus-client-mmap to '~> 1.1', '>= 1.1.1'

Security (3 changes)

• Fix CI component input Regexp (merge request)
• Make scan result policies block renaming branches (merge request)
• Limit vulnerabilitiesCountByDay date range to 1 year (merge request)

16.7.4 (2024-01-24)

Fixed (1 change)

• Bring legacy verification behavior back for repositories GitLab Enterprise Edition

Security (5 changes)

• Devfile parser arbitrary file write (merge request)
• Use public email in tags atom feed (merge request)
• Fix improper username sanitization (merge request)
• Escape user input before building regex for linker (merge request)
• Do not allow non-team member to set MR assignees/reviewers (merge request)

16.7.3 (2024-01-13)

Fixed (1 change)

• Make chat_names table migration idempotent (merge request)

16.7.2 (2024-01-10)

Fixed (1 change)

• Add missing ci_sources_pipelines indexes for self-host (merge request)

Changed (1 change)

• Enable Apollo Boards by default (merge request)

Security (4 changes)

• Consider older commits when resetting codeowner approvals (merge request)
• Password reset followups (merge request)
• Add verification layer for BaseSlash commands (merge request)
• Ensure workspaces are created under same root namespace as agent (merge request)

16.7.0 (2023-12-20)

Added (199 changes)

• Geo: Skip download of new blob if already exists (merge request) GitLab Enterprise Edition
• Exempt paid non-trial/enterprise users from identity verification (merge request) GitLab Enterprise Edition
• Add feature toggle for custom CI execution policy (merge request) GitLab Enterprise Edition
• Add namespace setting to enable/disable NuGet symbol server (merge request)
• Soft limit daily phone verification transactions (merge request) GitLab Enterprise Edition
• Cleanup and reschedule finding_id backfilling (merge request)
• Add WorkItems::DatesStart table/model (merge request)
• Allow handling instance custom roles via graphql (merge request) GitLab Enterprise Edition
• Remove SAML Microsoft Attribute Feature Flag (merge request)
• Save timestamp for login in session storage (merge request) GitLab Enterprise Edition
• feat: Add graphql mutation to update container protection rules by @gerardo-navarro (merge request)
• Add feature spec for MR approval settings (merge request) GitLab Enterprise Edition
• Add code added to onboarding progress (merge request)
• Add new fields to GroupType (merge request)
• Store the information about the generated files (merge request)
• Add namespace filtering to streaming destinations (merge request) GitLab Enterprise Edition
• Use XRay data for code generation (merge request) GitLab Enterprise Edition
• Enable security_policies_variables_precedence by default (merge request) GitLab Enterprise Edition
• Expose timeToMerge metrics via GraphQL (merge request) GitLab Enterprise Edition
• Adding group and project filters for instance audit streaming (merge request) GitLab Enterprise Edition
• Add arkose_labs_data_exchange_key column to applicatio_settings table (merge request) GitLab Enterprise Edition
• Move add/editing compliance frameworks to separte page (merge request) GitLab Enterprise Edition
• Added auto_cancel_pipeline_on_job_failure and feature flag by @zillemarco (merge request)
• Support path redirect for component projects (merge request)
• Support multiple ids when querying compliance frameworks (merge request) GitLab Enterprise Edition
• Add support for cyclonedx specVersion 1.5 (merge request)
• Add pre receive secret detection documentation (merge request)
• Adding gin index on name field of compliance frameworks table (merge request)
• Update ingestion logic for vulnerability reads owasp top 10 (merge request) GitLab Enterprise Edition
• Remove explain_vulnerability feature flag (merge request) GitLab Enterprise Edition
• Remove slash_commands feature flag (merge request) GitLab Enterprise Edition
• Add restrict_pipeline_cancellation_role to read project api (merge request) GitLab Enterprise Edition
• Add Internal Events Tracking to Insights charts (merge request) GitLab Enterprise Edition
• Store the information about the generated files (merge request)
• Add PostgresSequence view (merge request)
• Add user viewing catalog logging (merge request)
• Add support for include_descendants (merge request)
• Expose VSD distinct contributor counts via GraphQL (merge request) GitLab Enterprise Edition
• Adding functionality of searching compliance frameworks by name (merge request) GitLab Enterprise Edition
• Remove non_public_artifacts FF (merge request)
• Use Ci::Catalog::Listing class in the Resource Resolver (merge request)
• Add tests for license scanning (merge request) GitLab Enterprise Edition
• Adds API to control model registry project setting (merge request)
• Release Conversational Pipeline Editing (merge request) GitLab Enterprise Edition
• Store the information about the generated files (merge request)
• Background syncing of 'catalog_resources' and 'projects' tables (merge request)
• Add counts.enterprise_users metric (merge request) GitLab Enterprise Edition
• Synchronous index creation to support finding_id backfill (merge request)
• Add performance tests for sync license (merge request) GitLab Enterprise Edition
• Add publish_group feature to Gitlab::EventStore (merge request)
• Reopen issues on a new note from external participants (merge request)
• Add support for querying work items counts by state (merge request)
• Add vulnerabilities to sbom_occurrences ingestion (merge request) GitLab Enterprise Edition
• Compare pipeline refs for secondary jobs (merge request) GitLab Enterprise Edition
• Add the archive_project custom permission (merge request) GitLab Enterprise Edition
• Handles merged events on GitHub Import (merge request)
• Add interruptible to trigger jobs (merge request)
• Add memberCount to memberRole GraphQL type (merge request) GitLab Enterprise Edition
• Create BranchRuleUpdate graphql endpoint (merge request)
• Sync npm metadata cache when package is marked for destruction (merge request)
• Add posibility to return permission in upcase (merge request) GitLab Enterprise Edition
• Add GraphQL API to delete instance Amazon S3 configurations (merge request) GitLab Enterprise Edition
• Rollout enable_remove_all_vulnerabilties_from_project_mutation feature (merge request)
• Allow administrators to provide public security contact information (merge request)
• Adds project feature availability check for model registry (merge request)
• Remove job log jump to failures flag (merge request)
• Add GraphQL API to update instance Amazon S3 configurations (merge request) GitLab Enterprise Edition
• Refactor refresh job for Self-Managed (merge request) GitLab Enterprise Edition
• Implement background syncing for catalog_resources and projects (merge request)
• Inject data attributes to render maven dependency proxy settings (merge request) GitLab Enterprise Edition
• feat: Add graphql mutation to delete container protection rules by @gerardo-navarro (merge request)
• Expose allowedChildTypes in WorkItemType graphQL type (merge request)
• Enable global_ci_catalog globally (merge request)
• Schedule asynchronous index creation to support finding_id backfill (merge request)
• Add a refresh_token parameter to SyncSeatLinkRequestWorker (merge request) GitLab Enterprise Edition
• Endpoint for symbol file download (merge request)
• Update delete_ineligible_user_assignments method (merge request) GitLab Enterprise Edition
• Refactor AffectedVersionRangeMatcher class (merge request) GitLab Enterprise Edition
• Add SAML Auth for Approvals (merge request) GitLab Enterprise Edition
• Add documentation for pages_path_prefix on gitlab-ci.yml (merge request)
• Adding complex merge order dependencies (merge request)
• Add API for listing instance_amazon_s3_configuration for audit events (merge request) GitLab Enterprise Edition
• Add GraphQL mutation to update Organization (merge request)
• Add unique indexes to ci_job_artifacts (merge request)
• Display the new PyPi package metadata fields (merge request)
• Validate key field in CI variables form (merge request)
• Add workload type details (merge request)
• Add workload type details (merge request)
• Create Package during Model Version creation (merge request)
• Add finding builder for Container Scanning (merge request)
• Refactor UserAddOnAssignments and the GQL API (merge request) GitLab Enterprise Edition
• Allow to query value streams on GraphQL (merge request)
• Full dotenv vars support in downstream pipelines by @renehernandez (merge request)
• Include owasp_top_10 to vulnerabilities read model (merge request) GitLab Enterprise Edition
• Introduce new fields to GraphQL ProjectType (merge request)
• Added Diffblue Cover CI template by @roxspring (merge request)
• Hide label close button when label is locked (merge request)
• Add streaming to /code_suggestions/completions API (merge request) GitLab Enterprise Edition
• Added drill down functionality to select Insights charts (merge request) GitLab Enterprise Edition
• Added MLflow API to search for Registered Models (merge request)
• Adds backend project setting for model registry (merge request)
• Restict CI cancellation by role (merge request) GitLab Enterprise Edition
• Change project_authorizations.user_id to LFK (merge request)
• Adding MLFlow API for creating model versions (merge request)
• Add worker to cleanup orphaned packages_nuget_symbols records (merge request)
• Add feature to stream instance audit events to Amazon S3 destinations (merge request) GitLab Enterprise Edition
• Add API for creating instance_amazon_s3_configuration for audit events (merge request) GitLab Enterprise Edition
• Use code suggestions without GitLab Duo prefix (merge request) GitLab Enterprise Edition
• Enable Natural Language Git assistent (merge request)
• Adds query 'Query.addOnPurchase' (merge request) GitLab Enterprise Edition
• Add auto_cancel_on_new_commit to ci_pipeline_metadata and remove a const (merge request)
• Show dismissal reason descriptions in bulk actions (merge request) GitLab Enterprise Edition
• Feat(key_contacts_management): Add feature flag (merge request) GitLab Enterprise Edition
• Allow comment in SecurityFindingRevertToDetected mutation (merge request) GitLab Enterprise Edition
• Store event durations in VSA tables (merge request)
• Prepare Ci::JobArtifact for partitioning 1/3 (merge request)
• Add Mutations::Vulnerabilities::RemoveAllFromProject (merge request) GitLab Enterprise Edition
• Add integration tests for license scanning (merge request) GitLab Enterprise Edition
• Add retry:exit_codes syntax for CI config by @BaptisteLalanne (merge request)
• Introduce Gitlab::CircuitBreaker (merge request)
• Introduce extended_trailers field in commits API (merge request)
• Allow specifying Docker image platform to pull by @ar-mali (merge request)
• Filtering audit events by namespace filters (merge request) GitLab Enterprise Edition
• Update security policies when compliance framework is updated (merge request) GitLab Enterprise Edition
• Docs: Add auth_timeout flag for Gitlab Pages (merge request)
• Work items - Add ancestors widget (merge request)
• Add test sumary section to the job section sidebar (merge request)
• Add member_role_id to group_saml_links (merge request) GitLab Enterprise Edition
• Enable Contribution Analytics page size FF (merge request) GitLab Enterprise Edition
• Add self_managed_add_on_eligible_users to query types (merge request) GitLab Enterprise Edition
• Added MLFLow API to delete a registered model by name (merge request)
• Reschedule BackfillFindingIdInVulnerabilities background migration (merge request)
• Add endpoint for prevent_merge_without_jira_issue (merge request) GitLab Enterprise Edition
• Add experimental namespace_in_path pages url in project deploy (merge request)
• Show email_reset_offered_at to admin users (merge request)
• Add watch API for k8s services (merge request)
• Add watch API for k8s workload types (merge request)
• Add comment form to an abuse report (merge request)
• Breadcrumbs navigation in the Workspaces UI (merge request)
• Log audit event when custom role is created (merge request) GitLab Enterprise Edition
• Add product analytics group usage quota tab (merge request) GitLab Enterprise Edition
• Add object_format field to project_repositories (merge request)
• Add allowsMultipleAssignees field to assignees widget defintion (merge request) GitLab Enterprise Edition
• Remove mastodon_social_ui feature flag (merge request)
• Add saving a custom role to SAML providers (merge request) GitLab Enterprise Edition
• Show survey alert when group_analytics_dashboards is enabled (merge request) GitLab Enterprise Edition
• Add support for ObjectFormatRequest RPC (merge request)
• Make job_artifact_state partitionable (merge request)
• Add Mutation.memberRoleDelete to delete a member role (merge request) GitLab Enterprise Edition
• Allow staring and unstaring of a project via GraphQL by @espadav8 (merge request)
• Add migration for new column (merge request)
• Add filter_project_topics setting to Dora Performers Score chart (merge request) GitLab Enterprise Edition
• Track CS subscription namespace IDs (merge request) GitLab Enterprise Edition
• Enable generate commit message through VertexAI (merge request) GitLab Enterprise Edition
• Use correct attribute for distro_version (merge request)
• This MR adds linked file mode (merge request) GitLab Enterprise Edition
• Add member_role_id to saml_providers (merge request) GitLab Enterprise Edition
• Link security policies to compliance frameworks on policy change (merge request) GitLab Enterprise Edition
• Add projects field to compliance framework GraphQL type (merge request) GitLab Enterprise Edition
• Import approvals from Bitbucket server (merge request)
• Allow to update/create stages for value streams (merge request) GitLab Enterprise Edition
• Set up many-to-many assoc between AbuseReport and User (assignee) (merge request)
• Add user_permissions field to ContainerRepository/Tag type (merge request)
• Added predefined variable for merge request descriptions (merge request)
• Display spam icon to admins next to snippets of banned users (merge request)
• Introduce new Group Users API endpoint (merge request) GitLab Enterprise Edition
• Create instance_audit_events_amazon_s3_configurations table (merge request) GitLab Enterprise Edition
• Expose present_on_default_branch field (merge request) GitLab Enterprise Edition
• Use SyncServiceTokenWorker by default (merge request)
• Release remove remote_development_feature_flag (merge request) GitLab Enterprise Edition
• Add UI to support SHA256 repositories creation (merge request)
• Add workspaces_quota and workspaces_per_user_quota fields (merge request)
• Add X-Gitlab-Host-Name to the AI Gateway header (merge request)
• feat: Add graphql mutation to update package protection rules by @gerardo-navarro (merge request)
• Add unit test for license scanning (merge request) GitLab Enterprise Edition
• Converted search type indicator to Vue (merge request) GitLab Enterprise Edition
• This MR adds section for custom yaml (merge request) GitLab Enterprise Edition
• Add max_workspaces & max_workspaces_per_user field (merge request)
• Rate limit /completions API endpoint (merge request) GitLab Enterprise Edition
• Enable generate test file functionality through vertex (merge request) GitLab Enterprise Edition
• Allow specifying Docker image platform to pull by @ar-mali (merge request)
• Added destroy api for namespace filters (merge request) GitLab Enterprise Edition
• Add COMPRESS_CMD backup option (merge request)
• Adds read_timeout to Service Desk custom email verification errors (merge request)
• Default_resources_per_workspace_container, max_resources_per_workspace (merge request)
• Adjust ingestion pipeline to populate finding_id (merge request) GitLab Enterprise Edition
• Accept current_file parameter for Duo Chat (merge request) GitLab Enterprise Edition
• Enfoce SSH Certificates via Settings (merge request)
• Initial commit of gitlab-secret_detection gem (merge request)
• Adds the Ci::Catalog::Resources::Destroy service (merge request)
• Add metrics for compliance group (merge request) GitLab Enterprise Edition
• Enable scan_result_any_merge_request by default (merge request) GitLab Enterprise Edition
• Add setup for new Ultimate trial plan (merge request) GitLab Enterprise Edition
• Add Tool option to Group By (merge request) GitLab Enterprise Edition
• Removes widget_pipeline_pass_subscription_update feature flag (merge request)
• Add clean Gitlab Duo chat history functionality (merge request) GitLab Enterprise Edition
• This MR adds compliance framework tooltip (merge request) GitLab Enterprise Edition
• Ingest Service Desk custom email address replies (merge request)
• Removes the target_branch_rules_flag feature (merge request)

Fixed (207 changes)

• Prevent duplicate resource links in incidents (merge request)
• Milestones finder - filter by id OR title by @zzaakiirr (merge request)
• Awards: Fix alignment with custom Emojis (merge request)
• Fixed the layout of the work item health status widget by @zillemarco (merge request)
• Refresh security policies only when user is present in approvers (merge request) GitLab Enterprise Edition
• Improved reorderable lists for touch devices (merge request) GitLab Enterprise Edition
• Allow creating assignee lists for invited members (merge request) GitLab Enterprise Edition
• Hide "Merge immediately" button when fast-forward is not possible (merge request) GitLab Enterprise Edition
• Fix creating/updating/destroying of project group links (merge request)
• Animate approval icon on MR reviewers section (merge request)
• Fix inline code serialization in rich text editor (merge request)
• Fix pasting in code blocks in content editor (merge request)
• Fix code block serialization in rich text editor (merge request)
• Close button was not being dispalyed for open MRs (merge request)
• Include group links in access level checks (merge request) GitLab Enterprise Edition
• Add importing: true to GitHub import objects (merge request)
• Fix N+1 queries in vulnerability exports (merge request) GitLab Enterprise Edition
• Fix URL on the UI when unique domain and namespace_in_path is enabled (merge request)
• Stop finding tagless releases (merge request)
• Skip importing pull requests from forks (merge request)
• Push Rules API 404 when dot in the namespace (merge request) GitLab Enterprise Edition
• Fix the missing routing in wiki elasticsearch (merge request) GitLab Enterprise Edition
• Update security_findings fix_available filter to include solution field (merge request) GitLab Enterprise Edition
• Unify storage related banners width (merge request)
• Changes for PAT creation to calculate expiry date as set by user (merge request) GitLab Enterprise Edition
• Fix Board Issue avatar spacing (merge request)
• Fix scrolling issue in rich text editor autocomplete (merge request)
• Fix scrolling tabs on activity view (merge request)
• Fix quick links styling with autodevops off (merge request)
• Dependency Proxy: add group access scope checks (merge request)
• Move deprovisioning of paid group and project features (merge request) GitLab Enterprise Edition
• Include blob_path in VulnerabilityLocationType (merge request) GitLab Enterprise Edition
• Vulnerability report: fix sticky header when error (merge request) GitLab Enterprise Edition
• Fix metrics server not shutting down when Puma is stopped (merge request)
• Show project actions dropdown text on small screens (merge request)
• Add method for removing duplicate epics (merge request) GitLab Enterprise Edition
• Use search_service to determine type (merge request)
• Deduplicate finding maps by UUID before ingestion (merge request)
• Emoji Picker: Fix wrongly shown active tab after closing (merge request)
• Refactor wiki_class_proxy to make simple (merge request) GitLab Enterprise Edition
• Fixed search type indicator bug (merge request)
• Checks if import data contains credentials and data (merge request)
• Fix enabled_zoekt? logic (merge request) GitLab Enterprise Edition
• Prevent showing repos in the new MR dropdown that are inaccessible (merge request)
• Update invalid rules text color for 4.5:1 WCAG 2.1 AA contrast (merge request)
• Do not fail import on NoMethodError (merge request)
• Finding builder errors should be recoverable (merge request)
• Choosing a base diff if using a specific diff id (merge request)
• Don't show project limit popover when FF is disabled (merge request) GitLab Enterprise Edition
• Search indication message alignment (merge request)
• Handle invalid vulnerabilities, finalize bg migration (merge request) GitLab Enterprise Edition
• Tree header controls: Fix alignment and spacing on mobile (merge request)
• Refactor logged out header to isolate styles specific to it's usage (merge request)
• Fix sticky header on vulnerability reports (merge request) GitLab Enterprise Edition
• Fetch group and project after session has been loaded (merge request)
• Accept [PermissionsEnum] instead of [String] (merge request) GitLab Enterprise Edition
• Fix rich text editor format toolbar wrapping (merge request)
• Sanitize custom maintenance mode message (merge request) GitLab Enterprise Edition
• Update logs tree encoding method (merge request)
• fix: Secret Detection findings should require manual resolution (merge request) GitLab Enterprise Edition
• Fix deprovisioning paid features upon transfer to subgroups (merge request) GitLab Enterprise Edition
• Use until_executed deduplication for CoverageReportWorker (merge request)
• Copy iteration system notes on moving issue (merge request) GitLab Enterprise Edition
• Fixes error when noteable is Commit in CreateNoteHandler (merge request)
• Provide minimal access options for custom roles (merge request) GitLab Enterprise Edition
• Fix undefined method <= for nil:NilClass on pages:deploy (merge request)
• Correct aria-expanded usage for related issues (merge request) GitLab Enterprise Edition
• Fix duplicate CI variables when running manual jobs (merge request)
• Add snowsplow to the CSP of all controllers (merge request)
• Compliance framework badge remove custom styles (merge request) GitLab Enterprise Edition
• Fix pre-enforcement banner width (merge request)
• Fix maintenance mode toggle in admin settings (merge request) GitLab Enterprise Edition
• Fix broken dependency list aggregation (merge request) GitLab Enterprise Edition
• Requeue backfill migration for remediations (merge request)
• Update branch protection default setting values (merge request)
• Correctly deduplicate vulnerabilities with 8 digit image tags (merge request) GitLab Enterprise Edition
• Fix project templates at instance level (merge request)
• Fix alignment issues with the MR widget (merge request) GitLab Enterprise Edition
• Fix undefined method `downcase' error (merge request)
• Send confirmation instructions to provisioned by group users if needed (merge request) GitLab Enterprise Edition
• Bump LocalStorageCache key version (merge request)
• Sidebar spacing changes (merge request)
• Do not import if import data is missing (merge request)
• Render different headings when isModal is false (merge request)
• Update creation of Direct Transfer batch exports to use in_batches (merge request)
• Convert events author_id to users foreign key to a LFK (merge request)
• Upsert Vulnerabilities::Scanner (merge request) GitLab Enterprise Edition
• Fix 500 error for X509 commits without a certificate (merge request)
• Allow paratheses for template names (merge request)
• Fix loading of ancestors for signed out users (merge request)
• Fix Z-index Issue on inline Findings Dropdown (merge request)
• Fix hidden retry job dropdown in safari (merge request)
• Fix 500 error when accessing resources as anonymous user (merge request)
• Consider relative URL root in group overview tabs by @zzaakiirr (merge request)
• Fix pages path_prefix ci variable expansion (merge request) GitLab Enterprise Edition
• Fix work item loading as signed out user (merge request)
• Fix code generation anthropic prompt (merge request) GitLab Enterprise Edition
• Fix push & merge branch rules label (merge request)
• Fix task list updates for different issue types (merge request)
• Fix clicking edit the second time on commit comments (merge request)
• Skip email domain checks for service accounts (merge request) GitLab Enterprise Edition
• Gracefully handle corrupted/invalid repo HEAD (merge request)
• Fix work item ancestor loading for user namespaces (merge request)
• Fix undefined framework_id error when unassigning framework (merge request) GitLab Enterprise Edition
• Update mobile spacing of nav links (merge request)
• Commit info: Fix for broken wrapping (merge request)
• Update docs redirects 2023-11-29 (merge request)
• Adjust styling of md editor header (merge request)
• Improve error handling on Usage Quotas (merge request) GitLab Enterprise Edition
• Fix cluster reindexing preflight check (merge request) GitLab Enterprise Edition
• Fix unlocking non-successful pipelines (merge request)
• Fix issue and epic title alignment on small screens (merge request)
• Quick action parsing fixed (merge request)
• Remove notifications from sm issue dropdown behind feature flag (merge request)
• Fix pull mirroring for projects created from templates (merge request) GitLab Enterprise Edition
• Stop Inline Findings Polling when error occurred (merge request) GitLab Enterprise Edition
• Fix scope of project visibility checks when changing group visibility (merge request)
• Fix overflow issue of focus in commit info (merge request)
• Comment on file button expands the file (merge request)
• Remove contributions_calendar_refactoring feature flag by @zzaakiirr (merge request)
• Fix adding confidential child tasks (merge request)
• Fix TLS support for standalone Redis (merge request)
• Fix Kubernetes cluster health badge (merge request)
• Fix project access tokens page for admin (merge request)
• Return job_waiter if an error is raised (merge request)
• Fix javascript errors that occur due to missing elements on project page (merge request) GitLab Enterprise Edition
• Add delay between pipeline schedules execution (merge request)
• Fix copy ref shortcut on issues (merge request)
• Pipelines Artifact set max-height to dropdown (merge request)
• Clarify error when base url invlaid (merge request)
• Blob controls: Fix alignment (merge request)
• MR widget: remove double border Part II (merge request)
• Allow PAT to be rotated in edge case (merge request) GitLab Enterprise Edition
• Bitbucket server should not import when failed (merge request)
• Fix NoMethodError in Vulnerabilities::RemoveAllVulnerabilitiesWorker (merge request)
• Rename package metadata advisory source xid (merge request)
• Fix MS Graph Client validation of token when no token exists (merge request) GitLab Enterprise Edition
• Add migration to fix broken user achievement records by @Taucher2003 (merge request)
• Migrate fields of UserAchievement to Ghost User on User deletion by @Taucher2003 (merge request)
• Allow developers invited through group to read group runners (merge request)
• Set failure flag on parent import when an entity fails (merge request)
• Include scheduled when deduplicating ProcessScanResultPolicyWorker (merge request) GitLab Enterprise Edition
• Change the foreign key to member_roles on members (merge request)
• Fix the index_name in IndexrepairService (merge request) GitLab Enterprise Edition
• Fixed error for work item update task (merge request)
• Avoid idling in transaction when exporting relation using DirectTransfer (merge request)
• Move unlock pipeline cron scheduler out of ee (merge request)
• MR widget: remove double border (merge request)
• Improve delete_software_license_policies query (merge request)
• Refresh project statistics when removing a fork relationship (merge request)
• Add guard when vun read is absent (merge request) GitLab Enterprise Edition
• Allow + in abuse detection (merge request)
• Enable API redirection for moved projects (merge request)
• Truncate verification failure message to 255 (merge request) GitLab Enterprise Edition
• Package registry: truncate Pypi metadata fields (merge request)
• Handle invalid MIME type on multipart upload (merge request)
• Fixes type bug in MLflow Registered Models API response (merge request)
• Consistency fixes for Tasks widget (merge request)
• Fix ingestion logic for remediations (merge request)
• Geo: Fix VerificationStateBackfillWorker N+1 queries (merge request) GitLab Enterprise Edition
• Update formatTimeAsSummary helper function (merge request)
• Hide stage::deploy filter from issue/mr dashboard (merge request)
• Don't show /invite_email quick action on new issue (merge request)
• Boards - Fix fetching blocking issues (merge request) GitLab Enterprise Edition
• Fix inconsistent scroll to file in 'Show one file at a time' mode (merge request)
• Skip encrypted settings logic for Redis when used by Mailroom (merge request)
• Pipelines Artifact set max-height to dropdown (merge request)
• Replace cropper with cropperjs by @brianjaustin (merge request)
• Fix Security Reports widget not displaying error message (merge request) GitLab Enterprise Edition
• Failing bulk import entity on abort_on_failure (merge request)
• Allow project developers to read runners (merge request)
• Stop CI minutes legacy tracking (merge request)
• Clone button: Styles missing on empty project page (merge request)
• Randomize cron minutes for schedules (merge request)
• Fix token for repository tree keyset pagination (merge request)
• Fix iteration cadence and wild card filter for boards (merge request)
• Removing FF fallback_to_db to ensure we recache ids on cache miss (merge request)
• Fix vertical line on user activity (merge request)
• Allow users to authenticate via OAuth with password-based providers (merge request)
• Increase z index of MR sticky header (merge request)
• Remove Cluster Image Scanning (merge request)
• Only show published catalog resources (merge request)
• Fix public deploy key form (merge request)
• Add block to parent wiget collapsible listbox (merge request)
• Include merge request approved events in Profile heat map by @zzaakiirr (merge request)
• Convert reference text to a reference after spacebar (merge request)
• Handles issue refs that do not have specific issue names (merge request)
• Stop validating snippets when restoring from backup (merge request)
• Add PagesDeployment upload_finished field (merge request)
• Fixes MLflow compatibility issue in model versions API (merge request)
• Don't use cached value for snippet edit (merge request)
• Pipeline Minigraph: Fix job dropdown item link renders twice (merge request)
• Round deployment frequency avg. to nearest 10th (merge request) GitLab Enterprise Edition
• Resets pagination on applying filter on Seats tab on Usage Quotas page (merge request) GitLab Enterprise Edition
• Fix sidebar wiki heading color (merge request)
• Mini Pipeline: Fix alignment of linked items (merge request)
• Add exclusive lock for UpdateRepositoryStorageWorker (merge request)
• Use project CI config path to show CI blob viewer (merge request)
• Fixes LimitAlertComponent access check (merge request) GitLab Enterprise Edition
• Fix button alignment in child issues and epic widget (merge request)
• Fix group page erroring because of nil user (merge request)
• Increse billable users when using custom roles (merge request) GitLab Enterprise Edition
• Initialize Confirm Rollback Modal in Env Folders (merge request)
• Prefer custom sort order with search in users API (merge request)
• Return SAST report errors in an errors array (merge request) GitLab Enterprise Edition
• Support EDITOR having arguments in encrypted secrets Rake tasks (merge request)
• Release GitHub importer higher Sidekiq interrupts (merge request)

Changed (279 changes)

• Refactor code_suggestions_ga_non_owner_alert feature spec GitLab Enterprise Edition
• Adds support to filter packages by version (merge request)
• Add copy to clipboard button to merge conflict file header (merge request)
• Project/group overview: Migrate to use type scale heading (merge request)
• Issuables: Small visual changes to sidebar appearance (merge request)
• Skip ingesting the SBOM reports if any of the SBOM builds fail (merge request) GitLab Enterprise Edition
• Move profile/password to user_settings (merge request)
• Improve logs of the Sidekiq reliable fetcher (merge request)
• Change feature flag from dev to ops (merge request)
• Update gitlab pages version (merge request)
• Change the order of package tags when generate package metadata (merge request)
• Makes creating ai_features token always possible (merge request)
• Adding secuity details section to Project-level Secure Files docs (merge request)
• Allow local network for custom email SMTP host for self-managed (merge request)
• Display temporary extension details in subscription card (merge request) GitLab Enterprise Edition
• Add free access end date to code suggestions alert (merge request) GitLab Enterprise Edition
• Improve Security Training Description (merge request) GitLab Enterprise Edition
• Simplify the MR header with unicode characters and secondary button (merge request)
• Refactored TimelogResolver splitting it up into a resolver and a finder by @zillemarco (merge request)
• Backend changes for workspaces admin (merge request) GitLab Enterprise Edition
• Add filtering for the standards adherence report (merge request) GitLab Enterprise Edition
• Add explicit name to have predictable path name (merge request) GitLab Enterprise Edition
• Migrate ssh keys alert to use pajamas by @missy-davies (merge request)
• Add instance AWS S3 streaming destinations (merge request) GitLab Enterprise Edition
• Discussion lock: Add specs for FF (merge request)
• Warn webhook token will be cleared when URL changes (merge request)
• Add more patterns to gitleaks.toml (merge request) GitLab Enterprise Edition
• Emoji group picker: Migrate button (merge request)
• Truncate a ci mr description if it is too long (merge request)
• Project overview sidebar: Use right sidebar variable (merge request)
• Updates instructions for GitLab.com (merge request)
• Swap primary key on ci_pipeline_variables (merge request)
• Redirect personal access tokens to user_settings (merge request)
• Fixed cyclical dependency of custom project templates feature check (merge request) GitLab Enterprise Edition
• Add migrations for source_package_name column (merge request)
• Update devops illustration (merge request)
• Changed the documentation text from policy to statement (merge request)
• Update text for CI Variables settings (merge request)
• Update dependency auto-deploy-image to v2.71.0 (merge request)
• Migrate doorkeeper alert to use pajamas by @missy-davies (merge request)
• Add severity sorting for sbom_occurrences (merge request) GitLab Enterprise Edition
• Add way to disaable zoekt search via chatops (merge request) GitLab Enterprise Edition
• Enable blob blame by default (merge request)
• Enable graphql git blame feature flag (merge request)
• Cleanup for converted ci_stages.pipeline_id conversion for self host (merge request)
• Adds FE banner for importing projects (merge request)
• Redirect oauth applications to user_settings (merge request)
• Updating contribution docs by @davidwatts111 (merge request)
• Updating docs by @davidwatts111 (merge request)
• Only use code-gecko for code completion (merge request)
• Emoji group picker: Migrate button (merge request)
• Move git command assistant to vertex (merge request) GitLab Enterprise Edition
• Only use claude-2.0 for code generation (merge request)
• Emoji picker tab button migration (merge request)
• Enable linked_work_items by default (merge request)
• Remove approval rules when removing authorization (merge request) GitLab Enterprise Edition
• Exclude each_batch from Style/SymbolProc rubocop rule (merge request)
• Updating UI text by @davidwatts111 (merge request)
• Update dependency auto-deploy-image to v2.70.0 (merge request)
• Validate ref early in deployments API (merge request)
• Display settings panel for Dedicated (merge request) GitLab Enterprise Edition
• Unexpose url_variables from GET project_hooks (merge request)
• Mark Duo Chat as 'Beta' (merge request) GitLab Enterprise Edition
• Removes database migrations up to 15-6-stable-ee (merge request)
• Rename quick action /award to /react (merge request)
• Add a prefix to deploy tokens (merge request)
• Remove feature flag renaming_project_with_tags (merge request)
• Add include_descendants to iteration list API (merge request) GitLab Enterprise Edition
• Migrated signup omniauth buttons to pajamas (merge request) GitLab Enterprise Edition
• Release MemberRoleCreateInput.permissions (merge request) GitLab Enterprise Edition
• Delete feature flag create_project_subscription_graphql_endpoint (merge request)
• Fix project starrers layout (merge request)
• Enable vsa_predefined_date_ranges feature flag by default (merge request)
• Adds a new cop to flag the usage of pluck without a limit (merge request)
• Refactor search dropdowns to collapsible-listbox (merge request)
• Update sidekiq-cron to v1.12.0 (merge request)
• Adds additional step for Self-Managed instances (merge request)
• Export for standards adherence report backend (merge request) GitLab Enterprise Edition
• Code dropdown: Remove artifacts (merge request)
• Remove unused in product email code (merge request)
• This MR extends file path selector (merge request) GitLab Enterprise Edition
• This MR converts exception list to generic (merge request) GitLab Enterprise Edition
• Updates name of ComponentType and InputType in GQL (merge request)
• Re-adds project presenter spec (merge request)
• Remove serialized bitbucket importer and feature flag (merge request)
• Raise artifacts bulk delete selection limit to 100 (merge request)
• Enable free text entry for Kubernetes namespace (merge request)
• Add tooltips to compliance exports dropdown options (merge request) GitLab Enterprise Edition
• Redirect active_sessions to /-/user_settings/active_sessions (merge request)
• Added tasks back to issues API (merge request)
• Remove restrict_ci_job_token FF (merge request)
• Merge Application analytics and Analytics dashboards menu items (merge request) GitLab Enterprise Edition
• Improve autocomplete results in rich text editor (merge request)
• Update epic illustrations (merge request)
• Introduce a FF cache_control_headers_for_openid_jwks (merge request)
• Refactor search bar from search by click (merge request)
• Rename "Contributor statistics" to "Contributor analytics" (merge request)
• Improve order of mention autocomplete in epics (merge request)
• Hide config digest for manifest list tags (merge request)
• Code Suggestions GA alert for non owners (merge request) GitLab Enterprise Edition
• Issue cross-reference notes use issue type name (merge request)
• Updated logic for MLflow Run artifact_url (merge request)
• Migrate VSD metric drill-down event tracking to Internal Events Tracking (merge request) GitLab Enterprise Edition
• Limit updating can_create_group & projects_limit to Enterprise Users (merge request) GitLab Enterprise Edition
• Update empty state illustrations (merge request)
• Handle reset for ultimate-trial-paid-customer plan (merge request) GitLab Enterprise Edition
• Update warning when disabling group shared runners (merge request)
• Update Haml breadcrumbs to use GlBreadcrumbs styles (merge request)
• Adjust scroll to collapsed file (merge request)
• Test case layout update (merge request) GitLab Enterprise Edition
• Hide product analytics checkbox unless root (merge request) GitLab Enterprise Edition
• Rename pages "multiple versions" to "multiple deployments" (merge request)
• Remove flag that enables CVS GA (merge request) GitLab Enterprise Edition
• Refactor remote dev resolvers and finders (merge request)
• Add exponential backoff for bitbucket server client (merge request)
• Update exports text in the compliance center (merge request) GitLab Enterprise Edition
• Change param to include_ancestors (merge request)
• Enable autocomplete/members by default (merge request)
• Project storage: Hide if no permission (merge request)
• Cleanup "use_lock_for_update_repository_storage" feature flag (merge request)
• Disable use_sync_service_token_worker feature flag by default (merge request)
• Project/group name area updates (merge request)
• Cleanup for converted ci_stages.pipeline_id conversion (merge request)
• Improves performance of runners list with large number of jobs (merge request)
• Move compliance center export buttons (merge request) GitLab Enterprise Edition
• Add permissions arg to Mutation.memberRoleCreate (merge request) GitLab Enterprise Edition
• Update error to show in correct place (merge request)
• Refactor search dropdowns to collapsible-listbox (merge request)
• Update field title and allow tab to function as enter (merge request)
• Redirect audit_log to /-/user_settings/authentication_log (merge request)
• Namespace API expose GitlabSubscription.end_date (merge request) GitLab Enterprise Edition
• Audit CI variable changes (merge request) GitLab Enterprise Edition
• Display a list of permission for a custom role (merge request)
• Enables parsing nested sections in logs (merge request)
• Consistently use mmm dd, yyyy format for analytics dates (merge request)
• Update badge in CI/CD Catalog Settings to Beta (merge request)
• Update dependency auto-build-image to v1.51.0 (merge request)
• Update banners (merge request)
• Add CI/CD for github to registration features (merge request) GitLab Enterprise Edition
• Update breadcrumbs and titles for import (merge request)
• Move notes.scss to page_bundles from page_specific_bundles (merge request)
• Allows seat usage export on self managed instances (merge request) GitLab Enterprise Edition
• Default on feature flag (merge request)
• This MR adds popover to compliance framework (merge request) GitLab Enterprise Edition
• Remove bulk_import_async_references_pipeline feature flag (merge request)
• Add description to release title (merge request)
• Update gitlab-pages (merge request)
• Add back private projects to Ci::Catalog::Listing (merge request)
• Remove old top-bar from old Web IDE (merge request)
• Search for users when focus on input (merge request)
• [Feature flag] Remove group_vulnerabilities_optimized_query FF (merge request) GitLab Enterprise Edition
• Add group to approval rule create service (merge request) GitLab Enterprise Edition
• Job scrolls to bottom when a line is highlighted (merge request)
• Project overview page reoganisation: add sidebar (merge request)
• Use new getTopFrequentItems helper (merge request) GitLab Enterprise Edition
• Add status to get container repository(ies) REST API response (merge request)
• Hide the rebase button for ff train MRs (merge request) GitLab Enterprise Edition
• Hardcode email on registration if it is an invite (merge request)
• Migrate GitHub import alert to use Pajamas (merge request)
• Update snippet page layout (merge request)
• Create wiki page form update (merge request)
• Unify reply field (merge request)
• Hide VSD link when no access to the parent group (merge request) GitLab Enterprise Edition
• Add forks breadcrumb (merge request)
• Update fork btn text (merge request)
• Support Microsoft SAML attribute names by default (merge request)
• Enable CVS GA by default (merge request) GitLab Enterprise Edition
• Redirect/proxy the request to the primary site if not verified (merge request) GitLab Enterprise Edition
• When config digest is not present, return an empty string (merge request)
• This MR refactors props for project dropdown (merge request) GitLab Enterprise Edition
• Remove analytics visualization editor feature flag (merge request) GitLab Enterprise Edition
• Wiki page: Update layout (merge request)
• Search for approvers by email and username (merge request)
• Add notification about the container registry during rename (merge request)
• Fix cross joins in epics_finder (merge request) GitLab Enterprise Edition
• feat: Updated docs to reflect behaviour when RD is disabled (merge request) GitLab Enterprise Edition
• Remove combined_analytics_dashboards_editor feature flag (merge request) GitLab Enterprise Edition
• Add NOT NULL constraint to track and series columns (merge request)
• Add merge pipelines to registration features (merge request) GitLab Enterprise Edition
• Enable absolute doc links for duo chat (merge request) GitLab Enterprise Edition
• Fixing rubocop exceptions no. 5 (merge request)
• Project: Merge clone and download options into Code (merge request)
• Respect user locale in setStatus modal (merge request)
• Fix license category in license compliance widget (merge request) GitLab Enterprise Edition
• Remove security_orchestration_policy_configurations.bot_user_id (merge request)
• This MR adds sync between filters and url (merge request) GitLab Enterprise Edition
• Add a project actor to non_public_artifacts feature flag (merge request)
• Remove the feature flag npm_metadata_cache (merge request)
• Update sbom_occurrences.vulnerabilities (merge request) GitLab Enterprise Edition
• Adjust ordering of CTAs on both trial-end and active-trial popover (merge request) GitLab Enterprise Edition
• Drop unique constrain from index (merge request)
• This MR adds default value for policy scope (merge request) GitLab Enterprise Edition
• Removes unused custom email columns in service_desk_settings (merge request)
• feat: Disabled agents are not shown in the dropdown on the UI (merge request) GitLab Enterprise Edition
• Fixing rubocop expections no. 6 (merge request)
• Update outdated golden tanuki logo (merge request) GitLab Enterprise Edition
• Migrate work_item_iteration.vue dropdown to GlCollapsibleListbox (merge request) GitLab Enterprise Edition
• Enable highlight_js_worker feature flag by default (merge request)
• Significant refactor away from metadata for vulnerability mr's (merge request) GitLab Enterprise Edition
• Add some missing bulk_import items (merge request)
• Fetch and present the custom roles in invite modal (merge request)
• Add in-product prompt for CI adoption if jenkins detected (merge request)
• Show only published catalog resources (merge request)
• Refactor Security MR Widget State Badge (merge request) GitLab Enterprise Edition
• Add commit_committer_name_check to project push rule API by @sinkcup (merge request) GitLab Enterprise Edition
• Improve UI text for project badges (merge request)
• Change invite last onboarding step to group or project page (merge request) GitLab Enterprise Edition
• Update rails Banner component (merge request)
• Remove advanced_epic_search flag (merge request)
• Require gitaly_address instead of path in storage settings (merge request)
• Add Multiversion support to Pages internal API (merge request)
• Feature flag legacy bulk import references pipeline (merge request)
• Add attribute to group push rule API by @sinkcup (merge request) GitLab Enterprise Edition
• Rate limit Bitbucket Cloud importer (merge request)
• Refactor Workspace graphql fields and specs (merge request)
• Reverse the order of identity verification steps (merge request) GitLab Enterprise Edition
• Markdown Editor: Make Preview header sticky (merge request)
• This MR creates reusable popover (merge request) GitLab Enterprise Edition
• Rename event type filter (merge request) GitLab Enterprise Edition
• Updates outdated status checks docs (merge request)
• Allow rename of projects with registry tags (merge request)
• Limit line range in blame GraphQL resolver (merge request)
• Move policy bot removal into worker (merge request) GitLab Enterprise Edition
• Remove the frecent_namespaces_suggestions feature flag (merge request)
• Stop passing repository paths via shell rake to the shell install script (merge request)
• Update dependency prometheus-client-mmap to v1 by @gitlab-dependency-update-bot (merge request)
• Group: Project overview item adjustments (merge request)
• Update gitlab-shell to 14.30.1 (merge request)
• Add error message to project_repository_storage_moves table (merge request)
• This MR adds error state to compliance dropdown (merge request) GitLab Enterprise Edition
• Only disable code suggestions if all users groups have it disabled (merge request)
• This MR adds yaml update (merge request) GitLab Enterprise Edition
• Removes database migrations up to 15-3-stable-ee (merge request)
• Validate compliance framework id in security policy (merge request) GitLab Enterprise Edition
• Mention Container Registry and Dependency Proxy in api scope (merge request)
• Clarify Last Activity as Last GitLab Activity on Usage Quotas page (merge request) GitLab Enterprise Edition
• Add import_history_link to status page (merge request)
• Update Graphql version fields and resolver to use Versions (merge request)
• feat: Allow enabled in remote development configuration to be false (merge request) GitLab Enterprise Edition
• Skip delayed own user deletion when the user has been unblocked (merge request)
• Ensure timestamp tooltips respect user locale (merge request)
• Move out read_job_artifacts ability references from build policy (merge request)
• Update component InstancePath to use latest version (merge request)
• Pipeline Minigraph: Change tooltip alignment in job items (merge request)
• Add feature flag related issues to registration features (merge request) GitLab Enterprise Edition
• Allow larger page size for contributions query (merge request) GitLab Enterprise Edition
• Remove reset_approvals_patch_id feature flag (merge request) GitLab Enterprise Edition
• Improve vulnerability report filter text (merge request)
• Make Puma low-level handler send to all available Sentry instances (merge request)
• Fix(License): Match button text for adding license (merge request) GitLab Enterprise Edition
• Blocking undefined audit event types (merge request) GitLab Enterprise Edition
• Cleanup for converted ci_pipelines.auto_canceled_by_id conversion (merge request)
• Remove ignore rule for ci_pipeline_chat_data bigint conversion (merge request)
• Add helpful validation messages to masked ci variables by @JamesHow1ett (merge request)
• Bitbucket Server importer create refs for fetched commits (merge request)
• Update dependency auto-build-image to v1.50.0 (merge request)
• Update permissions to relate issues (merge request) GitLab Enterprise Edition
• Remove extraneous bottom margin from invite modal button (merge request)
• Add circuit breaker for zoekt nodes (merge request) GitLab Enterprise Edition
• Add cross project pipelines to registration features (merge request) GitLab Enterprise Edition
• Cleanup for converted ci_pipeline_variables.pipeline_id (merge request)
• Change "Nothing to merge" widget (merge request)
• Add layout override for GlAlert & GlBroadcast in alert-wrapper (merge request)
• Uses total column for sorting when under no storage enforcement (merge request) GitLab Enterprise Edition
• Use group import_status for status page (merge request)
• Update gitlab-pages to latest version (merge request)
• Add settings to allow merge without pipeline (merge request)
• Activity feed: Update design (merge request)
• Remove duplicated index from merge_requests (merge request)
• Remove ignore column rules for shared_runners_duration (merge request)
• Remove ignore rules for Ci::Sources::Pipeline (merge request)
• Migrate component from GlButton to GlCollapsibleListbox (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.63.0 (merge request)
• Fix [ ] in plain text editor incorrectly expanded to * [ ] in RTE by @manav014 (merge request)
• Remove the tool filter with scanner feature flag (merge request) GitLab Enterprise Edition
• Licensed VSA UI visibility enhancements (merge request) GitLab Enterprise Edition
• Remove feature flag: use_repository_list_tags_on_graphql (merge request)
• Hide CVS enable/disable functionality behind feature flag (merge request)
• Prevent users from copying labels from runner details (merge request)

Deprecated (2 changes)

• Deprecate gitlab:list_repos Rake task (merge request)
• Deprecate temporary storage increase graphql fields (merge request) GitLab Enterprise Edition

Removed (25 changes)

• chore: Updating changelog (merge request)
• Drop max_workspaces and max_workspaces_per_user fields (merge request)
• Remove deprecated & unused #snaphot_* methods (merge request) GitLab Enterprise Edition
• Remove rootNamespace from GQL catalog ResourceType (merge request)
• Remove the unpublish method and mutation (merge request)
• Remove WorkItemDeleteTask mutation from GraphQL API (merge request)
• Remove MVP implementation of CI config chat (merge request) GitLab Enterprise Edition
• Remove legacy Geo sidekiq workers (merge request) GitLab Enterprise Edition
• Remove single_file_file_by_file feature flag (merge request)
• Drop unused index_projects_on_path_and_id for projects (merge request)
• Drop unused index_projects_on_created_at_and_id for projects (merge request)
• Revert "Add generate_ci_finished_builds_sync_events FF" (merge request) GitLab Enterprise Edition
• Remove product analytics seeding and other files (merge request)
• Remove orphaned namespace check (merge request)
• Remove the repository downloads and repository data conflict check (merge request)
• Remove shimo integration by @icbd (merge request)
• Remove gitlab shell build_missing_projects rake task (merge request)
• Create new Remove AiAccessTokenColumn migration (merge request)
• Remove gitlab:cleanup:moved rake task (merge request)
• Removes Jira DVCS Cloud from usage data (merge request)
• Remove Geo deprecated events (merge request) GitLab Enterprise Edition
• Removes fork_count from Ci::Catalog::ResourceType (merge request)
• Remove CheckDeniedPoliciesService mergability check (merge request) GitLab Enterprise Edition
• Remove ignore rule for jitsu_key (merge request)
• Revert "Support Microsoft SAML attribute names by default" (merge request)

Security (21 changes)

• Prevent tag names starting with SHA-1 and SHA-256 values
• Pass encoded file paths to router
• Smartcard auth: encrypt client cert in params
• Restrict passing variables on the pipeline schedule API
• Validate access level of user while rotating token
• Remove the ability to fork and create MR for auditors
• Fix large time_spent value causing GraphQL error Integer out of bounds
• Restrict Protected branch access via group to direct members
• Revert "Check max role for user for group access to protected ref"
• Use ruby 3.0 syntax in User#can?
• Update mermaid version for DOS security fixes
• Treat security policy bots as external
• Enforce ref protection on pipeline schedule updates
• Filter out projects with disabled package registry in Composer finder
• Validate adding members with higher role
• XSS and ReDoS in Markdown via Banzai pipeline of Jira
• Prevent guest users from being able to add emojis in confidential issues
• Prevent branch names starting with SHA-1 and SHA-256 values
• Ensure access is checked when loading releases associated with tags
• Do not run ssl cert validation if key has errors
• Check max role for user for group access to protected ref

Performance (24 changes)

• Utilizing a new Gitaly feautre to speed up conflict file lists (merge request)
• Updating worker to use keyset pagination (merge request)
• Improve DB performance in PolicyRuleScheduleNamespaceWorker (merge request) GitLab Enterprise Edition
• Rollout cache control for autocomplete sources (merge request)
• Adding refresh_jid checkpoints for stuckImportWorker (merge request)
• Use loop with delete_all instead of EachBatch (merge request)
• Refactor single quotes regex import (merge request)
• Drop unique index on ci_job_artifacts (merge request)
• Improve DB performance for SyncScanResultPoliciesService (merge request) GitLab Enterprise Edition
• Adding conditional (updated_at,id) index to bulk_import_entities (merge request)
• Adding indexes for bulk imports (merge request)
• Drop index_users_on_accepted_term_id (merge request)
• Adding index on bulk_import_batch_trackers on (tracker_id, updated_at) (merge request)
• Remove bulk_import_export_batches index (merge request)
• Remove index_web_hook_logs_part_on_web_hook_id (merge request)
• Remove project_relation_exports index (merge request)
• Remove bulk_import_batch_trackers index (merge request)
• Remove index onjira_connect_subscriptions (merge request)
• Remove index_web_hooks_on_project_id index (merge request)
• Disable joins for approval rules group users (merge request) GitLab Enterprise Edition
• Remove Ability based queries and use groups finder (merge request) GitLab Enterprise Edition
• Add a temporary transitionable flag to speed up validations (merge request)
• Disable joins for ApprovalRuleLike.group_users (merge request) GitLab Enterprise Edition
• Rewrite SQL query for ByApproversFinder (merge request)

Other (116 changes)

• No beta label for CS on SM in 16.7 (merge request)
• Add accessibility test for tags view (merge request)
• chore: Fix typo for word response by @gerardo-navarro (merge request)
• Hide unnessary public methods in ProcessCommitWorker by @zzaakiirr (merge request)
• Dropped cluster_id column from deployments table by @TamsilAmani (merge request)
• Add synchronous indexes for partitioned key on ci_stages (merge request)
• Backfill default_branch_protection_defaults for namespace settings (merge request)
• Backfill vs_code_settings uuid with default value (merge request)
• refactor: Rename column container_path_pattern by @gerardo-navarro (merge request)
• Bump gitlab-shell version to v14.32.0 (merge request)
• Finalize BackfillUuidConversionColumnInVulnerabilityOccurrences (merge request)
• Make Direct Transfer logging more consistent (merge request)
• Finalize migration BackfillMissingCiCdSettings by @project_52263761_bot_66de0d9c027ad0d6b413f50a3904241f (merge request)
• Add avatar to organizations table (merge request)
• Add active colors to super sidebar interactive items (merge request)
• Remove logging for read_namespace ability usages by @Taucher2003 (merge request)
• Finalize BackfillProjectStatisticsStorag...PipelineArtifactsSizeJob (merge request)
• Add use_web_ide_extension_marketplace to user_pref (merge request)
• Add a column to store home organization of the user (merge request)
• test: Set feature category for test Ldap::OmniauthCallbacksController by @gerardo-navarro (merge request)
• Add redis-namespace gem for mailroom (merge request)
• Update pages without wildcard DNS docs (merge request)
• Finalize migration RemoveInvalidDeployAccessLevelGroups (merge request)
• Finalize migration PopulateVulnerabilityDismissalFields (merge request)
• Finalize migration MarkDuplicateNpmPackagesForDestruction (merge request)
• Finalize migration FixAllowDescendantsOverrideDisabledSharedRunners (merge request)
• Finalize migration DeleteOrphanedTransferredProjectApprovalRules (merge request)
• Finalize migration CleanupPersonalAccessTokensWithNilExpiresAt (merge request)
• Finalize migration BackfillRootStorageStatisticsForkStorageSizes (merge request)
• Finalize migration BackfillProjectWikiRepositories (merge request)
• Finalize migration BackfillMissingVulnerabilityDismissalDetails (merge request)
• Backfill catalog_resources visibility_level column (merge request)
• Docs: Support for namespace in path for pages (merge request)
• Adds custom email incorrect_forwarding_target error (merge request)
• Add async indexes with partitioned key on ci_stages (merge request)
• Cleanup tech debt from registration features migration (merge request) GitLab Enterprise Edition
• Finalize migration BackfillDesignManagementRepositories (merge request)
• Finalize migration BackfillCodeSuggestionsNamespaceSettings (merge request)
• docs: Improve guideline for integrating omniauth provider auth0 by @gerardo-navarro (merge request)
• Retry exceptions during BulkImports::FileDownloadService (merge request)
• Add instrumentation for Redis connection pools (merge request)
• Remove skip_instructions_extraction FF (merge request) GitLab Enterprise Edition
• Migration to include partition_id on ci_pipeline_variables indexes (merge request)
• Format "URL" as uppercase in profile links (merge request)
• test: Fix typo in omniauth callback controller spec by @gerardo-navarro (merge request)
• Upgrade sidekiq-cron gem to v1.10.1 (merge request)
• Fix project icon and add tooltips to groups list (merge request)
• Map spider timeout to browserker setting (merge request) GitLab Enterprise Edition
• Remove enterprise_users_automatic_claim feature flag (merge request) GitLab Enterprise Edition
• Composite index on organization_id and id in projects table by @TamsilAmani (merge request)
• Remove MultiStore in Gitlab::Redis::DbLoadBalancing (merge request)
• Revert "Resolving cross joins on GroupUsersFinder" (merge request)
• Clean up prevent_visibility_restriction ff (merge request)
• Finalize migration BackfillDismissalReasonInVulnerabilityReads (merge request)
• Update github import known issues (merge request)
• Refactoring 'approvable?' method to include temporary flag (merge request) GitLab Enterprise Edition
• Remove search_issue_label_aggregation FF (merge request)
• Exposes finalize command to BBM admin UI (merge request)
• Add ids to enable labels to screen readers (merge request)
• Restructure CI/CD Components doc (merge request)
• Removes service_desk_custom_email feature flag (merge request)
• Change partition_id default value and add safety concern (merge request) GitLab Enterprise Edition
• Add async indexes for partitioned PK on ci_pipeline_variables (merge request)
• Remove code_*_split_by_language feature flags (merge request) GitLab Enterprise Edition
• Bump Gitlab Shell version to v14.31.0 (merge request)
• Autocomplete Group Users to use distinct_each_batch (merge request)
• Drops unused projects indexes from Gitlab.com instance (merge request)
• Finalize migration BackfillAdminModeScopeForPersonalAccessTokens (merge request)
• Fix external_redirect to not redirect to self (merge request)
• Db migrations for IDE OAuth (merge request)
• Update tooltip content to show full path (merge request)
• Remove the feature_flag search_project_wikis_hide_archived_projects (merge request)
• Display the whole path to a new file (merge request)
• Mark RelationBatchExportWorker as memory bound (merge request)
• Rename to Namespaces::AddOnPurchaseResolver (merge request) GitLab Enterprise Edition
• Remove FF kubernetes_agent_internal_api (merge request)
• Migrate Read more to Pajamas (merge request)
• Add a setting to allow/disallow creation of organizations (merge request)
• Bump Direct Transfer workers retries count from 3 to 7 (merge request)
• Reduce TTL for duplicate job keys (merge request)
• Drop unused index on users table (merge request)
• Refactor the AddOnPurchasePolicy (merge request) GitLab Enterprise Edition
• Remove feature flag adherence_report_ui and compliance_adherence_report (merge request) GitLab Enterprise Edition
• Add foreign key for merge_request_diffs.project_id (merge request)
• Add synchronous index_merge_request_diffs_on_project_id (merge request)
• Improve compliance SyncService spec to include non existing record (merge request) GitLab Enterprise Edition
• Prepare index for orgId and id on projects by @TamsilAmani (merge request)
• Define id trigger on p_ci_builds routing table - self-managed (merge request)
• Remove unused methods from helpers (merge request)
• Remove custom_roles_ui-[xxx] feature flags (merge request)
• Drops unused index_projects_on_mirror_last_successful_update_at (merge request)
• Remove feature flag allow_streaming_audit_events_to_amazon_s3 (merge request) GitLab Enterprise Edition
• Remove not null constraint from the namespace (merge request)
• Upgrade the Sidekiq gem to v7.0.9 (merge request) GitLab Enterprise Edition
• Remove namespace validation for member role (merge request)
• Add released_at to catalog_resource_versions (merge request)
• Remove dual-namespace polling support in Sidekiq (merge request)
• Schedule backfill of merge_request_diffs.project_id (merge request)
• Update Ci::Catalog::Resource search to use Postgres Full Text Search (merge request)
• Add GQL request tests for CI runner filter by version prefix by @zzaakiirr (merge request)
• Add project_id column to merge_request_diffs and populate it on save (merge request)
• Document regex and type input attributes (merge request)
• Cleanup replicate_object_pool_on_move (merge request)
• Highlight only the discussion diffs that are in the response (merge request)
• Remove resolvable_issue_threads feature flag (merge request)
• Fix wrong name for feature flag packages_protected_packages by @gerardo-navarro (merge request)
• Remove configure_sentry_in_application_settings feature flag (merge request)
• Prevent gitlab-http async to use DB and Gitaly (merge request)
• Adding diff_match_patch gem to vendor/gems to fix upgrade issues (merge request)
• Removes feature flag ipynbdiff_notes_tracker (merge request)
• Enable k8s_watch_api feature flag by default (merge request)
• Finalize backfill of packages_tags.project_id (merge request)
• Drop unused index on namespaces table (merge request)
• Define id trigger on p_ci_builds routing table (merge request)
• Remove already enabled enforce_memory_watchdog feature flag (merge request)
• Drop unused indexes on the users table (merge request)

fixed EE: true (1 change)

• Move export buttons next to each other (merge request)

16.6.7 (2024-02-07)

Security (3 changes)

• Fix CI component input Regexp (merge request)
• Make scan result policies block renaming branches (merge request)
• Limit vulnerabilitiesCountByDay date range to 1 year (merge request)

16.6.6 (2024-01-24)

Fixed (1 change)

• Bring legacy verification behavior back for repositories GitLab Enterprise Edition

Security (5 changes)

• Devfile parser arbitrary file write (merge request)
• Use public email in tags atom feed (merge request)
• Fix improper username sanitization (merge request)
• Escape user input before building regex for linker (merge request)
• Do not allow non-team member to set MR assignees/reviewers (merge request)

16.6.5 (2024-01-13)

No changes.

16.6.4 (2024-01-10)

Fixed (1 change)

• Add missing ci_sources_pipelines indexes for self-host (merge request)

Security (5 changes)

• Consider older commits when resetting codeowner approvals (merge request)
• Password reset followups (merge request)
• Add verification layer for BaseSlash commands (merge request)
• Ensure workspaces are created under same root namespace as agent (merge request)
• Sync security with canonical for 16.6 stable branch (merge request)

16.6.2 (2023-12-13)

Fixed (1 change)

• Fix adding confidential child tasks

Security (8 changes)

• Prevent tag names starting with SHA-1 and SHA-256 values (merge request)
• Pass encoded file paths to router (merge request)
• Validate access level of user while rotating token (merge request)
• Fix large time_spent value causing GraphQL error Integer out of bounds (merge request)
• Restrict Protected branch access via group to direct members (merge request)
• Remove the ability to fork and create MR for auditors (merge request)
• Restrict passing variables on the pipeline schedule API (merge request)
• Smartcard auth: encrypt client cert in params (merge request)

16.6.1 (2023-11-30)

Fixed (3 changes)

• Revert "Merge branch 'sc1-release-goredis' into 'master'"
• Truncate verification failure message to 255 GitLab Enterprise Edition
• Prefer custom sort order with search in users API

Security (11 changes)

• Validate adding members with higher role (merge request)
• Enforce ref protection on pipeline schedule updates (merge request)
• Update mermaid version for DOS security fixes (merge request)
• Prevent guest users from being able to add emojis in confidential issues (merge request)
• Do not run ssl cert validation if key has errors (merge request)
• Ensure access is checked when loading releases associated with tags (merge request)
• XSS and ReDoS in Markdown via Banzai pipeline of Jira (merge request)
• Prevent branch names starting with SHA-1 and SHA-256 values (merge request)
• Filter out projects with disabled package registry in Composer finder (merge request)
• Check max role for user for group access to protected ref (merge request)
• Treat security policy bots as external (merge request)

16.6.0 (2023-11-15)

Added (117 changes)

• Add SAML Auth for Approvals (merge request) GitLab Enterprise Edition
• Add Archive Project custom permission (merge request) GitLab Enterprise Edition
• Added MLFLow API to get latest model version (merge request)
• This MR adds compliance framework dropdown (merge request) GitLab Enterprise Edition
• Add Cloud Connector ADR 001 to design doc (merge request)
• Removed nil constraint from personal access token table (merge request) GitLab Enterprise Edition
• Add a fullpath argument to the ciCatalogResource endpoint (merge request)
• Removes the saved_replies feature flag (merge request)
• Add column to namespace settings (merge request)
• Enable bulk_import_details_page by default (merge request)
• Add CVSS Vector to CSV (merge request) GitLab Enterprise Edition
• Added create api for namespace filters (merge request) GitLab Enterprise Edition
• Save additional PyPi metadata info (merge request)
• Save the timestamp of the last project authorization recalculation (merge request)
• Audit auditor role changes (merge request) GitLab Enterprise Edition
• Implement Resolve This Vulnerability service classes (merge request) GitLab Enterprise Edition
• Add triggered badge to pipeline views by @Taucher2003 (merge request)
• Set default true for search_project_wikis_hide_archived_projects (merge request) GitLab Enterprise Edition
• Add a user preference to show times in 12h or 24h format by @n0rdlicht (merge request)
• Helper to create bigint indexes for each integer column index (merge request)
• Accept current_file for chat requests (merge request) GitLab Enterprise Edition
• Added archived filter for wiki_blobs scope (merge request) GitLab Enterprise Edition
• Allow expires_at param in token rotation API (merge request)
• Adds SMTP authentication method to custom email settings page (merge request)
• Add support for wolfi purl type (merge request) GitLab Enterprise Edition
• Adds notes to abuse reports backend (merge request)
• Use SQL functions for primary key lookups (merge request)
• Support source branch param on MR list page (merge request) GitLab Enterprise Edition
• Support artifacts upload from Maven/Gradle using basic-http auth (merge request)
• Add pending members GraphQl endpoint by @missy-davies (merge request) GitLab Enterprise Edition
• Add ability to filter runners by version prefix by @joe-snyder (merge request)
• Introduce Packages::Npm::CleanupStaleMetadataCacheWorker (merge request)
• Support member role in invite endpoints without FF (merge request) GitLab Enterprise Edition
• Add source_package_name to sbom_components (merge request)
• WIP implement Resolve This Vulnerability infrastructure (merge request) GitLab Enterprise Edition
• Add egress ip options in remote development agent configs (merge request) GitLab Enterprise Edition
• Added namespace filter in external destination query api (merge request) GitLab Enterprise Edition
• Added MLFLow API to update registered models (merge request)
• Allow to update value streams in GraphQL (merge request) GitLab Enterprise Edition
• Enable feature flag default true (merge request)
• Show loading icon in vulnerability status badge (merge request) GitLab Enterprise Edition
• Default branch protection settings for application setting (merge request)
• This MR adds policy scope section (merge request) GitLab Enterprise Edition
• Audit pipeline delete action (merge request) GitLab Enterprise Edition
• Remove FF zoekt_index_private_repositories (merge request)
• Add documentation of Parent widget for tasks and OKRs (merge request)
• Handle arkose outage on sign-up (merge request) GitLab Enterprise Edition
• Filter by package version in REST and Graphql APIs by @renehernandez (merge request)
• Adds smtp_authentication to Service Desk Custom Email credentials (merge request)
• Add table to link Security Policies to Compliance Frameworks (merge request) GitLab Enterprise Edition
• Update backend for namespaces for emails_enabled by @joe-snyder (merge request)
• Add Watch API for Flux sync status (merge request)
• Create Group component for list selector (merge request)
• Add include_hidden, include_pending_delete option to Project API (merge request) GitLab Enterprise Edition
• Create spam abuse events worker (merge request)
• Add cost factored storage sizes to graphql project statistics type (merge request) GitLab Enterprise Edition
• Expose single member role in GraphQL (merge request)
• Added settings for access token expiration service accounts (merge request) GitLab Enterprise Edition
• Adds path to catalog_resource_components (merge request)
• Adding MLFlow API for creating registered models (merge request)
• Adding group and project filters for audit streaming (merge request) GitLab Enterprise Edition
• Add Direct Transfer entity failures API (merge request)
• Set default_enabled to true for enterprise_users_automatic_claim FF (merge request) GitLab Enterprise Edition
• Add user_permissions fields to PackageType and PackageDetailsType (merge request)
• Add built-in template for Astro Tailwind (merge request)
• Add api to rename a pipeline by @Taucher2003 (merge request)
• Create GraphQL mutation to create an Organization (merge request)
• feat: Graphql mutation to create container registry protection rules by @gerardo-navarro (merge request)
• Add audit events for releases created, updated or deleted via the UI (merge request) GitLab Enterprise Edition
• Display custom roles on the group members page (merge request) GitLab Enterprise Edition
• Support parent widget on tasks (merge request)
• Adds notes to abuse reports backend (merge request)
• Push work item FFs to groups (merge request)
• Adding ability to view Trusted user in User admin panel (merge request)
• Initialize bigint conversion for p_ci_builds (merge request)
• Cleanup use_embeddings_with_vertex FF (merge request) GitLab Enterprise Edition
• feat: Add graphql mutation to delete package protection rules by @gerardo-navarro (merge request)
• Add enforce_ci_builds_pagination_limit feature flag (merge request)
• Add sha256 hash to NuGet symbols (merge request)
• Add ssh audit events (merge request) GitLab Enterprise Edition
• Added option to filter projects by full paths in GraphQL by @zillemarco (merge request)
• Add name and description denormalized columns in catalog_resources table (merge request)
• Default the issue label aggregation FF to true (merge request)
• Add graphQL create custom role mutation (merge request)
• Allow to save Security Policy YAML with policy scope (merge request) GitLab Enterprise Edition
• Add detailed_import_status to Project in GraphQL by @Taucher2003 (merge request)
• Add nuget allow_duplicates toggle to the group packages settings (merge request)
• Release feature and remove suggested_reviewers_control feature flag (merge request) GitLab Enterprise Edition
• Cleanup nuget_duplicates_option feature flag (merge request)
• Add container scanning properties (merge request)
• Add wiki front matter title by @zhanglinjie (merge request)
• Adds support for options in inputs (merge request)
• Implement support for inactive mergeability check (merge request)
• Add metrices for CSV (merge request) GitLab Enterprise Edition
• GraphQL: Allow to destroy value streams (merge request) GitLab Enterprise Edition
• Support member role assigment via invitation API (merge request) GitLab Enterprise Edition
• Add push option to select target project for MR (merge request)
• Cleanup the create_embeddings_with_vertex_ai FF (merge request) GitLab Enterprise Edition
• Remove frontend code for issues archived ff (merge request)
• Remove frontend code for code archived ff (merge request)
• Adds ModelsController#destroy action (merge request)
• GraphQL API for deleting audit event streaming amazon_s3_configurations (merge request) GitLab Enterprise Edition
• AuditEvent model for ClickHouse database (merge request)
• Adds boilerplate for ModelVersionsController#show (merge request)
• Use Danger to notify about outdated rubocop todos (merge request)
• Allow to trust/untrust users in spam log UI (merge request)
• Add support for Mastodon as user social (merge request)
• Add search to Model registry (merge request)
• Add prefix for certain quick actions in RTE (merge request)
• Notify admin when email signup is not enabled (merge request) GitLab Enterprise Edition
• feat: Integrate package protection rules for npm packages by @gerardo-navarro (merge request)
• Allow to create value streams in GraphQL (merge request) GitLab Enterprise Edition
• Enable runner dashboard (merge request) GitLab Enterprise Edition
• Add an auto merge indicator when merge checks failed (merge request)
• Clean up ci_variable_drawer feature flag (merge request)
• Expose group member roles through graphQL (merge request) GitLab Enterprise Edition
• Allow admin to create identity verification exemption (merge request) GitLab Enterprise Edition

Fixed (117 changes)

• Do not use find_by inside a scope (merge request) GitLab Enterprise Edition
• Set the height of the iframe containing credit card form to 480px (merge request) GitLab Enterprise Edition
• Restrict access level for PrAT with custom roles (merge request)
• Ensure after_run ops execute once only (merge request)
• Use cbl-mariner instead of cbl_mariner purl_type (merge request) GitLab Enterprise Edition
• Update button for Public Groups (Free Tier) in Usage Quotas page (merge request) GitLab Enterprise Edition
• Fixed UX issue for selected unapplied labels (merge request)
• Add closedAt to issue graphql fragment (merge request)
• Reduce batch size of verification state backfill (merge request) GitLab Enterprise Edition
• Fix duration for builds failed via Ci::Build#doom! (merge request)
• Fix create issue for new pipeline finding (merge request) GitLab Enterprise Edition
• Make snippet creation resilient to replication lag (merge request)
• Fix SLO violation on llm_completion (merge request) GitLab Enterprise Edition
• Fix http status when failing to release catalog resource (merge request)
• Fix race condition in deleting scan result policy violation (merge request) GitLab Enterprise Edition
• Increase Jira Net timeout when fetching issues (merge request)
• Fix user sometimes not being set for manual jobs (merge request)
• Use small dot style for Work Item activity (merge request)
• Add scope checks when using Dependency Proxy with group access tokens (merge request)
• Fix errors caused by expired sessions (merge request)
• Refactor can_move_repository_storage concern to resolve race condition (merge request)
• Fix for tall right-aligned images in description (merge request)
• User profile: Fix achievements and actions (merge request)
• Recover long stopping environments in worker (merge request)
• Fix wiki sidebar hierarchy indentation by @glauciellesa (merge request)
• Fix ingestion logic for remediations (merge request) GitLab Enterprise Edition
• Fixed numpad enter not working on the global search (merge request)
• Update oncall shift persistence to fix timezone edge cases (merge request) GitLab Enterprise Edition
• Hide repository size limit field on project settings without admin mode (merge request) GitLab Enterprise Edition
• Fix overflow of project name in activity feed (merge request)
• Hide review app button when review apps exist (merge request)
• Fix group application settings access in admin mode (merge request)
• Add test for mediawiki markup (merge request)
• Create group wiki repo if absent when verifying on primary (merge request) GitLab Enterprise Edition
• Fix assign security check permission checks (merge request) GitLab Enterprise Edition
• Prioritize exact matching on username and e-mail for users search (merge request)
• Add note that branch names are case-sensitive (merge request) GitLab Enterprise Edition
• Fix alignment of related merge request widget (merge request)
• Fix regexp for CI components paths (merge request)
• Fix save password form dialog on CI/CD Registration token (merge request)
• Fix broken issue rendering when initial ID is null (merge request)
• Prevent loading state from showing after undo (merge request)
• Backport thread-safety fix for Sprockets v3.7.2 (merge request)
• Fix alignment of CI icon on pipeline detail page (merge request)
• Fix alignment of MR popover (merge request)
• Unlock non-successful pipelines (merge request)
• Update error messaging when SCIM identity is false (merge request) GitLab Enterprise Edition
• Prioritize exact user matches when searching in users API (merge request)
• Fix epic date range selector not changing date ranges (merge request)
• Switch to UrlValidator for Identifer URL validation (merge request) GitLab Enterprise Edition
• Adds check for temporarily_unapproved approval state (merge request) GitLab Enterprise Edition
• REST: Fix deprecation milestones in documentation (merge request)
• Ignore builds already added to Ci::FinishedBuildChSyncEvent (merge request) GitLab Enterprise Edition
• Fix intermittent CI/CD analytics request error for 180 day windows (merge request)
• Fix merge request file browser height clipped at the top of the page (merge request)
• Geo: Report number of sites on /admin (merge request) GitLab Enterprise Edition
• Remove extra pipeline mini graph margin (merge request)
• Set default branch after importing repo from Bitbucket (merge request)
• Fixes stale link to docs (merge request)
• Restricting job token for public and internal projects (merge request)
• Fix extra divider in header_actions when no permissions (merge request)
• Super sidebar: Update avatar after upload (merge request)
• Activity: Increase contrast of sign in message (merge request)
• Change Issue activity to match MRs (merge request)
• Set deploy key as actor for Git proxied requests (Geo) (merge request) GitLab Enterprise Edition
• Return error message when locked issue state filter is used (merge request)
• Add scan_result_policies to Approval Rule graphql (merge request) GitLab Enterprise Edition
• Branches list: fix border in darkmode (merge request)
• Show all implemented custom permissions (merge request) GitLab Enterprise Edition
• Raise circular dependencies error when job has a self-dependency (merge request)
• Security dashboard: fix latest vulnerability count (merge request) GitLab Enterprise Edition
• Fix tests for GeoNodeStatus replicator stats (merge request) GitLab Enterprise Edition
• Fix Migration[2.2] initialization (merge request)
• Fix undefined tooltip for Toggle commit description button (merge request)
• Fixed alignment of the assign yourself button on MR reviewers by @zillemarco (merge request)
• Adjust job log line padding and margin widths (merge request)
• Geo: Bring back legacy project Prometheus metrics (merge request) GitLab Enterprise Edition
• Add api badge label (merge request)
• Make emoji localstorage cache optional (merge request)
• Ignore jobs without runners when tracking failed jobs (merge request) GitLab Enterprise Edition
• Fix bug with suggestions dropdown in rich text (merge request)
• Stop validating default CI input type in Entry (merge request)
• MR widget: Fix title alignment on mobile (merge request)
• Add safe-guard for projects not in the group with AI enabled (merge request) GitLab Enterprise Edition
• PyPi group endpoint: exclude projects with disabled package registry (merge request)
• Uses non-metadata severity (merge request) GitLab Enterprise Edition
• Improve skeleton for loading status description (merge request) GitLab Enterprise Edition
• Fix issue with content editor under relative URL (merge request)
• Reset environments list when opening CI variable drawer (merge request)
• Add missing package manager poetry (merge request) GitLab Enterprise Edition
• Removing FF bulk_import_idempotent_worker (merge request)
• Downgrade vue-apollo to prevent auto-restarting subscriptions on error (merge request)
• fix: Query declaration error for graphql createPackageProtectionRule by @gerardo-navarro (merge request)
• Include projects.scss on artifacts page (merge request)
• Fix scrolling to a note hash in single file mode (merge request)
• Fix issue with issue templates in rich text editor (merge request)
• Always set source_partition_id from app (merge request)
• Hide Security & Compliance nav links if disabled (merge request) GitLab Enterprise Edition
• Fixing cross joins in lib-banzai (merge request)
• Reindex epics to fix possible wrong values of label_ids (merge request) GitLab Enterprise Edition
• GithubImport::ObjectCounter use same TTL when read (merge request)
• Fix alignment of issuable sidebar header (merge request)
• Show new feature popover after a second (merge request) GitLab Enterprise Edition
• Change order of unknown and info severity (merge request) GitLab Enterprise Edition
• Fix zoekt/client issues (merge request) GitLab Enterprise Edition
• Fix "Leave admin mode" link (merge request)
• Fix Branch Rules showing 'All protected branches' under 'All branches' (merge request) GitLab Enterprise Edition
• Decouple product analytics custom dashboards (merge request) GitLab Enterprise Edition
• Reindex wikis to fix routing and backfill archived (merge request) GitLab Enterprise Edition
• Add group_ids in base_scope for GroupSearchResults (merge request) GitLab Enterprise Edition
• Fix vulnerability count mismatch (merge request) GitLab Enterprise Edition
• Fixes flaky specs in email participants feature specs (merge request)
• Apply Issue Analytics page filters to table (merge request) GitLab Enterprise Edition
• Fix epic board children count and weight on card (merge request) GitLab Enterprise Edition
• Improve script with trigger error message (merge request)
• Fix work items sidebar glitch incase of parent widget (merge request)
• Fix position validation on issues board list movement by @zzaakiirr (merge request) GitLab Enterprise Edition

Changed (175 changes)

• Serve pages deployments without going through PagesMetadatum (merge request)
• Support Microsoft SAML attribute names by default (merge request)
• Avoid calling Git in gitlab-backup-cli.gemspec (merge request)
• Update gitlab-elasticsearch-indexer to 4.5.0 (merge request)
• Fix not efficient alert when you exceeding free storage by @marc-andre.vezeau.exfo (merge request) GitLab Enterprise Edition
• Using a constant for the file amount by @manav014 (merge request)
• Remove duplicated index from merge_request_assignees (merge request)
• Removes feature flag service_desk_new_note_email_native_attachments (merge request)
• Added ApplicationRateLimit for Namespace update API (merge request)
• Fix: Rich Text Editor - Copy/Paste Text from Table Not Behaving Properly by @Himani_Mehra (merge request)
• Update feature flags default_enabled to true (merge request) GitLab Enterprise Edition
• Update adherence table based on ux discussions (merge request) GitLab Enterprise Edition
• Change triggered badge to trigger token (merge request)
• Removes extra line from actions menu (merge request)
• Migrate "Enable for this project" runner button (merge request)
• Prevent update of default branch if block_unprotecting_branches is set (merge request) GitLab Enterprise Edition
• Fix pending status check workers (merge request) GitLab Enterprise Edition
• Show stopping environments as well (merge request)
• Display project full path and remove namespace column from token table (merge request)
• Allow Jira organization admins to setup group links (merge request)
• Added new setting allow_project_creation_for_guest_and_below (merge request)
• Allow you to pass docker options to the Sitespeed docker by @nvalenzuela_paciolan (merge request)
• Update filtering in compliance center docs (merge request)
• Update pagination on the standards adherence table (merge request) GitLab Enterprise Edition
• Updates Ci::Catalog::Resources::CreateService (merge request)
• Add field to query organizations for a given user (merge request)
• This MR adds ability to select projects (merge request) GitLab Enterprise Edition
• Update terraform init default state name (default) (merge request)
• This MR disables unprotect button (merge request) GitLab Enterprise Edition
• Update Learn Gitlab progress bar (merge request) GitLab Enterprise Edition
• Migrate vulnerability state dropdown to Listbox (merge request) GitLab Enterprise Edition
• Don't delete project if the repository is moving to a different shard (merge request)
• Add devops adoption to registration features (merge request) GitLab Enterprise Edition
• Backfill p_ci_builds bigint conversion columns (merge request)
• Adds Ci::Catalog::Resources::ReleaseService (merge request)
• Separates type and status icons in headers (merge request)
• Change color for Kotlin language by @gustavoandresimon (merge request)
• Contribution analytics: Remove request batching when using Clickhouse (merge request) GitLab Enterprise Edition
• UserCore - Add lastActivityOn (merge request)
• Restructure work item header (merge request)
• Initialize bigint conversion for p_ci_builds for self-host (merge request)
• Add delete user vscode_settings endpoint (merge request)
• Add Confidentiality Badge to Test Case Sticky Header (merge request)
• Migrate zoekt_shards to zoekt_nodes (merge request)
• Add setting for external redirect page for job artifacts by @ftab (merge request)
• Use new import status in bulk_import_history_app (merge request)
• Update Kaniko CI template by @mh4ckt3mh4ckt1c4s (merge request)
• Add keyboard shortcut for compare button (merge request)
• Log project repository storage (merge request)
• Default enable allow_streaming_audit_events_to_amazon_s3 feature flag (merge request)
• Add scope argument with all option (merge request)
• Add fixed width and truncate framework badge (merge request)
• Migrate buttons in notes_helper.rb (merge request)
• Enable super sidebar for logged-out users (merge request)
• Update error message for DAG circular dependency (merge request)
• Add a usage quotas card for SaaS project limits = 0 state (merge request) GitLab Enterprise Edition
• Add advanced search to registration features (merge request) GitLab Enterprise Edition
• New CiIcons (merge request)
• refactor: Validate package_name_pattern format in protection rule by @gerardo-navarro (merge request)
• Use the list tags repository API to fetch tags (merge request)
• Ignore plain-text columns from Users::CreditCardValidation model (merge request)
• Fix license category in license compliance widget (merge request)
• Update code suggestion input limits (merge request) GitLab Enterprise Edition
• Activity feed: Update private contribution to use new style (merge request)
• Update enterprise badge, filtering, and disabling 2FA to new definition (merge request) GitLab Enterprise Edition
• Swapped AIGenieChat with DuoChat component (merge request) GitLab Enterprise Edition
• Tweaks plan limit validations to support unlimited (merge request) GitLab Enterprise Edition
• Changes label link to subscribed tab (merge request)
• Add toast when pin item added and removed (merge request)
• Increase spacing of CI Catalog badge (merge request)
• feat: Added field id for the graphql Packages::Protection::RuleType by @gerardo-navarro (merge request)
• Add bold styling to user activity (merge request)
• Allow to move project repositories in hidden/pending_delete state (merge request)
• Allow self-signed certs when adding certs to a pages domain (merge request)
• Increase container spacing (merge request)
• Cleanup for converted ci_pipeline_messages.pipeline_id (merge request)
• Reorders form in admin namespace limits view (merge request) GitLab Enterprise Edition
• Document known issue regarding runner token rotation (merge request)
• Remove avatars from user profile activity (merge request)
• Update dependency auto-build-image to v1.49.0 (merge request)
• Guidance to disable git SSH limit (merge request)
• Add possibility for minimal forks (merge request)
• Add AWS S3 streaming destinations (merge request) GitLab Enterprise Edition
• Migrate header_actions to GlDisclosureDropdown (merge request)
• Link to ruby/gems in Ruby upgrade docs (merge request)
• Format tooltip wait time values in seconds (merge request)
• Cleanup for converted ci_sources_pipelines.pipeline_id (merge request)
• Migrate issue_move_dropdown to GlCollapsibleListbox (merge request)
• Migrates dropdown to Pajamas disclosure (merge request) GitLab Enterprise Edition
• Add DB tables to allow group approval rules (merge request) GitLab Enterprise Edition
• Replace the legacy openai_experimentation FF with ai_global_switch (merge request) GitLab Enterprise Edition
• Pipeline graph: Change group alignments (merge request)
• Update test_file_finder to 0.2.1 (merge request)
• This MR fixes Injections clashing with Computed (merge request) GitLab Enterprise Edition
• Mask shared_with_group and source` if the group is private (merge request)
• Removes new registration flow feedback banner (merge request)
• Removed the composer_use_ssh_source_urls feature flag (merge request)
• Improve runner registration instructions (merge request)
• Adds button to return to runners list from dashboard (merge request) GitLab Enterprise Edition
• Update GraphQL default ability field description (merge request)
• Move compare to beginning of common tree view buttons (merge request)
• Fix trial page footer (merge request) GitLab Enterprise Edition
• Replace all delete tag calls with compliant endpoint (merge request) GitLab Enterprise Edition
• Remove math node limit for wikis and blobs (merge request)
• Migrate dropdown to disclosure dropdown (merge request)
• Add users and permissions report to registration features (merge request) GitLab Enterprise Edition
• Splits namespace usage quotas storage cards by limit type (merge request) GitLab Enterprise Edition
• Update add_catalog_resource helper (merge request)
• Sort emojis based on Unicode ordering (merge request)
• Swapping columns for ci_pipelines for self-host (merge request)
• Redesign of freetrial (merge request) GitLab Enterprise Edition
• Replace cross-joins on approval rules (merge request)
• Added link to commit in commited changes banner (merge request)
• Add aria-hidden attr (merge request) GitLab Enterprise Edition
• Add model validations (merge request) GitLab Enterprise Edition
• Tidy up Activity feed (merge request)
• Swapping columns for ci_stages for self-host (merge request)
• Sync scan_result_policy_violations for license_scanning rules (merge request) GitLab Enterprise Edition
• Update mermaid version to 10.6.0 (merge request)
• Restore repositories from backup manifest files (merge request)
• Remove Chat Self Discover Feature flag (merge request)
• Improve issues metric names in Value Streams Dashboard (merge request) GitLab Enterprise Edition
• This MR fixes undefined in v-on handler (merge request) GitLab Enterprise Edition
• Add worker to timeout status check responses (merge request) GitLab Enterprise Edition
• Improve Jira issue creation dropdown (merge request)
• Block call to CustomersDot when too many namespace name updates (merge request) GitLab Enterprise Edition
• Cleanup for converted ci_pipeline_chat_data.pipeline_id (merge request)
• Moves authorization to runs/experiments resources (merge request)
• Refactor import logos (merge request)
• Replicate object pools during the migration (merge request)
• Add creator information to header of the runner (merge request)
• Add DB tables to allow group approval rules (merge request) GitLab Enterprise Edition
• Add Lock project membership to group to registration features (merge request) GitLab Enterprise Edition
• Expose list of custom roles (merge request)
• Remove drop_job_on_secrets_provider_not_found feature flag (merge request) GitLab Enterprise Edition
• Re-do swapping columns for ci_stages (merge request)
• Add tooltip to status check mr widget (merge request) GitLab Enterprise Edition
• Pipeline: Redesign Pipeline Graph (merge request)
• Small fixups for Bitbucket parallel importer (merge request)
• Improve Jira app config instructions (merge request)
• Format CI/CD analytics metrics using the browser settings (merge request)
• Refactor CiIcon (merge request)
• Move the content of service_usage_data page to metrics_and_profiling (merge request)
• Remove check_multiple_pipelines_for_security_reports feature flag (merge request) GitLab Enterprise Edition
• Remove isSingleRequest true from apollo query context (merge request) GitLab Enterprise Edition
• Use password input field for PAT (merge request)
• Add Service Level Agreement countdown timer to registration features (merge request) GitLab Enterprise Edition
• Cleanup bigint conversion for shared_runners_duration (merge request)
• Remove jwt_auth_space_delimited_scopes feature flag (merge request)
• Rename zoekt shards to nodes (merge request) GitLab Enterprise Edition
• Fix EscapeUtils deprecation warning (merge request) GitLab Enterprise Edition
• Move comment logic to parallel importer (merge request)
• Slack slash commands page: Migrate clipboard buttons (merge request)
• Update acts-as-taggable-on to 10.0 (merge request)
• Unify labelName and authorUsername GraphQL arguments (merge request) GitLab Enterprise Edition
• Add group webhooks to registration features (merge request) GitLab Enterprise Edition
• Underline links in package row component (merge request)
• Remove search_notes_hide_archived_projects (merge request)
• Clean up and remove ios_specific_templates experiment (merge request)
• Migrate actions buttons (merge request)
• Adds a new Danger check for changing column default (merge request)
• Update dependency auto-deploy-image to v2.60.0 (merge request)
• Remove search_merge_requests_hide_archived_projects (merge request)
• Geo Sites Form - Migrate Shards Dropdown (merge request) GitLab Enterprise Edition
• Change notifications/todos feature flag to current_user (merge request)
• Remove search_issues_hide_archived_projects flag (merge request)
• Move user profile actions into overflow menu (merge request)
• Search: Track autocomplete action (merge request)
• Allow permitted invalid approval settings for policy rule builder (merge request) GitLab Enterprise Edition
• Fix and migrate missing clipboard buttons (merge request)
• Add group file templates to registration features (merge request) GitLab Enterprise Edition
• Re-do swapping columns for ci_pipelines (merge request)
• Geo Replicable - Migrate Filter Dropdown (merge request) GitLab Enterprise Edition
• Allow environment override of NODE_OPTIONS for webpack by @twk3 (merge request)
• Update dependency auto-build-image to v1.46.0 (merge request)

Deprecated (1 change)

• Add bigint fields for epic descendant weights (merge request) GitLab Enterprise Edition

Removed (32 changes)

• Remove Rugged patches (step 2) (merge request)
• Remove ignored column from in_product_marketing_emails (merge request)
• Remove flux custom logic (merge request)
• Remove audit event related to third party AI setting (merge request) GitLab Enterprise Edition
• Remove all references to Third-Party AI features setting (merge request) GitLab Enterprise Edition
• Remove design_* and wiki_* ignore columns rule (merge request) GitLab Enterprise Edition
• Remove toggle to turn off new navigation (merge request)
• Cleanup generate description feature (merge request) GitLab Enterprise Edition
• Remove reversibility of Jira endpoints (merge request)
• Drop project_settings.jitsu_key (merge request)
• Remove Rugged patches (merge request)
• Remove unused redis-namespace gem (merge request)
• Remove projects.scss from FF (merge request)
• Remove redundant indexes within Optimize (merge request)
• Remove COOP header (merge request)
• Remove unused Geo::FileRegistryFinder class (merge request) GitLab Enterprise Edition
• Remove deprecated status data from Geo Site Status API (merge request) GitLab Enterprise Edition
• Remove unused #user_table_headers (merge request)
• Delete dupliacted index_scan_result_policies_on_policy_configuration_id (merge request)
• Remove merge_request_refs_cleanup feature flag (merge request)
• Drop unused project_registry table (merge request) GitLab Enterprise Edition
• Remove unused #visibility_level_helper method (merge request)
• Remove the disable merge trains flag (merge request) GitLab Enterprise Edition
• Remove unused wiki_sort_title helper (merge request)
• Drop column force_full_reconciliation from workspaces (merge request)
• Remove Snowplow event generator as obsolete (merge request)
• Remove unused feature flag sync_mr_approval_rules_security_policies (merge request) GitLab Enterprise Edition
• Remove unbatch_graphql_queries FF (merge request)
• Remove value_stream_dashboard_on_off_setting FF (merge request) GitLab Enterprise Edition
• Silent Mode - Remove experiement badge (merge request)
• Remove columns from users and application settings (merge request)
• Remove the tasks to be done worker (merge request)

Security (10 changes)

• Update RedCloth gem to include CVE fix (merge request)
• Proxy asset URLs with protocol but no slashes (merge request)
• Fix infinite loop when finding component project
• Add abuse detection for pipes
• Remove FIFO files from tarball extract
• Guard gitlab_version_check helper
• Add the environment action to the CI JWT token fields
• Prevent unprivileged user assignment in templated projects
• Fixes Service Desk email template issue description privileges
• Update sidekiq to 6.5.12 (merge request)

Performance (10 changes)

• Fix cross-join test failure for ApprovalProjectRule method (merge request)
• Enable and remove the FF ci_fix_performance_pipelines_json_endpoint (merge request)
• Remove notes count from network graph (merge request)
• Use InOperatorOptimization module on standards adherence dashboard (merge request) GitLab Enterprise Edition
• Increase GraphQL client timeout (merge request)
• Add index to catalog_resources on state (merge request)
• Drop an index in deployments table (merge request)
• perf: Improve performance of create_package_service_spec by @gerardo-navarro (merge request)
• Removing offending line to see what pipeline issues arise (merge request)
• Security findings performance improvements (merge request) GitLab Enterprise Edition

Other (58 changes)

• Cleanup package metadata feature flags (merge request)
• Drops unused index from namespaces (merge request)
• Denormalize visibility_level column on catalog_resources (merge request)
• Remove FF use_pipeline_wizard_for_pages (merge request)
• Remove FF create_deployment_only_for_processable_jobs (merge request)
• Remove admin_group_member FF (merge request) GitLab Enterprise Edition
• Remove feature flag data_transfer_monitoring_mock_data (merge request)
• Update the mr doc (merge request)
• Remove all scope from GitClassProxy (merge request) GitLab Enterprise Edition
• Clarify component paths and directory structure (merge request)
• Initialize bigint conversion for system_note_metadata (merge request)
• Reduce duplicate job key TTL from 6 hrs to 10 mins (merge request)
• Dropping repositories columns from geo_node_statuses table by @TamsilAmani (merge request)
• Make BulkImports workers retriable (merge request)
• Doc: non-public email is used for commit match (merge request)
• Make Direct Transfer export workers retriable (merge request)
• Bump devise version to 4.9.3 (merge request)
• Update sentry gems to 5.12.0 (merge request)
• Replace redigo with go-redis (merge request)
• Remove feature flag definition file (merge request)
• Replace database_cleaner with database_cleaner-active_record (merge request)
• Include author username in avatar on Repository (merge request)
• Update wiki search query to filter archived project results (merge request) GitLab Enterprise Edition
• Enable GitLab HTTP_V2 (merge request)
• Use Tooling::FindChanges for scripts/lint-doc.sh by @Taucher2003 (merge request)
• Remove alignment rule for header actions (merge request)
• Improve color contrast ratio to pass WCAG recomendation (merge request)
• refactor: Rename helper file to be consistent with its module name by @gerardo-navarro (merge request)
• Remove temp index by @TamsilAmani (merge request)
• Drop an unused index for GitLab.com (merge request)
• Re-add unique index on design_user_mentions (merge request)
• Remove :vulnerability_report_grouping feature flag (merge request) GitLab Enterprise Edition
• Remove log_verification_user_not_found method from identity verification (merge request) GitLab Enterprise Edition
• Adds cop to ensure mandatory keys in bbm dictionary (merge request)
• Cleanup feature flag verify_push_rules_for_first_commit (merge request)
• test: Adjust feature category to package registry by @gerardo-navarro (merge request)
• Remove super_sidebar_nav_enrolled feature flag (merge request)
• Unite Clickhouse CI data ingestion FF (merge request)
• Display username on smaller screens (merge request)
• Remove cached_security_policies feature flag (merge request) GitLab Enterprise Edition
• Drop the old unique index on approval merge request rule table (merge request)
• Replace kebab menu with x for work item child (merge request)
• Cascade auto_canceled_by_partition_id to canceled jobs (merge request)
• Add auto_canceled_by_partition_id to p_ci_builds for self-managed (merge request)
• Drop the use of namespace in Sidekiq and Mailroom delivery (merge request)
• Add tracking to the pipeline IID dropdown (merge request)
• Add an endpoint for internal/zoekt/callback (merge request) GitLab Enterprise Edition
• Use less attributes for builds initialization (merge request)
• Cleanup geo_registries_update_mutation FF (merge request)
• Fixed shortcut test (merge request)
• Migrate SubmitDropdown to GlDisclosureDropdown (merge request)
• Added generated column to diff files (merge request)
• Check if work item hierarchy widget link redirects properly (merge request) GitLab Enterprise Edition
• Remove unnecessary EntityWorker calls (merge request)
• Drops unused idx namespaces_on_shared_and_extra_runners_minutes_limit (merge request)
• Raise rate limit error with type (merge request)
• Remove pubsub migration helper for actioncable (merge request)
• Use partitioned table for CommitStatus (merge request)

16.5.8 (2024-01-24)

Security (1 change)

• Devfile parser arbitrary file write (merge request)

16.5.7 (2024-01-13)

Fixed (1 change)

• Make chat_names table migration idempotent (merge request)

16.5.6 (2024-01-11)

Fixed (1 change)

• Add missing ci_sources_pipelines indexes for self-host (merge request)

Security (4 changes)

• Consider older commits when resetting codeowner approvals (merge request)
• Password reset followups (merge request)
• Add verification layer for BaseSlash commands (merge request)
• Ensure workspaces are created under same root namespace as agent (merge request)

16.5.4 (2023-12-13)

Fixed (1 change)

• Truncate verification failure message to 255 GitLab Enterprise Edition

Security (8 changes)

• Prevent tag names starting with SHA-1 and SHA-256 values (merge request)
• Pass encoded file paths to router (merge request)
• Validate access level of user while rotating token (merge request)
• Fix large time_spent value causing GraphQL error Integer out of bounds (merge request)
• Restrict Protected branch access via group to direct members (merge request)
• Remove the ability to fork and create MR for auditors (merge request)
• Restrict passing variables on the pipeline schedule API (merge request)
• Smartcard auth: encrypt client cert in params (merge request)

16.5.3 (2023-11-30)

Security (11 changes)

• Validate adding members with higher role (merge request)
• Enforce ref protection on pipeline schedule updates (merge request)
• Update mermaid version for DOS security fixes (merge request)
• Prevent guest users from being able to add emojis in confidential issues (merge request)
• Do not run ssl cert validation if key has errors (merge request)
• Ensure access is checked when loading releases associated with tags (merge request)
• XSS and ReDoS in Markdown via Banzai pipeline of Jira (merge request)
• Prevent branch names starting with SHA-1 and SHA-256 values (merge request)
• Filter out projects with disabled package registry in Composer finder (merge request)
• Check max role for user for group access to protected ref (merge request)
• Treat security policy bots as external (merge request)

16.5.2 (2023-11-14)

Fixed (4 changes)

• Fix assign security check permission checks (merge request) GitLab Enterprise Edition
• Create group wiki repo if absent when verifying on primary (merge request) GitLab Enterprise Edition
• Fix broken issue rendering when initial ID is null (merge request)
• Backport artifacts page breadcrumb fixes (merge request)

16.5.1 (2023-10-30)

Fixed (1 change)

• Revert "Merge branch '419642-better-error-messages-for-pull-mirroring' into 'master'" by @Taucher2003

Security (7 changes)

• Fix infinite loop when finding component project (merge request)
• Guard gitlab_version_check helper (merge request)
• Add the environment action to the CI JWT token fields (merge request)
• Remove FIFO files from tarball extract (merge request)
• Backport add abuse detection for pipes (merge request)
• Prevent unprivileged user assignment in templated projects (merge request)
• Fixes Service Desk email template issue description privileges (merge request)

Other (1 change)

• Update migration to drop column only if it exists

16.5.0 (2023-10-20)

Added (140 changes)

• Add branch field to Telegram integration (merge request)
• Add validation for restrictions on work item links (merge request)
• Optimize index for adjourned project deletion (merge request)
• Add parent widget to work items (merge request) GitLab Enterprise Edition
• VSD drill-down links inherit labels from panel filter (merge request) GitLab Enterprise Edition
• Increased the limit of linked items that can be added at the time (merge request)
• feat: Add graphql query for package protection rules by @gerardo-navarro (merge request)
• Hide snippets of banned users (merge request)
• Add counts with no DORA data within scope (merge request) GitLab Enterprise Edition
• Adds notes to abuse reports backend (merge request)
• Enable the print_wiki feature flag by default (merge request)
• Convert user columns in projects to LFKs (merge request)
• Add Cloud Connector service design doc (merge request)
• Add ancestors field to hierarchy widget (merge request)
• Adding GraphQL endpoint for blocking merge requests (merge request) GitLab Enterprise Edition
• Enable Global Search For Epics by @sd5869 (merge request) GitLab Enterprise Edition
• Allow container registry with disabled repository by @Taucher2003 (merge request)
• Boilerplate for /-/ml/models/{model_id} (merge request)
• Remove the server_side_frecent_namespaces feature flag (merge request)
• Add container scanning properties (merge request)
• Add "Manage Project Access Tokens" custom permission (merge request) GitLab Enterprise Edition
• Create notes for new issuable links in async job (merge request)
• Prevent delete protected branches via security policies (merge request) GitLab Enterprise Edition
• Support HTML in merge request review AI summary (merge request)
• Remove the verification_reminder feature flag (merge request) GitLab Enterprise Edition
• Add default related link restrictions (merge request)
• Enable Vulnerability Report Grouping feature flag by default (merge request) GitLab Enterprise Edition
• Trigger webhook on delete release event (merge request)
• Establishes dependency between migrations and BBMs (merge request)
• Add status_message to package graphql payload (merge request)
• Add manage group members as custom permissions (merge request) GitLab Enterprise Edition
• Add option to turn off math rendering limits (merge request)
• Add support for group mention events to Discord integration by @Taucher2003 (merge request)
• Remove api_keyset_pagination_multi_order FF (merge request)
• Adding new scope for_package_name for package protection rule by @gerardo-navarro (merge request)
• Add database indexes for hashed in user_credit_card_validations (merge request)
• Remove batch_delay_jira_branch_sync_worker feature flag (merge request)
• feat: Introducing basics for protecting containers by @gerardo-navarro (merge request)
• GraphQL API for updating audit event streaming amazon_s3_configurations (merge request) GitLab Enterprise Edition
• Enable new Service Desk list by default (merge request)
• Add ambiguous ref modal (merge request)
• Add push/pull token for rename API (merge request)
• Adding update api for instance GCP (merge request) GitLab Enterprise Edition
• Implement mergeabilityChecks GraphQL field (merge request)
• Add a tooltip to include archived filter (merge request)
• Add migration for locking on login attempts settings (merge request)
• Remove declarative policy gem cached attributes patch (merge request)
• Reads mail-key from CC in general email receiver (merge request)
• Add configurable API requests setting (merge request)
• Add rails support for GetFileAttributes RPC (merge request)
• Hide snippets of banned users (merge request)
• Add add_child quick action for work items (merge request)
• Cleanup index_nuget_symbol_files feature flag (merge request)
• Adds pagination to model index (merge request)
• Add remediations filter to finder (merge request) GitLab Enterprise Edition
• Expose has_failures attribute in Direct Transfer API (merge request)
• Add deployment events as supported by discord integration by @Taucher2003 (merge request)
• Added missing states to GraphQL UserState by @jboeijenga (merge request)
• Enable fast-forward and semi-linear merge trains (merge request)
• feat: Add graphql mutation to create package protection rules by @gerardo-navarro (merge request)
• Update vulnerability_reads after remediation creation (merge request)
• Added possibility to filter notes on the GraphQL resolver by @zillemarco (merge request)
• Disallow reserved domains from being verified (merge request) GitLab Enterprise Edition
• Updates model experiments visibility through API (merge request)
• Add support for pull request reviewers (merge request)
• Add clickhouse logs to production (merge request)
• Add vulnerabilities column to sbom_occurrences (merge request) GitLab Enterprise Edition
• Add export route and worker for CSV (merge request) GitLab Enterprise Edition
• Change value streams project ids filter contraint (merge request)
• Added active param while header creation (merge request) GitLab Enterprise Edition
• Add Enterprise group attributes to admin UI (merge request) GitLab Enterprise Edition
• Index nuget symbol files (merge request)
• Adding feature for activating or deactivating headers (merge request) GitLab Enterprise Edition
• Add scope and service for statistics usage export (merge request) GitLab Enterprise Edition
• Update epic hierarchy restrictions records (merge request)
• Add work items related link restrictions table (merge request)
• Add API for listing audit events amazon_s3_configurations for a group (merge request) GitLab Enterprise Edition
• Add integrations placeholder (merge request)
• Add API for creating amazon_s3_configurations for audit event streaming (merge request) GitLab Enterprise Edition
• Added syntax options drawer document (merge request) GitLab Enterprise Edition
• Expose access_locked? as locked (merge request)
• Add new filters to issues completed count (merge request) GitLab Enterprise Edition
• Add missing has_merge_request argument (merge request) GitLab Enterprise Edition
• Remove linked item from the work item (merge request) GitLab Enterprise Edition
• Add set_parent quick action for work items (merge request)
• Displays ai_features token only when available (merge request) GitLab Enterprise Edition
• Implement REST API to create (limited) PAT with PAT (merge request)
• Schedule CronJob to refresh assigned users (merge request) GitLab Enterprise Edition
• Allow to persist value stream settings (merge request) GitLab Enterprise Edition
• Ingest CVSS vectors if given (merge request) GitLab Enterprise Edition
• Update config_version & force_full_reconciliation for stale workspaces (merge request) GitLab Enterprise Edition
• Reschedule finding_id backfilling (merge request)
• Add feature to stream audit events to Amazon S3 destinations (merge request) GitLab Enterprise Edition
• Introduce new column on approval merge request rules (merge request)
• Force include all resources logic for workspaces (merge request) GitLab Enterprise Edition
• Support NuGet Delete Service (merge request)
• Add regex validation to string CI inputs (merge request)
• Create table and model for value stream settings (merge request) GitLab Enterprise Edition
• Add foreign key for ci_stages.pipeline_id_convert_to_bigint (merge request)
• Add foreign key for ci_sources_pipelines bigint conversion (merge request)
• Allow actor override when Direct Transfer disabled (merge request)
• Set patch_id_sha on record creation (merge request)
• Add foreign key for ci_pipelines.auto_canceled_by_id_convert_to_bigint (merge request)
• Enable group_level_licenses by default (merge request) GitLab Enterprise Edition
• Adding OKR checkin reminder email notifications (merge request) GitLab Enterprise Edition
• Add documentation for locked labels (merge request)
• Broadcast chat messages to all clients (merge request) GitLab Enterprise Edition
• Add container registry DB enabled flag to usage ping (merge request)
• Cleanup after vulnerability_occurrences.uuid type migration (merge request)
• Ability to search and link work item (merge request)
• Release admin_merge_request granular permission (merge request) GitLab Enterprise Edition
• Populate finding_id in manual Vulnerability creation service objects (merge request) GitLab Enterprise Edition
• Display a ref type icon in the ref selector (merge request)
• Make GraphQL note and user types countable (merge request)
• Add 'latest_released_at' column to catalog_resources table (merge request)
• Limit number of issues that can be linked to an issue (merge request)
• Create p_ci_finished_build_ch_sync_events table (merge request) GitLab Enterprise Edition
• Add cvss column to vulnerabilities table (merge request)
• Sync create indexes for ci_sources_pipelines pipeline_id conversion (merge request)
• Save draft new releases to local storage (merge request)
• Add security policy schema to block unprotecting branches (merge request) GitLab Enterprise Edition
• Add an option to use unidiff format for diff API responses (merge request)
• Manage achievements order on profile by @Taucher2003 (merge request)
• Typecast both query sides to UUID for safe type migration (merge request)
• Create temporary index on uuid column to support typecasting (merge request)
• Add compare button to tree view page (merge request)
• Add last_assigned_users_refreshed_at column (merge request)
• Add new column to hierarchy restrictions table (merge request)
• Move repository storage to BasicProjectDetails (merge request)
• Add force_include_all_resources field to workspaces (merge request)
• Add support for nuget v2 feed download endpoint (merge request)
• Track weight and sprint_id for VSA issues (merge request)
• Record and display fetched GitHub PR reviewers (merge request)
• Apply filtering of projects by topic for DORA score counts (merge request) GitLab Enterprise Edition
• Geo Replicables - SSF Bulk Actions UI (merge request) GitLab Enterprise Edition
• Add hasParent to issue type (merge request) GitLab Enterprise Edition
• Backfill vulnerabilities.finding_id column (merge request)
• Ensure backfill of default branch protection setting (merge request)
• Sync create indexes for ci_pipelines pipeline_id conversion (merge request)
• Sync creation of i_compliance_violations_for_export (merge request)

Fixed (152 changes)

• Fix combined negated filters for issues (merge request)
• Toggle Auto DevOps extra settings (merge request)
• Fix param names in RelatedLinksCreateWorker (merge request)
• Add work_item_related_link_restrictions to deletion exceptions (merge request)
• Clear AI availability check when members get added (merge request) GitLab Enterprise Edition
• Fix bleeding of page size selector in vulnerability report grouping (merge request) GitLab Enterprise Edition
• Update last_assigned_users_refreshed_at column (merge request) GitLab Enterprise Edition
• Improve create VSA error messaging (merge request) GitLab Enterprise Edition
• Fix missing UI text (merge request)
• Gracefully handle space-delimited scopes in registry /jwt/auth requests (merge request)
• Fix k8s namespaced services list (merge request)
• Do not send empty strings as a chunk (merge request) GitLab Enterprise Edition
• Allow expand/collapse with chevron on vulnerability report grouping (merge request) GitLab Enterprise Edition
• Update mime-types to v3.5.1 and mime-types data to 3.2023.1003 (merge request)
• Catch semver_dialects parse errors (merge request) GitLab Enterprise Edition
• Remove the routing when container exists in wiki cleanup from elastic (merge request) GitLab Enterprise Edition
• Use UntrustedRegexp with inputs regex (merge request)
• Fixed users API docs using a PAT that triggered secret detection by @zillemarco (merge request)
• Fix gitlab_username_claim support for OmniAuth providers (merge request)
• Fix pipeline schedules view when owner is nil (merge request)
• Update migration worker preflight check (merge request) GitLab Enterprise Edition
• Check supported versions when querying compressed package metadata (merge request) GitLab Enterprise Edition
• Switch success to primary variant in split_button (merge request) GitLab Enterprise Edition
• Allow empty email field on LDAP entry (merge request)
• Do not save linked resources if the incident is not persisted (merge request)
• Import missing projects specific CSS on more list pages (merge request)
• Fix regression for breadcrumbs styling after moving projects.scss (merge request)
• Render user menu dropdown list items in <ul> (merge request)
• Block un-UTF-8-able tag names (merge request)
• Fix work item child items widget overflow (merge request)
• Prevent Meta+K default behaviour in rich text editors by @a.shreya202 (merge request)
• Reindex wikis to fix routing and backfill archived (merge request) GitLab Enterprise Edition
• Remove "Skip to main content" link from navigation when logged out (merge request)
• Fix super sidebar update for learn gitlab when updating percent (merge request) GitLab Enterprise Edition
• Fix text overflow in performance bar in text only zoom mode in FF (merge request)
• Fix Direct Transfer stage incorrect execution order due to failures (merge request)
• Fetch missing commits during Bitbucket server import (merge request)
• Geo: Avoid getting resources stuck in Queued (merge request) GitLab Enterprise Edition
• Fix GraphQL ConnectionFilterExtension for list types by @zzaakiirr (merge request)
• Show task icon instead of status in linked item widget (merge request)
• Do not show runner manager as online when registering (merge request)
• Filter k8s services by namespace (merge request)
• Remove active scope in add-on purchase lookup for SM (merge request) GitLab Enterprise Edition
• Fix dummy email for omniauth integrations (merge request)
• Fix spelling corrections not working in RTE (merge request)
• Return 400 Bad Request if request parameters cannot be decoded (merge request)
• Fix Jira issues with 'Done' status do not appear on vulnerability page by @egor-kh (merge request) GitLab Enterprise Edition
• Fix vulnerability statistics gathering query for A grade projects (merge request) GitLab Enterprise Edition
• Fix jest console error on unit tests (merge request)
• Updates schema validation index query (merge request)
• Hide logo images from accessibility tree (merge request)
• Prevent serialization from failing in RTE (merge request)
• Fixes MLflow run search compatibility (merge request)
• Fix failing migration when commit_message_negative_regex is missing (merge request)
• Fixes error when mail without to header in ServiceDeskHandler (merge request)
• Fix vulnerability statistics calculation query (merge request) GitLab Enterprise Edition
• Fix validation error not shown on first click (merge request)
• Protected environment settings modal overflow fix (merge request) GitLab Enterprise Edition
• New navigation display tooltip on keyboard focus (merge request)
• Gracefully handle exceptions (merge request)
• Maintain elasticsearch for epics on label deletion (merge request) GitLab Enterprise Edition
• Temporarily allow listing cross join (merge request)
• Prevent existing undeleted user access to return true (merge request)
• Remove new repository on failed replication (merge request)
• Add nav element to logged out header (merge request)
• Disable group readme mountpoint when gitlab-profile project is private by @Taucher2003 (merge request)
• MR sidebar toggle button position fix (merge request)
• Code generation: skip trailing white spaces suffix (merge request) GitLab Enterprise Edition
• Fix GitHub Import workers from aborting when rate limit is reached (merge request)
• Keep locking_version when updating partitioned records (merge request)
• Fix Security Policy Bot not created when SAML is enabled (merge request) GitLab Enterprise Edition
• Fix issue creation from pipeline security modal (merge request)
• Front-end support for bigint board weight fields (merge request) GitLab Enterprise Edition
• ChatOps calls should record user activity (merge request)
• Enable k8s cluster when CI/CI is disabled by @abhiandthetruth (merge request)
• Fix update of optional_approvals in bot comment (merge request) GitLab Enterprise Edition
• Prevents note column swap migration to fail (merge request)
• Do no re-enqueue timed-out bulk imports (merge request)
• Disable routing in delete for force wiki reindexing (merge request) GitLab Enterprise Edition
• Fix draft comment files not loading (merge request)
• Fix pages custom domain requests being redirected to unique domain (merge request)
• ToDo: Fix count when not filtered (merge request)
• Set pipeline schedule owner_id to importer user when importing (merge request)
• Attempt to parse Redis cert_file and key_file only if defined (merge request)
• Fix GraphQL API for clearing issue contacts (merge request)
• Update vulnerability_read when vulnerability dismissed (merge request) GitLab Enterprise Edition
• Fix GraphQL userNotesCount when not logged in (merge request)
• Cache database_id before doing other work (merge request)
• Fix dropdown alignment in new navigation (merge request)
• Performance Bar: Fix darkmode link color (merge request)
• Fix ci pipeline reference when pushing duplicate NuGet package (merge request)
• Recover environments that are stuck stopping (merge request)
• Invite project mmembers overlay dropdown overflow fix (merge request) GitLab Enterprise Edition
• Fix security policy bot not created when group does not allow new users (merge request) GitLab Enterprise Edition
• Show work item comments locked only after loading (merge request)
• Fix experiment rollout logic (merge request)
• Fixed VSA multi-select project dropdown (merge request)
• Return 401 token invalid form graphql (merge request)
• ToDo badge: Fix count when list is filtered (merge request)
• Stops log from resetting line in every section (merge request)
• Avoid account lockout when account password automatically set (merge request)
• Fix permissions on :read_pipeline_schedule (merge request)
• Keep branch name in a search input (merge request)
• Fix avatar wrapping in work items child objectives widget (merge request)
• Remove orphaned approval rules for imported project/merge request (merge request)
• Revert auth changes on the Composer registry package endpoint (merge request)
• Update ChatName activity timestamp throttle (merge request)
• Remove extra spacing around epic header actions (merge request)
• Child issues and epics widget: Fix alignment and overflow issue (merge request) GitLab Enterprise Edition
• Fix position of job sidebar with performance bar enabled (merge request)
• Fix "Continue editing" button being retained (merge request)
• Add preload hint for GitLab Sans italic font (merge request)
• Prevent modification of security_policy_bot members (merge request) GitLab Enterprise Edition
• Fixes confidentiality handling of NoteForm component (merge request)
• Fix enum fields data propagation (merge request)
• Fix auto-scrolling to Markdown anchors (merge request)
• Limit GraphQL job trace HTML summary to 16KiB (merge request)
• Remove list marker and href attribute (merge request)
• Ensure TLS is disabled with dind service in Code Quality template (merge request)
• Ensure consistent behavior when LDAP encryption config missing (merge request)
• Add merged_commit_sha to queries for merge requests (merge request)
• Fix Direct Transfer stages execution order (merge request)
• Fix composer API to work with CI job token by @ar-mali (merge request)
• Ensure empty relation file exists on disk even if nothing was exported (merge request)
• Add redirecting to identity verification success page back (merge request) GitLab Enterprise Edition
• Fix NoMethodError on CreateBotService when authorization is enabled (merge request) GitLab Enterprise Edition
• Fixes overflow of username in note header in the timeline (merge request)
• Use a more robust extraction function to get the file hash (merge request)
• Send notification emails using background worker (merge request)
• Fix WorkItemUpdate mutation permissions (merge request)
• Add missing provider ID field (merge request) GitLab Enterprise Edition
• Resolve tooltip on navigation toggle button staying visible on mobile (merge request)
• Add report abuse button to epic actions (merge request)
• Remove extra margin on members tabs (merge request)
• Fix missing sha default in merge trains API (merge request) GitLab Enterprise Edition
• Support Microsoft Graph pagination (merge request) GitLab Enterprise Edition
• Fix N+1 for indexing epics and milestones (merge request) GitLab Enterprise Edition
• InternalEvents.track_event should be called with objects and not ids (merge request)
• Fix merge request header icons (merge request)
• Super sidebar contextual header restore font-weight (merge request)
• Verify VSD point target_project_id (merge request) GitLab Enterprise Edition
• Improve ci schema to support several forms of scripts by @pm9551 (merge request)
• Fix invalid HTML markup in super sidebar (merge request)
• This MR adds check for namespace (merge request) GitLab Enterprise Edition
• Only add confirmed accounts directly as member (merge request)
• Fix Markdown rendering references inside inline diff (merge request)
• Fix CLI messages for project limits in SM (merge request) GitLab Enterprise Edition
• Fix mobile alignment of MR AI summary (merge request)
• Fixing import list pagination bug (merge request)
• Fix incorrect SystemHook GitLab header (merge request)
• Fixes the .merge-request-tabs-holder background color in darkmode (merge request)
• Don't signal MR rebase if on current fast-forward train (merge request) GitLab Enterprise Edition

Changed (221 changes)

• Remove user dropdown from terms layout (merge request)
• Display name of user that triggered CI on candidate table by @zzaakiirr (merge request)
• Swap the columns for ci_pipeline_variables (merge request)
• Update devise-two-factor to 4.1.1 (merge request)
• Add logo to PivotalTracker integration (merge request)
• Update tanuki image for new user onboarding (merge request) GitLab Enterprise Edition
• Remove loading spinner in feature flagged todo button (merge request)
• Update similar_by_holder_name & similar_records in CreditCardValidation (merge request)
• Migrate cancel button iin shared/notes/form (merge request)
• Migrate group_dropdown to import_target_dropdown (merge request)
• Move epic notifications and todos (merge request)
• Remove unused blob header files (merge request)
• Remove unncessary typecasting in SQL queries (merge request) GitLab Enterprise Edition
• Improve test case action dropdown (merge request) GitLab Enterprise Edition
• Migrate GlDropdown component to use GlCollapsibleListbox (merge request)
• Remove feature flag database_analyze_on_partitioned_tables (merge request)
• Add pipeline name to GraphQL API (merge request)
• Add Confidentiality Checkbox to New Test Case Form (merge request) GitLab Enterprise Edition
• Add system-out and system-err to test parsing by @evigeant (merge request)
• Remove summarize_diff_abstraction_layer feature flag (merge request) GitLab Enterprise Edition
• Added logging to TokensController (merge request)
• Upgrade GitLab Pages to latest version (merge request)
• Update adherence_report_ui ff to default enabled (merge request)
• Dark mode label fix (merge request)
• Update notifications documentation (merge request)
• Geo Sites Form - Migrate Namespace Dropdown (merge request) GitLab Enterprise Edition
• Remove domain verification SSO redirect feature flag (merge request) GitLab Enterprise Edition
• Add contribution analytics to registration features (merge request) GitLab Enterprise Edition
• Add geo_handle_after_create to all replicators (merge request) GitLab Enterprise Edition
• Import LFS objects (merge request)
• Add internal API to receive zoekt heartbeats (merge request)
• Add logo to Jira integration (merge request)
• Add logo to Pushover integration (merge request)
• Update empty state component (merge request)
• Update dependency auto-deploy-image to v2.59.1 (merge request)
• Migrate the epic actions dropdown to GlDisclosureDropdown (merge request) GitLab Enterprise Edition
• Synch index addition for index_vulnerabilities_on_project_id_and_id (merge request) GitLab Enterprise Edition
• Remove dead code in pipeline presenter (merge request)
• Add schedules pagination (merge request)
• Remove search_commits_hide_archived_projects flag (merge request)
• Fixing rubocop testid exceptions No. 3 (merge request) GitLab Enterprise Edition
• Improve order of mention autocomplete results (merge request)
• Remove search_blobs_hide_archived_projects flag (merge request)
• Move notifications and todos on issues (merge request)
• Ci::BuildNeed name limit increase (merge request)
• Activate and deactivate streaming headers (merge request) GitLab Enterprise Edition
• Migrate kerberos copy url button (merge request)
• Record a custom attribute when auto banning users (merge request)
• MR widget: Align environment button with widget expand button (merge request)
• Domain edit page: Migrate clipboard button (merge request)
• MR sidebar: Migrate clipboard buttons (merge request)
• Add project count for namespace API when admin (merge request) GitLab Enterprise Edition
• Clone repo clipboard button migration (merge request)
• Remove deprecated_clipboard_button from user homepage (merge request)
• SSH Key detail page: Migrate clipboard button (merge request)
• Commit SHA align appearance across pipeline, job, mr (merge request)
• Swap the columns for ci_sources_pipelines (merge request)
• Move projects.scss to page_bundles (merge request)
• Remove deprecated_clipboard_button in Slack (merge request)
• Swap the columns for ci_stages (merge request)
• Swap the columns for ci_pipelines (merge request)
• Make sure scoped label remove icon is visible (merge request)
• Change add-on availability to use UserAssignment (merge request) GitLab Enterprise Edition
• Add instance GCP logging streaming destinations (merge request) GitLab Enterprise Edition
• Migrate split_button to button group with Listbox (merge request) GitLab Enterprise Edition
• Remove move_close_into_dropdown feature flag (merge request)
• Add (gpg_key_id, id) index to gpg_signatures (merge request)
• Update dependency auto-deploy-image to v2.59.0 (merge request)
• Pass CVSS to common security report parser (merge request) GitLab Enterprise Edition
• Make impossible to turn on Rugged feature flags (merge request)
• Enable streaming for gitlab duo (merge request) GitLab Enterprise Edition
• Add email custom text to registration features (merge request) GitLab Enterprise Edition
• Update related epic links permissions (merge request) GitLab Enterprise Edition
• Geo: Proxy Git fetch/clone over SSH via Gitlab Shell (merge request) GitLab Enterprise Edition
• Removed MAX_PANELS_LIMIT for Value Streams Dashboard by @tedtran2019 (merge request) GitLab Enterprise Edition
• Change epic daterange dropdown to use listbox (merge request) GitLab Enterprise Edition
• Create deployments for ready-to-run jobs only (merge request)
• Modify ETV Anthropic implementation to remove precanned response text (merge request) GitLab Enterprise Edition
• Swap the columns for ci_pipeline_chat_data (merge request)
• Add issue analytics to registration features (merge request) GitLab Enterprise Edition
• Use font-display: swap for custom fonts (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Clean up the feature flag search_milestones_hide_archived_projects (merge request) GitLab Enterprise Edition
• Remove redundant version in runner details (merge request)
• Extract runner package host to constants.js by @orozot (merge request)
• Update dependency auto-deploy-image to v2.58.1 (merge request)
• Stop showing the explore plans link on the billing page (merge request) GitLab Enterprise Edition
• Use InOperatorOptimization for group vulnerabilities (merge request) GitLab Enterprise Edition
• Changes props on GlFormInut, GlFormSelect & GlDatepicker (merge request)
• Update tag size in warning alert (merge request)
• Add group wiki to registration features (merge request) GitLab Enterprise Edition
• Database backup script supports overriding individual database settings (merge request)
• Set force_include_all_resources to default true in database (merge request)
• Override project approval settings (merge request) GitLab Enterprise Edition
• Fix complaince in admin mode (merge request) GitLab Enterprise Edition
• Remove redundant details in runner page (merge request)
• Project overview Edit button fix (merge request)
• Remove group_level_licenses feature flag (merge request) GitLab Enterprise Edition
• Add licenses to group level dependency list export (merge request) GitLab Enterprise Edition
• Update illustrations (merge request)
• Move notifications and todos to buttons at top of page (merge request)
• Clean up automatic_trial_registration experiemnt (merge request) GitLab Enterprise Edition
• Enable semi-linear merge trains (behind feature flag) (merge request) GitLab Enterprise Edition
• Add the readme tab to the CI catalog details (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.58.0 (merge request)
• Fix broken master (merge request)
• Update loading of streaming destinations (merge request) GitLab Enterprise Edition
• Restructure Catalog details page (merge request) GitLab Enterprise Edition
• Improve spacing vulnerability details buttons (merge request) GitLab Enterprise Edition
• Allow restoring a specific backup with server-side backups (merge request)
• Update copy on welcome page during free registration (merge request) GitLab Enterprise Edition
• Remove group_level_dependencies ff (merge request) GitLab Enterprise Edition
• Allow group owner access to ssh certs api (merge request) GitLab Enterprise Edition
• Migrate build_timeout to respect the max (merge request)
• Add logo to Telegram integration (merge request)
• Use attachment_color for embed colors in Discord integration by @Taucher2003 (merge request)
• Pipeline detail: Update CiIcon to CiBadgeLink (merge request)
• Show additional access levels for custom roles (merge request) GitLab Enterprise Edition
• Update Jira links (merge request)
• This MR prevents page refresh (merge request) GitLab Enterprise Edition
• Shows all recorded metrics for a candidate (merge request)
• Save Vertex AI Access Token in database (merge request) GitLab Enterprise Edition
• Add logo to Bamboo integration (merge request)
• Rack::Attack - consider /oauth endpoints as API endpoints (merge request)
• Swap the columns for ci_pipeline_messages (merge request)
• Aligns upgrade badge to the surrounding text (merge request)
• Update mermaid version to 10.5.0 (merge request)
• Child issues and epics widget: Add empty message (merge request) GitLab Enterprise Edition
• Sync validate foreign key for ci_sources_pipelines (merge request)
• Sync validate foreign key for ci_pipelines (merge request)
• Add dev documentation for bitbucket importer (merge request)
• Add Sidebar Confidentiality Widget to Test Cases (merge request) GitLab Enterprise Edition
• Allow terraform reports to be seen with a blocked/incomplete state by @vermainfinite (merge request)
• Remove geo_batch_count feature flag (merge request) GitLab Enterprise Edition
• Use cronjob to delete old pages deployments (merge request)
• Remove references to lfs_batch_direct_downloads (merge request)
• Geo Sites - Migrate GlDropdown (merge request) GitLab Enterprise Edition
• Use CiBadgeLink instead of CiIcon for Pipeline Mini Graph (merge request)
• Add refresh_interval to gitlab:elastic:info (merge request) GitLab Enterprise Edition
• Performance Bar improvements (merge request)
• Remove redundant runner version upgrade alert (merge request) GitLab Enterprise Edition
• Adding OKR checkin reminder todo item (merge request) GitLab Enterprise Edition
• Fix grammar in approval rules docs (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Enable cached_security_policies by default (merge request) GitLab Enterprise Edition
• Create pending status check responses per MR (merge request) GitLab Enterprise Edition
• Update the upgrade badge to contain more details (merge request) GitLab Enterprise Edition
• Sync validate foreign key for ci_stages (merge request)
• Export last activity details (merge request) GitLab Enterprise Edition
• Expand import error message (merge request)
• Update adherence table thWidths (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Allow long group description (backend) by @freznicek (merge request)
• Remove "Add seats" btn from usage quotas for community plans (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.57.0 (merge request)
• Consolidate Puma low-level error handler code (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Swap columns for shared_runners_duration conversion (merge request)
• Truncate time in environments page by @vermainfinite (merge request)
• Update dependency auto-build-image to v1.42.0 (merge request)
• Allow merges in the absence of a pipeline (merge request)
• Improve standards adherence report (merge request) GitLab Enterprise Edition
• When user has 2FA enabled, do not attempt OAuth password auth (merge request)
• Enable ingest_sbom_licenses by default (merge request) GitLab Enterprise Edition
• feat: Add runner type badge to jobs table in admin job page by @gerardo-navarro (merge request)
• Remove visible_label_selection_on_metadata feature flag (merge request)
• Replace loading icon with destination path as text (merge request)
• Import bitbucket notes (merge request)
• MIgrate chat names to GlTable (merge request)
• Replace feature flag for Code Suggestions tab on Usage Quotas page (merge request) GitLab Enterprise Edition
• Update text in CI status badges (merge request)
• Update docs for status check removal (merge request)
• Cleaning up build_ios_app_guide_email experiment (merge request)
• Update AI architecture documentation (merge request)
• Fix cross database join in fetch_policy_approvers_service (merge request) GitLab Enterprise Edition
• Tidy up jobs list (merge request)
• Remove maxlength limit from the group description textarea (merge request)
• Handle optional approvals in policy bot comment (merge request) GitLab Enterprise Edition
• Fix RetryJob mutation ID type (merge request)
• Adding index on work_item_progresses.reminder_frequency (merge request)
• Make epic creation dropdown Pajamas compliant (merge request) GitLab Enterprise Edition
• Hide Application Analytics when experiments are disabled (merge request)
• Job page: restructre page (merge request)
• Make pipeline header mobile (merge request)
• Raise MissingAttributeError with explicit message (merge request)
• Find squashed commit if normal commit is not found on import (merge request)
• Respond with 401 instead of 404 on npm unauthenticated requests (merge request)
• Updates CiIcon to CiBadge (merge request)
• Enforce not null constraints for workspace personal_access_token_id (merge request)
• Rename framework folder to projects (merge request) GitLab Enterprise Edition
• Remove deprecated unlock LDAP membership feature (merge request) GitLab Enterprise Edition
• Add pagination to standards adherence table (merge request) GitLab Enterprise Edition
• Add optional SHA parameter to CI lint API by @oula.kuuva (merge request)
• Make boards selector dropdown Pajamas compliant (merge request)
• Move labels.scss to page_bundles from page_specific_bundles (merge request)
• Update artifacts page layout (merge request)
• Removes the mobile_devops_projects_promo feature flag (merge request)
• Redirect product planning hierachy page (merge request)
• Update spacing and classes of user profile controls (merge request)
• feat(web_ide): Added new API for VS Code Settings (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Fix for z-index bug for label filter (merge request)
• Upgrade to grpc v1.58.0 (merge request)
• Rename copy of GitHub PR attachments stat (merge request)
• Update Rails to 7.0.8 (merge request)
• Use handRaiseLeadButton in code_suggestions_intro (merge request) GitLab Enterprise Edition
• Updates CSP for Google Analytics 4 (merge request)
• Update URL for work items with type issue (merge request)
• Update job page layout (merge request)
• Remove use of the welcome controller and route in CE (merge request)
• Fix epic header actions when feature flag is off (merge request) GitLab Enterprise Edition
• Import bitbucket issues (merge request)
• Feature flag cleanup: standalone finding modal FE (merge request) GitLab Enterprise Edition
• Add project push rules changes auditor (merge request) GitLab Enterprise Edition
• Enable the ssh access by default in the Composer package registry (merge request)
• Update schedule pipeline layout (merge request)
• Do not save contributors and exports fields in npm metadata (merge request)
• Prevent namespace level banned users from accessing inviting projects (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Sync validate foreign key for ci_pipeline_messages (merge request)

Deprecated (2 changes)

• Deprecate groupApprovers field in ScanResultPolicyType (merge request) GitLab Enterprise Edition
• Add deprecation for openSUSE Leap 15.4 (merge request)

Removed (26 changes)

• Re-remove the member_tasks table (merge request)
• Clean up bigint conversion for notes (self-managed) (merge request)
• Remove gitlab_gtm_datalayer feature flag (merge request) GitLab Enterprise Edition
• Remove remove_legacy_github_client flag (merge request)
• Remove member_tasks table (merge request)
• Remove issuable features moved popover (merge request)
• Remove Gitlab::Shell#mv_repository calls (merge request)
• Remove user_pat_rest_api FF (merge request)
• Remove feature flag content_editor_on_issues (merge request)
• Remove feature flag enforce_vulnerability_attributes_rules enabled (merge request) GitLab Enterprise Edition
• Remove Pages migration from legacy outdated code (merge request)
• Remove feature flag scan_execution_policy_pipelines enabled by default (merge request) GitLab Enterprise Edition
• Remove legacy replication for project repositories (merge request) GitLab Enterprise Edition
• Remove tasks to be done for members from service and api layer (merge request)
• Drop unused PA cluster settings (merge request)
• Remove k8s_proxy_pat FF (merge request)
• Removed feature flag deactivation_email_additional_text (merge request)
• Remove callout for rich text editor (merge request)
• Remove the deprecated DeleteContainerRepositoryWorker (merge request)
• Remove the arkose_labs_login_challenge feature (merge request) GitLab Enterprise Edition
• Remove unused diff_merge_request_whitespace_link helper (merge request)
• Geo Replicables - Remove RESTful support Vuex (merge request) GitLab Enterprise Edition
• Drop ignored columns from geo_node_statuses (merge request)
• Remove restrict_special_characters_in_namespace_path feature flag (merge request)
• Remove asana gem dependency (merge request)
• Geo Replicables - Remove RESTful support from UI (merge request) GitLab Enterprise Edition

Security (20 changes)

• Enforce that the policy is executed by the bot user (merge request) GitLab Enterprise Edition
• Fix Maven request forward vulnerability to response splitting (merge request) GitLab Enterprise Edition
• Update URI gem to v0.12.2 (merge request)
• Fix leaking source code of restricted project through a fork
• Allow only one membership for security policy bots
• Delete of member branch protection rules cascadingly
• Revert "Merge branch 'security-415371-block-fifo-file' into 'master'"
• Prevents Ci::Build data from being rendered
• Restrict Project Fork Linking to Owners and Admins
• Prevent collaboration across forks when author cannot push
• Reset all approvals when target branch changes
• Default to using the asset proxy
• Pipelines will have no access to protected vars and may fail with tags
• Destroy group service accounts when removing group
• Fix SSO Enforcement for shared groups and projects
• Prevent math hijacking page elements
• Allow Maintainer+ to list Sentry projects
• Validate typeflag of import archive file
• Prevent leaking CI variables via fork MRs
• Mark any CI builds that are not complete as canceled when imported

Performance (6 changes)

• GitHub attachment importers resume their work (merge request)
• Sync removal of index_events_on_author_id_and_created_at_merge_requests (merge request)
• Drop index_deployments_on_project_id_and_ref concurrently (merge request)
• Remove index_deployments_on_project_id_and_ref async-ly (merge request)
• Async remove index_events_on_author_id_and_created_at_merge_requests (merge request)
• Query the sum of approvals required instead of calculating it in Rails (merge request) GitLab Enterprise Edition

Other (73 changes)

• Complete rollout of new pipeline unlock mechanism (merge request)
• Async create index for env state updated at (merge request)
• Add auto_canceled_by_partition_id to p_ci_builds (merge request)
• Drops unused index_namespaces_on_ldap_sync_last_update_at (merge request)
• Change the validation to take into account for the new column (merge request)
• refactor: Improve consistency in create_package_service_spec by @gerardo-navarro (merge request)
• Adds initial developer docs for Model Registry (merge request)
• Migrate webhook resend request button (merge request)
• Backfill has_remediations on existing vulnerability_reads records (merge request)
• Removing temporary index used to backfill project stats by @TamsilAmani (merge request)
• refactor: Use BaseProjectService for CreateRuleService by @gerardo-navarro (merge request)
• Default enable inherit_higher_access_levels_no_cross_join flag (merge request)
• This MR removes on_demand_scans_runner_tags FF (merge request) GitLab Enterprise Edition
• refactor: Add enum for push_protected_up_to_access_level by @gerardo-navarro (merge request)
• Dropping unused idx index_namespaces_on_updated_at (merge request)
• Bump Gitlab Shell to 14.29.0 (merge request)
• Remove issues AI related feature flags (merge request) GitLab Enterprise Edition
• Remove the feature_flag use_new_zoekt_indexer (merge request) GitLab Enterprise Edition
• Remove the hardcoding for getting shard (merge request) GitLab Enterprise Edition
• Removing ff advanceStageTimeout (merge request)
• Renamed groupFilters to reportGroupFilters by @tedtran2019 (merge request)
• Update validation message when verifying sha (merge request)
• Remove use_traversal_ids feature flag (merge request)
• Guidelines regarding rolling out percentages Feature Flags (merge request)
• Reindex and remove merge_requests from main index (merge request) GitLab Enterprise Edition
• Update sass npm from 1.49.9 to 1.69.0 by @tnir (merge request)
• Resolve ambiguous references for archive metadata (merge request)
• Cleanup/promote to production gtm_nonce feature flag (merge request)
• Migrate widget action buttons to GlDisclosureDropdown (merge request)
• refactor: Align file location of package protection rule factory by @gerardo-navarro (merge request)
• Add email_with_layout in access_token_revoked_email method by @KiranSatyaRaj (merge request)
• Send schema_version value flags for blob, commit and wiki (merge request) GitLab Enterprise Edition
• Add documentation related to link work items (merge request)
• Reindex notes from main index (merge request) GitLab Enterprise Edition
• Removing the feature flag loose_foreign_keys_batch_load_using_union (merge request)
• Cleanup FFs for migrating exclusive lease (merge request)
• Remove elastic_file_name_reverse_optimization feature flag (merge request) GitLab Enterprise Edition
• Refactors boolean validation specs using 'validate_inclusion_of' by @harshitprasad (merge request)
• Remove optimize_find_routable feature flag (merge request)
• Drop an unused index on the namespaces table (merge request)
• Remove FF bulk_imports_batched_import_export (merge request)
• Add a migration to remove hashed_root_namespace_id from users index (merge request) GitLab Enterprise Edition
• Use QueuesMetadata for duplicate jobs (merge request)
• Add automated accessibility tests (merge request)
• Externalize strings from viewer_swicher.html.haml by @wwwxx4869 (merge request)
• Write licenses to sbom_occurrences table (merge request) GitLab Enterprise Edition
• Removing a leftover from previous removal (merge request)
• Cleanup deploy_key_for_protected_tags feature flag (merge request)
• Use a dedicated client for workhorse-redis (merge request)
• Drop an unused index on the namespaces table (merge request)
• Remove ff standard_merge_train_ref_merge_commit (merge request) GitLab Enterprise Edition
• Remove 'gitlab_duo' feature flag (merge request) GitLab Enterprise Edition
• Remove 'ai_related_settings' feature flag (merge request) GitLab Enterprise Edition
• Remove mention of ai_redis_chat (merge request) GitLab Enterprise Edition
• Remove 'tanuki_bot' feature flag (merge request) GitLab Enterprise Edition
• Remove 'explain_code_snippet' feature flag (merge request) GitLab Enterprise Edition
• Remove 'chat_epic_identifier' FF (merge request) GitLab Enterprise Edition
• Remove 'ai_tool_info' feature flag (merge request) GitLab Enterprise Edition
• Drop an unused index on the namespaces table (merge request)
• Feature flags rollout instructions update (merge request)
• Add SaaS guard on onboarding controller (merge request) GitLab Enterprise Edition
• Cleanup errors_utf_8_encoding feature flag (merge request)
• Cleanup "optimize_group_template_query" feature flag (merge request)
• Remove the chatops feature flag since it's enabled by default (merge request)
• Added styles to to email by @NIKU-SINGH (merge request)
• Add index on ci_job_artifacts file_final_path (merge request)
• Update documentation regarding deprecated random feature flags (merge request)
• Adds "name" field to provide machine readable status (merge request)
• Remove self_and_hierarchy scope feature flag (merge request)
• Add endpoint_id label to web transaction metrics (merge request)
• Remove FF when canceling redundant pipelines (merge request)
• Alias read_namespace to access_namespace and move usages to new ability by @Taucher2003 (merge request)
• Remove custom_roles_on_groups feature flag (merge request) GitLab Enterprise Edition

16.4.5 (2024-01-11)

Security (2 changes)

• Fix clickouse-server version in CI (merge request)
• User password reset accepts multiple email addresses (merge request)

16.4.4 (2023-12-13)

Security (8 changes)

• Prevent tag names starting with SHA-1 and SHA-256 values (merge request)
• Pass encoded file paths to router (merge request)
• Validate access level of user while rotating token (merge request)
• Fix large time_spent value causing GraphQL error Integer out of bounds (merge request)
• Restrict Protected branch access via group to direct members (merge request)
• Remove the ability to fork and create MR for auditors (merge request)
• Restrict passing variables on the pipeline schedule API (merge request)
• Smartcard auth: encrypt client cert in params (merge request)

16.4.3 (2023-11-30)

Fixed (1 change)

• Fix assign security check permission checks GitLab Enterprise Edition

Security (10 changes)

• Enforce ref protection on pipeline schedule updates (merge request)
• Update mermaid version for DOS security fixes (merge request)
• Prevent guest users from being able to add emojis in confidential issues (merge request)
• Do not run ssl cert validation if key has errors (merge request)
• Ensure access is checked when loading releases associated with tags (merge request)
• XSS and ReDoS in Markdown via Banzai pipeline of Jira (merge request)
• Prevent branch names starting with SHA-1 and SHA-256 values (merge request)
• Filter out projects with disabled package registry in Composer finder (merge request)
• Check max role for user for group access to protected ref (merge request)
• Treat security policy bots as external (merge request)

16.4.2 (2023-10-30)

Fixed (4 changes)

• Fix pipeline schedules view when owner is nil
• Update dependency prometheus-client-mmap to '>= 0.28.1'
• Fix failing migration when commit_message_negative_regex is missing
• Backport fix flaky epic tests GitLab Enterprise Edition

Security (9 changes)

• Fix infinite loop when finding component project (merge request)
• Update gitlab-chronic-duration to 0.12 (merge request)
• Guard gitlab_version_check helper (merge request)
• Add the environment action to the CI JWT token fields (merge request)
• Remove FIFO files from tarball extract (merge request)
• Backport add abuse detection for pipes (merge request)
• Prevent unprivileged user assignment in templated projects (merge request)
• Fixes Service Desk email template issue description privileges (merge request)
• Update mermaid version for DOS fixes (merge request)

Other (1 change)

• Create Geo event when project is created GitLab Enterprise Edition

16.4.1 (2023-09-28)

Security (15 changes)

• Mark any CI builds that are not complete as canceled when imported (merge request)
• Destroy group service accounts when removing group (merge request)
• Fix SSO Enforcement for shared groups and projects (merge request)
• Prevents Ci::Build data from being rendered (merge request)
• Allow only one membership for security policy bots (merge request)
• Reset all approvals when target branch changes (merge request)
• Default to using the asset proxy (merge request)
• Restrict Project Fork Linking to Owners and Admins (merge request)
• Prevent math hijacking page elements (merge request)
• Delete of member branch protection rules cascadingly (merge request)
• Prevent collaboration across forks when author cannot push (merge request)
• Allow Maintainer+ to list Sentry projects (merge request)
• Fix leaking source code of restricted project through a fork (merge request)
• Prevent leaking CI variables via fork MRs (merge request)
• Pipelines will have no access to protected vars and may fail with tags (merge request)

16.4.0 (2023-09-21)

Added (179 changes)

• Create list for standards adherence report (merge request) GitLab Enterprise Edition
• Add keyset pagination support for /users endpoint (merge request)
• Add documentation for Self-Managed Code Suggestions (merge request)
• Added create api for instance level gcp destinations (merge request) GitLab Enterprise Edition
• Support multiline comment for code generation (merge request) GitLab Enterprise Edition
• Expose vulnerability_events integrations field (merge request) GitLab Enterprise Edition
• Added delete api for instance gcp config (merge request) GitLab Enterprise Edition
• Enable package_metadata_advisory_sync and... (merge request) GitLab Enterprise Edition
• Add /award quick action for work items (merge request)
• Added instance level gcp destination streaming (merge request) GitLab Enterprise Edition
• Graphql endpoint for listing all custom roles (merge request) GitLab Enterprise Edition
• Added archived filter for commits scope (merge request) GitLab Enterprise Edition
• Added archived filter for blobs scope (merge request) GitLab Enterprise Edition
• Add OpenSUSE 15.5 to the support OS page (merge request)
• Update severity count based on dismissal reason (merge request) GitLab Enterprise Edition
• Include the merge commits when checking if appoval is allowed (merge request)
• Support specifying TLS settings in resque.yml (merge request)
• Allow filtering by dismissal reason in vulnerabilitySeveritiesCount (merge request) GitLab Enterprise Edition
• Add snowplow_database_collector_hostname app setting (merge request)
• Create personal access token for workspaces without one (merge request) GitLab Enterprise Edition
• Add experimental info as warning (merge request)
• Added archived filter for notes scope (merge request) GitLab Enterprise Edition
• Add rest endpoints for group CA (merge request) GitLab Enterprise Edition
• Add basic input params restrictions (merge request) GitLab Enterprise Edition
• Enable merge_sbom_api FF (merge request) GitLab Enterprise Edition
• Create list for standards adherence report (merge request) GitLab Enterprise Edition
• Silent Mode - Add experiment badge (merge request)
• Enable UI portion for violation export (merge request) GitLab Enterprise Edition
• Adds duo_api scope for GitLab Duo endpoints (merge request) GitLab Enterprise Edition
• Add graphql mutation for continuous vuln scans (merge request) GitLab Enterprise Edition
• Update milestones search query to filter archived project results (merge request)
• Adds timestamp to sbom report (merge request) GitLab Enterprise Edition
• Updated issuable update mutations allowing null to reset time estimate by @zillemarco (merge request)
• Include has_merge_request field to vulnerabilities graphql (merge request) GitLab Enterprise Edition
• Include has_merge_request filter to vulnerabilities read finder (merge request) GitLab Enterprise Edition
• Allow to list group dashboard visualizations with GraphQL (merge request) GitLab Enterprise Edition
• Add cvs toggle to project security settings (merge request)
• Add refresh assignment worker (merge request) GitLab Enterprise Edition
• Adds Service Desk custom email (merge request)
• Show warning for single database connection (merge request)
• Implement /authorized_certs internal endpoint (merge request)
• Add help popover for dismissal reasons (merge request) GitLab Enterprise Edition
• Add the UserType in create/remove addon response (merge request) GitLab Enterprise Edition
• Create audit_events_amazon_s3_configurations table (merge request) GitLab Enterprise Edition
• Add setting for enabling Continuous Vulnerability Scans (merge request) GitLab Enterprise Edition
• Create index to support uuid typecasting asynchronously (merge request)
• Enable resolvable issue threads by default (merge request)
• GraphQL: Add analytics dashboards listing for groups (merge request) GitLab Enterprise Edition
• Include has_merge_request to vulnerabilities read model (merge request) GitLab Enterprise Edition
• Migration to add root_namespace_id to project_statistics (merge request)
• Silent Mode - Add UI Support (merge request)
• Create background migration to create compliance standards adherence (merge request)
• Call cleanup worker (merge request) GitLab Enterprise Edition
• Peek sidebar when mouse is over the toggle (merge request)
• Add group transfer hook for zoekt (merge request) GitLab Enterprise Edition
• List api for instance level gcl config (merge request) GitLab Enterprise Edition
• Add previousStageJobs field to JobType (merge request)
• Added archived filter to merge_request (merge request) GitLab Enterprise Edition
• Added filters button to search results (merge request)
• Display job external links in sidebar by @KyleFromKitware (merge request)
• Add API endpoint to get license usage data (merge request) GitLab Enterprise Edition
• Basic logic for tracking projects/groups visits in the backend (merge request)
• Release Security Policy branch exceptions (merge request) GitLab Enterprise Edition
• Introducing basics for protecting packages by @gerardo-navarro (merge request)
• Enahnce GraphQL to add fields for lockable labels (merge request)
• Remove hide_deprecated_billing_plans FF (merge request) GitLab Enterprise Edition
• Added archived filter for issues scope (merge request) GitLab Enterprise Edition
• Expose adminWorkItemLink permission in work items (merge request)
• Close similar abuse reports when primary abuse report is closed (merge request)
• Persist approval_settings and any_merge_request rules in policies (merge request) GitLab Enterprise Edition
• Release branch_exceptions feature flag for SaaS (merge request) GitLab Enterprise Edition
• Add Packages::Nuget::Symbol model and corresponding db table (merge request)
• Geo: Add Object Storage verification (filesize check) (merge request) GitLab Enterprise Edition
• Adds Service Desk custom email reply address (merge request)
• Enable on-hover flyout menus in sidebar of new navigation (merge request)
• Chore: add instance and docker-autoscaler executor types by @ar-mali (merge request)
• Adds support for runs/search MLflow API (merge request)
• Support registries to resync all and reverify all via GraphQL (merge request) GitLab Enterprise Edition
• Provide and edit dismissal reason when dismissing finding (merge request) GitLab Enterprise Edition
• Update MATLAB.gitlab-ci.yml to add a new build job by @sameagen-MW (merge request)
• Add notify_only_broken_pipelines field to Telegram (merge request)
• Added model validation and list active attribute for header (merge request) GitLab Enterprise Edition
• Add license type to dependency type (merge request) GitLab Enterprise Edition
• Add force_full_reconciliation field to workspaces (merge request)
• Add ComponentsFinder (merge request) GitLab Enterprise Edition
• Sessions cookie key to be configurable in development environment (merge request)
• Prepare async index for pipeline_id_convert_to_bigint (merge request)
• Sync create indexes for ci_stages pipeline_id conversion (merge request)
• Add extra attributes to Internal events tracking on frontend (merge request)
• Add validation for legacy epic issue relation (merge request) GitLab Enterprise Edition
• Add actual time that the MR was merged to merged MR list (merge request)
• Audit user password reset failure events (merge request) GitLab Enterprise Edition
• Adds Export Sbom APIs (merge request) GitLab Enterprise Edition
• Adding cached markdown fields to Review LLM Summaries (merge request)
• Support for include:rules:changes (merge request)
• Add state header to notification emails (merge request)
• Add vsd banner (merge request) GitLab Enterprise Edition
• Add foreign key for ci_pipeline_chat_data.pipeline_id_convert_to_bigint (merge request)
• Add foreign key for ci_pipeline_messages.pipeline_id_convert_to_bigint (merge request)
• Add cosign template (merge request)
• Add merged_commit_sha to merge_requests (merge request)
• Update advisory scanning to only scan recent (merge request) GitLab Enterprise Edition
• Release expose_dismissal_reason feature (merge request)
• Add a GraphQL query to get organization users (merge request)
• Create cron job to ensure merge requests are prepared (merge request)
• Table and model for instance level gcp config added (merge request) GitLab Enterprise Edition
• Add cleanup worker (merge request) GitLab Enterprise Edition
• Associate projects with organization (merge request)
• Add support for nuget v2 OData package entity endpoints (merge request)
• Display activity for similar open abuse reports when aggregated (merge request)
• Add pages_path_prefix job option (merge request)
• Send email when resource access token about to expire (merge request)
• Adds page URL params for packages list pagination (merge request)
• Prepare async index for pipeline_id_convert_to_bigint (merge request)
• Remove scan_execution_group_bot_users feature flag (merge request) GitLab Enterprise Edition
• Migration for service account users be declared as external (merge request) GitLab Enterprise Edition
• Prepare async index for pipeline_id_convert_to_bigint (merge request)
• Enable VSD count aggregation setting (merge request)
• Add BrowserSDK for page view tracking to Gitlab.com (merge request)
• Exclude archived projects from blob search (merge request) GitLab Enterprise Edition
• Add logo to integrations page (merge request)
• Allow verification of files in Object Storage (merge request) GitLab Enterprise Edition
• Remove elevated_guests FF (merge request) GitLab Enterprise Edition
• Add Geo bulk mark verification pending in batches (merge request) GitLab Enterprise Edition
• Add external issue author to graphql for service desk (merge request)
• Implement VSD GraphQL query (merge request) GitLab Enterprise Edition
• Add user_list to feature_flag api by @zhanglinjie (merge request)
• Backfill ProjectStatistics to use recent size (merge request)
• Add patch_id_sha column to approvals (merge request)
• Add filter argument to linkedItems field (merge request)
• Add group merge request approval setting for SAML (merge request)
• Remove the scan_execution_bot_users feature flag (merge request) GitLab Enterprise Edition
• Add scan policies count to security_orchestration_helper (merge request) GitLab Enterprise Edition
• Prepare async index for pipeline_id_convert_to_bigint (merge request)
• Add support for approval_settings and any_merge_request in policy schema (merge request) GitLab Enterprise Edition
• Remove ai_chat_history_context feature flag (merge request) GitLab Enterprise Edition
• Create index for pipeline_id_convert_to_bigint (merge request)
• Adds merge service (merge request) GitLab Enterprise Edition
• Add vulnerability's full path to CSV export (merge request) GitLab Enterprise Edition
• Synchronously create indexes for uuid colum type migration cleanup (merge request)
• Add frontend metrics tracking for Threat Insights (merge request) GitLab Enterprise Edition
• Adds page URL params for dependency proxy pagination (merge request)
• Schedule VSD CountWorker via Cron (merge request)
• Return response from streamed request to Anthropic (merge request) GitLab Enterprise Edition
• Remove namespace_storage_forks_cost_factor feature flag (merge request)
• Add admin_merge_request to member_roles table (merge request)
• Show custom emoji in issuable title in header & list (merge request) GitLab Enterprise Edition
• Add connected agents usage metric (merge request)
• Add usage data on new product analytics features (merge request)
• Add workspace variables table and add PAT to workspaces table (merge request) GitLab Enterprise Edition
• Globally Enable holt winters forecast for deployment frequency (merge request) GitLab Enterprise Edition
• Add lock_on_merge support for scoped labels (merge request)
• Expose uuid on VulnerabilityType (merge request) GitLab Enterprise Edition
• Expose solution on VulnerabilityType (merge request) GitLab Enterprise Edition
• Add a setting for allowing/disallowing duplicate NuGet package uploads (merge request)
• Add pages multiple version toggle (merge request)
• Audit delivery of confirmation emails (merge request) GitLab Enterprise Edition
• Adding decompress_archive_file_timeout to application settings (merge request)
• Add licenses column to sbom_occurrences table (merge request)
• Check Arkose's status, bypass captcha on sign-in if there is an outage (merge request) GitLab Enterprise Edition
• Add a background migration to fix the namespace_ids read records (merge request)
• Add popover to experiment badge (merge request) GitLab Enterprise Edition
• Include the type of work item in related system notes (merge request)
• Show confidential information when in work item notes (merge request)
• Add a GraphQL query to get organization groups (merge request)
• Toggle on/off rollup progress (merge request) GitLab Enterprise Edition
• Display similar abuse reports in detail view of an abuse report (merge request)
• Adding name field to google cloud logging audit destinations (merge request) GitLab Enterprise Edition
• Add GraphQL mutation to unlink items from a work item (merge request)
• Handle code suggestions add-on purchase in licenses (merge request) GitLab Enterprise Edition
• Dismiss card and copy text for AI discussion summary (merge request) GitLab Enterprise Edition
• Update label views to allow setting lock_on_merge (merge request)
• Populate denormalized columns for the sbom_occurrences table (merge request)
• Add Authorizations Changed Event consumer (merge request)
• Add metrics for Vulnerability Management actions (merge request) GitLab Enterprise Edition
• Add patch_id_sha field to REST API (merge request)
• Remove post_import_repository_size_check ff (merge request) GitLab Enterprise Edition
• Expose source branch protected and squash CI vars (merge request)
• Add DeclarativePolicy patch to memoize some attributes (merge request)

Fixed (167 changes)

• Fix GitHub repositories mirror (merge request)
• Fix import of subrelations on items with 1 emoji (merge request)
• Add period for consistency (merge request)
• Change vulnerability state to detected (merge request) GitLab Enterprise Edition
• Fix vulnerability report pagination alignment (merge request) GitLab Enterprise Edition
• Change last event id columns in geo_node_statuses table to bigint (merge request)
• Removing shared_into_ancestors from members query (merge request)
• Fix opt in email option during registration (merge request) GitLab Enterprise Edition
• Add infinite scroll to source branch dropdown (merge request)
• Update merged_commit_sha in MergeRequests::RefreshService (merge request)
• Add repository_size_limit permission checks (merge request) GitLab Enterprise Edition
• Fixed sligthly off text element on CI job sidebar by @zillemarco (merge request)
• Allow auditors/admins to view VSA (merge request) GitLab Enterprise Edition
• Let people make text bigger if they want to (merge request)
• Fix Geo secondary proxying Git pulls unnecessarily (merge request) GitLab Enterprise Edition
• Hide dropdown divider if user is issuable author (merge request)
• Capture gitaly errors in Security Policies to mitigate 500 errors (merge request) GitLab Enterprise Edition
• Fix feature flag check in Routable (merge request)
• Allow Service Account to be added to SSO-enforced group (merge request) GitLab Enterprise Edition
• Change dropdown label for when 'No one' role is selected (merge request)
• Move pin button to be sibling of nav item link in new navigation (merge request)
• Fix bug with MRs now showing diffs after bitbucket importer (merge request)
• Fix icon for submodules in the commit view (merge request)
• Fix checking of parent presence in namespace method (merge request)
• This MR fixes the bug scan execution policy (merge request) GitLab Enterprise Edition
• This MR fixes the bug (merge request) GitLab Enterprise Edition
• Removes empty alert from Insights page (merge request) GitLab Enterprise Edition
• Clear SafeRequestStore often when exporting (merge request)
• Fix PipelineBatchWorker retries (merge request)
• Update horizontal spacing on runner platform options (merge request)
• Fix pipeline editor file tree spacing (merge request)
• Fix Sidekiq NameError for BackfillNotificationJobsWorker (merge request)
• Fix push event description for batches (merge request)
• Fix redirects for 2fa and finish onboarding appropriately (merge request) GitLab Enterprise Edition
• Handle an exception when Git blame is out of range (merge request)
• Fix sidebar toggle tooltip (merge request)
• Support max_byte_size settings for instance SAML (merge request)
• Fix tooltip rendering in user bar (merge request)
• Inline SyncProjectWorker call in RefreshProjectPoliciesWorker (merge request) GitLab Enterprise Edition
• Fix OAuth bug related to openid_connect (merge request)
• Fix mermaid rendering (merge request)
• Fix admin_merge_request custom role when the feature is private (merge request) GitLab Enterprise Edition
• Remove update_chronic_duration feature flag (merge request)
• Allow CWE(uppercase) for security training (merge request) GitLab Enterprise Edition
• Update regex and mapped usernames to handle bug (merge request)
• Fix group member invite limit rendering (merge request)
• Combine devise 2FA strategies (merge request)
• Reset required approvals for violated rules (merge request) GitLab Enterprise Edition
• Adding contentHtml to review summary types (merge request) GitLab Enterprise Edition
• Fix notification dropdown hover in work_item_actions (merge request)
• Update calendar icon spacing on environments view (merge request)
• Reindex issues to fix possible wrong values of label_ids (merge request) GitLab Enterprise Edition
• Allow dismissal_reason updates on already dismissed findings (merge request) GitLab Enterprise Edition
• Reindex work_item to fix possible wrong values of label_ids (merge request) GitLab Enterprise Edition
• Handle old usernames that are substrings of new usernames (merge request)
• Make sure active nav item in sidebar is visible (merge request)
• Stop sending user to pages they don't have access to on invites (merge request)
• Update namespace_id in standards adherence when a project is moved (merge request) GitLab Enterprise Edition
• Fix active nav item for Service Desk page (merge request)
• Put exact matches first when searching for groups to transfer (merge request)
• Hide the issue from archived project for basic search (merge request)
• Fix positioning of retry job dropdown (merge request)
• Remove checksum guard on modifying service class (merge request) GitLab Enterprise Edition
• Fix broken learn more link (merge request)
• Reindex Issue when attached label gets deleted (merge request) GitLab Enterprise Edition
• Pipelines list: Fix focus state (merge request)
• Prevent pipeline creation while import is running (merge request)
• Pipelines list: Actions are pushed out of table (merge request)
• Properly handle lang attribute on code tags (merge request)
• Ensure include_source_code is appropriately passed to the template (merge request) GitLab Enterprise Edition
• Fix NoMethodError for ActivityPub (merge request)
• Enable sync with package metadata db by default (merge request)
• Jobs list: Fix focus states (merge request)
• Fix handling of locked scoped labels (merge request)
• Email confirmation setting to be considered (merge request) GitLab Enterprise Edition
• Limit the width of alerts on the MR page in fixed-width mode (merge request)
• Fix bug in references pipeline (merge request)
• Gitpod settings description margin bottom fix (Admin area) (merge request)
• Search query hash add filter, fix/refactor (merge request) GitLab Enterprise Edition
• GraphQL: Return error from runners query if permissions missing (merge request)
• Fix bridge policy raises an error when downstream_project is nil (merge request)
• Add background color to new MR tabs (merge request)
• Remove sideborder in incident timeline event by @zarthus (merge request)
• Note form: Normalize button spacing (merge request)
• Fix undefined method `labels' for Jira integration (merge request)
• Indicate user needs to login with primary email (merge request)
• Create iid sequence for ci_pipelines with new projects (merge request)
• Fix undefined method `labels' for Jira integration (merge request)
• Check if SBOM pipeline has ID set (merge request) GitLab Enterprise Edition
• Give dark-mode override higher specifity to fix bg color (merge request)
• Enable offset pagination FF for canceling pipelines (merge request)
• Add user allowlist to bypass Global Search rate limit (merge request)
• Include descendant members in user autocompletes (merge request)
• Fix placement of "Create new..." tooltip in navigation (merge request)
• Fix the date filter on the global time tracking report (merge request)
• Re-raise exceptions that happens during migration sampling (merge request)
• Fix source code range highlighting (merge request)
• Do not render "Create new..." menu when it's empty (merge request)
• Fix nil job JWTs when there are Gitaly connection issues (merge request)
• Fix secret detection ruleset variable suggestion (merge request) GitLab Enterprise Edition
• Refactor checking :enforce_locked_labels_on_merge (merge request)
• Remove redundant 'plan' from order summary details (merge request) GitLab Enterprise Edition
• Fix disappearing filtered search in Issues Analytics (merge request) GitLab Enterprise Edition
• Fix cluster service reindexing params (merge request) GitLab Enterprise Edition
• Add ability to search log header (merge request)
• Add username to users mapper (merge request)
• Change Vulnerability*Finder interaction with archived projects (merge request) GitLab Enterprise Edition
• Prevents Mail::SMTP monkey patch from overriding defaults (merge request)
• Fix vertical alignment of user status sidebar (merge request)
• GraphQL: Mask CiJob.shortSha when non-authorized (merge request)
• gitaly-test-spawn: Ensure that the gitlab-shell secret exists (merge request)
• Update header-height SCSS variable to CSS custom property (merge request)
• Modify ETV to use anthropic body streaming to fix timeout problems (merge request) GitLab Enterprise Edition
• Fix vertical alignment of emoji in cover status (merge request)
• Fix reference to groupApprovers in security approvals (merge request) GitLab Enterprise Edition
• Remove unused jitsu-related settings (merge request) GitLab Enterprise Edition
• Drop bridge jobs on unknown failures (merge request)
• Fix focus mode behaviour for boards (merge request)
• Fix incorrect feature check for group level of push rules (merge request) GitLab Enterprise Edition
• Fix Job URL shows 404 when it's bridge (merge request)
• Fix discrepancy in documentation (merge request)
• Fix false audit event for non persisted members (merge request) GitLab Enterprise Edition
• Increase DROPDOWN_X_OFFSET_BASE in create menu (merge request)
• Fixes missing "locked" checkbox from project runners form (merge request)
• Read latest ingested sbom pipeline id from redis (merge request) GitLab Enterprise Edition
• This MR fixes error for branch exceptions (merge request) GitLab Enterprise Edition
• Assignees & Participants: Fix show more buttons (merge request)
• Modify query for group.first_owner (merge request)
• Markdown editor: FIx alignment of notification warning (merge request)
• Fixing LooseForeignKeys tests for single-db (merge request)
• Pipeline widget: Fix alignment of elements (merge request)
• Remove gl-pt-2 class from sidebar search button wrapper (merge request)
• Introducing LFK CleanupWorker turbo mode (merge request)
• Backfill nuget normalized version (merge request)
• GraphQL: Mask job fields when requested for a non-owned runner (merge request)
• Prevent analyzers from being excluded in scan execution pipelines (merge request) GitLab Enterprise Edition
• Enable "optimize_group_template_query" FF (merge request)
• Fix timeout on group and instance security dashboards (merge request) GitLab Enterprise Edition
• Fix broken link formatting in Gitlab for Slack App (merge request)
• Fix duplicate license_scanning approval rule in MR approvals (merge request) GitLab Enterprise Edition
• Enable feature flag "errors_utf_8_encoding" by default (merge request)
• Perform scheduled scan execution policy in a separate worker (merge request) GitLab Enterprise Edition
• Label selection dropdown: Fix first item stays selected (merge request)
• Update group path updates with NPM packages (merge request)
• Adjust VulnerabilitiesFinderResolver to accept only dismissal reason (merge request) GitLab Enterprise Edition
• Direct import fails early when 2FA requirements not met (merge request)
• Fix issue url generation for group level issues (merge request)
• Don't send Service Desk emails when it's disabled (merge request)
• Projects list: truncate project name (merge request)
• Fix "Convert to task" item showing in epics (merge request)
• Reduce interference between Duo and discussion summary (merge request) GitLab Enterprise Edition
• gitaly_client: Fix indeterministic cherry-picks and reverts (merge request)
• Fixes comma placement for codeowners (merge request) GitLab Enterprise Edition
• Fix exposing artifacts with dot slash paths (merge request)
• Fixes failed render when job stage data is missing (merge request)
• Only include branch name pipeline editor link by @AaronDewes (merge request)
• Fix deployment webhook for bridge job (merge request)
• Support BigInt in front-end for dependency proxy size (merge request) GitLab Enterprise Edition
• Fix project listbox text not wrapping (merge request)
• Update brand logo accessible name for screen readers (merge request)
• Resync direct upload object stored artifacts (merge request) GitLab Enterprise Edition
• Disable deleting approval rules from scan result policies (merge request) GitLab Enterprise Edition
• Fix page title on Compare revisions (merge request)
• Fix Microsoft Application enablement for SaaS (merge request) GitLab Enterprise Edition
• Show iteration period in collapsed sidebar (merge request) GitLab Enterprise Edition
• Surface error when need name exceeds length (merge request)
• Add support for nuget normalized version (merge request)

Changed (224 changes)

• Imports Bitbucket pull requests (merge request)
• GitLab Pages unique domain feature default enabled (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Prevent deletion of security policy bot members (merge request) GitLab Enterprise Edition
• Work Item Quick Action: Set confidentiality (merge request)
• Create service accounts as external in one query (merge request) GitLab Enterprise Edition
• Rely on disk_path for PoolRepository identification (merge request)
• Remove warning from security_and_compliance page (merge request) GitLab Enterprise Edition
• Update code creation template (merge request) GitLab Enterprise Edition
• Update Confidentiality Sidebar to Support Test Cases (merge request)
• Lower redundant pipelines lookup to 3 days (merge request)
• Tweak active nav item with avatar styling (merge request)
• Add username in Web IDE new branch suggestion (merge request)
• Salesforce login button text change (merge request)
• Make actions optional for scan result policies (merge request) GitLab Enterprise Edition
• Only include sbom_occurrences with CVS enabled (merge request) GitLab Enterprise Edition
• Default prevent_visibility_restriction on and update docs (merge request)
• Default enable custom_roles_ui_[xxx] feature flags (merge request) GitLab Enterprise Edition
• Default enable expiring member notifications (merge request)
• Adds a new Danger check for renamed/dropped columns (merge request)
• Add (un)subscribe quick actions to work items (merge request)
• Add PagesDeployment#deleted_at field (merge request)
• Add username to push and pull mirroring form (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Synchronous index for finding_id to the vulnerabilities table (merge request) GitLab Enterprise Edition
• Clean up write_project_authorizations_is_unique feature flag (merge request)
• Add user preference to disable keyboard shortcuts by @FromTheStackAndBack (merge request)
• Add authorization on GET project_import endpoint (merge request)
• Enable admin_merge_request by default (merge request) GitLab Enterprise Edition
• Add language picker to trial registration page (merge request) GitLab Enterprise Edition
• Update group and admin runners layout (merge request)
• Update dependency auto-deploy-image to v2.56.0 (merge request)
• Move approval rules sync after security findings injestion (merge request) GitLab Enterprise Edition
• Include grace period for SM add-on expiration (merge request) GitLab Enterprise Edition
• Disable license scanning job (merge request)
• Stop creating summary when MR author submits a review (merge request) GitLab Enterprise Edition
• Move import and export settings to new section (merge request)
• This MR adds grouping to settings (merge request) GitLab Enterprise Edition
• Remove exact_matches_first_group_transfer feature flag (merge request)
• Update gpgme to v2.0.23 (merge request)
• Update job sidebar and layout (merge request)
• Finalize index on merge_requests.merged_commit_sha (merge request)
• Prevent re-testing webhook logs with outdated URLs (merge request)
• Refactor experimental features toggle for non-AI features (merge request) GitLab Enterprise Edition
• Remove the FF npm_optimize_metadata_generation (merge request)
• Add purchased storage available breakdown card (merge request) GitLab Enterprise Edition
• Add export for violation report (merge request) GitLab Enterprise Edition
• Update dependencies action bar design (merge request) GitLab Enterprise Edition
• Add if active for SCIM (merge request)
• Update integrations development guidelines (merge request)
• Update integrations' status types (merge request)
• Release 1.week TTL for importer JobWaiter keys (merge request)
• This MR adds new approval settings (merge request) GitLab Enterprise Edition
• Update spacing on CI variables table (merge request)
• Update trial column (merge request)
• Introduce admin jobs refactor (merge request)
• Ban users when spamcheck returns a BLOCK verdict (merge request)
• Update illustrations (merge request)
• Lock user for 15 mins after 3 failed login attempts (merge request)
• Enable scan result policies to block changes to protected branches (merge request) GitLab Enterprise Edition
• Update Illustrations (merge request)
• Remove available on-demand badge from ODS when FIPS mode is enabled (merge request) GitLab Enterprise Edition
• Add toggle action to award emoji update mutation (merge request)
• Return an unknown license from the JSON serializer (merge request)
• Use standard merge commit for merge trains (merge request)
• Respect rebase and squash settings when creating merge train ref (merge request)
• Add Configurate button to integrations list view (merge request)
• Update ProductAnalyticsDashboard type to CustomizableDashboard (merge request)
• Remove feature flag ci_commit_statuses_api_exclusive_lock (merge request)
• Enable streaming of audit events for protected environments (merge request) GitLab Enterprise Edition
• Adding checkin reminder setting quick action (merge request) GitLab Enterprise Edition
• Update re2 gem to v2.0.0.beta2 (merge request)
• Pipelines: Migrate Artifacts dropdown (merge request)
• This MR adds option to provide custom values (merge request) GitLab Enterprise Edition
• Hide work item meta data text in small screens (merge request)
• Extend width of jobs tabs to 100% (merge request)
• Super sidebar: Lighten theme background color (merge request)
• Migrate protected branch edit dropdowns to vue by @ShaneMaglangit (merge request)
• Migrate protected branch create dropdowns to vue by @ShaneMaglangit (merge request)
• Removing feature flag ff_external_audit_events (merge request) GitLab Enterprise Edition
• Support for marking Gitsign certs as Unverified by @ChevronTango (merge request)
• Update job sidebar UI (merge request)
• Move labels.scss to page_bundles from page_specific_bundles (merge request)
• Remove tooltip from "Apply" button for suggestions (merge request)
• This MR adds human readable strings (merge request) GitLab Enterprise Edition
• Fix highlighted tab on compliance center page (merge request) GitLab Enterprise Edition
• Update SAST auto-resolution comment to include link with more context (merge request) GitLab Enterprise Edition
• Add protected paths for get request by @zhanglinjie (merge request)
• Add user.id to explain_vulnerability cache key (merge request) GitLab Enterprise Edition
• Pipeline Editor cleanup (merge request)
• Make the BitBucket Cloud importer parallel (merge request)
• Add audit event for changed user profile visiblity (merge request) GitLab Enterprise Edition
• Use for root element in super sidebar (merge request)
• Update dependency auto-build-image to v1.41.0 (merge request)
• Update vulnerability_states filter to match default value (merge request) GitLab Enterprise Edition
• Fix scan execution policy CI variables for pipelines (merge request) GitLab Enterprise Edition
• Update pipeline checking pipeline status tooltip (merge request)
• Update adherence_report_ui ff scope (merge request) GitLab Enterprise Edition
• Geo Sites Form - Use namespace full_name (merge request) GitLab Enterprise Edition
• Re-implement language switcher for registrations (merge request)
• This MR adds new rule builder (merge request) GitLab Enterprise Edition
• Update vulnerability_reads trigger to set has_merge_request (merge request)
• Make License.feature_available? check for Registration Features (merge request)
• Initialize the conversion for shared_runners_duration (merge request)
• Remove min_access_level check (merge request) GitLab Enterprise Edition
• Increase the string limits for regex fields in push_rules (merge request) GitLab Enterprise Edition
• Convert members.user_id to LFK (merge request)
• Update show raw log icon button (merge request)
• Migrate to clipboard_button helper in commit box (merge request)
• Standardize language and terminologies across pipelines (merge request)
• Enable group_level_dependencies by default (merge request) GitLab Enterprise Edition
• Disable on demand scans when in FIPS mode (merge request) GitLab Enterprise Edition
• Display Confidential Icon in Project Test Cases List (merge request) GitLab Enterprise Edition
• Add exclusive lock to ensure only one pipeline is created (merge request)
• Ensure note id column swapping has finished for self managed (merge request)
• Updating UI text (merge request)
• Add slot for externalAuthor (merge request)
• Allow group maintainers to see group runner list (merge request)
• Replacing AuditEventService with Gitlab::Audit::Auditor by @TamsilAmani (merge request) GitLab Enterprise Edition
• Fixed user registration bug when no import sources selected (merge request) GitLab Enterprise Edition
• Rename ambiguosly named settings in pinned section (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• UI polish on the webhook log page (merge request)
• Remove the feature flag harbor_registry_integration (merge request)
• Enable fill_in_mr_template by default (merge request)
• Enable automatically_summarize_mr_review by default (merge request) GitLab Enterprise Edition
• Clean up support_ci_environment_variables_in_job_rules feature flag (merge request)
• Adds a single ops feature flag to disable all database feature flags (merge request)
• Add finding_id to the vulnerabilities table (merge request) GitLab Enterprise Edition
• Allow personal access token authentication in Kubernetes proxy (merge request)
• Add diagonal tolerance when moving the mouse towards flyout menu (merge request)
• Use Pajamas compliant clipboard btn in doorkeeper (merge request)
• Keep SAML Identity when deprovisioning via SCIM (merge request) GitLab Enterprise Edition
• Update gitlab-elasticsearch-indexer to 4.3.9 (merge request)
• URL parsing and sanitizing logic added for Relay State (merge request) GitLab Enterprise Edition
• Update job log page UI (merge request)
• Update validates_hostname gem (merge request)
• Migrate work_item_actions to GlDisclosureDropdown (merge request)
• Delay display of pinning buttons in sidebar (merge request)
• Migrate to PJ compliant button in merge_requests_helper (merge request)
• Update gitlab-pages (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Backfill prometheus integrations into http_integrations table (merge request)
• Add streaming capabilities for chat (merge request) GitLab Enterprise Edition
• Update job sidebar UI (merge request)
• Add re-deploy button (merge request)
• Migrates dependency proxy header dropdown to disclosure (merge request)
• Update user list component error message (merge request)
• Fix scan policies count to security_orchestration_helper (merge request) GitLab Enterprise Edition
• Migrate test report widget to V2 (merge request)
• Allow guest user seat assignment (merge request) GitLab Enterprise Edition
• Updates component fetching (merge request)
• Migrate work_item_links_menu to GlDisclosureDropdown (merge request)
• Improve Docker-in-Docker troubleshooting documentation (merge request)
• Migrates packages shared cli-commands dropdown to disclosure (merge request)
• Use Pajamas button component for Mattermost (merge request)
• Convert notification_settings.user_id to LFK (merge request)
• Remove seats_in_use_for_free_or_trial flag (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Add name to GCP logging streaming destinations (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request)
• Cached project-based ETAG lookup for GitHub email for a user (merge request)
• Use new ci badge link on last commit section (merge request)
• Add Confidential Attribute to CreateTestCase Mutation (merge request) GitLab Enterprise Edition
• Update button variant to newer options (merge request)
• Use browser language setting for registration flows (merge request)
• Pipeline: Change label for triggerer (merge request)
• Update dependency auto-deploy-image to v2.55.0 (merge request)
• Expose config option to show swagger operationId (merge request)
• Use Pajamas compliant clipboard button (merge request)
• Enable Sidekiq JSON logging by default (merge request)
• feat: Add new filter option runner_type to jobs page in admin area by @gerardo-navarro (merge request)
• Move job sidebar buttons to header (merge request)
• Use lighter gray for failed jobs toggle (merge request)
• Jobs list: Change created by (merge request)
• Use Action Cable to update notes in real-time (merge request)
• Pipelines Pagination spacing (merge request)
• Convert routes.namespace_id to LFK (merge request)
• Quarantined flaky invite feature spec becuase of broken master (merge request)
• Make search button in navigation more prominent by @deep-swaraj (merge request)
• Enable geo_proxy_lfs_batch_requests by default (merge request) GitLab Enterprise Edition
• Update top-bar on new project/group pages to be fixed to top of viewport (merge request)
• Remove unneeded template options, handle nil prompt situation (merge request) GitLab Enterprise Edition
• Set merge_request_refs_cleanup default_enabled: true (merge request)
• Updates error message and documentation for interpolator (merge request)
• Migrate security_report_download_dropdown to GlDisclosureDropdown (merge request) GitLab Enterprise Edition
• Remove summarize_diff_vertex feature flag (merge request) GitLab Enterprise Edition
• Refactor inline-findings Drawer (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Enable unbatch_graphql_queries feature flag globally (merge request)
• Update ruby_parser to v3.20.3 (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Add limit for group count within namespaces (merge request) GitLab Enterprise Edition
• Use SSH URL in composer metadata source entry for non-public projects by @nickygerritsen (merge request)
• Add optional client_subscription_id (merge request) GitLab Enterprise Edition
• Enable emoji_webhooks feature flag by default (merge request)
• Respect merge method and squash preferences for merge train ref (merge request)
• Update premium and ultimate titles in plans table (merge request)
• Add protected branch warning (merge request)
• Migrate protected tag dropdowns to vue by @ShaneMaglangit (merge request)
• Migrate pagination bar dropdown to disclosure by @ShaneMaglangit (merge request)
• Update dependency auto-build-image to v1.40.0 (merge request)
• Prevent name collision between migrations (merge request)
• Change default theme to light gray (merge request)
• Migrate to GlCollapsibleListbox in work_item_activity_sort_filter (merge request)
• Sidebar navigation: Change badge background (merge request)
• Introduce schedules refactor (merge request)
• Implement explain vuln anthropic, use vertex by default (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v1.39.0 (merge request)
• Add PagesDomain#certificate_key length validation (merge request)
• Include double colon inside the translation (merge request) GitLab Enterprise Edition
• Remove FF search_projects_hide_archived (merge request)
• Access tokens - show token name in delete copy by @zarthus (merge request)
• Updated feedback URL (merge request) GitLab Enterprise Edition
• Update placeholder in GitLab Duo text input (merge request) GitLab Enterprise Edition
• Set max widths on project repository settings inputs (merge request)
• Disable feature flag using v1 package metadata sync (merge request) GitLab Enterprise Edition
• Add job status badges to runners list (merge request)
• Remove legacy plan reference from plan presenter (merge request) GitLab Enterprise Edition
• Sync validate foreign key for pipeline_id_convert_to_bigint (merge request)
• Update hex values (merge request)
• Update dependency auto-deploy-image to v2.54.0 (merge request)
• Rollout advanced_search_decrease_indexing_timeout (merge request) GitLab Enterprise Edition

Deprecated (4 changes)

• Make BuildSuccessWorker no-op (merge request)
• Redirect legacy /admin/geo/replication/projects route (merge request) GitLab Enterprise Edition
• Mark unused jitsu-related columns as ignored (merge request)
• Deprecate rake gitlab:list_repos (merge request)

Removed (23 changes)

• Remove cache_pages_domain_api feature flag (merge request)
• Drop unused design_registry table (merge request) GitLab Enterprise Edition
• Remove tasks to be done from onboarding and invite emails (merge request)
• Remove module github.com/grpc-ecosystem/go-grpc-middleware (merge request)
• Remove artifacts page feedback banner (merge request)
• Remove feature flag explain_current_blob (merge request)
• Remove legacy BitBucket Server importer (merge request)
• Cleanup feature flag security_policy_approval_notification (merge request) GitLab Enterprise Edition
• Remove :group_mentions feature flag (merge request)
• Remove deprecated wiki status data from Geo Sites Status API (merge request) GitLab Enterprise Edition
• Clean up project callout three (merge request)
• Remove CTE backward compatibility code (merge request)
• Remove unused namespace details columns for free user cap (merge request)
• Remove free user cap email notification workers (merge request) GitLab Enterprise Edition
• Remove dashboard_notification_limit column (merge request)
• Remove tmp_idx_vuln_reads_where_dismissal_reason_null index (merge request)
• Remove summarize_review_vertex feature flag (merge request)
• Remove Ultimate feature removal banner (merge request)
• Remove batched_api_mergeability_checks FF (merge request)
• Remove role required before action (merge request)
• Clean-up registration_verification feature flag (merge request)
• Perform step 2 in removal of unused dashboard columns (merge request)
• Remove code_suggestions_third_party_alert (merge request) GitLab Enterprise Edition

Security (17 changes)

• Enforce that the policy is executed by the bot user
• Bump query number on spec
• Update commonmarker to 0.23.10
• Service account users should be external by default
• Prevent namespace level banned users from accessing API
• Additional permission check when editing label
• Remove DAST secret variables when URL is updated
• Fix ReDOS in bulk_imports endpoint params
• Add authorization checks to import status endpoint
• Maintainer can leak sentry token by changing the configured URL
• Check prohibit_outer_forks in fork relationship api
• Remove channel properties from API when channels are masked by @Taucher2003 (merge request)
• Prevent traversal for path parameter in refs/switch endpoint
• Requires write_model_experiments on mlflow api
• Remove GCP private key from streaming audit events UI
• Gitaly keyset pager when pagination none only with tree view
• Prefix agent tokens with glagent- (merge request)

Performance (10 changes)

• Cache security policy YAML (merge request) GitLab Enterprise Edition
• Fix performance problem with Projects#new page (merge request) GitLab Enterprise Edition
• Optimize regexp matching (merge request) GitLab Enterprise Edition
• Drop index_deployments_on_id_where_cluster_id_present (merge request)
• Fix long sleeps removing load balancing hosts (merge request)
• Drop an index from the deployments table (merge request)
• Improve rich viewer frontend rendering (merge request)
• Remove an index on deployments table async-ly (merge request)
• Drop index_deployments_on_id_where_cluster_id_present async-ly (merge request)
• Remove duplicate empty state check (merge request)

Other (76 changes)

• Restart sent_notifications column swap for self-installed (merge request)
• Skips disconnecting old hosts when there is no need (merge request)
• Use partitioned table on CommitStatus (merge request)
• Set minimum pipeline batch size in RedisCacheStore (merge request)
• Remove .and_call_original as redundant (merge request) GitLab Enterprise Edition
• Create the sync migration of the prepared_at created_at index removal (merge request)
• Create the sync migration of the prepared_at created_at index addition (merge request)
• List related work items in the work item relationship widget (merge request) GitLab Enterprise Edition
• Add sync index on projects.organization_id (merge request)
• Remove feature flag introduce_ci_max_total_yaml_size_bytes (merge request)
• Backfill has_merge_request on existing vulnerability_reads records (merge request)
• Include the issues in advanced project search on archived project (merge request) GitLab Enterprise Edition
• Include merge requests in advanced project search on archived project (merge request) GitLab Enterprise Edition
• Manually analyze partitioned tables (merge request)
• Remove compressed_package_metadata_query flag (merge request) GitLab Enterprise Edition
• Added --location note to job artifacts api docs by @zillemarco (merge request)
• Prepare async index on file_final_path (merge request)
• Poll dual namespace for sidekiq by default (merge request)
• Remove commits documents from the main index (merge request) GitLab Enterprise Edition
• Simplify gitlab container repository delete tags services by @edith007 (merge request)
• Move Full stop period out of "Learn More" link by @jrachelr1 (merge request) GitLab Enterprise Edition
• Remove search_index_integrity feature flag (merge request) GitLab Enterprise Edition
• Remove command_palette feature flag (merge request)
• Add histogram for Redis pipeline size (merge request)
• Create a Work items relationship widget shell (merge request)
• Add a migration to force commit reindex some projects (merge request) GitLab Enterprise Edition
• Write a migration to backfill archived on milestones (merge request) GitLab Enterprise Edition
• Convert credit card validation data to hashes in database (merge request)
• Use a single flags for AI experimentation endpoint (merge request) GitLab Enterprise Edition
• Clean up flux_resource_for_environment feature flag (merge request)
• Remove multi_pipeline_scan_result_policies feature flag (merge request) GitLab Enterprise Edition
• Update Gitlab Shell version to 14.27.0 (merge request)
• Add migration to sync ScanResultPolicyRead (merge request)
• Rename Tofa experimentation endpoint to Vertex (merge request) GitLab Enterprise Edition
• Add pipeline trigger tokens finder by @missy-davies (merge request)
• Add archived in MilestoneInstanceProxy (merge request) GitLab Enterprise Edition
• Remove AiProxyHelper and SelfManagedi::ProxyRequest (merge request) GitLab Enterprise Edition
• Remove non-hashtag key fallback in manifest-import metadata (merge request)
• Remove PAT field for Code Suggestions (merge request) GitLab Enterprise Edition
• Add linked items widget to Ticket work item type (merge request)
• MonitorLockedTablesWorker to automatically lock tables (merge request)
• Add schema_version to notes (merge request) GitLab Enterprise Edition
• Add schema_version to snippets (merge request) GitLab Enterprise Edition
• Remove the product_analytics_snowplow_support feature flag (merge request)
• Move Project#pages_lookup_path to Pages::VirtualDomain (merge request)
• Add migration to backfill archived field for blobs (merge request) GitLab Enterprise Edition
• Request proofreader permission by @zhaoqi01 (merge request)
• Extract token selector input and create a shared component (merge request)
• Add schema_verison to milestones (merge request) GitLab Enterprise Edition
• Cleanup unused code related to old abuse reports list implementation (merge request)
• Sync Prometheus updates from integrations table to http integrations (merge request)
• Add current user todos widget to Epic work item type (merge request)
• Remove refactor_merge_service feature flag (merge request)
• Remove descendant_security_scans feature flag (merge request) GitLab Enterprise Edition
• Add schema_version to merge_requests (merge request) GitLab Enterprise Edition
• Rescue RecordNotUnique exception silently (merge request) GitLab Enterprise Edition
• Adds class for MlModel packages (merge request)
• Detecting duplicate btree indexes (merge request)
• Switch go go-redis client (merge request)
• Fill null values of user_preferences table with their default values (merge request)
• Fill null values of users table with their default values (merge request)
• Convert merge_request_user_mentions.note_id to bigint for self-managed (merge request)
• Test(Subscription): activating second license (merge request) GitLab Enterprise Edition
• Correcting typos of "existence" (merge request)
• Revert "Add project_runners_vue_ui feature flag" (merge request)
• Tweaked run e2e test message to avoid confusion for non team members by @zillemarco (merge request)
• Convert issue_user_mentions.note_id to bigint for self-managed (merge request)
• Ensure id uniquness across p_ci_builds partitions (merge request)
• Refactor CI External::Rules class to use Entry class (merge request)
• Clean up environment_details_vue feature flag (merge request)
• Convert system_note_metadata.note_id to bigint for self-managed (merge request)
• Remove self_managed_code_suggestions_completion_api FF (merge request)
• Remove code_suggestions_tokens_from_customers_dot FF (merge request)
• Remove completed partition_id migrations (merge request)
• Convert design_user_mentions.note_id to bigint for self-managed (merge request)
• Migrate etag cache store from SharedState to Cache (merge request)

16.3.7 (2024-01-11)

Security (2 changes)

• Fix clickouse-server version in CI (merge request)
• User password reset accepts multiple email addresses (merge request)

16.3.6 (2023-10-30)

Security (9 changes)

• Fix infinite loop when finding component project (merge request)
• Update gitlab-chronic-duration to 0.12 (merge request)
• Guard gitlab_version_check helper (merge request)
• Add the environment action to the CI JWT token fields (merge request)
• Remove FIFO files from tarball extract (merge request)
• Backport add abuse detection for pipes (merge request)
• Prevent unprivileged user assignment in templated projects (merge request)
• Fixes Service Desk email template issue description privileges (merge request)
• Update mermaid version for DOS fixes (merge request)

16.3.5 (2023-09-28)

Security (16 changes)

• Mark any CI builds that are not complete as canceled when imported (merge request)
• Destroy group service accounts when removing group (merge request)
• Fix SSO Enforcement for shared groups and projects (merge request)
• Prevents Ci::Build data from being rendered (merge request)
• Update dependency auto-deploy-image to v2.55.0 (merge request)
• Allow only one membership for security policy bots (merge request)
• Reset all approvals when target branch changes (merge request)
• Default to using the asset proxy (merge request)
• Restrict Project Fork Linking to Owners and Admins (merge request)
• Prevent math hijacking page elements (merge request)
• Delete of member branch protection rules cascadingly (merge request)
• Prevent collaboration across forks when author cannot push (merge request)
• Allow Maintainer+ to list Sentry projects (merge request)
• Fix leaking source code of restricted project through a fork (merge request)
• Prevent leaking CI variables via fork MRs (merge request)
• Pipelines will have no access to protected vars and may fail with tags (merge request)

16.3.4 (2023-09-18)

Fixed (2 changes)

• Fix Geo secondary proxying Git pulls unnecessarily GitLab Enterprise Edition
• Use new indexer, fix removing blobs from index GitLab Enterprise Edition

Security (1 change)

• Enforce that the policy is executed by the bot user (merge request)

16.3.3 (2023-09-12)

Fixed (2 changes)

• Prevent pipeline creation while import is running (merge request)
• Create iid sequence for ci_pipelines with new projects (merge request)

16.3.2 (2023-09-05)

Fixed (2 changes)

• Drop bridge jobs on unknown failures (merge request)
• Fix Code Suggestions in Web IDE on GitLab 16.3 (merge request)

16.3.1 (2023-08-31)

Fixed (1 change)

• Geo: Resync direct upload object stored artifacts GitLab Enterprise Edition

Security (11 changes)

• Add authorization checks to import status endpoint (merge request)
• Update commonmarker to 0.23.10 (merge request)
• Remove DAST secret variables when URL is updated (merge request)
• Maintainer can leak sentry token by changing the configured URL (merge request)
• Service account users are external by default (merge request)
• Additional permission check when editing label (merge request)
• Fix ReDOS in bulk_imports endpoint params (merge request)
• Prevent namespace level banned users from accessing API (merge request)
• Check prohibit_outer_forks in fork relationship api (merge request)
• Prevent traversal for path parameter in refs/switch endpoint (merge request)
• Gitaly keyset pager when pagination none only with tree view (merge request)

16.3.0 (2023-08-21)

Added (169 changes)

• Add metrics for Dependency Management actions (merge request) GitLab Enterprise Edition
• Adding new application setting called ci_max_total_yaml_size_bytes (merge request)
• Add default_branch_protection_defaults in groups apis (merge request)
• Add documentation for multi pipeline scan result policy feature (merge request) GitLab Enterprise Edition
• Adds CatalogResourceComponents table (merge request)
• Add popover for Flux sync status badge (merge request)
• Adds to_redacted_sql support for ClickHouse QueryBuilder (merge request)
• Remove ci_namespace_catalog_experimental (merge request)
• New default branch protection json field (merge request)
• Allow to select flux resource for environment (merge request)
• Adding WAL rate db health indicator (merge request)
• Support themes in "super sidebar" navigation redesign (merge request)
• Introduce rake task for bumping sequences of cells (merge request)
• Add vulnerability attributes to policy drawer (merge request) GitLab Enterprise Edition
• Add pipelineTriggersDelete GraphQL mutation by @missy-davies (merge request)
• Add GraphQL mutation to link work items (merge request)
• Implement CVS UI in Vulnerability dashboard page (merge request)
• Update pm affected_package ingestion with new attribute (merge request) GitLab Enterprise Edition
• Add frequently visited items to search modal (merge request)
• Error handling to label deletion controllers (merge request)
• Show alert for more than 10 agents (merge request)
• Publish Authorizations Changed Event (merge request)
• Add spam checking for issue CSV uploads (merge request)
• NuGet v2 $metadata endpoint (merge request)
• Add support for GetObjectPool RPC (merge request)
• Add pipelineTriggersUpdate GraphQL mutation by @missy-davies (merge request)
• Add advisory ingestion event (merge request)
• Add Groups::SshCertificate model to store group's CAs (merge request)
• Removes ci_needs_parallel_matrix feature flag (merge request)
• Add has_remediations column to vulnerability_reads (merge request)
• Added [data-event-tracking-load=true] tracking attribute (merge request)
• Save pages_deployments path_prefix and build.ref (merge request)
• Default enable custom_roles_on_groups FF (merge request) GitLab Enterprise Edition
• ClickHouse data collector for contribution analytics (merge request) GitLab Enterprise Edition
• Add flux_resource_path to the environments table (merge request)
• Add attributes filter to scan result policies (merge request) GitLab Enterprise Edition
• Show message acknowledging deployment approval (merge request) GitLab Enterprise Edition
• Add block counts to linked work items widget (merge request)
• Adding migrations for gcp config name backfilling and setting not null (merge request)
• Adding active column to custom http audit event destination headers (merge request)
• Trigger for has_merge_request on vulnerability_issue_links (merge request)
• Remove pat_reuse_detection feature flag (merge request)
• Add REPOSITORIES_SERVER_SIDE env to enable gitaly server-side backups (merge request)
• Add foreign key constraint to ci_pipeline_variables (merge request)
• Create indexes necessary for uuid column type change (merge request)
• Send X-Gitlab-Realm header to AI gateway (merge request) GitLab Enterprise Edition
• Add CRM contacts to the issue webhook by @TickettEnterprises (merge request)
• Add source_project_id to commit template by @bovi (merge request)
• Release sec policy bot users for groups (merge request) GitLab Enterprise Edition
• Add status poller to import groups history page (merge request)
• Release sec policy vulnerability attributes filter (merge request) GitLab Enterprise Edition
• Add usage tracking of security policies actions (merge request) GitLab Enterprise Edition
• Add pipelineTriggersCreate GraphQL mutation by @missy-davies (merge request)
• Feat: Add print to PDF for wiki by @fenyuluoshang (merge request)
• Add GraphQL endpoints to fetch abuse report and abuse report labels (merge request)
• Enhance ci-cd pipeline settings by @dbvech (merge request)
• Add sentry_clientside_traces_sample_rate app setting (merge request)
• Run compliance standards checks when new projects are created (merge request) GitLab Enterprise Edition
• Add at least two approvals check to Gitlab standard (merge request) GitLab Enterprise Edition
• Release sec policy bot users for projects (merge request) GitLab Enterprise Edition
• Add annotations job artifact type by @KyleFromKitware (merge request)
• Add confidentiality to work item bulk edit (merge request)
• Add ability to query linked work items (merge request)
• Adds a health checker for elastic cluster (merge request) GitLab Enterprise Edition
• Update progress update mutation (merge request) GitLab Enterprise Edition
• Remove feat flags: delete unconfirmed user feature (merge request) GitLab Enterprise Edition
• Add support for feature flags on DSL field (merge request)
• Query builder for clickhouse (merge request)
• Added UI to set time estimate on issues and merge requests by @zillemarco (merge request)
• Add lock_on_merge column to labels table (fixed) (merge request)
• Add "auditors" parameter to users API by @joe-snyder (merge request) GitLab Enterprise Edition
• Session variable to store provider two factor bypass (merge request)
• Removed ai_chat_emit_user_messages flag (merge request) GitLab Enterprise Edition
• Allow filtering by dismissal reason on vulnerability report (merge request) GitLab Enterprise Edition
• Exclude archived projects from commit search by @sd5869 (merge request) GitLab Enterprise Edition
• Removes ci_include_components ff (merge request)
• Add get all pipelineTriggers GraphQl endpoint by @missy-davies (merge request)
• Add copy reference keyboard shortcut (merge request)
• Add sync status badge to the environment (merge request)
• Send hashed instance and user IDs to AI gateway (merge request) GitLab Enterprise Edition
• Add lock_on_merge column to labels table (merge request)
• Add component_name and input_file_path columns to sbom_occurrences (merge request)
• Default enable linear self and hierarchy scopes (merge request)
• Add Places group to default search view (merge request)
• Add max decompression archive size to AS (merge request)
• Offer email reset when verifying email (merge request)
• Add temporary index for pipeline_artifacts_size (merge request)
• Added name field to gcp conf for external audit event destinations (merge request)
• Add group users autocomplete to GrahQL API (merge request)
• Create list for standards adherence report (merge request) GitLab Enterprise Edition
• Add prevent approval by committer check to Gitlab standard (merge request) GitLab Enterprise Edition
• Add has_merge_request column to vulnerability_reads (merge request)
• Add new DirectTransfer/Import max file size app settings (merge request)
• Added audit events for update destroy headers (merge request) GitLab Enterprise Edition
• Refactored audit event for group creation (merge request) GitLab Enterprise Edition
• Hide the notes from the archived project in the search results (merge request)
• Add a setting for allowing/disallowing duplicate NuGet package upload (merge request)
• Add basic support for issue filter by date (merge request)
• Add work item state to header (merge request)
• Add ability to store linked work items (merge request)
• Show an alert if there are pending obsolete elastic migrations (merge request) GitLab Enterprise Edition
• Allow filtering Vulnerabilties by dismissal reason (merge request)
• Add versions attribute to affected packages (merge request)
• Add firewall rules to workspaces (merge request)
• Add name and description fields to member_roles (merge request)
• Add namespace to sbom components (merge request)
• Enable standalone_finding_modal by default (merge request) GitLab Enterprise Edition
• Add mutation for subscribing to a work item (merge request)
• Add updated_at timestamp to PlanLimits (merge request)
• Add vulnerability age to policy drawer (merge request) GitLab Enterprise Edition
• Add an application setting to enable public package registries (merge request)
• Enforce approval rules based on attributes (merge request) GitLab Enterprise Edition
• Support functions in Ci config interpolation (merge request)
• Backfill all epics into Elasticsearch (merge request) GitLab Enterprise Edition
• Add boolean and number CI inputs (merge request)
• Add mutation userAddOnAssignmentRemove (merge request) GitLab Enterprise Edition
• Filter groups by repository storage (merge request)
• Index vulnerability_reads on project_id and vulnerability_id (merge request)
• This MR adds branches dropdown (merge request) GitLab Enterprise Edition
• Support search field option for iterations REST API (merge request) GitLab Enterprise Edition
• Validate URL on Vulnerabilities::Identifier model (merge request) GitLab Enterprise Edition
• Add basic auth to Zoekt client (merge request) GitLab Enterprise Edition
• Enable elevated_guests by default (merge request) GitLab Enterprise Edition
• Add new metric for advanced search limited indexing setting (merge request) GitLab Enterprise Edition
• Forward User-Agent header to model gateway (merge request) GitLab Enterprise Edition
• Allow to set different webhooks on events in Discord Integration by @Taucher2003 (merge request)
• Add member expiring email notification by @zhanglinjie (merge request)
• Add form error messages to vulnerability report bulk updates (merge request) GitLab Enterprise Edition
• Add MR reviewers to BitBucketServer import (merge request)
• Add tracking for neovim plugin (merge request)
• Remove notify_kas_on_git_push feature flag (merge request)
• Add age filter for scan result policies (merge request) GitLab Enterprise Edition
• Adds patch_id to merge_request_diffs (merge request)
• Add mutation userAddOnAssignmentCreate (merge request) GitLab Enterprise Edition
• Add tmp index for orphaned approval rules (merge request)
• Add project_visibility JWT claim (merge request)
• Add link to forecast feedback issue at top of Deployment Frequency page (merge request)
• GQL code owners Validation for every file named CODEOWNERS (merge request) GitLab Enterprise Edition
• Aggregate open abuse reports by reported-user and abuse category (merge request)
• Creates Ml::ModelVersion on package creation (merge request)
• Add and endpoint to receive Telesign transaction callbacks (merge request) GitLab Enterprise Edition
• Finalize conversion for FKs targeting p_ci_builds - 3 self-managed (merge request)
• Adds services to create Ml::* entities (merge request)
• Add option to disable rollback on outdated deployments (merge request)
• Add FileTree toggle hotkey (merge request)
• Adding position parameter to Draft Notes API (merge request)
• Update resolved status of notes in real time (merge request)
• Update projects to not use emails_disabled by @joe-snyder (merge request) GitLab Enterprise Edition
• Remove pipeline_name_in_api feature flag (merge request)
• Feat: edit user profile vue avatar (merge request)
• Backfill dismissal_reason column for vulnerability_reads table (merge request)
• Add status_message to packages table (merge request)
• Create catalog_resource_versions table (merge request)
• Add Azure Key Vault support for CI/CD (merge request)
• Add archived col in commits index by @sd5869 (merge request) GitLab Enterprise Edition
• Add service index and publish endpoints for NuGet v2 (merge request)
• Add archived col in main index for blobs by @sd5869 (merge request) GitLab Enterprise Edition
• Added "DORA performers score" panel to Value Streams Dashboard (merge request) GitLab Enterprise Edition
• Add tracking for visual studio extension (merge request)
• Add achievement and user achievement GraphQL count (merge request)
• Add syntax highlighting for Svelte files in Blob view by @rudedog9d (merge request)
• Add package_manager column to sbom_occurrences table (merge request)
• Removes namespace_limits_admin_dashboard FF (merge request) GitLab Enterprise Edition
• Adds a script to generate elastic migration files (merge request)
• Adds a script to generate elastic migration files (merge request)
• Expose deploy key in push access level graphql type (merge request)
• Cleanup ci_group_env_scope_graphql feature flag (merge request)
• Add the sync index creation (merge request)
• Remove track_work_items_activity feature flag (merge request)

Fixed (180 changes)

• Update visibility level when levels are restricted (merge request)
• gitaly: Update server version to include memory leak fix (merge request)
• Fix focus on vulnerability details comment (merge request) GitLab Enterprise Edition
• Fix CI catalog loading state (merge request) GitLab Enterprise Edition
• Redirect API requests to moved projects (merge request)
• Only check valid changes during diff checks (merge request)
• Compare page same branch fix (merge request)
• Remove autosaved drafts when the note entry form is cancelled (merge request)
• Disable max allowed looks check for Geo counters (merge request) GitLab Enterprise Edition
• Fix deploy freeze table alignment (merge request)
• Fix missing SBOM component link (merge request) GitLab Enterprise Edition
• Escape special characters while searching for an SBOM occurrence (merge request) GitLab Enterprise Edition
• Fix blockedByCount GraphQL field (merge request)
• Fix error reporting when user is not authorized (merge request)
• Improving membersQuery for indirect and group relationships (merge request)
• Add support for bot users in Dependency Proxy authentication (merge request)
• Use the denormalized attributes to query SBOM occurrences (merge request)
• Show inherited group members when flag is number (merge request) GitLab Enterprise Edition
• Namepace email address label (merge request)
• Link license report to the correct pipeline by @AaronDewes (merge request) GitLab Enterprise Edition
• What's New entries show 21st rather than 22nd (merge request)
• Fix tab background color on MR tabs when Sourcegraph enabled (merge request)
• SAML Group Sync with multiple providers (merge request) GitLab Enterprise Edition
• Fix MR analytics label search for large groups (merge request) GitLab Enterprise Edition
• Fix missing vue injection with group issue list (merge request)
• Add updated hook to packages shared title area component (merge request)
• Cancel old requests in group select to avoid old data by @fenyuluoshang (merge request)
• Revert "Return LFS URL in blob.external_storage_url if lfs_blob?" (merge request)
• Update requirements drawer (merge request)
• Only expose valid custom notification settings (merge request) GitLab Enterprise Edition
• Fix hash highlighting for .json files (merge request)
• Repair admin tag runner sorting with relative url mounts by @markus.ferrell (merge request)
• Ignore tag pipeline for scan result policy comparison (merge request) GitLab Enterprise Edition
• Making the LFK DeletedRecords fetching query faster (merge request)
• Render GFM content in vulnerability description (merge request) GitLab Enterprise Edition
• Do not emit user messages by default (merge request) GitLab Enterprise Edition
• Include descendant shares in user autocomplete (merge request)
• Fix Emoji button svg alignment (merge request)
• Fix the epics endpoint used by the filtered search bar (merge request) GitLab Enterprise Edition
• Enable Google Syndication CSP on registration flow (merge request)
• Fix limit view of Direct transfer max file size (merge request)
• Fix queue Elasticsearch indexing when branch changes for repo (merge request) GitLab Enterprise Edition
• Remove trial button from free biling page if trialed before (merge request) GitLab Enterprise Edition
• Fix deleting job artifact objects (merge request)
• Fix(Subscription): fix activation form (merge request) GitLab Enterprise Edition
• Allow using Service Accounts for HTTP Basic Authentication for Git (merge request) GitLab Enterprise Edition
• Include subgroup and project users in autocomplete (merge request)
• Respect relative root for MLflow package URLs (merge request)
• Group/Project name overflow fix (merge request)
• Fix searches for Upgrade Status to act on runner manager versions (merge request)
• Fix target projects path (merge request)
• Markdown Editor: Fix height change (merge request)
• Fix issues finder when filtering by project (merge request)
• Fix lock_on_merge migration (merge request)
• Change in_reply_to_discussion_id parameter to string (merge request)
• Remove orphaned approval project rules after transfer (merge request)
• Revert "Remove log_response_length feature flag" (merge request)
• Fix deleting job artifact objects (merge request)
• Fix flaky test on CI (merge request)
• GraphQL: Fix N+1 query for CiRunner.managers field (merge request)
• Fix branch_exceptions for branch_type: protected (merge request) GitLab Enterprise Edition
• Fix group templates tab load (merge request) GitLab Enterprise Edition
• Fix max number of slices (merge request) GitLab Enterprise Edition
• User preferences: Fix AI settings sections (merge request)
• Fix allow_descendants_override_disabled_shared_runners in database (merge request)
• Put back broadcast messages to sign-in page for self-hosted (merge request)
• Fix N+1 query in MR pipelines. Also fix N+1 testing documentation (merge request)
• Change labels for token access settings (merge request)
• Add a migration to reindex on the basis of schema_version (merge request) GitLab Enterprise Edition
• Update the namespace_id of vulnerability_reads when project moves (merge request) GitLab Enterprise Edition
• MR Pipeline widget: Fix view app dropdown behind other elements (merge request)
• Require term param for search/autocomplete (merge request)
• Allow Starter customers to use ApprovalRules API (merge request) GitLab Enterprise Edition
• Always allow re-dismissing a vulnerability (merge request) GitLab Enterprise Edition
• Make artifacts dropdown refetch list on show at 'Pipelines' by @av3f (merge request)
• Support nuget version normalization (merge request)
• Change email validation regex to use Devise email regex (merge request)
• Downcase email before using it to generate confirmation token (merge request) GitLab Enterprise Edition
• stylesheets: Re-increase font-size of gl-emoji (merge request)
• Fix Container Scanning invalid pkg manager types (merge request) GitLab Enterprise Edition
• Promote ffaker gem to production (merge request)
• Fix scheduled scan execution policies is applied to incorrect branches (merge request) GitLab Enterprise Edition
• Remove hierarchy validation for promote_to quick action (merge request)
• Include CodeQuality MR Widget in CE (merge request)
• Fix checkbox to url mapping (merge request)
• Fix CI_PAGES_URL when pages unique domain enabled (merge request)
• Add LFS warning popup for deleting files (merge request)
• Fix variable name for secret detection options (merge request) GitLab Enterprise Edition
• Fix truncate_legacy_tables for detached partitions (merge request)
• Align test coverage tooltip on center of indicator by @glauciellesa (merge request)
• Don't proxy batch request for LFS (merge request) GitLab Enterprise Edition
• Remove the feature gate on the VSD config setting (merge request) GitLab Enterprise Edition
• Fix global search modal input Home/End behaviour (merge request)
• Fix bug in #git_diff_prefix regex (merge request)
• Fix settings for newly created incides (merge request) GitLab Enterprise Edition
• Fix tooltips in workspaces actions (merge request) GitLab Enterprise Edition
• Maintain work_items when projects gets archived/unarchived (merge request) GitLab Enterprise Edition
• Fixes the OpenAPI blob viewer (merge request)
• Fix merge train merge failed when check_mergeability obtain lock error by @zhanglinjie (merge request) GitLab Enterprise Edition
• Fixes flex property of package tags in smaller screen sizes (merge request)
• Fix artifacts object storage geo replication (merge request)
• Allow capturing uniqueness error (merge request) GitLab Enterprise Edition
• Align trial illustration when on fluid layout (merge request)
• Fix Query.vulnerabilitiesCountByDay always returning nil data (merge request) GitLab Enterprise Edition
• Return description field in nuget package catalog entry (merge request)
• Use _path helpers instead of _url helpers (merge request)
• Reduce the number of components created in each transaction (merge request) GitLab Enterprise Edition
• Fix UX issues with the label (merge request)
• Check :code_suggestions licensed feature for SM (merge request) GitLab Enterprise Edition
• Update Ruby system version check for 3.0 (merge request)
• Add includeSourceCode to ExplainVulnerability cache key (merge request) GitLab Enterprise Edition
• Show Code Suggestions settings only on licensed EE (merge request) GitLab Enterprise Edition
• Remove duplicate relative url in package registry by @bymayanksingh (merge request)
• Fix restrict_user_defined_variables restriction on pipeline schedules (merge request)
• Fix group path update validations (merge request)
• Allow frontend to access LFS file storage URL (merge request)
• Allow cube proxy to handle 'continue wait' requrests (merge request)
• Fix push rules validation on initial push (merge request)
• Surfaces error in interpolation inputs when header does not exist (merge request)
• Emoji Picker: Add hover state to tabs (merge request)
• Correctly delete todos when group is made private (merge request)
• fix: Drop unnecessary unique index on vulnerability_signatures (merge request)
• Avoid 6 hours of stale Geo status (merge request) GitLab Enterprise Edition
• Remove feature flag (merge request)
• Fix UX issues with the label (merge request)
• Allowing external guest account to pull docker images from the registry (merge request)
• Remove slicing and reduce batch size in migration (merge request) GitLab Enterprise Edition
• Hide protected pipeline job retry/cancel btns (merge request)
• Remove include:rules from the Security/BAS template (merge request)
• Add non negative validation to time estimate quick action by @missy-davies (merge request)
• Exclude projects pending deletion from group visibility level validation (merge request)
• Allow guest users to subscribe work items (merge request) GitLab Enterprise Edition
• Fix impersonation button availability in admin area by @Taucher2003 (merge request)
• Fix wrapping buttons on commits page by @glauciellesa (merge request)
• Do not store chat messages by default (merge request) GitLab Enterprise Edition
• Render textual LFS files in UI (merge request)
• Add non negative validation to time estimate rest api endpoint by @missy-davies (merge request)
• Show correct push instructions for a forked MR (merge request)
• Add space between project housekeeping buttons (merge request)
• Allow report_source to be nil when delegating packager (merge request) GitLab Enterprise Edition
• Prevent triggering explain code on file names (merge request)
• Add negative validation to estimate mutations by @missy-davies (merge request)
• Disable IAT verification by default (merge request)
• Fix issues caused by ambiguous refs (merge request)
• Only allow group owners to query environment scopes (merge request)
• Fix set/edit status button on old navigation (merge request)
• Fix the N+1 query issue for Vulnerability#hasRemediations field (merge request) GitLab Enterprise Edition
• Fix auto-scrolling to hash on Markdown files (merge request)
• Ignore approval rules from policies when importing/exporting project (merge request) GitLab Enterprise Edition
• Fix crash when LDAP CA file set outside tls_options (merge request)
• Fixes container registry image list sorting UI inconsistency (merge request)
• Use root_ref to get last commit for index integrity (merge request) GitLab Enterprise Edition
• Fix "pending deletion" badge (merge request)
• Apply user timezone to date headers in commits list (merge request)
• Add spacing between approval checkbox and textarea (merge request)
• Update GitHub Importer Client Pool to include main token (merge request)
• Display labels description and scoped labels for epics on roadmap (merge request) GitLab Enterprise Edition
• Fix deployments waiting for user actions are marked as "created" (merge request)
• Fix converting issue to incident (merge request)
• Tooltip for long labels on Labels list by @endera_ (merge request)
• Backfill missing vulnerability dismissal information (merge request)
• Fix wrong default licenses saved in package_metadata ingestion (merge request)
• Fix repository push error message (merge request) GitLab Enterprise Edition
• Show archived projects from subgroups (merge request)
• Sync approval rules for group policies when transferring a project (merge request) GitLab Enterprise Edition
• Remove work item input backgrounds in dark mode (merge request)
• Fix system note permissions check (merge request)
• Fix index creation to detect if index exists (merge request)
• Fix canApprove GraphQL field returning null (merge request)
• Fix list style types in rich text and preview (merge request)
• Autofocus the editors when switching between them (merge request)
• Improve query in Projects::ParticipantsService (merge request)
• Fix completion of pending direct upload (merge request)
• Clear GroupIndexStatus in clear_index_status rake task (merge request) GitLab Enterprise Edition
• Allow pasting a markdown block (merge request)
• Autofocus the editor when commenting on a diff (merge request)
• Fixes container registry tags list sorting UI inconsistency (merge request)
• Ensure components are ingested in a consistent order (merge request) GitLab Enterprise Edition
• Fix label on token name field by @Taucher2003 (merge request)
• Fix shadows and scrims in dark mode (merge request)

Changed (265 changes)

• Sort admin runners by runner machine upgrade status by @markus.ferrell (merge request)
• Add search attribute to zoekt indexed namespaces (merge request)
• Do not include min_access_level for admins (merge request)
• Use skeleton loader while waiting for discussion summary (merge request) GitLab Enterprise Edition
• Send review request email to new reviewers (merge request)
• Renamed explain vuln experiment to beta (merge request) GitLab Enterprise Edition
• Remove protected ref check from integrations google play v2 by @StevenMetz (merge request)
• Use secondary text color for project settings subheaders (merge request)
• Add error field when visualization file missing (merge request) GitLab Enterprise Edition
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• Trigger Microsoft Azure Group Sync for self-managed SAML sign-in (merge request) GitLab Enterprise Edition
• Add max width to user settings inputs (merge request)
• Updated the Cargo.toml linker to support inline tables by @Ian678 (merge request)
• Prepare add-on purchase services to work without a namespace (merge request) GitLab Enterprise Edition
• Remove FF add_docker_distribution_manifest_list_v2_type_to_accept_header (merge request)
• Use gitaly exception message (merge request)
• Offer phone verification exemption for medium risk users (merge request) GitLab Enterprise Edition
• Add streaming to Anthropic client (merge request) GitLab Enterprise Edition
• Update incident header layout (merge request)
• Remove recent_objects_for_project_statistics FF (merge request)
• Admin settings: Update description style (merge request)
• Display all potential approval groups in policy drawer (merge request) GitLab Enterprise Edition
• Deploy keys settings: Use GlCard (merge request)
• Group Advanced settings: Use GlCard (merge request)
• Move deploy tokens into card (merge request)
• Add user info to jwt in container registry auth (merge request)
• Disable rule mode for invalid vulnerability_attributes (merge request) GitLab Enterprise Edition
• Enable the compressed_package_metadata_query feature flag by default (merge request) GitLab Enterprise Edition
• Splits monthly and per-project data loading (merge request) GitLab Enterprise Edition
• Use text secondary style for group settings subheaders (merge request)
• Alerts settings: Use GlCard (merge request)
• Improve shared runners toggle for projects (merge request)
• Migrate metrics widget to V2 (merge request) GitLab Enterprise Edition
• Compare results for scan_finding approval rules from multiple pipelines (merge request) GitLab Enterprise Edition
• Update deploy keys and tokens docs (merge request)
• Add border between milestone and iteration (merge request)
• Cleanup new GlCard implementations (merge request)
• Admin Area: Appearance settings change to use one column (merge request)
• Group compliance framework settings: Use GlCard (merge request)
• Move group container registry from operations to deploy (merge request)
• Refactor sastReportsInInlineDiff handling (merge request) GitLab Enterprise Edition
• Enable v2 package metadata license sync (merge request) GitLab Enterprise Edition
• Advanced project settings: Use GlCard (merge request)
• Update broadcast message target roles UI (merge request)
• Ensure_onboarding experiment: Successful cleanup (merge request) GitLab Enterprise Edition
• Billing settings: use GlCard (merge request) GitLab Enterprise Edition
• Group CI/CD settings: remove container limited class (merge request)
• Sort referenced issues numerically (merge request)
• Set max width on user preference inputs (merge request)
• Enable the content block retry to be enabled contextually (merge request) GitLab Enterprise Edition
• Add copy reference shortcut docs (merge request)
• Migrate health status dropdown to listbox by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Add audit event for changed product description (merge request) GitLab Enterprise Edition
• Add spec for parsing inputs as boolean (merge request) GitLab Enterprise Edition
• Finish moving BroadcastMessage under System module (merge request)
• Fix the typo in migration by no-oping migration & adding new one (merge request)
• CI/CD Pipeline subscriptions settings: Use GlCard (merge request)
• Change the error message when trying to make issue confidential (merge request)
• Feat: implement report abuse in user profile (merge request)
• Improves BetaBadge appearance (merge request)
• Include all standards adherence checks in spec (merge request) GitLab Enterprise Edition
• Protected branches: Use GlCard (merge request)
• Change chat background color and chat bubble color (merge request) GitLab Enterprise Edition
• Allow group_approvers to reference inaccessible groups (merge request) GitLab Enterprise Edition
• Parse span from gitaly result (merge request)
• Improve tooltips in top row of sidebar (merge request)
• Remove admin check when creating/updating subscription add-on purchases (merge request) GitLab Enterprise Edition
• Add Gitaly info to info rake task (merge request)
• Remove disable following user feature flag (merge request)
• Merge request approvals settings: Use GlCard (merge request)
• Status checks settings: Use GlCard (merge request) GitLab Enterprise Edition
• CI/CD Pipeline triggers settings: Use GlCard (merge request)
• Convert columns in user_details to loose FK (merge request)
• This MR migrates legacy dropdown (merge request) GitLab Enterprise Edition
• CI/CD Proteted environments project settings: Use GlCard (merge request) GitLab Enterprise Edition
• Adds page URL params for container image tags list pagination (merge request)
• This MR adds ability to add branch exceptions (merge request) GitLab Enterprise Edition
• Retry to drop events temporary conversion table (merge request)
• Update temporary snippet comment button to pajamas (merge request)
• Migrates packages list row delete dropdown to disclosure (merge request)
• Update dependency auto-deploy-image to v2.53.0 (merge request)
• Move mirrored repositories to card (merge request)
• Update the rest of the card settings docs (merge request)
• Implement Trial-end widget and popover (merge request) GitLab Enterprise Edition
• Initialize the bigint conversion for ci_sources_pipelines (merge request)
• Add link to zoekt feedback issue in user preferences page (merge request) GitLab Enterprise Edition
• Update issue and epic header layout to match MRs (merge request)
• Add presubmissionCheckPassed to ExplainVulnerabilityPromptType (merge request) GitLab Enterprise Edition
• Allows dots in Gitaly Storage names (merge request)
• Security approvals settings: Use GlCard (merge request)
• Fix vue3 migrations in alerts_settings_wrapper_spec.js (merge request)
• Migrates container registry details header dropdown to disclosure (merge request)
• Move confidentiality badge to work item detail header (merge request)
• Rename Last event ID processed by cursor message by @bymayanksingh (merge request) GitLab Enterprise Edition
• Modify Vulnerability for_projects scope (merge request) GitLab Enterprise Edition
• Improve shared runners toggle for groups (merge request)
• Update settings documentation (merge request)
• Migrate set_status_form.vue to GlCollapsibleListbox (merge request)
• Revise empty standards adherence table text (merge request) GitLab Enterprise Edition
• Update work item meta data with type and icon (merge request)
• CI/CD Token Access: Use GlCard (merge request)
• CI/CD Secure Files settings: Use GlCard (merge request)
• Clean up track_manual_deployments feature flag (merge request)
• Changed failed pipeline jobs card border to hover and text to hide by @zillemarco (merge request)
• Update dependency auto-build-image to v1.38.1 (merge request)
• Move protected tag settings into card (merge request)
• Convert epic dropdown to GlDisclosureDropdown (merge request)
• This MR adds ability to add branch exceptions (merge request) GitLab Enterprise Edition
• Add artifacts help text (merge request)
• Reword, move variable modal AWS/OIDC guidance (merge request)
• Add documentation for user settings cards (merge request)
• Remove group_saml_jit_errors feature flag (merge request) GitLab Enterprise Edition
• Improve interpolation for TimeHelper (merge request)
• This MR optimise request load for branch selector (merge request) GitLab Enterprise Edition
• Increase push rules regex limit to 511 characters (merge request) GitLab Enterprise Edition
• Add connection adapter logic for schema validations (merge request)
• Use Pajamas component for Gitea import button (merge request)
• Use deactivate service (merge request)
• Relax namespace_id presence checks in GitlabSubscriptions::AddOnPurchase (merge request)
• Reduce inotify watches when cache_classes is enabled (merge request)
• Add partial unique index on project_authorizations (merge request)
• Extends userAddOnAssignmentCreate response (merge request) GitLab Enterprise Edition
• Update dependency auto-deploy-image to v2.52.0 (merge request)
• This MR adds ability to add branch exceptions (merge request) GitLab Enterprise Edition
• Move branch rules into card (merge request)
• Replace vscode-cdn.net with web-ide.gitlab-static.net (merge request)
• Add the ProjectAuthorization::Changes domain concept (merge request)
• Add project_authorizations.is_unique and schedule partial index (merge request)
• Move comment templates into card view (merge request)
• Add specs for links & location_text by @bymayanksingh (merge request) GitLab Enterprise Edition
• Access tokens: Use GlCard (merge request)
• Highlight job log line (merge request)
• Migrate new issue dropdown to listbox by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Settings badges: Use GlCard (merge request)
• Domain verification settings: Use GlCard (merge request)
• CI/CD Settings Variables: use GlCard (merge request)
• Removes reduce_aggregation_schedule_lease FF (merge request)
• Migrate OKR Actions Split Button to Disclosure by @ShaneMaglangit (merge request)
• Replace project import dropdown with listbox (merge request)
• Enable batched_api_mergeability_checks by default (merge request)
• Adds page params for container image list pagination (merge request)
• Set LLM log_level to info by default (merge request) GitLab Enterprise Edition
• Move unified rules alert to help text of approvers (merge request) GitLab Enterprise Edition
• Fix editor tracking (merge request)
• Re-add history button on project overview (merge request)
• Self-generate JWT for SaaS completions (merge request) GitLab Enterprise Edition
• Parse string to boolean (merge request) GitLab Enterprise Edition
• Filter using dismissal reason (merge request) GitLab Enterprise Edition
• Remove dismiss_multiple_vulnerabilities feature flag (merge request) GitLab Enterprise Edition
• Use text-bison instead of codechat-bison for explain this vuln (merge request) GitLab Enterprise Edition
• Remove pages_deploy_upload_file_outside_transaction feature flag (merge request)
• Improve Value stream dashboard loading state (merge request) GitLab Enterprise Edition
• Update details on Namespace storage used card (merge request) GitLab Enterprise Edition
• Remove deleted repositories from Zoekt (merge request) GitLab Enterprise Edition
• Migrate start trial button to Pajamas component (merge request) GitLab Enterprise Edition
• Make PAT Code Suggestions field non-required for SM (merge request) GitLab Enterprise Edition
• Add branch_exceptions support to PolicyBranchesService (merge request)
• Migrate feature flag action dropdown to disclosure by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Reorganized components to scopes (merge request)
• Expose email for admins (merge request) GitLab Enterprise Edition
• Disable rule mode for invalid vulnerability_age (merge request) GitLab Enterprise Edition
• Add guard for when sbom_occurrences (merge request) GitLab Enterprise Edition
• Reorganized components to scopes (merge request)
• Validate vulnerability_age for required keys (merge request) GitLab Enterprise Edition
• Add new merge strategy in frontend as preferred (merge request) GitLab Enterprise Edition
• Migrate GlDropdown to GlDisclosureDropdown (merge request)
• Migrate page_size_selector to GlCollapsibleListbox (merge request)
• Allow new pagination parameters for tags (merge request)
• Update dependency auto-deploy-image to v2.51.1 (merge request)
• Fix scan policy enforcement (merge request) GitLab Enterprise Edition
• Call Internal Event API instead of RedisHLL for tracking on the FE (merge request) GitLab Enterprise Edition
• Uses ModelPresenter instead of ModelIndexPresenter (merge request)
• Add filters to instance streaming destination (merge request) GitLab Enterprise Edition
• MR sidebar label selection fixes (merge request)
• Access tokens: Use GlCard (merge request)
• Deploy keys: Use GlCard (merge request)
• Add codeowners validation block (merge request) GitLab Enterprise Edition
• Migrate blob template selector dropdown to vue by @ShaneMaglangit (merge request)
• Remove accent color as active color (merge request)
• Document tls_options in LDAP servers config (merge request)
• Fix rubocop issues in migrations (merge request)
• Replace alert with empty state component in Value Stream Analytics by @dannyelcf (merge request) GitLab Enterprise Edition
• Update gitlab-pages (merge request)
• Remove alternative ff (merge request)
• Update protected environments settings UI (merge request) GitLab Enterprise Edition
• Add name to streaming destinations (merge request) GitLab Enterprise Edition
• Separates out Container Registry on project Usage Quotas (merge request)
• Remove description from explain vulnerability prompt by @bymayanksingh (merge request) GitLab Enterprise Edition
• Remove group managed account sign up redirect and feature flag (merge request) GitLab Enterprise Edition
• New Merge request layout improvements (merge request)
• Requires Ml::ModelVersion to be valid SemVer (merge request)
• Set flag to default enabled (merge request) GitLab Enterprise Edition
• Migrate Instance OAuth applications to use GlCard (merge request)
• Broadcast messages: Use GlCard (merge request)
• Uses ModelVersion for ModelsController (merge request)
• Add verification_state & replication_state to registry_type by @bymayanksingh (merge request) GitLab Enterprise Edition
• Revises error message for archived mirrors (merge request)
• Use URL helpers for security policy project readme links (merge request) GitLab Enterprise Edition
• SSH Keys user settings: Use GlCard (merge request)
• Cleanup Edit user form (merge request)
• Note activity reply: Fix spacing (merge request)
• Rename compliance report page (merge request)
• MR pipeline widget: cleanup (merge request)
• Create sync index for pipeline_id_convert_to_bigint (merge request)
• Creates fake names for Ml::Candidate (merge request)
• Add frontend code for location finder (merge request) GitLab Enterprise Edition
• SSH Key detail page improvements (merge request)
• Mark RepositoryUpdateMirrorWorker to have external dependencies (merge request) GitLab Enterprise Edition
• Use Markdown Editor in Issuables (merge request)
• Update description text for dependency proxy settings (merge request)
• GPG Keys: Use GlCard (merge request)
• Migrate to GlDisclosureDropdown in work_items_links (merge request)
• Change two-column integration layout to one-column (merge request)
• Global search: increase spacing slightly for better readability (merge request)
• Improve wording on primary email notification change on GitLab.com by @bymayanksingh (merge request)
• Admin labels: use GlCard (merge request)
• Applications settings: use card (merge request)
• Document GitLab 16.2.0 upgrade issues with legacy LDAP configs (merge request)
• Update delete tag modal copy (merge request)
• Remove btn-sm-side-margin misc variable in favor of gitlab ui (merge request)
• Update group project settings (merge request)
• Cleaned up code_suggestions_alert and feature flag (merge request) GitLab Enterprise Edition
• Initialize the conversion for ci_pipeline_messages.pipeline_id (merge request)
• Initialize the conversion for ci_stages.pipeline_id (merge request)
• Move email addresses and form into card (merge request)
• Update in-app usage data reminder banner text (merge request) GitLab Enterprise Edition
• Enable reduced indexing timeout by default (merge request)
• Prepare async index for pipeline_id_convert_to_bigint (merge request)
• Add a visual toggle for archived projects (merge request)
• Initialize the conversion for ci_pipelines.auto_canceled_by_id (merge request)
• Update buttons to use Pajamas::ButtonComponent (merge request)
• Update settings sticky header/footer (merge request)
• Set search_index_integrity FF to default enabled (merge request) GitLab Enterprise Edition
• Move subgroup setting from select to radio buttons (merge request)
• Validate vulnerability_age for presence of previously existing states (merge request) GitLab Enterprise Edition
• Enable restrict_special_characters_in_namespace_path feature flag (merge request)
• Exclude archived projects from merge request search (merge request)
• Add branch_exceptions to security policy schema (merge request) GitLab Enterprise Edition
• Updates to create your group subscriptions page (merge request) GitLab Enterprise Edition
• Add Code Suggestions statistics card (merge request) GitLab Enterprise Edition
• Allow configurable docker socket path for CodeQuality (merge request)
• Integrations settings: use card (merge request)
• Reduce select width on blob and find file page (merge request)
• Re-organize BBM docs (merge request)
• Update ffi-yajl gem to v2.6.0 (merge request)
• Update failed jobs widget (merge request)
• Replace layout select setting with radio buttons (merge request)
• Backfill archived for work_items (merge request) GitLab Enterprise Edition
• Remove ignored column from ChatNames (merge request)
• Add location finder and endpoint (merge request) GitLab Enterprise Edition
• Migrate link_to buttons to Pajamas buttons in commits_helper.rb (merge request)
• Show which enforcement type is applied to a given namespace (merge request) GitLab Enterprise Edition
• Migrate Status Checks to V2 (merge request) GitLab Enterprise Edition
• Move BroadcastMessage model under System module (merge request) GitLab Enterprise Edition
• Clean up security_policies_branch_type feature flag (merge request)
• Persist scan result policy index to scan_result_policies.rule_idx column (merge request) GitLab Enterprise Edition
• Changes namespace limits UI to correct unit (merge request) GitLab Enterprise Edition
• Backfill Elastic migration dictionary records (merge request) GitLab Enterprise Edition
• Change build queuing metrics FF to ops type (merge request)
• Updates link_to with btn cmp by @afzal442 (merge request)
• Enable "search as tokens" in runner search (merge request)
• Correct padding for Admin setting GitLab for Jira App form (merge request)
• Update doorkeeper buttons to pajamas (merge request)
• Upgrade to gitlab-fog-azure-rm v1.8.0 (merge request)
• Initialize the conversion for ci_pipeline_chat_data.pipeline_id (merge request)

Deprecated (1 change)

• Deprecate hasSolutions in favor of hasRemediations (merge request) GitLab Enterprise Edition

Removed (19 changes)

• Remove free user cap email notification related code (merge request) GitLab Enterprise Edition
• Remove support for license scanning artifact (merge request) GitLab Enterprise Edition
• Remove license-finder analyzer (merge request)
• Remove Gitlab::I18n.with_locale usage by @KiranSatyaRaj (merge request)
• Remove License Scanning from AutoDevOps (merge request)
• Remove legacy wiki repository replication code (merge request) GitLab Enterprise Edition
• Remove mispelled namespace details column (merge request)
• Remove the utility class from scss file by @glauciellesa (merge request)
• Remove temp index on vulnerability_occurrences (merge request)
• Cleanup no_todo_for_approvers feature flag (merge request)
• Clean up initialize analytics worker (merge request)
• Remove generated CSP directive entries from Blob#show (merge request)
• Cleanup PK conversion for events table (merge request)
• Removing ci_active_pipelines from table plan_limits (merge request)
• Remove managed prometheus class (merge request)
• Fixes for the Documentation Bot Part (merge request) GitLab Enterprise Edition
• Remove temp index on vulnerability_occurrences (merge request)
• Remove panel preview service and builder controller (merge request)
• Remove restrict_merge_status_recheck feature flag (merge request)

Security (22 changes)

• Use component to hide sensitive analytics settings (merge request)
• Fix undefined method page error in list dependencies (merge request)
• Fix undefined method licenses for nil:NilClass bug (merge request)
• Add pagination for license scanning (merge request)
• Mitigate autolink filter ReDOS (merge request)
• Revert 'security-408388--protected-branch' (merge request)
• Fix bug where comments on files with incorrect sha breaks UI (merge request)
• Prevent leaking emails of newly created users (merge request)
• Sanitize multiple hardlinks from import archives (merge request)
• Mitigate project reference filter ReDOS (merge request)
• Relocate PlantUML config and disable SVG support (merge request)
• Added redirect to filtered params (merge request)
• Validates project path availability (merge request)
• Fix XSS vector in Web IDE (merge request)
• Prevent creation of tags matching protected branch names (merge request)
• Add a stricter regex for the Harbor search param (merge request)
• Prohibit 40 character hex plus a hyphen if branch name is path (merge request)
• Fix policy project assign (merge request)
• Fix pipeline schedule authorization for protected branch/tag (merge request)
• Update pipeline user to the last policy MR author (merge request)
• Test nr 3: fast security->canonical sync (merge request)
• Test fast security->canonical sync (merge request)

Performance (17 changes)

• Add index to external_status_checks table on id and project_id (merge request)
• Drop index_deployments_on_project_id_sha (merge request)
• Drop index_deployments_on_environment_id_and_iid_and_project_id (merge request)
• Revert "Merge branch '392448-npm-metadata-endpoints-high-cpu-duration' into 'master'" (merge request)
• Immediately render the Value Stream Dashboard data as it is loaded (merge request) GitLab Enterprise Edition
• Enable the advanced search reverse optimization (merge request) GitLab Enterprise Edition
• Fix N+1 in notes endpoints (merge request)
• Cache manifest.json view based on current_appearance (merge request)
• Remove duplicate loading of commits on network graph (merge request)
• Preload merge_request_diff_commits when diffStats is requested (merge request)
• Add index to projects on namespace_id and repository_size_limit (merge request)
• Synchronous creation: index_vuln_findings_on_uuid_including_vuln_id (merge request)
• Serve completions endpoint through Workhorse (merge request) GitLab Enterprise Edition
• Improve query for projects in rebalancing service (merge request)
• Minor performance tweak for LFS object downloads (merge request)
• Prevent N+1 when diffStats is queried via GraphQL (merge request)
• Drop index_deployments_on_project_id_and_status (merge request)

Other (90 changes)

• Convert commit_user_mentions.note_id to bigint for self-managed (merge request)
• Enable on_demand_scans_runner_tags by default (merge request) GitLab Enterprise Edition
• Remove feature flag ci_interpolation_inputs_refactor (merge request)
• Use new GraphQL autocomplete field for issue lists (merge request)
• Update documentation for SAML group sync with multiple providers (merge request) GitLab Enterprise Edition
• Adds EnumInheritance as option for STI (merge request)
• Remove ClusterCache module (merge request)
• Add Service Desk Ticket as a new Work Item type to DB (merge request)
• Update the protected paths doc by @zhaoqi01 (merge request)
• Add style to new_user_email notification by @KiranSatyaRaj (merge request)
• Revert "Merge branch 'slashmanov/vite-js-dev' into 'master'" (merge request)
• Add FF to stop emitting Sidekiq histogram metrics (merge request)
• Kubernetes_namespace_for_environment FF cleanup (merge request)
• Add feature_catgory metadata to some stage specs by @missy-davies (merge request)
• Switch CommitStatus table name to p_ci_builds (merge request)
• Refactor TrainingProviders: DRY up common logic to base class by @bymayanksingh (merge request) GitLab Enterprise Edition
• Drop initial prepared_at index, and create one with created_at (merge request)
• Adds indexes on service_desk_custom_email_verifications (merge request)
• Extract Work item contents and create a wrapper (merge request) GitLab Enterprise Edition
• Introducing CrossDatabaseIgnoredTables helper (merge request)
• Ensure id uniquness across p_ci_builds partitions (merge request)
• Allows additionalProperties for prom-alert-based-db-indicators-settings (merge request)
• Renames ApplicationSetting.database_apdex_settings to be more generic (merge request)
• Update Gitlab Shell version to 14.26.0 (merge request)
• Remove free_user_cap_new_namespaces feature flag (merge request) GitLab Enterprise Edition
• Patch Redis Cluster loaders to initialize with random nodes (merge request)
• Ensure id uniquness across partitions (merge request)
• Db health based throttling for PipelineSuccessUnlockArtifactsWorker (merge request)
• Default enable self_managed_code_suggestions_completion_api (merge request)
• Add search_scope in options (merge request) GitLab Enterprise Edition
• Remove telesign_callback feature flag (merge request) GitLab Enterprise Edition
• Backfill default protection branch defaults in application setting (merge request)
• Update Gitlab Shell version (merge request)
• Remove require_notes_last_fetched_at feature flag (merge request)
• Add a migration to backfill archived field in wikis index (merge request) GitLab Enterprise Edition
• Remove managing_group_id foreign key constraint (merge request)
• Add Epic work item type to the DB (merge request)
• Remove use_metric_definitions_for_events_list FF usage (merge request)
• Remove feature flag raise_error_for_missing_audit_event_yml (merge request)
• Clean up application settings Tofa config (merge request)
• Add logs when MR approvals are updated by scan result policy (merge request) GitLab Enterprise Edition
• Clean up FF for sidekiq SLIs (merge request)
• Add namespace_id to issue search data table (merge request)
• Remove default partition value from CI tables (merge request)
• Update the email notification doc (merge request)
• Add notes.namespace_id index and foreign key (merge request)
• Remove the wiki docs from the main index (merge request) GitLab Enterprise Edition
• Send archived to the indexer if the Project is archived (merge request) GitLab Enterprise Edition
• Drop issues.issue_type column (merge request)
• Backfill default_branch_protection_defaults for namespace settings (merge request)
• Update Gitlab Shell to 14.24.1 (merge request)
• Use the package_manager column in filtering and sorting (merge request)
• Remove highlight_js feature flag (merge request)
• Remove vsd_graphql_dora_and_flow_metrics feature flag (merge request) GitLab Enterprise Edition
• Add migration to backfill archived field in commits (merge request) GitLab Enterprise Edition
• Add tests for the methods in the Ci::VariablesHelper by @bymayanksingh (merge request)
• Updates docs with candidate nickname (merge request)
• Add migration to remove projects from main index (merge request) GitLab Enterprise Edition
• Remove free_user_cap_new_namespaces feature flag (merge request) GitLab Enterprise Edition
• Write a migration to backfill archived on notes (merge request) GitLab Enterprise Edition
• Add namespace_id to notes (merge request)
• Remove jira_deployment_issue_keys flag (merge request)
• Change ActiveRecord::RecordInvalid to return 500, not 422 for 2FA login (merge request)
• Move etag caching middleware after rack middleware (merge request)
• Bump rspec-mocks version to 3.12.6 (merge request)
• Sanitize slack-formatted links in chat messages (merge request)
• Revert changes from 414396-complete-ci-builds-partitioning (merge request)
• Set the archived value for the notes index (merge request) GitLab Enterprise Edition
• Remove cache_introspection_query feature flag (merge request)
• Add a migration to remove the wiki docs from the main index (merge request) GitLab Enterprise Edition
• Drop issues.issue_type related indexes (merge request)
• Add group_wikis indexing in the elastic:index task (merge request) GitLab Enterprise Edition
• Add archived to notes index (merge request) GitLab Enterprise Edition
• Improved fork button feature specs by @zillemarco (merge request)
• Enable descendant_security_scans by default (merge request)
• Bump GITLAB_ELASTICSEARCH_INDEXER_VERSION to set new routing for wikis (merge request) GitLab Enterprise Edition
• Revoke tokens only for access token rotate endpoints (merge request)
• Remove import_details_page feature flag (merge request)
• Add error handling to import project members modal (merge request) GitLab Enterprise Edition
• Add archived field in the wikis index (merge request) GitLab Enterprise Edition
• Code suggest endpoint for self-managed completions (merge request) GitLab Enterprise Edition
• Remove free_user_cap_new_namespaces feature flag (merge request) GitLab Enterprise Edition
• Remove members_with_shared_group_access feature flag (merge request)
• Allow overriding model gateway URL (merge request) GitLab Enterprise Edition
• Convert todos.note_id to bigint for self-managed (merge request)
• Swap events.target_id to bigint (merge request)
• Remove the summarize_diff quick action (merge request)
• Remove the FF ci_refactoring_pipeline_schedule_create_service (merge request)
• Fix test pollution in count_deployments_metric_spec (merge request)
• Update BulkImports::PipelineBatchWorker resource boundary (merge request)

16.2.9 (2024-01-11)

Security (2 changes)

• Fix clickouse-server version in CI (merge request)
• User password reset accepts multiple email addresses (merge request)

16.2.8 (2023-09-28)

Security (16 changes)

• Mark any CI builds that are not complete as canceled when imported (merge request)
• Destroy group service accounts when removing group (merge request)
• Fix SSO Enforcement for shared groups and projects (merge request)
• Prevents Ci::Build data from being rendered (merge request)
• Update dependency auto-deploy-image to v2.55.0 (merge request)
• Allow only one membership for security policy bots (merge request)
• Reset all approvals when target branch changes (merge request)
• Default to using the asset proxy (merge request)
• Restrict Project Fork Linking to Owners and Admins (merge request)
• Prevent math hijacking page elements (merge request)
• Delete of member branch protection rules cascadingly (merge request)
• Prevent collaboration across forks when author cannot push (merge request)
• Allow Maintainer+ to list Sentry projects (merge request)
• Fix leaking source code of restricted project through a fork (merge request)
• Prevent leaking CI variables via fork MRs (merge request)
• Pipelines will have no access to protected vars and may fail with tags (merge request)

16.2.7 (2023-09-18)

Security (1 change)

• Enforce that the policy is executed by the bot user (merge request)

16.2.6 (2023-09-12)

Fixed (3 changes)

• Prevent pipeline creation while import is running (merge request)
• Create iid sequence for ci_pipelines with new projects (merge request)
• Drop bridge jobs on unknown failures (merge request)

16.2.5 (2023-08-31)

Fixed (1 change)

• Geo: Resync direct upload object stored artifacts GitLab Enterprise Edition

Security (13 changes)

• Add authorization checks to import status endpoint (merge request)
• Update commonmarker to 0.23.10 (merge request)
• Remove DAST secret variables when URL is updated (merge request)
• Maintainer can leak sentry token by changing the configured URL (merge request)
• Service account users are external by default (merge request)
• Additional permission check when editing label (merge request)
• Fix ReDOS in bulk_imports endpoint params (merge request)
• Prevent namespace level banned users from accessing API (merge request)
• Requires write_model_experiments on mlflow api (merge request)
• Check prohibit_outer_forks in fork relationship api (merge request)
• Remove GCP private key from streaming audit events UI (merge request)
• Prevent traversal for path parameter in refs/switch endpoint (merge request)
• Gitaly keyset pager when pagination none only with tree view (merge request)

16.2.4 (2023-08-11)

Fixed (2 changes)

• Replace vscode-cdn.net with web-ide.gitlab-static.net (merge request)
• Revert "Remove log_response_length feature flag" (merge request)

16.2.3 (2023-08-03)

No changes.

16.2.2 (2023-08-01)

Added (1 change)

• Add MR reviewers to BitBucketServer import to 16-2

Fixed (2 changes)

• Disable IAT verification by default
• Enable descendant_security_scans by default GitLab Enterprise Edition

Security (17 changes)

• Fix undefined method licenses for nil:NilClass bug (merge request)
• Fix undefined method page error in list dependencies (merge request)
• Add pagination for license scanning (merge request)
• Prevent leaking emails of newly created users (merge request)
• Added redirect to filtered params (merge request)
• Relocate PlantUML config and disable SVG support (merge request)
• Sanitize multiple hardlinks from import archives (merge request)
• Validates project path availability (merge request)
• Fix policy project assign (merge request)
• Fix bug where comments on files with incorrect sha breaks UI (merge request)
• Fix pipeline schedule authorization for protected branch/tag (merge request)
• Mitigate autolink filter ReDOS (merge request)
• Fix XSS vector in Web IDE (merge request)
• Mitigate project reference filter ReDOS (merge request)
• Add a stricter regex for the Harbor search param (merge request)
• Update pipeline user to the last policy MR author (merge request)
• Prohibit 40 character hex plus a hyphen if branch name is path (merge request)

16.2.1 (2023-07-25)

Fixed (1 change)

• Fix crash when LDAP CA file set outside tls_options (merge request)

16.2.0 (2023-07-21)

Added (176 changes)

• Add GraphQL API to get compliance standards adherence at group level (merge request) GitLab Enterprise Edition
• Add read_dependency column to member_roles table (merge request)
• Dashboards item under group analyze nav menu (merge request) GitLab Enterprise Edition
• Backfill vulnerability_occurrences.uuid_convert_string_to_uuid column (merge request)
• Add support for vulnerability age filtering (merge request) GitLab Enterprise Edition
• Use default template when creating issues via gql (merge request)
• Add background migration worker for Redis (merge request)
• Trigger Microsoft Group Sync on sign-in (merge request) GitLab Enterprise Edition
• Add a new faster git refs finder (merge request)
• Add SCIM as a provider to the Users API search (merge request) GitLab Enterprise Edition
• Add sync for advisories (merge request) GitLab Enterprise Edition
• Add developer documentation on required stops (merge request)
• Enforce approval rules based on attributes (merge request) GitLab Enterprise Edition
• Add namespace_storage_forks_cost_factor to application_settings table (merge request)
• Setting ml_experiment_tracking to default enabled (merge request)
• Add AddOnPurchaseType GraphQL (merge request) GitLab Enterprise Edition
• Adds table ml_model_versions and Ml::ModelVersion (merge request)
• Command Palette: Enable feature flag per default (merge request)
• Add PAT automatic reuse detection in AuthFinders (merge request)
• GraphQL endpoint for IDE code suggestions enabled (merge request)
• Add data tracking for editors (merge request)
• Add group_id argument to merge requests resolver (merge request)
• Enable shared runners on descendants (merge request)
• Enable enforcing Scan Execution Policies when gitlab-ci.yml is missing (merge request) GitLab Enterprise Edition
• Award emojis to work item notes (merge request)
• Add abuse categories to the new abuse reports list view (merge request)
• Add Terraform State in Project overview by @glauciellesa (merge request)
• Add filter_labels option to the VSD configuration file (merge request) GitLab Enterprise Edition
• Release GitLab for Slack app for Self Managed (merge request)
• Better NPM error messages (merge request)
• Add a callout for rich text editor (merge request)
• Add name field in audit events api (merge request) GitLab Enterprise Edition
• Forward all additional headers to model gateway (merge request) GitLab Enterprise Edition
• Web IDE AI Assisted code suggestions (merge request)
• Add the logic for searching and showing group wiki search (merge request) GitLab Enterprise Edition
• Release link Jira issues to GitLab deployments (merge request)
• Add emoji webhooks (merge request)
• Update Direct Transfer to support import in batches (merge request)
• Add support for award emojis to design comments (merge request)
• No repository mirroring if silent mode is enabled (merge request) GitLab Enterprise Edition
• Clean up mirror_only_branches_match_regex feature flag by @lyb124553153 (merge request) GitLab Enterprise Edition
• Add Geo bulk mark pending batch worker (merge request) GitLab Enterprise Edition
• Adds table ml_model and entity Ml::Model (merge request)
• Add group mention Slack events behind feature flag (merge request)
• Extending the scope of gitlab_schemas to be locked on multiple dbs (merge request)
• Expose null deploy_key_id fields in REST API (merge request)
• Allow to select K8s namespace for environment (merge request)
• GraphQL node for CODEOWNER file validator (merge request) GitLab Enterprise Edition
• Expose user pronouns via GraphQL (merge request)
• Show pipeline warning when 100+ jobs in stage (merge request)
• Implement include_source_code arg for ETV ai requests (merge request) GitLab Enterprise Edition
• Add Microsoft Graph client (merge request) GitLab Enterprise Edition
• Add id to EE MR state widget (merge request) GitLab Enterprise Edition
• Implement include_source_code arg for ETV ai requests (merge request) GitLab Enterprise Edition
• Add Sidekiq queueing application SLIs (merge request)
• Show user popover for assignees/reviewers in sidebar (merge request)
• Repair user sorting with relative url mounts by @markus.ferrell (merge request)
• Keep epics in elasticsearch up to date when epic data changes (merge request) GitLab Enterprise Edition
• Add /completions endpoint to proxy to model gateway (merge request) GitLab Enterprise Edition
• Specify reason when logging user_access_locked audit event (merge request) GitLab Enterprise Edition
• Relay allowlist column added (merge request)
• Add trigger to prevent delete of default org (merge request)
• Add Microsoft Graph client (merge request) GitLab Enterprise Edition
• Enable geo_registries_update_mutation FF by default (merge request) GitLab Enterprise Edition
• Add user_access_unlocked audit event (merge request) GitLab Enterprise Edition
• Improves empty state for dependency proxy (merge request)
• Add Snowplow tracking to VSD metric drill-down links (merge request) GitLab Enterprise Edition
• Enable the moved_mr_sidebar flag by default (merge request)
• Recreate tmp_idx_vulns_on_converted_uuid synchronously (merge request)
• Add raw Javascript tracking for Gitlab Internal events (merge request)
• Add API endpoint for Internal Events Tracking (merge request)
• Replace foreign keys to use the partitioned table - 4 self-managed (merge request)
• Add prevent approval by author check to Gitlab standard (merge request) GitLab Enterprise Edition
• Add ci_config_sha JWT claim (merge request)
• Add Security Policy Default source (merge request) GitLab Enterprise Edition
• Adds frontend boilerplate for /-/ml/models (merge request)
• Show Verified badge for commits signed by Gitlab (merge request)
• Feat: introduce feature flag for profile overflow menu (merge request)
• Silent mode support for Integrations (merge request)
• Add Kubernetes namespace field (merge request)
• Add support for diff suggestions in content editor (merge request)
• Implement mergeRequestDiffs property for MergeRequestType (merge request) GitLab Enterprise Edition
• Create type migration supporting index synchronously (merge request)
• Adds ModelsConstroller#index (merge request)
• Schema definitions for google cloud events (merge request) GitLab Enterprise Edition
• Adds last_enforced_at column to NamespaceLimits (merge request)
• Drop Sidekiq jobs based on feature flag (merge request)
• Create MergeRequestReviewLLmSummary model and table (merge request)
• Log Gitaly metadata when a Gitaly call raises an exception (merge request)
• Cleanup ci_limit_environment_scope feature flag (merge request)
• Add state to catalog_resources table (merge request)
• objectpools: Add pool_repositories table index (merge request)
• Expose explain this vulnerability prompts via GQL VulnerabilityType (merge request) GitLab Enterprise Edition
• Remove comment_on_files feature flag (merge request)
• Add description optional field for Ci::Variable (merge request)
• Finalize conversion for FKs targeting p_ci_builds - 2 self-managed (merge request)
• Add new method for RepositoryInfo RPC (merge request)
• Expose dismissal_reason on VulnerabilityType (merge request) GitLab Enterprise Edition
• Show user popover for MR approvers list (merge request)
• Add todo quick actions to work items (merge request)
• Ban users that use a banned phone number during identity verification (merge request) GitLab Enterprise Edition
• Keep username when switching between author and assignee in filter bar (merge request)
• Add contextual shortcuts for formatting options (merge request)
• Enable rich text editor in submitting a review (merge request)
• Add Microsoft app/graph tables and models (merge request)
• Adds support to the JwtAuthenticatable module (merge request)
• Admin can delete unconfirmed users automatically (merge request) GitLab Enterprise Edition
• Show user popover for sidebar participants list (merge request)
• Add support for saved replies in content editor (merge request)
• Introduce API for contributed projects (merge request)
• Add RSS feed on topic page by @oelmekki (merge request)
• Add resize handlers for images (merge request)
• Add a configuration page for gilab_shell_operation_limit by @lyb124553153 (merge request)
• Add index to support vulnerability_occurrences.uuid type migration (merge request)
• Update relations export API to support batches (merge request)
• Adds tracking columns to namespace limits (merge request)
• Add :create_runner access token scope (merge request)
• Add grouping to audit event type filter (merge request) GitLab Enterprise Edition
• Add div to MR state widget (merge request)
• Add temporary index to support dismissal_reason backfill (merge request)
• Add validation coloring on approvers (merge request) GitLab Enterprise Edition
• Support include rules 'when:' values 'always' and 'never' (merge request)
• Add creation limits for value streams and stages (merge request)
• Enables ai_chat_history_context by default (merge request) GitLab Enterprise Edition
• Added labels to issue search results (merge request) GitLab Enterprise Edition
• Show user popover for discussion note avatar (merge request)
• Extract Jira issue keys for deploy from commits
• Add Gitlab Internal Events to Frontend to unify RedisHLL/Snowplow
• Create table subscription_users_add_on_assignments
• Show Popover on Epic links within Markdown GitLab Enterprise Edition
• Add deferred_count field on deferring Sidekiq jobs
• Compare results for scan_finding approval rules from multiple pipelines GitLab Enterprise Edition
• Add TXT verification time interval
• Add user_access_locked audit event GitLab Enterprise Edition
• Support CI_JOB_TOKEN auth in Deployments API
• Extract Jira issue keys for deploy from commits (merge request)
• Add Gitlab Internal Events to Frontend to unify RedisHLL/Snowplow (merge request)
• Create table subscription_users_add_on_assignments (merge request)
• Show Popover on Epic links within Markdown (merge request) GitLab Enterprise Edition
• Compare results for scan_finding approval rules from multiple pipelines (merge request) GitLab Enterprise Edition
• Create index for project vulnerability_reads on common filters (merge request)
• Support CI_JOB_TOKEN auth in Environments API (merge request)
• Add user_access_locked audit event (merge request) GitLab Enterprise Edition
• Adds download endpoint to MlModel Registry (merge request)
• Add new method for RepositoryInfo RPC (merge request)
• Add unique index for npm packages (merge request)
• Support CI_JOB_TOKEN auth in Deployments API (merge request)
• Add RelatedPipelinesFinder for security policies (merge request) GitLab Enterprise Edition
• Add TXT verification time interval (merge request)
• Readding associations between Organization and Namespaces (merge request)
• Add async index to prepared_at column for merge requests (merge request)
• Finalize ResourceLinkEvents (merge request)
• Add OrganizationSetting model and support for 1 setting (merge request)
• feat: Add support for scope_offset_compressed signature type (merge request) GitLab Enterprise Edition
• Add delay user deletion UI text (merge request) GitLab Enterprise Edition
• Include null values in DORA metrics API response (merge request) GitLab Enterprise Edition
• Adds code_completion method to VertexAi::Client (merge request) GitLab Enterprise Edition
• Add search to audit event type listbox (merge request) GitLab Enterprise Edition
• Log and expose limits changes (merge request) GitLab Enterprise Edition
• Use ignore-all-space when ignoring white space on diffs (merge request)
• Prepare async index for project vulnerability_reads on common filters (merge request)
• Name column in audit event destination (merge request)
• Adds toggle label to shared registry list component (merge request)
• Adds pagination to package assets table (merge request)
• Add the documentation about the new root folder config (merge request)
• Finalize conversion for FKs targeting p_ci_builds (merge request)
• Add vulnerability_attributes to security policy (merge request) GitLab Enterprise Edition
• Add new index to support age filtering (merge request)
• Remove job_webhook_retries_count feature flag (merge request)
• Add gitlab-rspec gem (merge request)
• Add unique index ot ci_triggers.token (merge request)
• Automatically generate a summary for new diffs (merge request)
• Replace foreign keys to use the partitioned table - V3 (merge request)
• Add secure schemas version 15.0.5 (merge request)
• Add deferred_count field on deferring Sidekiq jobs (merge request)
• Add ref_protected to branch and tag webhooks by @zalimander (merge request)

Fixed (143 changes)

• Remove excess heading and subheading (merge request)
• Support award emoji pagination in work items (merge request) GitLab Enterprise Edition
• Truncate chat prompt placeholder in small viewports (merge request)
• Fix MR throughput on the Value Stream Dashboard (merge request) GitLab Enterprise Edition
• Content editor: Fix layout shifting (merge request)
• Improve audit event stream http form disabling (merge request) GitLab Enterprise Edition
• Fix paste in code suggestions (merge request)
• Fix toolbar buttons after preview (merge request)
• Show new streaming destinations first in list (merge request) GitLab Enterprise Edition
• Fix focus on Release Notes input by @glauciellesa (merge request)
• Fix count of all group members in autocomplete (merge request)
• Fix error in augment ancestors for dependency list report (merge request) GitLab Enterprise Edition
• Allow group transfers to go over free user cap (merge request) GitLab Enterprise Edition
• Add missing tooltip for emoji button (merge request)
• New label selection: fix reload after selection with keyboard (merge request)
• Migrate wiki buttons and fix alert (merge request)
• Fix wrapping pattern of buttons by @glauciellesa (merge request)
• Correctly handle invalid dates on Merge Request Analytics page by @dannyelcf (merge request) GitLab Enterprise Edition
• Fix search projects api requests missing scope permission (merge request)
• Fix snippet threads layout (merge request)
• Fix spacing between columns in audit event destination headers (merge request) GitLab Enterprise Edition
• Handle group label priorities (merge request)
• Editor UI: Fix focus ring (merge request)
• Crop long strings in GitLab Duo Chat (merge request)
• Cleanup dynamically_compute_deployment_approval flag (merge request)
• Fixes package registry list sorting UI inconsistency (merge request)
• Fix alignment of to do sort dropdown (merge request)
• Async migration for 'index_vuln_findings_on_uuid_including_vuln_id' (merge request)
• Minor styling fixes for codeowners (merge request)
• MR: Add title and aria-label attributes to the more menu buttons (merge request)
• Hides dependency proxy loading state while paginating (merge request)
• Fix spacing of reply box on highlighted note (merge request)
• Add "owned" parameter to group project listing by @FromTheStackAndBack (merge request)
• Raise exceptions for analytics worker job retry (merge request)
• Remove key_set_optimizer_ignored_columns feature flag (merge request)
• Adds write policy for Model experiments (merge request)
• Fix NoMethodError in MergeTrains::CarFinder (merge request)
• Fix few event types not getting streamed for group push rules changes (merge request) GitLab Enterprise Edition
• Make a request to SpamCheck before creating/updating milestones (merge request)
• Fix error with initialization of protected environments feature by @ShaneMaglangit (merge request)
• Allow guest user to add todos (merge request) GitLab Enterprise Edition
• Include Gitaly feature flags in KAS client gRPC calls (merge request)
• Fix target note background for first timeline note (merge request)
• Add a link to the Omnibus GitLab 16 changes page (merge request)
• Do not show insights DORA4 for unautthorized users (merge request) GitLab Enterprise Edition
• Revert "Upgrade net-ldap gem" (merge request)
• Fix: group id missing in new resource dropdown (merge request)
• Fix explain code text selection (merge request)
• Fix flaky spec (merge request) GitLab Enterprise Edition
• Change remove_hidden_groups type for GraphQL mutation (merge request)
• Default enable remove_deployments_api_ref_sort (merge request)
• Add a migration to reindex commits to fix repository_access_level (merge request) GitLab Enterprise Edition
• Preserve private key newlines in gcp logging (merge request) GitLab Enterprise Edition
• Fix comment on file input (merge request)
• Decrease the "Create" menu offset while impersonating (merge request)
• Fix invite member button initialization on learn gitlab (merge request) GitLab Enterprise Edition
• Persisting pipelines from failed pipeline schedules (merge request)
• Fix validation in UI when adding comments in MR diff (merge request)
• Prevent text overflow when user name is long (merge request)
• Display error in UI when draft note can't be updated (merge request)
• Fix mr analytics query (merge request) GitLab Enterprise Edition
• Include empty/no repo in projects_not_indexed rake task (merge request) GitLab Enterprise Edition
• Fix anonymous reporter bug (merge request) GitLab Enterprise Edition
• Remove no longer needed fix (merge request)
• Make wrong index creation migration a no-op (merge request)
• Fix md shortcuts not working after preview (merge request)
• Avoid setting an invalid TTL in duplicate job middleware (merge request)
• Fix Artifact class content from returning error (merge request)
• Fixes ml_candidate foreign key on user_id (merge request)
• Improve audit events streaming header UX (merge request) GitLab Enterprise Edition
• Fix self deployment approval triggers approval automatically (merge request)
• Update super sidebar nav item spacing (merge request)
• Fix validation in UI when adding comments in MR diff (merge request)
• Fix wikis cannot be edited in rich text (merge request)
• Ignore nil LSN diff values in Lua script for Sidekiq duplicate job (merge request)
• Add internal_include_prepended=true to Bridge (merge request)
• Fix newlines in multiline comment templates (merge request)
• Fixed alignment of MR title texts by @zillemarco (merge request)
• Fix check for ai availability (merge request) GitLab Enterprise Edition
• Fix cancelling of note edits (merge request)
• Dark shadows and overlays in dark mode (merge request)
• Show work item awards when comment is in edit form (merge request)
• Use latest finished pipeline for scan result policy (merge request) GitLab Enterprise Edition
• Fix clear button not working on file tree search (merge request)
• Enable fix of race-condition for merge request MWPS (merge request)
• Sync scan_finding approvals for all latest pipelines in MR (merge request) GitLab Enterprise Edition
• Fix 500 error from visibleForks when user is not authorized (merge request)
• Fix javascript error on trials page (merge request) GitLab Enterprise Edition
• Increase user menu offset when impersonating a user (merge request)
• Set a min-height for wiki list items (merge request)
• Fixes overflow issue with comment edit focus on editor (merge request)
• Fix autocomplete suggestions in issue descriptions (merge request)
• Check scan_types from scan result policy only for scan removal check (merge request) GitLab Enterprise Edition
• Fix loading state of rich text dropdown (merge request)
• Fixes invalid Jira regex matching (merge request)
• Fix GitHub Importer (merge request)
• Remove extra white space at bottom of project settings (merge request)
• Fix the toggle sidebar icon on issues/MRs on mobiles (merge request)
• Mention now mandatory expires_at parameter in the documentation by @kutelev (merge request)
• Fix: locale issue on issue page header actions (merge request)
• Add first name and last name to compay form during registration (merge request) GitLab Enterprise Edition
• Release fix for skipped jobs issue (merge request)
• Fix NoMethodError when current_user is not set (merge request) GitLab Enterprise Edition
• Fix CSP is set in Environment page incorrectly (merge request)
• Note: Fix scrollTo event (merge request)
• Fix for omniauth-shibboleth strategy by @boontifex (merge request)
• Log correct audit event type when a user is blocked (merge request) GitLab Enterprise Edition
• Fixed design management reply background in dark mode (merge request)
• Reset webpack path for Mermaid iFrames
• Fix error logging with GitlabSettings::Options
• Fix GitHub Import user email cache
• Fix empty response for #refs_by_oid method
• Fix Bitbucket Cloud Importer (merge request)
• Dismiss vulnerability with correct params (merge request) GitLab Enterprise Edition
• Properly use Italics of GitLab Sans (merge request)
• Reset webpack path for Mermaid iFrames (merge request)
• Fix GitHub Import user email cache (merge request)
• Ignore deleted labels in aggregations (merge request) GitLab Enterprise Edition
• Fix error logging with GitlabSettings::Options (merge request)
• Fix empty response for #refs_by_oid method (merge request)
• Fix approval notification for MRs without scan result policies (merge request) GitLab Enterprise Edition
• Fix lock icon in collapsed issue sidebar (merge request)
• Fix LDAP custom TLS options parsing (merge request)
• Use Issue#readable_by to solve disparity in APIs for issue links (merge request) GitLab Enterprise Edition
• Fix scan result policies for empty severity levels (merge request) GitLab Enterprise Edition
• Fix security policy editor validation error rendering (merge request) GitLab Enterprise Edition
• Add margin to last user in assignees list (merge request)
• Fix autocomplete of members of group via group share (merge request)
• Fix missing icons on OAuth page in new nav (merge request)
• Fix uniqueness of destination URL not scoped to namespace (merge request) GitLab Enterprise Edition
• Create design repos if absent when verifying on primary (merge request) GitLab Enterprise Edition
• Fix archived projects tab on group overview (merge request)
• Update DAST "Site Profile Validation" links (merge request)
• Fixes draft function to work in other tabs than Overview (merge request)
• Fix error messages for policy editor's yaml mode (merge request) GitLab Enterprise Edition
• Brnaches: Fix alignment issues (merge request)
• Use identicon avatar when gravatar is disabled in access dropdown by @LXY1226 (merge request)
• Adjust finder to scope by group (merge request) GitLab Enterprise Edition
• Create an empty wiki repo if it is not already there (merge request) GitLab Enterprise Edition
• Fix project's placeholder logo border on Billing page (merge request)
• Fix missing content in HTML files (merge request)
• Do not allow emails with trailing spaces to be added as invites (merge request)
• Fix border radius of internal note (merge request)

Changed (218 changes)

• Use Pajamas compliance button (merge request)
• Prepare group wiki registry table for verification (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v1.37.0 (merge request)
• Migrate destroy application button (merge request)
• Add warning when replacing MR description with generated content (merge request) GitLab Enterprise Edition
• Move user settings pages to one column and use sticky header (merge request)
• Fix spacing between rows (merge request) GitLab Enterprise Edition
• Fix code suggestions in overview tab (merge request)
• Set cvss vector default to nil (merge request)
• Enable security policy bot for group policies (merge request) GitLab Enterprise Edition
• UI text inconsistency in Assignee field in work items (merge request)
• Migrate cluster actions dropdown to disclosure by @ShaneMaglangit (merge request)
• More robust Pajamas buttons (merge request)
• Migrate Dropdown to GlCollapsibleListbox (merge request) GitLab Enterprise Edition
• Improve vertical spacing in old style (merge request)
• Update file comment UI and comment in parallel diff (merge request)
• Add variables to policy drawer (merge request) GitLab Enterprise Edition
• Enable dismiss_multiple_vulnerabilities by default (merge request) GitLab Enterprise Edition
• Update policy docs to display required property (merge request)
• Enable Geo mutations when maintenance mode is enabled (merge request) GitLab Enterprise Edition
• Update buttons to use Pajamas::ButtonComponent (merge request)
• Add search capabilities for the (merge request) GitLab Enterprise Edition
• Adjust space in job cell (merge request)
• Update Webhooks Settings to use cards (merge request)
• Enable security_policies_branch_type feature flag by default (merge request)
• Migrate runner registration dropdown to disclosure by @ShaneMaglangit (merge request)
• Tweak for UX inconsistency (merge request)
• Convert smartcard button to Pajama style (merge request) GitLab Enterprise Edition
• Update Free Plan usage description (merge request) GitLab Enterprise Edition
• Enable security_policy_approval_notification FF by default (merge request) GitLab Enterprise Edition
• Require alert integration identifiers to be unique by project (merge request)
• Remove the gitlab duo chat backdrop (merge request)
• Create backlog list with board factory (merge request)
• Change button to pajamas compliant (merge request)
• Add comment to AI feedback (merge request)
• Update constraint on PackageMetadata::Advisory (merge request)
• Improve pipeline header mobile (merge request)
• Migrate comment type dropdown to listbox by @ShaneMaglangit (merge request)
• Update tests and docs for type quick action (merge request)
• Refactor protected environments forms to use ajax (merge request) GitLab Enterprise Edition
• Move Close issue button into dropdown (merge request)
• Remove hard coded language in the HTML markup (merge request)
• Change request to groups API to use all_available (merge request)
• Mobile: Collect runner actions in a dropdown (merge request)
• Add infinite scroll to Invite a group dropdown (merge request)
• User preferences: move to one column layout (merge request)
• Renames parameters on ml_model_packages api (merge request)
• Maintain order when executing PackageLicenses#fetch (merge request) GitLab Enterprise Edition
• Provide UI hint when there are 25 new potential findings (merge request) GitLab Enterprise Edition
• Use keys with hash tag in manifest import metadata (merge request)
• Remove hard coded language (merge request)
• Hides package registry bulk deletion for users without permission (merge request)
• Use Markdown editor in Milestone descriptions (merge request)
• This MR adds more options branch type (merge request) GitLab Enterprise Edition
• Move notification settings into single column card layout (merge request)
• Move Access Tokens settings to one column (merge request)
• Return deploy key title when humanizing access levels (merge request)
• Rename GitLab Chat to GitLab Duo Chat (merge request)
• Simplify markdown form header (merge request)
• Migrate vulnerability project_filter to listbox (merge request) GitLab Enterprise Edition
• Updates widgets to properly use the new card styles (merge request)
• Update linked ressources to use reusable card styles (merge request)
• This MR updated error message (merge request) GitLab Enterprise Edition
• Return "Add" button to issue board (merge request)
• Replace Value Streams Dashboard REST api with graphql (merge request) GitLab Enterprise Edition
• Load merge request for a vulnerability via links (merge request) GitLab Enterprise Edition
• Update GraphQL endpoint to support sorting group variables (merge request)
• Add feedback banner to GitLab for Jira (merge request)
• Prevent creation of audit events for invalid approval rules (merge request) GitLab Enterprise Edition
• Remove delete_scan_result_policies_by_project_id feature flag (merge request)
• Show a loading indicator on paste (merge request)
• Remove SAST UI analyzers options (merge request) GitLab Enterprise Edition
• Index projects in zoekt on import (merge request) GitLab Enterprise Edition
• Update Confirm Danger wording (merge request)
• Expose enterprise group attributes (merge request) GitLab Enterprise Edition
• Use one column for packages and registries settings (merge request)
• Users can be exempt from phone verification (merge request) GitLab Enterprise Edition
• Update grpc to v1.55.0 and add monkey patch (merge request)
• Add Roles and Permissions menu in Admin Area (merge request) GitLab Enterprise Edition
• Add help text for files with code owners (merge request) GitLab Enterprise Edition
• Migrate GlDropdown to GlCollapsibleListbox (merge request) GitLab Enterprise Edition
• Migrate link_to to ButtonComponent by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Increase pipeline header space (merge request)
• Migrate GlDropdown to GlDisclosureDropdown by @ShaneMaglangit (merge request)
• Migrate author select dropdown to gl-collapsible-listbox by @ShaneMaglangit (merge request)
• Group dependencies by component_id for both location and project. (merge request) GitLab Enterprise Edition
• Adding reusable new card styles (merge request)
• This MR adds more options branch type (merge request) GitLab Enterprise Edition
• Permanently move the pages menu entry under deploy (merge request)
• Replace the users foreign key on ml experiments (merge request)
• Show pipeline created time (merge request)
• Add gcp logging streaming destination (merge request) GitLab Enterprise Edition
• Moves Model experiments navbar entry to Analyze (merge request)
• Update "Content Editor" to "Rich Text Editor" in docs (merge request)
• Update dependency auto-build-image to v1.36.0 (merge request)
• Add copy to clarify storage included in Project enforcement (merge request)
• Update dependency auto-deploy-image to v2.51.0 (merge request)
• Migrate detection method to listbox (merge request) GitLab Enterprise Edition
• Cleanup webhook edit form (merge request)
• Add resetting of loading state on error (merge request) GitLab Enterprise Edition
• Upgrade re2 gem to v1.7.0 (merge request)
• Improve typography and remove accordion in audit event stream (merge request) GitLab Enterprise Edition
• Change copy for public snippets in projects (merge request)
• Disable Arkose for Group SAML users (merge request) GitLab Enterprise Edition
• Do not use overridden_uuid to create Vulnerabilities::Finding objects (merge request)
• Update OpenAPI yaml file (merge request)
• Move remove_old_scores method to user trust score class (merge request)
• Add Rails 7 as default configuration (merge request)
• Atwho styling update (merge request)
• Allow null and empty string values for unused field (merge request)
• GitLab project importer/exporter uses work_item_type (merge request)
• Polish UI for group package registry by @tejaskarelia17 (merge request)
• Disable rendering comments in content editor (merge request)
• Update Service Desk documentation for Docker installs (merge request)
• Update documentation to advise the use of runnerToken in Helm chart (merge request)
• Migrate tool with vendor filter to gl-collapsible-listbox (merge request) GitLab Enterprise Edition
• Diff: Comments styling improvements (merge request)
• Add sticky titles and sticky action buttons (merge request)
• Add pagination test (merge request)
• Add archived to the issues index (merge request) GitLab Enterprise Edition
• Add a managing section to BBM docs (merge request)
• Move the footer in sign-in pages to the bottom (merge request)
• Expose shared runner setting (merge request)
• Update dependency auto-build-image to v1.35.0 (merge request)
• Move password form into one column (merge request)
• Auto accept terms for security_policy_bot users (merge request)
• Add and delete rows by scan_result_policies.project_id foreign key (merge request) GitLab Enterprise Edition
• Migrate "Invite a group" dropdown to GlCollapsableListbox (merge request)
• Drop GraphQL generic tracer module (merge request)
• This MR adds error handling (merge request) GitLab Enterprise Edition
• Migrate GlDropdown to GlCollapsibleListbox by @ShaneMaglangit (merge request)
• Center align members table rows (merge request)
• Move access tokens settings into single column (merge request)
• Update icons and text for global search sidebar (merge request)
• Add schema validation for approvals_required (merge request) GitLab Enterprise Edition
• Better clarity when comparing branches (merge request)
• Initialize the conversion for ci_pipeline_variables.pipeline_id (merge request)
• Move token and delete button to form in stream destination (merge request) GitLab Enterprise Edition
• Add a new section to BBM docs (merge request)
• Move text warning to Pajamas component (merge request) GitLab Enterprise Edition
• Moved localization texts from actions to i18n by @catinbag (merge request)
• Hide projects created by banned users (merge request)
• Remove unused anchors in Terraform ci templates by @thejan2009 (merge request)
• Update atwho styling to match new dropdown styles (merge request)
• Fix group project page checkbox bug (merge request) GitLab Enterprise Edition
• Add number of shards setting (merge request)
• Render reference link correctly (merge request)
• Add headers to instance audit event streaming destinations (merge request) GitLab Enterprise Edition
• Webhook settings: Change to one column layout (merge request)
• Enable fluid width listbox in notification settings (merge request)
• Unconfirmed user deletion skips users who have signed in (merge request)
• Update sort fields based on namespaceType (merge request) GitLab Enterprise Edition
• Remove environment_settings_to_graphql FF (merge request)
• Disable startup CSS (merge request)
• Remove the issue_type_uses_work_item_types_table feature flag (merge request)
• Rename 'Key metrics' to 'Lifecycle metrics' in VSA overview page (merge request)
• Gate new container registry features with Gitlab.com_except_jh? (merge request) GitLab Enterprise Edition
• Persisting failed pipelines from pipeline schedules (merge request)
• Add dependency list table on group level (merge request) GitLab Enterprise Edition
• Enable language switcher in the SAML SSO page
• Reword Search maximum depth field description in SAST configuration
• Add support for pagination for group GitLab Enterprise Edition
• Refactoring of work item attributes into a separate component GitLab Enterprise Edition
• UI alignment of streaming audit events GitLab Enterprise Edition
• Introduce new pipeline details header
• Add requeue workers setting
• Migrate " tags_list_row.vue" to GlDisclosure" by @Mughees_
• Remove gray background on reply field (merge request)
• Reverse defer_sidekiq_jobs FF to run_sidekiq_jobs (merge request)
• Generate bot comment for license compliance violations (merge request) GitLab Enterprise Edition
• Reword Search maximum depth field description in SAST configuration (merge request)
• Synchronize scan result policy approval rules on default branch change (merge request) GitLab Enterprise Edition
• Add support for pagination for group (merge request) GitLab Enterprise Edition
• Introduce new pipeline details header (merge request)
• Refactoring of work item attributes into a separate component (merge request) GitLab Enterprise Edition
• Add requeue workers setting (merge request)
• Replace link_to with Pajamas ButtonComponent by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Migrate " tags_list_row.vue" to GlDisclosure" by @Mughees_ (merge request)
• Disable rake gitlab:cleanup:remote_upload_files with bucket prefix (merge request)
• Removed pipeline artifact from total_storage (merge request)
• Require Slack app settings when app is enabled (merge request)
• Move applications settings into single column (merge request)
• Add missing filters to issues list (merge request) GitLab Enterprise Edition
• Remove the auto_merge_labels_mr_widget feature flag (merge request)
• Update explain this vulnerability icon (merge request)
• Remove the sign-in restriction text from sign-up (merge request)
• Remove feature flag (merge request)
• Add export button for violations on Compliance Report (merge request) GitLab Enterprise Edition
• Use one column for account settings (merge request)
• Update design management reply input (merge request)
• Use single column layout for user settings (merge request)
• Add validation for timezone in scan execution policies (merge request) GitLab Enterprise Edition
• Group sbom occurrences by component_id (merge request) GitLab Enterprise Edition
• Updates empty text to be more specific (merge request) GitLab Enterprise Edition
• Improve PAT expiration validation error messages (merge request)
• Migrate GlDropdown to GlDisclosureDropdown by @ShaneMaglangit (merge request)
• Use metadata cache for npm metadata endpoint at project level (merge request)
• Add modal for deleting streaming destination (merge request) GitLab Enterprise Edition
• Implement path-dependent feed token (merge request)
• Migrate GlDropdown to GlDisclosureDropdown by @ShaneMaglangit (merge request)
• Migrate resolved threads dropdown to gl-disclosure-dropdown by @ShaneMaglangit (merge request)
• Cleanup adapt_deprecated_approvals feature flag (merge request) GitLab Enterprise Edition
• Update broadcast message target UI (merge request)
• Migrate GlDropdown to GlDisclosureDropdown by @ShaneMaglangit (merge request)
• Migrate "commit_message_dropdown.vue" to GlDisclosure" by @Mughees_ (merge request)
• Add ordering to the git_rate_limit_users_alertlist API call (merge request) GitLab Enterprise Edition
• Prepare the async index for ci_pipelines (merge request)
• Bump kas-grpc to v0.2.0 (merge request)
• Migrate "timeline_events_item.vue" to GlDisclosure" by @Mughees_ (merge request)
• UI alignment of streaming audit events (merge request) GitLab Enterprise Edition
• Makes RuleScheduleService inherit from BaseProjectService by @NIKU-SINGH (merge request) GitLab Enterprise Edition
• Improve wording for chatops account activation (merge request)
• Enable language switcher in the SAML SSO page (merge request)
• Account for runners with multiple IP addresses (merge request)
• Migrate GlDropdown to GlDisclosureDropdown by @ShaneMaglangit (merge request)
• Change background color in dark mode - login page (merge request)
• Move trust score methods to User Trust Score class (merge request) GitLab Enterprise Edition
• Drop message column from vulnerability_occurrences (merge request)

Deprecated (2 changes)

• Updates Container Registry estimation flag name (merge request)
• Deprecate runner API fields (merge request)

Removed (30 changes)

• Revert "Merge branch '399117-enforce-security-policy-vulnerability_attributes-rules' into 'master'" (merge request) GitLab Enterprise Edition
• Add feature flag to PAT reuse detection (merge request)
• Remove Git repo redownload code path (merge request) GitLab Enterprise Edition
• Drop unused advisory tables (merge request)
• Remove file_md5 column ignore in Debian component files by @sathieu (merge request)
• Remove unused Debian services and worker by @sathieu (merge request)
• Remove introduce_rules_with_needs flag (merge request)
• Remove jitsu authentication (merge request) GitLab Enterprise Edition
• Remove user_details.provisioned_by_group_at column (merge request)
• Remove FE for prometheus API URL (merge request)
• Delete Monitor Metrics module (merge request)
• Remove/update prometheus payload for metric removals (merge request)
• Completely remove POST /ci/lint (merge request)
• Remove domain_verification_operation FF (merge request)
• Drop tmp_index_ci_job_artifacts_on_id_expire_at_file_type_trace (merge request)
• Remove ignore rule for WebauthnRegistration#u2f_registration_id (merge request)
• Cleanup PK conversion for notes table (merge request)
• Delete UI for metrics embeded in markdown (merge request)
• Delete sidekiq worker classes (merge request)
• Remove dismissal_reason feature flag (merge request) GitLab Enterprise Edition
• Remove deprecate_vulnerabilities_feedback feature flag (merge request) GitLab Enterprise Edition
• Remove metric related unused routes from project file (merge request)
• Clean up bigint conversion for ci_pipeline_variables.id (merge request)
• Remove feature flag invalid_scan_result_policy_prevents_merge (merge request) GitLab Enterprise Edition
• Drop U2fRegistrations table (merge request)
• Remove audit_event_group_rollup feature (merge request) GitLab Enterprise Edition
• Schedule tmp_index_ci_job_artifacts_on_id_expire_at_file_type_trace (merge request)
• Remove deprecateVulnerabilitiesFeedback feature flag (merge request) GitLab Enterprise Edition
• Remove license_md5 metric from Service Ping (merge request)
• Removed Clusters from Scan Execution policy Schemas by @NIKU-SINGH (merge request) GitLab Enterprise Edition

Security (17 changes)

• Add authorization to the subscriptions group controller
• Migrate resource_link_events to ghost users (merge request) GitLab Enterprise Edition
• Revert 'security-leaked-ci-job-token-permission' from 'master'
• Use fully qualified ref when loading code owner file
• Increasing security for CI_JOB_TOKEN on public and internal projects
• Remove approvals when the only commit gets amended
• Maintainer can leak masked webhook secrets by manipulating URL masking
• Adjust access to value stream create, edit and destroy actions
• Add authorization validation to GithubController#failures action
• Mitigate epic reference filter ReDOS
• Sanitize user email addresses in admin confirm user dialog
• Fix for fork permissions check in compare controller
• Webhook token leaked in Sidekiq logs if log format is 'default'
• Obfuscate email of service desk issue creator in issue REST API
• Fixes typo on PrometheusClient concern
• Fixes typo on Note model
• Fixes typo on Ci::BuildTraceChunk

Performance (13 changes)

• Memoize known_events_names in hll redis counter (merge request) GitLab Enterprise Edition
• Improve rake elastic:projects_not_indexed query (merge request) GitLab Enterprise Edition
• Make removable checks less expensive (merge request)
• Reduce queries in user profile page (merge request)
• Add changes to move projects to separate index (merge request) GitLab Enterprise Edition
• Remove index on deployments table asynchronously (merge request)
• Remove index_deployments_on_project_id_and_status async-ly (merge request)
• Remove index_deployments_on_project_id_sha async-ly (merge request)
• Enable batch_delay_jira_branch_sync_worker by default (merge request)
• Remove slow uploads fallback query
• Remove slow uploads fallback query (merge request)
• Improve TBT of project file rendered (merge request)
• Remove index events on project id and id desc (merge request)

Other (92 changes)

• Migrate buttons to Pajamas component (merge request)
• Migrate button to Pajamas component (merge request)
• Add style to access_token_expired_email by @KiranSatyaRaj (merge request)
• feat: Remove sec_mark_dropped_findings_as_resolved feature flag (merge request)
• Add group_id in the wiki_blobs search API (merge request)
• Migrate buttons to Pajamas (merge request)
• Migrate button to Pajamas component (merge request)
• Save code suggestions service token (merge request) GitLab Enterprise Edition
• Removes duplicated and unused avatar variable (merge request)
• Omit parentheses in plural labels for quick actions by @KiranSatyaRaj (merge request)
• Migrate button to Pajamas (merge request)
• Migrate buttons to use Pajama component (merge request)
• Remove fix_new_blobs_memoization flag (merge request)
• Merge branch 'bwill/delete-vulnerability-advisories' into 'master' (merge request)
• Drop devault value CI partition tables (merge request)
• Remove temporary index used for backfilling (merge request)
• Remove use of multi in issues rebalancing state (merge request)
• Cleanup feature flags for Kubernetes dashboard (merge request)
• Replace event string with constants in container r. replicator by @bymayanksingh (merge request) GitLab Enterprise Edition
• Rename .rb to .rb.tt for templates used in GitLab templates folder by @ya332 (merge request)
• Replace hardcoded event string with constants in Repository Replicator by @bymayanksingh (merge request) GitLab Enterprise Edition
• Update CodeSuggestions-related settings text on SM (merge request)
• Finalize conversion for FKs targeting p_ci_builds - 4 (merge request)
• Remove use_traversal_ids_for_descendants_scopes FF (merge request)
• Replace hardcoded event string with constant in BlobReplicatorStrategy by @bymayanksingh (merge request) GitLab Enterprise Edition
• Remove FF frozen_outbound_job_token_scopes (merge request)
• Update user type migration finalization method (merge request)
• Remove use_traversal_ids_for_ancestors_upto feature flag (merge request)
• Removal of index events on project id and id desc (merge request)
• Identifying all cross joins between namespaces and users (merge request)
• Add expires_at to service_access_token table (merge request)
• Allow dev and test to get this migration if in SaaS mode (merge request)
• Clean up validate_environment_tier_presence feature flag (merge request)
• Remove redundant usage of Gitlab::I18n.with_locale in mailers by @bymayanksingh (merge request)
• Create service_access_tokens table (merge request)
• Change the default database value of project_view to 2 (merge request)
• Revert "Merge branch '414396-partitioned-fks-v7' into 'master'" (merge request)
• Reindex already existing GroupWikis (merge request) GitLab Enterprise Edition
• Unify true-false validation specs II by @anaschwendler (merge request)
• Add value transformation logic method by @bymayanksingh (merge request) GitLab Enterprise Edition
• Finalize conversion for FKs targeting p_ci_builds - 3 (merge request)
• Remove use_traversal_ids_roots feature flag (merge request)
• Drop FF cluster_agents_limit_tokens_created (merge request)
• Remove use_traversal_ids_for_ancestors feature flags (merge request)
• test: Ensure user is project member in create package service tests by @gerardo-navarro (merge request)
• Remove update_personal_access_token_usage_information_every_10_minutes (merge request)
• Use separate del calls in indexing control clean-up step (merge request) GitLab Enterprise Edition
• Remove use_traversal_ids_for_self_and_hierarchy feature flags (merge request)
• Prepare index for converting events.target_id to bigint (merge request)
• Remove log_response_length feature flag (merge request)
• Remove db events feature flags (merge request)
• Remove filter_vulnerability_findings_dismissed_on_default feature flag (merge request) GitLab Enterprise Edition
• Remove enable_vulnerability_remediations_from_records feature flag (merge request) GitLab Enterprise Edition
• Remove linear_group_descendants_finder_upto feature flag (merge request)
• Unify true-false validation specs by @anaschwendler (merge request)
• Add pipeline name to notification emails by @missy-davies (merge request)
• Remove auditor_billing_page_access feature flag (merge request) GitLab Enterprise Edition
• Update email notification for enterprise users (merge request)
• Clean up ci_jwt_v2_ref_uri_claim FF (merge request)
• Add option to expand file ref in ExpandVariables (merge request)
• Backfill name column for audit event tables (merge request)
• Finish BigInt column swap for self-hosted (merge request)
• Replace foreign keys to use the partitioned table - 5 (merge request)
• Remove issues_full_text_search feature flag (merge request)
• Add and backfill TTL for project pipeline status keys (merge request)
• Remove feature flag maintain_group_wiki_index (merge request) GitLab Enterprise Edition
• Add health status sorting indexes for issues table (merge request)
• Upgrade Rails to 7.0.5
• Validate not null constraint on user type
• Fix spec violation for sidebar health status widget spec (merge request) GitLab Enterprise Edition
• Drop unused columns in sent_notifications (merge request)
• Upgrade Rails to 7.0.5 (merge request)
• Add organization_users table (merge request)
• Remove create_runner_workflow_for_* feature flags (merge request)
• Send the schema_version-commits flag to gitlab-elasticsearch-indexer (merge request) GitLab Enterprise Edition
• Remove parenthesis plurals (merge request) GitLab Enterprise Edition
• Remove the code related to FF simplify_logic_to_find_search_proxy_class (merge request) GitLab Enterprise Edition
• Remove the feature_flag use_base_class_in_proxy_util (merge request) GitLab Enterprise Edition
• Remove feature flag "find_changed_paths_new_format" (merge request)
• Replace foreign keys to use the partitioned table - V4 (merge request)
• Remove temporary container_repositories indexes (merge request)
• Updating dropping table documentation instructions (merge request)
• Validate not null constraint on user type (merge request)
• Finalize conversion for FKs targeting p_ci_builds (merge request)
• Docs for google cloud logging streaming (merge request)
• Remove deleting_account_disabled_for_users FF (merge request) GitLab Enterprise Edition
• Cleanup scan_result_policy_latest_completed_pipeline feature flag (merge request) GitLab Enterprise Edition
• Remove custom_roles_vulnerability feature flag (merge request) GitLab Enterprise Edition
• Upgrade gettext_i18n_rails gem to 1.11.0 (merge request)
• Accept period_time as string on DORA executor (merge request) GitLab Enterprise Edition
• Add schema_version in the commits index mapping (merge request) GitLab Enterprise Edition
• Allow to set labels for Redis calls (merge request)

16.1.6 (2024-01-11)

Security (1 change)

• User password reset accepts multiple email addresses (merge request)

16.1.5 (2023-08-31)

Fixed (1 change)

• Geo: Resync direct upload object stored artifacts GitLab Enterprise Edition

Security (11 changes)

• Add authorization checks to import status endpoint (merge request)
• Update commonmarker to 0.23.10 (merge request)
• Remove DAST secret variables when URL is updated (merge request)
• Maintainer can leak sentry token by changing the configured URL (merge request)
• Service account users are external by default (merge request)
• Additional permission check when editing label (merge request)
• Fix ReDOS in bulk_imports endpoint params (merge request)
• Prevent namespace level banned users from accessing API (merge request)
• Check prohibit_outer_forks in fork relationship api (merge request)
• Prevent traversal for path parameter in refs/switch endpoint (merge request)
• Gitaly keyset pager when pagination none only with tree view (merge request)

16.1.4 (2023-08-03)

No changes.

16.1.3 (2023-08-01)

Added (1 change)

• Add MR reviewers to BitBucketServer import 16-1

Fixed (2 changes)

• Disable IAT verification by default
• Fix FOUC when new sidebar enabled

Security (14 changes)

• Prevent leaking emails of newly created users (merge request)
• Added redirect to filtered params (merge request)
• Relocate PlantUML config and disable SVG support (merge request)
• Sanitize multiple hardlinks from import archives (merge request)
• Validates project path availability (merge request)
• Fix policy project assign (merge request)
• Fix bug where comments on files with incorrect sha breaks UI (merge request)
• Fix pipeline schedule authorization for protected branch/tag (merge request)
• Mitigate autolink filter ReDOS (merge request)
• Fix XSS vector in Web IDE (merge request)
• Mitigate project reference filter ReDOS (merge request)
• Add a stricter regex for the Harbor search param (merge request)
• Update pipeline user to the last policy MR author (merge request)
• Prohibit 40 character hex plus a hyphen if branch name is path (merge request)

16.1.2 (2023-07-04)

Fixed (4 changes)

• Set a min-height for wiki list items
• Fix GitHub Importer
• Fix Bitbucket Cloud Importer
• Fix CSP is set in Environment page incorrectly

Security (1 change)

• Add authorization to the subscriptions group controller (merge request)

16.1.1 (2023-06-28)

Security (12 changes)

• Revert 'security-leaked-ci-job-token-permission-16-1' from '16-1' (merge request)
• Use fully qualified ref when loading code owner file (merge request)
• Maintainer can leak masked webhook secrets by manipulating URL masking (merge request)
• Remove approvals when the only commit gets amended (merge request)
• Add authorization validation to GithubController#failures action (merge request)
• Fix for fork permissions check in compare controller (merge request)
• Webhook token leaked in Sidekiq logs if log format is 'default' (merge request)
• Mitigate epic reference filter ReDOS (merge request)
• Increasing security for CI_JOB_TOKEN on public and internal projects (merge request)
• Adjust access to value stream create, edit and destroy actions (merge request)
• Sanitize user email addresses in admin confirm user dialog (merge request)
• Obfuscate email of service desk issue creator in issue REST API (merge request)

16.1.0 (2023-06-21)

Added (224 changes)

• Initiate the process of group wiki indexing (merge request) GitLab Enterprise Edition
• Add copy reference and email address actions in work items (merge request) GitLab Enterprise Edition
• Implement group-level dependency list export API (merge request) GitLab Enterprise Edition
• Add runner status column (merge request)
• Add a guideline to configure dnsmasq for Pages (merge request)
• Add GeoJSON support for viewing files (merge request)
• Introduce find_changed_paths with merge_commit_diff_mode (merge request)
• Added new component + imoplemented @anna_vovchenko notes (merge request)
• Added not_aimed_for_deletion filter for namespace-project (merge request)
• Adding monthly metric for ci builds (28d) (merge request)
• Show fixed list of audit events in listbox (merge request) GitLab Enterprise Edition
• Add object_attributes.name to pipeline_hooks (merge request)
• Add Add-on purchase API services (merge request) GitLab Enterprise Edition
• Add limit_changes to PlanLimits (merge request)
• Update audit event streams with collapsible UI (merge request) GitLab Enterprise Edition
• Allow PAT creation for instance service accounts (merge request) GitLab Enterprise Edition
• Add popular user fields to GraphQL (merge request)
• User role badges for work item notes (merge request)
• Fix overflow margin on productivity analytics filter bar (merge request) GitLab Enterprise Edition
• Add ci_job_annotations table by @KyleFromKitware (merge request)
• Add API endpoint to get single SAML/SCIM identity (merge request) GitLab Enterprise Edition
• Add state data suport for the new component (merge request)
• Add Add-on purchase API services (merge request) GitLab Enterprise Edition
• Added service and mutation to set user namespace commit email by @zillemarco (merge request)
• Add branch_type validations (merge request) GitLab Enterprise Edition
• Implement package pipelines endpoint (merge request)
• Add upgrade status to runner managers (merge request) GitLab Enterprise Edition
• Add monthly metrics definition for unlink quick action (merge request)
• Track GitLab realm in Code Suggest access token (merge request)
• Add information to runner manager details (merge request)
• Allow to delete UserAchievements by @Taucher2003 (merge request)
• Restore index for contribution analytics (merge request)
• Add API to mark migrations as successful (merge request)
• Seed default organization in development and production databases (merge request)
• Implement rudimentary check to prevent sending secrets to the AI (merge request) GitLab Enterprise Edition
• Add promote_to quick action for work items (merge request)
• Clean up ci_vueify_inherited_group_variables feature flag (merge request)
• Default enable comment_on_files flag (merge request)
• Add vacuum type to vaccum activity view (merge request)
• Add third party alert (merge request) GitLab Enterprise Edition
• Add Telegram notification integrations (merge request)
• Allow users to access agent through user_access keyword (merge request)
• Cron job to delete unconfirmed users after N days (merge request)
• Re-run background migration for PersonalAccessToken#expires_at (merge request)
• Support dotnet nuget api-key option (merge request)
• Add ExplainTool to GitLab Chat & add authorization check (merge request) GitLab Enterprise Edition
• Update Vulnerability::Reads#dismissal_reason if it exists (merge request) GitLab Enterprise Edition
• Add unlink quick actions for issues (merge request)
• Add migration to delete duplicate npm packages (merge request)
• Add pipeline url to webhook payload by @sbansal1999 (merge request)
• Add project_compliance_standards_adherence table (merge request)
• Refactor: user profile page to Vue (merge request)
• Add tracking for bundled JetBrains plugin (merge request)
• Add note contributor and access level (merge request)
• Patch Rails.cache for Redis Cluster compatibility (merge request)
• Add ExplainCode LLM Agent Tool (merge request) GitLab Enterprise Edition
• Add basic default system prompt to LLM Agent (merge request) GitLab Enterprise Edition
• Enable anti-spam for notes (merge request)
• Show detected licenses with their names (merge request) GitLab Enterprise Edition
• Add BigInt dependencyProxyTotalSizeBytes field (merge request)
• Add top border style and size to display label colour in board header (merge request) GitLab Enterprise Edition
• Add permission checks for tools (merge request)
• Track unique users viewing an analytics dashboard (merge request) GitLab Enterprise Edition
• Add workItemUpdated GraphQL subscription (merge request)
• Add omniauthv2-shibboleth provider documentation by @lukaskoenen (merge request)
• Improve table editing in content editor (merge request)
• Expose the prepared_at attribute ot the api (merge request)
• Replace foreign keys to use the partitioned table (merge request)
• Adds authorize endpoint for pacakges/ml_models (merge request)
• Add docs for configuring encrypted SSL keys for Puma (merge request)
• Add delete note action visibility rspec (merge request)
• Add standards adherence tab to compliance report (merge request) GitLab Enterprise Edition
• Support multiple license keys in development or test (merge request)
• Add database structure for add-ons (merge request)
• Google cloud logging streaming strategy (merge request) GitLab Enterprise Edition
• Refactor activate service (merge request) GitLab Enterprise Edition
• Author role badge in work item notes (merge request)
• Defers sidekiq jobs if database health check signals to stop (merge request)
• Add doc for docker thread issue on old OS (merge request)
• Adds migration and backfill migration (merge request) GitLab Enterprise Edition
• Create routing table for ci_builds (merge request)
• Audit events for google cloud logging configurations (merge request) GitLab Enterprise Edition
• Add enterprise columns to users (merge request)
• Add new jsonb column to store settings for default branch protection (merge request)
• Add local_reference (Merge Request ID) to commit template by @zadkiel (merge request)
• Store arkose scores in trust score table (merge request) GitLab Enterprise Edition
• Add routes, controller and view to (merge request) GitLab Enterprise Edition
• Add security bot comment for policy violations in MRs (merge request) GitLab Enterprise Edition
• Add admin_vulnerability to custom roles (merge request) GitLab Enterprise Edition
• Add new columns to scan_result_policies table (merge request)
• Add snippet url to webhook payload by @sbansal1999 (merge request)
• Log event name when yaml definition doesnt exist (merge request)
• Add FIPS mode support to DAST CI template (merge request) GitLab Enterprise Edition
• Ability to add description in uploaded design (merge request)
• Show health badge on Environments index page (merge request)
• Add findingReportsComparer field to MR GraphQL type (merge request) GitLab Enterprise Edition
• Add a GraphQL type for the audit event definitions (merge request)
• Support touch_last_downloaded_at in Packages::Npm::MetadataCache (merge request) GitLab Enterprise Edition
• Add table for the dependency proxy packages settings (merge request)
• Remove ai_redis_cache flag (merge request) GitLab Enterprise Edition
• Enable deleting_account_disabled_for_users by default (merge request)
• Add validation on organizations.path (merge request)
• Add background migration to backfill root storage statistics fork sizes (merge request)
• Audit event for merge request merged deletion started (merge request) GitLab Enterprise Edition
• Adds frontend toggle for Model experiments (merge request)
• Geo: Add verification for design repositories (merge request) GitLab Enterprise Edition
• Adds visualizations to ProjectType (merge request) GitLab Enterprise Edition
• Add upgrade status to RunnerManager in GraphQL (merge request) GitLab Enterprise Edition
• feat: New REST endpoint for project access list of ci job token by @gerardo-navarro (merge request)
• Add MR throughput to value streams dashboard (merge request) GitLab Enterprise Edition
• Add Group Service Accounts API (merge request) GitLab Enterprise Edition
• Show the dismissal reason in finding modal (merge request) GitLab Enterprise Edition
• Add Settings to delete unconfirmed users (merge request)
• Adding table for instance streaming headers (merge request)
• Support creating one project token on trial (merge request) GitLab Enterprise Edition
• Add worker to trigger CreateMetadataCacheService (merge request)
• Fail product analytics initialization after 2 sidekiq failures (merge request) GitLab Enterprise Edition
• Get associated agent info on environment page (merge request)
• Add audit events for issue creation by project access tokens (merge request) GitLab Enterprise Edition
• Add Nuget package description to information returned with a package (merge request)
• Add unique index on merge_request_diff_llm_summaries (merge request)
• Adds policy for read_model_experiments (merge request)
• Adds model for model_experiments_access_level (merge request)
• Add delete option to selected approvers (merge request) GitLab Enterprise Edition
• Adds services to handle MlModel package creation (merge request)
• Remove :admin_mode_for_api FF by @TrueKalix (merge request)
• Cells: Store databases and gitlab schema configuration in YAML (merge request)
• Allow variables in cache:policy field by @renehernandez (merge request)
• Implement diffLlmSummaries property for MergeRequestType (merge request) GitLab Enterprise Edition
• Add artifacts bulk delete (merge request)
• Expose DORA scores via GraphQL (merge request) GitLab Enterprise Edition
• Expand runner details with system id and contact (merge request)
• Cleanup human user type logic (merge request)
• Add links to vulnerability bulk status updates error message (merge request) GitLab Enterprise Edition
• Add service_desk_enabled to service_desk_settings (merge request)
• Add migration for new column on app settings (merge request)
• Cleanup artefacts from notes.id bigint migration (merge request)
• Adds new MlModel package type (merge request)
• Deterministic ordering of value streams (merge request)
• Update mutation for google cloud logging configuration (merge request) GitLab Enterprise Edition
• Add option to allow developer push if there are no branches (merge request)
• Document Flux Receiver integration from agentk (merge request)
• Remove openai_moderation feature flag (merge request) GitLab Enterprise Edition
• Removes circuit_breaker FF (merge request)
• Add DesignManagementRegistry to registrable_type.rb (merge request) GitLab Enterprise Edition
• Add dismissal_reason:smallint to vulnerability_reads (merge request)
• Add a counter metric when job is deferred (merge request)
• Add award emoji to GraphQL note type (merge request)
• Add subtitles on storage usage quotas (merge request) GitLab Enterprise Edition
• Ensure the backfilling of prepared_at is completed (merge request)
• Add internal note feature to work items (merge request)
• Add REST endpoint to delete project from job token scope allowlist (merge request)
• Support Cluster Agent ID in Environment Create mutation (merge request)
• Add initial SummarizeReviewService and docs update (merge request) GitLab Enterprise Edition
• Implements sort for a CI Catalog Resource (merge request)
• Logs additional data for Jira integration (merge request) GitLab Enterprise Edition
• Support ClickUp as an issue tracker by @daniel.vijge (merge request)
• Add API to create JWT tokens for code suggestions (merge request) GitLab Enterprise Edition
• Finalize user type migration (merge request)
• Support updating plan limit enforcement_limit (merge request) GitLab Enterprise Edition
• Add runner managers count to runner details (merge request)
• Add API support for plan limit notification limits (merge request) GitLab Enterprise Edition
• Add audit events for activities performed by a project access token (merge request) GitLab Enterprise Edition
• Destroy mutation for google cloud logging configuration (merge request) GitLab Enterprise Edition
• Add in-memory TimeToMerge virtual VSA stage (merge request) GitLab Enterprise Edition
• Allow expanding and collapsing references (merge request)
• Add ability to read_vulnerability to custom roles (merge request) GitLab Enterprise Edition
• Persist gists import failures (merge request)
• Added aggregation lease column in application settings (merge request)
• Allow 'wiki' to be set as default project view by @jsbittner (merge request)
• New REST endpoint for allowlist of CI_JOB_TOKEN access settings by @gerardo-navarro (merge request)
• Allow escaping code block (merge request)
• Set up no-op VSD aggregation job (merge request)
• Support Cluster Agent ID in Environment Update mutation (merge request)
• Expose createNote permission in work items (merge request)
• Enables "terms-as-tokens" prop on filter bar in Plan Analytics pages (merge request)
• Asynchronously recreate Tanuki Bot records (merge request) GitLab Enterprise Edition
• Add "locked" field to create runner form (merge request)
• Add backend support to filter issues by label (merge request) GitLab Enterprise Edition
• Store telesign risk score in trust score table (merge request) GitLab Enterprise Edition
• Add placeholder for issue url in service desk email (merge request)
• Google cloud logging configuration create api (merge request) GitLab Enterprise Edition
• Expose cluster agent of the environment (merge request)
• Silent Mode: Block many outbound HTTP requests (merge request)
• Add snowplow configuration URL to project settings (merge request)
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Add cancel button when editing broadcast message (merge request)
• Implement npm group level endpoints: CRUD tags and security audit (merge request)
• Fix bug where diff note will sometimes not create for whitespace (merge request)
• Show shared agents in deployment projects (merge request)
• Add personal namespace code suggestions settings (merge request) GitLab Enterprise Edition
• Add vertrex project id to the DB (merge request)
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Introduce Delete environment mutation (merge request)
• Add user preference for Project Overview buttons (merge request)
• Add DAST audit events schema definitions (merge request) GitLab Enterprise Edition
• feat: New REST api endpoint to patch CI_JOB_TOKEN access settings by @gerardo-navarro (merge request)
• Add finalization migration for emails_enabled by @joe-snyder (merge request)
• Add API for deployment frequency forecasting (merge request) GitLab Enterprise Edition
• Add group_id column to dependency_list_exports table (merge request)
• Default enable domain_verification_operation feature flag (merge request) GitLab Enterprise Edition
• Adds CI information to candidate detail (merge request)
• Defer Sidekiq jobs from server middleware and FF (merge request)
• Add Search Migrations Admin API (merge request) GitLab Enterprise Edition
• View description diff in system notes (merge request)
• Remove mock from setWorkItemMetadata for assign/unassign to user (merge request)
• Associate organization with namespaces (merge request)
• Improve accessibility of creating tables (merge request)
• Add new feature flag type called worker (merge request)
• Save filter with "show pipeline ID" (merge request)
• Add exclude_metrics to Value Stream Dashboard YAML config (merge request) GitLab Enterprise Edition
• Calculate and store storage sizes of forks in root storage statistics (merge request)
• Add support for custom mappings on prometheus integrations (merge request)
• Implement package metadata endpoint on the group level (merge request)
• Environment Update GraphQL Mutation (merge request)
• Enable work items type quick action (merge request)
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• [Audit Events] Synchronous database index addition (merge request) GitLab Enterprise Edition
• Support password reset from any verified email (merge request)
• Add HLL counter for users that create a dashboard (merge request) GitLab Enterprise Edition
• Add support for /.well-known/change-password URL (merge request)

Fixed (205 changes)

• Do not diff paths changed in merge commits (merge request) GitLab Enterprise Edition
• Change work item add note permission to createNote (merge request)
• Prevent creating custom stage in VSA with same name as default stage (merge request) GitLab Enterprise Edition
• Add repository size limit check during import (merge request) GitLab Enterprise Edition
• Display all VSA errors on UI upon value stream form validation (merge request) GitLab Enterprise Edition
• Include and process visibility_level (merge request)
• Fix some vulnerability report filter placeholders (merge request) GitLab Enterprise Edition
• Support groups_claim for SAML with multiple providers (merge request)
• Fix: Centered the position of the badge by @imrishabh18 (merge request)
• Fix VSD drilldown links with a custom relative_url_root (merge request) GitLab Enterprise Edition
• Fix OIDC account linking from profile (merge request) GitLab Enterprise Edition
• Fix roadmap filtering for nested epics (merge request) GitLab Enterprise Edition
• Fix scroll top position for anchor links with new navigation (merge request)
• Revert change to cache and image into default (merge request)
• Use a run_after_commit to enqueue Geo::VerificationWorker (merge request) GitLab Enterprise Edition
• Update checkpoint data_type (merge request)
• Mark bulk cron workers as idempotent (merge request) GitLab Enterprise Edition
• Repair blob index for projects with mismatched index_status (merge request) GitLab Enterprise Edition
• Fix resize handle glitch in markdown editor (merge request)
• Draft note timeline border fix (merge request)
• Fix "empty" approval rules when user_ids or group_ids provided (merge request) GitLab Enterprise Edition
• Exclude authors from valid metadata check when uploading symbol package (merge request)
• Fix space is added before quick action issue (merge request)
• Fix bottom border radius of comment form (merge request)
• Move compliance metrics to govern stage (merge request) GitLab Enterprise Edition
• Fix group creation validation error on trials (merge request) GitLab Enterprise Edition
• Do not run bulk cron indexer when cluster is unhealthy (merge request) GitLab Enterprise Edition
• Add SAML message if branches are unauthorized (merge request) GitLab Enterprise Edition
• Productivity Analytics: Remove extra space in search bar by @tejaskarelia17 (merge request)
• Fix size of collapsible section buttons in navigation sidebar (merge request)
• Fix autocomplete members of group via group share in projects (merge request)
• Fix flaky work item notes actions test (merge request)
• Allow user to add empty CI variable in the UI (merge request)
• Ensure project path is trimmed upon project creation (merge request)
• Fix validation in UI when updating notes (merge request)
• Fix roadmap filters for subepics (merge request) GitLab Enterprise Edition
• Remove duplicate package names before insert (merge request)
• Include update quick action errors in note creation (merge request)
• Fix approval rules for a project with no protected branches (merge request)
• Geo: don't create state records when not on Geo (merge request)
• Hide runner cost factor fields for runners (merge request) GitLab Enterprise Edition
• New Sidebar: Fix early ellipsis cut-off (merge request)
• Fix rendering of imported file comments (merge request)
• Upgrade prometheus-client-mmap to v0.24.4 (merge request)
• Downgrade gprc gem from v1.55.0 to v1.42.0 (merge request)
• Fix cherry picks for forks (merge request)
• Fix typo in project variable (merge request) GitLab Enterprise Edition
• Handle GRPC::Core::CallError exception (merge request) GitLab Enterprise Edition
• Add custom nuget version sorter (merge request)
• Updated the spec file by @imrishabh18 (merge request)
• Fix flaky usage_data_spec.rb test failure (merge request)
• Make sure escaped nodes work well with HTML (merge request)
• Ignore selection if not in a table cell (merge request)
• Fix docs link (merge request)
• Prevent GitHub Import to progress worker when import fails (merge request)
• Fix styling of checklists in content editor (merge request)
• Fix navigation scrolling unresolvable discussion (merge request)
• Refactor how HEAD ref is checked for indexing blobs (merge request) GitLab Enterprise Edition
• Fix stuck VSA consistency worker (merge request) GitLab Enterprise Edition
• Fix issues with pasting html in content editor (merge request)
• Fix scoped roadmap loading error and layout (merge request) GitLab Enterprise Edition
• Fix issue with pipes in tables (merge request)
• Trim whitespace on invite member lookups (merge request)
• Fix wrong argument error (merge request) GitLab Enterprise Edition
• Fix broadcast messages expiring cache (merge request)
• Fix placeholder note visibilty after note posted with quick action (merge request)
• Use awardEmojiToggle mutation instead of workItemUpdate (merge request) GitLab Enterprise Edition
• Fix incoming emails body encoding (merge request)
• Fix polling of notes for Epics (merge request) GitLab Enterprise Edition
• Fix explore topic path to render non ASCII characters (merge request)
• Fix 500 error for URI with invalid encoding (merge request)
• Fix typo in CodeSuggestionsAlert by @bbodenmiller (merge request) GitLab Enterprise Edition
• Fix image diff discussions in merge requests (merge request)
• Fix documentation link for policy violation bot comment (merge request) GitLab Enterprise Edition
• Fixed promote label dialog title styles by @catinbag (merge request)
• Extend internal note color behind editor on replies (merge request)
• Fixed internal server error when sorting timelogs by @zillemarco (merge request)
• Fix work item note dark mode UI bugs (merge request)
• Fix filtering board by Started milestone (merge request)
• Fix: user profile time localization issue (merge request)
• Fix LDAP tls_options not working (merge request)
• Fix Haskell syntax highlighting (merge request)
• Allow customers to change payment method (merge request) GitLab Enterprise Edition
• This MR fixes deletion of severity filter (merge request) GitLab Enterprise Edition
• Fix approval group lookup within user namespaces (merge request) GitLab Enterprise Edition
• Display errors in UI correctly with creating notes (merge request)
• Check partial image names when validating default branch image (merge request) GitLab Enterprise Edition
• Fix clusterAgentId not being passed with query (merge request) GitLab Enterprise Edition
• Introduce sidekiq job delay for sync scan finding approval rules (merge request) GitLab Enterprise Edition
• Remove unnecessary unscoped style (merge request)
• Resolve duplicate merge req iids during GitHubImport (merge request)
• Fix SSO subsriptions from falling out of the onboarding and checkout (merge request) GitLab Enterprise Edition
• Fix Spring not working with macOS (merge request)
• Fix consistency VSA check worker (merge request) GitLab Enterprise Edition
• Fix avatar lookups by commit email on network graph (merge request)
• Fix keyboard shortcuts for OKRs (merge request)
• Prevent admins from blocking/banning/deleting themselves in abuse report (merge request)
• Fix memory leak in CI config includes entry (merge request)
• Align clear icon in tree list search (merge request)
• Fix alignment of chevron icon (merge request)
• Fix positioning of MR sidebar at bottom of page (merge request)
• Fix LDAP custom attribute support (merge request)
• Declare the markdown API endpoint a readonly operation by @atomic-committen (merge request)
• Remove ineffective cache call (merge request)
• Revert ReleasesResolver and add VersionsResolver (merge request)
• Set KasCookie only when the environment page is loaded (merge request)
• Fix serialization of pull_requests in Bitbucket Server Import (merge request)
• Add worker to sync scan result policies for a given project (merge request) GitLab Enterprise Edition
• Fixed a small layout issue in the project settings page by @zillemarco (merge request)
• Fix invite members trigger initialization (merge request) GitLab Enterprise Edition
• Fix: mr description edited tooltip locale (merge request)
• Persist name when toggling VSA create templates (merge request) GitLab Enterprise Edition
• Fix for old navigation no term issue (merge request)
• Cast artifact sizes to numbers before adding them (merge request)
• Fix background migration progress report on multi-db (merge request)
• This MR fix layout shift (merge request) GitLab Enterprise Edition
• Load whats new tab when no items present (merge request)
• Add space between signature and tags (merge request)
• Delete Project and related data in ES if use_elasticsearch? is false (merge request) GitLab Enterprise Edition
• GitLab Admins should bypass Group SSO enforcement (merge request) GitLab Enterprise Edition
• Add validation for length of push rules regex fields (merge request)
• Fixed typo on Container registry Azure Object Storage by @zillemarco (merge request)
• Fix NoMethoError on importing notes from Github (merge request)
• Add pagination to protected environments (merge request) GitLab Enterprise Edition
• Work around macOS forking issues with grpc gem update (merge request)
• Show epic and issue dropdown when logged out (merge request)
• Handle invalid MIME in HotlinkingDetector (merge request)
• Do not requeue the indexing worker if failures occur (merge request) GitLab Enterprise Edition
• Autofocus input in gitlab chat (merge request)
• Fix is_blocked_by for epic links (merge request) GitLab Enterprise Edition
• Add DRAWER_Z_INDEX to CRM editor drawer (merge request)
• Null error on VulnerabilityStateTransitionType.author (merge request) GitLab Enterprise Edition
• Fix: issuable list item time locale issue (merge request)
• Show Not Found page if admin/group integration does not exist (merge request)
• Fix alignment of issue fields on small screens (merge request)
• Fix 500 error for domain verification (merge request) GitLab Enterprise Edition
• Fix MR approval rules sync when disabling scan result policy (merge request) GitLab Enterprise Edition
• Fix border radius in send message button (merge request)
• Fix caching issue on vulnerability report (merge request) GitLab Enterprise Edition
• Add check for project visibility (merge request)
• GitLab Chat: fix overflow (merge request)
• Add Metrics Dashboard menu (merge request)
• Fixes JiraIssueKey extractor regex format bug (merge request)
• Add space between project runner buttons (merge request)
• Fix: MR widget timeago locale issue (merge request)
• Fix GraphQL error for VulnerabilityType (merge request) GitLab Enterprise Edition
• Files preview: Fix double border at the top (merge request)
• Fix error creating import for unresolvable host (merge request)
• Fix Sidekiq crash when gitlab.yml contains UTF-8 characters (merge request)
• Fix feedback link in GitLab chat (merge request)
• Cleanup packages_delete_orphaned_dependencies_worker FF (merge request)
• Fix FileTree component height (merge request)
• Update Users API (merge request)
• Gracefully handle TooManyIps exception (merge request)
• Add default standard code for Jira exceptions (merge request)
• Added state transition (merge request) GitLab Enterprise Edition
• Update drawers to use .content-wrapper for height offset (merge request)
• Fix URL anchor (merge request)
• Disable browse button when job has no metadata.gz (merge request)
• Proper handle null values returned from BitBucket Cloud API (merge request)
• Handle exception for binary files blame (merge request)
• Add a validation for branch name on push (merge request)
• Add a migration to reindex all project wikis to fix wrong values (merge request) GitLab Enterprise Edition
• Fix keyboard accessibility in content editor (merge request)
• Fixes the regex issue (merge request)
• Fix commits list date format (merge request)
• Enable task list in milestone description by @gerardo-navarro (merge request)
• Include members shared into project ancestors in MR assignee dropdown (merge request)
• Fix participants detection for system notes (merge request)
• Removes additional details from audit event message (merge request) GitLab Enterprise Edition
• Fix the greedy regex (merge request)
• Fix Value steam analytics label search for large groups (merge request)
• Removing release link from error tracking details info (merge request)
• Fix OKR progress tooltip typo (merge request)
• Fixed project label in leave modal (merge request)
• Fix domain edit page when auto_ssl failed (merge request) GitLab Enterprise Edition
• Include members shared into project ancestors in issue assignee dropdown (merge request)
• Update top spacing for layout page and content wrapper (merge request)
• Handle relative timestamps on blame streaming (merge request)
• Load merge request via merge request links (merge request) GitLab Enterprise Edition
• Queue projects for indexing when missing from the index (merge request) GitLab Enterprise Edition
• Support adding emoji for multiple users (merge request) GitLab Enterprise Edition
• Fix SSO onboarding completion failure (merge request) GitLab Enterprise Edition
• Fix the wi description alignment when the FF is off (merge request)
• Sync Elastic documents if repo/wiki permission gets changed in Project (merge request) GitLab Enterprise Edition
• Use fixed custom hook fallback error message (merge request)
• Fix GroupActivityCard relative metric links (merge request) GitLab Enterprise Edition
• Updated line color for linear regression forecast (merge request) GitLab Enterprise Edition
• Add missing encoding for tag related fields (merge request)
• Update approvals_service to filter dismissed vulnerabilities (merge request) GitLab Enterprise Edition
• Makes roadmap current day indicator & timeline locale aware (merge request) GitLab Enterprise Edition
• List projects pending delete from subgroups (merge request)
• Delete issue email participant entry when someone unsubs (merge request)
• Fix issue link in work item breadcrumb (merge request)
• Fix the work item focus description border (merge request)
• Show policy edit button only when access is available (merge request) GitLab Enterprise Edition
• Fix permission for security policies target development projects (merge request) GitLab Enterprise Edition
• Update TeleSignClient services to handle timeout errors (merge request) GitLab Enterprise Edition
• Use the hidden field to hide the merge_requests created by banned users (merge request) GitLab Enterprise Edition
• Fix snippets_access_level usage in Project Create Service by @Taucher2003 (merge request)
• Fix alignment of user profile info in Safari (merge request)
• New MR widget: Fix border-top (merge request)
• Fix width checkbox column in vulnerability report (merge request) GitLab Enterprise Edition
• Adding JobKind: BUILD to failed jobs query (merge request)
• Enable members_with_shared_group_access feature flag by default (merge request)

Changed (307 changes)

• Migrate GlDropdown to GlCollapsibleListbox by @ShaneMaglangit (merge request)
• Improve stacked achievements (merge request)
• Support variables expansion in id_tokens:aud by @thomasgl-orange (merge request)
• Swap primary key with bigint column for ci_pipeline_variables (merge request)
• Add streaming content type header info to docs (merge request) GitLab Enterprise Edition
• Add disabled text to multi file snippet add button by @catinbag (merge request)
• Add prefix to feed and incoming mail tokens (merge request)
• Updates BBM docs (merge request)
• Add feature flag for global snippet search (merge request)
• Update delete confirmation modal for runner groups (merge request)
• Add highlight color to reply form if comment is highlighted (merge request)
• Update Redis documentation to include Sentinel auth (merge request)
• Add branch_type support to scan result policies (merge request) GitLab Enterprise Edition
• Fix VSD failure on first day of month (merge request) GitLab Enterprise Edition
• This MR adds timezone dropdown for sep (merge request) GitLab Enterprise Edition
• Add Uknown license to Scan Result Policies (merge request) GitLab Enterprise Edition
• Hide tooltip on view summary button on mouseout (merge request)
• Updated status icons for project runners by @catinbag (merge request)
• Migrate GlDropdown to GlCollapsibleListbox by @ShaneMaglangit (merge request)
• Update status for when there (merge request) GitLab Enterprise Edition
• Hide toggle comments button on MR creation view (merge request)
• Correct background in input fields in login pages (merge request)
• Release Security Reports V2 (merge request)
• Show writable forks in WebIDE modal (merge request)
• Add tanuki-ai icon to dropdown items and buttons (merge request)
• Design comments visual update (merge request)
• Check for root namespace before creating add-on purchase (merge request) GitLab Enterprise Edition
• Used namespaced tranlsations in shared/access_tokens by @catinbag (merge request)
• Add a feature flag to disable at all mention (merge request)
• Check spam only for merge requests from public projects (merge request)
• Add timezone support for scan execution policies (merge request) GitLab Enterprise Edition
• Add snowplow tracking to SSO registration (merge request)
• Replaced hardcoded sizes on the Blame page by @catinbag (merge request)
• Add a preparing state before any other MR states (merge request)
• Update the issue identifier logic (merge request)
• Add 24h timeline graph to error tracking UI (merge request)
• Remove aggregation from HLL counter (merge request)
• Migrate merge request actions to Vue (merge request)
• Make migrations skipped in production a no-op (merge request)
• Remove rejecting additional attributes in security policies YAML (merge request) GitLab Enterprise Edition
• Replace keep artifacts checkbox with toggle (merge request)
• Move default into framework name (merge request) GitLab Enterprise Edition
• Create the down method (merge request) GitLab Enterprise Edition
• Update prometheus-client-mmap to v0.24.5 (merge request)
• Remove combined namespace read only git message (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v1.34.0 (merge request)
• Enable new navigation per default for logged-in users (merge request)
• LFS: Make batch requests to return presigned URLs by default (merge request)
• Use GitLab Mono over JetBrains Mono (merge request)
• Update Purchased Storage Card on Usage Quotas page (merge request)
• Migrate WebIDELink to GlDisclosureDropdown (merge request)
• Reduce height of images in design management section (merge request)
• Add dependency list into security and compliance (merge request) GitLab Enterprise Edition
• Clicking on the label focus on password field (merge request)
• Migrate dropdown to new dropdown component by @ShaneMaglangit (merge request)
• Switch to GraphQL in Environment setting page (merge request)
• Delete index_unique_project_authorizations_on_project_id_user_id index (merge request)
• Delete index_members_on_source_id_and_source_type index (merge request)
• Migrate issues dropdowns to gl-disclosure-dropdown by @ShaneMaglangit (merge request)
• Migrate dropdown to new dropdown component by @ShaneMaglangit (merge request)
• Update typo in markdown doc link parser (merge request)
• Use reply icon for comments (merge request)
• This MR updates select all button (merge request) GitLab Enterprise Edition
• Add SCIM identities to User API response (merge request) GitLab Enterprise Edition
• Remove feature flag search_rate_limited_scopes (merge request)
• Update Search/NamespacedClass cop (merge request) GitLab Enterprise Edition
• Downgrade ffi-yajl gem from v2.5.0 to v2.3.4 (merge request)
• style: Adjust the width of status column in admin jobs table by @gerardo-navarro (merge request)
• Add UI control to switch between Zoekt and Elasticsearch (merge request)
• Remove realtime_approvals feature flag (merge request)
• Updates storage enforcement banners to use MiB labels (merge request)
• Used gitlab-ui classes in Feature flag form by @catinbag (merge request)
• Apply without_count: true to the group/{id}/audit_events API (merge request) GitLab Enterprise Edition
• Add custom language highlighting (merge request)
• Migrate GlDropdown to GlCollapsibleListbox by @ShaneMaglangit (merge request)
• Disable Prometheus metrics in GraphQL generic tracer (merge request)
• Migrate user_action_dropdown.vue to GlDisclosureDropdown by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Update "New Group Name" to "New group name" on trial form (merge request) GitLab Enterprise Edition
• Allow writing text in angle brackets (merge request)
• Migrate generic checkbox to Pajamas component by @ShaneMaglangit (merge request) GitLab Enterprise Edition
• Used gitlab-ui classes for time-ago in pipelines list by @catinbag (merge request)
• Enable invalid_scan_result_policy_prevents_merge by default (merge request) GitLab Enterprise Edition
• Update copy around linking of groups (merge request)
• Add fk to schema validations (merge request)
• Add VulnerabilityDetails::NamedListType to GraphQL (merge request) GitLab Enterprise Edition
• Update language from MWPS to auto-merge (merge request)
• Normalization of vertical and horizontal space (merge request)
• Update variables table layout (merge request)
• Remove adding compliance frameworks for personal (merge request) GitLab Enterprise Edition
• Set default project scope based on user permissions (merge request)
• Update streaming audit event page styles (merge request) GitLab Enterprise Edition
• Remove Feature Flag for Deployments API breaking change (merge request)
• Add PAT Prefix Pattern (merge request)
• Allow the MR Widget to redeploy (merge request)
• Re-organize BBM docs (merge request)
• Refactored paginated_table_with_search_and_tabs_spec.js by @catinbag (merge request)
• Geo Replicables - SSF Resync Action (merge request) GitLab Enterprise Edition
• Update parser gem to 3.2.2.1 (merge request)
• This MR adds select all option (merge request) GitLab Enterprise Edition
• Add branch_type support to scan execution policies (merge request) GitLab Enterprise Edition
• Add tooltip to lock icon in issues and merge requests (merge request)
• Add concurrent index for ci_pipeline_variables (merge request)
• Enable scan_result_policy_latest_completed_pipeline by default (merge request) GitLab Enterprise Edition
• Use Content Editor in Epic descriptions (merge request) GitLab Enterprise Edition
• Improve merge requests dashboard titles (merge request)
• Hide new nav callout for new users (merge request)
• Add text generated by AI warning to test suggestion (merge request)
• Update compliance violation report ui styling (merge request) GitLab Enterprise Edition
• Set PG13 for check-migrations job (merge request)
• Adding Secure Files integrity check (merge request)
• Add version format 2 to package metadata sync (merge request) GitLab Enterprise Edition
• Allow Secure Files to be disabled at instance-level (merge request)
• Remove link icon from file gutter (merge request)
• Use tanuki-ai icon for AI features (merge request)
• Changes bytes notation (merge request)
• Added triggers for RootNameStatistics Update (merge request) GitLab Enterprise Edition
• Revert adding ci_secure_files to consolidated object storage (merge request)
• Updated value stream dashboard vulnerability links (merge request) GitLab Enterprise Edition
• Migrate bulk issues edit dropdowns to GlCollapsibleListbox by @ShaneMaglangit (merge request)
• This MR adds new protected branches dropdown (merge request) GitLab Enterprise Edition
• This MR updates select all button (merge request) GitLab Enterprise Edition
• Update dast mixin profile requests (merge request) GitLab Enterprise Edition
• Improve UI for Candidate CI info (merge request)
• Enable cluster agent tokens limit in API by default (merge request)
• Update dependency auto-deploy-image to v2.50.0 (merge request)
• Remove adding compliance frameworks for personal (merge request) GitLab Enterprise Edition
• Adding Secure Files object storage migration rake task (merge request)
• Move masked variable regex warning to help text (merge request)
• Don't set pagination for recursive tree calls (merge request)
• Use latest completed pipeline for security policy comparison (merge request) GitLab Enterprise Edition
• Avoid slow queries in redundant pipelines service (merge request)
• Swap PG 14 to be default, and 13 to be nightly (merge request)
• Combine sign-in text together - part 1/2 (merge request)
• Rename ci/cd minutes to compute in purchase pages (merge request) GitLab Enterprise Edition
• Changes storage magnitude notation (merge request)
• Archive projects toggle behind a feature flag (merge request)
• Validate presence of PersonalAccessToken#expires_at (merge request)
• Removed translation scope from "Learn more" buttons by @catinbag (merge request)
• Remove in progress text (merge request)
• Adds an Elastic migration helper for creating a new index (merge request) GitLab Enterprise Edition
• Add warning to issue description modal (merge request)
• Tweaked visual styles and reoganized some files (merge request)
• Update Admin settings for compute usage (merge request) GitLab Enterprise Edition
• Revert to using SearchService for user autocomplete (merge request)
• Display completed training urls (merge request) GitLab Enterprise Edition
• Reshedule links related migration with (merge request)
• [Audit Events] Provide all audit events under a group via the API (merge request) GitLab Enterprise Edition
• Add option to not show banner broadcast message in CLI (merge request)
• Branches: Branch item update (merge request)
• Update usage charts to use compute terminology (merge request) GitLab Enterprise Edition
• Shows Model experiments menu only if enabled (merge request)
• Refactors api endpoints to use can? (merge request)
• Refactors Controllers to use can? (merge request)
• Moved user_dismissed_before? helper method to EE helper (merge request) GitLab Enterprise Edition
• Update runners empty state (merge request)
• Adding secure files settings to consolidated object storage (merge request)
• Make ci badge design compliant (merge request)
• Return 503 instead of 429 when Gitaly returns ResourceExhausted (merge request)
• Lock net-http version to v0.1.1 (merge request)
• Add header for scan execution policy scanner dropdown (merge request) GitLab Enterprise Edition
• Add runner group count to the runner list (merge request)
• Replaced js-dropdown-input-field with data-testid by @catinbag (merge request)
• UI updates on summarize comments and description (merge request)
• Update license schema max values (merge request) GitLab Enterprise Edition
• Remove hide_create_issue_resolve_all feature flag (merge request)
• Ensure instance admins can admin service accounts (merge request) GitLab Enterprise Edition
• Use issue/MR sticky header titles to link to top of page (merge request)
• Convert the LDAP sign-in form to Pajamas (merge request)
• Rename analyze to analytics in product analytics metrics (merge request) GitLab Enterprise Edition
• Changed the class name .header-search-new to .header-search (merge request)
• Replace spinner with skeleton loader in explain vulnerability drawer (merge request)
• Display tags and "run untagged jobs" as required (merge request)
• Refresh runner update form (merge request)
• Update vulnerability drawer to match others (merge request)
• Update compliance violation report ui styling (merge request) GitLab Enterprise Edition
• Make MigrateSharedVulnerabilityIdentifiers use slow iteration (merge request)
• General improvements in the 2FA form (merge request)
• Update UI text for LFS setting (merge request)
• Update Puma to v6.3.0 (merge request)
• Set status check back to pending on retry (merge request)
• Remove dashboard_saml_reauth_support feature flag (merge request) GitLab Enterprise Edition
• Remove namespace select after group create fails during trial creation (merge request) GitLab Enterprise Edition
• Geo Replicables - SSF Filtering Support (merge request) GitLab Enterprise Edition
• Don't include archived projects by default (merge request)
• Increase padding between epic title and swimlane (merge request) GitLab Enterprise Edition
• Update the JiraCoonect app error message (merge request)
• Explain code: Highlight selected code lines (merge request)
• Raise the permissions of the group-level APIs to owner (merge request)
• Add info about obsolete migrations to elastic rake tasks (merge request) GitLab Enterprise Edition
• Add database index on members (merge request)
• Update spacing of commits list (merge request)
• Remove the feature flag npm_group_level_endpoints (merge request)
• Enforce a character limit of 2 in autocomplete search (merge request)
• Use GraphQl to update environment info (merge request)
• Remove single tab from admin mode (merge request)
• Simplify and bring uniformity to sign-in language (merge request)
• Change the TanukiBot's distance function (merge request) GitLab Enterprise Edition
• Adding Drawio offline support by @ChevronTango (merge request)
• Convert the CROWD sign-in form to Pajamas (merge request)
• Add feedback link to summarized comments (merge request)
• Added missing unit tests for dismissed before callout methods (merge request)
• Adds minimum value validation for plan limits (merge request)
• Add click actions to card titles pointing to corresponding tabs by @daelmo (merge request) GitLab Enterprise Edition
• Only show code suggestions alert after new nav alert is dismissed (merge request) GitLab Enterprise Edition
• Add Info icons to metric labels in the Value Stream Dashboard (merge request) GitLab Enterprise Edition
• Use GraphQl to update environment info (merge request)
• Uses relative path for projects inside Usage Quotas (merge request) GitLab Enterprise Edition
• Update ci minutes settings to compute (merge request) GitLab Enterprise Edition
• Error Tracking - various fixes around stacktrace file path (merge request)
• Feature flag cleanup (merge request) GitLab Enterprise Edition
• Migrate checkbox to be pajamas compliant (merge request)
• Update checkbox to use pajamas by @ShaneMaglangit (merge request)
• Update Nokogiri to v1.15.2 (merge request)
• Use GraphQl to update environment info (merge request)
• Nav Switch Context fix focus (merge request)
• GitLab Chat: Adding empty state (merge request)
• Update grpc to v1.55.0 (merge request)
• Add CRUD instance level audit event streaming destinations (merge request) GitLab Enterprise Edition
• Update summarize comments UI (merge request)
• Cleaned runner header by @catinbag (merge request)
• Modify storage limit to use admin controlled value (merge request) GitLab Enterprise Edition
• Expose namespace root repository size for admins in API (merge request)
• Add new Markdown editor to Topic descriptions (merge request)
• Add links to commit refs (merge request)
• Rename GroupProjectsController file (merge request) GitLab Enterprise Edition
• Edit file: Remove background from tabs (merge request)
• GitLab Chat: Add ability to increase height of text field (merge request) GitLab Enterprise Edition
• Redirect new topic form to the topics list (merge request)
• Release Geo secondary Git over SSH redesign (merge request) GitLab Enterprise Edition
• Remove Open beta messaging for error tracking (merge request)
• Geo Sites - Order Replicable Types (merge request) GitLab Enterprise Edition
• Bump commonmarker gem to 0.23.9 (merge request)
• Convert Abuse Reports Actions Dropdown into Drawer (merge request)
• Disable Service Desk activation if issue tracker is disabled (merge request)
• Fix inputs, events and buttons in edit escalation policies form by @daelmo (merge request) GitLab Enterprise Edition
• GitLab Chat: increase line-height for better readability (merge request)
• GitLab Chat: Change alignment of sources (merge request)
• Update the circuit breaker notifier (merge request)
• Update gitlab-labkit & pg_query (merge request)
• Add query for compressed package metadata (merge request) GitLab Enterprise Edition
• Update compliance framework ui styling (merge request) GitLab Enterprise Edition
• GitLab Chat: Change loading animation of AI replies (merge request) GitLab Enterprise Edition
• Align GitLab chat drawer headers (merge request)
• Use GraphQl to update environment info (merge request)
• Tanuki Bot: Improve chat message appearance (merge request)
• Create the down method (merge request) GitLab Enterprise Edition
• Add brute force migration back (merge request) GitLab Enterprise Edition
• Add projects_ids to set_runner_associated_projects audit event (merge request) GitLab Enterprise Edition
• Update checkbox to use pajamas by @ShaneMaglangit (merge request)
• This MR migrates legacy GlDropdown (merge request) GitLab Enterprise Edition
• Built-in dashboards go above custom ones (merge request) GitLab Enterprise Edition
• Log Sidekiq job_status as deferred for deferred (merge request)
• Migrate GlDropdown to GlListbox in severity filter (merge request) GitLab Enterprise Edition
• Update dependency auto-build-image to v1.33.0 (merge request)
• Use info variant for impersonation alert (merge request)
• Limit the number of agent tokens created (merge request)
• Defers loading of package assets on package details page (merge request)
• Enable and remove user_spam_scores feature flag (merge request)
• Use GraphQl to get environment info (merge request)
• Upgrade prometheus-client-mmap to v0.24.3 (merge request)
• Updates "Submit" button with "Create runner" (merge request)
• Change defer_sidekiq_jobs FF delimiter to _ (merge request)
• Revisited MR empty state by @catinbag (merge request)
• This MR migrates legacy GlDropdown (merge request) GitLab Enterprise Edition
• Remove "already signed in" message on redirect (merge request)
• This MR migrates legacy GlDropdown (merge request) GitLab Enterprise Edition
• Update form submit to use pajamas by @ShaneMaglangit (merge request)
• Add AsciiDoc include for remote URI (merge request)
• Update checkbox to use pajamas by @ShaneMaglangit (merge request)
• Update checkbox to use pajamas by @ShaneMaglangit (merge request)
• Update checkbox to use pajamas by @ShaneMaglangit (merge request)
• Introduce parallelised BitBucket Server Importer (merge request)
• Abuse report worker excludes users in paid groups (merge request)
• Make small updates to GitLab chat UI (merge request)
• Make ci_runners_stale_machines_cleanup_worker job run more frequently (merge request)
• Show explain vuln based on experimental and 3rd party API toggles (merge request) GitLab Enterprise Edition
• Update filter feature flag docs (merge request)
• Upgrade to Puma v6.2.2 (merge request)
• Adding ci_secure_files to backup rake task (merge request)
• Move flash message for unverified domains to local messages by @dannyelcf (merge request)
• Update doorkeeper-openid_connect to v1.8.7 (merge request)
• Update default value for code_suggestions settings (merge request)
• Adjust the correlation id constraint check value in abuse trust scores (merge request)
• Update gitlab-pages (merge request)
• Add moderation status to spamlogs index (merge request)
• Update grpc gem to v1.54.2 (merge request)
• Rename Packages::Package#original_build_info to last_build_info (merge request)
• Migrate status filter to collapsible listbox (merge request) GitLab Enterprise Edition
• Improve branches and tags in commit view (merge request)
• Ensure experimental settings are enabled (merge request) GitLab Enterprise Edition
• Prepare the async index for ci_pipeline_variables (merge request)
• Log rails response length (merge request)
• Add pipeline_ref and pipeline_sha claims to Ci::JwtV2 (merge request)
• Add pre and post import validation to gists import (merge request)
• Shows header of MlExpeirmentIndex on empty state (merge request)
• Improve tests to fit admin mode by @TrueKalix (merge request)
• Add allow_account_deletion to ApplicationSettings by @zhzhang93 (merge request) GitLab Enterprise Edition
• Issuables Designs: Comments actions improvements (merge request)
• Allow adding prometheus-type integrations to HttpIntegrations (merge request)
• Add filter by component names for (merge request) GitLab Enterprise Edition
• Visually align Source Editor toolbar (merge request)
• Restructure and extend scan result policy drawer (merge request) GitLab Enterprise Edition
• Do not return group of current project in list of transfer locations (merge request)
• Rollout of commit_committer_name_check_ff by @zhzhang93 (merge request)
• Remove the feature flag packages_display_last_pipeline (merge request)
• Update dependency auto-deploy-image to v2.49.0 (merge request)
• Update required node version to 18.16.0 or later (merge request)

Deprecated (1 change)

• Deprecate the project_fingerprint field and return uuid (merge request) GitLab Enterprise Edition

Removed (32 changes)

• Remove confidence from vulnerability issue (merge request) GitLab Enterprise Edition
• Migration squash for all migrations from 14.10 (merge request)
• Remove deprecated metrics embeds from GFM (merge request)
• Re-implement sidekiq learn gitlab worker removal migration (merge request)
• Drop project_wiki_repository_states table (merge request)
• Cleanup PK conversion for few notes related tables (merge request)
• Drop WebauthnRegistration#u2f_registration_id column (merge request)
• Remove explicit locking for retrying jobs (merge request)
• Remove synchronize_fork feature flag (merge request)
• Remove temporary index on oauth_access_tokens (merge request)
• Remove Usage Quotas Storage Inline Alert (merge request) GitLab Enterprise Edition
• Stop showing package size on package registry details page (merge request)
• Cleanup super_sidebar_nav feature flag (merge request)
• Remove metric files from db importers (merge request)
• Remove unnecessary index on events async (merge request)
• Remove incorrect enterprise users metrics (merge request) GitLab Enterprise Edition
• Remove not used routes (merge request) GitLab Enterprise Edition
• Remove commits count from daily commits header (merge request)
• Clean metrics/dashboard/* workers and update specs (merge request)
• Remove external_note_author_service_desk feature flag (merge request)
• Remove ClearSharedRunnersMinutesWorker and related (merge request)
• Ignore message in Vulnerabilities::Finding (merge request) GitLab Enterprise Edition
• Remove keyboard shortcuts for deprecated Metrics (merge request)
• Remove file_md5 from debian component files by @sathieu (merge request)
• Delete Monitor Metrics settings UI (merge request)
• Remove project_ci_cd_settings#opt_in_jwt column (merge request)
• Remove links to Metrics in Environments (merge request)
• GraphQL: Remove Mutation.ciCdSettingsUpdate mutation (merge request)
• Delete Metrics form navigation (merge request)
• Drop time_format_in_24h column (merge request)
• Remove use of vulnerabilities[].message (merge request) GitLab Enterprise Edition
• Remove puma worker killer (merge request)

Security (23 changes)

• Fixes typo on project error tracking spec
• Fixes typo on rake tasks documentation
• Fixes typo on Ci::JobArtifact model
• Use recently renamed PathTraversal instead of Utils.check_path_traversal (merge request)
• Fix XSS in Abuse Reports form action (merge request)
• Import source owners with maintainer access if importer is a maintainer (merge request)
• Set IP in ActionContoller filter before IP enforcement is evaluated (merge request)
• Improve ambiguous_ref? logic to include heads and tags (merge request)
• Check for register_project_runners permission at service level (merge request)
• Reject NPM metadata requests with invalid package_name (merge request)
• Filter inaccessible issuable notes when exporting project (merge request)
• Escape the source branch link correctly (merge request)
• Ignore user-defined diff paths in diff notes (merge request)
• Block tag names that are prepended with refs/tags/, due to conflicts (merge request)
• Resolve Overall Project Vulnerability Disclosure (merge request)
• Fix DoS (zip bomb) on test report artifacts (merge request)
• Use UntrustedRegexp to protect FrontMatter filter (merge request)
• Use UntrustedRegexp to protect InlineDiff filter (merge request)
• Use UntrustedRegexp to protect MathFilter regex (merge request)
• Validate description bytesize in labels (merge request)
• Prevent primary email returned as verified on unsaved change (merge request)
• Fix arbitary file read via filename param (merge request)
• Add temp flag to prevent inserting unapproved content (merge request) GitLab Enterprise Edition

Performance (12 changes)

• Remove inline_haml_diff_line_rendering feature flag (merge request)
• Add cross-slot pipeline functionality (merge request)
• Remove project_statistics_bulk_increment feature flag (merge request)
• Improve group issues query for Reporters and above (merge request)
• Exclude deleted projects from scan execution rule (merge request)
• LFS: Serve pre-signed URLs in /lfs/objects/batch (merge request)
• Remove the join query for global search of blobs (merge request) GitLab Enterprise Edition
• Optimize ci_access_authorized_for? query (merge request)
• Submit JiraConnect::SyncBranchWorker in batches (merge request)
• Enable and remove the FF ci_batch_project_includes_context (merge request)
• Remove project_id from join query in project search for blob (merge request) GitLab Enterprise Edition
• Async remove 'merge_requests_state_id_temp_index' (merge request)

Other (98 changes)

• Refactor from link_type to resource_link by @FromTheStackAndBack (merge request)
• Replace issues health status sorting indexes Async (merge request)
• Remove progress bar from subscription flow (merge request) GitLab Enterprise Edition
• Add work_item_type_id closed_at index on issues table (merge request)
• Bump gitlab_quality-test_tooling gem version (merge request)
• Finalize conversion for FKs targeting p_ci_builds (merge request)
• Remove feature flag ci_job_artifacts_backlog_work (merge request)
• Move namespace errors to the namespace name input (merge request) GitLab Enterprise Edition
• Update merge train error messaging with link to docs by @missy-davies (merge request) GitLab Enterprise Edition
• Replace foreign keys to use the partitioned table (merge request)
• Remove branch_rules feature flag (merge request)
• Remove feature flag "inherit_approval_rules_on_creation" (merge request)
• Roll-out direct upload artifacts to final location (merge request)
• Error Tracking: Remove ingestion API (merge request)
• Remove use_traversal_ids_groups_finder feature flag (merge request)
• Validate foreign keys targeting p_ci_builds (merge request)
• Fine tune over limit email notification worker (merge request) GitLab Enterprise Edition
• Revert "Merge branch '382033-force-partition-attach' into 'master'" (merge request)
• Remove use_pipeline_over_multikey feature flag (merge request)
• Add version note related to design description (merge request)
• Add feature flag to disable cancel redundant pipelines (merge request)
• Documentation for deferring sidekiq using db health status (merge request)
• Usage data related scopes use the work_item_types table (merge request)
• Increase coverage for different UI states (merge request) GitLab Enterprise Edition
• Remove spec violations and refactor test (merge request) GitLab Enterprise Edition
• Error Tracking: Consolidate Clickhouse specific feature flag (merge request)
• Update Gitlab Shell version to 14.23.0 (merge request)
• Swap notes.id to bigint for GitLab.com (merge request)
• Migrate tags sort dropdown to GlCollapsibleListbox (merge request)
• Update grape gem to version 1.7.0 (merge request)
• Remove unused 'hideProjects' prop and its related refs by @asadath1395 (merge request)
• Remove vm modification violation (merge request) GitLab Enterprise Edition
• Remove super_sidebar_peek feature flag (merge request)
• Remove ci_multi_doc_yaml FF (merge request)
• Refactor test to solve spec violations (merge request) GitLab Enterprise Edition
• Remove flag always_perform_delayed_deletion (merge request)
• Fix typo of "superseded" (merge request)
• Add default database values for user_preferences table (merge request)
• Add path attribute to organizations (merge request)
• Add default database value for notified_of_own_activity column (merge request)
• Improve test suite performance (merge request) GitLab Enterprise Edition
• Remove broadcast_messages.namespace_id column (merge request)
• Update Epics API for Grape 1.7 compatibility (merge request) GitLab Enterprise Edition
• Add instance-level switch for Code Suggestions for SM (merge request)
• Remove the feature_flag separate_elastic_wiki_indexer_for_project (merge request) GitLab Enterprise Edition
• Clean up tofa* db columns (merge request)
• Update Gitlab Shell version to 14.22.0 (merge request)
• Fix followup issues in ZeroShot Agent (merge request) GitLab Enterprise Edition
• Adding cells blueprint FAQ section (merge request)
• Remove authorize_groups_query_without_column_cache feature flag (merge request)
• Synchronously remove merge_requests_state_id_temp_index (merge request)
• Exposing db health check methods from sidekiq workers (merge request)
• Ensure sso signup through signin onboards (merge request) GitLab Enterprise Edition
• Cleanup sync_approval_rules_from_findings feature flag (merge request) GitLab Enterprise Edition
• Add Code Suggestions token into AppSettings (merge request)
• Remove password_reset_any_verified_email FF (merge request)
• Update Releases API for Grape 1.7 compatibility (merge request)
• Don't fire queries to find gitlab_schema of table (merge request)
• Remove default_pat_expiration FF (merge request)
• Part 3: issues.issue_type column related scopes updated (merge request)
• Remove feature flag for hiding Monitor Metrics visibility setting (merge request)
• Use .gl-rounded-top-base for card header (merge request)
• Remove legacy CI predefined variables (merge request)
• Adds model_registry feature flag (merge request)
• Prevent BitBucket Cloud Import from importing duplicated items (merge request)
• Remove GitHubImport deprecated workers (merge request)
• Remove unique index on organizations.name (merge request)
• Update ResetSkippedJobsService to support multiple jobs (merge request)
• Make API::Release::Links tests faster (merge request)
• Use utility classes instead of custom CSS rules (merge request)
• Update Epics API for Grape 1.7 compatibility (merge request) GitLab Enterprise Edition
• Use listbox in activity_filter (merge request) GitLab Enterprise Edition
• Add async indexes for VSA tables (merge request)
• Add store labels to all Rails.cache metrics (merge request)
• Fix async index creation for long tables (merge request)
• Backfill resource link events (merge request)
• Remove the fix DORA frequency calculation FF (merge request) GitLab Enterprise Edition
• Cleanup remove_scan_result_policy_transaction feature flag (merge request) GitLab Enterprise Edition
• Update Gitlab Shell version to 14.21.0 (merge request)
• Remove temp index on issues.issue_type for incidents (merge request)
• Fix cross-slot request counting methodology (merge request)
• Create temporary index for system_note_metadata (merge request)
• Polish the trials form and reduce code duplication (merge request) GitLab Enterprise Edition
• Remove invalid protected_environment_deploy_access_levels groups (merge request)
• Remove record_issue_and_mr_assignee_events FF (merge request)
• Remove batched_migrations_parallel_execution flag (merge request)
• Remove remaining "wip" logic from spec (merge request)
• Add empty structure for LLM Agents (merge request) GitLab Enterprise Edition
• Add cluster_agent_id FK to environments (merge request)
• Prepare index_issues_on_work_item_type_id index in Gitlab.com (merge request)
• Use listbox in cluster_filter (merge request) GitLab Enterprise Edition
• Remove optional runner token encryption for groups and projects (merge request)
• Enable password_reset_any_verified_email by default (merge request)
• Document pass_user_identities_to_ci_jwt usage by @joe-snyder (merge request)
• Prepare FKs for converting notes.id to bigint (merge request)
• Remove use_traversal_ids_for_ancestor_scopes feature flag (merge request)
• Migrate custom CSS to utility classes (merge request) GitLab Enterprise Edition
• Remove the vsa_group_and_project_parity FF (merge request) GitLab Enterprise Edition

16.0.8 (2023-08-01)

Fixed (1 change)

• Disable IAT verification by default

Security (13 changes)

• Prevent leaking emails of newly created users (merge request)
• Added redirect to filtered params (merge request)
• Relocate PlantUML config and disable SVG support (merge request)
• Sanitize multiple hardlinks from import archives (merge request)
• Validates project path availability (merge request)
• Fix policy project assign (merge request)
• Fix pipeline schedule authorization for protected branch/tag (merge request)
• Mitigate autolink filter ReDOS (merge request)
• Fix XSS vector in Web IDE (merge request)
• Mitigate project reference filter ReDOS (merge request)
• Add a stricter regex for the Harbor search param (merge request)
• Update pipeline user to the last policy MR author (merge request)
• Prohibit 40 character hex plus a hyphen if branch name is path (merge request)

16.0.7 (2023-07-04)

Security (1 change)

• Add authorization to the subscriptions group controller (merge request)

16.0.6 (2023-06-28)

Security (12 changes)

• Revert 'security-leaked-ci-job-token-permission-16-0' from '16-0'" (merge request)
• Use fully qualified ref when loading code owner file (merge request)
• Maintainer can leak masked webhook secrets by manipulating URL masking (merge request)
• Remove approvals when the only commit gets amended (merge request)
• Add authorization validation to GithubController#failures action (merge request)
• Fix for fork permissions check in compare controller (merge request)
• Webhook token leaked in Sidekiq logs if log format is 'default' (merge request)
• Mitigate epic reference filter ReDOS (merge request)
• Increasing security for CI_JOB_TOKEN on public and internal projects (merge request)
• Adjust access to value stream create, edit and destroy actions (merge request)
• Sanitize user email addresses in admin confirm user dialog (merge request)
• Obfuscate email of service desk issue creator in issue REST API (merge request)

16.0.5 (2023-06-16)

Fixed (1 change)

• Update gitlab-elasticsearch-indexer version (merge request)

Changed (1 change)

• Make MigrateSharedVulnerabilityIdentifiers use slow iteration (merge request) GitLab Enterprise Edition

16.0.4 (2023-06-08)

Fixed (1 change)

• Fix LDAP tls_options not working (merge request)

16.0.3 (2023-06-06)

Fixed (3 changes)

• Fix memory leak in CI config includes entry (merge request)
• Fix MR approval rules sync when disabling scan result policy (merge request) GitLab Enterprise Edition
• Fix serialization of pull requests in BitbucketServer Import (merge request)

Performance (1 change)

• LFS: Serve pre-signed URLs in /lfs/objects/batch (merge request)

16.0.2 (2023-06-05)

Fixed (1 change)

• Fix Sidekiq crash when gitlab.yml contains UTF-8 characters

Changed (1 change)

• Introduce parallelised BitBucket Server Importer

Security (16 changes)

• Fix DoS on test report artifacts (merge request)
• Fix XSS in Abuse Reports form action (merge request)
• Escape the source branch link correctly (merge request)
• Import source owners with maintainer access if importer is a maintainer (merge request)
• Filter inaccessible issuable notes when exporting project (merge request)
• Block tag names that are prepended with refs/tags/, due to conflicts (merge request)
• Set IP in ActionContoller filter before IP enforcement is evaluated (merge request)
• Prevent primary email returned as verified on unsaved change (merge request)
• Use UntrustedRegexp to protect FrontMatter filter (merge request)
• Improve ambiguous_ref? logic to include heads and tags (merge request)
• Use UntrustedRegexp to protect InlineDiff filter (merge request)
• Ignore user-defined diff paths in diff notes (merge request)
• Reject NPM metadata requests with invalid package_name (merge request)
• Use UntrustedRegexp to protect MathFilter regex (merge request)
• Resolve Overall Project Vulnerability Disclosure (merge request)
• Validate description length in labels (merge request)

16.0.1 (2023-05-22)

Security (1 change)

• Fix arbitary file read via filename param (merge request)

16.0.0 (2023-05-18)

Added (168 changes)

• Add X-GitLab-ConfidentialIssue: header boolean by @micah (merge request)
• Adds CI information to candidate detail (merge request)
• Added pipelines shortcut by @AlexNewson (merge request)
• Add user deactivate service (merge request) GitLab Enterprise Edition
• Updated code based on suggestion (merge request)
• feat: Add lock_version to milestone by @gerardo-navarro (merge request)
• Enable import_details_page ff by default (merge request)
• Add audit events schema definitions (merge request) GitLab Enterprise Edition
• Add specs for ApprovalProjectRule creation (merge request)
• Add environment tier to deployment webhooks (merge request)
• Add keyword to allow multiple cache fallback keys by @renehernandez (merge request)
• Add emoji awards for work item (merge request) GitLab Enterprise Edition
• GraphQL project fields for refs containing a commit (merge request)
• Make group-level git protocol control available (merge request)
• [Audit Events] Asynchronous database index addition (merge request) GitLab Enterprise Edition
• Show alert about any configured deploy freezes (merge request)
• Model and table for google cloud logging integration (merge request)
• Add to do widget for work items (merge request) GitLab Enterprise Edition
• Add Zola template for .gitlab-ci.yml by @homersimpsons (merge request)
• Allow sending secret detection vulnerabilities to the AI API (merge request) GitLab Enterprise Edition
• Enable realtime approval updates by default (merge request)
• Add coverage fuzzing to registration features (merge request) GitLab Enterprise Edition
• Add update_design permission to check user rights to edit description (merge request)
• Add blocked_by and blocks quick actions for issues (merge request) GitLab Enterprise Edition
• Implement YAML config file for the Value stream dashboard (merge request) GitLab Enterprise Edition
• Add branches to the initial Jira data sync (merge request)
• Adds PAT based auth (merge request)
• Add model for storing ai ci editor conversations (merge request)
• Add dismissal reason and comment to vulnerability bulk updates (merge request) GitLab Enterprise Edition
• Add a Breach and Attack Simulation CI template (merge request) GitLab Enterprise Edition
• Add support for npm group level endpoints in compressed json middleware (merge request)
• Add RTL support in content editor (merge request)
• Add support for basic auth on Maven registry download endpoints (merge request)
• Add health_status to webhook payload data (merge request) GitLab Enterprise Edition
• Add update action and update service for Abuse Reports (merge request)
• Resource access token rotation API (merge request)
• Add model for storing ai ci editor conversations (merge request)
• Add ability to read_vulnerability to custom roles (merge request)
• Extend VertexAi::Client to add text/code/message_chat methods (merge request) GitLab Enterprise Edition
• Add documentation for Compliance Framework CSV Export (merge request) GitLab Enterprise Edition
• Enable feature flags for new runner creation (merge request)
• Add SecureFlag training provider by @bruce.lay (merge request)
• Support + and +s reference expansion for work items (merge request)
• Shows link to jobs on the list of Ml::Candidate (merge request)
• Create a service to build npm metadata cache record (merge request)
• Enable the feature flag ci_include_components (merge request)
• Add HLL counter for projects that initialize product analytics (merge request) GitLab Enterprise Edition
• Add merged merge request delete audit event (merge request) GitLab Enterprise Edition
• PAT rotation API (merge request)
• Enable work item conversion (merge request)
• Add GraphQL query for inherited CI variables (merge request)
• Allow remember me to be set in Admin area general settings (merge request)
• Add truncated text component (merge request)
• Show services on Environments index page (merge request)
• Backend to allow remember me to be disabled (merge request)
• Remote Development feature behind a feature flag (merge request)
• Add vulnerabilities counts to VSD (merge request) GitLab Enterprise Edition
• Add GraphQL support for visibility_pipeline_id (merge request)
• Add type quick action for work items (merge request)
• Expose reference and createNoteEmail fields (merge request)
• Add runner field to job_type by @TrueKalix (merge request)
• Create routing table for ci_builds (merge request)
• Geo Sites - Add primary last event id (merge request) GitLab Enterprise Edition
• Add data migration for human user type (merge request)
• Implement Gitlab::Llm::Anthropic::Client (merge request)
• Skip copy job artifacts uploaded to final location (merge request)
• Implement runner backoff for migrations (merge request)
• Expose Issues Completed under GraphQL flow metrics (merge request) GitLab Enterprise Edition
• Preload SamlProvider for cross child epics groups (merge request) GitLab Enterprise Edition
• Only allow user to be remembered if application setting enabled (merge request)
• Enable vsa_group_and_project_parity FF by default (merge request) GitLab Enterprise Edition
• Add RedisHLL counter for creating dashboards (merge request) GitLab Enterprise Edition
• Add redis counter for viewing dashboard (merge request) GitLab Enterprise Edition
• Geo Sites - Read Help Icon to Secondary Site (merge request) GitLab Enterprise Edition
• Add new properties to GET /users/:user_id/projects (merge request)
• Add export button for framework report (merge request) GitLab Enterprise Edition
• Add support for cancelling drag on Esc key press (merge request) GitLab Enterprise Edition
• Add ability to filter github repositories by relation type (merge request)
• Enable GlFilteredSearch terms-as-tokens prop on Plan pages (merge request)
• Add output moderation to OpenAI::Client (merge request) GitLab Enterprise Edition
• Add ability to add/edit compliance frameworks directly from report (merge request) GitLab Enterprise Edition
• Add Value Stream Dashboard tracking table (merge request)
• Skip phone verification when TeleSign is down (merge request) GitLab Enterprise Edition
• Disallow runner registration if allow_runner_registration_token disabled (merge request)
• Add new table to store note metadata (merge request)
• Allow all users to opt-in to the navigation redesign beta (merge request)
• Adding create API for instance audit external destinations (merge request) GitLab Enterprise Edition
• Adds link to settings from dependency proxy (merge request)
• Reflect state transition comments in system notes (merge request) GitLab Enterprise Edition
• Associate Ml::Candidate to Ci::Build (merge request)
• Create the Organization model (merge request)
• Adds digest label & copy button for dependency proxy UI (merge request)
• Add support for new vulnerability status filtering (merge request) GitLab Enterprise Edition
• Enable sync_approval_rules_from_findings by default (merge request)
• Add option to keep quick actions in text (merge request)
• Add Abuse Reports Detail View (merge request)
• Add moderation to OpenAI::Client (merge request) GitLab Enterprise Edition
• Add settings to database (merge request)
• Add runners to job/pipeline seed data by @TrueKalix (merge request)
• Create Abuse Report Events table (merge request)
• Add project cell admin jobs vue by @TrueKalix (merge request)
• Add Remember Me Enabled to Application Settings (merge request)
• Create a new table to hold diff summaries (merge request)
• Create bot user when security policy is linked (merge request)
• Autofocus link URL when editing link (merge request)
• Add geo_sites API endpoint (merge request) GitLab Enterprise Edition
• Add PA configuration to project level settings (merge request)
• Add ref_path to CI job JWTs (merge request)
• Allow uploading more image types (merge request)
• Add maximum length validation for ci_builds columns (merge request)
• Add cost tracking to OpenAi::Client (merge request) GitLab Enterprise Edition
• Create partitioned table for VSD counts (merge request)
• Feature Flag: Add FF for Rust metrics marshaling (merge request)
• Add registry table to track replication and verification state (merge request)
• Add column visibility_pipeline_id (merge request)
• Enable feedback deprecation by default (merge request)
• Improve the performance of the "vulnerability report" page (merge request) GitLab Enterprise Edition
• Add maintenance mode to registration features (merge request) GitLab Enterprise Edition
• Adds link to settings on container registry image list page (merge request)
• Add first assigned to Issue and MR events to VSA (merge request) GitLab Enterprise Edition
• Add the tanuki_bot migration/model (merge request) GitLab Enterprise Edition
• Enable mr widget V2 by default (merge request)
• Improve error messages by @TrueKalix (merge request)
• Enable use_merge_base_for_security_widget by default (merge request)
• Add support for TOFA AI API (merge request)
• Add private endpoint to show github import errors (merge request)
• Track spam scores for users (merge request)
• Add ci_max_includes to application settings (merge request)
• Add tooltips to Value Stream Dashboard sparkline charts (merge request) GitLab Enterprise Edition
• Add jobs count admin jobs vue by @TrueKalix (merge request)
• Add geo sites fixtures schemas (merge request) GitLab Enterprise Edition
• Add Tanuki Bot backend service and API (merge request) GitLab Enterprise Edition
• Add artifacts management page (merge request)
• Show services on Environments index page (merge request)
• Add ciPipelineStage to QueryType (merge request)
• Add the tanuki_bot migration/model (merge request) GitLab Enterprise Edition
• Introduce "update filters" popover after assigning framework (merge request) GitLab Enterprise Edition
• Enable dismissal_reason feature flag by default (merge request) GitLab Enterprise Edition
• Report abuse to admin for WI notes (merge request)
• Enable Fetching upstream to the fork (merge request)
• Add ability to add/remove compliance framework from single item (merge request) GitLab Enterprise Edition
• Add backend for setWorkItemMetadata (merge request)
• Add display_color to epic_boards (merge request)
• Add ability to disable social feature (following) (merge request)
• Add job filter admin jobs vue by @TrueKalix (merge request)
• Add user feedback (merge request) GitLab Enterprise Edition
• Add intersection observer admin jobs vue by @TrueKalix (merge request)
• Add audit event schema definitions (merge request) GitLab Enterprise Edition
• Set minimum role for importing projects to Maintainer (merge request)
• feat: New REST api endpoint to fetch CI_JOB_TOKEN access settings by @gerardo-navarro (merge request)
• Store MR and issue assignment events (merge request)
• Index for namespaces by root namespace lookup (merge request)
• Add skeleton loader to admin jobs vue by @TrueKalix (merge request)
• Show work item id in breadcrumb (merge request)
• Admins can edit arkose_risk_band (merge request) GitLab Enterprise Edition
• Introduce circuit breaker for OpenAI client (merge request)
• Switch status tabs by @TrueKalix (merge request)
• Promote Key Result to Objective (merge request)
• Add Environments::Stop mutation (merge request)
• Add branch filtering for compliance violations report (merge request) GitLab Enterprise Edition
• Add Sidekiq execution SLI as apdex (merge request)
• Add API to toggle pass_user_identities_to_ci_jwt by @joe-snyder (merge request)
• Add sync index security_scans_on_pipeline_id_and_scan_type (merge request)
• Adds request forwarding warning to package details modal (merge request)
• Adds confirmation prompt to container image repository delete modal (merge request)
• Prepare todos for bigint migration (merge request)
• Change fetch policy for work item detail (merge request)
• Populate missing dismissal info (merge request)

Fixed (163 changes)

• Add top margin to admin email alert (merge request) GitLab Enterprise Edition
• Update by_parent filter in EpicsFinder (merge request) GitLab Enterprise Edition
• View projects pending deletion from subgroup (merge request) GitLab Enterprise Edition
• Fixes roadmap timeline bar alignment (merge request) GitLab Enterprise Edition
• Fix no_proxy not working when DNS rebinding protection enabled (merge request)
• Handle String response in ResponseLogger (merge request)
• Fix case sensitive GraphQL username argument (merge request)
• Fix bridge status not inheriting canceled (merge request)
• Fixed how series render and legend in VSA Overview "Total time" chart (merge request) GitLab Enterprise Edition
• Updating PipelineJobResolver for type filter (merge request)
• Make new jira_auth_type Jira API argument optional (merge request)
• Fix pending status when SecureFlag has no content (merge request) GitLab Enterprise Edition
• Fix auditing of merged merge request when metrics are nil (merge request) GitLab Enterprise Edition
• Skip to main content interactive when super sidebar is inert (merge request)
• Remove extra top padding on collapsible discussion (merge request)
• Fix the query when migration add_suffix_project_in_wiki_rid not finished (merge request) GitLab Enterprise Edition
• Fix event location detection for the branch list (merge request)
• Add a boolean field hidden in the MergeRequest ES mapping (merge request) GitLab Enterprise Edition
• Removing Ci:Bridge jobs from ProjectJob#show (merge request)
• Replace stable Terraform CI templates with latest templates (merge request)
• Status checks widget: Remove double bottom border (merge request)
• Fix border on description box (merge request)
• Fix syntax highlighting on Wiki Diff pages (merge request)
• Update GraphQl spec to include SHARED_INTO_ANCESTORS (merge request)
• Fix height calculations with roadmap to prevent extra scrollers (merge request) GitLab Enterprise Edition
• Fix comments template dropdown being hidden (merge request)
• Include shared from groups members in the projects members (merge request)
• Fix container scanning via group level policy (merge request)
• Append bubble menus to body (merge request)
• Fix MR activity filtering (merge request)
• Do not autofocus the description field (merge request)
• Remove epic date fields authorization (merge request) GitLab Enterprise Edition
• Namespace the Gitlab constant to avoid NameError (merge request)
• Fixes missing background in tasks (merge request)
• Alter installation_creation_date metric logic (merge request)
• Move feature-flag to outside pipelined block (merge request)
• Return the error when failed to register runner (merge request)
• Fix avatar when commit email is an empty string (merge request)
• Allow merge when rules are invalid for security policy project (merge request) GitLab Enterprise Edition
• Fix redirect for work items notes for diffPath and deletePath (merge request)
• Lock tables before dropping the LFK trigger (merge request)
• Update new navigation nav item badge positon and hover styles (merge request)
• Do not limit batch_size in migration (merge request) GitLab Enterprise Edition
• Clicking task item doesn’t when using “1)” (merge request)
• Prevent logged in user from blocking themselves in abuse reports (merge request)
• Fix incorrect handler location for list of branches (merge request)
• Show detected licenses with their URLs (merge request) GitLab Enterprise Edition
• Fix active state overlay in content editor (merge request)
• Add missing license check for project approval rules endpoints (merge request) GitLab Enterprise Edition
• Fixes Content-Type for Service Desk emails with attachments (merge request)
• Fix DORA deployment frequency calculation (merge request) GitLab Enterprise Edition
• Resolve "Immediately preview when editing a broadcast message" (merge request)
• Fix group blobs search permission when migration is not complete (merge request) GitLab Enterprise Edition
• Fix arguments in container replication event (merge request) GitLab Enterprise Edition
• Fixes NoMethod when tags are empty (merge request)
• Fixing a misspelling of "absence" (merge request)
• Fixed issue description editor keeping autosaved data after save by @zillemarco (merge request)
• Do not show issuable email address when FF is on (merge request)
• SSO enforcement shouldn't require SSO for non-members and public groups (merge request) GitLab Enterprise Edition
• Fallback to highlighting HAML with Rouge (merge request)
• Hide Add button in issue if user has Guest role (merge request)
• Fix TypeError exceptions in UpdateMergeRequestWorker (merge request)
• Fixes shortcut not working without focus (merge request)
• Fixes rich text editor not wrapping on mobile (merge request)
• Fix loading Web IDE Beta outside gitlab_url (merge request)
• Follow k6's rename of ex/sample folder (merge request)
• Fixes registry search alignment (merge request)
• Fix tab count admin jobs vue by @TrueKalix (merge request)
• Enable "inherit_approval_rules_on_creation" feature flag (merge request)
• SSO enforcement should respect Admin Mode for groups access (merge request) GitLab Enterprise Edition
• Remove counter_attribute_db_lease_for_update FF (merge request)
• Fix empty attachments 500 error in NPM package PUT request (merge request)
• Fix conan search to not find instance-wide packages on project-level (merge request)
• Fix Stop Environment Diaglog shows wrong text (merge request)
• Use trueup_period_seat_count for true-up check (merge request) GitLab Enterprise Edition
• Make sure /api/v4/geo_nodes/current/failures works with the unified URL (merge request)
• Inject apollo for pipelines table (merge request)
• Checks loaded visualisation for tree traversal (merge request) GitLab Enterprise Edition
• Cleanup leftovers in packages_dependencies table (merge request)
• Globally enable ff filter_vulnerability_findings_dismissed_on_default (merge request) GitLab Enterprise Edition
• Fix root_ancestor undefined method error (merge request) GitLab Enterprise Edition
• Fix custom template import permission (merge request)
• Set static page size for fetching notes (merge request)
• Put actual default branch in readme on project creation (merge request)
• Change API endpoint used when inviting a group to a project (merge request)
• Fix N+1 issue for GraphQL VulnerabilityType (merge request) GitLab Enterprise Edition
• Enable remove_scan_result_policy_transaction by default (merge request) GitLab Enterprise Edition
• Search without project namespaces (merge request)
• View projects pending deletion from subgroup (merge request) GitLab Enterprise Edition
• Crop long texts in the MR Security Reports widget (merge request) GitLab Enterprise Edition
• Fix: display correct duration for pipeline >24 hour runtime by @endera_ (merge request)
• Use fallback when avatar fails to load (merge request)
• Fix vue3 spec violation in environments_folder_view_spec.js (merge request)
• Update chat prompt to move references to the end (merge request) GitLab Enterprise Edition
• Fix installation activation bug (merge request) GitLab Enterprise Edition
• Fix for the rebase merge request state being shown incorrectly (merge request)
• Prevent errors when focusing platform button (merge request)
• Do not touch last_downloaded_at when on a geo secondary (merge request) GitLab Enterprise Edition
• Make it possible to run Puma v6 (merge request)
• Fix signing-up page renders by @lyb124553153 (merge request)
• Fix extra social dot divider (merge request)
• Make propmpt_location dynamic, fix spacing in chat (merge request)
• Allow individual pages to set super sidebar open on page load (merge request)
• Fix member source determination in group members report (merge request) GitLab Enterprise Edition
• Fix Merge request tabs page bundle loading (merge request)
• Fixes random questions being answered by Tanuki Bot (merge request) GitLab Enterprise Edition
• Fix vue3 spec violations for tree_content_spec.js (merge request)
• Fix sidekiq_remove_jobs not to run in transaction (merge request)
• Reject invalid repository archive request formats (merge request)
• Update groups header (merge request)
• Remove global audit events stream page refreshes on edits (merge request) GitLab Enterprise Edition
• Fix compliance framework creation error on GitLab premium plans (merge request) GitLab Enterprise Edition
• Fix expanded avatars list display in the MR widget (merge request)
• Work item tree tooltip fix (merge request)
• User profile fix bg for fixed with layout (merge request)
• Fix cadence description box width (merge request) GitLab Enterprise Edition
• Fix search cron worker when indexing is disabled (merge request) GitLab Enterprise Edition
• Fix invite project members modal closing on error (merge request)
• Vertically align epic colors in dropdown (merge request)
• Create unique digests for email verification tokens (merge request)
• Fix encoding error for commits endpoint (merge request)
• Fix data in import_sources column of application_settings (merge request)
• Fix burnup chart line going backwards (merge request) GitLab Enterprise Edition
• Spread sidekiq jobs on reschedule during github import (merge request)
• Remove transaction in ProcessScanResultPolicyWorker (merge request) GitLab Enterprise Edition
• Fail transfer only with namespaced npm packages (merge request)
• Removes hardcoded path to svg (merge request)
• Fix use of the bootstrap form group with label (merge request)
• Bugfix invite members modal (merge request)
• Putting CI/CD settings behind appropriate permission levels (merge request)
• Fix Web IDE Beta icons not loading in Safari by @gitlab-dependency-update-bot (merge request)
• Provide a single line of vulnerable code (merge request) GitLab Enterprise Edition
• Improve Vale's ElementDescriptors rule to catch previous false negatives by @JonstonChan (merge request)
• Fix GraphQL timelog Int overflow bug (merge request)
• Fix bug in UpdateApprovalsService when target pipeline is empty (merge request) GitLab Enterprise Edition
• Fix broken mermaid markdown rendering of milestone detail views by @gerardo-navarro (merge request)
• Use consistent orange color for low severity (merge request)
• Get rid of infinite work item calls in work item modal (merge request)
• Improve Vale's CIConfigFile rule to catch previous false negatives by @JonstonChan (merge request)
• Do not block project overview when wiki repository fails (merge request)
• Remove operations_access_level REST API field (merge request)
• Fix error when scan result policy is missing actions or rules (merge request) GitLab Enterprise Edition
• Fix layout of mr widget checkboxes (merge request)
• Scroll to job line from hash (merge request)
• Fix work item children order by relative position (merge request)
• Revert "Merge branch 'revert-allow-dots-ff' into 'master'" (merge request)
• Fix assignee avatars alignment on issues list (merge request)
• Renders indexes for Jupyter Notebooks (merge request)
• Set retry limit 2 for Zoekt::IndexerWorker (merge request) GitLab Enterprise Edition
• Don't index empty or missing repositories in Zoekt::IndexerWorker (merge request) GitLab Enterprise Edition
• Add max-width and min-width to the chat component (merge request) GitLab Enterprise Edition
• Exclude any_approver rule from being marked as invalid (merge request) GitLab Enterprise Edition
• Do not require email verification for oAuth users (merge request)
• Include forks in github repository list (merge request)
• Fix docs (merge request)
• Hide New project button if visibility is restricted (merge request)
• Ensure wiki errors are bubbled up to its form (merge request)
• Add correct widget list styles to MR dependencies (merge request)
• Fix namespace async index creation (merge request)
• Fix groups appearing for project create/import (merge request)
• Fix comments rendering in content editor (merge request)
• Fix Ci::CommitWithPipeline batch loader key (merge request)
• Do not use snapshots on single database instances (merge request)

Changed (250 changes)

• Merge request sticky header height and border bottom (merge request)
• Add default organization (merge request)
• Update external status check url visiblity (merge request) GitLab Enterprise Edition
• Upgrade DAST to version 4 (merge request) GitLab Enterprise Edition
• Added reveal/hide password input to login page (merge request)
• Enables the auto_merge_labels_mr_widget feature flag (merge request)
• Refactors ml_candidate_show (merge request)
• Move collaborators import to Advanced import setting (merge request)
• Update POST approvals endpoint (merge request) GitLab Enterprise Edition
• Update package license json schema (merge request) GitLab Enterprise Edition
• Remove namespace storage limit dates (merge request) GitLab Enterprise Edition
• Add worker behind a feature flag to check missing repositories (merge request)
• Disable Compliance pipeline field for Premium licenses (merge request) GitLab Enterprise Edition
• Update expires_at column value to 365 days from now when its nil (merge request)
• Move code suggestions beta feature to free (merge request) GitLab Enterprise Edition
• Add password complexity to registration features (merge request)
• Update environments empty state by @catinbag (merge request)
• Update new entity pages crumbs by @catinbag (merge request)
• Add description_diffs to Registration Features (merge request)
• Expose link to runner if admin (merge request)
• Stores job exceptions into sampling artifacts (merge request)
• Two column format in sign in/up page (merge request)
• Move external issue trackers and wikis from Uncategorized to Plan (merge request)
• Remove formatting bubble menu (merge request)
• Add a warning about a db requirement (merge request)
• Gitlab Chat guarded by AI toggle (merge request) GitLab Enterprise Edition
• Designs: add widget styles (merge request)
• Extend dependencies finder to group level (merge request) GitLab Enterprise Edition
• Set PostgreSQL 13 as the minimum supported version (merge request)
• Lower ProcessSyncEventsWorker dedupe TTL to 1 minute (merge request)
• Return HTTP 410 Gone status code from POST /runners endpoint (merge request)
• Upgrade to doorkeeper-openid_connect v1.8.6 (merge request)
• Disable invalid_scan_result_policy_prevents_merge by default (merge request) GitLab Enterprise Edition
• Remove "merged" icon for merge train in activity (merge request)
• Add feature flag and show new tab (merge request) GitLab Enterprise Edition
• Rename widgets to panels to align with pajamas guidelines (merge request) GitLab Enterprise Edition
• Add admin access option to protected branches and tags (merge request)
• Adds backfill migration for secure file metadata fix (merge request)
• Updates keep rules text for container cleanup policies (merge request)
• Remove stickyness from Diff Stats Header (merge request)
• Update Scan Result Policy documentation (merge request)
• Remove broadcast messages for sign in/sign up flows (merge request) GitLab Enterprise Edition
• Change cancel running button (merge request)
• Refactor group level runner registration setting by @markus.ferrell (merge request)
• Reschedule evidences migration from raw_metadata (merge request) GitLab Enterprise Edition
• Use correct migration finalisation method (merge request)
• Add Admin Mode to new navigation (merge request) GitLab Enterprise Edition
• Improve file upload experience in content editor (merge request)
• Removed autofocus from fields throughout the registration flow (merge request) GitLab Enterprise Edition
• Disable rule mode when vulnerability_states are invalid (merge request) GitLab Enterprise Edition
• UI polish: Spacing in runner list (merge request)
• Cleanup disallow_environment_name_update feature flag (merge request)
• Clarify iteration rollover depends on timezone (merge request) GitLab Enterprise Edition
• Remove user legacy Web IDE toggle (merge request)
• Schedule database index on members (merge request)
• Ignore temp schema objects (merge request)
• Notify KAS on git push events (merge request)
• Refactor compliance framework create/edit to modals (merge request) GitLab Enterprise Edition
• Upgrade to Gemnasium v4 (merge request) GitLab Enterprise Edition
• Disable importers by default in new self-manages instances (merge request)
• Add tooltips to jobs table actions (merge request)
• Add extra instructions for self-managed setup (merge request)
• Enable New Environment Details Page (merge request)
• Update layout of admin labels page (merge request)
• Fixes incorrect expiration date in secure files metadata (merge request)
• Add metrics to GCP banner by @asadath1395 (merge request)
• Add filter by package_name for dependencies (merge request) GitLab Enterprise Edition
• Updated hide/reveal password input to be reuseable (merge request)
• Unlink achievement visibility from namespace visibility by @Taucher2003 (merge request)
• Hide banner when subscription is already on cloud licensing (merge request) GitLab Enterprise Edition
• Removed autofocus on fields throughout the registration flow (merge request) GitLab Enterprise Edition
• Update status and policy drawer tab titles (merge request) GitLab Enterprise Edition
• Reorganize Analytics tab in general settings (merge request) GitLab Enterprise Edition
• Migrate all daily aggregated RedisHLL events to weekly (merge request)
• Adapt status filtering to support new values (merge request) GitLab Enterprise Edition
• Enable mirror only branches match regex feature flag by default by @lyb124553153 (merge request) GitLab Enterprise Edition
• Increment the major version of DAST API and API Fuzzing (merge request) GitLab Enterprise Edition
• Clarify message about no analytics data to show (merge request)
• Rescue errors when dropping pg_stat_statements view (merge request)
• Support deduplicated package licenses (merge request) GitLab Enterprise Edition
• Mark environment URLs as unsafe (merge request)
• Fix runtime check for Puma v6 (merge request)
• Allow just one parallel job by @mcfedr (merge request)
• Remove IncubationAlert from ml_experiments_show (merge request)
• Update Settings/Pages layout by @catinbag (merge request)
• Remove Incubation Alert from ml_experiments_index (merge request)
• Delayed deletion, enabled by default (merge request)
• Removes Incubation alert from ml_candidate_show (merge request)
• Cleanup environment_search_api_min_chars feature flag (merge request)
• Updates mermaid to 10.0.2 (merge request)
• Mark project_fingerprint as experiment (merge request) GitLab Enterprise Edition
• Enable restrict_merge_status_recheck feature flag (merge request)
• Remove feature flag ci_builds_columns_size_validation (merge request)
• Used GlBroadcastMessage for table preview by @catinbag (merge request)
• Default to two database connections for source install (merge request)
• Remove sub-nav transition animation in new sidebar (merge request)
• Update tags list (merge request)
• Remove draft_quick_action_non_toggle feature flag (merge request)
• Remove Blame page streaming feature flag (merge request)
• Enable password check on registration trial page (merge request)
• Upgrade kas-grpc gem to 0.1.0 (merge request)
• Linear groups finder queries (merge request)
• Update gitlab pages (merge request)
• Disable automatic Todo creation for approvers (merge request) GitLab Enterprise Edition
• Update commits list UI (merge request)
• Ensure all CI config loading uses correct loader (merge request)
• New layout for editors (merge request)
• Note actions: Dropdown migration to use Disclousre dropdown (merge request)
• Fix inconsistencies in new file form (merge request)
• Add empty state for jobs tab in runner details (merge request)
• Preselect trial on namespace if started inside namespace (merge request) GitLab Enterprise Edition
• Capture GRPC::ResourceExhausted error (merge request)
• Extract subscriptions comparison url to saas.rb by @orozot (merge request) GitLab Enterprise Edition
• Make operators prop required for NumberRangeSelect (merge request) GitLab Enterprise Edition
• Record first_contribution for all contributors (merge request)
• Add empty state for jobs tab in runner details by @glauciellesa (merge request)
• Enable invalid_scan_result_policy_prevents_merge by default (merge request) GitLab Enterprise Edition
• Add issue description to thank you email in SD (merge request)
• Branches list: move delete branches button into dropdown (merge request)
• Disallow negative integers for vulnerabilities_allowed (merge request) GitLab Enterprise Edition
• Disable rule mode when vulnerabilities_allowed is invalid (merge request) GitLab Enterprise Edition
• Initialize the migration to convert pk for ci_pipeline_variables (merge request)
• Set jira_dvcs_end_of_life_amnesty to default false (merge request)
• Confirm before disabling group shared runners (merge request)
• Update snippet form (merge request)
• Displays latest pipeline on package list page (merge request)
• Streamline notification style for deleting release by @catinbag (merge request)
• Restyle integrated error details info (merge request)
• Branches list: Improve list styling (merge request)
• Add backend for exporting compliance frameworks (merge request) GitLab Enterprise Edition
• Removed DORA metrics tiles from VSA Overview page (merge request)
• Add screen reader title to broadcast message (merge request)
• Reaction: Remove toast (merge request)
• Show alert when shared runners setting is disabled (merge request)
• Add first_contribution field to MR metrics (merge request)
• Remove route_hll_to_snowplow_phase3 FF (merge request)
• Add advisories to package metadata (merge request) GitLab Enterprise Edition
• Hides users from protected branch setting dropdown (merge request) GitLab Enterprise Edition
• Use native number input for weight on "New issue" form (merge request) GitLab Enterprise Edition
• Success alert when runner is assigned to project (merge request)
• Bump major version of secrets (merge request)
• Renamed View Merged YAML to Full configuration by @catinbag (merge request)
• Update dependency auto-deploy-image to v2.48.2 (merge request)
• Update edit issuables button to bulk edit (merge request)
• Avoid redundant job refetching by @TrueKalix (merge request)
• Disable Role-based Approvals for Guests/Reporters (merge request) GitLab Enterprise Edition
• Change color function to check for relative luminance (merge request)
• Initialize the migration to convert pk to bigint for ci_pipelines (merge request)
• Add info popover to status checks (merge request) GitLab Enterprise Edition
• Swap system_note_metadata.note_id to bigint (merge request)
• Add allowed vulnerabilities number information to policy drawer (merge request) GitLab Enterprise Edition
• Update prometheus-client-mmap to v0.23.0 (merge request)
• Update sast analyzer major versions (merge request)
• Use new priority label illustration in empty state (merge request)
• Release reading fingerprints from UploadedFile instance in maven upload (merge request)
• Remove package icon from package row by @catinbag (merge request)
• This MR adds preserving state of selected filters (merge request) GitLab Enterprise Edition
• Splits mlflow.rb into multiple files (merge request)
• Remove admin override for ProtectedRef Access (merge request)
• Remove unnecessary attributes for filters in vulnerability_filters.vue (merge request) GitLab Enterprise Edition
• Update stackprof to v0.0.25 (merge request)
• Remove strict_ip_enforcement feature flag for universal enablement (merge request)
• Update labels page design (merge request)
• Fetch traces only when on tab (merge request)
• Add a note to about Azure Database for PostgreSQL Flexible Server (merge request)
• Enable GraphQL subscription load balancing (merge request)
• Retain selection in content editor on blur (merge request)
• Change warning text when adding a related issue as a Guest by @LXY1226 (merge request)
• Add sorting for the dependencies_resolver (merge request) GitLab Enterprise Edition
• Never show security configuration upgrade banner in CE (merge request)
• Select range for allowed vulnerabilities using dropdown (merge request) GitLab Enterprise Edition
• Pass namespace in the params (merge request) GitLab Enterprise Edition
• Add rake task to maintain Geo SSF metric schema (merge request) GitLab Enterprise Edition
• Restrict cleanup migrations only for GitLab.com (merge request)
• Remove group_analytics_dashboards_page feature flag (merge request)
• Add buttons to access docs and copy Terraform init command by @glauciellesa (merge request)
• Upgrade Container Scanning analyzer to version 6 (merge request) GitLab Enterprise Edition
• Combine import, export, and subscribe options into dropdown (merge request)
• Cleanup legacy_merge_request_state_check_for_merged_pipelines flag (merge request)
• Update cluster management project template to latest revision (merge request)
• Remove redundant alert message for CI/CD variables setting (merge request)
• Add support for separate wiki index (merge request) GitLab Enterprise Edition
• Update docs and Rake task to require Redis 6 (merge request)
• Sign ansi2json state by default (merge request)
• Update user admin header (merge request)
• Hide borders when entering admin mode - 2 (merge request)
• Group import/export requirements button into dropdown (merge request)
• Improve TeleSign logging (merge request) GitLab Enterprise Edition
• Support custom format in getTimeago (merge request)
• Make name in ScanExecutionPolicyCommit mutation mandatory (merge request) GitLab Enterprise Edition
• Move edit compliance form into modal (merge request) GitLab Enterprise Edition
• Remove margin class from related item component (merge request)
• Remove border on merge request sticky header (merge request)
• Remove "hash form" support in alert management router by @ali_o_kan (merge request)
• Implement timeout for the blockquote banzai filter (merge request)
• Remove unused shortcuts (merge request)
• Add runner_id, runner_environment and sha claims to CI JWT V2 (merge request)
• Activity sort filter dropdown migration (merge request)
• Add running Scan Execution Policies for merge_request_event pipelines (merge request)
• This MR adds empty state selector (merge request) GitLab Enterprise Edition
• Unscope i18n strings that are incorrectly scoped in HAML files by @JonstonChan (merge request)
• Improve job fixutre by @TrueKalix (merge request)
• GraphQL: Change runner.projects default sort (merge request)
• Action Cable metrics: add labels to transmit (merge request)
• Add data to Code Quality MR diff json (merge request)
• FOSS VSA spec reflects component dir structure by @catinbag (merge request)
• Rename include:with to include:inputs (merge request)
• Update parsing of *_DISABLED variables (merge request)
• Refactor/Clean up users specs by @TrueKalix (merge request)
• Disallow NO_ACCESS for UnprotectAccessLevel#access_level (merge request) GitLab Enterprise Edition
• Clean up soft_email_confirmation ff (merge request)
• Move edit label action into dropdown (merge request)
• Preinstall prettier for gitpod (merge request)
• Hide borders when entering admin mode (merge request)
• Replaced Feature flag to reduce aggregation schedule lease (merge request)
• Adapt MR widget to support fail-closed approval rules (merge request) GitLab Enterprise Edition
• Update vendored Express project to match project template by @JonstonChan (merge request)
• Improve repo forking layout by @catinbag (merge request)
• Simplify this_desctructuring in components by @catinbag (merge request)
• Set approval rule as invalid if there are not enough approvers (merge request) GitLab Enterprise Edition
• Make new label form pajamas-compliant (merge request)
• Update admin labels page (merge request)
• Update Value Streams Dashboard title and description (merge request) GitLab Enterprise Edition
• Create a utils helper to generate date ranges by @catinbag (merge request) GitLab Enterprise Edition
• Update label styling (merge request)
• Rename 'Terraform menu' to 'Terraform states' (merge request)
• Rate limit API deletion of member (merge request)
• Improve audit streams display (merge request) GitLab Enterprise Edition
• This MR creates new filtering layout (merge request) GitLab Enterprise Edition
• Geo: Reduce exclusive lease log noise (merge request) GitLab Enterprise Edition
• Update issuable list design (merge request)
• This MR migrates Dropdown to RefSelector (merge request)
• Add small animation to "Finish review" button (merge request)
• Move code suggestions feature to Premium (merge request) GitLab Enterprise Edition
• Use merge_base_pipeline for security report comparison MR widget by @jimmy-outschool (merge request) GitLab Enterprise Edition
• Auto-selects labels created in dropdown (merge request)
• Move streaming frontend bundle to separate action (merge request)
• Reschedule migration for (merge request) GitLab Enterprise Edition
• Expose valid_runner_registrars in Application Settings API by @tomsiewert (merge request)
• Always show target url on note email (merge request)
• Use textarea instead of text field for label description (merge request)
• Restyle color chips in label selector (merge request)
• Update issuable lists (merge request)
• Remove futile colon in userfacing Error Message util (merge request)
• Combine RSS and calendar options into dropdown on dashboard issues (merge request)
• Fix right padding on LDAP radio buttons (merge request) GitLab Enterprise Edition
• Adjusts param handling in namespace API (merge request) GitLab Enterprise Edition
• Update openssl gem to v3.1.0 (merge request)
• Update dependency auto-build-image to v1.32.0 (merge request)
• Update dependency auto-deploy-image to v2.48.1 (merge request)

Deprecated (15 changes)

• Add Metrics Dashboard GraphQL API to FF (merge request)
• Move merged_by under pull_request namespace (merge request)
• Announce deprecation of omnibus packaged Grafana (merge request)
• Return an empty pipelines in the package REST API payload (merge request)
• Deprecate backfill traversal ids to blobs and wiki blobs (merge request) GitLab Enterprise Edition
• Analyzer consolidation for 16.0 (merge request)
• Deprecate obsolete migrations (merge request) GitLab Enterprise Edition
• Move reviews under to pull_request namespace (merge request)
• GraphQL: Rename RunnerMembershipFilter to CiRunnerMembershipFilter (merge request)
• Remove CreateCrossProjectPipelineWorker (merge request)
• Deprecate add hidden to issues migration (merge request) GitLab Enterprise Edition
• GraphQL: Rename CiRunnerUpgradeStatusType to CiRunnerUpgradeStatus (merge request)
• Deprecate CiRunner.projects default sort order value for removal in 17.0 (merge request)
• Deprecate user index migrations (merge request) GitLab Enterprise Edition
• Remove CreateCrossProjectPipelineWorker (merge request)

Removed (73 changes)

• Remove legacy project routes (merge request)
• Remove depricated Monitor Metrics feature (merge request)
• Remove unused ci_triggers.ref column (merge request)
• Geo Sites - Remove Full Details button (merge request) GitLab Enterprise Edition
• Set default PAT expiration to 365 days from now (merge request)
• Remove the opt_in_jwt feature (merge request)
• Announce removal of Redis localhost ports (merge request)
• Add 16.0 Grafana Helm Chart removal notice (merge request)
• Revert "Merge branch 'suppress-schema-deprecation-warning' into 'master'" (merge request) GitLab Enterprise Edition
• Add 16.0 breaking change removal notice for PG12 (merge request)
• Remove deprecated security schemas (merge request) GitLab Enterprise Edition
• Remove deprecated 'started' state for iteration (merge request)
• Remove DS support for Java 13 to 16 (merge request) GitLab Enterprise Edition
• Remove POST /ci/lint (merge request)
• Remove deprecated environment_tier param (merge request) GitLab Enterprise Edition
• Remove License-Check feature (merge request) GitLab Enterprise Edition
• Remove unused sequence from VSD table (merge request)
• GH-style Jira OAuth endpoints default return 404 (merge request)
• Set ci_remove_legacy_predefined_variables default ON (merge request)
• Remove legacyMode for runner status in graphql (merge request)
• Remove obsolete npm packages tags shared example (merge request)
• Migration remove gitlab as import_source (merge request)
• Remove jira_connect/users page (merge request)
• Remove setting Redis config file path via env (merge request)
• Drop clusters_applications_prometheus table (merge request)
• Remove deprecated gitlab.com importer (merge request)
• Add migration to drop crossplane (merge request)
• Remove SoftwareLicensePolicies without ScanResultPolicy (merge request) GitLab Enterprise Edition
• Remove special Redis fallback URLs (merge request)
• Remove toggle for limiting JWT token access (merge request)
• Drop clusters_applications_jupyter table (merge request)
• Remove setting Redis config file path via env var (merge request)
• Drop clusters_applications_cert_managers table (merge request)
• Remove POST approvals endpoint (merge request) GitLab Enterprise Edition
• Remove pql_three_cta_test (merge request) GitLab Enterprise Edition
• GH-style Jira DVCS endpoints return 404 by default (merge request)
• GraphQL: Remove CiCdSettingsUpdate (merge request)
• Remove redundant index from container_repositories (merge request)
• Enable frozen outbound job tokens by default (merge request)
• Add changelog item for redis 5 removal (merge request)
• Remove PipelineSecurityReportFinding.name GraphQL field (merge request) GitLab Enterprise Edition
• Remove preload_max_access_levels_for_labels_... FF (merge request)
• Remove the apiFuzzingCiConfigurationCreate GraphQL mutation (merge request) GitLab Enterprise Edition
• Remove revoked agent tokens from API (merge request)
• Remove Redownload button (merge request) GitLab Enterprise Edition
• Remove feature flag for ci_fix_for_runner_cache_prefix (merge request)
• Remove vulnerabilityFindingDismiss GraphQL mutation (merge request) GitLab Enterprise Edition
• Remove confidence field from PipelineSecurityReportFinding type (merge request) GitLab Enterprise Edition
• Drop U2F foreign key from WebauthnRegistrations (merge request)
• Remove legacy Sidekiq Daemon Memory Killer (merge request)
• Remove 'external' field in ReleaseAssetLink type by @missy-davies (merge request)
• Remove external field from Releases and Release Links APIs by @missy-davies (merge request)
• Remove column application_settings clickhouse_connection_string (merge request)
• Remove Bare repository import rake task (merge request)
• Remove the feature flag npm_obtain_lease_to_create_package (merge request)
• Remove refactor_vulnerability_filters feature flag (merge request) GitLab Enterprise Edition
• Remove the legacy Contribution App and feature flag (merge request) GitLab Enterprise Edition
• Stop using file_md5 from debian component files by @sathieu (merge request)
• Revert "Merge branch 'issue_370251_remove_namespace_agg_scheduler_lease' into 'master'" (merge request)
• Migration to remove phabricator (merge request)
• Clean up role_targeted_broadcast_messages (merge request)
• Remove RT issue weight feature flag (merge request)
• Removes the feature flag use_sub_repositories_api (merge request)
• Remove index_security_scans_on_pipeline_id concurrently (merge request)
• Remove phabricator code, docs and metrics (merge request)
• Remove job_age from jobs/request API endpoint (merge request)
• Unset POSTGRES_ENABLED in Auto DevOps template (merge request)
• Removing Pipeline Activity Limit in 16.0 as the feature is deprecated (merge request)
• Cleanup the detect_android_projects (merge request)
• Remove exit_registration_verification feature (merge request)
• Remove temporary index tmp_idx_package_files_on_non_zero_size (merge request)
• Remove GitHub import deprecated workers (merge request)
• Remove gitbook project template (merge request)

Security (10 changes)

• Bump gitaly version (merge request)
• Only maintainers of projects should be able to assign runners to them
• Relay state to check for only allowing sub paths (merge request)
• Update policy to prevent banned members from accessing public projects (merge request)
• Handle invalid URLs in asset proxy (merge request)
• Add specs for external users flag (merge request)
• Commit trailers now only match public user email addresses (merge request)
• Authorize access to vulnerabilitiesCountByDay resolver (merge request)
• Use dummy filename as filename when viewing raw xml files (merge request)
• Prohibit 40 character hex sets at beginning of path-based branch name (merge request)

Performance (11 changes)

• Drop partial_index_deployments_for_project_id_and_tag (merge request)
• Use linear query to refresh the project authorizations (merge request)
• Enable Deployments API error on updated_at filter by default (merge request)
• Remove the ci_enforce_rate_limits_jobs_api feature flag (merge request)
• Set rate limit by default (merge request)
• Add code for the new permutation migration (merge request) GitLab Enterprise Edition
• Fix usage of enqueue_delete_todos (merge request)
• Optimise deployments table by removing an unused index (merge request)
• Allow using db replicas for GraphQL subs (merge request)
• Process limited number of refs in commit (merge request)
• Performance: Preload pipeline in PipelinesController to fix N+1 (merge request)

Other (56 changes)

• Add states and registry table to add SSF support for designs (merge request)
• Rate limits for unauthenticated Projects API use (merge request)
• Synchronously removing merge_request_mentions_temp_index (merge request)
• Add store labels to gitlab_cache_read_multikey_count metric (merge request)
• Update Gitlab Shell version to 14.20.0 (merge request)
• Logs all Exception errors from DB LB service discovery (merge request)
• Revert "Merge branch '388156-read-vuln-custom-role' into 'master'" (merge request)
• Use listbox in image_filter (merge request) GitLab Enterprise Edition
• Remove DropOlderDeploymentsWorker (merge request)
• Prepare async index for system_note_metadata (merge request)
• Remove recursive_approach_for_all_projects feature flag (merge request)
• Remove feature flag sign_and_verify_ansi2json_state (merge request)
• Update PipelineProcessWorker dedup strategy (merge request)
• Add a new worker for wiki indexing (merge request) GitLab Enterprise Edition
• Disable optional runner token encryption for groups and projects (merge request)
• Use clean_gitlab_redis_rate_limiting in search specs to avoid rate limit by @asadath1395 (merge request)
• Remove application_settings_tokens_optional_encryption feature flag (merge request)
• Update restore docs to reflect changes in restore process (merge request)
• Refactored project creation updation events (merge request) GitLab Enterprise Edition
• Add a migration to add prefix project in wiki rid (merge request) GitLab Enterprise Edition
• Record VSD total visits weekly and monthly (merge request) GitLab Enterprise Edition
• Prepare indexes for converting notes.id to bigint (merge request)
• Use invoice preview API to calculate plan pricing for SaaS purchase (merge request) GitLab Enterprise Edition
• Extract token masking code into a separate class by @asadath1395 (merge request)
• Clean up FF remove_job_age_from_jobs_api (merge request)
• Remove use_replica_for_mailers feature flag (merge request)
• Drop cycle analytics unused tables (merge request)
• Make DesignManagement::Repository a container for GitRepository (merge request)
• Update OpenAI::Client cost tracking to include feature category (merge request) GitLab Enterprise Edition
• Remove use_merge_base_for_security_widget feature flag (merge request)
• Refactored audit events for projects (merge request) GitLab Enterprise Edition
• Swap todos.note_id to bigint (merge request)
• Replace legacy variable CI_BUILD_TAG with CI_COMMIT_TAG (merge request)
• Remove 24h time setting (merge request)
• Fix existing incidents issue_type/work_item column out of sync (merge request)
• Add bulk_imports_batched_import_export feature flag (merge request)
• Use database replica for active jobs (merge request)
• Remove jira_connect_oauth FF (merge request)
• Refactored Contribution Analytics Jest test data to GraphQL Fixtures (merge request) GitLab Enterprise Edition
• Add tooltip to feature flag descriptions by @JonstonChan (merge request)
• Delete vue_issues_dashboard feature flag (merge request)
• Modify rubocop to allow revert (merge request)
• Remove dynamic_image_resizing feature flag (merge request)
• Remove ClusterRateLimiting and related feature flags (merge request)
• Fix Style/EmptyElse Cop by @JonstonChan (merge request)
• Adds more info in BBM health status logger (merge request)
• Updating partitioning docs to reflect BBM changes (merge request)
• Backfill design_management_repositories table (merge request) GitLab Enterprise Edition
• Swap award_emoji.awardable_id to bigint (merge request)
• Change Service Desk setting text (merge request)
• Change convert type to work item MVC feature flag (merge request)
• Clean up FF ci_fix_max_includes (merge request)
• Prepare async index creation. Temp issue_type for incidents index (merge request)
• Purges legacy bg migration helpers from partitioning helpers (merge request)
• Add index to group_group_links table (merge request)
• Validate the projects.creator_id foregin key synchronously (merge request)

15.11.13 through 15.0.0

• See changelogs/archive-15.md

14.10.5 through 14.0.0

• See changelogs/archive-14.md

13.12.15 through 13.0.0

• See changelogs/archive-13.md

12.10.14 through 12.0.0

• See changelogs/archive-12.md

11.11.8 through 11.0.0

• See changelogs/archive-11.md

10.8.6 through 10.0.0

• See changelogs/archive-10.md

9.5.10 through 0.8.0

• See changelogs/archive.md