root
/
gitlab-ce
mirror of https://gitlab.com/free-releases/gitlab-ce.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
gitlab-ce/spec/lib/gitlab/template
History
Nick Thomas 69645389e9
Prevent a path traversal attack on global file templates 
The API permits path traversal characters like '../' to be passed down
to the template finder. Detect these requests and cause them to fail
with a 500 response code.
 		2018-12-05 14:12:35 +00:00
..
finders Prevent a path traversal attack on global file templates 2018-12-05 14:12:35 +00:00
gitignore_template_spec.rb
gitlab_ci_yml_template_spec.rb Resolve "Un-vendor CI templates" 2018-09-26 15:39:27 +00:00
issue_template_spec.rb
merge_request_template_spec.rb