GitLab v11.11.7 Release Notes
Release Date: 2019-07-29 // almost 5 years ago-
๐ Security (9 changes)
- ๐ฒ Restrict slash commands to users who can log in.
- Patch XSS issue in wiki links.
- ๐ Filter merge request params on the new merge request page.
- ๐ Fix Server Side Request Forgery mitigation bypass.
- 0๏ธโฃ Show badges if pipelines are public otherwise default to project permissions.
- Do not allow localhost url redirection in GitHub Integration.
- ๐ Do not show moved issue id for users that cannot read issue.
- ๐ Use source project as permissions reference for MergeRequestsController#pipelines.
- โฌ๏ธ Drop feature to take ownership of trigger token.