ยซ Changelog History


GitLab v12.9.8 Release Notes

Release Date: 2020-05-27 // over 5 years ago

  • ๐Ÿ”’ Security (13 changes)

    • Hide EKS secret key in admin integrations settings.
    • โž• Added data integrity check before updating a deploy key.
    • Display only verified emails on notifications and profile page.
    • Disable caching on repo/blobs/[sha]/raw endpoint.
    • Require confirmed email address for GitLab OAuth authentication.
    • Kubernetes cluster details page no longer exposes Service Token.
    • ๐Ÿ›  Fix confirming unverified emails with soft email confirmation flow enabled.
    • Disallow user to control PUT request using mermaid markdown in issue description.
    • Check forked project permissions before allowing fork.
    • ๐Ÿ“‡ Limit memory footprint of a command that generates ZIP artifacts metadata.
    • ๐Ÿ›  Fix file enuming using Group Import.
    • Prevent XSS in the monitoring dashboard.
    • ๐Ÿ’Ž Use gsub instead of the Ruby % operator to perform variable substitution in Prometheus proxy API.