GitLab - Package Updates
-
[1.91.0]
- Update GitLab to 17.0.1
- Release announcement
- CI/CD Catalog with components and inputs now generally available
- Add a group to the CI/CD job token allowlist
- Indicate that items were imported using direct transfer
- Re-import a chosen project relation by using the API
- Design Management features extended to Product teams
- Milestones and iterations visible on issue boards
- GitLab Runner 17.0
-
[1.92.0]
- Update GitLab to 17.1.1
- Release announcement
- Improved wiki user experience
- Require confirmation for manual jobs
- Keep inherited membership structure when importing by direct transfer
- Re-import a chosen project relation by using the API
-
[1.92.1]
- Update GitLab to 17.1.2
- Release announcement
-
[1.93.0]
- Update GitLab to 17.2.1
- Release announcement
-
[1.93.1]
- Update GitLab to 17.2.2
- Release announcement
-
[1.94.0]
- Update GitLab to 17.3.0
-
[1.94.1]
- Update GitLab to 17.3.1
- Release announcement
-
[1.94.2]
- Update GitLab to 17.3.2
-
[1.94.3]
- Update GitLab to 17.3.3
-
[1.95.0]
- Update GitLab to 17.4.1
- Release announcement
-
[1.95.1]
- Update GitLab to 17.4.2
-
[1.96.0]
- Update GitLab to 17.5.1
- Release announcement
-
[1.96.1]
- Update gitlab-foss to 17.5.2
- Full Changelog
- Fix group wiki activity events breaking the user feed
- Add param filtering to avoid error while saving project settings (merge request) GitLab Enterprise Edition
- Fix new project group templates pagination GitLab Enterprise Edition
- Update pdf worker file path in pdf viewer
- Add missing project_id for build_chat_data (merge request)
- Use custom adapter for parsing FogBugz XML (merge request)
- Removed id from authorize buttons and added specs (merge request)
- HTML injection in vulnerability Code flow leads to XSS on self hosted instances (merge request)
- Remove is-unsafe-link from product analytics tables to prevent XSS (merge request)
- Details of blocking merge request can be exposed via list (merge request)
- Prevent agent access via unconfirmed or disallowed group members (merge request)
- Remove permissions JSONB column from the condition
-
[1.96.2]
- Update gitlab-foss to 17.5.3
- Full Changelog
- Ensure auto_merge_enabled is set when validating merge trains GitLab Enterprise Edition
- Add size check for harbor registry (merge request)
- Adding JobArtifactReport class to pre-emptively validate job artifacts (merge request)
- Fix: unsubscribe from actioncable channel when PAT is revoked (merge request)
- Allow a LFS token to be used only for LFS related requests (merge request)
- Fix possible DOS with TOML file parsing (merge request)
- Move allow_access_with_scope to class level (merge request)
-
[1.97.0]
- Update gitlab-foss to 17.6.2
- Full Changelog
-
[1.98.0]
- Update gitlab-foss to 17.7.1
- Full Changelog
- Add a migration to regenerate CI job token signing key
- Fix CI job token signing key not always generated
- Prevent cyclic reference in work item hierarchy widget from frontend (merge request)
- Allow external_provider config take precedence over external_groups (merge request)
- Filter out sensitive parameters on Auth logs (merge request)
- Don't allow unauthorized users to close issues automatically (merge request)
- Add iteration autocomplete to RTE by @​salihudickson (merge request) GitLab Enterprise Edition
-
[1.98.1]
- Update gitlab-foss to 17.7.2
- Full Changelog
- Fix handling of short gzip metadata files (merge request)
- Remove
download_codedependency from access to read merge requests (merge request)
-
[1.99.0]
- Update gitlab-foss to 17.8.1
- Full Changelog
- Fix protected variable exfiltration (merge request)
- Enhance rich viewer sanitization (merge request)
- Avoid recursive sidekiq calls on cyclic work item hierarchies (merge request)
- Respect the private profile constraints (merge request)
- Add more specs for most_recent_commit_sha method (merge request) GitLab Enterprise Edition
- Update runners owned by non-existent projects (merge request)
