-
Spam check and reCAPTCHA improvements 16 of 16 checklist items completed
- Merged
- 44
updated -
- Merged
- 30
- Approved
updated -
WIP: Add CSP headers to GitLab 0 of 2 checklist items completed
- Closed
- 19
- 0 of 1 Approvals
updated -
Pick security fixes from 8.16.1 et al into master 5 of 5 checklist items completed!8724 8.17updated
-
- Merged
- 3
updated -
-
Reenables /user API request to return private-token if user is admin and requested with sudo 9 of 9 checklist items completed
- Merged
- 52
updated -
- Merged
- 2
updated -
- Merged
- 12
updated -
-
WIP: Check the CSRF token when using the Rails session cookie for API auth 0 of 9 checklist items completed
-
Restrict failed login attempts for users with 2FA 6 of 7 checklist items completed!6668 8.12
- Merged
- 6
updated -
- Merged
- 6
updated -
Enable Import/Export for non-admin users 7 of 7 checklist items completed
- Merged
- 6
updated -
Don't expose a user's private token in the `/api/v3/user` API 5 of 7 checklist items completed!6047 8.12
- Merged
- 13
- 1
updated -
Resolve "Add a doorkeeper scope suitable for authentication" 69 of 69 checklist items completed!5951 8.15
- Merged
- 90
- 1
updated -
- Merged
- 1
updated