-
!169165 17.6AppSecWeightsmall AppSecWorkTypestable counterpart AppSecWorkflowcomplete Application Security Team Category:Service Desk HackerOne WeaknessCWE-200 backend bugvulnerability devopsplan groupproject management pipelinetier-3 pipeline:mr-approved pipeline:run-e2e-omnibus-once priority3 reply by email sectiondev security security-fix-in-public severity4 typebug workflowcanary
- Merged
- 19
- Approved
updated -
Improve Conan package registry authentication method 0 of 1 checklist item completed!157771 17.3
- Merged
- 140
- Approved
updated -
- Merged
- 11
- Approved
updated -
Add Gitlab::BufferedIo with header read timeout 1 of 1 checklist item completed
- Merged
- 48
- Approved
updated -
- Merged
- 3
- Approved
updated -
!167667 17.5AppSecWeightsmall AppSecWorkTypestable counterpart Category:Source Code Management Deliverable SLABreached SLOMissed Technical Writing UI text UX backend backend-weight2 bugvulnerability devopscreate documentation feature flag featureflagdisabled frontend frontend-weight1 groupsource code missed-deliverable missed:17.2 missed:17.3 missed:17.4 pipelinetier-3 pipeline:mr-approved priority4 releasedpublished sectiondev security security-fix-in-public severity4 typebug workflowpost-deploy-db-production
- Merged
- 52
- Approved
updated -
!167765 17.5Category:Importers User Contribution Mapping backend database database-testing-automation databaseapproved devopsfulfillment frontend groupimport and integrate milestonep1 pipelinetier-3 pipeline:mr-approved priority2 releasedpublished rspec:slow test detected sectioncore platform security severity2 typefeature workflowpost-deploy-db-production
- Merged
- 58
- Approved
updated -
Admin API Endpoint: Token Info 5 of 11 checklist items completed!165157 17.5Community contribution Leading Organization Technical Writing backend database databaseapproved devopsgovern docsfeature documentation feature flag groupauthentication linked-issue pipelinetier-3 pipeline:mr-approved releasedpublished sectionsec security twtriaged typefeature workflowpost-deploy-db-staging
- Merged
- 77
- Approved
updated -
!156699 17.2Category:Container Registry Deliverable HackerOne Package:P1 SLABreached SLOMissed WeaknessCWE-77 backend bugvulnerability devopspackage gcp+gitlab integration groupauthentication pipelinetier-3 pipeline:mr-approved priority2 releasedpublished sectioncore platform security security-fix-in-public severity2 typebug workflowpost-deploy-db-production
- Merged
- 5
- Approved
updated -
Deprecate public access to development container registries 8 of 20 checklist items completed!162385 17.4Technical Writing all Sec groups breaking change devopssecure documentation groupcomposition analysis maintenanceremoval pipelinetier-3 pipeline:mr-approved pipeline:run-e2e-omnibus-once release post release post item release post itemdeprecation releasedpublished sectionsec security typemaintenance workflowpost-deploy-db-production
- Merged
- +4
- 7
- Approved
updated -
- Merged
- 18
- Approved
updated -
Rack middleware for path traversal checks 1 of 1 checklist item completed
- Merged
- 75
- Approved
updated -
Hide private group name when access request is denied 1 of 1 checklist item completed!72708 14.5
- Merged
- 16
- Approved
updated -
Upgrade to OmniAuth 2.0 1 of 1 checklist item completed!96595 15.4Deliverable FY23Q3 FedRAMPVulnerability authentication backend devopsfoundations groupauthentication and authorization [DEPRECATED] maintenancerefactor pipeline:skip-undercoverage priority1 quad-planningcomplete-no-action releasedpublished sectiondev security security-awardsawarded security-backlogreview-complete securitybotignore severity1 typemaintenance workflowpost-deploy-db-production
- Merged
- 41
- Approved
updated -
Use dedicated signing key for CI_JOB_JWT (take 3) 0 of 13 checklist items completed
- Merged
- 56
- Approved
updated -
Revert "Merge branch '214607-ci-jwt-signing-key/jwks' into 'master'" 0 of 13 checklist items completed
- Merged
- 4
- 1
- Approved
updated