kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
No description https://gitlab.com/gitlab-org/gitlab-foss
85381 commits 1 branch 0 tags 899 MiB
Ruby 69.2%
JavaScript 18.7%
Vue 6.6%
Haml 2%
HTML 1.3%
Other 2.2%
Find a file
Nick Thomas 2f2b0ad390
Use a 32-byte version of db_key_base for web hooks 
AES-256-GCM cipher mode requires a key that is exactly 32 bytes long.
We already handle the case when the key is too long, by truncating, but
the key can also be too short in some installations. Switching to a key
that is always exactly the right length (by virtue of right-padding
ASCII 0 characters) allows encryption to proceed, without breaking
backward compatibility.

When the key is too short, encryption fails with an `ArgumentError`,
causing the web hooks functionality to be unusable. As a result, zero
rows can exist with values encrypted with the too-short key.

When the key is too long, it is silently truncated. In this case, the
key is unchanged, so values encrypted with the new too-long key will
still be successfully decrypted.
2018-12-05 00:00:42 +00:00
.github
.gitlab Update Security developer workflow.md 2018-11-29 19:24:12 +00:00
app Use a 32-byte version of db_key_base for web hooks 2018-12-05 00:00:42 +00:00
bin
builds
changelogs Use a 32-byte version of db_key_base for web hooks 2018-12-05 00:00:42 +00:00
config Merge branch 'fix/gb/encrypt-runners-tokens' into 'master' 2018-12-04 16:48:30 +00:00
danger
db Revert "Revert "Remove runner token indices from db schema as well"" 2018-12-04 18:27:45 +00:00
doc Fixed typo in bitbucket import 2018-12-04 14:52:55 -06:00
docker
fixtures/emojis
generator_templates
lib Use a 32-byte version of db_key_base for web hooks 2018-12-05 00:00:42 +00:00
locale Remove pronunciation tip for knative 2018-12-04 16:25:03 +02:00
log
plugins/examples
public Update robots.txt to exclude group_members and project_members, which can expose sensitive user information to the web. Please see https://developers.google.com/search/reference/robots_txt for the correct wildcard format. 2018-11-29 22:06:42 +00:00
qa Add a log-out step and expectation to log-in test 2018-12-04 18:12:20 +01:00
rubocop
scripts Automatically merge CE master into EE master 2018-12-04 14:40:04 +01:00
shared
spec Merge branch 'define-default-value-for-only-except-keys' into 'master' 2018-12-04 18:55:42 +00:00
symbol
tmp
vendor HTTPS for JupyterHub installation 2018-12-03 10:16:38 +00:00
.babelrc.js
.codeclimate.yml
.csscomb.json
.eslintignore
.eslintrc.yml
.foreman
.gitattributes
.gitignore
.gitlab-ci.yml Temporarily disable automatic merging 2018-12-04 19:26:45 +01:00
.haml-lint.yml
.mailmap
.nvmrc
.pkgr.yml
.prettierignore
.prettierrc
.rubocop.yml
.rubocop_todo.yml
.ruby-version
.scss-lint.yml
CHANGELOG.md Update CHANGELOG.md for 11.5.2 2018-12-03 22:02:27 +00:00
config.ru Add monkey patch to unicorn to fix eof? problem 2018-11-28 08:34:32 -08:00
CONTRIBUTING.md Update CONTRIBUTING.md: style guide link 2018-11-30 15:02:54 +00:00
Dangerfile
docker-compose.yml
Dockerfile.assets
Gemfile Update batch-loader dependency 2018-12-04 13:00:16 +01:00
Gemfile.lock Update batch-loader dependency 2018-12-04 13:00:16 +01:00
Gemfile.rails4
Gemfile.rails4.lock Update batch-loader dependency 2018-12-04 13:00:16 +01:00
GITALY_SERVER_VERSION
GITLAB_PAGES_VERSION Merge branch 'security-pages-toctou-race' into 'master' 2018-11-28 19:09:45 -05:00
GITLAB_SHELL_VERSION Bump gitlab-shell to 8.4.3 2018-11-28 15:30:46 -08:00
GITLAB_WORKHORSE_VERSION Upgrade GitLab Workhorse to v7.3.0 2018-11-30 21:00:10 +00:00
INSTALLATION_TYPE
LICENSE
MAINTENANCE.md
package.json Upgraded Codesandbox packages 2018-11-30 10:52:45 +00:00
PHILOSOPHY.md
PROCESS.md
Procfile
Rakefile
README.md
VERSION
yarn.lock Forward gitlab-svg 2018-12-04 13:14:24 +00:00

README.md

GitLab

Test coverage

  • Ruby coverage Ruby
  • JavaScript coverage JavaScript

Canonical source

The canonical source of GitLab Community Edition is hosted on GitLab.com.

Open source software to collaborate on code

To see how GitLab looks please see the features page on our website.

  • Manage Git repositories with fine grained access controls that keep your code secure
  • Perform code reviews and enhance collaboration with merge requests
  • Complete continuous integration (CI) and CD pipelines to builds, test, and deploy your applications
  • Each project can also have an issue tracker, issue board, and a wiki
  • Used by more than 100,000 organizations, GitLab is the most popular solution to manage Git repositories on-premises
  • Completely free and open source (MIT Expat license)

Hiring

We're hiring developers, support people, and production engineers all the time, please see our jobs page.

Editions

There are two editions of GitLab:

  • GitLab Community Edition (CE) is available freely under the MIT Expat license.
  • GitLab Enterprise Edition (EE) includes extra features that are more useful for organizations with more than 100 users. To use EE and get official support please become a subscriber.

Website

On about.gitlab.com you can find more information about:

Requirements

Please see the requirements documentation for system requirements and more information about the supported operating systems.

Installation

The recommended way to install GitLab is with the Omnibus packages on our package server. Compared to an installation from source, this is faster and less error prone. Just select your operating system, download the respective package (Debian or RPM) and install it using the system's package manager.

There are various other options to install GitLab, please refer to the installation page on the GitLab website for more information.

You can access a new installation with the login root and password 5iveL!fe, after login you are required to set a unique password.

Contributing

GitLab is an open source project and we are very happy to accept community contributions. Please refer to Contributing to GitLab page for more details.

Licensing

GitLab Community Edition (CE) is available freely under the MIT Expat license.

All third party components incorporated into the GitLab Software are licensed under the original license provided by the owner of the applicable component.

All Documentation content that resides under the doc/ directory of this repository is licensed under Creative Commons: CC BY-SA 4.0.

Install a development environment

To work on GitLab itself, we recommend setting up your development environment with the GitLab Development Kit. If you do not use the GitLab Development Kit you need to install and setup all the dependencies yourself, this is a lot of work and error prone. One small thing you also have to do when installing it yourself is to copy the example development unicorn configuration file:

cp config/unicorn.rb.example.development config/unicorn.rb

Instructions on how to start GitLab and how to run the tests can be found in the getting started section of the GitLab Development Kit.

Software stack

GitLab is a Ruby on Rails application that runs on the following software:

  • Ubuntu/Debian/CentOS/RHEL/OpenSUSE
  • Ruby (MRI) 2.4
  • Git 2.8.4+
  • Redis 2.8+
  • PostgreSQL (preferred) or MySQL

For more information please see the architecture documentation.

UX design

Please adhere to the UX Guide when creating designs and implementing code.

Third-party applications

There are a lot of third-party applications integrating with GitLab. These include GUI Git clients, mobile applications and API wrappers for various languages.

GitLab release cycle

For more information about the release process see the release documentation.

Upgrading

For upgrading information please see our update page.

Documentation

All documentation can be found on docs.gitlab.com/ce/.

Getting help

Please see Getting help for GitLab on our website for the many options to get help.

Why?

Read here

Is it any good?

Yes

Is it awesome?

These people seem to like it.