kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/changelogs/unreleased/security-fix-pat-web-access.yml
Cindy Pallares fe5f75930e
Merge branch 'security-fix-pat-web-access' into 'master' 
[master] Resolve "Personal access token with only `read_user` scope can be used to authenticate any web request"

See merge request gitlab/gitlabhq!2583
2018-11-28 19:13:59 -05:00

5 lines
110 B
YAML
Raw Blame History

---
title: Restrict Personal Access Tokens to API scope on web requests
merge_request:
author:
type: security
View git blame Copy permalink