kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/spec
History
Kamil Trzciński 66744469d4
Extract GitLab Pages using RubyZip 
RubyZip allows us to perform strong validation of
expanded paths where we do extract file.

We introduce the following additional checks
to extract routines:

1. None of path components can be symlinked,
2. We drop privileges support for directories,
3. Symlink source needs to point within the target directory,
   like `public/`,
4. The symlink source needs to exist ahead of time.
2019-01-31 16:52:48 +01:00
..
bin Enable the Layout/ExtraSpacing cop 2019-01-24 13:05:45 +01:00
config
controllers Use common error for unauthenticated users 2019-01-31 16:51:17 +01:00
db
dependencies
factories Update Sentry client to get project list 2019-01-31 10:05:29 +00:00
features Merge branch 'anan-add-MethodCallWithoutArgsParentheses-cop' into 'master' 2019-01-30 10:02:38 +00:00
finders Group Guests are no longer able to see merge requests 2019-01-31 16:51:54 +01:00
fixtures Extract GitLab Pages using RubyZip 2019-01-31 16:52:48 +01:00
frontend
graphql Enable the Layout/ExtraSpacing cop 2019-01-24 13:05:45 +01:00
helpers Add sanitize_name helper to sanitize URLs in user full name 2019-01-31 16:52:21 +01:00
initializers
javascripts Support for ignore rules in 'convertObjectPropsToCamelCase' helper 2019-01-31 17:02:46 +05:30
lib Extract GitLab Pages using RubyZip 2019-01-31 16:52:48 +01:00
mailers Use sanitize_name to sanitize URL in user full name 2019-01-31 16:52:48 +01:00
migrations Sidekiq queue migration for HashedStorage::MigratorWorker 2019-01-25 20:26:35 +01:00
models Prevent comments by email when issue is locked 2019-01-31 16:52:48 +01:00
policies Prevent comments by email when issue is locked 2019-01-31 16:52:48 +01:00
presenters Fix subject in trigger presenter tests 2019-01-31 16:51:18 +01:00
rack_servers
requests Do not expose trigger token when user should not see it 2019-01-31 16:51:17 +01:00
routing
rubocop
serializers Merge branch 'cluster_status_for_ugprading' into 'master' 2019-01-30 15:06:32 +00:00
services Extract GitLab Pages using RubyZip 2019-01-31 16:52:48 +01:00
sidekiq/cron
support Re-enable MethodCallWithoutArgsParentheses Cop 2019-01-29 21:05:30 +02:00
tasks Refactor Storage Migration 2019-01-25 20:26:35 +01:00
uploaders Enable the Layout/ExtraSpacing cop 2019-01-24 13:05:45 +01:00
validators
views Fixed bug when external wiki is enabled 2019-01-31 16:51:53 +01:00
workers Refactor Storage Migration 2019-01-25 20:26:35 +01:00
factories_spec.rb
fast_spec_helper.rb
rails_helper.rb
rake_helper.rb
simplecov_env.rb
spec_helper.rb Revert the "What's new" feature 2019-01-29 20:45:47 +00:00