69645389e9
The API permits path traversal characters like '../' to be passed down to the template finder. Detect these requests and cause them to fail with a 500 response code. |
||
|---|---|---|
| .. | ||
| finders | ||
| gitignore_template_spec.rb | ||
| gitlab_ci_yml_template_spec.rb | ||
| issue_template_spec.rb | ||
| merge_request_template_spec.rb | ||