kotovalexarian-likes-gitlab
/
gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
gitlab-org--gitlab-foss/spec/fixtures
History
Kamil Trzciński 66744469d4
Extract GitLab Pages using RubyZip 
RubyZip allows us to perform strong validation of
expanded paths where we do extract file.

We introduce the following additional checks
to extract routines:

1. None of path components can be symlinked,
2. We drop privileges support for directories,
3. Symlink source needs to point within the target directory,
   like `public/`,
4. The symlink source needs to exist ahead of time.
 		2019-01-31 16:52:48 +01:00
..
api/schemas Update Sentry client to get project list 2019-01-31 10:05:29 +00:00
authentication saml/auth_hash: Allow 2FA bypass for SAML 2.0 responses 2018-10-25 12:08:07 +01:00
clusters
codequality CE Resolve "Refactor code quality similar to JUnit tests" 2018-10-02 17:01:26 +00:00
config
container_registry
emails Use new issue email address format 2019-01-03 14:37:35 -06:00
encoding
gitlab/ci/external_files Remove gem install bundler from Docker-based Ruby environments 2019-01-01 19:27:19 +09:00
importers/bitbucket_server
junit
patchfiles Apply patches when creating MR via email 2018-11-07 16:27:55 +01:00
project_services/campfire
safe_zip Extract GitLab Pages using RubyZip 2019-01-31 16:52:48 +01:00
security-reports Backport container scanning fixtures 2019-01-10 09:32:45 +01:00
sentry Update Sentry client to get project list 2019-01-31 10:05:29 +00:00
trace Fix typos in lib 2018-11-15 12:15:43 +02:00
GoogleCodeProjectHosting.json
aosp_manifest.xml
banana_sample.gif
bfg_object_map.txt Use BFG object maps to clean projects 2018-12-06 18:58:00 +00:00
big-image.png
blockquote_fence_after.md
blockquote_fence_before.md
ci_build_artifacts.zip
ci_build_artifacts_metadata.gz
csv_comma.csv Import CSV Backend 2019-01-07 11:16:58 +08:00
csv_semicolon.csv Import CSV Backend 2019-01-07 11:16:58 +08:00
csv_tab.csv Import CSV Backend 2019-01-07 11:16:58 +08:00
dk.png
doc_sample.txt
domain_blacklist.txt
fuzzy.po
git-cheat-sheet.pdf Fixed bug with the content disposition with wiki attachments 2018-10-17 15:47:05 +00:00
invalid.po
logo_sample.svg
malicious.bundle Validate bundle files before unpacking them 2019-01-10 21:33:36 +00:00
markdown.md.erb
metrics.json
missing_metadata.po
missing_plurals.po
multiple_plurals.po
newlines.po
pages.tar.gz
pages.zip
pages.zip.meta
pages_empty.tar.gz
pages_empty.zip
pages_empty.zip.meta
pages_non_writeable.zip Extract GitLab Pages using RubyZip 2019-01-31 16:52:48 +01:00
project_export.tar.gz
rails_sample.jpg
sanitized.svg
ssh_host_example_key.pub Instance Configuration page now displays correct SSH fingerprints 2018-10-03 15:25:42 +01:00
symlink_export.tar.gz Fix persistent symlink in project import 2018-12-17 16:14:35 +01:00
unescaped_chars.po
unsanitized.svg
valid.po Remove Koding integration and documentation 2018-10-12 22:18:51 -07:00
video_sample.mp4