OpenUpdate - July 25, 2024
Stay Informed
This week, read about:
Non-Security Based Updates
Angular 18.1.1
Common:
(fix - a1cb9dfc0d] | Don't run preconnect assertion on the server. (#56213)
Compiler:
(fix - daf0317bdc] | JIT mode incorrectly interpreting host directive configuration in partial compilation (#57002) |
(fix - d7dca6dbb6] | use strict equality for 'code' comparison (#56944)
Compiler-cli:
(fix - c94a897248] | avoid emitting references to typecheck files in TS 5.4 (#56961)
Core:
(fix - 5682527d94] | not all callbacks running when registered at the same time (#56981)
Migrations:
(fix - b666d2c20f] | fix common module removal (#56968)
Angular 17.3.12
Compiler:
(fix - 327bae473b] | JIT mode incorrectly interpreting host directive configuration in partial compilation (#57002) (#57003) |
Apache/Activemq 5.18.5
Bug:
[AMQ-9330] - Polling empty queue via REST returns 500 Server Error
[AMQ-9430] - ActiveMQ 5.18.3 (Classic) and Java 17: runtimeConfigurationPlugin causes ClassNotFoundException
[AMQ-9473] - Client SSL Socket configuration fails while settings parameters
[AMQ-9475] - ConsumerControl commands for wildcard consumers should not auto-create destinations
[AMQ-9481] - Concurrent access error attempting to consume messages via REST API in 5.18.2 or higher
[AMQ-9504] - activemq multikahadb persistence adapter with topic wildcard filtered adapter and per destination filtered adapter causes broker failure on restart
[AMQ-9520] - CVE-2024-22262 - Spring Framework URL Parsing with Host Validation in Web
[AMQ-9531] - CLI export NoClassDefFoundError
New Feature:
[AMQ-9455] - DestinationPolicy to support MessageInterceptorStrategy
[AMQ-9484] - Support exporting kahadb messages from a queue with an offset
Improvement:
[AMQ-9533] - Add activemq-protobuf based backup command
Task:
[AMQ-9534] - 5.18.x backport fixes for recover message with offset
Dependency Upgrade:
[AMQ-9489] - Upgrade to commons-io 2.16.1
[AMQ-9498] - Upgrade to maven-xbean-plugin 4.25
[AMQ-9507] - Upgrade to commons-daemon 1.4.0
[AMQ-9508] - Upgrade to commons-logging 1.3.3
[AMQ-9518] - Upgrade to Jetty 9.4.55.v20240627
[AMQ-9523] - Upgrade Jackson 2.17.2
[AMQ-9529] - Upgrade to Spring 5.3.37
[AMQ-9535] - Upgrade slf4j 2.0.13
Ansible v2.16.9
Porting Guide
Bug Fixes:
- dnf, dnf5 - fix for installing a set of packages by specifying them using a wildcard character (https://github.com/ansible/ansible/issues/83373)
- linear strategy now provides a properly templated task name to the v2_runner_on_started callback event.
- templating hostvars under native jinja will not cause serialization errors anymore.
Ansible v2.17.2
Porting Guide
Bugfixes:
- Fix a traceback when an environment variable contains certain special characters (https://github.com/ansible/ansible/issues/83498)
- dnf - reverted incomplete fix from 2.17.2rc1 (https://github.com/ansible/ansible/pull/83504)
- dnf, dnf5 - fix for installing a set of packages by specifying them using a wildcard character (https://github.com/ansible/ansible/issues/83373)
- linear strategy now provides a properly templated task name to the v2_runner_on_started callback event.
- package_facts - ignore warnings sent by apk on stderr (https://github.com/ansible/ansible/issues/83501).
- replace - Updated before/after example (https://github.com/ansible/ansible/issues/83390).
- templating hostvars under native jinja will not cause serialization errors anymore.
Apache/Tomee 10.0.0-M2
Sub-Tasks:
[TOEE-3965] - Fix TomEE :: Examples :: JSF2/CDI/BV/JPA/DeltaSpike
[TOMEE-4158] - Jakarta Bean Validation TCK
[TOMEE-4164] - Jakarta JSON Binding TCK
[TOMEE-4165] - Jakarta JSON Processing TCK
[TOMEE-4166] - Jakarta RESTFul Web Services TCK
[TOMEE-4325] - JAX-RS TCK: Signature Tests
Bugs:
[TOMEE-4320] - TomEE 10 leaks jakarta.json from Smallrye into /lib
[TOMEE-4332] - Using JAX-RS endpoints with a Spring Application fails
[TOMEE-4333] - NotSerializableException with @Inject HttpServletRequest
[TOMEE-4347] - Smallrye MP Extension are activated even if tomee.mp.scan="none"
[TOMEE-4355] - mojarra faces.js is truncated
[TOMEE-4368] - Typo in "openejb.placehodler.delimiter"
New Feature:
[TOMEE-4351] - Jakarta Security 3.0
Improvements:
[TOMEE-4342] - ApplicationComposer should inject declared custom resources into tests
[TOMEE-4350] - mp-jwt: Add qualifier for produced Jsonb
[TOMEE-4357] - Add a Jandex index cache to TomEEMicroProfileListener
Tasks:
[TOMEE-4318] - Switch Java Baseline to 17
[TOMEE-4330] - ActiveMQ 6.1.2
[TOMEE-4331] - BatchEE 2.0.0
[TOMEE-4344] - MP6: OpenAPI 3.1
[TOMEE-4366] - Remove "groovy-spock" Example
Dependency Upgrades:
[TOMEE-4113] - Update to MP Metrics 5 / SmallRye Metrics 5
[TOMEE-4317] - ActiveMQ 6.1.0
[TOMEE-4319] - CXF 4.1.0-SNAPSHOT
[TOMEE-4326] - XBeans 4.25
[TOMEE-4328] - TomEE 10.1.23
[TOMEE-4334] - Tomcat 10.1.24
[TOMEE-4335] - Jetty 11.0.20
[TOMEE-4337] - bcprov-jdk15to18-1.76.jar and bcpkix-jdk15to18-1.76.jar
[TOMEE-4338] - Xalan 2.7.3
[TOMEE-4339] - Compress 1.16.0
[TOMEE-4340] - Jose JWT 9.39.1 (Test)
[TOMEE-4341] - Angus Activation 2.0.2
[TOMEE-4345] - Commons Logging 1.3.2
[TOMEE-4346] - Commons Lang 3.14.0
[TOMEE-4348] - Smallrye Config 3.8.2
[TOMEE-4349] - ECJ 3.37.0
[TOMEE-4352] - Tomcat 10.1.25
[TOMEE-4353] - Temporarily switch to CXF 4.1.0 fork version to have a stable version for a possible TomEE 10-M2 release.
[TOMEE-4356] - Mojarra 4.0.7
[TOMEE-4359] - ActiveMQ 6.1.2
[TOMEE-4360] - ECJ 3.38.0
[TOMEE-4361] - Jackson 2.17.2
[TOMEE-4362] - Commons IO 2.16.1
[TOMEE-4363] - DBCP 2.12.0
[TOMEE-4364] - Downgrade Mojarra to 4.0.0 (cf. TOMEE-4355)
[TOMEE-4365] - EclipseLink 4.0.3
[TOMEE-4367] - Hibernate Validator 8.0.1.Final
[TOMEE-4369] - HSQLDB 2.7.3
Docker/Compose v2.29.0
What's Changed
Improvements:
* Add JSON stream progress writer [(11478)]
* Add `--prune` option to docker-compose `watch` command [(11932)]
Fixes:
* Exclude unnecessary resources after services have been selected [(11978)]
* Empty env variable with no value must be unset in container[(11965)](
* Restore setEnvWithDotEnv [(11974)]
Internal:
* Test with docker engine v27.0.3 [(11927)]
* Remove COMPOSE_MENU env from e2e tests [(11654)]
* Add stale workflow [(11968)]
* Change time before closing stale [(11979)]
* Fix: typos [(11632)]
Dependencies:
* Build(deps): bump docker/cli, docker/docker v27.0.2 [(11938)]
* Build(deps): docker/cli, docker/docker v27.0.3[(11951)]
* Build(deps): bump compose-go to v2.1.4, buildx to v0.16.0, containerd to v1.7.19 and buildx to v0.15.0[(11987)]
New Contributors:
* @idsulik made their first contribution in
* @testwill made their first contribution in
Etcd-io/Etcd v3.5.15
etcd server:
- Fix [add prometheus metric registration for metric `etcd_disk_wal_write_duration_seconds`](18174).
- Add [Support multiple values for allowed client and peer TLS identities](18160)
- Fix [noisy logs from simple auth token expiration by reducing log level to debug](18245)
- [Differentiate the warning message for rejected client and peer connections](18319)
Package clientv3:
- [Print gRPC metadata in guaranteed order using the official go fmt pkg](18312).
Dependencies:
- Compile binaries using [go 1.21.12](18271).
- [Fully address CVE-2023-45288 and fix govulncheck CI check](18170)
Gitlab-foss v17.2.0
Added (159 changes):
- - [Add status to scan result policy violations](0a0ae8f1088928daa6b432d9179b0daf9a6feba1) ([merge request](158203)) **GitLab Enterprise Edition**
- - [Add new run keyword under job](928bb79fccefe9d52ae30272bc333116b9ca3f1e) ([merge request](146333))
- - [Protected containers: Add PATCH REST API for container protection rules](481080c01de97ded95e7d5182a6f2302aaac89cc) by @nwittstruck ([merge request](158756))
- - [Added filters for multiple compliance frameworks](280906c08eb0df45e8fd89dd6e957ded70fbed04) ([merge request](158229)) **GitLab Enterprise Edition**
- - [Add Duo Enterprise to provision service for add-ons](f053e045f3eb066c3c6a2b4f915616554ea07126) ([merge request](158969)) **GitLab Enterprise Edition**
- - [Add Duo Pro end trial widget](bf8e86288372c1c18335105d11dbfefc511016bf) ([merge request](155614)) **GitLab Enterprise Edition**
- - [Add RoR tutorial to Observability docs](25c507c7a5c10fd111407225d6735692a7d17ba5) ([merge request](158625))
- - [Enable container scanning for registry](ccda3ca324318a8825fa032e1a2b853a95929e13) ([merge request](156247))
- - [Add willAutoCloseByMergeRequest field to work items API](8ea220794cd74f59876a798cdf58ba294af3836f) ([merge request](158145))
- - [Add Duo Enterprise to provision service for add-ons](ecf4a2c3df04db0105966313e3f4d5b8c81a2963) ([merge request](158963)) **GitLab Enterprise Edition**
- - [Add models for Virtual Registries, part 1/2](a7638db2d3bea91d1db1219df57add5986d11169) ([merge request](156930))
- - [Add the API to return the multi_matches in a single file](c90c284bc2e9a0f304ab6410866ab0a49862eec1) ([merge request](155984)) **GitLab Enterprise Edition**
- - [Ensure uniqueness p_ci_job_annotation](760b22da62461eebaae7325c7651cf040349a97a) ([merge request](159071))
- - [Add job action button to PMG](f3a916e6ba9ee27b345526914a3652fe2915b8fd) ([merge request](159004))
- - [Add migration to add seat control column to namespace settings table](deb3e5bda554bbbfd9341a91e9221b569852627e) ([merge request](158819))
- - [Display ratios instead of counts in CI/CD Analytics](9cbe9da793af51cb171289f8f505581ec3494988) ([merge request](158957))
- - [Add Importer User for imports user mapping](9051ecf67b14924bea3b8df52e24dad141e03b5d) ([merge request](157979))
- - [Workhorse: HTTP endpoint for bidirectional SSH git-receive-pack data](bd2f882c422de105ff2bba6b8011fd6270f65651) ([merge request](155590)) **GitLab Enterprise Edition**
- - [Add GraphQL API for Duo Pro seats assigned and used](16bed9c42c1bcb03d5a6e0c1591e92ce8b7a5fbe) ([merge request](157936)) **GitLab Enterprise Edition**
- - [Enable direct code completions by default](257c07f0bc44606e4ef54f4ba1fc6bbb26cbf83b) ([merge request](158733)) **GitLab Enterprise Edition**
- - [Added mutation for updating frameworks of projects](9f9fdd2b4e329b02695880734b534f38cb5593b5) ([merge request](157893)) **GitLab Enterprise Edition**
- - [Updates AI merge commit message to be GA](d207449f66baa0c31943c4a28164683f2bca11fb) ([merge request](158339))
- - [Add gitlab-advanced-sast as a SAST job template](c5a2613a6dc4158a71f78a085e80af28b3c8314c) ([merge request](158533)) **GitLab Enterprise Edition**
- - [Update the search code according to the replica](1e93b4695a64366da9ac8afa62a4fb425eb4a867) ([merge request](158371)) **GitLab Enterprise Edition**
- - [Add the API to return the multi_matches in a single file](9ed731cf614b1fc0d2a345791a096d6c08c93eda) ([merge request](155984)) **GitLab Enterprise Edition**
- - [Add merge_request.squash git push option](6db3affce8e9bf36aef55a632ae18f3850cfbf24) ([merge request](158778))
- - [Add by_pipeline_ids scope for occurrences](056008f7418e1b45d2c616bf7da4e09dfea309f1) ([merge request](158790))
- - [Release secret push protection for self-managed instances](b214790b5a358248b38bec911b97fefa0c27f6d4) ([merge request](156907)) **GitLab Enterprise Edition**
- - [Add ability to delete task list items](1b12e01908c312b302096c591266b73afd56471b) ([merge request](158243))
- - [Enable store first reviewer FF by default](a167164de15c9c7212ad83bba26c1b863e4b869a) ([merge request](158919))
- - [Add support for LDAP group sync with custom roles](03c57818738fd8628a7e6561b07483bea7c0b56d) ([merge request](157145)) **GitLab Enterprise Edition**
- - [Add delete mutation for deleting self-hosted models](55f5a09298d0b5bae2a8bddb920ae1a9f4abe53c) ([merge request](158319)) **GitLab Enterprise Edition**
- - [Add REST API endpoints to manage uploads](65fc96866782de44427e17c7f21964775e4dbd36) ([merge request](157066))
- - [This MR adds performance warning modal](6e684693e4cc527976c8f8509e84b7c8f7b9a32c) ([merge request](157745)) **GitLab Enterprise Edition**
- - [Protected containers: New GraphQL field "protectionRuleExists"](25615f524198cb6e08afabf6e22120d146b1e901) by @gerardo-navarro ([merge request](156741))
- - [Add ci_component_source_policy](ae3418523c5b20c57becd3426a54fda7240eeb12) ([merge request](157351))
- - [Add support for comments in rich text editor](2b7c21095ada7258e98ecbdf308e978332e18de1) ([merge request](158618))
- - [Add the API to return the multi_matches in a single file](975ea866d9f8ff1376f25849286f573ad1d2aacf) ([merge request](155984)) **GitLab Enterprise Edition**
- - [Add reviewer first assigned at VSA stage event](dcb264ff24fa7822062c736d27fc1f28a3de4900) ([merge request](158716)) **GitLab Enterprise Edition**
- - [Add page metadata to work items](d889cbd4339e228193c7011973cf7821aa76b150) ([merge request](157456))
- - [Create p_ci_finished_pipeline_ch_sync_events table](9a4b6ad800019e49efc1c4d4f0bc92591b30c33f) ([merge request](158060))
- - [Add Rake task to show token expiration info](f05e2dcd79b4d0d90074aad4db7dab87da2dc5ec) ([merge request](157855))
- - [Add and set uploaded_by_user_id on Upload records](0321e29e47e24f0b6eeff464a1e16740fbf72ffc) ([merge request](157574))
- - [Set first MR assigned for review timestamp metrics](c9a1d1bcc59979f4e7968d89e1281fc1254219b3) ([merge request](158422))
- - [Expose VSD overview counts for projects](aa767f85cd6f5e9ada27dc560160614047ec9942) ([merge request](158017)) **GitLab Enterprise Edition**
- - [Create country_access_logs table](8e35bd87d23d60547907918f6a938cab88b614a5) ([merge request](157480)) **GitLab Enterprise Edition**
- - [Show real page title in wiki sidebar](6c14327fd2fe5d69bf42c90ddb18f477bafa99f4) ([merge request](158679))
- - [GraphQL: Add PipelineAnalyticsPeriod type](baba2199561365b0cd95b025d6a63f147be9871b) ([merge request](157293))
- - [CI/CD Catalog: Add description, type to components](410bc05a2315afe16dbffefa8b32c7b4a6c376ab) ([merge request](157985))
- - [Protected containers: POST REST API for container protection rules](afee9075d1387525ad6138eb9a7ee69f8ec777cc) by @nwittstruck ([merge request](157925))
- - [Add Users::ActivityEvent and pub/sub logic](8fcab5a27db9a4d127c0165e83b32a0e4f938a7c) ([merge request](155559))
- - [Add status column to duo workflows](7d0440e97dd609453f5a1d87450a413a5c4c5906) ([merge request](158036)) **GitLab Enterprise Edition**
- - [Enables inheritance field param via the Integrations API](dc7b1b96f97e4d9f361f98f698922259b5d27362) ([merge request](158218))
- - [Add hasParent field to hierarchy widget](96e70f6c713e829baf7a2ff0ed252206e34e7bdb) ([merge request](156041))
- - [Add UI for CI_JOB_TOKEN permission settings](0a663c231314259a70a74acebeec62bb05115939) ([merge request](156752))
- - [Document SPP known limitation](c6aa84da756e078b228b4dd78cc9ec5233d11b87) ([merge request](157699))
- - [Remove ci_expand_variables_in_compare_to FF](b3358f2d75daeb810eb06e4b473249de2fb0e8ec) ([merge request](158183))
- - [Separate wiki page title and URL fields](a8f32279fcf6e17d747b8648d705d37af5abfc3e) ([merge request](150646))
- - [Remove the `gitlab_duo_usage_menu_item` feature flag](6b8de4adb6b8387ef65e34f22a4162ebbcd225b8) ([merge request](158388)) **GitLab Enterprise Edition**
- - [Remove references to hamilton_seat_management feature flag](00fee8b1853ac7af78c799054052e983bd894402) ([merge request](156961)) **GitLab Enterprise Edition**
- - [Add FK to VSA stage event hashes organization_id](44e0f713faa6ef866ed829b523921b9bc1d95929) ([merge request](158322))
- - [Release pipeline execution policy type](c7f9bb825eb2db6c480e557f0af92470c3618eea) ([merge request](158338)) **GitLab Enterprise Edition**
- - [Update Analytics Dashboards' viewed/created/edited tracking events](f1bf9efbb2e0c358efa133e521352e10ff4155e8) ([merge request](157680)) **GitLab Enterprise Edition**
- - [Update GitLab Pages version](81abcdb13c823e82e5d416df6ed2f9aa1f93e59f) ([merge request](158248))
- - [Add owners internal endpoint](0e45f6bdf283916ff5a2f8f70195a0b99a5a62cd) ([merge request](157620)) **GitLab Enterprise Edition**
- - [Add banned/blocked indicator to card matches admin page](43ac9f69a4fa42b4720183096ec39d49504a2e95) ([merge request](157220)) **GitLab Enterprise Edition**
- - [Recreate ci_finished_pipelines ClickHouse table](3db8c2909e09590b47d148a24fb938cb4fb16acc) ([merge request](158246))
- - [Add endpoint to update list of X-Ray dependencies](22f296b34c92e85c1f417f25faa87323daca4b9c) ([merge request](156179)) **GitLab Enterprise Edition**
- - [Add imported_from value to github importer](a29fc47f948df472a21f5a7f056eb3703905f7d5) ([merge request](157760))
- - [Create ci_finished_pipelines ClickHouse table](da90a98e359c6eb0ae7f053bdf26de6929200e34) ([merge request](158078))
- - [Add compliance center for premium customers](6e68bc862fbcfd78620732995bafe0af5edf36ab) ([merge request](156632)) **GitLab Enterprise Edition**
- - [Add badge for feedback on new epics](e542ebca350e494f7e1b131f164ccc2a726a3424) ([merge request](157324))
- - [Add a validation about project assignment to a replica](6ffd1aaa10b9f23a2d0668882369ece60e2400f5) ([merge request](157758)) **GitLab Enterprise Edition**
- - [Add support for LDAP group sync with custom roles](b426f3af63b07e64310f92733107b7891a47db52) ([merge request](155680)) **GitLab Enterprise Edition**
- - [Create audit event when deploying to protected environment](87909ef70f040653c8be4c2dd226dd5580568fa1) ([merge request](156111)) **GitLab Enterprise Edition**
- - [Add new namespaces/namespace_id route](8410d97a8c10317b4e776303cc0e5abfbe5f84c8) ([merge request](157341)) **GitLab Enterprise Edition**
- - [Add support for groups in policy scope](62cd071153e3cf03a5878da052fbab99817f428b) ([merge request](157083)) **GitLab Enterprise Edition**
- - [Show TOC of a wiki page in sidebar](2e9921fc57e378437db033ae6f4efeca75d6bba5) ([merge request](154050))
- - [Add table to record placeholder contributions](347fe084d384dd850dec45dc76d48af6bdd2b8cb) ([merge request](156241))
- - [Migration to populate vulnerability_reads.identifier_external_ids](07a5d22507ca7b7d9c072398c9e93d7e2de388d3) ([merge request](157639))
- - [Add runner fleet dashboard visit metric](99554f12c4eb77ffd328de84a73392f0a8bcbe6b) ([merge request](157589)) **GitLab Enterprise Edition**
- - [Add more log fields in 401 Unauthorized requests](eaa8ab73884b9504156e2e2aef1a8c506dbb3f86) ([merge request](157277))
- - [Add imported_from to bb cloud resources](2b2a583c8e96454a5ccc12f4ff27445b8bcc0e9a) ([merge request](157582))
- - [Integration for Beyond Identity exclusions by groups](5f0492a248e962139237fb40f023ed6f4f1b48ba) ([merge request](153957))
- - [Add hybrid search query for issues](b48f5b540741be978869c50c585794f659724edd) ([merge request](156904)) **GitLab Enterprise Edition**
- - [Add job item to pipeline mini graph](724852d20740a65a61eeafc6b95c97810c11ee7a) ([merge request](157798))
- - [Add imported_from value to gitea imported resources](0a1528a6cbcecc4d071fe04fa517334ff8864ba9) ([merge request](157333))
- - [Add GraphQL API for AI Acceptance Rate](ba677efb561d0984af5c850ef7b1536702ca4bd2) ([merge request](157035)) **GitLab Enterprise Edition**
- - [Create audit event for container repository tag deletion](0c61c1eb09e9c76acf4093c2c25e3427f119a7b2) ([merge request](156066)) **GitLab Enterprise Edition**
- - [Add tracking to metric drill-down links in VSD and AI Impact tables](85ee54f6b8a3a59e516d35be7c9e05e9055f48bc) ([merge request](157363)) **GitLab Enterprise Edition**
- - [Perform chat requests via new endpoint](139b88d87cf26a25c24848d2e807aa66c88afa56) ([merge request](150529)) **GitLab Enterprise Edition**
- - [Added mutation for updating MemberApprovals](cbcd2bf16233b16ac9065ec7889abeae21711630) ([merge request](155284)) **GitLab Enterprise Edition**
- - [Add new internal users endpoint](eece4b86cca0ddb603540d54667c8fb0e752800c) ([merge request](156759)) **GitLab Enterprise Edition**
- - [Add imported_from value to bb server resources](5a6b7359beade96a4110126c70ffaef2bd575cc8) ([merge request](157507))
- - [Add support for legacy epic references in workItemsByReference query](4be3f387fa992071c0a0d82cf1af7739b58696f9) ([merge request](157787)) **GitLab Enterprise Edition**
- - [Add in pipeline stage dropdown](a55564a041751e6fed4b0accfa84053a7439bdc6) ([merge request](157506))
- - [Add branch_filter_strategy to system, group and project hooks](a120d1f89e4920634c58dc444ec4ac83f2d5454c) by @clxrx ([merge request](145970))
- - [Add duo enterprise add-on type](b4de88cb4d1366991b7ecddca4459ee84983e16a) ([merge request](157730)) **GitLab Enterprise Edition**
- - [Add update mutation for the self-hosted models Vue client to leverage](1e3ae1075a486c6cd85c93145336f3c6ea6d3d62) ([merge request](156899))
- - [Protected packages: Add label "protected" to package list on group level](63e733df54f0a5ad24f67115d4b83aa53d26d979) by @gerardo-navarro ([merge request](154809))
- - [Protected containers: Add GET to REST API for container protection rules](215c18a415bc2dfbafb6bb81a3f5a404e8b2d5b2) by @nwittstruck ([merge request](155798))
- - [Add gitlab_sec db connection and application record](c93d2b4e1112ed682c4690fe0c19b78a5dd51141) ([merge request](157462))
- - [Fill out fields on InputType](92da7caa9f4148d1d611e3f1e6eda5a24d8f6164) ([merge request](156328))
- - [Adds configurable default Service Desk ticket visibility](39be1cc96b11451030e06efea06d956f220b796c) ([merge request](156884))
- - [Add error message for failed association deletion](a6408f97c1af7e54d63a26edcd65d0fd27a6dd21) ([merge request](157625))
- - [Allow `admin_runner` to create a runner linked to a user](98564f789a47c63a33387ebdd4a8e262d8da377c) ([merge request](156559)) **GitLab Enterprise Edition**
- - [Allow push to the own repo using CI_JOB_TOKEN](5c8b0440f95ab67f5503220ba63173f248c9054c) ([merge request](154111))
- - [Adds reusable SettingsSection component](d66062058592ca8b25f10395546706f8a44e39ae) ([merge request](157270))
- - [Enable runner dashboard for groups](2dbe985b8822a3a5f56da73e4f30387710b7eb2e) ([merge request](157423)) **GitLab Enterprise Edition**
- - [GraphQL: Add job execution status to runner manager](8036c15b59b4194ef3c4dfe491c0f5200ced13bb) ([merge request](157429))
- - [Auditing framework assign and unassign to a project](01e758131649a64b9e925bedf933c5b3d311b501) ([merge request](156605)) **GitLab Enterprise Edition**
- - [Add runner CSV export metrics at project and group level](c2c334e0f211370dbde828ca05b8c55321df3ab6) ([merge request](157197)) **GitLab Enterprise Edition**
- - [WorkItems: Fix rolledup dates when removing child](dfc2d692cfc9da9d5b3470d9b90aaa390729bcc1) ([merge request](157334)) **GitLab Enterprise Edition**
- - [feat: Add configuration for sec DB](faf789e010b264e31c6db729be8cdff9ed325421) ([merge request](156952))
- - [GraphQL: API for retrieving most used runners](1ea8a9d0c44968bc38e64dc6e6dbe85dd0abd9c8) ([merge request](157436)) **GitLab Enterprise Edition**
- - [GraphQL: Add percentiles to QueueingHistoryTimeSeries](2dec0f10284ab11266564c511632ecfb0ba6a67f) ([merge request](157435)) **GitLab Enterprise Edition**
- - [GraphQL: Add upgradeStatus field to RunnerType](6ecc972d8b5e75a8ac580eca16d9fa2297750b94) ([merge request](157434)) **GitLab Enterprise Edition**
- - [Add support for Claude 3.5 Sonnet for code generation](b793848806ec66dbf779d000d6c4adb94565dc36) ([merge request](157336)) **GitLab Enterprise Edition**
- - [Bump rouge to 4.3.0 with the new IEC 61131-3 Structured Text lexer](e8289a931d6cf482c1feac3c0e4a9af9f9b643c2) by @bufferoverflow ([merge request](157252))
- - [Add secure schemas version 15.1.4 and 5.1.3](f37ff659e20c823989d6f78f2d7b343b57c785c2) ([merge request](157282))
- - [Add metadata to group work item page](1d065451d1b6677b8e9e2c16f6032ebfd4865e45) ([merge request](157049))
- - [Add NOT NULL on merge_request_id](fe28d0267fdc2230d59a00cb7841cf17f65d23d4) ([merge request](156170))
- - [Add merge and closed user ids to MR metrics](c9b115a010ad681eb1c57ce31fb333ebdc25e843) ([merge request](157206))
- - [Pass org in export part creation](2e8c605e61e1e3ae7a13828ede9e541ec7e44266) ([merge request](157074)) **GitLab Enterprise Edition**
- - [Add support for child pipelines to SBOM ingestion](6eab3a93690af0b73d4dd32e431a19c6bacedd78) ([merge request](151814)) **GitLab Enterprise Edition**
- - [Add option to sort Pipeline Schedules to frontend](3573dec857ad905f2de64ee3498ddab78cc5aec4) by @schurzi ([merge request](157224))
- - [Add ability to create label in work item labels widget](d327d4ce3ffc63c8b3ba63b1d1742c2324cd6031) ([merge request](156524))
- - [Allow `admin_runner` ability to change stale runner pruning setting](d903b29f8a0c48475c6045349c4964c1381f9801) ([merge request](155497)) **GitLab Enterprise Edition**
- - [Adds type to issue webhook attributes](e6e6017ad32d0b74b224dfaffabaae3db832be84) ([merge request](156760))
- - [Add button for adding additional seats to error messages](a1c37cf4c5ff40506c0043a752aec1d2fc5e8412) ([merge request](155737)) **GitLab Enterprise Edition**
- - [Adds the CRUD Container component](313ca91904b092475e4d62ff90a90dbe17ca9c01) ([merge request](156749))
- - [Add variables field into PipelineType](a6d441fc18e1df2c8c5bd9e44ae5bd6cf3d93a01) ([merge request](155418))
- - [Show latest version on version creation](752ff4db28ec6c38eff135bc99953d8173388ddb) ([merge request](155978))
- - [Backfills gitlab group issue embeddings on gitlab.com](9101e4229aba3224e4916b5557f8d0766885ad4c) ([merge request](154940)) **GitLab Enterprise Edition**
- - [Enforce rate limits for notification emails](4d990b60e1a4341add14437d24398a07b3ce6a7b) ([merge request](156945))
- - [Release CI/CD popularity count and sort](ccc6b38cb6dc01f9f9c2f2b6d168a10c92218095) ([merge request](156654))
- - [Remove ci_expand_nested_resource_group_variables FF](cb194188d3540d141d4d21aa679c3bb9485db840) ([merge request](157146))
- - [Protected packages: REST API PATCH package protection rules](883ad288d8a131398c8c744432aba919d2278866) by @nwittstruck ([merge request](153577))
- - [Add api to return group's shared groups](a015acefff8c8bceaca21193a8c576bf5fe8ec11) by @imskr ([merge request](155251))
- - [Protected containers: Allow nil value for fields `minimum_access_level`](430374098a1e8b078f38585219ba012fb914f996) by @gerardo-navarro ([merge request](146997))
- - [Add maintenance mode banner to edit frameworks UI](d67604b6a6b900bfda49002d8b3690afaa384239) ([merge request](155887)) **GitLab Enterprise Edition**
- - [Add cargo to supported sbom and sync types](114c6191291c84bb3f2fe0a37701ab9604389cf7) ([merge request](156072))
- - [Add disabled_direct_code_suggestions setting](57c2bf6c68e86711699c76c41ff9717c69d0f22c) ([merge request](156147)) **GitLab Enterprise Edition**
- - [AI impact analytics dashboard is now generally available](b23a75f987231d1b882e6460a57109230c604dfb) ([merge request](154148)) **GitLab Enterprise Edition**
- - [Adds inheritance settings to API::Integrations](56a2f1da6ead60b6ae42633a6263595813576c3e) ([merge request](154915))
- - [Remove identity_verification_arkose_challenge feature flag](b882650e842bc4b82b7af44507418bd414da396b) ([merge request](156862)) **GitLab Enterprise Edition**
- - [Added include_forked filter to the zoek search](dda457f63b5b0546ca9e3ab449e0dc902156655c) ([merge request](154099))
- - [Extend organization to snippets table](1b14e34b38fb9b26c3737a93c189804464ca88fe) ([merge request](155580))
- - [Include required backend data for the Project Header](28c0badf0bead0768a092fb298d1b8cc39162548) ([merge request](156049))
- - [Added create and delete apis for instance level namespace filters](cd588f8794c57f1b87f899429ff5febdb43f6699) ([merge request](153156)) **GitLab Enterprise Edition**
- - [Add approval_policy_rule_id index and foreign key](05c2f382674e5951bdd4eb771a14bb203eb286ca) ([merge request](155256))
- - [Add pod logs buttons](7446d3fe32cbb1cb9876714805125640fc5b19cf) ([merge request](156544))
- - [Add support for rendering readme in terraform package details page](67d63b74dff09e7a4fefdfe5e8e77e74bf073bdf) ([merge request](155025))
- - [Create container_repository_deletion_marked audit event](130adeb5bea20ed3934820fd223c58e045110342) ([merge request](152967)) **GitLab Enterprise Edition**
- - [Protected packages: REST API POST package protection rule](07af56ad982ac40656fdd907f6626f2bb4f93b1e) by @nwittstruck ([merge request](153571))
- - [Adjust logic to add org to export](1b9cea92f6e3cb3317c36388acffd109638b835f) ([merge request](156367)) **GitLab Enterprise Edition**
- - [Add mediaType as a field to Tag](8bfa8d8f130ca74127e99f85e99c5c5f1bcb3d9c) ([merge request](156303))
- - [Adds List-Unsubscribe-Post header to notification emails](2f6f362ae293171da5882592ef93f2e5e99ca585) ([merge request](156414))
- - [Add member_role_id to ldap_group_links](83684890db91add42b8651f0562a7d9a7a868152) ([merge request](155676)) **GitLab Enterprise Edition**
Fixed (162 changes):
- - [Exclude scripts from coherence check when publishing npm packages](9a6daba70e91fbcc0b46cc5bd50e37de63a58eee) ([merge request](159427))
- - [Relax the version comparison for NPM uploads](450f299f822649d8772b88d516cd982d46a81bde) ([merge request](159327))
- - [Fix worker when record not found](ce9477c4c6d2a78d1b270eb4453e5157bbc8170a) ([merge request](158973)) **GitLab Enterprise Edition**
- - [Fix Content-Disposition not working for Azure in API download](b3c547feccf134234284514d641b2dea42bd50d1) ([merge request](159292))
- - [Display error when delete framework fails](571492480ace5b8e3ad5dbb5fd6df29dd0473545) ([merge request](159207)) **GitLab Enterprise Edition**
- - [Cobertura parser: Extract filename OS-agnostically](ad34f313de7ae59910f3b0bbeff6da89ee5199eb) by @bmarconato ([merge request](159263))
- - [Fixed Productivity Analytics date range calculations](3e6f3a9a0f612d1b73a17487fa265a3a7f8505e6) ([merge request](158664)) **GitLab Enterprise Edition**
- - [Fix IDE Duo Chat timeout](bb885d2da7e208424e3f9100b5de78ae5c03a5b3) ([merge request](159201)) **GitLab Enterprise Edition**
- - [Support auth credentials from URI for pull mirror validation](9d5f6d4bd03ef6cc8282ea539b3a50e7383b42f5) ([merge request](158076))
- - [Remove invalid foreign key fk_87f4cefcda_p](8ff55f5255757dcca5f7ec776720f8e6c4e40d62) ([merge request](158585))
- - [Fix calculations for predefined date ranges in Value Stream Analytics](1a0f0fabf271268e7272d01ba3370985915c34e6) ([merge request](156355))
- - [Use sentence case for work items "Linked items" header](8cd3212b168810bda633c8078250aadc4050ce8c) ([merge request](159148))
- - [Fix custom emoji display](d4d9005c15a6c1d97812b0daf667d4aa2d0a2499) ([merge request](159136))
- - [Fix pipeline subscription error flash message display](e21661bfde2afabe49af4e86384eb203664678af) ([merge request](158151)) **GitLab Enterprise Edition**
- - [Remove zoekt dependency from elasticsearch](cb1027397db9249bd359adec7cdc5b6fb8ea5101) ([merge request](157921)) **GitLab Enterprise Edition**
- - [Fix custom role bug with requirements](9f1ddccc5712bf0a346952d666fbf71da675d3ca) ([merge request](157115)) **GitLab Enterprise Edition**
- - [Fix issues with quick action explanations](025d14c15e7ec0c1dfe813730a9194cf2f16b410) ([merge request](158990))
- - [Fix notification emails not being sent when using external authorization](6a140058c3e0fb99eaeb1298a357200e319e6d67) by @pR0Ps ([merge request](110709))
- - [Clear seat assignments cache on bulk upsert](068b498bc5072b95c4d7a88db3bb0fad9723f820) ([merge request](159065)) **GitLab Enterprise Edition**
- - [Fix how maven dependency proxy credentials are sent](9bc5abe412a364eeb46f811f9b77092839ee3ed1) ([merge request](158593)) **GitLab Enterprise Edition**
- - [Remove validation for ProtectedRef access levels](42d475a1314f2301c24501f3b7e2e1e3b4f89bf0) ([merge request](158296))
- - [Make `complianceFrameworks` field work for subgroups](3cf82399f3ee900869dfc75f0b9142cf7feb87d6) ([merge request](159055)) **GitLab Enterprise Edition**
- - [Introduce dedup lock for rescheduling jobs](7e469afe690bb59b45456dcb426242e0d07279a2) ([merge request](158329))
- - [Fix GitHub Import when importing from GHE](ea2d574785ac7f080577c64b37864b8c4e214eb5) ([merge request](158503))
- - [Fix alignment of admin groups header](decf1f008d63edd582b5bf6fbc1627269cb209c0) ([merge request](158805))
- - [Parse the package.json file entirely for NPM uploads](6d91ce9ca96b68f720e232582b3ab6d4cdb7f5b8) ([merge request](158978))
- - [Authenticate the GitLab Duo usage controller](2540a50b105bf4971a1501e16d594548ea3b9491) ([merge request](158758)) **GitLab Enterprise Edition**
- - [Fix new issue note for group level issues](f41a2e170fc0df8969e4404f992994b97e25963e) ([merge request](158496))
- - [Remove milestone truncation on issues/merge requests dashboard](1d6db3dcc9deda7d456735ab2e0920c52bf9e2cc) ([merge request](158375))
- - [Protected packages: Npm package push protection for admin user](7622de8c7eb77596cd4486e16cbe3887e9a6cf5c) by @gerardo-navarro ([merge request](156439))
- - [Work Item Epic feedback close on click](a83a354db835594945f3b6a68cd7a53144725aa0) ([merge request](158900))
- - [Fix work item sticky header](57fd28472e239445bc8a12fc0722857c42adbc36) ([merge request](158896))
- - [Fix bug with achievements path when feature flag not globally enabled](951b4aa67a1ebbb4124274b46456dee1f243c095) ([merge request](158895))
- - [Protected packages: Fix documentation](327f7009058a3dfe11dfc652b27bed787e0a084e) by @nwittstruck ([merge request](158894))
- - [Add workItemType check for weight widget for epics](a14fc4ee58210c2accd95c141625d8fdcc2db81f) ([merge request](158878))
- - [Exclude disabled custom permissions](94a33e125508a13734a62a39ae702e5ce560dba4) ([merge request](158848)) **GitLab Enterprise Edition**
- - [Prevent modal close on comment submission](eb2277960ec3bf66623fa1d77670fc451823f2f2) ([merge request](158478))
- - [Remove empty minimum_should_match from query](731a7e4953bcc2575d2cb7bd6a7708c1d9d5df2a) ([merge request](158645)) **GitLab Enterprise Edition**
- - [Prevent running scans from execution policies after downgrading license](2f6536064b1d214c268ac78d53e10cbad97ce123) ([merge request](158817)) **GitLab Enterprise Edition**
- - [Fix wildcard package.json search in npm upload](917899322e2074f2cd4468a6f5ec3b120e0d6ede) ([merge request](158806))
- - [Fix sync failure retry backoff](75b31d017ab5f8bb420e7bb23279131b81d5c590) ([merge request](157805)) **GitLab Enterprise Edition**
- - [Exclude last page link from projects/id/repository/commits endpoint](f1eca9272f911e1c4c0f2b4e2a67f0c53cc3e4d9) ([merge request](158278))
- - [Unify spacing in group and project item components](aadf1e2079cf96c17de27253d8e07d4f8304f3d1) ([merge request](158639))
- - [Fix MR approval policy `prevent_pushing_and_force_pushing` enforcement](b479126b59dd39b1fc0d738665044ece0e4c8110) ([merge request](158435)) **GitLab Enterprise Edition**
- - [Update static_holmes to v0.7.11](6cacaf56940ab272c34a515f2fbaa8f9c388ae8c) ([merge request](158714))
- - [Fix meta.root_namespace not logging for groups API requests](8413bde199dbe4395ceb599cb88aa5d4ffb91f13) ([merge request](158671))
- - [Remove `fix_sso_enforcement_for_web_activity` feature flag](29f566014199d4ca90feb26a1dcae982743a82f8) ([merge request](158655)) **GitLab Enterprise Edition**
- - [Fix layout of filtered search for pipelines page on mobile](5085921f9bebccf2b8f03c2be711b02805581216) ([merge request](158649))
- - [Fix cached introspection query and graphql-explorer](5bab3b90d3d440ae5ee44e8fb937a81deca0c7fc) ([merge request](158260))
- - [Ignore object pool already exists creation errors](cd5c559d81fcbeed4781666eea23ff88624e52a6) ([merge request](158412))
- - [Fix approval policy type detection for policies list](9464813b2a7dcd480f6304f8f1963e5127aae7f2) ([merge request](158528)) **GitLab Enterprise Edition**
- - [Fix polling when retrying status check](9c9a7427d39481ae993fba572b379634b7ead720) ([merge request](158527)) **GitLab Enterprise Edition**
- - [Fix NoMethodError in PathLocksController](6b66490ff71e4aa311afe05e541ac69854e6c565) ([merge request](158434)) **GitLab Enterprise Edition**
- - [Protected packages: Remove developer as an example from documentation](7d191795eb9413b998d73b1985c02997d999cd88) by @nwittstruck ([merge request](158433))
- - [Ignore selected project if adding epic](3fe3078b6fce5c41c1431c15ef3c053f1b07ef30) ([merge request](158241))
- - [Remove Bad spacing in pending comment](641ecd1b8134c1d0af00f7a2f9094f4ec07a44af) by @Deepak18-06 ([merge request](158429)) **GitLab Enterprise Edition**
- - [Fix merge train merge availability when pipeline is canceling](99dfd60511346c843950c911c482b08e19644904) ([merge request](158126)) **GitLab Enterprise Edition**
- - [Fix broken schema path](e94b26c861f80efd63361f15da8964a6d62c3093) ([merge request](157228)) **GitLab Enterprise Edition**
- - [Fix incorrect retry warning when merge trains are enabled](7e576e008ef04bf7bcefe917e4c33256caa17196) ([merge request](158283)) **GitLab Enterprise Edition**
- - [Fix Zoekt exact match](d893df66119a92d4b0bb89c73c841050a4af14b9) ([merge request](158379)) **GitLab Enterprise Edition**
- - [Forking project to groups with restricted visibility levels](fb0a1bf330d184eb0b5901b7a3e39a2c7f273d52) by @gerardo-navarro ([merge request](157202))
- - [Title returns a default value if no advisory title](31ba4d52d0a7e0a39b454dc8177175fa2e40158d) ([merge request](155841)) **GitLab Enterprise Edition**
- - [When activity token is cleared set query to all values](e26eeb648b8249684aec6d8d2f461eaa8ebc472f) ([merge request](158098)) **GitLab Enterprise Edition**
- - [Fix issues mailer for group level issues](b474a0465bbe9c8818a11ea32e8985e33db66cf2) ([merge request](156360))
- - [Display unverified badge for signed commits without a signature](1aceccdb4b372a16a7e8cb71c26666388fa5c7b2) ([merge request](153407))
- - [Fix related items header in dark mode](298622b5f009c518701835a3f79fee3d13f73fab) ([merge request](158169))
- - [Reduce getPipelineDetails query complexity below 200](42a009b95acd9df7f78f42eb7afcf6ba9789ec3e) ([merge request](158158))
- - [Fix issue description task actions focus bug](0ab321a080cde133f39971dfc6cb2c96085a1a75) ([merge request](157495))
- - [Reset form error when tokens change after submission failure](365f13032ca4c186aebfaee78de9cdf407a3631a) ([merge request](157792))
- - [Do not create empty rule for branch specific rules](e765f4ea1ad6b6f9d97a835e7f4c8eba0985a6d8) ([merge request](157723)) **GitLab Enterprise Edition**
- - [Reinstate dt disabled message](2f8110a741e85ee65f73e6c738260b6475d08fe4) ([merge request](156744))
- - [Fix submit keyboard shortcut on commit page](ff4782d2fd23b5d4ce7cb240e783d9fccc9b3f3b) ([merge request](157998))
- - [Remove custom CSS to fix modal background color](caf6a6e388a98c71a3331ee70b9155222dc94a4a) ([merge request](158064))
- - [Fix badge issues and sticky header](99e5372454a66afa98e65a9b26f00a6438135c0a) ([merge request](158047))
- - [Skip approval updates for merged MRs](bc90a50bc57f11bc252cbc57e7ff4f887d5571c5) ([merge request](158042)) **GitLab Enterprise Edition**
- - [Fix ambiguous namespace_id in query](2f9aa3a181ff09af45b226f72d0e6d1847b481f0) ([merge request](157780))
- - [Pass session_id to nested sidekiq calls](08a9a012054dbd9fdafc48e74165f992e3523255) ([merge request](157566)) **GitLab Enterprise Edition**
- - [Prevent redudant finalisations of segmented exports](e51c3bbbadb487a4d64508314fda4a152279706e) ([merge request](157695)) **GitLab Enterprise Edition**
- - [Allow Developers to create projects from templates](52e43952ea7987940fb07724589b1f6caf8930ce) ([merge request](157401))
- - [Fix flaky test in SyncFunnelsWorker](a2e34f649d3c3c3dfe22721013ee2f2385a5f07d) by @max.woolf ([merge request](157763)) **GitLab Enterprise Edition**
- - [Fix URL generation for links with spaces](23293597ecf724218349450527a1f64f87611d59) ([merge request](157942))
- - [Fix Link header for Tree API requests](2ef5030ba61668fc00ff83cb088d30902af0f60b) ([merge request](157914))
- - [Fix issue creation on board with scope set to No iteration](bba2d2b4d030f1ad420ae3472612d0301749255b) ([merge request](157892)) **GitLab Enterprise Edition**
- - [Fix setting the `organization_id` for vulnerability exports](bb6b92a2d7ab40e5df07bf8b02b0f5f036bf96fb) ([merge request](157889)) **GitLab Enterprise Edition**
- - [Field needs to be called Url](bd553868ae635267f1615927ca7a6656406d16df) ([merge request](157884))
- - [Fix bulk_import history prop type check](abae316f7bcefaa01afce3bfdf55e6bbff9bf337) ([merge request](157856))
- - [Upgrade graphql-client GEM](8ddbcd44cde498b7fb21bf29b550a4a0bc0a1c60) ([merge request](157772))
- - [Fix Milestone collapsed sidebar, adjust some aspects of issue sidebar](947b0449ac1bc882b14c4ed90d3e82dcefc1ce42) ([merge request](157676))
- - [Add safeguard for author](f63aa04e88334c28958abbfdda1157214cdec008) ([merge request](157814)) **GitLab Enterprise Edition**
- - [Geo: Update the host to build the replication details links](9e244068428fa02253cac7edf0514f4338d6d562) by @antonkalmykov ([merge request](157671)) **GitLab Enterprise Edition**
- - [Add missing "Deploy Keys" breadcrumb item](fbe188dc81095116f8d7306e7abf10cc6968ff82) ([merge request](157445))
- - [Allow viewing hook logs with admin_hook permission](4d52095187268809685043493e3b322fb437e22a) ([merge request](153806)) **GitLab Enterprise Edition**
- - [Recreate records when moving issues](d4b0a967100e83bd22392105f4a46f215fa8f880) ([merge request](157332)) **GitLab Enterprise Edition**
- - [Authenticate agent requests using Gitlab-Agentk-Api-Request header](cdaca4495de42c17d34f7b06928e52d2f53d08ff) ([merge request](157703))
- - [Fix Verification concurrency limit](58c8f5c0cfaffb54698df5f8bfabe8a05ce29924) ([merge request](157553)) **GitLab Enterprise Edition**
- - [SSO enforcement for web activity should only apply to current_user](72c0ce28c980e39c825604fb1ee1f2c593f13ac8) ([merge request](156934)) **GitLab Enterprise Edition**
- - [Display the number of rules for a given branch only](6a4e41dda7ef955a29ef1d5b20b1b49cc3efbbe1) ([merge request](157292)) **GitLab Enterprise Edition**
- - [Fix sticky header badges shrinking](df2dfef866565edf5c05496548d2dd0321782c5b) ([merge request](157580))
- - [Fix DML not allowed error when creating views](c87295b3a65e6d95b9fb3b50917781347b877589) ([merge request](156986))
- - [Use pajamas default left and right spacings on Roadmap page](cd64bfb1757fba9f5a5179ce3fe3f1f9a230060c) ([merge request](156550)) **GitLab Enterprise Edition**
- - [Fix orphaned work item parent links](811dafe0d4ace122674f20f364f552f6d473d809) ([merge request](156657)) **GitLab Enterprise Edition**
- - [Add jwt for jira connect branches](dba8992cad989ff4717058a1c945db8a2b1f3d0a) ([merge request](149377))
- - [Do not wrap flex parent of verified badge and commit copy button](db8a0c4c742223639196f18672b44a339dfe3b1f) ([merge request](156673))
- - [Protected packages: NPM push protection for deploy token](c6931921bb6dad26cad0c2868dab57744c4e9e84) by @gerardo-navarro ([merge request](156610))
- - [Use universal_stylesheet_link_tag in app layout head haml](2b5f004d4e2a91f7b6f8ed611734e672afea37d4) ([merge request](157356))
- - [Improve error message when setting parent of a work item](b933e6349919b84a1f6f2571d175eabbf344bd08) ([merge request](154557))
- - [Fix search bar accessibility issues](ad6f231039e87dd6c6096eccd2c33e0de39f1166) ([merge request](155091))
- - [Allow to set "No one" level for branch protection defaults](097cfcc599122e4c43f022f51096ce38713077bf) ([merge request](157315))
- - [Fix MailRoom not loading in Omnibus](802a87d2fea4603d3eb4ac3848ae7c0a83cf14c3) ([merge request](157339))
- - [Change fixture order](2f51e7f4d1383039ebe0c9a391f9453897b9420a) ([merge request](157309))
- - [Don't trigger edit wiki shortcut when using search](0e2078fec2a8f2ad9e1adcd0be99fb96ec7f8e35) ([merge request](157303))
- - [Include action in webhook test payloads](3eac576afdfc3a72e1c2750b9640bbcef390a1cd) ([merge request](156856))
- - [Fix issue using multiple contact quick actions at the same time](6965459cba26119b6c0909d6f026dfde6a985312) ([merge request](157299))
- - [Correct finalize migration for BackfillEpicBasicFieldsToWorkItemRecord](44d3563325e6e58248b92dcdcba75dd114aa6c32) ([merge request](157295))
- - [Remove extra gap when 0 roadmap epics have children](d2e4c436b848c40d75087a08a294c7752a9cf0b6) ([merge request](156694)) **GitLab Enterprise Edition**
- - [Fix finding name in regards to image name](6fc93a0fc23ce1b3b21630b7225997181a5c24e4) ([merge request](157070)) **GitLab Enterprise Edition**
- - [Validate provided group parameters](97775beb0d5ebcd535758ee2d9033e4ecf7b1a87) ([merge request](156977)) **GitLab Enterprise Edition**
- - [Vertically align group and project header](642efcacfc1806a09fae2dfcafb7ee3471b6af63) ([merge request](157097))
- - [Fix undefined method error for invalid ref](34aed5beeb5dd85fb0236cf80635dfb6a082529a) ([merge request](157180))
- - [Fix NoMethodError for Files API](756ab645265f272b30afc340cc26427f5cd77dcf) ([merge request](157193))
- - [Do not show minimal access role as option](38f785705ef873e7b869f5f76a288f709ce21181) ([merge request](156882))
- - [Include pagination values in request](d48821a5f2aff9acb63a7a8ca47c043fecfbfd1b) ([merge request](157158))
- - [DAST Scan library: Fix Tailwind classname](26a52654f5b5ab7530f6b52096e9b0d4db3787f4) ([merge request](157170))
- - [Fix line number for larger numbers](6308ab66ca7ab4bb90d3659cc98e8cd58dc557be) ([merge request](156820))
- - [Fix 500 on Changelog config](fbf5c11464a6a462542a3ee7e273dc8a846c7be1) ([merge request](156938))
- - [Fix spacing info popover icon on dependencies table](64b8b263e68d19e57113c708da2250cc365e0588) ([merge request](157148)) **GitLab Enterprise Edition**
- - [Revert "Merge branch '430915-enhance-permission-selector' into 'master'"](642d945976e52049db6115742a57cce413a881c8) ([merge request](157142)) **GitLab Enterprise Edition**
- - [Do not show cluster image scanning vulnerabilities on development tab](08d6018da94e28bb4371be7974a486b5795848ca) ([merge request](157018)) **GitLab Enterprise Edition**
- - [Cap vulnerability report tab count if it exceeds cap count limit](f355e1e6b328ee9853ba646fe7f2d358515ddb20) ([merge request](157116)) **GitLab Enterprise Edition**
- - [Enable the query workItemsByReference to accept a group path](1332f34e8f9acc5e3809e0ae8f7f7a2ea2ea9ca1) ([merge request](156881)) **GitLab Enterprise Edition**
- - [Improve work item query when sorting by updated_at](d0a53cb7cb857d799536aeb00e4d97b3c4ba09e4) ([merge request](157075))
- - [Don't introduce Unicode null character while escaping it](cecc43e3618913788465fd9c9689fd6ee321ff32) ([merge request](157060)) **GitLab Enterprise Edition**
- - [Fix related work item links syncing](e111fd6754d54c0c9946db008113ec83344d36a2) ([merge request](157045)) **GitLab Enterprise Edition**
- - [Fix extra blank space above drawer work item attributes sidebar](c44960893e0942a16034e7a194e2bb50407fb6cf) ([merge request](155156))
- - [Only enumerate commits in pre-receive check if push came from Web](ce85e857b4542999907b7826ce66e4daab26c59d) ([merge request](156965))
- - [Fix layout of issue list top area on small viewports](24bcaba38df863e2a6ab609655f97e08b46a3f61) ([merge request](156972))
- - [Fix the workItemType to be valid](0662cbfcbabbf54a1f4f65435f1919474460dce9) ([merge request](156879))
- - [Ensure all analytics breadcrumbs display](8917292f05cc9f9edeabba64d382491360c76dca) ([merge request](156454)) **GitLab Enterprise Edition**
- - [Fix missing forked_from_project in projects API for unauth users](ebc53851c0b9e0d627eb84a628612e79480ddf85) by @_ZN3val ([merge request](154289))
- - [Fixes notebook markdown failing to render](ae191bc941275d408475271473b03117167b6a2f) ([merge request](156908))
- - [Fixed Numpad enter key event](b855762ffefb354ce697c47c843ee9c776646824) ([merge request](156636))
- - [Fix error message when adding confidential epic to public issue](95ede989758b6db216d0afe82c3189d6bfb5e5eb) ([merge request](152972)) **GitLab Enterprise Edition**
- - [Include empty groups in mentions autocomplete](38c719cc94eee2165cbae364c1a45780ed960866) ([merge request](156795))
- - [Fix Bitbucket importer MR reviewers](dbc9b292da6686335baf1ce784840fb26ee008fe) ([merge request](156383))
- - [Use widget presence check for rendering Hierarchy widget](f449e168011917d571fc018e7ed0c4c2bb79509f) ([merge request](156836)) **GitLab Enterprise Edition**
- - [Skip IP lookups in validating URLs on certain conditions](e8190bd3d0ad87b98f920f144e098a6a2e08cca0) ([merge request](156547))
- - [Add missing ResourceLinkEvent#synthetic_note_class](e55071ecfb409e1b7561c0b68f33b6eb90c0d317) ([merge request](156204))
- - [Fix missing require_reauthentication_to_approve in API](a0a0f4a5900f5db22d3f2d9c68bf1423910742f0) ([merge request](156554)) **GitLab Enterprise Edition**
- - [Fix Inactive Project Deletion reset deletion date](a5268a1b0b0991464c82aacda538c9054612516e) by @Deepak18-06 ([merge request](156036))
- - [Remove the `deduplicate_security_report_ingestion_jobs` FF](e5c3e03ae4c6cd916fce92d1d06bbd9317ed42fd) ([merge request](156374)) **GitLab Enterprise Edition**
- - [Apply `gl-break-word` to test file name in Pipeline test suite detail](da5605827e28ce50d88c3c3f7b59459a36ca1d0d) ([merge request](156668))
- - [Remove null bytes when importing diffs](c3a333d5d4995108be679b2a90762f55cd3b70a7) ([merge request](156659))
- - [Fix resolving namespace conflicts on creating internal user](46c2d55b45babf686012ab40077353bb319eb868) ([merge request](156643))
- - [Fix redirect to docs.gitlab.com when no custom doc_url is configured](44e5d9c9cb3ece3351ca73514b0138011f15e25b) ([merge request](156642))
- - [Quarantine metrics_test_fetches_top_job_data](b6984b9f600cebee691c81aae8c3f7b798ac4db3) ([merge request](156606))
- - [Fix rename functionality using "Edit single file"](cd94fc7b67c1e46e4879c4f935ba2f74b3e798c0) ([merge request](156512))
- - [Resolve pagination issue](8bf5e49bd5c9d21ab9229505f4893d192d9e3718) ([merge request](156391))
- - [Read more: Fix background color in darkmode](ab86f679430f905647da84f3cd026eea4fd40a6d) ([merge request](156483))
- - [Use LocalStorage for frequently used emoji](b464009dd1682e3946a94b2a504944fdb66b143c) ([merge request](156569))
- - [Fix alignment of commit in admin jobs page](d630ecb9c8fe9013fced4e2c0df5a4594f56e0a6) ([merge request](156565))
- - [Fix kubernetes tabs](33cf2695a8c4f0980fd11c556cf5766c9cd9b850) ([merge request](156508))
- - [Skip conflict check when adding to merge train on pipeline success](ff44e19a433d6e2e00be36fd600b59ecf40f9d19) ([merge request](156079)) **GitLab Enterprise Edition**
Changed (231 changes):
- - [Change schema for sbom_sources](f3b79455de4cc16d95579f0448e33be91ae72e89) ([merge request](158597))
- - [Disables remaining prometheus integration endpoints](216e81eca14044b99eeb1bf5dca27dec3b8f3e8a) ([merge request](158356))
- - [Change format of iteration dates](b95bd4c7ae6032fffcd6f58f324c1daf00226402) ([merge request](155894)) **GitLab Enterprise Edition**
- - [Use sentence case for security and compliance](02c120454f547a081a5e6482e81df0f3ab2bc761) ([merge request](159260))
- - [Rename DAG feature to needs](805a9f5fb0237f935a7ac5da0917296d061c22a5) ([merge request](157899))
- - [Clarifies error text for confidentiality](121f9773af11ff71f5272699bfae03bc3e203ad3) ([merge request](159024))
- - [Improve AI impact analytics dashboard trend indicator tooltips](7e0f21055af23dad7badfabc991a5b5c97ec30ec) ([merge request](159128)) **GitLab Enterprise Edition**
- - [Update admin health check page UI](11a7b3adc2ed5928562c96b73a56ce9924cd0a78) ([merge request](158355))
- - [Update scheduled_scans_max_concurrency for self-managed](67dd42dbe5df22c7fa7b2a68bb6d9f7901961032) ([merge request](157828)) **GitLab Enterprise Edition**
- - [Defaulting Duo Chat to use Sonnet 3.5 and updating related documentation](9607104202f2614c09b189dc9678060ccee1906f) ([merge request](159248)) **GitLab Enterprise Edition**
- - [Cleanup telesign_high_risk_cc_validation feature flag](8c8d22d2462b3984cac418ba6b2c155e47a4f8ab) ([merge request](159279)) **GitLab Enterprise Edition**
- - [Updating LooseForeignKey cleaner service to not raise](c17516763c4ea1e8cee50b697f3f874f93877fb0) ([merge request](154185))
- - [Backfill zoekt replicas on zoekt indices](11a0e166b214ca057de5b47d58ff57efefe59507) ([merge request](157849))
- - [Use sentence case for Admin area](f7dd3d965a91736f4b8ca7edd8d3a1c227f860d3) ([merge request](158935))
- - [Use group organization for import user personal namespace](ee2aa8f23885690452627c428ba162d7d648d351) ([merge request](159222))
- - [Update background jobs header](9f3f0235736b4fe1121e5f098ec489d3fecdf3e7) ([merge request](158983))
- - [Remove pages from navigation when disabled in settings](c81e6fbd69ba5f5532e0b54f3dc716ec96e0f6d9) by @Taucher2003 ([merge request](158488))
- - [Remove view summary experiment label](09bdb4dcd7d7ed97b5a2f518426e81795a5c3e37) ([merge request](159139)) **GitLab Enterprise Edition**
- - [This MR adds new option for group dropdown](65b61d7c3b887c1f1b9d5de95c1f547b48b829ef) ([merge request](158080)) **GitLab Enterprise Edition**
- - [Migrate os sbom occurrences to correct components](6015871347123c24c1566e4c0165af887d256675) ([merge request](152585))
- - [Use monospace font for code inputs in Pages setup](26a838eeb8563805216faf1ac983d4aa2f0b996f) ([merge request](158673))
- - [Add or text between conditions sections for scan result policy](dbf35f870009a38f88b5fa2fb5e3092d6edcdb0e) by @jzeng88 ([merge request](158508)) **GitLab Enterprise Edition**
- - [Move CI lint button](8063ab8e34e1c569dee7c828144ac9b407ff057a) ([merge request](158827))
- - [Separate terminated workspaces into a new tabbed list view](9557c80c736627e0fb28a3dbc078a94f6eb3e429) ([merge request](153322)) **GitLab Enterprise Edition**
- - [Summarize issues using Anthropic](2885c45ff2feb15c7333342dd0548fdd31a59dd3) ([merge request](159133))
- - [Add details to client-side secret detection warnings](908d14efd49f636e1fc6a3163dd77d3765e69149) ([merge request](156503))
- - [Enforce job uniqueness with pipeline execution policies](382207a516c91312c9b481f3cf4e17c1e55a3016) ([merge request](158949)) **GitLab Enterprise Edition**
- - [Use sentence case for audit events](4231b823a9c173089c4257384e053ad8aeafb09f) ([merge request](158996))
- - [Renames TanukiBot to GenerateEmbeddingsCompletionsService](77db17e1db5c7d3c2d99abf8aba67137d8c633ab) ([merge request](158209)) **GitLab Enterprise Edition**
- - [Merge notes unification FF under more generic unification FF](270a0d9df6d76d86ad4ef7ea2ad6f46754d12bc1) ([merge request](158764))
- - [Author admin permissions for PersonalSnippet notes](e78544866cec31950d38ba39b540335eca466a30) ([merge request](158715))
- - [Merge Request auto close issues now checked on merge](22905c5f0808e2b20ecb9d0daadc4cf8227a63be) ([merge request](158395))
- - [Verify replicable after create/update](358f6dae5e65de9194b313dd5458faadc3bafef3) ([merge request](157697)) **GitLab Enterprise Edition**
- - [Add Notify mutation to resend email](2b510a42398afbf069c7fe4b4245e80b49f7bf73) ([merge request](159073))
- - [feat: Decompose sbom_source_packages from sbom_occurrences](b90f4b6e36209c7aa009ecdf5fb916f3518fc02c) ([merge request](158143)) **GitLab Enterprise Edition**
- - [Use Duo for summarize comments](49499622ba1f4dd3231bff134a329e4c85bf4201) ([merge request](156650))
- - [GraphQL: Rename CiRunnerJobExecutionStatus RUNNING to ACTIVE](b27d0d92dce5dd10d2986b666c6cd46e4662880e) ([merge request](159002))
- - [Update health check page](35b777c4e28d6c5e6cb2dc1aaeaf8a01686237e2) ([merge request](158986))
- - [Update usage trends feature to sentence case](c4ea05a622c8d3d21e99bd25eb5b49f15c2e00cd) ([merge request](158979))
- - [Use sentence case for background migrations](d4a6eea7c63e694cb3b25f22f1156c9062f44614) ([merge request](158981))
- - [Used new process to gen gitleaks.toml](bc1ca822c2d863df8935121782ce15863f759ade) ([merge request](158259))
- - [Merge labels unification FF under more generic unification FF](ca57ef643232626642582c2051cc5bdab533049e) ([merge request](158643))
- - [Show selected work item labels at top of the list](02b81f94c42213d9d9b21ec10be89cc43d558c3d) ([merge request](158005))
- - [Migrate groups dashboard to filtered search and sort](a46b96c154fb88eb533cf9f59fe44a8ed974f0cd) ([merge request](157667))
- - [Use Active badge instead of Running badge in runners list](12fbcaa099cb483fc19b8338ee3303b2e6e949dc) ([merge request](157935))
- - [Update admin background jobs page](653a55a2906304bd647a25a75d0dcdb414d070d8) ([merge request](158351))
- - [Add license type to overview](228878e85b2515faf21c2d188a2db31118d60860) ([merge request](158245)) **GitLab Enterprise Edition**
- - [Update dependency ai-gateway to v1.10.0](72ad1b5a449a65297b73e45666960010926f78c1) ([merge request](158590))
- - [Add title and subtitle on the standalone GitLab Duo settings page](7229273fd5694916aad10cd94512564efa90ce2f) ([merge request](158482)) **GitLab Enterprise Edition**
- - [Exclude archived projects from dependency list search filter](504cbe3f2d1627e270d63b643e476dfbd0d28bf6) ([merge request](158799)) **GitLab Enterprise Edition**
- - [Hide Service Desk from navigation if disabled in settings](b93b46a577c2bc952a0dfabbb824d33d0b6dcf40) by @Taucher2003 ([merge request](158483))
- - [Remove Gitlab.com check for last_published_at](73a027be56a2f1c12b10dd1cd29e60f00fa9c82f) ([merge request](156423))
- - [Always allow license sorting for group dependency list](5271ec0ec5c4faf627cbd36c4ac2437c5e239758) ([merge request](158684)) **GitLab Enterprise Edition**
- - [Update spam logs UI](1ab4f62f1cd09b8c88a64a738a7a0bdf02a41085) ([merge request](156950))
- - [feat: Add doorkeeper device auth support](b33cfbc4d56c1ae808949012dc1dc791b6467080) by @johnwparent ([merge request](155622))
- - [Explain quick actions inline in RTE](c4fcb325c334eaa81cd6b2952a34190b3fd1ad60) ([merge request](158367))
- - [Add linked projects to framework](be668ec4482846931c6da8d3a6de058c292e169c) ([merge request](158403)) **GitLab Enterprise Edition**
- - [Enable submit button by default](dedda453d11fcf5590723c3dc5dbb684c8a7f6b9) ([merge request](158249)) **GitLab Enterprise Edition**
- - [AI impact analytics dashboard: Add tooltip when there is no % change](f3447df4b029a9fdb443c409326a62ec8d0e6e48) ([merge request](158376)) **GitLab Enterprise Edition**
- - [Remove search_merge_request_query_builder FF](f3326fa520bfff0751a1821f3c70277e50b1946d) ([merge request](158135)) **GitLab Enterprise Edition**
- - [Move merge request files now shown warning to diff panel](39f82a3a72ddd33f9f2be15342588f5266d66994) ([merge request](157597))
- - [Notify Admin re: the hierarchy limits in displaying Group(s) statistics](47cea8c39958630931cfa294b280eb433cafa64b) ([merge request](155554))
- - [Allow filtering Resource Access Tokens by state in the REST API](c78720efd9285328a5a653820ed3509a0b29e41b) ([merge request](158155))
- - [Add `seats_in_use` to GitlabSubscriptionHistory trarcked attributes](a2b3e7bdd7123e46836c4df94efcfcfe84151e07) ([merge request](157311)) **GitLab Enterprise Edition**
- - [Sets elaticsearch_issue_upsert flag as default enabled](9b81c92337a7d933b221f2a9b253ec6633834b34) ([merge request](158194)) **GitLab Enterprise Edition**
- - [Add placeholder data to member tabs](6b4f5fae5a564da827b00f47c4de69be52ae1248) ([merge request](158569))
- - [Prohibit "default" as compliance framework name](9828c418eb60a7fb5a79e46de4dee70b80bd3099) ([merge request](149548)) **GitLab Enterprise Edition**
- - [Backfilling null project_id for p_ci_builds](bb06971eb127222b320b8950583c136fc8fe77f7) ([merge request](158480))
- - [Switch deployment approvals group view to Vue](402b8f34d28c6481031de9121c4a1ed00c60d952) ([merge request](158052)) **GitLab Enterprise Edition**
- - [Update protected environments to handle group view](52452c34b9d2073acdc982461b3c5873d99ffa19) ([merge request](157686)) **GitLab Enterprise Edition**
- - [Add trial and update users_over_license_count in CurrentLicenseType](a576f08847f6b2db61cfc18c66f66281c1b45c9f) ([merge request](155473)) **GitLab Enterprise Edition**
- - [List selector component for groups can fetch project only groups](18b39712043b895b1b980a681c355c2fc899ff36) ([merge request](158253)) **GitLab Enterprise Edition**
- - [Update admin credentials page](b3b59e785ea9a6f389cfe121e0d2a93cdb0d0ab6) ([merge request](158451))
- - [Update Tools Injector Image, PAT scope with additional ENV](228a9ccdab705a96e7513fb8f049e455dcdf07f7) ([merge request](156714))
- - [Update Cloud Connector architecture docs](16dddfacbef791ac45712e3a10ad543b2ea21349) ([merge request](157911)) **GitLab Enterprise Edition**
- - [Update admin background migrations](618e7c72b88d42275ae53b5dba5e05deccf67ece) ([merge request](158349))
- - [Clarify CI Job Token wording](cc67e266a9502e95f1b0cd7dbf3f9741362e9332) ([merge request](156989))
- - [Adds info alert about cleanup policy regexp anchors](597e1c2d15f0e533f431a5c7eaf815dc06016f0d) ([merge request](157888))
- - [Remove unicode_escaped_blob feature flag](b97da58a57d56c8116b342ae1959be8afb825597) ([merge request](158370))
- - [Update admin topic page](3a6f47bc121c454f6d0b778790b1eef7e93b177e) ([merge request](157848))
- - [Added Promotion Management for CreatorService](326329a5d856609a1f9e97aec9caa363af67f209) ([merge request](156891)) **GitLab Enterprise Edition**
- - [Allow access token access to usage_data API](4bcea84dfecd37e25c532c53bb571ed5634255ea) ([merge request](158085))
- - [Default cube analytics queries to the last 7 days](ff012ea2897764f741c1dc268daf13f61f86e45c) ([merge request](158206)) **GitLab Enterprise Edition**
- - [Refactors QueueExistingMemberService](61f33606c8661f1cd64c27d8bbd5d0c539941de7) ([merge request](156801)) **GitLab Enterprise Edition**
- - [Enable custom dashboards by default on projects](80138e0b971eda439ad9f9a38197f7d74c8b6884) ([merge request](157917)) **GitLab Enterprise Edition**
- - [Fixing target_table_name for build_name foreign key](e77f8bc31e151f1180045bcf88f21126062a36a4) ([merge request](158300))
- - [Make filter based visualization designer generally available](698ef8c44436233ddfa77335ebbdf4291ceb7283) ([merge request](158072)) **GitLab Enterprise Edition**
- - [Ignore `confidence` column on Security::Finding](4003634ceb0ed0e4301adb861d0249478559689a) ([merge request](158035)) **GitLab Enterprise Edition**
- - [Remove DuoChat from Help center](db279dde3ea6c08a74a5bd0e66c42277af6b7452) ([merge request](157759)) **GitLab Enterprise Edition**
- - [Remove wiki sidebar limit](6fe5c48e96617b5a201e2ce5bb7df0e8359f9f23) ([merge request](158084))
- - [Improve token access add form](baabb747fcf91b4c303eb31fcbe372d61e3ac6e4) ([merge request](151730))
- - [Move create repo position](1178913de16f344a5486106377b31f70dd3ebe22) ([merge request](157707))
- - [Fix CI icons shape](4b3a40e406c3138882bb52c6d880b21a90271524) ([merge request](158204))
- - [Support expanding references for work items](603ece973f525e7609f42e6f84304fc69b36089d) ([merge request](157963))
- - [Align the visual presentation of the action between groups and projects](08c107ecde68b41339eb711c2b7d0a610904b376) by @antonkalmykov ([merge request](157727)) **GitLab Enterprise Edition**
- - [Update admin project layout](e76d5ba332f8599570560c66fb7c854d23eaf5ec) ([merge request](157529))
- - [Align admin users account content](e33210ac0324bffa770e5a573d6472ce0e9d8a76) ([merge request](158067))
- - [Clean up signup_intent_step_one experiment](78d7591000f0ab105df35017e0a7c608633751d2) ([merge request](157181)) **GitLab Enterprise Edition**
- - [Show wiki sidebar on a 404 page](164db2e91935ac1469f42e1a6597e28408900217) ([merge request](158088))
- - [This MR adds validation for policy action](f14353e720e45e59f698309cb8a9c885b53ccac1) ([merge request](156528)) **GitLab Enterprise Edition**
- - [Update welcome screen](aa1f14c90596e595426c7c841041156fcc5ab47e) ([merge request](156514))
- - [Update users page for admin view](f55b68653c9c39e9c172e1ea069f637507977ad8) ([merge request](157314))
- - [Update concurrency_limit for CreatePipelineWorker](169acd04ead7833127f0340dc3330d0de65704f4) ([merge request](158075)) **GitLab Enterprise Edition**
- - [Added Finder, and correponding scope](7269bbba6850f4e791eebc969853b7fe669f1401) ([merge request](154555)) **GitLab Enterprise Edition**
- - [Zoekt: Add ctags support](fa8d2e1db1ccdc39b6de6b5f1955ae29e7eef992) ([merge request](158049)) **GitLab Enterprise Edition**
- - [Remove creating framework at sub-group level](cde82e647ab065dd61fbc8c8e67aa9e42a89e0a5) ([merge request](157868)) **GitLab Enterprise Edition**
- - [Add NOT NULL constraint for `remote_mirrors.project_id`](19daf7b6c5386dc282490f9240708d64ef778e76) ([merge request](153959))
- - [Add `taskCompletionStatus` to the work item UI](22a7a948a5a87db3440efee764734ab8674daddf) ([merge request](156589))
- - [Update semver_dialects gem version](9cfb70e0df3503e4d3d83faa343ffb647ae5503f) ([merge request](157521))
- - [Default enable FF group_level_vulnerability_report_grouping](3f5973054c408d9abe137cf150d54d43985f72d0) ([merge request](157949))
- - [Update abuse reports list view](3a15b7fa01bb2baaaffcfc735b81f2c3c7991ee1) ([merge request](157681))
- - [Use SettingsBlockComponent for admin push rules](a79bec61becdd9d306e9ec835cd690b050226a11) ([merge request](157611))
- - [Sync epic work items to legacy epic by default](f2c68d054ae098cf54d37421f0952d838fad5ecd) ([merge request](157789)) **GitLab Enterprise Edition**
- - [Add organization_id to stage event hashes table](16494994cb8544388fd068b9b0396f3a63c8ac12) ([merge request](156621))
- - [Admin groups: Improve display of content](8014ea9fcbd2232da04fcdf02f3e35c6aedccf98) ([merge request](157420)) **GitLab Enterprise Edition**
- - [Update PMG architecture blueprint](d782d03cb892334bd1e7142ac1569d4c98b14a16) ([merge request](157806))
- - [Fix required approvers validation](388f43277c5f82ea00a37ee2e155a8154c1490f6) ([merge request](157777)) **GitLab Enterprise Edition**
- - [Update graphiql-rails gem](313046daf347a0455ca7eab430fcb3b8b5d08af3) ([merge request](135010))
- - [Modified UX of command palette](4c2f759439605e210980ef1816b756bd2f7e2d08) ([merge request](157015))
- - [Admin settings: Migrate network settings to SettingsBlock](4a7b408efa1375c8d5196b288d2d323c4579f835) ([merge request](157051))
- - [Migrate oauth applications to use CRUD container](b5348d678230f1201ec50b71077e939b0e3411fa) ([merge request](156903))
- - [Migrate broadcast messages page](093159d629902435e92561d9bcceb5771ca4576c) ([merge request](156895))
- - [Remove the data preview option from the visualization desinger](644d80d912d522194ede40687430430008e9b24f) ([merge request](157744)) **GitLab Enterprise Edition**
- - [Update dependency ai-gateway to v1.8.0](9fbdaef10c2324ea2453e2f87be57f1cde0f06a5) ([merge request](157736))
- - [Extract SSoT for pipeline sources for which SEP should be enforced](c716fd84ceb2db0556918e14dfbe63911d0fec08) ([merge request](157588)) **GitLab Enterprise Edition**
- - [Move Mermaid too large alert to the beginning](2c21c66ee910b4e07e8a978a0b06609dcfc9564d) ([merge request](157735))
- - [Update bulk create service for custom software licenses](31025b8cb969cc45ce7f11c1b1b75d714b1c770e) ([merge request](155588)) **GitLab Enterprise Edition**
- - [Raising error in mutation when more than 1 frameowrks for project](cdad457636d8d7ad0de5ed065ac0fb4efa1460fb) ([merge request](155854)) **GitLab Enterprise Edition**
- - [Update vendor/spdx.json to v3.24](74af77ec2263d9ff12164933cae35c086d40aaf1) ([merge request](157653))
- - [Add search_type param to SearchService](065d10f065ed76394a7e0f17ae8d4c7605911d90) ([merge request](157022))
- - [Update wording for pipeline deprecation banner](d89e8c6510b3fef6c3404374e29357d542181e95) ([merge request](157595)) **GitLab Enterprise Edition**
- - [Route resolve vulnerability through the Anthropic client](854029222599e6288722b294811274872738796a) ([merge request](156671)) **GitLab Enterprise Edition**
- - [Add read_runners custom ability](a0f8c3098e87b8fa09bca3ca6838511a07efdd28) ([merge request](156798)) **GitLab Enterprise Edition**
- - [Migrates deploy keys to use CRUD container](6652d0ef24c4eafd866011a267ba3eb2b35263e4) ([merge request](156909))
- - [Allow blob window size to be specified](1b472b9a753771ec77bddc3e67cbf2aa7b9785a5) ([merge request](157168))
- - [Remove ":" for drawer title: overwritten part](12a479b2f361049980afc7c4da9f01a77d23f11a) by @jzeng88 ([merge request](157550)) **GitLab Enterprise Edition**
- - [Adds snowplow form error events](2546c6284592d4649a6e66f84603f0969e63a9a2) ([merge request](157543)) **GitLab Enterprise Edition**
- - [Adjust layout of iteration report issues table](0028e3fc79a7bfeb4c62be91c25261327bcd54c1) ([merge request](157377)) **GitLab Enterprise Edition**
- - [Remove "+" icon and add word "new" to button](e01d8f7eaac2dddfa4cf5a3a94028d122a1d7dd9) by @jzeng88 ([merge request](157394)) **GitLab Enterprise Edition**
- - [Update admin groups layout](a1af6477a95333aaf63f46a4a884e8b7840df809) ([merge request](157201))
- - [Add support for parsing CI log timestamps](76f92b62bbb4c378212372cec41c7704039c7164) ([merge request](155695))
- - [Reduce the amount of variants for GitLab UI badges](499a179102694e0ac7c2e1a7d45a207641dbd151) ([merge request](156880))
- - [Duo Chat cancel button integration](3f12dc8a3d330d357d5e142b25c53457f8b694ed) ([merge request](156880)) **GitLab Enterprise Edition**
- - [Remove "scan" word from execution variable](e2026f16ed7890dd76181d805b71fd29878e3718) by @jzeng88 ([merge request](156415)) **GitLab Enterprise Edition**
- - [Update admin product analytics settings](d713b19f316db1a69a9a49aa4e8c2ea32380fb7e) ([merge request](157088))
- - [Allow assigning compliance frameworks at sub-group level](08c7ab96dc50691819a0a98da0d9177dc2e595fb) ([merge request](157412)) **GitLab Enterprise Edition**
- - [Migrate CI/CD Variables settings to CRUD container](caba42c7f858e66f859270803669c72672a8c3cd) ([merge request](157276))
- - [Update admin license and compliance layout](384c5ef0f03a996bd73fb8dc887ae0a06d733d0f) ([merge request](157095))
- - [Remove drill-down link for code suggestions usage metric](8a9b34bb78361f818b4fd8ca6b91c1ad4fa12285) ([merge request](156984)) **GitLab Enterprise Edition**
- - [Change History links to 'View import history' buttons](609af389f719a76b4c758ec5e0bf668088167961) ([merge request](156373))
- - [Update tools injector image](8cb33746ed2a41060e51ab226309da5516be40ea) ([merge request](156918)) **GitLab Enterprise Edition**
- - [Admin labels: Migrate to use CRUD container](6fb5e3e24e9d2fce5978d1898c8a9455549ec2ca) ([merge request](156923))
- - [Admin settings: Migrate reporting section to use SettingsBlock](ac82c7fdcb612e8ebbc5bb7704478bae7051a618) ([merge request](157047))
- - [Admin settings: Migrates repository page to use SettingsBlock](058017c2bfd57cecaaa34d031eaafb89ac92360c) ([merge request](157039))
- - [Admin settings: Migrate analytics section to use SettingsBlock](a0c84238d13d5bd3eec550898a2084690ffef4b3) ([merge request](157054))
- - [Admin settings: Migrate preferences to use SettingsBlock](1443c2bef7c0598888ae3480cd95380f7d939517) ([merge request](157053))
- - [Admin settings: Migrate metrics settings to use SettingsBlock](af2e67d8ce93db82586ef8aac4ea088efda73aa2) ([merge request](157050))
- - [Admin settings: Migrate templates section to use SettingsBlock](9ceddc16cd553a45aaecdc2c4399d6399f18e7d7) ([merge request](157048))
- - [Admin settings: Migrate CI/CD settings to use SettingsBlock](6ea284f56c218f06f6400c43cc434197c565ec6d) ([merge request](157040))
- - [Admin settings: Migrate settings blocks of general settings](f73caead94a079d98b9c487b87e513a98240f24b) ([merge request](157033))
- - [Update GitLab Pages version](3c6a6b7270d07856a38dcef472640ece462b2337) ([merge request](156723))
- - [Pipeline graph dropdowns: Use GlBadge for indicating jobs](cfcab231757af7fa07ccd5e23fd617140e1013c0) ([merge request](156160))
- - [Update projects page for admin view](30ee894176c4fc42b1c943a4a222a3f395c2bc00) ([merge request](156790))
- - [Require user to solve Arkose challenge on every PN verification attempt](8d9db028c231f4dc594e78dd5ac35cc69701fcca) ([merge request](156865)) **GitLab Enterprise Edition**
- - [Migrates File Hooks to use CRUD Component](39b218efe1edae7ca6d05e28d39cf45840a16593) ([merge request](156900))
- - [Admin settings: Migrate advanced search to use SettingsBlock](25f6ce6fc714129beeb1d5c4070fbc35d16ce717) ([merge request](157038))
- - [This MR updated approve layout](5d184548cc8224176f0764a9b0e32001b817418c) ([merge request](156628)) **GitLab Enterprise Edition**
- - [Conditionally handle AuthorizationsChangedEvent when policies exists](0b94a9895a58607246b47258cf641ae1d72240e4) ([merge request](156775)) **GitLab Enterprise Edition**
- - [Add report_type to Approval Rules APIs](e67fbe0b7de9bc40c9de2c8218faba608b8ba592) by @PatrickRice ([merge request](155772)) **GitLab Enterprise Edition**
- - [Update locked application setting popover](48b93da24c1cf9c143e73a29bc5c6e2f5176c866) ([merge request](156926))
- - [Enable assign resource v2 by default](3bdac40f8c0ebd77a7e4a14fcae063e45bcfb312) ([merge request](157156))
- - [Update admin geo page](2008e21509833c30718c592e8798352493ae7cf8) ([merge request](157080))
- - [Refetch job list when an artifactless job remains](6e4e17193691300e40f99298bd5cf18221fc3bda) ([merge request](127632))
- - [Add start trial CTA to duo pro usage tab](2149ae090f50d351e95b2d5d015af779b7c2ac8d) ([merge request](155902)) **GitLab Enterprise Edition**
- - [Provide consistent interface across scopes](3128f3d5f86b11b24d0d0cc7bf37a8de17c90281) ([merge request](144067)) **GitLab Enterprise Edition**
- - [Update snippets empty state](637554379ce6e03928dada47d8260792bb4047f9) ([merge request](156785))
- - [Remove ignored `toggle_security_policies_policy_scope` setting](e105c938a7cd849decb95798ecdc0d044725cbd0) ([merge request](153266))
- - [Update naming of duo group settings](3a979af4ccba5da09b2d97bc5ccd90dd632d512f) ([merge request](157010))
- - [Add UserStarredProjectsResolver sort argument](077ca496eaadc0a9383a552ed32294233de2f7e7) by @jzeng88 ([merge request](153651))
- - [Migrates gl-display-inline-flex to gl-inline-flex](3aa4f990bde82a9c6fb59d7c726a02bddc693cea) ([merge request](154887))
- - [Multiple frameworks labels](ca5a43e01aadde03cf32218f62f7e56eb5709f05) ([merge request](156570)) **GitLab Enterprise Edition**
- - [Add permissions checking to AI impact dashboard](23bf0938f52424ec382ba745b57375234b769949) ([merge request](156555)) **GitLab Enterprise Edition**
- - [Admin settings: Migrate security settings to use SettingsBlock](467df2db45835010a9b4210982fe662f2f30e8b4) ([merge request](157043))
- - [Externalize strings on ldap_group_links](2fcc3e2fd12ea0c6813e7c88a1548c90cecf24e0) by @MAlvarez32 ([merge request](155271))
- - [Improve usability of environment folders](076d3d3a212c3a93ec60863090c3a0fa185ecd05) by @antonkalmykov ([merge request](157104))
- - [Display capped results for large datasets](d1d8005ef78e12f960dcf5ddde6b9dcc2266087d) ([merge request](156026)) **GitLab Enterprise Edition**
- - [Update GitLab logo on deploy page](f3f6e87a1ef799024b4a9e76f88afe9f3cc384d7) ([merge request](156261))
- - [Update groups page for admin view](64125d73f2485bdb6f2400e2db99df134975ce8e) ([merge request](156800))
- - [Update admin subscription page UI](0f48e27e338908ff0935c6024de2bbf8db037560) ([merge request](156839)) **GitLab Enterprise Edition**
- - [Add placeholder actions to table](dd77d0d5f36c2cffba601a0544ea28727ee5b13a) ([merge request](156533))
- - [Update visualization type selection with validation state](f7e5cdd2aa4d7eabb99d4490976844d6a111e369) ([merge request](156976)) **GitLab Enterprise Edition**
- - [User friendly date formatting in Container tags_list_row](8721191f9f5f3c314d84e28f5e25682abf3116b7) by @Saurabh-Daware ([merge request](156376))
- - [Remove extra space in board cards](49d00c28e62c0550838cb12734651b3f54788d42) ([merge request](156113))
- - [Check deploy_key exists during ProtectedRefDeployKeyAccess#valid?](d9c9f033c8be3e9ee9e6ad3ca21f8f623f6f046d) ([merge request](155745))
- - [Implement AR validations for ProtectedRefAccess](849784e42d78d25aa83e9c83b787c98178cad254) ([merge request](156002)) **GitLab Enterprise Edition**
- - [This MR updates yaml schema](154b2da8aefb489cae1d42cf3afd04a89138fa3d) ([merge request](156363)) **GitLab Enterprise Edition**
- - [Remove showcase_free_security_features experiment](e9eea5f2cff7648915c6bdec58af9ceae9a56e00) ([merge request](156803)) **GitLab Enterprise Edition**
- - [Reverse make_synced_work_item_read_only FF check logic](1046966e152bed6adfbb147d248ce92ae8694472) ([merge request](156648)) **GitLab Enterprise Edition**
- - [Renamed autocomplete scopes to use plural form](cb4d38de54c7cf1fd8bf3804a1e9675b5f379b9c) ([merge request](156492))
- - [Show dependency location count if `occurrenceCount` field is present](44bc09dbc7339fe9c056153808fa60660a6a3f84) ([merge request](156557)) **GitLab Enterprise Edition**
- - [This MR removes loading state](e7880922f54023e32063fcf0e97ef1783497ce6e) ([merge request](156793)) **GitLab Enterprise Edition**
- - [Add concurrency_limit to AddApproversToRulesWorker](790ff68c27495f69be533660910df98909476b33) ([merge request](156778)) **GitLab Enterprise Edition**
- - [Update gitaly servers page](db83949fb9ab1e1355cbc9648dd42ab8b014f123) ([merge request](156536))
- - [Update trial terms](a6d5bc395710a1bf7c45ed4f95aad72937ba5a01) ([merge request](156341))
- - [Enable zoekt_exact_search by default](741fb8a8dc06422f09a4c75c6146a311182f63b4) ([merge request](156748)) **GitLab Enterprise Edition**
- - [Remove ai_claude_3_for_docs feature flag](4935a53bca171971c5844a53544725a704bc073e) ([merge request](155281)) **GitLab Enterprise Edition**
- - [Increase max body limit for AI GW requests](fa2732f43cd308e3a178332a14223a05162aa8b4) ([merge request](156738)) **GitLab Enterprise Edition**
- - [Remove GCP WLIF setup script API endpoint](b637037095f224eee419ef8518db13d7a6704525) ([merge request](156699)) **GitLab Enterprise Edition**
- - [Drop ci_job_artifacts_use_primary_to_authenticate feature flag](3157d57733edbeff16488d545e497d26503c0c0b) ([merge request](156697))
- - [This MR updates yaml schema](26ea84d39e87d36f0b0b97b7b1b6f85d79f9b1c2) ([merge request](156325)) **GitLab Enterprise Edition**
- - [Adds Zoekt::Replica](888775a1207cfeae18dafc62ceaf8ff1d9f2ba00) ([merge request](155317))
- - [Update admin system info page](13f5c11eed8a8386b76c705105f88f6ea460b3a4) ([merge request](156567))
- - [Replace approval modal with link to approval page](9d00cfb79edfdbac48142147eb24694049813a3a) ([merge request](156656))
- - [This MR refactors multi select text](944cd45e0b61a39408b79b72f8766fe31f16c387) ([merge request](156641)) **GitLab Enterprise Edition**
- - [This MR updated user approver dropdown](283832501708409b15b210c260749a04bfb8a7d1) ([merge request](155611)) **GitLab Enterprise Edition**
- - [Remove :notify_owners_of_finished_dt FF](6f1cfc427a1ef7a22e5afce825bf545e9934cc47) ([merge request](156633))
- - [Cleanup the duo_pro_trials feature flag](172f26857626b38e114792d8a6d0f425d934bc83) ([merge request](156132)) **GitLab Enterprise Edition**
- - [Change unit primitive for text embeddings](e90f96b6b63e907bfb6ecec11e6351b1ed2682e7) ([merge request](155835)) **GitLab Enterprise Edition**
- - [Extend error-alert Vue component with buttons](4a97c359cc09a20e3764ed25001083b34eba0483) ([merge request](156206)) **GitLab Enterprise Edition**
- - [Add external Stripe IDs to CreditCardValidation](7bc3183c75dab0616a6fe2431d9820eacbdcec76) ([merge request](156505)) **GitLab Enterprise Edition**
- - [Improve compliance center for subgroups](d57d6295907736e3c4d99b22ee3a8c026b358c31) ([merge request](156260)) **GitLab Enterprise Edition**
- - [Use static AWS credentials for indexer if set](14207a5ebee99111fc8696c2ee7d6925acbc2005) ([merge request](155960)) **GitLab Enterprise Edition**
- - [Remove transaction opening for non-basic search count](dcf811f417b7910c7aaaf5ff1c08dd77e118bfa1) ([merge request](156321))
- - [Remove overflow:hidden from card component](8af3832ba271bbb766c2b0a19c8a1f2cd3ab892f) ([merge request](156548))
- - [Display usage quota tab during duo pro trial even group on free plan](5dbeb1485d4fd777104bf72cc87160d9f3a9f879) ([merge request](155767)) **GitLab Enterprise Edition**
- - [Allow self-signed CC tokens in development](c7c60323dd09e415533b737d01c92548f375dc95) ([merge request](156496)) **GitLab Enterprise Edition**
- - [Add NOT NULL constraint to ci_runner_namespaces.namespace_id](ba16f8e7548147c4b74867458e11efa361d09457) ([merge request](156318))
- - [Add NOT NULL constraint to ci_runner_projects.project_id](412604bf443e427faf57497cb1858bd1d1f4fe92) ([merge request](156314))
- - [Update create label UI in labels widget](920e418ac45df7b2d8b95f135f34b3a7b2d0fca4) ([merge request](156056))
- - [Change help link text copy](6e7ed1176ae2236ae74ffc6645645eeb084e4fbe) ([merge request](156029))
- - [Update dependency auto-build-image to v4.2.0](62133c84cd65559717213f735d36e9d92382689c) ([merge request](155945))
Removed (22 changes):
- - [Remove triggers and old columns for bigint p_ci_builds](944155c2596919d5d70ab5491116cd43f5a1bf93) ([merge request](158711))
- - [Removes storage_size index on project statistics](6c685a9fb1b35e46d3e2f8354d25fc8f815773cc) ([merge request](158616))
- - [Remove MR review summaries table](0b13bb2a53ad6ec8320e1c71934401a818762713) ([merge request](157572))
- - [Drop `index_vulnerability_occurrences_for_issue_links_migration`](518ad733fb27471edaf7fc15605a0bc9a2962135) ([merge request](158736))
- - [Reverts 112527 as no longer required](3336394f92d8916175b7c4679d4bbf7de54dc300) ([merge request](158609))
- - [Remove EnsureStageService and prep for removal of `stage`](f6aaabeff28e897d7f91aa5aed448e7b82f91160) ([merge request](156892))
- - [Drop legacy geo_repositories_changed_events table](876d67fadd97b5124f4c54fd2988eaf873c05e53) ([merge request](158660))
- - [Remove SafelyChangeColumnDefault include](37bf0d05bc6d949e59371706b5901429bb061e5b) ([merge request](154212))
- - [Remove `issues_mrs_empty_state` feature](e63ee4fb40f484ddc6c04876a3ec31c074b3b52c) ([merge request](156693)) **GitLab Enterprise Edition**
- - [Remove create_user_details_all_user_creation feature flag](7eeb9d74630925207a3699e6f6cc83fceb0b8e3c) ([merge request](157958))
- - [Remove the template auto fill AI feature](15db60a024c937a52036e64b78f5403320194f7e) ([merge request](156766))
- - [Removes project stats index on packages size](7feef107a4e051799be9f632f55a08265acf8ca3) ([merge request](156008))
- - [Chore: Remove the ai editor assistant feature flag](ae1fd20a598a2c4515ae3ad9f2b456831dd6cb3e) ([merge request](157837)) **GitLab Enterprise Edition**
- - [Removes storage size idx on project_statistics](8ff61ea7a5debf8979fe9fc7c87127b125b09c8b) ([merge request](156005))
- - [Drop unused DAST tables](c76555c4a9840b72384ecc428f4222cc107d8232) ([merge request](153443)) **GitLab Enterprise Edition**
- - [Removes project stats index on wiki size](e6a2a5a4e31ae200530dc7434c90a3734db06b00) ([merge request](156010))
- - [Remove track_ai_metrics_in_usage_data feature flag](d426fa2fe74208662ca3d8c0a3c93e24f9501743) ([merge request](157196))
- - [Removes index on project_statistics async](12ffa83842508c0be03fef1842b17beb3bcdd074) ([merge request](155999))
- - [Remove obsolete codeSuggestionsUsageRate field](19d17c281d9b76756b1dd86e7e2e149c89067d9f) ([merge request](156750)) **GitLab Enterprise Edition**
- - [Remove sep batching configuration](3030bb11d7535ca2950429fe573dedc0e09634b6) ([merge request](156835)) **GitLab Enterprise Edition**
- - [Removes temp index from project statistics](158acf6c0a54d5bb79530f7e43822e2bddaa89a5) ([merge request](155997))
- - [Cleanup prominent_create_board_btn feature flag](43d17697e2b38cf7f8f0d23b7e1800f7d040d167) ([merge request](156324))
Security (23 changes):
- - [Check npm package name, version and scripts coherence](14ce36e7045252dd74dc59a71a5acc348ceadf13)
- - [Disallow serving Pages over disabled custom domains with deployments](08a5faf3c92d34407a96b03d6a44c12db00ee1f2)
- - [Prevent privilege escalation via custom role](30cc4e834c300d18d4e30f052de18f999065ae85)
- - [Check if user has ban_group_member access before banning in namespace](81594e06ccef46c19dbb2b9e760d3422a9bdf4eb)
- - [Check for create_deploy_token policy before creating deploy token](38d7fcbde55100c6eb63a1c8babd379cb4d205a3)
- - [Prevent using quick actions for some bot users](a08eaa3dac0eb76fd4135eda412572f24fb28578)
- - [Disable raw HTML for quick action pipeline](049504cecf622189f69b14dbc8895e6f36af0af4)
- - [Disable quick actions unless description changed](3d20fd45ec2b24ff02a06eea0ef1558f522a211d)
- - [Remove comment support from shrug and tableflip](8cf683d6f1cea2ac3f0975bcf7d6e156f40a37ba)
- - [Pass SSO session data to Sidekiq](c7eabd8a76e035e439d27734310dd3d6c83bc2c0)
- - [Do not run a new pipeline on re-target](7db0608a8e0e76c3a697edf052a9e603367161b0)
- - [Remove search results from public projects with unauthorized repos](d38ed3d433f51060c7c7daa793ce9aaf14beb513)
- - [Reject deletion of security policy project approval rules](69d6113572c1515f46ddfb1990aa746ae123c518)
- - [Add limits on autolinker regex](74014108b6811c8ea40813e0981915115742a1d4)
- - [Fix for Private job artifacts can be accessed by any user](50bd3b7b0cdcedf7efdf3b8b1d8808a4e0aaab76)
- - [Prevent non-members from using promote_to quick action for quick actions](ff425064c3d22341d520fff8abf829a812c5c14f)
- - [Fix the catastrophic backtracking in openapi regex](faa5c6e04b47aa618ef2fdf7b1242272896d134c)
- - [Use permitted_params for standalone and multiplex queries](b5afa91ae27c8d9b11461ebeb03b25a230f5bc54)
- - [Fix clickjacking on OAuth application page](5073499734aa260dc96a6329ff913ae72a3e2e62)
- - [Remove collapseLongCommitList method](4c970a3095e06a3406bb0cbcc2286d637ee3128c)
- - [Security fixes for banzai pipeline](b32d3189758c48afc0621a806645cb20f83b9864)
- - [Hide branch merge request if merge requests are private](c376da8991401b8748048cc11e6bdbd61c253724)
- - [Mitigate ReDoS attacks via `method_call_regex`](ee4cac0f6ca99cbf90724d75d42a9e03137e5ddc)
Performance (3 changes):
- - [Parse affected ranges only once](e6867b4399e085f47f76d96501d1e5b72db6ee87) ([merge request](158842))
- - [Adjust Bitbucket server importer to be resumable](47b0c08f41b8ed39c57959f8bb6523cfc213da6f) by @ivantedja ([merge request](156797))
- - [Remove group-level vulnerability report performance improvements FF](f4fb8398fbbc1d36811634c9fe5777c26cd80daa) ([merge request](157786)) **GitLab Enterprise Edition**
Other (150 changes):
- - [Finalize DeleteOrphansApprovalMergeRequestRules2](a92c8f39a61117bf3962689bce8fb77d3c846e76) ([merge request](159017))
- - [Update display_work_item_epic_issue_sidebar to work_item_epics](2cbeed7a47a56f659f0defe1e99f90bdc5f5aa07) ([merge request](158613)) **GitLab Enterprise Edition**
- - [Remove bitbucket_cloud_convert_mentions_to_users ff](368af21b0ecc97e0c5fb334724b7306bd8f33a20) ([merge request](157957))
- - [Quarantine a flaky test](e6f582894a15d68d96b1da99e1f8377d884a4f1d) ([merge request](159033))
- - [Quarantine a flaky test](c51b47f0d371e8b75a74367d7ffa1099762eceab) ([merge request](158874))
- - [Remove filter_deleted_groups feature flag](8e97da759c8330158fa467313e414adb766f1f15) ([merge request](159214))
- - [Quarantine a flaky test](aae6917b0dcc8bafeaafe62a3ce96c420429c92f) ([merge request](159184))
- - [Quarantine a flaky test](2df953b7f5176226d1301c0874786523b21f2d75) ([merge request](159178))
- - [Remove unused index with namespace_id on vulnerability_reads](9f2e060a8daa90b8f9ed517eccec76ca6ca0f46d) ([merge request](158941))
- - [Sync approval settings for groups for reauth setting](2d483935d991f72bb0f712ae77ac2b1569a20144) ([merge request](158648))
- - [Remove self_managed_code_suggestions feature flag](0b19feae781cfbc6127f2cc1cc2f0685b8ae35cb) ([merge request](158440)) **GitLab Enterprise Edition**
- - [Create table p_ci_build_tags](fd0f7a053d2c4953a57bc48ad54290313ba2e60e) ([merge request](158327))
- - [Quarantine a flaky test](8e737f615f3165c284ab24b6fab14067a7bf9fe2) ([merge request](158710))
- - [Quarantine a flaky test](a1d73b25b38a1921b1a27bb9b80b37eab21e9eb9) ([merge request](159034))
- - [Quarantine a flaky test](f0ec39f8a3d7e47a98ccca9f6da9955277de3535) ([merge request](159031))
- - [Quarantine a flaky test](1344908bc4b839baefee9c2d8833ffb00d3bf9bf) ([merge request](159030))
- - [Remove reference to BBD ODS FF](e248a83b765bbdd5fe0c313581445575b3d287ad) ([merge request](157902)) **GitLab Enterprise Edition**
- - [Quarantine a flaky test](614e6402a938a00524dd7317776a1d5e827fb6d9) ([merge request](158871))
- - [Remove `rewrite_sbom_occurrences_query` feature flag](915bf7b04257f005312f43ba893f5b8b99486855) ([merge request](158772)) **GitLab Enterprise Edition**
- - [Fix forgotten ability](739a6964a41bfb3ee735a8721a8417aa872973b5) ([merge request](158698)) **GitLab Enterprise Edition**
- - [Fix <Layouts/LineLength> offenses](290db2121b2155f3517861c3e6556a0f823851d8) by @Rohit.Kala ([merge request](158783))
- - [Fix flaky test "#protected_branch_exists?"](9fbc1dfd6a04e8a0f4af63e0ac91fc3cbf7cfaa7) ([merge request](158779))
- - [Implement delete car mutation](97e567c212d65890952bd6232a6b747ff72c58b3) ([merge request](156488)) **GitLab Enterprise Edition**
- - [Rollout Filtered Search on Vulnerability Report](3870780a825594d474d7b33523821f9b2eae13e4) ([merge request](157172)) **GitLab Enterprise Edition**
- - [Fix pipeline schedule error handling](4c0152e2428685af535cdc56e57d36eb565f9fb2) ([merge request](158436))
- - [Remove temp index](f7211e0c62b1533f0fb16d69cdda8ff82ba5199c) by @TamsilAmani ([merge request](139271))
- - [Add a `pending_delete` column to mark namespaces deleted by user](03871fbcbed7cde24eb2d80eb2ddd8b7b9126603) ([merge request](158309))
- - [Add partitioned FK from ci_pipeline_artifacts to ci_pipelines](16d0cd7c4edec447d52562d72a8fb7844ad51797) ([merge request](158086))
- - [Quarantine a flaky test](b81f0aadb99a88ecfbdd0367da33411390280df1) ([merge request](158506))
- - [Quarantine a flaky test](018d27c0cfa54483ff0de92581bbae897a6de4b8) ([merge request](158507))
- - [Quarantine a flaky test](4dd720ee04b03cf4676f936df292c40ac90f318d) ([merge request](158558))
- - [Finalize migration CreateComplianceStandardsAdherence](8d280d0605411dda077e329b5962be8670346d65) ([merge request](158148))
- - [Rspec Test order: run test in random order](41360018cefed51bc0edaf49b888929922b2e9c5) by @Deepak18-06 ([merge request](157845))
- - [Quarantine a flaky test](20e296a10c1787ce22c5082c357bfcc28b606919) ([merge request](158181))
- - [Refactor SAX document to cobertura](60b7d09861b6afe93d5c796123e3c4d312e03bdc) ([merge request](158341))
- - [Release jira_connect_remove_branches](8f2d020a40dbc523afc86291c25f27b12938434f) ([merge request](158224))
- - [Finalize BackfillWorkItemHierarchyForEpics migration](44702df1c97d0e01c7eb8a25141f16789f2d030d) ([merge request](157981))
- - [Improve accessibility of remove icon buttons](5c9976313973900497654370de97221c8a1d3153) ([merge request](157929))
- - [Persist all policies instead of active policies](dd249a70ec5b944371e27ff517b650877b2b91b7) ([merge request](156735)) **GitLab Enterprise Edition**
- - [Remove set_ip_address feature flag](f3bdbedf8b6ba727c706e4102ecce306d8c02216) ([merge request](158418))
- - [Finalize re-syncing basic epic attribute migration](6e7cd743b12fcd155634d82af2247360ac4e23ef) ([merge request](158384))
- - [Finalize BackfillEpicDatesToWorkItemDatesSources](71eefb084e9c9cd34d8687ab693ebde92c87d936) ([merge request](158037))
- - [Enable parallel_project_export feature flag](64374dc941d86a0e9845cc34d5bb3a4b0963f08f) ([merge request](158369))
- - [Add weight widget definition options](7c85c228ee21072c318e3117535c1543a316947f) ([merge request](157705))
- - [Add partitioned FK from p_ci_builds_execution_configs to ci_pipelines](faf68ca11c79289938d08e2ca1e7800ac2489c43) ([merge request](157908))
- - [Sync create index and swap columns](8852ca7059369db1a5449e96ec48a496cb5f801f) ([merge request](149671))
- - [Fix Style/Lambda offenses](cf3980a5712da1d17bb3c6409cc129533ebb5418) by @Deepak18-06 ([merge request](157265)) **GitLab Enterprise Edition**
- - [Add index for listing uploads](f07a817427e63a9fec4816204d00c04bccd4f9d6) ([merge request](157139))
- - [Quarantine a flaky test](e9abb2af481bee29ca0bda114ba340348c4ff0f6) ([merge request](158178))
- - [Protected packages: Batch load matching protection rules](463982894a3ac7ee871f373c98c4f45c0cf5fe72) by @gerardo-navarro ([merge request](154595))
- - [Extend a troubleshooting section to cover Xcode SSH keys problem](f54883e42feb25cca1d1cd8932384f336d9d4efb) ([merge request](158215))
- - [Add partitioned FK from ci_pipeline_chat_data to ci_pipelines](cdfec4f6b7e4953d18beac1e7eeaf48480b8a0b0) ([merge request](157938))
- - [Rspec Test Order:Run spec/graphql/types in random order](0cf119cc43ce8facb883ed33e1eaeb2e323f2d4b) by @Deepak18-06 ([merge request](158172))
- - [Add partitioned FK from ci_pipelines_config to ci_pipelines](b42f9a1e167f103a2cd118f678df685677da66d7) ([merge request](158065))
- - [Finalize backfilling of related epic links on issue links](e0fda69bb3a89228d860fb81d0381dabbb0df482) ([merge request](157492))
- - [Quarantine a flaky test](7fa3c9217a0b0c0e5d5f1a9a1c14d58d40a89642) ([merge request](158174))
- - [Quarantine a flaky test](569ec66e5b1866de254374383fdd83c4e9987625) ([merge request](158008))
- - [Quarantine a flaky test](1c1ac1e3efe1d68fb304225a18d599c69a3585d2) ([merge request](157711))
- - [Fix Layout/LineBreakAfterFinalMixin offenses](a710a4065fd660008138594cc603b8fa8f9c6364) by @m.bortlik ([merge request](158123))
- - [Protected containers: Enable multi-line errors in GraphQL API](f11d937169c2b061ae65d0d3444a6d7264239417) by @gerardo-navarro ([merge request](148838))
- - [Fix Layout/ExtraSpacing offenses](c71dfae62eb6bc9ed9e682b1d0c64b0486cf9482) by @miha-prehcm ([merge request](158083))
- - [Add partitioned FK from ci_pipeline_messages to ci_pipelines](2cb83573d6127c0b15344a24156e8dee4c7a9d05) ([merge request](158065))
- - [Add partitioned FK from ci_pipeline_metadata to ci_pipelines](15d7fadcc85054caf17d76d0d940c1b9f24e6f8e) ([merge request](158065))
- - [Mark 20230615101400 as obsolete](65ecf2b70c32c4f4b41a20cc54c4a984aa9bc9ec) ([merge request](157366)) **GitLab Enterprise Edition**
- - [Change table ownership](d12b8a7105d8f17550ce5a2e221c328e0fa78983) ([merge request](158030))
- - [Add and backfill group_id for packages_debian_group_architectures](38dba13a0c77b1d814d231a0764fca724cba077e) ([merge request](158027))
- - [Add partitioned FK from p_ci_pipeline_variables to ci_pipelines](f0d1874de344f6b6ef6fc7dc139cd9013ab75b60) ([merge request](157747))
- - [Regenerate rubocop todo files](bb1b277f6d338ea63d81c6f836d5249a04e9ab2c) ([merge request](157740))
- - [Quarantine a flaky test](c0871506caa5e628605add1bf040546d7b788468) ([merge request](157246))
- - [Quarantine a flaky test](c4b1fc1e8a5a275135f27061235dfa825c12f488) ([merge request](156993))
- - [Quarantine a flaky test](fb5441026837dd5bbaa048136e8d44e6e6180b6c) ([merge request](157712))
- - [Prepare ci_pipelines.autocancel_by_id for composite primary key](818302e3c6bd466acafdfa5062d74e84c98d53cb) ([merge request](157619))
- - [Finalize BackfillEpicIssuesIntoWorkItemParentLinks migration](95898c8f7b2329fb0c854c8a5b179496dea9391d) ([merge request](157974))
- - [refactor: Increase test code quality for package controller test](b40706054a43e93f17016061d1d5b34265abe29c) by @gerardo-navarro ([merge request](149383))
- - [Add partitioned FK from ci_sources_pipelines to ci_pipelines](3d19f526f0deee5ef049df819f92fbe82493fef8) ([merge request](157947))
- - [Remove default values for ci_sources_projects#partition_id](84427538e86c952dd4da3e6121795925ee0ef83d) ([merge request](157909))
- - [Add and backfill group_id for packages_debian_group_components](a610218dd24bd0589ffb8d197fbd79254829f5f0) ([merge request](157905))
- - [Add spec to verify FeatureFlagReferenceFilter N+1](6a57b5d86957ca675debd1f684c7629dbadcb30f) by @jzeng88 ([merge request](157866))
- - [Finalize migration ConvertCreditCardValidationDataToHashes](c55d426e46aebcd4dd786a7705668bac8b0b1d45) ([merge request](157836))
- - [Add test for N+1 query for VulnerabilityReferenceFilter](ae717f7d3b513c9cc94a0051905a25f31b0e6778) by @jzeng88 ([merge request](157853)) **GitLab Enterprise Edition**
- - [Rspec Test Order:Run spec in random order](32dd8048a8ecdb4397502171130fbb2b4d101696) by @Deepak18-06 ([merge request](157844))
- - [Revert "Merge branch 'bwill/optimize-top-bound-lineage-search' into 'master'"](05d6aa37ff18eb424567b3631bce94ca12a2d7c2) ([merge request](157799))
- - [Mark 20230719094243 as obsolete](04189615cbf59008f3faca617333ab94523b3a91) ([merge request](157373)) **GitLab Enterprise Edition**
- - [Resolve Layout/ArgumentAlignment offenses 76](0780a7089def55a53cfabbd815b1c9258d50ece8) by @gauravmarwal ([merge request](151273))
- - [Create Dependencies::DependencyListExport::Part model](611693796c17c26017925e8284024a286f7d5923) ([merge request](157638))
- - [Add and backfill project_id for packages_debian_project_architectures](31b760f990afd45856d6b9b453e2cce0437d8ff7) ([merge request](157767))
- - [Add partitioned FK from p_ci_stages to ci_pipelines](764b3d35fdfda65d8f53a69764cd43618e478c63) ([merge request](157753))
- - [Add partitioned FK from p_ci_builds to ci_pipelines](e70f1a202ee685a29473b7c19a7af1f5d6f9bf57) ([merge request](157750))
- - [Mark 20230719144243 as obsolete](69194636e77626e80f69f41b626da7fea2e712a9) ([merge request](157375)) **GitLab Enterprise Edition**
- - [Mark 20230628094243 as obsolete](69ebc4a04186d13151807c587d53ccc8aca3bb83) ([merge request](157367)) **GitLab Enterprise Edition**
- - [Mark 20230702000000 as obsolete](af4b7fb6a2d92fa6e0521809cca5a7891d186d69) ([merge request](157369)) **GitLab Enterprise Edition**
- - [Mark 20230711140500 as obsolete](aeb55e4c74b5cf5382377d23d30462139cfda6fe) ([merge request](157372)) **GitLab Enterprise Edition**
- - [Add and backfill project_id for packages_debian_project_components](3a2d5db6f51b0bf98b3a3e53bb0ded82ee92e206) ([merge request](157626))
- - [Mark 20230719142200 as obsolete](a884e64586bfe172d2d7fd17628172a33856c71a) ([merge request](157374)) **GitLab Enterprise Edition**
- - [Mark 20230703112233 as obsolete](4c875ae756b3849756fe1385a8cb84db743d4ecd) ([merge request](157370)) **GitLab Enterprise Edition**
- - [Remove ignored MemberRole columns](6bb23bcf406e5e7956d66b3c4ac28ddc04be7ee4) ([merge request](156264))
- - [Set internal bots profiles to be private and confirmed](f7602f946c819b60e3a54826caa84ee146262826) ([merge request](157557))
- - [Finalize migration BackfillSbomOccurrencesTraversalIdsAndArchived](dda5e8c948fa9fb5c481a8673dc81c2bde079d5b) ([merge request](157235))
- - [Mark 20230628094700 as obsolete](7e1286ec975ad0f14341be82b52fc934800309b9) ([merge request](157368)) **GitLab Enterprise Edition**
- - [Add and backfill project_id for ml_candidate_metadata](c3e5edf00691b71c71b7531e067713fa72f0cd3e) ([merge request](157484))
- - [Add and backfill project_id for packages_dependency_links](0fc3dbc2be113adb6e36dd330f4a01c67dad708c) ([merge request](157483))
- - [Add not null constraint](49fee3d2b8383a6731771126f24298279d6edd2b) ([merge request](156893)) **GitLab Enterprise Edition**
- - [refactor: Apply best practices to feature test new project](65cbde5ccd5684f04d803bc83b95c2625cf591ba) by @gerardo-navarro ([merge request](154086))
- - [Rspec Test order: run test in random order](58eafbe8bd0ec62cf1654ba691faf9f965b0b419) by @Deepak18-06 ([merge request](157178))
- - [Quarantine a flaky test](664b950a95565920a92202dfe46f0d7ee8996dce) ([merge request](156997))
- - [Quarantine a flaky test](dd31ad79eab6af213aa840eb093df5bceab693cd) ([merge request](157395))
- - [Mark 20230710142700 as obsolete](25bd3ba8c783dcc885d6373cc09400a659cfe888) ([merge request](157371)) **GitLab Enterprise Edition**
- - [Remove initialize_processable from Seed::Build](38fd3829c473eca7f851eb38110e4c993fd72ff6) by @Deepak18-06 ([merge request](157260))
- - [Quarantine a flaky test](b39d6cf95cd307b3fad5de9b36fc8d201f3b0bf8) ([merge request](157247))
- - [Quarantine a flaky test](5c6062bae55449c954f9eb37e11f0d811f740efa) ([merge request](157245))
- - [Remove unused deployments indexes on .com](f8389ff2d52178bd0be63dabb5dc95f8135c3c3b) ([merge request](157136))
- - [Implement cars resolver](041224188e2c073a4023d81c7331ee0594b1ed5c) ([merge request](156145)) **GitLab Enterprise Edition**
- - [Add and backfill project_id for ml_model_metadata](f8cdfcee0b0276be4099c34512572aebb224f1cc) ([merge request](157191))
- - [Add and backfill project_id for merge_requests_closing_issues](1ec02dca526dc018a2de5d978b28afc10dd6f362) ([merge request](157186))
- - [Add and backfill project_id for vulnerability_external_issue_links](4228c0d5f787b0fac105895bf845fb04d7877e98) ([merge request](157179))
- - [Add and backfill project_id for packages_conan_metadata](11ecfcd0a9bb13be235e91949bfacfa2d933a74d) ([merge request](156254))
- - [Finalize migration BackfillProjectStatisticsStorageSizeWithRecentSize](34511dfdee1149d549f9ce5aea44afa3c0afa98f) ([merge request](155152))
- - [Quarantine a flaky test](2642174f2cc89fb8fe8f94f2cb4808328078c3da) ([merge request](157005))
- - [Quarantine a flaky test](aff7cb9815d4497d005185efba1bd7fd6ddceb1b) ([merge request](157107))
- - [Check for N+1 in IssueReferenceFilter](a39910d8e7deed3e4f60ee7e014467c0271e6ddc) by @Deepak18-06 ([merge request](157110))
- - [Drop `security_findings_confidence_idx` index from `security_findings`](2809cb8dd101755f59ae19ef2d87d93900baaa52) ([merge request](157071))
- - [Add and backfill project_id for packages_maven_metadata](a03846af1541deaab1ebc9341d12193231f1d879) ([merge request](157034))
- - [Add and backfill project_id for vulnerability_finding_evidences](8709db853647b5d2afa117c34d1ffda55dde47d1) ([merge request](157032))
- - [Add and backfill project_id for merge_request_reviewers](ddd51bad31a2ab6ede4eb532a2e11e907291dccc) ([merge request](157031))
- - [Finalize migration BackfillUsersColorModeId](570f26edab95ec24120e8fdbde7f6d4ca33ff1bc) ([merge request](157013))
- - [Quarantine a flaky test](2d68f1a36f6e899d587eda74156571128c95d5c8) ([merge request](156994))
- - [Quarantine a flaky test](4081d47da3c5a1d96f79a0ace12ac792711392d9) ([merge request](156992))
- - [Merge ExtractsRef into ExtractsPath](6a6aa68de80b2abaf8fd0329000d423d04ff5805) ([merge request](155245))
- - [Add new column to store organization project & group sorting options](9f8081fe25dc8f3a11c628b3bc83768bbc1debab) ([merge request](154899))
- - [Remove imported column from relevant tables](42623a62be2315ad601e1fb88f314a29c649a7b5) ([merge request](156540))
- - [Add and backfill namespace_id for vulnerability_finding_signatures](0586512f2b76761a30f551a508e1ff7738c071d5) ([merge request](156794))
- - [Add post_migrate to remove invalid record](1107cd52bf22de3fcd2e7cb1f400d858b136217e) ([merge request](156518)) **GitLab Enterprise Edition**
- - [Remove default values ci_pipeline_messages#partition_id](ea6d8bc0acb8e1f4866d08738c8fdb219cd0f94f) ([merge request](155397))
- - [Drop merge_requests_closing_issues.closes_work_item column](9f920558b3a917d2775a608f75864ec666893f17) ([merge request](156677))
- - [Resolve Layout/ArgumentAlignment offenses 88](6f30b452ccb6c137340cf5d4694f5c71f680b631) by @gauravmarwal ([merge request](151289))
- - [Add a new model that will handle abuse report notes](33f329bec6779bb8a50f6aac28e4859483e973ac) ([merge request](156146))
- - [Add and backfill project_id for protected_tag_create_access_levels](35ec77d7d15cb131bde663ac124c5e9e5cc7326a) ([merge request](156637))
- - [Add and backfill project_id for vulnerability_findings_remediations](a03c4ff338e3aaa2cf601301d9058a5d3a427256) ([merge request](156634))
- - [refactor: Remove rubocop issues](dba1531363d33bef26bed333ffb28507dbbab9a4) by @gerardo-navarro ([merge request](154189))
- - [Change catalog resource last 30-day count updated_at](91194027ef72015493c3c8288506a333683c9bdf) ([merge request](156575))
- - [Finalize BackfillPartitionIdCiPipelineMessage](d2591c0ed7caa0e5bfc012eb5b9859a7afe8d4b9) ([merge request](155219))
- - [Protected packages: Shorten GraphQL field `protectionRuleExists` Part 3](13e610a4c2437d24597338829f43b5fcfd1c9217) by @gerardo-navarro ([merge request](152376))
- - [Add and backfill project_id for vulnerability_flags](a5d8dae907e70bee6d66d67a2c55eef3e4a04fce) ([merge request](156323))
- - [Add and backfill project_id for merge_request_context_commits](b1860549c3328b6c864c99ad1f952297e18ca643) ([merge request](156255))
- - [Add and backfill namespace_id for issue_links](d0c9b0f5fe1c316a51b209a8f0679de24c52bc2e) ([merge request](156257))
- - [Add and backfill group_id for related_epic_links](69d1111d555041a6d3b1086b5cbdaae119c2d33c) ([merge request](156251))
- - [Quarantine a flaky test](f1913e6a3bfa16d996c053073e3b3dca2fb5ff1f) ([merge request](155940))
- - [Quarantine a flaky test](121d4e81b497b6795650aef58122a92222d91894) ([merge request](155349))
- - [Remove "use_remote_mirror_destroy_service" feature flag](74e1e921d003960afd6f259384aee2dfec18f30e) ([merge request](155852))
- - [Protected containers: Cleanup renaming of protected_up_to_access_level](4606b5ef64f75acdd581258a0b93034195626e83) by @gerardo-navarro ([merge request](146177))
Jenkins 2.468
Major features and improvements:
* [JENKINS-69869] - Categorize the user properties (#7268) @Wadeck
Changes for plugin developers:
* Allow administrative monitors to be displayed for users with `Overall/MANAGE` permission (#9437) @Vlatombe
All contributors: @Vlatombe, @Wadeck, @basil, @dependabot, @dependabot[bot], @jenkins-release-bot, @jglick, @renovate and @renovate[bot]
Kubernetes v1.27.16
Important Security Information:
This release contains changes that address the following vulnerabilities:
- CVE-2024-5321: Incorrect permissions on Windows containers logs A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.
**Affected Versions**:
- - kubelet <= 1.27.15
- - kubelet <= 1.28.11
- - kubelet <= 1.29.6
- - kubelet <= 1.30.2
**Fixed Versions**:
- - kubelet 1.27.16
- - kubelet 1.28.12
- - kubelet 1.29.7
- - kubelet 1.30.3
This vulnerability was reported by Paulo Gomes @pjbgf from SUSE. **CVSS Rating:** Medium (6.1) CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Changes by Kind
Feature:
- - Kubernetes is now built with go 1.22.4 (#125701, @cpanato) [SIG Release and Testing]
- - Kubernetes is now built with go 1.22.5 (#125898, @cpanato) [SIG Release and Testing]
Bug or Regression:
- - NONE (#126126, @cji) [SIG Node and Windows]
Dependencies
Added:
Changed:
Removed:
Kubernetes v1.29.7
Important Security Information:
This release contains changes that address the following vulnerabilities:
- CVE-2024-5321: Incorrect permissions on Windows containers logs A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.
**Affected Versions**:
- - kubelet <= 1.27.15
- - kubelet <= 1.28.11
- - kubelet <= 1.29.6
- - kubelet <= 1.30.2
**Fixed Versions**:
- - kubelet 1.27.16
- - kubelet 1.28.12
- - kubelet 1.29.7
- - kubelet 1.30.3
This vulnerability was reported by Paulo Gomes @pjbgf from SUSE. **CVSS Rating:** Medium (6.1) CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Changes by Kind
Feature:
- - Kubernetes is now built with go 1.22.4 (#125668, @cpanato) [SIG Release and Testing]
- - Kubernetes is now built with go 1.22.5 (#125896, @cpanato) [SIG Release and Testing]
Bug or Regression:
- - Add `/sys/devices/virtual/powercap` to default masked paths. It avoids the potential security risk that the ability to read these files may offer a power-based sidechannel attack against any workloads running on the same kernel. (#125970, @carlory) [SIG Node]
- - Drop additional rule requirement (cronjobs/finalizers) in the roles who use kubectl create cronjobs to be backwards compatible (#124883, @ardaguclu) [SIG CLI]
- - Fix a bug that Pods could stuck in the unschedulable pod pool if they're rejected by PreEnqueue plugins that could change its result by a change in resources apart from Pods. DRA plugin is the only plugin that meets the criteria of the bug in in-tree, and hence if you have `DynamicResourceAllocation` feature flag enabled, your DRA Pods could be affected by this bug. (#125644, @sanposhiho) [SIG Scheduling and Testing]
- - Fix endpoints status out-of-sync when the pod state changes rapidly (#125675, @tnqn) [SIG Apps, Network and Testing]
- - For statically provisioned PVs, if its volume source is CSI type or it has migrated annotation, when it's deleted, the PersisentVolume controller won't changes its phase to the Failed state. With this patch, the external provisioner can remove the finalizer in next reconcile loop. Unfortunately if the provious existing pv has the Failed state, this patch won't take effort. It requires users to remove finalizer. (#126044, @carlory) [SIG Apps and Storage]
- - Kubeadm: do not exit with an error if the "super-admin.conf" cannot create a ClusterRoleBinding for the "cluster-admin" user, due to the ClusterRoleBInding already existing. (#125821, @neolit123) [SIG Cluster Lifecycle]
- - NONE (#126128, @cji) [SIG Node and Windows]
Dependencies
Added:
Changed:
Removed:
Kubernetes v1.28.12
Important Security Information:
This release contains changes that address the following vulnerabilities:
- CVE-2024-5321: Incorrect permissions on Windows containers logs A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.
**Affected Versions**:
- - kubelet <= 1.27.15
- - kubelet <= 1.28.11
- - kubelet <= 1.29.6
- - kubelet <= 1.30.2
**Fixed Versions**:
- - kubelet 1.27.16
- - kubelet 1.28.12
- - kubelet 1.29.7
- - kubelet 1.30.3
This vulnerability was reported by Paulo Gomes @pjbgf from SUSE. **CVSS Rating:** Medium (6.1) CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Changes by Kind
Feature:
- - Kubernetes is now built with go 1.22.4 (#125670, @cpanato) [SIG Release and Testing]
- - Kubernetes is now built with go 1.22.5 (#125897, @cpanato) [SIG Release and Testing]
Bug or Regression:
- - Add `/sys/devices/virtual/powercap` to default masked paths. It avoids the potential security risk that the ability to read these files may offer a power-based sidechannel attack against any workloads running on the same kernel. (#125970, @carlory) [SIG Node]
- - Fix a bug that Pods could stuck in the unschedulable pod pool if they're rejected by PreEnqueue plugins that could change its result by a change in resources apart from Pods. DRA plugin is the only plugin that meets the criteria of the bug in in-tree, and hence if you have `DynamicResourceAllocation` feature flag enabled, your DRA Pods could be affected by this bug. (#125645, @sanposhiho) [SIG Scheduling]
- - Fix endpoints status out-of-sync when the pod state changes rapidly (#125675, @tnqn) [SIG Apps, Network and Testing]
- - For statically provisioned PVs, if its volume source is CSI type or it has migrated annotation, when it's deleted, the PersisentVolume controller won't changes its phase to the Failed state. With this patch, the external provisioner can remove the finalizer in next reconcile loop. Unfortunately if the provious existing pv has the Failed state, this patch won't take effort. It requires users to remove finalizer. (#126045, @carlory) [SIG Apps and Storage]
- - NONE (#126127, @cji) [SIG Node and Windows]
Dependencies
Added:
Changed:
Removed:
Kubernetes v1.30.3
Important Security Information:
- This release contains changes that address the following vulnerabilities:
- ### CVE-2024-5321: Incorrect permissions on Windows containers logs
- A security issue was discovered in Kubernetes clusters with Windows nodes
- where BUILTIN\Users may be able to read container logs and NT
- AUTHORITY\Authenticated Users may be able to modify container logs.
**Affected Versions**:
- - kubelet <= 1.27.15
- - kubelet <= 1.28.11
- - kubelet <= 1.29.6
- - kubelet <= 1.30.2
**Fixed Versions**:
- - kubelet 1.27.16
- - kubelet 1.28.12
- - kubelet 1.29.7
- - kubelet 1.30.3
This vulnerability was reported by Paulo Gomes @pjbgf from SUSE. **CVSS Rating:** Medium (6.1) CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Changes by Kind
Feature:
- - Kubernetes is now built with go 1.22.5 (#125895, @cpanato) [SIG Release and Testing]
Bug or Regression:
- - Add `/sys/devices/virtual/powercap` to default masked paths. It avoids the potential security risk that the ability to read these files may offer a power-based sidechannel attack against any workloads running on the same kernel. (#125970, @carlory) [SIG Node]
- - Fix a bug that Pods could stuck in the unschedulable pod pool if they're rejected by PreEnqueue plugins that could change its result by a change in resources apart from Pods. DRA plugin is the only plugin that meets the criteria of the bug in in-tree, and hence if you have `DynamicResourceAllocation` feature flag enabled, your DRA Pods could be affected by this bug. (#125643, @sanposhiho) [SIG Scheduling and Testing]
- - Fix endpoints status out-of-sync when the pod state changes rapidly (#125675, @tnqn) [SIG Apps, Network and Testing]
- - For statically provisioned PVs, if its volume source is CSI type or it has migrated annotation, when it's deleted, the PersisentVolume controller won't changes its phase to the Failed state. With this patch, the external provisioner can remove the finalizer in next reconcile loop. Unfortunately if the provious existing pv has the Failed state, this patch won't take effort. It requires users to remove finalizer. (#126043, @carlory) [SIG Apps and Storage]
- - Job: Fix a bug that the SuccessCriteriaMet could be added to the Job with successPolicy regardless of the featureGate enabling (#125455, @tenzen-y) [SIG Apps]
- - NONE (#126129, @cji) [SIG Node and Windows]
Dependencies
Added:
Changed:
Removed:
Nodejs/Node v22.5.1
Notable Changes:
This release fixes a regression introduced in Node.js 22.5.0. The problem is known to display the following symptoms:
* Crash with `FATAL ERROR: v8::Object::GetCreationContextChecked No creation context available` [#53902]
* npm errors with `npm error Exit handler never called!` [npm/cli#7657]
* yarn hangs or outputs `Usage Error: Couldn't find the node_modules state file - running an install might help (findPackageLocation)` [yarnpkg/berry#6398]
Commits:
* [`e2deeedc6e`] - _**Revert**_ "**fs**: add v8 fast api to closeSync" (Aviv Keller) [#53904]
Nodejs/Node v22.5.0
Notable Changes:
- * [`1367c5558e`] - **(SEMVER-MINOR)** **http**: expose websockets (Natalia Venditto) [#53721]
- * [`b31394920d`] - **(SEMVER-MINOR)** **lib**: add `node:sqlite` module (Colin Ihrig) [#53752]
- * [`aa7df9551d`] - **module**: add `__esModule` to `require()`'d ESM (Joyee Cheung) [#52166]
- * [`8743c4d65a`] - **(SEMVER-MINOR)** **path**: add `matchesGlob` method (Aviv Keller) [#52881]
- * [`77936c3d24`] - **(SEMVER-MINOR)** **process**: port on-exit-leak-free to core (Vinicius Lourenço) [#53239]
- * [`82d88a83f8`] - **(SEMVER-MINOR)** **stream**: pipeline wait for close before calling the callback (jakecastelli) [#53462]
- * [`3a0fcbb17a`] - **test\_runner**: support glob matching coverage files (Aviv Keller) [#53553]
- * [`22ca334090`] - **(SEMVER-MINOR)** **worker**: add `postMessageToThread` (Paolo Insogna) [#53682]
- ### Commits
- * [`eb4e370933`] - **benchmark**: add require-esm benchmark (Joyee Cheung) [#52166]
- * [`4d4a8338db`] - **benchmark**: add cpSync benchmark (Yagiz Nizipli) [#53612]
- * [`3d60b38afa`] - **build**: fix build warning of c-ares under GN build (Cheng) [#53750]
- * [`a45c801048`] - **build**: fix build error in sqlite under GN build (Cheng) [#53686]
- * [`40032eb623`] - **build**: add gn files for deps/nbytes (Cheng) [#53685]
- * [`082799debb`] - **build**: fix mac build error of c-ares under GN (Cheng) [#53687]
- * [`b05394ea6a`] - **build**: add version-specific library path for AIX (Richard Lau) [#53585]
- * [`6237172eaf`] - **cli**: update `node.1` to reflect Atom's sunset (Aviv Keller) [#53734]
- * [`5697938cb7`] - **crypto**: avoid std::function (Tobias Nießen) [#53683]
- * [`3cc01aa314`] - **crypto**: make deriveBits length parameter optional and nullable (Filip Skokan) [#53601]
- * [`f82e20fdea`] - **crypto**: avoid taking ownership of OpenSSL objects (Tobias Nießen) [#53460]
- * [`ad1e5610ec`] - **deps**: update googletest to 4b21f1a (Node.js GitHub Bot) [#53842]
- * [`d285d610a0`] - **deps**: update minimatch to 10.0.1 (Node.js GitHub Bot) [#53841]
- * [`70f5209c9f`] - **deps**: update corepack to 0.29.2 (Node.js GitHub Bot) [#53838]
- * [`4930e12a45`] - **deps**: update simdutf to 5.3.0 (Node.js GitHub Bot) [#53837]
- * [`d346833364`] - **deps**: update ada to 2.9.0 (Node.js GitHub Bot) [#53748]
- * [`ab8abb5367`] - **deps**: upgrade npm to 10.8.2 (npm team) [#53799]
- * [`1ad664905a`] - **deps**: update nbytes and add update script (Yagiz Nizipli) [#53790]
- * [`a66f11e798`] - **deps**: update googletest to 34ad51b (Node.js GitHub Bot) [#53157]
- * [`9bf61d6a0d`] - **deps**: update googletest to 305e5a2 (Node.js GitHub Bot) [#53157]
- * [`8542ace488`] - **deps**: V8: cherry-pick 9ebca66a5740 (Chengzhong Wu) [#53755]
- * [`29a734c21d`] - **deps**: V8: cherry-pick e061cf9970d9 (Joyee Cheung) [#53755]
- * [`c7624af44a`] - **deps**: update c-ares to v1.32.1 (Node.js GitHub Bot) [#53753]
- * [`bbcec9e129`] - **deps**: update minimatch to 9.0.5 (Node.js GitHub Bot) [#53646]
- * [`76032fd980`] - **deps**: update c-ares to v1.32.0 (Node.js GitHub Bot) [#53722]
- * [`26386046ad`] - **doc**: move MylesBorins to emeritus (Myles Borins) [#53760]
- * [`362875bda0`] - **doc**: add Rafael to the last security release (Rafael Gonzaga) [#53769]
- * [`a1a5ad848d`] - **doc**: use mock.callCount() in examples (Sébastien Règne) [#53754]
- * [`bb960c5471`] - **doc**: clarify authenticity of plaintexts in update (Tobias Nießen) [#53784]
- * [`5dd3018eb4`] - **doc**: add option to have support me link (Michael Dawson) [#53312]
- * [`0f95ad3d7d`] - **doc**: add OpenSSL security level to TLS docs (Afanasii Kurakin) [#53647]
- * [`2d92ec2831`] - **doc**: update `scroll-padding-top` to 4rem (Cloyd Lau) [#53662]
- * [`933359a786`] - **doc**: mention v8.setFlagsFromString to pm (Rafael Gonzaga) [#53731]
- * [`e17c2618e3`] - **doc**: remove the last \<pre> tag (Claudio W) [#53741]
- * [`7f18a5f47a`] - **doc**: exclude voting and regular TSC from spotlight (Michael Dawson) [#53694]
- * [`df3dcd1bd1`] - **doc**: fix releases guide for recent Git versions (Michaël Zasso) [#53709]
- * [`50987ea833`] - **doc**: require `node:process` in assert doc examples (Alfredo González) [#53702]
- * [`fa58d01497`] - **doc**: add additional explanation to the wildcard section in permissions (jakecastelli) [#53664]
- * [`28bf1e48ef`] - **doc**: mark NODE\_MODULE\_VERSION for Node.js 22.0.0 (Michaël Zasso) [#53650]
- * [`1cc0b41f00`] - **doc**: include node.module\_timer on available categories (Vinicius Lourenço) [#53638]
- * [`d224e9eab5`] - **doc**: fix module customization hook examples (Elliot Goodrich) [#53637]
- * [`2cf60964e6`] - **doc**: fix doc for correct usage with plan & TestContext (Emil Tayeb) [#53615]
- * [`6df86ae056`] - **doc**: remove some news issues that are no longer (Michael Dawson) [#53608]
- * [`42b9408f3e`] - **doc**: add issue for news from ambassadors (Michael Dawson) [#53607]
- * [`2d1ff91953`] - **doc**: add esm example for os (Leonardo Peixoto) [#53604]
- * [`de99d69d75`] - **doc**: clarify usage of coverage reporters (Eliphaz Bouye) [#53523]
- * [`519c328dcf`] - **doc**: document addition testing options (Aviv Keller) [#53569]
- * [`c6166cdfe4`] - **doc**: clarify that fs.exists() may return false for existing symlink (Tobias Nießen) [#53566]
- * [`9139ab2848`] - **doc**: note http.closeAllConnections excludes upgraded sockets (Rob Hogan) [#53560]
- * [`19b3718ee1`] - **doc, meta**: add PTAL to glossary (Aviv Keller) [#53770]
- * [`80c1f5ce8a`] - **doc, typings**: events.once accepts symbol event type (René) [#53542]
- * [`1a21e0f61e`] - **esm**: improve `defaultResolve` performance (Yagiz Nizipli) [#53711]
- * [`262f2cb3b6`] - **esm**: remove unnecessary toNamespacedPath calls (Yagiz Nizipli) [#53656]
- * [`e29c9453a9`] - **esm**: move hooks test with others (Geoffrey Booth) [#53558]
- * [`8368555289`] - **fs**: add v8 fast api to closeSync (Yagiz Nizipli) [#53627]
- * [`628a539810`] - **fs**: reduce throwing unnecessary errors on glob (Yagiz Nizipli) [#53632]
- * [`076e82ca40`] - **fs**: move `ToNamespacedPath` dir calls to c++ (Yagiz Nizipli) [#53630]
- * [`128e514d81`] - **fs**: improve error performance of `fs.dir` (Yagiz Nizipli) [#53667]
- * [`603c2c5c08`] - **fs**: fix typings (Yagiz Nizipli) [#53626]
- * [`1367c5558e`] - **(SEMVER-MINOR)** **http**: expose websockets (Natalia Venditto) [#53721]
- * [`7debb6c36e`] - **http**: remove prototype primordials (Antoine du Hamel) [#53698]
- * [`b13aea5698`] - **http, readline**: replace sort with toSorted (Benjamin Gruenbaum) [#53623]
- * [`1397f5d9f4`] - **http2**: remove prototype primordials (Antoine du Hamel) [#53696]
- * [`f57d3cee2c`] - **lib**: make navigator not runtime-lookup process.version/arch/platform (Jordan Harband) [#53765]
- * [`0a01abbd45`] - **lib**: refactor `platform` utility methods (Daniel Bayley) [#53817]
- * [`afe7f4f819`] - **lib**: remove path.resolve from permissions.js (Rafael Gonzaga) [#53729]
- * [`cbe77b30ca`] - **lib**: move `ToNamespacedPath` call to c++ (Yagiz Nizipli) [#53654]
- * [`0f146aac2c`] - **lib**: make navigator properties lazy (James M Snell) [#53649]
- * [`0540308bd7`] - **lib**: add toJSON to PerformanceMeasure (theanarkh) [#53603]
- * [`b31394920d`] - **(SEMVER-MINOR)** **lib,src,test,doc**: add node:sqlite module (Colin Ihrig) [#53752]
- * [`1a7c2dc5ea`] - **meta**: remove redudant logging from dep updaters (Aviv Keller) [#53783]
- * [`ac5d7b709d`] - **meta**: change email address of anonrig (Yagiz Nizipli) [#53829]
- * [`085ec5533c`] - **meta**: add `node_sqlite.c` to PR label config (Aviv Keller) [#53797]
- * [`c68d873e99`] - **meta**: move one or more collaborators to emeritus (Node.js GitHub Bot) [#53758]
- * [`5ae8ea489d`] - **meta**: use HTML entities in commit-queue comment (Aviv Keller) [#53744]
- * [`ecd8fceb68`] - **meta**: move regular TSC member to emeritus (Michael Dawson) [#53693]
- * [`05058f9809`] - **meta**: bump codecov/codecov-action from 4.4.1 to 4.5.0 (dependabotbot]) [#53675]
- * [`e272ffa3d6`] - **meta**: bump mozilla-actions/sccache-action from 0.0.4 to 0.0.5 (dependabotbot]) [#53674]
- * [`a39407560c`] - **meta**: bump github/codeql-action from 3.25.7 to 3.25.11 (dependabotbot]) [#53673]
- * [`e4ce92ee31`] - **meta**: bump actions/checkout from 4.1.6 to 4.1.7 (dependabotbot]) [#53672]
- * [`4cf98febe7`] - **meta**: bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 (dependabotbot]) [#53671]
- * [`c28af95bf5`] - **meta**: bump step-security/harden-runner from 2.8.0 to 2.8.1 (dependabotbot]) [#53670]
- * [`dd2157bc83`] - **meta**: move member from TSC regular to emeriti (Michael Dawson) [#53599]
- * [`508abfe178`] - **meta**: warnings bypass deprecation cycle (Benjamin Gruenbaum) [#53513]
- * [`3c5ec839e3`] - **meta**: prevent constant references to issues in versioning (Aviv Keller) [#53564]
- * [`aa7df9551d`] - **module**: add \_\_esModule to require()'d ESM (Joyee Cheung) [#52166]
- * [`8743c4d65a`] - **(SEMVER-MINOR)** **path**: add `matchesGlob` method (Aviv Keller) [#52881]
- * [`77936c3d24`] - **(SEMVER-MINOR)** **process**: port on-exit-leak-free to core (Vinicius Lourenço) [#53239]
- * [`5e4ca9fbb6`] - **src**: update outdated references to spec sections (Tobias Nießen) [#53832]
- * [`c22d9d5167`] - **src**: use Maybe\<void> in ManagedEVPPKey (Tobias Nießen) [#53811]
- * [`d41ed44f49`] - **src**: move `loadEnvFile` toNamespacedPath call (Yagiz Nizipli) [#53658]
- * [`dc99dd391f`] - **src**: fix error handling in ExportJWKAsymmetricKey (Tobias Nießen) [#53767]
- * [`ab1e03e8cd`] - **src**: use Maybe\<void> in node::crypto::error (Tobias Nießen) [#53766]
- * [`9bde9b254d`] - **src**: fix implementation of `PropertySetterCallback` (Igor Sheludko) [#53576]
- * [`021e2cf40f`] - **src**: remove unused ContextifyContext::WeakCallback (Chengzhong Wu) [#53517]
- * [`87121a17c4`] - **src**: fix typo in node.h (Daeyeon Jeong) [#53759]
- * [`94c7054c8d`] - **src**: document the Node.js context embedder data (Joyee Cheung) [#53611]
- * [`c181940e83`] - **src**: zero-initialize data that are copied into the snapshot (Joyee Cheung) [#53563]
- * [`8cda2db64c`] - _**Revert**_ "**src**: make sure that memcpy-ed structs in snapshot have no padding" (Joyee Cheung) [#53563]
- * [`81767f6089`] - **src**: fix Worker termination when '--inspect-brk' is passed (Daeyeon Jeong) [#53724]
- * [`a9db553935`] - **src**: refactor embedded entrypoint loading (Joyee Cheung) [#53573]
- * [`3ab8aba478`] - **src**: do not get string\_view from temp string (Cheng) [#53688]
- * [`664bf6c28f`] - **src**: replace `kPathSeparator` with std::filesystem (Yagiz Nizipli) [#53063]
- * [`cc1f49751a`] - **src**: move `FromNamespacedPath` to path.cc (Yagiz Nizipli) [#53540]
- * [`e43a4e07ec`] - **src**: use `starts_with` in node\_dotenv.cc (Yagiz Nizipli) [#53539]
- * [`19488fd4ce`] - **src,test**: further cleanup references to osx (Daniel Bayley) [#53820]
- * [`4bf62f6cbd`] - **stream**: improve inspector ergonomics (Benjamin Gruenbaum) [#53800]
- * [`82d88a83f8`] - **(SEMVER-MINOR)** **stream**: pipeline wait for close before calling the callback (jakecastelli) [#53462]
- * [`53a7dd7790`] - **test**: update wpt test (Mert Can Altin) [#53814]
- * [`bc480902ab`] - **test**: update WPT WebIDL interfaces (Filip Skokan) [#53720]
- * [`d13153d90f`] - **test**: un-set inspector-async-hook-setup-at-inspect-brk as flaky (Abdirahim Musse) [#53692]
- * [`ac9c2e6bf2`] - **test**: use python3 instead of python in pummel test (Mathis Wiehl) [#53057]
- * [`bac28678e6`] - **test**: do not assume cwd in snapshot tests (Antoine du Hamel) [#53146]
- * [`41e106c0c6`] - **test**: use `Set.difference()` (Richard Lau) [#53597]
- * [`8aab680f66`] - **test**: fix OpenSSL version checks (Richard Lau) [#53503]
- * [`6aa4f0f266`] - **test**: refactor, add assertion to http-request-end (jakecastelli) [#53411]
- * [`fbc5cbb617`] - **test\_runner**: remove plan option from run() (Colin Ihrig) [#53834]
- * [`c590828ad8`] - **test\_runner**: fix escaping in snapshot tests (Julian Kniephoff) [#53833]
- * [`3a0fcbb17a`] - **test\_runner**: support glob matching coverage files (Aviv Keller) [#53553]
- * [`e6a1eeb73d`] - **test\_runner**: support module detection in module mocks (Geoffrey Booth) [#53642]
- * [`4d777de7d4`] - **tls**: add setKeyCert() to tls.Socket (Brian White) [#53636]
- * [`ab9adfc42a`] - **tls**: remove prototype primordials (Antoine du Hamel) [#53699]
- * [`03d378ffb9`] - **tools**: update lint-md-dependencies (Node.js GitHub Bot) [#53840]
- * [`06377b1b11`] - **tools**: update eslint to 9.7.0 (Node.js GitHub Bot) [#53839]
- * [`d6629a2d84`] - **tools**: use v8\_features.json to populate config.gypi (Cheng) [#53749]
- * [`d3653fe8ac`] - **tools**: update eslint to 9.6.0 (Node.js GitHub Bot) [#53645]
- * [`1e930e93d4`] - **tools**: update lint-md-dependencies to unified\@11.0.5 (Node.js GitHub Bot) [#53555]
- * [`317a13b30f`] - **tools**: replace reference to NodeMainInstance with SnapshotBuilder (codediverdev) [#53544]
- * [`0e25faea0a`] - **typings**: add `fs_dir` types (Yagiz Nizipli) [#53631]
- * [`7637f291be`] - **url**: fix typo (KAYYY) [#53827]
- * [`2c6548afd1`] - **url**: reduce unnecessary string copies (Yagiz Nizipli) [#53628]
- * [`0f2b57d1bc`] - **url**: make URL.parse enumerable (Filip Skokan) [#53720]
- * [`1300169f80`] - **url**: add missing documentation for `URL.parse()` (Yagiz Nizipli) [#53733]
- * [`c55e72ed8b`] - **util**: fix crashing when emitting new Buffer() deprecation warning #53075 (Aras Abbasi) [#53089]
- * [`5aa216320e`] - **v8**: move `ToNamespacedPath` to c++ (Yagiz Nizipli) [#53655]
- * [`9fd976b09d`] - **vm,src**: add property query interceptors (Chengzhong Wu) [#53517]
- * [`22ca334090`] - **(SEMVER-MINOR)** **worker**: add postMessageToThread (Paolo Insogna) [#53682]
- * [`5aecbefbd5`] - **worker**: allow copied NODE\_OPTIONS in the env setting (Joyee Cheung) [#53596]
Rabbitmq/Rabbitmq-server v3.13.5
RabbitMQ `3.13.5` is a maintenance release in the `3.13.x` [release series]. This upgrade is **highly recommended** to all users currently on earlier `3.13.x` series and in particular `3.13.4`. Starting June 1st, 2024, community support for this series will only be provided to [regularly contributing users] and those who hold a valid [commercial support license]. Please refer to the upgrade section from the [3.13.0 release notes] if upgrading from a version prior to 3.13.0. This release requires Erlang 26 and supports Erlang versions up to `26.2.x`. [RabbitMQ and Erlang/OTP Compatibility Matrix] has more details on Erlang version requirements for RabbitMQ.
Minimum Supported Erlang Version:
As of 3.13.0, RabbitMQ requires Erlang 26. Nodes **will fail to start** on older Erlang releases. Users upgrading from 3.12.x (or older releases) on Erlang 25 to 3.13.x on Erlang 26 (both RabbitMQ *and* Erlang are upgraded at the same time) **must** consult the [v3.12.0 release notes] and [v3.13.0 release notes] first.
Changes Worth Mentioning:
* Release notes can be found on GitHub at [rabbitmq-server/release-notes]
Core Broker
Bug Fixes:
* Quorum queue replicas could fail to recover in certain scenarios. GitHub issue: [#11769]
* Safer AMQP 0-9-1 to AMQP 1.0 (the internal message format) conversion for longer string values. GitHub issue: [#11737]
* When a message that contained an `x-deaths` [dead-lettering] header was republished "as is" by a client, the `time` field in the dead lettering events was not correctly converted for AMQP 0-9-1 clients. GitHub issue: [#11608]
* [Direct Reply-to] failed with an exception when firehose tracing was enabled. GitHub issue: [#11666]
CLI Tools
Bug Fixes:
* `rabbitmqctl export_definitions` failed if cluster contained custom federation upstream set definitions. GitHub issue: [#11612]
MQTT Plugin
Bug Fixes:
* An abrupt client TCP connection closure could result in a spike in that connection's memory footprint. GitHub issue: [#11683]
Shovel Plugin
Enhancements:
* Improved AMQP 1.0 to AMQP 0-0-1 conversion for shovels. Contributed by @luos. GitHub issue: [#10037]
etcd Peer Discovery Plugin
Bug Fixes:
* Nodes now register themselves before running peer discovery, reducing the probability of first (usually) two nodes to boot potentially forming two initial clusters. GitHub issues: [#11647] [#11646]
Consul Peer Discovery Plugin
Bug Fixes:
* Nodes now register themselves before running peer discovery, reducing the probability of first (usually) two nodes to boot potentially forming two initial clusters.
GitHub issues: [#11647] [#11646]
AWS Peer Discovery Plugin
Enhancements:
* Forward compatibility: handle AWS API responses that use empty HTTP response bodies. Contributed by @SimonUnge. GitHub issue: [#11722]
Dependency Changes:
* Ra was [upgraded to `2.13.3`]
Source Code Archives:
* To obtain source code of the entire distribution, please download the archive named `rabbitmq-server-3.13.5.tar.xz` instead of the source tarball produced by GitHub.
OpenUpdate - July 18, 2024
Stay Informed
This week, read about:
Non-Security Based Updates
Angular 18.1.0
COMMON:
(fix - f25653e231) | typo in NgOptimizedImage warning (#56756)
(fix - 9b35726e42) | typo in warning for NgOptimizedDirective (#56817)
COMPILER:
(feat - fd6cd0422d) | Add extended diagnostic to warn when there are uncalled functions in event bindings (#56295)(fix - 341a116d61) | allow more characters in let declaration name (#56764)
(fix - 2a1291e942) | give precedence to local let declarations over parent ones (#56752)
COMPILER-CLI:
(fix - 66e582551e) | avoid duplicate diagnostics for let declarations read before definition (#56843)
(fix - 4d18c5bfd5) | flag all conflicts between let declarations and local symbols (#56752)
(fix - 9e21582456) | Show template syntax errors in local compilation modified (#55855)
(fix - 5996502921) | type check let declarations nested inside nodes (#56752)
(fix - cdebf751e4) | used before declared diagnostic not firing for control flow blocks (#56843)
CORE:
(feat - ea3c802056) | Add a schematic to migrate afterRender phase flag (#55648)
(feat - 5df3e78c99) | add equality function to rxjs-interoptoSignal(#56447)
(feat - 0a48d584f2) | add support for let syntax (#56715)
(feat - 352e0782ec) | expose signal input metadata inComponentMirror(#56402)
(feat - a655e46447) | Redesign theafterRender&afterNextRenderphases API (#55648)
(feat - e5a6f91722) | support TypeScript 5.5 (#56096)
(fix - 38effcc63e) | Add back phase flag option as a deprecated API (#55648)
(fix - 86bcfd3e49) | improve docs on afterRender hooks (#56522)
(fix - b2445a0953) | link errors to ADEV (#55554) (#56038)
(fix - 03a2acd2a3) | properly remove imports in the afterRender phase migration (#56524)
(fix - 4d87b9e899) | rename the equality function option in toSignal (#56769) (#56922)
(fix - 8bd4c074af) | toSignal equal option should be passed to inner computed (#56903)
Apache Camel 4.7.0
BUG FIXES (58):
- CAMEL-20965 - InputStreamCache is not thread-safe
- CAMEL-20949 - camel-bean - Method parameters with both type and property placeholder does not work
- CAMEL-20946 - Generated Quarkus project from JBang is not working with Camel Debug
- CAMEL-20939 - camel-jbang - unable to load profile
- CAMEL-20938 - camel-http - Using disableStreamCache=true cannot read body later due to stream closed
- CAMEL-20932 - camel-core - Error handler redelivery options should support template parameters for route templates
- CAMEL-20929 - camel-core - Properties component with ignore missing property should also ignore from functions
- CAMEL-20921 - Route configuration is not loaded on a Camel application XML file
- CAMEL-20920 - RouteLoader: Can't load a valid route with the same location after a previous load error
- CAMEL-20911 - Maven build failure for Camel JBang exported Quarkus app
- CAMEL-20906 - NPE in RouteWatcherReloadStrategy.onRouteReload(RouteWatcherReloadStrategy.java:300)
- CAMEL-20890 - Use Step ID's in routeTemplate
- CAMEL-20889 - camel-core: Stream is not reset when Message.getBody(class) is invoked ans stream caching is enabled
- CAMEL-20887 - generated PojoBeanModel is missing the artifact
- CAMEL-20877 - camel-jbang ignores jib-maven-plugin-version
- CAMEL-20873 - camel-platform-http-vertx: Responses may not complete if exceptions are thrown in VertxPlatformHttpSupport.writeResponse
- CAMEL-20866 - SEDA with exchangepattern InOnly gives sometimes multiple responses
- CAMEL-20864 - camel-kafka - With confluent schema registry does not work properly.
- CAMEL-20863 - camel-langchain4j-chat: NPE if only producer is used
- CAMEL-20859 - camel-jbang - Transforming a yaml route to xml specifying a folder is generating a yaml file
- CAMEL-20853 - Rest DSL - Rest routes can not be grouped anymore
- CAMEL-20850 - LRUCache evicts entries unexpectedly
- CAMEL-20847 - camel-jbang - Run with jolokia enabled does not work
- CAMEL-20841 - DataSonnet expressions are removed under memory load
- CAMEL-20840 - Cannot cast ResumeActionAwareAdapter to KinesisResumeAdapter
- CAMEL-20839 - camel-jbang - Run with openapi in sub folder does not work
- CAMEL-20835 - OOM using RecipientList
- CAMEL-20834 - camel-salesforce - A NullPointException in SubscriptionHelper.subscribe() interrupts platform-event subscription
- CAMEL-20823 - camel-smb component polling doesn't account for directories
- CAMEL-20820 - camel-core - Duplicate JMX MBean operation for resource endpoints
- CAMEL-20819 - camel-jbang - Reload mode with supervising route controller does not reload routes
- CAMEL-20818 - camel-yaml-dsl - errorHandler does not have id field as all other YAML elements
- CAMEL-20816 - Camel-JBang: Export to quarkus does not honor quarkusGroupId setting
- CAMEL-20815 - exchange.getVariable does not get Global variables in custom processor
- CAMEL-20812 - camel-netty-http: hostnameVerification option not used
- CAMEL-20799 - camel-catalog - Model schema for setHeaders and setVariables does not include array of element
- CAMEL-20790 - kafka batching consumer polls randomly failing with NPE under load
- CAMEL-20783 - camel export --runtime=quarkus does not work with custom camel.jbang.quarkusVersion
- CAMEL-20778 - Intercept created using AdviceWithRouteBuilder causes issues with error handling (regression)
- CAMEL-20771 - camel-jbang - Does not hot-reload java source changes
- CAMEL-20769 - camel-jms: TemporaryReplyQueueExceptionListener may be causing an endless lock
- CAMEL-20768 - camel-spring-redis - SpringRedisIdempotentRepository flushes DB on start
- CAMEL-20767 - camel-spring-redis - Creating SpringRedisIdempotentRepository via SB should be possible
- CAMEL-20763 - Rest template with underscore fails after Camel 4.2.0
- CAMEL-20761 - camel-debug - Message history must be enabled
- CAMEL-20758 - camel-spring-boot - Debugger is created twice
- CAMEL-20752 - camel-saga - NPE in compesating
- CAMEL-20750 - camel-yaml-dsl - Rest DSL with enableCORS does not work
- CAMEL-20746 - Bean deserialisation from YAML displays message displays wrong nodeType
- CAMEL-20738 - camel-jasypt-starter - PropertiesParser cannot be redefined
- CAMEL-20660 - camel-azure-servicebus: Consumer fails to acknowledge messages
- CAMEL-20493 - camel-core: concurrency issue copying headers
- CAMEL-18821 - camel-core - Thread hangs on transacted routes after aggregation and multiplex (possibly more)
- CAMEL-18384 - Split/Aggregation parallelProcessing+parallelAggregate is sequential
- CAMEL-17829 - camel-as2 - issue in MDN response condition
- CAMEL-17110 - Camel-Kamelets: While using AWS S3 source noticed files were deleted before being consumed at all
- CAMEL-16829 - camel-core - Stuck processing with nested parallel splits and custom thread pool
- CAMEL-15903 - Master component do not retry endpoint startup on failure
Gitlab v16.11.6
Fixed (1 change):
Security (6 changes):
- [Disallow serving Pages over disabled custom domains with deployments](gitlab-org/security/gitlab@ff23e03cab7495107b1342b4fa175db63a4acd61) ([merge request](gitlab-org/security/gitlab!4247))
- [Check if user has ban_group_member access before banning in namespace](gitlab-org/security/gitlab@cadb2dba7f5fe825fab7fe761259e7c1721bebfe) ([merge request](gitlab-org/security/gitlab!4090))
- [Prevent using quick actions for some bot users](gitlab-org/security/gitlab@951a656e6d530ba7692b03506b7c340bc5ac2788) ([merge request](gitlab-org/security/gitlab!4233))
- [Disable raw HTML for quick action pipeline](gitlab-org/security/gitlab@1a7f336059af3223b4886e79060b8dc8a17f5482) ([merge request](gitlab-org/security/gitlab!4237))
- [Disable quick actions unless description changed](gitlab-org/security/gitlab@267f4cf51303f70d5a834a3358fe62b6e981a873) ([merge request](gitlab-org/security/gitlab!4240))
- [Remove comment support from shrug and tableflip](gitlab-org/security/gitlab@579a180538609ccad2d3930218a5410cb33d3920) ([merge request](gitlab-org/security/gitlab!4230))
Gitlab v17.0.4
Fixed (1 change):
Security (9 changes):
- [Disallow serving Pages over disabled custom domains with deployments](gitlab-org/security/gitlab@760d6115e963e744ee55230be45e9fc3c138a73d) ([merge request](gitlab-org/security/gitlab!4248))
- [Check npm package name, version and scripts coherence](gitlab-org/security/gitlab@f3b322c5e20036e380ac15b3b2614d9bcc800e75) ([merge request](gitlab-org/security/gitlab!4158))
- [Check for create_deploy_token policy before creating deploy token](gitlab-org/security/gitlab@87ab0448c48a0ac45540986f4f7429cbc0db3e04) ([merge request](gitlab-org/security/gitlab!4168))
- [Check if user has ban_group_member access before banning in namespace](gitlab-org/security/gitlab@1b69ccb4a7e7e16372a926d7e2954aec76cdc0fd) ([merge request](gitlab-org/security/gitlab!4087))
- [Prevent privilege escalation via custom role](gitlab-org/security/gitlab@288e1493a3c16689993d7cbbd7f60cd9bdeffcc0) ([merge request](gitlab-org/security/gitlab!4198))
- [Prevent using quick actions for some bot users](gitlab-org/security/gitlab@5b8aef69fc74e5aba42d65591902a151a1654316) ([merge request](gitlab-org/security/gitlab!4232))
- Disable raw HTML for quick action pipeline](gitlab-org/security/gitlab@0ca2b123f1f627e68b73a1699fbefbb4a70c28d1) ([merge request](gitlab-org/security/gitlab!4236))
- [Disable quick actions unless description changed](gitlab-org/security/gitlab@9e5397fbd82497083cd69f526a13caea1b5efd21) ([merge request](gitlab-org/security/gitlab!4239))
- [Remove comment support from shrug and tableflip](gitlab-org/security/gitlab@e378c24c4a1a8dd323bd157bce29b21cca1e0701) ([merge request](gitlab-org/security/gitlab!4228))
Gitlab v17.1.2
Fixed (2 changes)
Security (9 changes)
- [Disallow serving Pages over disabled custom domains with deployments](gitlab-org/security/gitlab@176442d616a111667481f22186560925d1175c67) ([merge request](gitlab-org/security/gitlab!4245))
- [Check npm package name, version and scripts coherence](gitlab-org/security/gitlab@917d805ce57e5d0439b4a4c757967d494014a97d) ([merge request](gitlab-org/security/gitlab!4212))
- [Check for create_deploy_token policy before creating deploy token](gitlab-org/security/gitlab@8ae4e9b0b25bec92561698da3c7d0495d6ba61bc) ([merge request](gitlab-org/security/gitlab!4209))
- [Check if user has ban_group_member access before banning in namespace](gitlab-org/security/gitlab@eefb608987d64b9cf58411b8520f260d1fb9b1c3) ([merge request](gitlab-org/security/gitlab!4091))
- [Prevent privilege escalation via custom role](gitlab-org/security/gitlab@a618e86dc4585b0fef049f75f13acf0eec00656d) ([merge request](gitlab-org/security/gitlab!4199))
- [Prevent using quick actions for some bot users](gitlab-org/security/gitlab@5789cc333d04d76ffb4c79239e71be1910f12229) ([merge request](gitlab-org/security/gitlab!4231))
- [Disable raw HTML for quick action pipeline](gitlab-org/security/gitlab@7db9b002b803cb6b53a3e6ce3f8d9b15107e7464) ([merge request](gitlab-org/security/gitlab!4235))
- [Disable quick actions unless description changed](gitlab-org/security/gitlab@a1800c591b38df0e2d143df3ee56f76b4f3a914f) ([merge request](gitlab-org/security/gitlab!4234))
- [Remove comment support from shrug and tableflip](gitlab-org/security/gitlab@fb6bcef1935dc3a7dd60def448a652769c86ee62) ([merge request](gitlab-org/security/gitlab!4229))
Jenkins-2.467
1. Increase the minimum required Remoting version to 3107.v665000b_51092 (pull 9440))
Prometheus v2.53.1
[BUGFIX] Remote-write: stop dropping samples in catch-up#14446
strimzi/strimzi-kafka-operator 0.42.0
* Add support for Kafka 3.7.1
* The `UseKRaft` feature gate moves to GA stage and is permanently enabled without the possibility to disable it. To use KRaft (ZooKeeper-less Apache Kafka), you still need to use the `strimzi.io/kraft: enabled` annotation on the `Kafka` custom resources or migrate from an existing ZooKeeper-based cluster.
* Update the base image used by Strimzi containers from UBI8 to UBI9
* Add support for filename patterns when configuring trusted certificates
* Enhance `KafkaBridge` resource with consumer inactivity timeout and HTTP consumer/producer enablement.
* Add support for feature gates to User and Topic Operators
* Add support for setting `publishNotReadyAddresses` on services for listener types other than internal.
* Update HTTP bridge to latest 0.29.0 release
* Uncommented and enabled (by default) KRaft-related metrics in the `kafka-metrics.yaml` example file.
* Added support for configuring the quotas plugin with type `strimzi` or `kafka` in the `Kafka` custom resource. The Strimzi Quotas plugin version was updated to 0.3.1.
OpenUpdate - July 11, 2024
Stay Informed
This week, read about:
Non-Security Based Updates
Angular 18.0.6
COMMON:
(fix - a55719f55e) | Don't run preconnect assertion on the server. (#56213)
CORE:
(fix - 4909844805) | establish proper defer injector hierarchy for components attached to ApplicationRef (#56763)
(fix - fec5b80aaf) | support injection of object with null constructor. (#56553)
ROUTER:
(fix - b7d3ecc873) | routes should not get stale providers (#56798)
Ansible AWX 24.6.1
What's Changed:
- Fixed various RBAC issues related to managed RoleDefinitions (@AlanCoding #15287)
- Added troubleshooting and tips and tricks content to the *AWX Administration Guide* (@tvo318 #15212)
- Added a temporary workaround for CI failure related to test licenses (@TheRealHaoLiu #15305)
- Updated user models to adhere to new API assignments (@AlanCoding #15298)
- Added the ``TASK_MANAGER_LOCK_TIMEOUT`` DB connection setting for task manager connections and lock in database (@TheRealHaoLiu #15300)
- Updated ``LISTENER_DATABASES OPTIONS`` to overwrite ``DATABASES`` options in wsrelay (@jamesmarshall24 #15306)
- Fixed permissions that come from an external Auditor role (@AlanCoding #15291)
- Updated GitHub image build actions to not use cache (@AlanCoding #15308)
- Updated ``ExecutionEnvironment`` model so object-level roles work with the DAB RBAC system (@AlanCoding #15289)
- Fixed server error from DAB ``ValidationError`` with strings (@AlanCoding #15312)
- Added better error message for workflow job template create resulting in 403 errors (@TheRealHaoLiu #15309)
- Added new content for OpenShift Virtualization inventory source to the *AWX User Guide* (@tvo318 #15299)
- Added in missing read permissions for organization Audit role (@AlanCoding #15318)
AWX Operator:
- Released with AWX Operator [v2.19.1](https://github.com/ansible/awx-operator/releases/tag/2.19.1)
Elasticsearch v8.14.2
Known issues:
- When upgrading clusters from version 8.12.2 or earlier, if your cluster contains non-master-eligible nodes, information about the new functionality of these upgraded nodes may not be registered properly with the master node.
- This can lead to some new functionality added since 8.13.0 not being accessible on the upgraded cluster. If your cluster is running on ECK 2.12.1 and above, this may cause problems with finalizing the upgrade. To resolve this issue, perform a rolling restart on the non-master-eligible nodes once all Elasticsearch nodes are upgraded.
Bug fixes
Data streams:
- Ensure a lazy rollover request will rollover the target data stream once. {es-pull}109636[#109636]
- [Data streams] Fix the description of the lazy rollover task {es-pull}109629[#109629]
ES|QL:
- Fix ESQL cancellation for exchange requests {es-pull}109695[#109695]
- Fix equals and hashcode for `SingleValueQuery.LuceneQuery` {es-pull}110035[#110035]
- Force execute inactive sink reaper {es-pull}109632[#109632]
Infra/Scripting:
- Check array size before returning array item in script doc values {es-pull}109824[#109824] (issue: {es-issue}104998[#104998])
Infra/Settings:
- Guard file settings readiness on file settings support {es-pull}109500[#109500]
Machine Learning:
- Fix IndexOutOfBoundsException during inference {es-pull}109533[#109533]
Mapping:
- Re-define `index.mapper.dynamic` setting in 8.x for a better 7.x to 8.x upgrade if this setting is used. {es-pull}109341[#109341]
Ranking:
- Fix for from parameter when using `sub_searches` and rank {es-pull}106253[#106253] (issue: {es-issue}99011[#99011])
Search:
- Add hexstring support byte painless scorers {es-pull}109492[#109492]
- Fix automatic tracking of collapse with `docvalue_fields` {es-pull}110103[#110103]
Jenkins 2.466
1. Fix download of .tar.gz artifacts in Firefox (issue 73381))
2. Fix the release build that failed due to breaking changes in the Maven Release plugin. Downgrade Maven Release plugin from 3.1.0 to 3.0.1. (Maven Release Plugin MRELEASE-1151, parent pom PR 576, pull 9430))
Kibana v8.14.2
Bug Fixes
Alerting:
- Rule runs recovered actions without ever running active actions ({kibana-pull}183646[#183646]).
Fleet:
- Updates health_check endpoint to accept hosts ids ({kibana-pull}185014[#185014]).
Machine Learning:
- AIOps Log Rate Analysis: Fixes text field selection ({kibana-pull}186176[#186176]).
Presentation:
- Fixes PresentationPanelError component throwing when error.message is empty string ({kibana-pull}186098[#186098]).
Node.js 22.4.0
Experimental Web Storage API:
- [9e30724b53] - **(SEMVER-MINOR)** **deps,lib,src**: add experimental web storage (Colin Ihrig) [#52435](https://github.com/nodejs/node/pull/52435)
API Stability Updates:
- [201266706b] - **doc**: move `node --run` stability to rc (Yagiz Nizipli) [#53433](https://github.com/nodejs/node/pull/53433)
- [16c0884d48] - **doc**: mark WebSocket as stable (Matthew Aitken) [#53352](https://github.com/nodejs/node/pull/53352)
- [cf375e73c1] - **doc**: mark --heap-prof and related flags stable (Joyee Cheung) [#53343](https://github.com/nodejs/node/pull/53343)
- [0160745057] - **doc**: mark --cpu-prof and related flags stable (Joyee Cheung) [#53343](https://github.com/nodejs/node/pull/53343)
Other Notable Changes:
- [df4762722c] - **doc**: doc-only deprecate OpenSSL engine-based APIs (Richard Lau) [#53329](https://github.com/nodejs/node/pull/53329)
- [ad5282e196] - **inspector**: fix disable async hooks on `Debugger.setAsyncCallStackDepth` (Joyee Cheung) [#53473](https://github.com/nodejs/node/pull/53473)
- [e95af740fc] - **(SEMVER-MINOR)** **lib**: add diagnostics_channel events to module loading (RafaelGSS) [#44340](https://github.com/nodejs/node/pull/44340)
- [50733a1abe] - **(SEMVER-MINOR)** **util**: support `--no-` for argument with boolean type for parseArgs (Zhenwei Jin) [#53107](https://github.com/nodejs/node/pull/53107)
RabbitMQ v3.13.4
Core Broker Bug Fixes:
- A rolling upgrade from 3.12.14 to 3.13.x could run into an exception.
- When an existing virtual host was re-imported from a definitions file, its default queue type (DQT) was cleared (reset) if that field was missing in the imported definitions. Now the existing DQT is preserved.
- When a queue was declared without an explicitly provided x-queue-type but a default queue type (DQT) set (for its virtual host), its redeclaration did not consider the DQT during the property equivalence check stage.
- Feature flag controller could run into a deadlock in some upgrade scenarios.
- In mixed 3.13.x and 3.12.x clusters, when a Direct Reply-to client (the app that initiates requests) was connected to the 3.13 node and the server (the app that responds) was connected to the 3.12 node, the response was lost due to a message format conversion exception.
OpenUpdate - July 4, 2024
Stay Informed
This week, read about:
Non-Security Based Updates
Angular 18.0.5
FIXED:
(fix - 2f73281dfd) | improve docs on afterRender hooks (#56525)
(fix - be9e4892f9) | improve support for i18n hydration of projected content (#56192)
(fix - 5f9bd5521e) | prevent calling devMode only function on@defererror. (#56559)
Docker Compose v2.28.1
What's Changed
Fixes:
- Remove console.Terminal check and use IsTerminal from streams.Out by @vvoland in #11934
Gitlab OSS 16.11.5
Fixed (2 changes)
Changed (2 changes)
Security (14 changes)
- [Security fixes for banzai pipeline](gitlab-org/security/gitlab@7a7560ebf98b9e3fed749c0895c7fe952a35d0e6) ([merge request](gitlab-org/security/gitlab!4182))
- [Fix the catastrophic backtracking in openapi regex](gitlab-org/security/gitlab@6561fa187bd297a664c7fee8d1bbb546fb6f197e) ([merge request](gitlab-org/security/gitlab!4144))
- [Use permitted_params for standalone and multiplex queries](gitlab-org/security/gitlab@7be6c33aa9ed53d8713a098a48ad5b5265fd4801) ([merge request](gitlab-org/security/gitlab!4148))
- [Fix for Private job artifacts can be accessed by any user](gitlab-org/security/gitlab@eff1ae75283fafff1204063fc9c5fa43d90439b0) ([merge request](gitlab-org/security/gitlab!4196))
- [Remove search results from public projects with unauthorized repos](gitlab-org/security/gitlab@5e1513db50b3ada45a991d39fde0cd4cadd4bb88) ([merge request](gitlab-org/security/gitlab!4042))
- [Do not run a new pipeline on re-target](gitlab-org/security/gitlab@f68c020c8d2a2dc53187a65857f3312a025af3f4) ([merge request](gitlab-org/security/gitlab!4189))
- [Add limits on autolinker regex](gitlab-org/security/gitlab@d79a1a8333484bf9537af2907767fad0ec1ad240) ([merge request](gitlab-org/security/gitlab!4128))
- [Fix clickjacking on OAuth application page](gitlab-org/security/gitlab@05b187a7860fc02b68eced70e882a807d7a0e784) ([merge request](gitlab-org/security/gitlab!4024))
- [Hide branch merge request if merge requests are private](gitlab-org/security/gitlab@5973f83550e4b6341ca3f3fdbd29759a46b31bb6) ([merge request](gitlab-org/security/gitlab!4206))
- [Remove collapseLongCommitList method](gitlab-org/security/gitlab@279c1eee6676df9e25b723fd971dcf5c7134effd) ([merge request](gitlab-org/security/gitlab!4207))
- [Pass SSO session data to Sidekiq](gitlab-org/security/gitlab@e3147a7c301acf2d5e474745e594ff319f6e7f37) ([merge request](gitlab-org/security/gitlab!4161))
- [Prevent non-members from using promote_to quick action for quick actions](gitlab-org/security/gitlab@6424c7ad252809a13bc14d61ba15a6a377cd5a30) ([merge request](gitlab-org/security/gitlab!4156))
- [Reject deletion of security policy project approval rules](gitlab-org/security/gitlab@0e86b08d33fcfca547fb0e95ef462e4240bcf00e) ([merge request](gitlab-org/security/gitlab!4106))
- [Mitigate ReDoS attacks via `method_call_regex`](gitlab-org/security/gitlab@6e3fb9ff027fa56e62db093c4291c5d562550c2d) ([merge request](gitlab-org/security/gitlab!4164))
Gitlab v17.0.3
Fixed (5 changes)
Security (14 changes):
- [Security fixes for banzai pipeline](gitlab-org/security/gitlab@04cbf788c8a0fb668d47692f44dd5abbc1ee3230) ([merge request](gitlab-org/security/gitlab!4183))
- [Fix the catastrophic backtracking in openapi regex](gitlab-org/security/gitlab@3994786908e1a966616069fdb263e2840126a8b0) ([merge request](gitlab-org/security/gitlab!4143))
- [Use permitted_params for standalone and multiplex queries](gitlab-org/security/gitlab@cc0c469450103d6f6d97dd8fe571e80bfe6f9f89) ([merge request](gitlab-org/security/gitlab!4149))
- [Fix for Private job artifacts can be accessed by any user](gitlab-org/security/gitlab@95756b0b374a618477b2f2fbd1b9a41d61786f12) ([merge request](gitlab-org/security/gitlab!4195))
- [Remove search results from public projects with unauthorized repos](gitlab-org/security/gitlab@9bc323c63aeb0811786b9ebb916645da6a4a49f3) ([merge request](gitlab-org/security/gitlab!4074))
- [Do not run a new pipeline on re-target](gitlab-org/security/gitlab@5da8934f84edaa663910eaa104b657086bfa9a18) ([merge request](gitlab-org/security/gitlab!4188))
- [Add limits on autolinker regex](gitlab-org/security/gitlab@d930c4bb3cc692c821eee6df82fc3567eb4ccb53) ([merge request](gitlab-org/security/gitlab!4127))
- [Fix clickjacking on OAuth application page](gitlab-org/security/gitlab@0d7cd1b4ea7c28030c52306710c9f88a5bb6382e) ([merge request](gitlab-org/security/gitlab!4062))
- [Hide branch merge request if merge requests are private](gitlab-org/security/gitlab@323293651d6e441bf719b54494180f8c37bb2c05) ([merge request](gitlab-org/security/gitlab!4201))
- [Remove collapseLongCommitList method](gitlab-org/security/gitlab@c40bfcd824d029a8ff7bec05e294337e8a7dcc05) ([merge request](gitlab-org/security/gitlab!4204))
- [Pass SSO session data to Sidekiq](gitlab-org/security/gitlab@a189575f905a48e85f06865f0e10d8d15c00e303) ([merge request](gitlab-org/security/gitlab!4160))
- [Prevent non-members from using promote_to quick action for quick actions](gitlab-org/security/gitlab@0335cfbb28fab459c8cbba8ec3d2ca9a3127947c) ([merge request](gitlab-org/security/gitlab!4157))
- [Reject deletion of security policy project approval rules](gitlab-org/security/gitlab@fedbaa529d358e72f299fd94b263ce39cfd55fe2) ([merge request](gitlab-org/security/gitlab!4105))
- [Mitigate ReDoS attacks via `method_call_regex`](gitlab-org/security/gitlab@dba917caf0103a2247949eaa31389458c44e2190) ([merge request](gitlab-org/security/gitlab!4163))
Jenkins-2.464
1. Refine tables and tabs with reduced padding, rounded corners to match cards, and borders that are visible in dark mode. (pull 9411))
2. Align font weights and font sizes. (pull 9393))
SELinux 3.7
User-Visible Changes:
* `audit2allow -C` for CIL output mode
* sepolgen: adjust parse for refpolicy
* semanage: Allow modifying records on "add"
* semanage: Do not sort local fcontext definitions
* Improved man pages
* checkpolicy: support CIDR notation for nodecon statements
* sandbox: Add support for Wayland
* Code improvements and bug fixes
OpenUpdate - June 27, 2024
Stay Informed
This week, read about:
Security Based Updates
PHP security releases 8.3.8, 8.2.20, and 8.1.29
OpenLogic AngularJS
- OpenLogic AngularJS Translate 2.19.2 released
- OpenLogic AngularJS 1.6.14 and 1.8.7 released
Non-Security Based Updates
Angular 18.0.4
COMPILER-CLI
- (fix - ec0d1bf6f3) | insert constant statements after the first group of imports (#56431)
CORE
- (fix - 83ffa94783) | do not activate event replay when no events are registered (#56509)
ROUTER
- (fix - 5578681da2) | Delay the view transition to ensure renders in microtasks complete (#56494)
Ansible AWX 24.6.0
What's Changed:
- Added Cython to ``VENV_BOOTSTRAP`` for grpcio (@simaishi #15256)
- Updated platform ingress to not allow modification of the shared resources (@fosterseth #15234)
- Added option for the dev environment to enable SSL for PostgreSQL (@fosterseth #15151)
- Updated HostMetric updates to gather each batch as a single transaction (@jbradberry #15251)
- Replaced ``REMOTE_ADDR`` with ``ansible_base.lib.utils.requests.get_remote_host`` (@dmzoneill #15175)
- Fixed race condition when deleting schedules (@fosterseth #15259)
- Updated resource server to periodically sync from shared resource provider (@TheRealHaoLiu #15264)
- Updated AWX CLI to patch users in order to properly assign them roles (@ArtsiomMusin #14053)
- Added receptor work list command to sosreport (@TheRealHaoLiu #15207)
- Added the backup hotfix script for the backup/restore role (@jbradberry #15260)
- Renamed ``AWX_DIRECT_SHARED_RESOURCE_MANAGEMENT_ENABLED`` to ``ALLOW_LOCAL_RESOURCE_MANAGEMENT`` so the same setting is used across the platform (@fosterseth #15269)
- Changed all uses of ``ImplicitRoleField`` to perform an ``on_delete=SET_NULL`` (@jbradberry #15268)
- Adjusted ``aiohttp`` to address CVE-2024-23829 (@thedoubl3j #15257)
- Added the ability to create a Terraform State inventory source with the 'awx.awx.inventory_source' module (@vvarga007 #15258)
- Fixed notification name searches (@aeter #15231)
- Added option for OpenShift Virtualization Inventory source (@chadmf #15047)
- Updated the permission registry to use public methods to reference registered models (@AlanCoding #15277)
- Revised CI tests to pass the Makefile python exe to ansible-playbook (@AlanCoding #15282)
AWX Operator
Released with AWX Operator [v2.19.0]
Docker Compose 2.28.1
Fixes:
- Remove console.Terminal check and use IsTerminal from streams.Out by @vvoland in #11934
Docker Compose 2.27.2
What's Changed
Improvements:
- Add --environment flag to config command (11891)
Fixes:
- Prevent concurrent map write relying on project immutability (11860)
- Fix COMPOSE_PROFILES can be set by .env file (11861)
- Fix: change append to use slice index in ps (11862)
- Return an error when --detach and --watch are used together in up command (11890)
- Fix dot env file to define COMPOSE_* variables(11889)
- Enforce keyboard.Close is always executed to restore terminal (11896)
- Stop watch process when associated up process is stopped (11911)
- Using as flag of the up command, watch was blocking process shutdown (11919)
Internal:
- Correct typo in comment (11877)
- Chore(publish): remove unreachable code(11888)
- Update GH actions versions, update engine matrix, bump Golang to 1.21.11 (11885)
- Build: replace uses of archive.CanonicalTarNameForPath (11910)
- Add open watch docs in up menu (11917)
Gitlab OSS 17.1.0
Added (180 changes):
- [Allow `admin_runner` ability to change shared runner setting](gitlab-org/gitlab@f8a4a504e3b04875bed19bdef66f7cdcaae7e462) ([merge request](gitlab-org/gitlab!155505)) **GitLab Enterprise Edition**
- [Update services to create custom software license](gitlab-org/gitlab@fef112e156bf0f37f8b1dbd310cd2a2ddc629eb2) ([merge request](gitlab-org/gitlab!155325)) **GitLab Enterprise Edition**
- [Protected containers: Add help text for repository path pattern input](gitlab-org/gitlab@e710daa4b59d0ae74d608490c1cd563437c4ca74) by @gerardo-navarro ([merge request](gitlab-org/gitlab!154932))
- [Move document for CS for registry](gitlab-org/gitlab@06d2a6d2b6cdcb7cffd7ffc81b0706485d5967c2) ([merge request](gitlab-org/gitlab!156259)) **GitLab Enterprise Edition**
- [Add new duo pro discover page](gitlab-org/gitlab@ca64b696dbd33b8cddcd1f887d31afb4290853bf) ([merge request](gitlab-org/gitlab!154478)) **GitLab Enterprise Edition**
- [Changed association of frameworks with projects](gitlab-org/gitlab@ecaf61939432fe08eb7fa8fe48925d04c4685a68) ([merge request](gitlab-org/gitlab!153664)) **GitLab Enterprise Edition**
- [Add support for new placeholders](gitlab-org/gitlab@679bf3a203e041300daf200de432c81d70062b72) by @TamsilAmani ([merge request](gitlab-org/gitlab!155804))
- [Add `admin_runners` custom ability](gitlab-org/gitlab@860f5cc09eca6679d90184fd33a855086f31ac4e) ([merge request](gitlab-org/gitlab!154848)) **GitLab Enterprise Edition**
- [Add worker to aggregate last 30-day catalog resource usage data](gitlab-org/gitlab@56f45cfdc1fa3a94f0e850d54970ac3936ca622a) ([merge request](gitlab-org/gitlab!155001))
- [Add cargo to supported sbom and sync types](gitlab-org/gitlab@11d3dfa2c8385a1d9400b9522d75047735630f4b) ([merge request](gitlab-org/gitlab!155751))
- [Add project settings sections to command mode results](gitlab-org/gitlab@e3d6d8a451ec86581cf04ad24eda35cdd63dbb49) ([merge request](gitlab-org/gitlab!153452))
- [Configuring Topology Service in Rails](gitlab-org/gitlab@8a21caa58fbbbba98451e729f4ed4c3163d0b685) ([merge request](gitlab-org/gitlab!154960))
- [Add ML Model filters to the "package files" screen](gitlab-org/gitlab@24693cd19d01cf068d1583ecaaaafa7b3a435332) ([merge request](gitlab-org/gitlab!155979))
- [Include SAST Advanced in configuration UI allowlist](gitlab-org/gitlab@0f3e2a4bd3615d84560a16ed8135dff8e9f2a836) ([merge request](gitlab-org/gitlab!155008))
- [Group level work items support group level references](gitlab-org/gitlab@d1d21618d3a4b09505237af330d8503316b745f4) ([merge request](gitlab-org/gitlab!155637))
- [Add search in wiki sidebar](gitlab-org/gitlab@88a691503f1b92d90fd4783f677ed99af0763bbc) ([merge request](gitlab-org/gitlab!156054))
- [Render icons beside suggestions](gitlab-org/gitlab@264f9e3fd3578996a697ed8c93f33b77f050ba5c) ([merge request](gitlab-org/gitlab!155976))
- [Display temporary extension expiration banner](gitlab-org/gitlab@eb9ac6e66e76b5a9422c3780f0106300ad265bab) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/155634)) **GitLab Enterprise Edition**
- [Add logs header details](gitlab-org/gitlab@554fdb0265d264131c7423c02fbea7fa6f3586f6) ([merge request](gitlab-org/gitlab!155970))
- [Cleanup index terraform module archive FF](gitlab-org/gitlab@849296529460dd8dc1660398d4e40c6fc942926a) ([merge request](gitlab-org/gitlab!156156))
- [Create new custom Permission: read_crm_contact](gitlab-org/gitlab@13916c1997d7337fe282d739c33815a5e262c5db) by @ChaelCodes ([merge request](gitlab-org/gitlab!154017)) **GitLab Enterprise Edition**
- [Use custom models for duo chat features](gitlab-org/gitlab@bc3255cc5fb1c190fdd300f05b21bf426f5669aa) ([merge request](gitlab-org/gitlab!155849)) **GitLab Enterprise Edition**
- [Add ssh-upload-pack endpoint to handle Git over SSH requests](gitlab-org/gitlab@611a6b6eb9a1036748612d343b188b43c68212ac) ([merge request](gitlab-org/gitlab!152950)) **GitLab Enterprise Edition**
- [Add embedding reference and call it on condition](gitlab-org/gitlab@2afc4344343a7664884f2661f4b29427284324ca) ([merge request](gitlab-org/gitlab!154297)) **GitLab Enterprise Edition**
- [Add related issues to Merge Request API](gitlab-org/gitlab@d8e0674a01430f6aaf5fb55b3f8399ab72b054ad) by @zzaakiirr ([merge request](gitlab-org/gitlab!155422))
- [Add partition_id to Ci::Sources::Project](gitlab-org/gitlab@0e8c5e2d3c1274442b18c5ed74c92bd042c7afc7) ([merge request](gitlab-org/gitlab!153798))
- [Expose configuration in API and UI](gitlab-org/gitlab@20cf75de599c2310eef2d9acc648256931185a21) ([merge request](gitlab-org/gitlab!155791))
- [Filter projects by marked for deletion](gitlab-org/gitlab@221286e98b3f2649ae488259924449f7c3462990) by @imskr ([merge request](gitlab-org/gitlab!155006)) **GitLab Enterprise Edition**
- [Add urls to generated changelogs](gitlab-org/gitlab@5ecf224b05928c27a0d1497547c3b9d6bc3f85e1) by @Taucher2003 ([merge request](gitlab-org/gitlab!155806))
- [Add count field to WorkItemConnection](gitlab-org/gitlab@709210626b80013a6149ae2cb002a1f26b792d12) ([merge request](gitlab-org/gitlab!154951))
- [Progress bar & status to model artifact importer](gitlab-org/gitlab@0d73432f51793db73e1695439438f826a6ff80b7) ([merge request](gitlab-org/gitlab!154729))
- [Exposed note body first line on GraphQL](gitlab-org/gitlab@3931abe5e167f9e31daf214ba60178240a6d8f51) by @zillemarco ([merge request](gitlab-org/gitlab!148829))
- [Add external MR diffs to `gitlab-backup` task](gitlab-org/gitlab@7c1ce75666229ff0a84d92a8cc16c5644421af7c) by @zzaakiirr ([merge request](gitlab-org/gitlab!154914))
- [Add support for rendering icons](gitlab-org/gitlab@84feccba79c9f7d60376f82a25f8d4f926177af6) ([merge request](gitlab-org/gitlab!155244))
- [Add identifier_external_ids column to vulnerability_reads](gitlab-org/gitlab@314fadea6cce393c7634a01519af129a0141b130) ([merge request](gitlab-org/gitlab!153131))
- [Protected packages: Label "protected" for package detail page on group](gitlab-org/gitlab@3573a068ed23fb94efb28bfeb38d93c40cc399a8) by @gerardo-navarro ([merge request](gitlab-org/gitlab!154811))
- [Clean up duo_chat_display_source feature flag](gitlab-org/gitlab@2baf06a40fae34cdbcd0a7e4150ed5f831fe75ec) ([merge request](gitlab-org/gitlab!155863)) **GitLab Enterprise Edition**
- [Adds sort by publish date for container registry tags list](gitlab-org/gitlab@8407cb55de456ee43f57f84e2b84b9e95ccf650d) ([merge request](gitlab-org/gitlab!153383))
- [GraphQL changes to fetch vulnerability severities count with limits](gitlab-org/gitlab@a950ea5d8a4226b1f07486deba823ee486fb2b55) ([merge request](gitlab-org/gitlab!155452)) **GitLab Enterprise Edition**
- [Allow actor override when GitHub and BBS disabled](gitlab-org/gitlab@01943ffd96aa3cc132bc3114f80f1e776b0b42d7) ([merge request](gitlab-org/gitlab!155796))
- [Early access program participation checkbox](gitlab-org/gitlab@ecf2c7dbf650100803a4b70e1549659ac59dfebd) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/154957)) **GitLab Enterprise Edition**
- [Add approval_policy_rule_id to approval rules and related tables](gitlab-org/gitlab@e4451d35b8f3f77dcfa72f6af0ed4991064591fe) ([merge request](gitlab-org/gitlab!155232))
- [Add organization to vuln export for sharding](gitlab-org/gitlab@2fbe359eb14671f2a7abf62da760ea11ad91ab9b) ([merge request](gitlab-org/gitlab!154994)) **GitLab Enterprise Edition**
- [Add verified creator badge](gitlab-org/gitlab@c56408a830bc0f765d2340a64d38dc6d6c07bedc) ([merge request](gitlab-org/gitlab!154179))
- [Protected packages: REST API GET package protection rules](gitlab-org/gitlab@8484e6af92d8e4e994c0f1bbb6b66dfa30c1d395) by @nwittstruck ([merge request](gitlab-org/gitlab!153436))
- [Improves empty state on model registry model page](gitlab-org/gitlab@4783ee0070324bb2e3d06df0af3aaf447cfac061) ([merge request](gitlab-org/gitlab!155399))
- [Add star count as sorting option for CICD Catalog](gitlab-org/gitlab@1253250db1b70012b8c122792cb16ca49916ea89) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/155240))
- [Validate form input for version and model name](gitlab-org/gitlab@072d8c889ad57c1dee9feed9131488d307db5a62) ([merge request](gitlab-org/gitlab!154728))
- [Create partitions for new audit event tables](gitlab-org/gitlab@336efc87b0d0de1fc68a4de318bd471e313ff49c) ([merge request](gitlab-org/gitlab!154418))
- [Add support for Redis extra config command to ActionCable](gitlab-org/gitlab@9ace9e8f59a9dfcd6fe01ff87321e5196e87da44) ([merge request](gitlab-org/gitlab!155546))
- [Filter projects by marked for deletion](gitlab-org/gitlab@67543b86542d6e3216c4c06a22cf48303c14b6d8) by @imskr ([merge request](gitlab-org/gitlab!154770)) **GitLab Enterprise Edition**
- [Allow selecting project for project level items](gitlab-org/gitlab@1c81a23f21b51453283f1c9b3e8076ca5877385f) ([merge request](gitlab-org/gitlab!154554))
- [Protected containers: Update protection rules in project settings ui](gitlab-org/gitlab@dc31dfc0a71cf69ffbf5de4a14cde87fca60c60b) by @gerardo-navarro ([merge request](gitlab-org/gitlab!146623))
- [Handle declined event for bitbucket server importer](gitlab-org/gitlab@241112be0455dc585ee9f7469c30cdaec754a27c) by @ivantedja ([merge request](gitlab-org/gitlab!153298))
- [Adding gcp audit event destination validator](gitlab-org/gitlab@b01fbc9f6cd3d983187f1868f373528efa4c24c1) ([merge request](gitlab-org/gitlab!151662)) **GitLab Enterprise Edition**
- [Add pmg README.md](gitlab-org/gitlab@124334406446c27fdbb9364fe783763bdbc05a09) ([merge request](gitlab-org/gitlab!154964))
- [Add `admin_runners` custom ability](gitlab-org/gitlab@ab0cebe39ec53f99633c09016691e4dfe80f9bf1) ([merge request](gitlab-org/gitlab!151825)) **GitLab Enterprise Edition**
- [Add support for Sentinel usernames in Workhorse](gitlab-org/gitlab@c2da33720ce47d4c13912dbd5acb818640b5577f) ([merge request](gitlab-org/gitlab!155209))
- [Default enable diff_preview_in_email](gitlab-org/gitlab@20ab134ba94807467a25a1b22f30810e3ef6a81d) ([merge request](gitlab-org/gitlab!155143))
- [Add CVS for CS document](gitlab-org/gitlab@bef3d803b03bc7769324fb5402b554d4c07635b5) ([merge request](gitlab-org/gitlab!154388)) **GitLab Enterprise Edition**
- [Add security policies projects join table](gitlab-org/gitlab@6825da6e2ee80412084ccdb101913f7fb23a2b41) ([merge request](gitlab-org/gitlab!154742)) **GitLab Enterprise Edition**
- [Display timestamp in log lines](gitlab-org/gitlab@5d79019ee98f65a69c3b450eee09edd605fa616a) ([merge request](gitlab-org/gitlab!153851))
- [GraphQL: Add fullPath argument in runnerUsage query](gitlab-org/gitlab@b6cd9a3a27c3b2fec6dcb07896a671e0bb57d702) ([merge request](gitlab-org/gitlab!154462)) **GitLab Enterprise Edition**
- [Add sorting by `component_name` to dependency list aggregations](gitlab-org/gitlab@1d5d98f41ded8c8695be033c527821af1df6352e) ([merge request](gitlab-org/gitlab!154779))
- [Backfill work_item_dates_sources with epic dates data](gitlab-org/gitlab@3ab4c15e1db9a58e3ff5d820522a52e1b1e3120e) ([merge request](gitlab-org/gitlab!153115))
- [Add confirmation message on manual job with confirmation message](gitlab-org/gitlab@12525d358bc5a60f27d37706a4f245f59473a4f9) by @lifez ([merge request](gitlab-org/gitlab!151978))
- [Remove `repository_tree_gitaly_pagination` feature flag](gitlab-org/gitlab@f5b4a1f811fd1934d01a7e061003acec3ebeed40) ([merge request](gitlab-org/gitlab!154897))
- [Add source code to `/explain_vulnerability` tool](gitlab-org/gitlab@58410808e409f920d6c66cb1792797b86aed8148) ([merge request](gitlab-org/gitlab!154229)) **GitLab Enterprise Edition**
- [Add Restore Pages Deployment Mutation](gitlab-org/gitlab@1bdb5dafc0520d68a7241daa73206e0077915697) ([merge request](gitlab-org/gitlab!155283))
- [Enable integration API for admin integrations custom ability](gitlab-org/gitlab@59b0d3b699233ffd876fcec058cdfc1cd48b5a38) ([merge request](gitlab-org/gitlab!155228)) **GitLab Enterprise Edition**
- [Add PagesDeployment to deletePagesDeployment Mutation](gitlab-org/gitlab@40b7b2c8032e23248d86a0e18acc21c256028c1f) ([merge request](gitlab-org/gitlab!154399))
- [Adjust the mistral promprt for 22b](gitlab-org/gitlab@d35b60b18f3a4f0ea8c74668793f91639bd8c2d1) ([merge request](gitlab-org/gitlab!155083)) **GitLab Enterprise Edition**
- [GraphQL: Add fullPath argument in runnerUsageByProject query](gitlab-org/gitlab@4f0a1f7665f753c34de10ce7a54b97ce2865f964) ([merge request](gitlab-org/gitlab!154300)) **GitLab Enterprise Edition**
- [Filter by marked_for_deletion_on in groups graphql](gitlab-org/gitlab@3b56b2acdfb4869b30d89c0f9c9f3b0bcbbe19a3) by @imskr ([merge request](gitlab-org/gitlab!154846)) **GitLab Enterprise Edition**
- [Add support for latest_tag](gitlab-org/gitlab@d3791921420e3c253d1ff2dd0d0cf01a2c0727e0) by @TamsilAmani ([merge request](gitlab-org/gitlab!153525))
- [Add PagesDeployments to Project type](gitlab-org/gitlab@0c67d1f5687e11869370a0497d861e2a53d66e13) ([merge request](gitlab-org/gitlab!154104))
- [Enable show_container_registry_tag_signatures feature flag by default](gitlab-org/gitlab@3d600c9a74c75d04257f2ff4baa6d49d8b5b5b54) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/154706)) **GitLab Enterprise Edition**
- [Add admin integrations custom permission](gitlab-org/gitlab@431c9f7392b282686470ef6e1073d7df62c28348) ([merge request](gitlab-org/gitlab!154601)) **GitLab Enterprise Edition**
- [Improve observability by various Git LFS metrics](gitlab-org/gitlab@06350c606ddc8303d2bd0244754cb65ed9933b57) ([merge request](gitlab-org/gitlab!138920))
- [Add GraphQL mutation `projectTextReplace`](gitlab-org/gitlab@f2333f5e6f370301c64d43687e98209789a6e47a) ([merge request](gitlab-org/gitlab!152522))
- [Adds published message for each container registry image repository](gitlab-org/gitlab@a88eac528860f927001ae47d448a1e15c1585f5d) ([merge request](gitlab-org/gitlab!153947))
- [Create separate elastic queue for embeddings](gitlab-org/gitlab@5bd81d3a7449d90ddd43b86d272e80be45b1be3a) ([merge request](gitlab-org/gitlab!154269)) **GitLab Enterprise Edition**
- [Log token info for GraphQL requests](gitlab-org/gitlab@88608f725c17dc6b6a6a50c34ccab16682e3f83a) ([merge request](gitlab-org/gitlab!148885))
- [Add Limit for CVS for CS](gitlab-org/gitlab@b7bfbd0fcc31f7dfd6a879397c3b775199db47c5) ([merge request](gitlab-org/gitlab!154925)) **GitLab Enterprise Edition**
- [Add a new task initial_indexing for Zoekt::SchedulingService](gitlab-org/gitlab@454840f907735112f685d26f9e58244b8cb52298) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/149365)) **GitLab Enterprise Edition**
- [Add option to add custom html header tags via gitlab.yml config](gitlab-org/gitlab@8136229ad7f3e95f5ba0e924c8d636a94e2f10b7) by @bufferoverflow ([merge request](gitlab-org/gitlab!153877))
- [Add support for custom headers in webhook API](gitlab-org/gitlab@b79f616bd307b73f6b7cf704a68d4fb6854de85e) by @Taucher2003 ([merge request](gitlab-org/gitlab!153768))
- [Audit when product analytics settings are changed](gitlab-org/gitlab@a454e70e03308842f62cac378442f52032aa471e) ([merge request](gitlab-org/gitlab!154407)) **GitLab Enterprise Edition**
- [Protected packages: REST API DELETE package protection rules](gitlab-org/gitlab@8d65804581cb692c0518710479ba6761675b6962) by @nwittstruck ([merge request](gitlab-org/gitlab!151741))
- [Remove single_relation_import feature flag](gitlab-org/gitlab@83284db7430c50671d129d86399fe5cadbc6c5b3) ([merge request](gitlab-org/gitlab!154786))
- [Add audit event for web hook creation](gitlab-org/gitlab@8f564e9ef7df4c1685427b14d88bb751cf10f3ea) ([merge request](gitlab-org/gitlab!154046)) **GitLab Enterprise Edition**
- [Include custom role name in members exports](gitlab-org/gitlab@c08cfd868522426fa79069629fdeb11d2d6539ca) ([merge request](gitlab-org/gitlab!153980)) **GitLab Enterprise Edition**
- [GraphQL: Add runnerManager field to CiJob](gitlab-org/gitlab@88c0a6d08afd20d2d7d55cdda7bba9750f7ce30a) ([merge request](gitlab-org/gitlab!154737))
- [GraphQL: Add managers field to CiRunner](gitlab-org/gitlab@5c4a13f5d02bf1157e20c0b50c2b658cac3ea06f) ([merge request](gitlab-org/gitlab!154737))
- [Add trigram indexes on email column](gitlab-org/gitlab@46ddd7a42253b6275a3ec55323268b1f567c8b62) by @zzaakiirr ([merge request](gitlab-org/gitlab!152249))
- [Add partition_id to Ci::PipelineMessage](gitlab-org/gitlab@6fe5f634263520dbd6e17a7bfd18377270303584) ([merge request](gitlab-org/gitlab!153391))
- [Backfilling of work_item_parent_links from epics parent_id](gitlab-org/gitlab@98cc1d3cf0561a1154474ee775464418057c228d) ([merge request](gitlab-org/gitlab!153442))
- [Introduce ci_pipeline_variables_minimum_role](gitlab-org/gitlab@79bc51d82b86ae8d000ae947f322d90e3cdb95e3) ([merge request](gitlab-org/gitlab!149343))
- [Finalize BackfillPartitionIdCiDailyBuildGroupReportResult](gitlab-org/gitlab@104bbe7723a86a12c1cdde48b9172ed64a3ca155) ([merge request](gitlab-org/gitlab!154530))
- [Created blueprint for pipeline mini graph](gitlab-org/gitlab@012b8a80f6938465068c80b8f087fb6a736def19) ([merge request](gitlab-org/gitlab!154313))
- [Add explain vulnerability tool](gitlab-org/gitlab@b614184ad6abafe8abeb5a91602851b554fe329f) ([merge request](gitlab-org/gitlab!153961)) **GitLab Enterprise Edition**
- [Add a cleanup worker for removable add-on purchases](gitlab-org/gitlab@9d37fe4c8cef6105530e1df74b82bd4fe6824863) ([merge request](gitlab-org/gitlab!153713)) **GitLab Enterprise Edition**
- [Add WorkItemAddClosingMergeRequest mutation to GQL API](gitlab-org/gitlab@465160c7a5d46bcb02b5559271a6723928cdc421) ([merge request](gitlab-org/gitlab!153775))
- [Audit when product analytics settings are changed](gitlab-org/gitlab@73f397b384a1bfacfd59881c63b1c1620e52d681) ([merge request](gitlab-org/gitlab!154101)) **GitLab Enterprise Edition**
- [Filter groups by marked_for_deletion_on](gitlab-org/gitlab@d80f9c8f2c163b494aba80c538eb177ac28c7f51) by @imskr ([merge request](gitlab-org/gitlab!153873))
- [Add spec for the `handleClusterError` helper](gitlab-org/gitlab@6ef18cfafcbe9639268cafd5a1d55c5d990641cb) by @antonkalmykov ([merge request](gitlab-org/gitlab!153695))
- [Add resolver for product analytics project settings](gitlab-org/gitlab@5438f948a050c210c76c6db3f05503ee1e81cacf) ([merge request](gitlab-org/gitlab!153796)) **GitLab Enterprise Edition**
- [Update doc for single_relation_import flag status](gitlab-org/gitlab@40bd6a923bf53e323fd504e496c223355172ce4c) ([merge request](gitlab-org/gitlab!154355))
- [Add API-Security CI template](gitlab-org/gitlab@99592285a6f1ebd35b0d69c6552c51472c6b0b73) ([merge request](gitlab-org/gitlab!147183)) **GitLab Enterprise Edition**
- [Add index for sorting by highest severity](gitlab-org/gitlab@851c61ebf39e810ff0492a21eeb18bb57dc2d438) ([merge request](gitlab-org/gitlab!154054))
- [Add projects dropdown to work_item_links_form component](gitlab-org/gitlab@b4756440354deb6f9e79cd5d9cfb548e77bae441) ([merge request](gitlab-org/gitlab!150711))
- [Adds support for dynamic schemas with date range filters](gitlab-org/gitlab@817e8cf030cf3ef3278358bf8ff27744f2d79bce) ([merge request](gitlab-org/gitlab!153803)) **GitLab Enterprise Edition**
- [Include none argument owasp_top_10 filter](gitlab-org/gitlab@645e4bdf8aa332295772c60b2069f7cd9fd11c5e) ([merge request](gitlab-org/gitlab!146344)) **GitLab Enterprise Edition**
- [Filter the pods list be clicking at the pod stat](gitlab-org/gitlab@2e693cad136692c44abb569ab1d636b896e1e0a4) ([merge request](gitlab-org/gitlab!153467))
- [feature: Create a new model and version and upload artifacts](gitlab-org/gitlab@309031660104fdd77caafa9cf677c59a520113fa) ([merge request](gitlab-org/gitlab!154079))
- [Send configured API key to AI Gateway](gitlab-org/gitlab@68efd36fba9d4ee9d0d0a35cda4970f8cc0ddcb4) ([merge request](gitlab-org/gitlab!154231)) **GitLab Enterprise Edition**
- [Adds a mergeTrainIndex field to merge requests](gitlab-org/gitlab@4670104daf3a94f5f633382a27fd5d35fa4b91fb) ([merge request](gitlab-org/gitlab!153954)) **GitLab Enterprise Edition**
- [Introduce data source for overtime DORA metrics](gitlab-org/gitlab@c066a28049d3a143731288d591422e923d67f1ca) ([merge request](gitlab-org/gitlab!151885)) **GitLab Enterprise Edition**
- [Add partition_id to Ci::DailyBuildGroupReportResult](gitlab-org/gitlab@58276af81f68f248d075c2bf7ebe00797d078dc0) ([merge request](gitlab-org/gitlab!153236))
- [feature: Create new model version & import artifacts](gitlab-org/gitlab@e82a775276ce13e7b391ec7d5d23ba97de92c265) ([merge request](gitlab-org/gitlab!153522))
- [Adds last_activity_on to Members table](gitlab-org/gitlab@e1b1e2b8040969b5dfa4045e3ed73f707a90d527) ([merge request](gitlab-org/gitlab!153593))
- [Add capability to support error codes on Duo Chat backend](gitlab-org/gitlab@5868366e912c8839b6e89eab7236d6598d0f7e7a) ([merge request](gitlab-org/gitlab!152698)) **GitLab Enterprise Edition**
- [[Feature Flag] Cleans up large_ipynb_diffs](gitlab-org/gitlab@3adb923bcfed405c73e06d4737d23d3837863138) ([merge request](gitlab-org/gitlab!153689))
- [Backfill related epic links to issue links](gitlab-org/gitlab@2f4c73943e238d510a7208805e104c29775dbc84) ([merge request](gitlab-org/gitlab!152104))
- [Add security policy scheduled scans concurrency limit](gitlab-org/gitlab@74f4cd3b72a9513dc9e83ccc1a402447889c37d6) ([merge request](gitlab-org/gitlab!152855)) **GitLab Enterprise Edition**
- [Add graphql mutation endpoint to run VerifyNamespaceService](gitlab-org/gitlab@4e7843e4a3c638fbfeee16d34ecae0ce239c005c) ([merge request](gitlab-org/gitlab!152641)) **GitLab Enterprise Edition**
- [Add not valid foreign key to namespaces.parent_id](gitlab-org/gitlab@6ec6f6754702c2d176d9e0b2dc68be92c5aed887) ([merge request](gitlab-org/gitlab!153402))
- [Expose Vulnerabilities::StateTransition ID in GraphQL](gitlab-org/gitlab@172cc775744f51be39ba655376a6624cd5687f63) ([merge request](gitlab-org/gitlab!153842)) **GitLab Enterprise Edition**
- [Extend label GraphQL search with field list](gitlab-org/gitlab@ab0e019723ef80c7d998cfc9c5f49e295236636f) ([merge request](gitlab-org/gitlab!152761))
- [Add GraphQL filters by deployments](gitlab-org/gitlab@45a20b939bb4e1389672d186c136756aee174019) ([merge request](gitlab-org/gitlab!153660))
- [Add migration helpers (un)prepare_partitioned_async_index](gitlab-org/gitlab@bb069b392968a3c4dac33faf06268e097334d205) ([merge request](gitlab-org/gitlab!153064))
- [Add calendar endpoint for PATs](gitlab-org/gitlab@50f6045b078f86cfc4eb2e6bfa4a4c59d2910df3) ([merge request](gitlab-org/gitlab!153093))
- [Audit event tables](gitlab-org/gitlab@5177e5e9c65c65fb45951b7c9f4581ea29b6acd7) ([merge request](gitlab-org/gitlab!152035))
- [Add two options to configure target availability check in API Security](gitlab-org/gitlab@e8a121c5710487ebecabfeb80be623918d5cdc8f) ([merge request](gitlab-org/gitlab!153779))
- [Add project level filter](gitlab-org/gitlab@d862de1e7165b2eeed22e23bc1b123ee2dcb5981) ([merge request](gitlab-org/gitlab!152045)) **GitLab Enterprise Edition**
- [Create a GraphQL query for contributed projects](gitlab-org/gitlab@185cc42e5719cb58e170dcaa3fd49b9df1f9fb2a) by @yasuk ([merge request](gitlab-org/gitlab!151979))
- [Simplify wiki print functionality](gitlab-org/gitlab@9f5c2958872c6711287aae891d84d3ee85138e7b) ([merge request](gitlab-org/gitlab!153419))
- [Create car type](gitlab-org/gitlab@a62aa62f755d94e2b24280d5eb5f872ea6fd0695) ([merge request](gitlab-org/gitlab!152742)) **GitLab Enterprise Edition**
- [Displays the last published date for container repository](gitlab-org/gitlab@49e76171e1f3c718a6f9cc7db9154f96c5be4062) ([merge request](gitlab-org/gitlab!153274))
- [Render solution html in vulnerability modal](gitlab-org/gitlab@7d338c61f33156ec51809afabb5f24f3ec5d2bf1) ([merge request](gitlab-org/gitlab!153361)) **GitLab Enterprise Edition**
- [Downscale pasted retina images](gitlab-org/gitlab@5dd91aa354b117e6ac278f6293846761b52d2f7c) ([merge request](gitlab-org/gitlab!153043))
- [Add delete_user ability to OrganizationUser permission type](gitlab-org/gitlab@ee2cac1ee9e17841f839afb5ed35e85eb894edbd) ([merge request](gitlab-org/gitlab!153555))
- [Add hand raise lead to the duo pro trial widget popover](gitlab-org/gitlab@a157f949ea97799ef1dd26501c997c885a134ccc) ([merge request](gitlab-org/gitlab!153487)) **GitLab Enterprise Edition**
- [Validate work item presence in epics](gitlab-org/gitlab@26c593853c2883f8098ca61c6d06f09c22102a6d) ([merge request](gitlab-org/gitlab!153157))
- [Add pipeline validator to check identity verification](gitlab-org/gitlab@6678989ee82cb945745a5383310f933252414f66) ([merge request](gitlab-org/gitlab!152126)) **GitLab Enterprise Edition**
- [Remove `google_cloud_support_feature_flag` feature flag](gitlab-org/gitlab@572e7c67c232fe10c2fb714b940ddf32da3f451d) ([merge request](gitlab-org/gitlab!150472))
- [Add Rake task to update project storage](gitlab-org/gitlab@5bd5027ac232ec002f4dd85a80b83cec8601c6a2) ([merge request](gitlab-org/gitlab!153008))
- [Update type of subscription_add_on_purchases started_at column](gitlab-org/gitlab@141350051e319f0783b7fc533d37b387f697eea6) ([merge request](gitlab-org/gitlab!153764)) **GitLab Enterprise Edition**
- [Add GraphQL mutation `projectBlobsRemove`](gitlab-org/gitlab@5bdc99962ad929a48581adeb7d57fa08de31a499) ([merge request](gitlab-org/gitlab!152642))
- [Add BulkImport cancel API for instance admins](gitlab-org/gitlab@f1db82fb4db620ce0cff4f3a9e2ff4277caaca48) ([merge request](gitlab-org/gitlab!153120))
- [Add AI telemetry endpoint](gitlab-org/gitlab@087ae82c5ed794c3998ee7d139002c36e22c82ee) ([merge request](gitlab-org/gitlab!152946)) **GitLab Enterprise Edition**
- [Allow adding members by username](gitlab-org/gitlab@71591d3636d7d7723279ea004e3c935535901155) by @imskr ([merge request](gitlab-org/gitlab!147080))
- [Trigger GraphQl subscription when WorkItem hierarchy change](gitlab-org/gitlab@e53f65c6d16149153e776b0203e1cafcf16c85a8) ([merge request](gitlab-org/gitlab!153136))
- [feature: Delete model version](gitlab-org/gitlab@d2c9a6f0b779dda4391b90d4f602a1ec6afaf66a) ([merge request](gitlab-org/gitlab!152990))
- [Sync unique index creation for ci_pipelines.partition_id](gitlab-org/gitlab@470b65ac74e0ffc15bf1860f1443d6cdece529c0) ([merge request](gitlab-org/gitlab!153552))
- [Create audit events when deployments are approved or rejected](gitlab-org/gitlab@c11dd26b758e87c4d499c837d92e03051cfe8fd0) ([merge request](gitlab-org/gitlab!153375)) **GitLab Enterprise Edition**
- [Upload artifacts to an existing machine learning model version](gitlab-org/gitlab@743cb89e24c3accf6b279212be06e16b9e4d4270) ([merge request](gitlab-org/gitlab!152163))
- [Support directory structure in generic package registry](gitlab-org/gitlab@6a5bc3a417492b9325002f59126a97636e7e049b) ([merge request](gitlab-org/gitlab!153449))
- [Add pipeline validator to check identity verification](gitlab-org/gitlab@3582f4ee00e267012ed38e95125a4d5decff0477) ([merge request](gitlab-org/gitlab!151834)) **GitLab Enterprise Edition**
- [Release Silent Admin Exports feature](gitlab-org/gitlab@17bbff63c91b522bc01176dbadff8a86d8e95922) ([merge request](gitlab-org/gitlab!153351))
- [Added the featureFlagEnabled query field](gitlab-org/gitlab@f57ff57353b028a1b391eb2fdaa2ac2ae3b0d377) ([merge request](gitlab-org/gitlab!152638))
- [Create migration to add started_at to subscription_add_on_purchases](gitlab-org/gitlab@5eaf2667c2091503a67589d067ab4e35221e3ccc) ([merge request](gitlab-org/gitlab!152857)) **GitLab Enterprise Edition**
- [Add new option to filter projects in GraphQL](gitlab-org/gitlab@9e9f0eff9f2a170dcfb656fefdb47bef65d0ae92) ([merge request](gitlab-org/gitlab!153271))
- [Zoekt: Add callback service](gitlab-org/gitlab@d3c0a5d97399709156998abbf80b3dcb2ee4cf2f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/150157)) **GitLab Enterprise Edition**
- [Use the zoekt_settings in the Admin settings](gitlab-org/gitlab@da21dcea9dac757ad1468291a0d9c1bb5b7821e6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/148378))
- Sync funnels when config project changes](gitlab-org/gitlab@07af6dee57361be87446527ede83c34e193ed506) ([merge request](gitlab-org/gitlab!150683)) **GitLab Enterprise Edition**
- [Add X-Gitlab-Version to Cloud Connector headers](gitlab-org/gitlab@8794a28812ba1a97d8af3c2143afb0e3298a7ec1) ([merge request](gitlab-org/gitlab!153065)) **GitLab Enterprise Edition**
- [Run migrations in milestone order](gitlab-org/gitlab@b807a0bae611a0845279270ef22ceb4c8326dc9a) ([merge request](gitlab-org/gitlab!137190))
- [Skip audit event on download of export, if silent](gitlab-org/gitlab@9d1bcbe792437a9aab42f88b20eda9f12b032563) ([merge request](gitlab-org/gitlab!152143))
- [Redirect wiki pages on renaming them](gitlab-org/gitlab@0662fa5b075f175ef6887ad2e0b674df795e448d) ([merge request](gitlab-org/gitlab!150727))
- [Add GraphQL mutation for product analytics project settings](gitlab-org/gitlab@c2f5fc85778555fdb2d6df31eb2d0b7cc4f5f99b) ([merge request](gitlab-org/gitlab!152721)) **GitLab Enterprise Edition**
- [Add initial duo pro trial status popover](gitlab-org/gitlab@8ddbf9005549974956e875deb6ed3af4561015fd) ([merge request](gitlab-org/gitlab!152538)) **GitLab Enterprise Edition**
- [Feature to delete artifacts from a model version](gitlab-org/gitlab@ff055b026489c947176c129fb220f6ebdfff5e88) ([merge request](gitlab-org/gitlab!152606))
- [Add a new IndexingTaskWorker](gitlab-org/gitlab@4722385a497bdb40697f80c70ac97d051dc2ee98) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/150036)) **GitLab Enterprise Edition**
- [Adds custom API server support for Telegram](gitlab-org/gitlab@8209b308112d1e41764ccd8343999f04c78c1487) ([merge request](gitlab-org/gitlab!152732))
- [Backend code for self-hosted LLM server instance configuration](gitlab-org/gitlab@1820afec649761ec888dd257afe50b9b3e462278) ([merge request](gitlab-org/gitlab!151793))
- [Add API for trigger group test webhook](gitlab-org/gitlab@1714db7b9cc40438a1f5bf61bef07ce45d33e207) by @lifez ([merge request](gitlab-org/gitlab!150486)) **GitLab Enterprise Edition**
- [Prepare async index for ci_pipelines.partition_id related](gitlab-org/gitlab@450c40ebde30bd25a501f3411b024275f1f9f7b3) ([merge request](gitlab-org/gitlab!147860))
- [Add manage_merge_request_settings custom permission](gitlab-org/gitlab@0b75a9ad563f7299ad900dd1994933884f85a242) ([merge request](gitlab-org/gitlab!151586))
- [Add custom software licenses table](gitlab-org/gitlab@4e12e0027592cb573bc059c8b11c209edb781b4a) ([merge request](gitlab-org/gitlab!151445)) **GitLab Enterprise Edition**
Fixed (191 changes):
- [Check email confirmation status of active users](gitlab-org/gitlab@88e6c6adf8eeb23deff848e277fcf964e5c4a19e) ([merge request](gitlab-org/gitlab!156560)) **GitLab Enterprise Edition**
- [Fix the multiple zoekt_tasks creation for delete_repo](gitlab-org/gitlab@2e5860e05b1fb33db1c9c6bf98e409c3b7c87b2f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/156125)) **GitLab Enterprise Edition**
- [Force UTF-8 encoding on CSV export files](gitlab-org/gitlab@b22570929ba99f81a8b41ee3b2483bbad86def4c) ([merge request](gitlab-org/gitlab!156517)) **GitLab Enterprise Edition**
- [Ensure Workhorse log writers are closed to avoid Goroutine leaks](gitlab-org/gitlab@c9e7fbb94dc18ac6f9a914635365d41ae55d3a86) ([merge request](gitlab-org/gitlab!156420))
- [Update replication troubleshooting snippets](gitlab-org/gitlab@20fbbbda36292eef3b43c73871ce113c015d4a12) ([merge request](gitlab-org/gitlab!150743)) **GitLab Enterprise Edition**
- [Fix fork badge always shown in pipelines page](gitlab-org/gitlab@e73c4239287c3965f7c1f29d2a26a7a83a962342) ([merge request](gitlab-org/gitlab!156315))
- [Increase JWT expiration from 1 to 10 mins](gitlab-org/gitlab@104ed976d1ae6e44203fb43978f5b007bddb837b) ([merge request](gitlab-org/gitlab!154474)) **GitLab Enterprise Edition**
- [Fixed issue with command palette shortcut](gitlab-org/gitlab@09f50f501f494b2610ed31c13e8b40eaeeb3d754) ([merge request](gitlab-org/gitlab!156012))
- [Remove performance bar from jira connect](gitlab-org/gitlab@73d317ba31738e90cd14be33337a16df77e43704) ([merge request](gitlab-org/gitlab!156277))
- [Update Bitbucket Cloud Importer to map users by uuid](gitlab-org/gitlab@2dc625018b7b2aa0f13149ea2ec7a7c375eef05d) ([merge request](gitlab-org/gitlab!156163))
- [Fix product analytics manager offering UI](gitlab-org/gitlab@9020ae165c484b5f48841e0e509afaa3c00a2dac) ([merge request](gitlab-org/gitlab!156150)) **GitLab Enterprise Edition**
- [Implement segmented vulnerability export mechanism for large groups](gitlab-org/gitlab@a720e41522551d635c9955f0d1d6cd97a6ec7ae9) ([merge request](gitlab-org/gitlab!152517)) **GitLab Enterprise Edition**
- [Create worker to store security reports by project](gitlab-org/gitlab@c96bdc59f4fe7918ae6478b7451cec44622038c6) ([merge request](gitlab-org/gitlab!151541)) **GitLab Enterprise Edition**
- [Work item hierarchy change system notes use full references](gitlab-org/gitlab@d7a15fce8d0d35a0f85ea99725194ddea6da37f5) ([merge request](gitlab-org/gitlab!156080))
- [Allow labels to be specified with absolute path](gitlab-org/gitlab@55070060010d998769cd88fbf846a025fd343f75) ([merge request](gitlab-org/gitlab!152100))
- [Change FF to beta and default enable](gitlab-org/gitlab@1768bc1509610026afe3e8984d82222c3de571b8) ([merge request](gitlab-org/gitlab!155730)) **GitLab Enterprise Edition**
- [Show wiki sidebar content in history and changes](gitlab-org/gitlab@bc1ae03799e9145e4c313bf426d11eceb1d5753d) ([merge request](gitlab-org/gitlab!156089))
- [Increase SQL query threashold on work_items test](gitlab-org/gitlab@fa205fed2286474be4372201e2dcf13bc0eb2ce2) ([merge request](gitlab-org/gitlab!156171))
- [MR widget: Fix alignment](gitlab-org/gitlab@ee9dd4a96fa755416656f82e14da94fcb8ab96fb) ([merge request](gitlab-org/gitlab!156137))
- [Wiki: Fix last edited author](gitlab-org/gitlab@3cee102f59fc2e9c1884e31bafc71f9572404aa2) ([merge request](gitlab-org/gitlab!156143))
- [Remove unused issue card weight filtering functionality](gitlab-org/gitlab@c2a0ff663df5c76a545d42aaaea81a0f73f5eeea) ([merge request](gitlab-org/gitlab!155627))
- [Fix publishing npm package with custom root folder name](gitlab-org/gitlab@85a76d6dca39438755c39df5104266b866339698) ([merge request](gitlab-org/gitlab!155842))
- [Fixed overflowing layout on the compare revisions page](gitlab-org/gitlab@7b0a3e09d055c7a568504122779e9824e7c025c6) by @zillemarco ([merge request](gitlab-org/gitlab!155744))
- [Wiki: Fix header spacings on published pages and create page](gitlab-org/gitlab@a8a4ae87afbc6ecd5cd3b0a93a88faf565ad906f) ([merge request](gitlab-org/gitlab!156131))
- [Delete project_ref_name_in_pipeline feature flag](gitlab-org/gitlab@8263838e425d80a2ecb17641fa9529fda21a4d20) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/156110))
- [Wrap wiki history commit message](gitlab-org/gitlab@58664e791ef41a530a28eaa75236a96e1761b57e) ([merge request](gitlab-org/gitlab!156082))
- [Fix approvals text alignment](gitlab-org/gitlab@84dae5a9e7c06da98140fd9d0fadaf390049935a) ([merge request](gitlab-org/gitlab!156025))
- [Use gl-background-color-default for .gl-new-card-add-form background](gitlab-org/gitlab@52a9f9cc9564baf32887f63326f930c5ee1cb3b1) ([merge request](gitlab-org/gitlab!155108))
- [Sync updated_at attribute when updating epic](gitlab-org/gitlab@963c0850aa9c26b7f62dee9d1cadd3f3ec36814b) ([merge request](gitlab-org/gitlab!156059)) **GitLab Enterprise Edition**
- [Fix inviting members with a custom role](gitlab-org/gitlab@e441cfea7ad315ca3b3f9c9c1648df65aca899ec) ([merge request](gitlab-org/gitlab!155864)) **GitLab Enterprise Edition**
- [Remove the archived projects from the security dashboard](gitlab-org/gitlab@31eabb2a173455de2ffe5f6a3b7d1322412bc4fb) ([merge request](gitlab-org/gitlab!154330)) **GitLab Enterprise Edition**
- [Remove branch on jira when deleted on gitlab](gitlab-org/gitlab@221f138b09c7873d21ada8e875e18ed97d6c42c9) ([merge request](gitlab-org/gitlab!148712))
- [Update "shared runners enabled" setting on subgroup builds](gitlab-org/gitlab@48a012d87b132962c6ce4bebf56c37175a15d06a) ([merge request](gitlab-org/gitlab!154928))
- [Ignore wiki links that have missing href](gitlab-org/gitlab@8d570b29032133080cce1fb73dde203dcb41a842) ([merge request](gitlab-org/gitlab!155877))
- [Hide Exact code search in preferences when zoekt setting is disabled](gitlab-org/gitlab@06288e9256a1e3a841bef3f098f96ddc5f268e70) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/155586)) **GitLab Enterprise Edition**
- [This MR fixes project selection](gitlab-org/gitlab@cf845c45504d000294da1f10b4ada9dc0e77b0ce) ([merge request](gitlab-org/gitlab!155862)) **GitLab Enterprise Edition**
- [fix: Add zero-padded mapping for OWASP 2021 vuln categories](gitlab-org/gitlab@51350bfa6aa8ef4a5d6569f31b65729a90b47513) ([merge request](gitlab-org/gitlab!155860)) **GitLab Enterprise Edition**
- [Fix links and tree drag and drop on FF](gitlab-org/gitlab@ce592ead2f2fb5ec17faa1e4c8350b2ba1cd5a03) ([merge request](gitlab-org/gitlab!154787))
- [Update Merge train system note](gitlab-org/gitlab@d71fd369baee49cce5bbe38576a7e1b77f2b7d22) ([merge request](gitlab-org/gitlab!155551))
- [Fix calculating direct_members count](gitlab-org/gitlab@e8a438c3c92c93599de58c0a292b15f6a5e58600) ([merge request](gitlab-org/gitlab!155838)) **GitLab Enterprise Edition**
- [Fix the limit logic for containing refs requests](gitlab-org/gitlab@ae365c5d59713bd5780ef244dca5880a9743fc4c) ([merge request](gitlab-org/gitlab!155735))
- [Add reject_non_dco_commits to push rules REST API](gitlab-org/gitlab@ce371744d27ea0a463b0a221eb6888ce57814a74) ([merge request](gitlab-org/gitlab!155005)) **GitLab Enterprise Edition**
- [Use primary DB for authenticating artifacts downloads](gitlab-org/gitlab@db4e7f82c379296b1bdbafc5a41f4977a559fb81) ([merge request](gitlab-org/gitlab!155684))
- [Cleanup ci_runner_projects records with null project_id](gitlab-org/gitlab@5fc53aea1399ee8e4d0fb025193482d465f7f656) ([merge request](gitlab-org/gitlab!155760))
- [Cleanup ci_runner_namespaces records with null namespace_id](gitlab-org/gitlab@757d1ec2d1335e3d91d99be0d70fadd3115a6fd9) ([merge request](gitlab-org/gitlab!155761))
- [Take broadcast message height into account in board height](gitlab-org/gitlab@50d8593755d0ae3d9eba74d755566846b08404f8) ([merge request](gitlab-org/gitlab!155326))
- [Use blue color for subscribed state and active todo](gitlab-org/gitlab@1eb3453bd230bb89394b2286c157cb310668a3c5) ([merge request](gitlab-org/gitlab!155623))
- [Fix Epics::UpdateService to only sync changed attributes](gitlab-org/gitlab@c13b5b850af2c9795529de59d5a1337b16c1047a) ([merge request](gitlab-org/gitlab!155468)) **GitLab Enterprise Edition**
- [Respect carraige return in new job log viewer](gitlab-org/gitlab@6c6c829426ed17ed499d302ca5f8a1dd20240642) ([merge request](gitlab-org/gitlab!153704))
- [Update an expired test certificate](gitlab-org/gitlab@5c21cdd681b61e718654b73bb05befc3cb161423) ([merge request](gitlab-org/gitlab!155694))
- [Do not error when assigning issue to same epic](gitlab-org/gitlab@8f1692dbc66079c337971b3fa963a8f57af6b2f0) ([merge request](gitlab-org/gitlab!155632)) **GitLab Enterprise Edition**
- [Restrict GraphQL API to only documented token types](gitlab-org/gitlab@d69685b32dfb38f8e28b20bc4c010443ec0cd5d2) ([merge request](gitlab-org/gitlab!152130))
- [Fix fullPath for cross projects work items](gitlab-org/gitlab@3ac7eb13159b488d7828b67ed4a714112b4cc6c2) ([merge request](gitlab-org/gitlab!155247))
- [This MR fix bottom loader](gitlab-org/gitlab@159c0d82a246282f6bfd0f404f5474eccad222c7) ([merge request](gitlab-org/gitlab!155651)) **GitLab Enterprise Edition**
- [Fix missing filename when downloading generic package in release page](gitlab-org/gitlab@1bbbe8c569abb40052545029057f990d787da007) ([merge request](gitlab-org/gitlab!155013))
- [Verify the namespace_id on duo pro trial service layer](gitlab-org/gitlab@592ca38dfdee21c543e0a86aacb9875b0739f283) ([merge request](gitlab-org/gitlab!155321)) **GitLab Enterprise Edition**
- [Add spacing between framework pill and title in adherence list](gitlab-org/gitlab@beed63822b9533b57afd4936e3b27f91a6d40d0d) ([merge request](gitlab-org/gitlab!155517))
- [Execute the task even the repo is not found](gitlab-org/gitlab@518e5af14afd3ea968b0287f05db1cc001b1f965) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/155574)) **GitLab Enterprise Edition**
- [Update ShortcutsBlob data](gitlab-org/gitlab@b71d5281d6f95a45c6b7b5cc491209ce9b95fc94) ([merge request](gitlab-org/gitlab!150836))
- [Show correct policies subheader for a group](gitlab-org/gitlab@f3e90a957241e086cb61ac2701120d0c6feb5488) ([merge request](gitlab-org/gitlab!155561)) **GitLab Enterprise Edition**
- [Fixes incorrect wrapping in styled log lines](gitlab-org/gitlab@d5077755cd75f7baa9143d1c14e8c62538630b81) ([merge request](gitlab-org/gitlab!155560))
- [Wiki sidebar: Fix hover in Darkmode](gitlab-org/gitlab@3f8163d43dbfd6f4748cc19561970f5dd5b120ec) ([merge request](gitlab-org/gitlab!155545))
- [Add analyze_interval for IntRangeStrategy](gitlab-org/gitlab@d0bcb7a7bbf7838d0c852f8f89230e82cd48a2c7) ([merge request](gitlab-org/gitlab!155538))
- [Add frontend scripts to assets hash calculation](gitlab-org/gitlab@97a567df370b5f5670afac9e5be3fbfa379d529b) ([merge request](gitlab-org/gitlab!155469))
- [Fix loading spinner spacing on child issues and epics](gitlab-org/gitlab@3010eda0658d4971104bdf53583587d4112f7e98) ([merge request](gitlab-org/gitlab!154467)) **GitLab Enterprise Edition**
- [Parses job log logs when lines gets split in chunks](gitlab-org/gitlab@f05a036eed649f7dbd4270b27e4966af4e1e3052) ([merge request](gitlab-org/gitlab!155095))
- [Remove card border for issue boards](gitlab-org/gitlab@9c4f0ba386e35a3de77c6eed3f606b6f982fd9ca) ([merge request](gitlab-org/gitlab!155216))
- [Enable extra slug sanitization on user provisioning](gitlab-org/gitlab@4423a768892336d21d934a2525f5f84a66b1dd43) ([merge request](gitlab-org/gitlab!147594))
- [Accept integer parameter in runner_type for GetUsageServiceBase](gitlab-org/gitlab@5f74a6de8dba029eebb6578db0fafd0ba83864ea) ([merge request](gitlab-org/gitlab!155121)) **GitLab Enterprise Edition**
- [Adds ancestors on the index Explore>Groups page](gitlab-org/gitlab@459e245199c87c0ba23199bf7e317db8a5d0bc15) ([merge request](gitlab-org/gitlab!153438))
- [Update MemberRoles::RolesFinder and Members::UpdateService](gitlab-org/gitlab@222a8a64d8938ad2010127d36889ab9271e0d4c1) ([merge request](gitlab-org/gitlab!152925))
- [Modify machine learning version input description](gitlab-org/gitlab@1d34552eb16398e793fb7f689043c1a6260dc35e) ([merge request](gitlab-org/gitlab!155207))
- [Fixes issue with valid Notebooks not diffing](gitlab-org/gitlab@2549735979d1c41b35684b73e614a68dd28216ef) ([merge request](gitlab-org/gitlab!155043))
- [Fix merge request padding](gitlab-org/gitlab@fc05924396fc0390f253ef5b713c370830977202) ([merge request](gitlab-org/gitlab!155133))
- [Remove the user_detail creation derisk feature flag](gitlab-org/gitlab@ef8805be95b078d02ba461805bcdb78cd28fcc07) ([merge request](gitlab-org/gitlab!153770))
- [Fix ancestor widget appearance in Epic sidebar](gitlab-org/gitlab@713b3a69cfbfdb3513a0feb2a975de7b5cac7543) ([merge request](gitlab-org/gitlab!154473)) **GitLab Enterprise Edition**
- [Allow more wiki types to be searchable](gitlab-org/gitlab@b54faca2df4b1f9ece74904a35c2e9a5d57e9ac3) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/154791)) **GitLab Enterprise Edition**
- [Fixes auditing non-changing fields for product analytics](gitlab-org/gitlab@6f3b2b9bc6953d559f6cb373f4874180872e0983) ([merge request](gitlab-org/gitlab!154762)) **GitLab Enterprise Edition**
- [Fix vertical spacing of collapse MR sidebar btn](gitlab-org/gitlab@9fff7b221555107621652d53742bac7f230458b0) ([merge request](gitlab-org/gitlab!154977))
- [Forbid branch protection updates with blocking policy in place](gitlab-org/gitlab@ca043088885417b226ededd07132855535a1c655) ([merge request](gitlab-org/gitlab!154369)) **GitLab Enterprise Edition**
- [Ensure complete messages are not passed to DuoChat in chunks](gitlab-org/gitlab@54f3c8c3b66f28501e2583e0ca751d1fa802c4c7) ([merge request](gitlab-org/gitlab!154306)) **GitLab Enterprise Edition**
- [Fix nav control layout for new dropdowns](gitlab-org/gitlab@2976f16cbc77beaaf1d8e4aa17e62ba16a4ccb41) ([merge request](gitlab-org/gitlab!154941))
- [Fix upgrade message link in operations dashboard](gitlab-org/gitlab@c816289a221cc4bff916734d153fa2516ee448d7) ([merge request](gitlab-org/gitlab!154930))
- [Delegate GroupHook URL validation to base class](gitlab-org/gitlab@c61f41b3980c3f6df94fe2ba8d59743530f0f1b2) ([merge request](gitlab-org/gitlab!154879)) **GitLab Enterprise Edition**
- [Fix the other icons being shown in loading state](gitlab-org/gitlab@05de171f5fd8b0aed8199f96707aaf4500f2e5b1) ([merge request](gitlab-org/gitlab!154867))
- [Fix serialization error on CI Lint with including a CI component](gitlab-org/gitlab@ca5c4651ab8cf24ab172214bca38e9eb7424fbbb) ([merge request](gitlab-org/gitlab!154747))
- [Fix code reloading for Sidekiq in development](gitlab-org/gitlab@9e3a454624524feb63401f0b7e31e651fbb9fe41) ([merge request](gitlab-org/gitlab!154847))
- [Fix button spacing and updating UI text to use sentence case](gitlab-org/gitlab@10630d60d5a2f4101fe15ff0d42fc2e71d63429c) ([merge request](gitlab-org/gitlab!154767)) **GitLab Enterprise Edition**
- [Fix protected branches deploy key selection for FOSS](gitlab-org/gitlab@1b6bbf9479c195e2272c114f40637535824a6c58) ([merge request](gitlab-org/gitlab!154884))
- [Remove the experiment_features_enabled check](gitlab-org/gitlab@db4a420af2278c26e9a6a044f7891bdc46bc4f05) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/154759)) **GitLab Enterprise Edition**
- [Fix visualization designer showing confirm modal after saving](gitlab-org/gitlab@f462a6f1932de0d18ca76f02e4d9f2c20cebc6ae) ([merge request](gitlab-org/gitlab!154585)) **GitLab Enterprise Edition**
- [Update StuckExportJobsWorker to not fail parallel export jobs](gitlab-org/gitlab@92936f18bac126be0f7a13cb530fe6dbce91f997) ([merge request](gitlab-org/gitlab!154772))
- [Vite config: Fix open in editor url](gitlab-org/gitlab@c0bd5d8dded7d6a3e5d35d3983bea126711c508a) ([merge request](gitlab-org/gitlab!154750))
- [Expose 'Is using seat' badge for Auditors](gitlab-org/gitlab@b6d1ac6544c233802cc4f589f9afe55e0acd953c) ([merge request](gitlab-org/gitlab!153123)) **GitLab Enterprise Edition**
- [Differentiate vulnerability security scanner](gitlab-org/gitlab@46722f6aa670674deba3bd731bdd92a6fcea065f) ([merge request](gitlab-org/gitlab!154268)) **GitLab Enterprise Edition**
- [Use compact pagination on explore page when total pages is unavailable](gitlab-org/gitlab@3dabc89d4e3dfd7a69ed6e06dfe0ff9a591c65dd) ([merge request](gitlab-org/gitlab!154051))
- [Exclude child pipelines from tag and branch query](gitlab-org/gitlab@72aeaa28ca6c66c9604d43c2f79b0f2f6683f18e) ([merge request](gitlab-org/gitlab!145503))
- [Fix registry list extra padding between list items](gitlab-org/gitlab@3a8cd5a6f8727902cf1f9e3782a618b17b7776e4) ([merge request](gitlab-org/gitlab!154136))
- [Include Group Links in access level check](gitlab-org/gitlab@7e8daa1016564b16267ae9b3f98987e65fa01f6d) ([merge request](gitlab-org/gitlab!154443)) **GitLab Enterprise Edition**
- [Fix work items showing icons and actions when not found](gitlab-org/gitlab@6f6c337dd3a8e0b0212fe6bb4efec6a81c197590) ([merge request](gitlab-org/gitlab!153346))
- [Fix missing BATCH_SIZE constant](gitlab-org/gitlab@a7e5069c26059da33277c65ae9e4280248ea4b97) ([merge request](gitlab-org/gitlab!154582))
- [Fix ActiveModel::UnknownAttributeError for `initialize_with_readme`](gitlab-org/gitlab@5151593ddb067105fdf8f928d93c03b0b06a2634) ([merge request](gitlab-org/gitlab!154579))
- [Add a check to use the different URL for namespace](gitlab-org/gitlab@1110192b28f621eb885799accd1b9a275c127b36) ([merge request](gitlab-org/gitlab!154245)) **GitLab Enterprise Edition**
- [Fix misleading error message when assigining sec policy project](gitlab-org/gitlab@920eefd94d8b2609c0caa746a4327d2d03346fe2) ([merge request](gitlab-org/gitlab!154402)) **GitLab Enterprise Edition**
- [Group visibility levels: Show all radio button with correct attributes](gitlab-org/gitlab@3917e9fbd217310de2dab82a63f2cf35967abc37) by @gerardo-navarro ([merge request](gitlab-org/gitlab!149427))
- [Fix display of performance bar in relative root installations](gitlab-org/gitlab@69165cae760a8e078d2694f0a8f38a9976eaa604) ([merge request](gitlab-org/gitlab!154537))
- [Fix Cloud Connector service catalog is stale](gitlab-org/gitlab@9398fdc9c343962b32453aa707ac18fa6b6e5567) ([merge request](gitlab-org/gitlab!154094))
- [Use `safe_params` to persevere sort params](gitlab-org/gitlab@d23db5479a5ea2baf0904bbe96405d6f20ad1ad8) ([merge request](gitlab-org/gitlab!154256))
- [Use localstorage to remember swimlane state for boards](gitlab-org/gitlab@ff623e67498c271af83a94d5f742285677098023) ([merge request](gitlab-org/gitlab!154174))
- [Generic Registry: Fix a bug when downloading files with sign symbol](gitlab-org/gitlab@7a8ca5f5cff9fad527988c071497cb6902514891) ([merge request](gitlab-org/gitlab!154248))
- [List all users in the Admin > Users](gitlab-org/gitlab@e8bfbccf974fb3118a95d892c16faa612e5c37d2) ([merge request](gitlab-org/gitlab!154392))
- [Do not allow creating Service Accounts for a subgroup](gitlab-org/gitlab@26408dfa91a9b8082b3b00aba01cc01a7a42ed69) ([merge request](gitlab-org/gitlab!154381)) **GitLab Enterprise Edition**
- [Fix child pipeline badge is broken in CI header](gitlab-org/gitlab@c8e8b55ef6a8775bb5c3d6257bbc49c3308dcd28) ([merge request](gitlab-org/gitlab!154376))
- [Fix Firefox Drag and Drop on epic lists](gitlab-org/gitlab@51074497aa9b48ee3b79122e135146111845f4fe) ([merge request](gitlab-org/gitlab!151676)) **GitLab Enterprise Edition**
- [Fixes typo for CS JOB](gitlab-org/gitlab@3acad3ecfced6e650b647d4cb920a576f6bd3534) ([merge request](gitlab-org/gitlab!154356)) **GitLab Enterprise Edition**
- [Fix @ autocomplete when search requests overlap](gitlab-org/gitlab@a7f794b027af20e8006e489eedd9cb624f5f616a) ([merge request](gitlab-org/gitlab!153924))
- [Allow branch protection updates via API with `block_branch_modification`](gitlab-org/gitlab@4fac6923be8e044036bbd926f702904c935ad9c5) ([merge request](gitlab-org/gitlab!153245)) **GitLab Enterprise Edition**
- [Set height: auto only on images with both dimension set](gitlab-org/gitlab@f7bb3a177ba17c6ccba24150f7430037c06bce92) ([merge request](gitlab-org/gitlab!154316))
- [Move modal and drawer out of container style](gitlab-org/gitlab@b239ea8869b23ca0f5c8d689caf8bd77538d779e) ([merge request](gitlab-org/gitlab!154135))
- [Import fork MR when target branch couldn't be created](gitlab-org/gitlab@b227427600845670ad2f4b38daa995c006e1fd28) ([merge request](gitlab-org/gitlab!154291))
- [Fix doc link to project topics](gitlab-org/gitlab@12d003f45195285185932dbed1f290d77122350a) ([merge request](gitlab-org/gitlab!154255))
- [Add default branch to branches API cache_context](gitlab-org/gitlab@4f2dce2d2e3a7d1a21330f2a0829d4435b67dcaf) ([merge request](gitlab-org/gitlab!152445))
- [Fix gitlab:db:decomposition:migrate task](gitlab-org/gitlab@83abacca7af10e055dc04fef6d00c80da2f87cd6) ([merge request](gitlab-org/gitlab!154198))
- [Fix dark mode hover for admin/credentials row user email](gitlab-org/gitlab@503e189d3d8db1f6e2329bf5c73daa828dc68802) ([merge request](gitlab-org/gitlab!153314)) **GitLab Enterprise Edition**
- [Set imported from value for project export import](gitlab-org/gitlab@75e0ca51d2764dc291af99f5e2fc340effd9d99c) ([merge request](gitlab-org/gitlab!153462))
- [Include headers in LfsDownloadObject](gitlab-org/gitlab@58c58cacad7351f9aa1c99539bcbd78d2bd0ed77) ([merge request](gitlab-org/gitlab!153840))
- [Set height: auto on images](gitlab-org/gitlab@a65de758f476bbcc83141be8eab70d90b41fab59) ([merge request](gitlab-org/gitlab!154122))
- [Fix registry search sorting layout in mobile screen sizes](gitlab-org/gitlab@d4b9a82eabbfaf85de2b512d2992be16e94acd97) ([merge request](gitlab-org/gitlab!153641))
- [Parameterize path after regex validation failure](gitlab-org/gitlab@56665acd82f894a470ec71706ed627283dec3d17) ([merge request](gitlab-org/gitlab!153869))
- [Use text-subtle instead of a disabled class for badge img empty](gitlab-org/gitlab@e7bb43efe406d6c1c650aa759d23f85e29e8a7d4) ([merge request](gitlab-org/gitlab!153901))
- [A11y fix: make sure "+" button can be focused in wiki sidebar](gitlab-org/gitlab@e46f9f147ab852c407f59acf0041e6fd11145fe0) ([merge request](gitlab-org/gitlab!154015))
- [Fix "shared_audit_event_id_seq" already exists](gitlab-org/gitlab@6a54eecf3cf19fe3dd95557fe6ad014d5a09bbd1) ([merge request](gitlab-org/gitlab!154007))
- [Fix batched finish worker reenqueue delay](gitlab-org/gitlab@f2c578993c5fded8c92e766961b29552446597b8) ([merge request](gitlab-org/gitlab!153976))
- [Ignore imported column in relevant models](gitlab-org/gitlab@44842e0cf3ee536c70a3ffea267efa5ce460764d) ([merge request](gitlab-org/gitlab!152620))
- [Show current wiki page as active](gitlab-org/gitlab@7e918f4456cd2f057eee5be89bf9dc39d1a6446c) ([merge request](gitlab-org/gitlab!153986))
- [Fix default branch protection settings](gitlab-org/gitlab@80e81f359ec7be1037cdba0456b2a9b4ab60c4d7) ([merge request](gitlab-org/gitlab!153306))
- [Use label text color for remove button icon in MR filter bar token](gitlab-org/gitlab@70eb192055a4d9be0259a5237f4bcbb0682a3653) ([merge request](gitlab-org/gitlab!153598))
- [Avoid idling in transaction when exporting with Parallel Project Export](gitlab-org/gitlab@199edf664d45f5f67dbc16695f1933266cc634ae) ([merge request](gitlab-org/gitlab!153955))
- [Only lookup by username if ops flag is enabled](gitlab-org/gitlab@8b1d6683bb36a15687bd445afaeccec3c2a1695a) ([merge request](gitlab-org/gitlab!153041))
- [Roadmap - Fix alignment of epics with no start date](gitlab-org/gitlab@a74dd9c640f7568d3711bf62f628472ad04350bb) ([merge request](gitlab-org/gitlab!153790)) **GitLab Enterprise Edition**
- [Filter labels already applied out of recently used suggestions](gitlab-org/gitlab@ac433c925f63e51dec4c45549182f5cfa20ed761) ([merge request](gitlab-org/gitlab!150063))
- [Fix broken link in CI Catalog verified badge](gitlab-org/gitlab@043203424b953c529049a9a83b1af345605b6ed3) ([merge request](gitlab-org/gitlab!153891))
- [Fix webhooks temporary disabled too long, too fast](gitlab-org/gitlab@bbb4872f2ea9aafd7205f2900cc3250d82f88a65) ([merge request](gitlab-org/gitlab!153637))
- [Update member roles REST API doc](gitlab-org/gitlab@66bf14afb8c7b792fa4e53ace0c520ca23b58f8d) ([merge request](gitlab-org/gitlab!153569))
- [Handle project creation error on git push](gitlab-org/gitlab@2e984bbd7a6b9da6f55c65f12c800a321f540752) ([merge request](gitlab-org/gitlab!153852))
- [Fix roadmap settings drawer offset height](gitlab-org/gitlab@16cb382ada2adf220e5e091f904a3c97bd3bf047) ([merge request](gitlab-org/gitlab!153767)) **GitLab Enterprise Edition**
- [Fix access levels for default branch protection](gitlab-org/gitlab@7561640903f7b443f68aced970f7bb2fb56955af) ([merge request](gitlab-org/gitlab!153688))
- [Disable promote button for in flight request](gitlab-org/gitlab@2c43b5b20a4da0d7fd6eefb4854c324ececaa292) ([merge request](gitlab-org/gitlab!153658))
- [Fix insert table box in rich text editor](gitlab-org/gitlab@9f029b40718b63034ef4753bece222fa3117a862) ([merge request](gitlab-org/gitlab!153185))
- [Ensure label text color is used for label filter in MR search bar](gitlab-org/gitlab@9d1da9d744a0058abb200d2c6ae7889f06ac86c1) ([merge request](gitlab-org/gitlab!153594))
- [Do not allow group Owners create Service accounts on Self-managed](gitlab-org/gitlab@64df3fcc1a2acded0ef5e52f0033af0a988391e2) ([merge request](gitlab-org/gitlab!152195)) **GitLab Enterprise Edition**
- [Fix an overwrite bug in the gcs metrics concern](gitlab-org/gitlab@822f7559f10ca45c5b75214866ec9a5336db1bcd) ([merge request](gitlab-org/gitlab!153252))
- [Skip pre-receive SD on deletes](gitlab-org/gitlab@be2328e70ea65122d1c1ce0b222c216dc4e610fc) ([merge request](gitlab-org/gitlab!153022)) **GitLab Enterprise Edition**
- [Fix board swimlanes headers background](gitlab-org/gitlab@7daca3861f715c71d62563cd80b8c9cf7943ff52) ([merge request](gitlab-org/gitlab!153476))
- [Prevent error in copy_metadata quick action](gitlab-org/gitlab@98bdd03317b5cd00421ae928a597fee0c498c718) ([merge request](gitlab-org/gitlab!153463))
- [Update imported value when cloning and moving issues](gitlab-org/gitlab@ceb1b3d123a9bf682aa442a3bfa959290f851470) ([merge request](gitlab-org/gitlab!152949))
- [Fix an N+1 situation](gitlab-org/gitlab@4fdf15c1a34307cf2dcd8ab0266daddb5bac5518) ([merge request](gitlab-org/gitlab!153444))
- [Move Direct Transfer project entities creation to a later stage](gitlab-org/gitlab@2f3ce52023aaf60fe3ac3c355d5352930618baf1) ([merge request](gitlab-org/gitlab!153441))
- [Reset project counters after relation import](gitlab-org/gitlab@18500843ba1fd41e5a4d0e709100fb039f5c9121) ([merge request](gitlab-org/gitlab!153261))
- [MR commit message: Fix existing message dropdown selection](gitlab-org/gitlab@edc55c66883cc8b808a997db609b66b99afdf789) ([merge request](gitlab-org/gitlab!153408))
- [Restrict `repository_object_format` update for PUT projects/:id](gitlab-org/gitlab@50f73c33e18066ebe335957effc3f0dfb0e0bab0) ([merge request](gitlab-org/gitlab!153411))
- [Correctly handle nil assignee arguments](gitlab-org/gitlab@f843d822f2a940c4654042024a0b908f19ce58a3) ([merge request](gitlab-org/gitlab!153404))
- [Fix dropdown behavior in ProtectedBranchHelpers to fix flaky test](gitlab-org/gitlab@11e4985f2bc6ff570058a1af32898ea098b12f14) ([merge request](gitlab-org/gitlab!153318))
- [Fix hidden code navigation tabs](gitlab-org/gitlab@8867313d15a7ad6da02f1386563a1878a2e977f2) ([merge request](gitlab-org/gitlab!153310))
- [Fix error when calling GQL ciConfig endpoint with include:component](gitlab-org/gitlab@911b7c6d7a35f3385a9f5cf8e77ea5dfd73ab1bc) ([merge request](gitlab-org/gitlab!153046))
- [Ensure BLPOP/BRPOP returns nil instead of raising ReadTimeoutError](gitlab-org/gitlab@b661fe39d595822918b9960e36809a1cc070f842) ([merge request](gitlab-org/gitlab!153282))
- [Use consistent encoding with startup js to fetch commit data](gitlab-org/gitlab@40679dd8da169f37b6979f8a587cd27dfe154e44) ([merge request](gitlab-org/gitlab!152929))
- [Expose project settings in REST API only for maintainer+ users](gitlab-org/gitlab@a05e5cfdb571b15b6db703780046148893b4c063) ([merge request](gitlab-org/gitlab!152023))
- [Fix approval policy to include group level protected branch](gitlab-org/gitlab@57c116c8760ad288dde0c47ee7d471a46a27de5a) ([merge request](gitlab-org/gitlab!153240)) **GitLab Enterprise Edition**
- [Fix N+1 query in /api/v4/projects/:id/jobs endpoint](gitlab-org/gitlab@a729189d3b4495fb529c0ffec9e6b52c51a49d4a) ([merge request](gitlab-org/gitlab!152904))
- [Only include the duo pro widget data if ultimate trial is absent](gitlab-org/gitlab@5ddbf85b40c86e8ce2667b840fc850837f8d9e48) ([merge request](gitlab-org/gitlab!153207)) **GitLab Enterprise Edition**
- [Fix counts for Search Within filter on issues list](gitlab-org/gitlab@881152d45ddd8890d15ab22ff2a97a1e9ad50191) ([merge request](gitlab-org/gitlab!153148))
- [Fix instance templates pagination](gitlab-org/gitlab@50f07a23b5cc694f24a5becff18e383f9cc93180) ([merge request](gitlab-org/gitlab!152921)) **GitLab Enterprise Edition**
- [MR: Show sidebar expand button on md breakpoint](gitlab-org/gitlab@5826a8814af9cadf505561e543b2d0c6a0397088) ([merge request](gitlab-org/gitlab!153069))
- [Make pending invitations search case insensitive](gitlab-org/gitlab@027dd7c657fca91b92914f3a7ce0c5e7cf646bba) ([merge request](gitlab-org/gitlab!152275))
- [Fixes "retryable" value for merge train pipelines as JSON](gitlab-org/gitlab@61a7fdf8fb6592f1932bdbf14a150c0fd4a58d17) ([merge request](gitlab-org/gitlab!152785)) **GitLab Enterprise Edition**
- [Change column default when the connections match](gitlab-org/gitlab@b47c5a409028a321a4f2339bdd6d1951ee270842) ([merge request](gitlab-org/gitlab!152933))
- [Link squashed, fast-forwarded merge requests to deployments](gitlab-org/gitlab@0422af60b3f3e8742c869083ea6f5193933ed3cc) ([merge request](gitlab-org/gitlab!152892))
- [Fix broken DORA performers score Storybook story](gitlab-org/gitlab@77957dbe5935018b9e910fa59a98863c7947d467) ([merge request](gitlab-org/gitlab!152861)) **GitLab Enterprise Edition**
- [Resolve flash of light styles when using auto color mode](gitlab-org/gitlab@aac0c68e8b0905a2c7ecbfd9bee30e34a7074dd2) ([merge request](gitlab-org/gitlab!152726))
- [Increase Atlassian token constraint](gitlab-org/gitlab@d58ba4ff37495dbfdaeac722e3eb5273a131be6f) ([merge request](gitlab-org/gitlab!152472))
- [Fix webhook warning permission check](gitlab-org/gitlab@09b3dee12925bf5df72d7e7bef2c63c8b408e6e9) ([merge request](gitlab-org/gitlab!152764)) **GitLab Enterprise Edition**
- [Bugfix file type icon resizes](gitlab-org/gitlab@0837165b15b7cb5bbaaa2f4b42d006d2214caac1) ([merge request](gitlab-org/gitlab!149724))
- [Fix Sidekiq migration timeout](gitlab-org/gitlab@63f1a8b3a58e6be5d3f2d843f3c2bc7ec583fe54) ([merge request](gitlab-org/gitlab!152754))
- [Fix OpenTofu CI/CD template backport](gitlab-org/gitlab@2906f7dd014c7f7abbe8917600d6cea39f610ebc) ([merge request](gitlab-org/gitlab!152748))
- [Fix collapsing sections in job log viewer](gitlab-org/gitlab@2189f1d86dbd8e5932092e3ab0f8bd0165ae3d05) ([merge request](gitlab-org/gitlab!152635))
- [Project transfer fix for ES indexing](gitlab-org/gitlab@98381f9e3d53050cdb137d90e8f1a2e7fdb3faa0) ([merge request](gitlab-org/gitlab!152650)) **GitLab Enterprise Edition**
- [Support Epic -> WorkItem sync of imported_from](gitlab-org/gitlab@bb87978b032b8a7a59f85fcd880b93be0f2d467a) ([merge request](gitlab-org/gitlab!152575)) **GitLab Enterprise Edition**
- [Right align snippet comment actions dropdown](gitlab-org/gitlab@b2e16eaf13b50f5be8c5da0529e038d725b97c34) ([merge request](gitlab-org/gitlab!152563))
- [Fix blob viewer line numbers](gitlab-org/gitlab@b26445992db50d72d58c0a218d23a3a8b851b59f) ([merge request](gitlab-org/gitlab!152331))
- [Fix flow metrics handling of null assignees](gitlab-org/gitlab@18aed612317fd01b674cfa130b4ae771a9e94e51) ([merge request](gitlab-org/gitlab!152127))
Security (21 changes):
- [Verify Asana access token when testing Asana integration](gitlab-org/gitlab@97f67a7ecd39e1e7c6cbfefb652ae3e170b7b114)
- [Bump KAS version](gitlab-org/gitlab@005f811755b463936ca413ee8fd1b5b6e78ab598)
- [Improve go_package_regex to prevent ReDoS attacks](gitlab-org/gitlab@f3f4a536983f296c1c5bf2e63a4a69d6818578be)
- [XSS and content injection raw XHTML files on IOS devices](gitlab-org/gitlab@836d5100c658387f88f7cb0bcde23df38abef18c)
- [Fix ReDoS in CI Interpolation](gitlab-org/gitlab@03f36b94893d239a45525ba8f49255864fea0e2e)
- [Set IP address in sidekiq](gitlab-org/gitlab@f7913b6b6bc418a9c0f331c21878b563f30d8088) ([merge request](gitlab-org/gitlab!155817))
- [Prevent PDF.js from evaluating scripts](gitlab-org/gitlab@e2a29735486247da0cf674fa5c33be2a4d7e0c63) ([merge request](gitlab-org/gitlab!153841))
- [Add text limit to ci_runners text fields](gitlab-org/gitlab@688ca12a6d37329f70f3862f5cb4a7ac75c4fafa) ([merge request](gitlab-org/gitlab!153841))
- [Caching test_report api response to reduce calculations](gitlab-org/gitlab@bee5a8f73787f66a7681f3ceff69ac5f2608ce4f) ([merge request](gitlab-org/gitlab!153841))
- [Fail create commit status on pipeline_id / sha mismatch](gitlab-org/gitlab@ff4bb525a3b8714f9559559d067665630ec5b391) ([merge request](gitlab-org/gitlab!153841))
- [Restrict access to Secure artifacts to developer role](gitlab-org/gitlab@3f0ac72f4ee6fb8acd40557a8c2f1ca03900a6d8) ([merge request](gitlab-org/gitlab!153841))
- [Use UntrustedRegexp for gollum pattern](gitlab-org/gitlab@e15d1f7f40666b4d325f7141d3b351ef53e874aa) ([merge request](gitlab-org/gitlab!153841))
- [Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html](gitlab-org/gitlab@548889e43f739406c7e881c9b03c68a71a4eac79) ([merge request](gitlab-org/gitlab!153841))
- [Prevent PDF.js from evaluating scripts](gitlab-org/gitlab@6ba8424255a173353c07bbfd532e0b5ef15147ae) ([merge request](gitlab-org/gitlab!153995))
- [Add text limit to ci_runners text fields](gitlab-org/gitlab@189b90e8092c25c1b34c6df27460825e4b907f0f) ([merge request](gitlab-org/gitlab!153995))
- [Caching test_report api response to reduce calculations](gitlab-org/gitlab@3acb41e920fe8650fe7d9dbbddf1e61ab7563584) ([merge request](gitlab-org/gitlab!153995))
- [Fail create commit status on pipeline_id / sha mismatch](gitlab-org/gitlab@0f5330ecc5d278cf78d6ba9ed6ec4fb60299faf1) ([merge request](gitlab-org/gitlab!153995))
- [Update KAS version](gitlab-org/gitlab@00007063a47255e787ff8b1bd7823d324b7e6e05) ([merge request](gitlab-org/gitlab!153995))
- [Restrict access to Secure artifacts to developer role](gitlab-org/gitlab@6ba8d8a40db735f992d2fa66b41484dcc6166afa) ([merge request](gitlab-org/gitlab!153995))
- [Use UntrustedRegexp for gollum pattern](gitlab-org/gitlab@8e083639d385db5ccce615d676d4ce55132d74a1) ([merge request](gitlab-org/gitlab!153995))
- [Patch @gitlab/web-ide to fix XSS webWorkerExtensionHostIframe.html](gitlab-org/gitlab@1711a788083988e5e6b85767d2578e46d426b2e3) ([merge request](gitlab-org/gitlab!153995))
Performance (10 changes):
- [Add index to package files on package_id, status and file extension](gitlab-org/gitlab@fa4bc43aa0e925f2d4a2d4c16949b0a8052f09af) ([merge request](gitlab-org/gitlab!153993))
- [Improves groups controller specs](gitlab-org/gitlab@2e69288741251bdc64b4d852b996ad93905de398) ([merge request](gitlab-org/gitlab!154541))
- [Memoize common rules:changes evaluations in pipeline creation](gitlab-org/gitlab@c02e500f3b2f7440d958c1c8006e24e3e167e392) ([merge request](gitlab-org/gitlab!154455))
- [Enable and remove ci_rules_exists_pattern_matches_cache](gitlab-org/gitlab@3a5dd890561b18b6cd7c4c9ddc93cecf833a7463) ([merge request](gitlab-org/gitlab!154377))
- [Fix N+1 problem in the pipeline bridges API endpoint](gitlab-org/gitlab@d216390dbb3ce093e4e0b0635d5bedbecca9e1c3) ([merge request](gitlab-org/gitlab!154354))
- [Skip groups query in @ autocomplete if not needed](gitlab-org/gitlab@f607997a208875757528bf8fe70c4d39ea1e2250) ([merge request](gitlab-org/gitlab!153919))
- [Delay devise login lock settings](gitlab-org/gitlab@a38c6c8d2a09b8b20a10f8c810d7a5560610d7d9) ([merge request](gitlab-org/gitlab!152923))
- [Optimize todos query when filtering by group](gitlab-org/gitlab@7394a7319fe9d42a3d016d9f4b66ce242cfe5ff8) ([merge request](gitlab-org/gitlab!153226))
- [Add index to package files on file_name and file_sha256](gitlab-org/gitlab@e2181e19648fad3804b0a0eb14520ad6264a6813) ([merge request](gitlab-org/gitlab!152930))
- [Analyze partitioned tables every 3 days](gitlab-org/gitlab@2e68137d27eb6f2137e8c44832c7b07ef732e206) ([merge request](gitlab-org/gitlab!152500))
Jenkins 2.463
1. Require Java 17 or newer. (Announcement blog post, pull 9358))
2. Update the design of the build history widget. (pull 9148))
3. Refine radio inputs. (pull 9380))
4. Refine form controls appearance. (pull 9365))
5. Remove some usages of the YahooUI framework in the user interface. (pull 9395))
6. Update Stapler from 1880.vb_6d94a_3b_05db_ to 1881.vd39f3ee5c629 and Winstone-Jetty from 6.19 to 6.20 to let Jetty handle HTTP response compression.
A new command line option compression can be used to disable compression if desired. (pull 9379))
7. Remove idle executors from widget. (pull 9177))
8. Provide a global configuration option, "Computer Retention Check Interval", to adjust the latency period for checking offline agents.
Administrators can trade elevated CPU usage from frequent agent checks for responsiveness to capacity needs. An "In demand delay" of zero on the agents reduces the time to enable an agent by checking status more frequently. (issue 14789))
9. Remove Windows path traversal vulnerability escape hatch that was provided with the SECURITY-2481 fix. (issue 73129, Path traversal vulnerability on Windows - SECURITY-2481))
10. Fix badge color in dropdowns. (pull 9381))
11. Developer: Deprecate StaplerResponse#getCompressedOutputStream, StaplerResponse#getCompressedWriter, and st:compress.
Use StaplerResponse#getOutputStream, StaplerResponse#getWriter, and j:jelly instead. (pull 9379))
Node.js 20.15.0
- Version 20.15.0 'Iron' (LTS), @marco-ippolito
### test_runner: support test plans. It is now possible to count the number of assertions and subtests that are expected to run within a test. If the number of assertions and subtests that run does not match the expected count, the test will fail.
```js
test('top level test', (t) => {
t.plan(2);
t.assert.ok('some relevant assertion here');
t.subtest('subtest', () => {});
});
```
- Contributed by Colin Ihrig in [#52860](https://github.com/nodejs/node/pull/52860)
- ### inspector: introduce the `--inspect-wait` flag.
- This release introduces the `--inspect-wait` flag, which allows debugger to wait for attachement. This flag is useful when you want to debug the code from the beginning. Unlike `--inspect-brk`, which breaks on the first line, this flag waits for debugger to be connected and then runs the code as soon as a session is established. Contributed by Kohei Ueno in [#52734](https://github.com/nodejs/node/pull/52734)
- ### zlib: expose zlib.crc32()
- This release exposes the crc32() function from zlib to user-land. It computes a 32-bit Cyclic Redundancy Check checksum of data. If value is specified, it is used as the starting value of the checksum, otherwise, 0 is used as the starting value. The CRC algorithm is designed to compute checksums and to detect error in data transmission. It's not suitable for cryptographic authentication.
```js
const zlib = require('node:zlib');
const { Buffer } = require('node:buffer');
let crc = zlib.crc32('hello'); // 907060870
crc = zlib.crc32('world', crc); // 4192936109
crc = zlib.crc32(Buffer.from('hello', 'utf16le')); // 1427272415
crc = zlib.crc32(Buffer.from('world', 'utf16le'), crc); // 4150509955
```
- Contributed by Joyee Cheung in [#52692](https://github.com/nodejs/node/pull/52692)
### cli: allow running wasm in limited vmem with --disable-wasm-trap-handler
By default, Node.js enables trap-handler-based WebAssembly bound checks. As a result, V8 does not need to insert inline bound checks int the code compiled from WebAssembly which may speedup WebAssembly execution significantly, but this optimization requires allocating a big virtual memory cage (currently 10GB). If the Node.js process does not have access to a large enough virtual memory address space due to system configurations or hardware limitations, users won't be able to run any WebAssembly that involves allocation in this virtual memory cage and will see an out-of-memory error.
```console
$ ulimit -v 5000000
$ node -p "new WebAssembly.Memory({ initial: 10, maximum: 100 });"
[eval]:1
new WebAssembly.Memory({ initial: 10, maximum: 100 });
^
RangeError: WebAssembly.Memory(): could not allocate memory
at [eval]:1:1
at runScriptInThisContext (node:internal/vm:209:10)
at node:internal/process/execution:118:14
at [eval]-wrapper:6:24
at runScript (node:internal/process/execution:101:62)
at evalScript (node:internal/process/execution:136:3)
at node:internal/main/eval_string:49:3
```
- `--disable-wasm-trap-handler` disables this optimization so that users can at least run WebAssembly (with a less optimial performance) when the virtual memory address space available to their Node.js process is lower than what the V8 WebAssembly memory cage needs.
- Contributed by Joyee Cheung in [#52766](https://github.com/nodejs/node/pull/52766)
Other Notable Changes:
- * [12512c3d0e] - **doc**: add pimterry to collaborators (Tim Perry) [#52874](https://github.com/nodejs/node/pull/52874)
- * [9d485b40bb] - **(SEMVER-MINOR)** **tools**: fix get_asan_state() in tools/test.py (Joyee Cheung) [#52766](https://github.com/nodejs/node/pull/52766)
- * [e98c305f52] - **(SEMVER-MINOR)** **tools**: support max_virtual_memory test configuration (Joyee Cheung) [#52766](https://github.com/nodejs/node/pull/52766)
- * [dce0300896] - **(SEMVER-MINOR)** **tools**: support != in test status files (Joyee Cheung) [#52766](https://github.com/nodejs/node/pull/52766)
Prometheus 2.53.0
- [CHANGE] Rules: Execute 1 query instead of N (where N is the number of alerts within alert rule) when restoring alerts.#13980#14048
- [CHANGE] Runtime: Change GOGC threshold from 100 to 75#14176#14285
- [FEATURE] Rules: Add new optionquery_offsetfor each rule group via rule group configuration file andrule_query_offsetas part of the global configuration to have more resilience for remote write delays.#14061#14216#14273
- [ENHANCEMENT] Rules: Addrule_group_last_restore_duration_secondsmetric to measure the time it takes to restore a rule group.#13974
- [ENHANCEMENT] OTLP: Improve remote write format translation performance by using label set hashes for metric identifiers instead of string based ones.#14006#13991
- [ENHANCEMENT] TSDB: Optimize querying with regexp matchers.#13620
- [BUGFIX] OTLP: Don't generate target_info unless there are metrics and at least one identifying label is defined.#13991
- [BUGFIX] Scrape: Do no try to ingest native histograms when the native histograms feature is turned off. This happened when protobuf scrape was enabled by for example the created time feature.#13987
- [BUGFIX] Scaleway SD: Use the instance's public IP if no private IP is available as the__address__meta label.#13941
- [BUGFIX] Query logger: Do not leak file descriptors on error.#13948
- [BUGFIX] TSDB: Let queries with heavy regex matches be cancelled and not use up the CPU.#14096#14103#14118#14199
- [BUGFIX] API: Do not warn if result count is equal to the limit, only when exceeding the limit for the series, label-names and label-values APIs.#14116
- [BUGFIX] TSDB: Fix head stats and hooks when replaying a corrupted snapshot.#14079
OpenUpdate - June 20, 2024
Stay Informed
This week, read about:
Security Based Updates
PHP security releases 8.3.8, 8.2.20, and 8.1.29
OpenLogic AngularJS LTS
OpenLogic AngularJS Translate 2.19.2 released:
OpenLogic AngularJS 1.6.14 and 1.8.7 released:
Non-Security Based Updates
Angular 18.0.3
BENCHPRESS:
- (fix - ebf00aa0659) | adjust supported browser names for headless chrome (#56360)
CORE:
- (fix - dbd0fa00f8c) | async EventEmitter should contribute to app stability (#56308)
- (fix - 625ca3e2b3f) | signals should be tracked when embeddedViewRef.detectChanges is called (#55719)
LOCALIZE:
- (fix - d6dd3dbdb09) | add@angular/localize/initas polyfill inangular.json(#56300)
MIGRATIONS:
- (fix - c07e1b33569) | resolve error in standalone migration (#56302)
Apache Camel 3.21.5
- CAMEL-20864 camel-kafka - With confluent schema registry does not work properly.
- CAMEL-20677 camel-hazelcast: Seda nested transactions are not allowed
- CAMEL-20630 CVE-2024-25710, CVE-2024-26308 - Vulnerabilities with Camel-zip-deflater-starter maven dependency
- CAMEL-20563 camel-kafka - breakOnFirstError causes thread and memory leaks
- CAMEL-20558 Ability to use the old Micrometer meter names does not work on MicrometerExchangeEventNotifier
- CAMEL-20549 camel-kafka - Using sslKeystoreType should work with PEM
- CAMEL-20521 camel-amqp - AMQP publisher application is losing messages with local JMS transaction enabled
- CAMEL-20457 camel-core - NullPointerException for Split parallel and timeout without AggregationStrategy
- CAMEL-20435 camel-core - Resequencer EIP cannot be started again after being stopped
- CAMEL-20388 Salesforce component does not handshake on the connection failure
- CAMEL-20372 kafka Consumer - fix for config maxPollIntervalMs configuration in 3.21.x and 3.22.x
- CAMEL-20356 camel-core - LoggerHelper returns wrong name for source code line precise
- CAMEL-20350 camel-observation - Null values should be null instead of a string null literal value
ActiveMQ Artemis 2.35
Bugs Fixed:
- ARTEMIS-4165 - Page transactions not getting deleted on queue deletion
- ARTEMIS-4760 - Creating MQTT consumer should work if auto-create-queues is false
- ARTEMIS-4786 - ConcurrentModificationException on Page.destroy
- ARTEMIS-4788 - AMQP Federation Broker connection can deadlock broker shutdown
- ARTEMIS-4789 - Page.destroy race with cleanup
- ARTEMIS-4795 - Enforce queue filter when sending to FQQN
- ARTEMIS-4798 - Address Size differs between Mirror and Source queue, leading to OME scenarios
- ARTEMIS-4799 - Broker Connection Receiver attach handled incorrectly
- ARTEMIS-4801 - AMQP Session address query cache can have invalid state for long lived sessions
- ARTEMIS-4812 - PageCursorInfo should be cleared on its Maps when page is marked as complete
- ARTEMIS-4813 - LargeMessages could lose a body while in sync if backup becomes activated
New Features:
- ARTEMIS-4792 - Add support for setting consumer priority on AMQP Receiver Source addresses
Improvements:
- ARTEMIS-4796 - Simplify SimpleString API
- ARTEMIS-4800 - Simplify QueueConfiguration API
- ARTEMIS-4815 - Add –json option to ./artemis queue stat
Tasks:
- ARTEMIS-4790 - Use JUnit 5 for the test suite
- ARTEMIS-4802 - Update deprecated tags in examples/features/ha/replicated-failback sample
Dependency Upgrades:
- ARTEMIS-4791 - Update to JUnit 5.10.2
- ARTEMIS-4811 - Upgrade Netty to 4.1.111.Final
Elasticsearch v8.14.1
Also see <<breaking-changes-8.14,Breaking changes in 8.14>>.
Bug fixes
Authorization:
- Fix task cancellation authz on fulfilling cluster {es-pull}109357[#109357]
Infra/Core:
- Guard systemd library lookup from unreadable directories {es-pull}108931[#108931]
Machine Learning:
- Reset retryable index requests after failures {es-pull}109320[#109320]
Network:
- Fix task cancellation on remote cluster when original request fails {es-pull}109440[#109440]
Transform:
- Reset max page size to settings value {es-pull}109532[#109532] (issue: {es-issue}109308[#109308])
Vector Search:
- Correct how hex strings are handled when dynamically updating vector dims {es-pull}109423[#109423]
Enhancements
Infra/Settings:
- Add remove index setting command {es-pull}109276[#109276]
etcd-io/etcd v3.4.33
etcd grpc-proxy:
- Fix [Memberlist results not updated when proxy node down](https://github.com/etcd-io/etcd/pull/17896).
Dependencies:
- Compile binaries using go [1.21.11](https://github.com/etcd-io/etcd/pull/18130).
- Upgrade [bbolt to 1.3.10](https://github.com/etcd-io/etcd/pull/17945).
GitLab FOSS v16.10.7
Security (4 changes):
- [XSS and content injection raw XHTML files on IOS devices](gitlab-org/security/gitlab@bd477c1d019b3f758a38a4b7182b86f2d4668df4) ([merge request](gitlab-org/security/gitlab!4095))
- [Improve go_package_regex to prevent ReDoS attacks](gitlab-org/security/gitlab@56f50979b62a982e572d5695a87d19a36e0a9ef6) ([merge request](gitlab-org/security/gitlab!4098))
- [Fix ReDoS in CI Interpolation](gitlab-org/security/gitlab@045cf00aa56d545bdfb828c6131af89c37164946) ([merge request](gitlab-org/security/gitlab!4083))
- [Verify Asana access token when testing Asana integration](gitlab-org/security/gitlab@233b152dfea572b19b1803174c4604f4c0e04851) ([merge request](gitlab-org/security/gitlab!4061))
Other (1 change):
- [Quarantine a flaky test](gitlab-org/security/gitlab@45242cdf1d36c89aff59e3ce7ee3d2e2f5b16471)
Gitlab v16.11.4
Security (4 changes):
- [XSS and content injection raw XHTML files on IOS devices](gitlab-org/security/gitlab@5df472ac0deefe1e59ecfc0ffae7fa489cb6c9ab) ([merge request](gitlab-org/security/gitlab!4094))
- [Improve go_package_regex to prevent ReDoS attacks](gitlab-org/security/gitlab@d0b04b06f59e81bc57f6b33e26a0399b4b86ee80) ([merge request](gitlab-org/security/gitlab!4097))
- [Fix ReDoS in CI Interpolation](gitlab-org/security/gitlab@b013996a0612c9cc1e43bcd0be4b47d98eaf92f4) ([merge request](gitlab-org/security/gitlab!4082))
- [Verify Asana access token when testing Asana integration](gitlab-org/security/gitlab@6db47bd6ace0904869f56f035ff408855f3f4c9b) ([merge request](gitlab-org/security/gitlab!4060))
Gitlab v17.0.2
Fixed (1 change):
- [Fix instance templates pagination](gitlab-org/security/gitlab@d53fb868885472d0b7645afabee590f416eda0d5) **GitLab Enterprise Edition**
Changed (1 change):
- [Only query the fields needed](gitlab-org/security/gitlab@74794d45373cf605d7c036cc0ab13a3d5018c616)
Security (4 changes):
- [XSS and content injection raw XHTML files on IOS devices](gitlab-org/security/gitlab@7459916b867b01581b3422fd065419feb6352180) ([merge request](gitlab-org/security/gitlab!4093))
- [Improve go_package_regex to prevent ReDoS attacks](gitlab-org/security/gitlab@45ccd851058bf319f7795e88afcb27c1440c24e9) ([merge request](gitlab-org/security/gitlab!4096))
- [Fix ReDoS in CI Interpolation](gitlab-org/security/gitlab@11be5651e849441813c022bc492e6549e9ed297d) ([merge request](gitlab-org/security/gitlab!4081))
- [Verify Asana access token when testing Asana integration](gitlab-org/security/gitlab@c35fb1ce0e58b8e90bc61b7d48949572fca6705c) ([merge request](gitlab-org/security/gitlab!4059))
Grafana v10.4.4
Bug fixes:
- **BrowseDashboards:** Prepend subpath to New Browse Dashboard actions. [#89129], [@joshhunt]
- **Alerting:** Fix rule storage to filter by group names using case-sensitive comparison. [#89061], [@yuri-tceretian]
- **Alerting:** Fix editing Grafana folder via alert rule editor. [#88907], [@gillesdemey]
- **AzureMonitor:** Fix bug detecting app insights queries. [#88786], [@aangelisc]
- **AuthN:** Fix signout redirect url. [#88749], [@kalleep]
- **SSE:** Fix threshold unmarshal to avoid panic. [#88650], [@yuri-tceretian]
- **Alerting:** Fix typo in JSON response for rule export. [#88094], [@yuri-tceretian]
- **CloudMonitoring:** Fix query type selection issue. [#88023], [@aangelisc]
- **Provisioning:** Add override option to role provisioning.
Jenkins 2.452.2
1. Security fix. (2024-04-17 security advisory))
2. Remove People view. Administrators can install the new People View plugin to restore this functionality. (issue 18884, pull 9060, People View plugin))
3. Update Apache Mina in the CLI from 2.11.0 to 2.12.1. (pull 9089))
4. Developer: Provide current administrative monitor as a context object when loading its description. (pull 9071))
Jenkins-2.462
1. Refine button appearances in sidebars, menus, pages and breadcrumbs. (pull 9367))
2. Adjust heading weights and sizes. (pull 9366))
3. Show help text in the correct locale even if user has an alternate language option defined in their browser (issue 73246))
4. Quote replacement string in symbol tooltips. (issue 73243))
5. Honor readonly mode when displaying enumerations on pages. (issue 72854))
Kibana v8.14.1
Bug Fixes
Data Discovery:
- Notify the user about issues with access to the default data view ({kibana-pull}184740[#184740]).
Discover:
- Fixes resetting of breakdown field in a saved search ({kibana-pull}184668[#184668]).
Elastic Security:
- For the Elastic Security 8.14.1 release information, refer to {security-guide}/release-notes.html[_Elastic Security Solution Release Notes_].
Fleet:
- Fixes restart upgrade disabled condition ({kibana-pull}184586[#184586]).
Observability:
- Fixes editing enabled state for project monitor ({kibana-pull}184775[#184775]).
Kubernetes v1.30.2
Changes by Kind
API Change:
- Added the feature gates `StrictCostEnforcementForVAP` and `StrictCostEnforcementForWebhooks` to enforce the strct cost calculation for CEL extended libraries. It is strongly recommended to turn on the feature gates as early as possible. (#124676, @cici37) [SIG API Machinery, Auth, Node and Testing]
- Improved scheduling performance when many nodes, and prefilter returns 1-2 nodes (e.g. daemonset)
- For developers of out-of-tree PostFilter plugins, note that the semantics of NodeToStatusMap are changing: A node with an absent value in the NodeToStatusMap should be interpreted as having an UnschedulableAndUnresolvable status (#125306, @gabesaba) [SIG Scheduling]
Feature:
- Kubernetes is now built with go 1.22.3 (#124829, @cpanato) [SIG Release and Testing]
- Kubernetes is now built with go 1.22.4 (#125366, @cpanato) [SIG Architecture, Cloud Provider, Release, Storage and Testing]
Bug or Regression:
- Drop additional rule requirement (cronjobs/finalizers) in the roles who use kubectl create cronjobs to be backwards compatible (#124883, @ardaguclu) [SIG CLI]
- Emition of RecreatingFailedPod and RecreatingTerminatedPod events has been removed from stateful set lifecycle. (#123809, @atiratree) [SIG Apps and Testing]
- Improved scheduling latency when many gated pods (#124848, @gabesaba) [SIG Scheduling and Testing]
- Kube-apiserver: fixes a 1.28 regression printing pods with invalid initContainer status (#124908, @liggitt) [SIG Node]
- Kube-scheduler: fixes a 1.30 regression that can lead to a scheduler crash when processing pods with affinity that doesn't match a real/valid node (#125039, @AxeZhan) [SIG Scheduling and Testing]
- Kubeadm: during kubelet health checks, respect the healthz address:port configured in the KubeletConfiguration instead of hardcoding localhost:10248. (#125286, @neolit123) [SIG Cluster Lifecycle]
Kubernetes v1.29.6
Changes by Kind
API Change:
- Improved scheduling performance when many nodes, and prefilter returns 1-2 nodes (e.g. daemonset)
- For developers of out-of-tree PostFilter plugins, note that the semantics of NodeToStatusMap are changing: A node with an absent value in the NodeToStatusMap should be interpreted as having an UnschedulableAndUnresolvable status (#125307, @gabesaba) [SIG Scheduling]
Feature:
- Kubernetes is now built with go 1.21.10 (#124830, @cpanato) [SIG Release and Testing]
- Kubernetes is now built with go 1.21.11 (#125367, @cpanato) [SIG Architecture, Cloud Provider, Release, Storage and Testing]
Bug or Regression:
- Emition of RecreatingFailedPod and RecreatingTerminatedPod events has been removed from stateful set lifecycle. (#123809, @atiratree) [SIG Apps and Testing]
- Fixed PersistentolumeLabel providing wrong topology labels to Azure Disk PersistentVolumes when the external Azure cloud provider is used. (#124528, @jsafrane) [SIG Cloud Provider]
- Improved scheduling latency when many gated pods (#124849, @gabesaba) [SIG Scheduling and Testing]
- Kube-apiserver: fixes a 1.28 regression printing pods with invalid initContainer status (#124909, @liggitt) [SIG Node]
- Kube-scheduler: fixes a 1.29.5 regression that can lead to a scheduler crash when processing pods with affinity that doesn't match a real/valid node (#125041, @AxeZhan) [SIG Scheduling and Testing]
- Reduce critical section in watchcache to fix kube-apiserver scalability under heavy load of list requests (#122027, @wojtek-t) [SIG API Machinery]
Kubernetes v1.28.11
Changes by Kind
API Change:
- Improved scheduling performance when many nodes, and prefilter returns 1-2 nodes (e.g. daemonset)
- For developers of out-of-tree PostFilter plugins, note that the semantics of NodeToStatusMap are changing: A node with an absent value in the NodeToStatusMap should be interpreted as having an UnschedulableAndUnresolvable status (#125308, @gabesaba) [SIG Scheduling]
Feature:
- Kubernetes is now built with go 1.21.10 (#124831, @cpanato) [SIG Release and Testing]
- Kubernetes is now built with go 1.21.11 (#125368, @cpanato) [SIG API Machinery, Architecture, Release and Testing]
Bug or Regression:
- Emition of RecreatingFailedPod and RecreatingTerminatedPod events has been removed from stateful set lifecycle. (#123809, @atiratree) [SIG Apps and Testing]
- Improved scheduling latency when many gated pods (#124851, @gabesaba) [SIG Scheduling and Testing]
- Kube-apiserver: fixes a 1.28 regression printing pods with invalid initContainer status (#124910, @liggitt) [SIG Node]
- Kube-scheduler: fixes a 1.28.10 regression that can lead to a scheduler crash when processing pods with affinity that doesn't match a real/valid node (#125042, @AxeZhan) [SIG Scheduling and Testing]
- Reduce critical section in watchcache to fix kube-apiserver scalability under heavy load of list requests (#122027, @wojtek-t) [SIG API Machinery]
Kubernetes v1.27.15
Changes by Kind
API Change:
- Improved scheduling performance when many nodes, and prefilter returns 1-2 nodes (e.g. daemonset)
- For developers of out-of-tree PostFilter plugins, note that the semantics of NodeToStatusMap are changing: A node with an absent value in the NodeToStatusMap should be interpreted as having an UnschedulableAndUnresolvable status (#125309, @gabesaba) [SIG Scheduling]
Feature:
- Kubernetes is now built with go 1.21.10 (#124832, @cpanato) [SIG Release and Testing]
- Kubernetes is now built with go 1.21.11 (#125369, @cpanato) [SIG Release and Testing]
Bug or Regression:
- Improved scheduling latency when many gated pods (#124866, @gabesaba) [SIG Scheduling and Testing]
- Kube-scheduler: fixes a 1.27.14 regression that can lead to a scheduler crash when processing pods with affinity that doesn't match a real/valid node (#125043, @AxeZhan) [SIG Scheduling and Testing]
Logstash v8.14.1
Logstash 8.14.1 Release Notes:
- Fixes JSON serialization of payloads that are not UTF-8, eliminating an issue where the Elasticsearch Output could get stuck in a retry loop (#16072) [#16168]
- Fixes Persistent Queue bug in which a PQ configured with `queue.max_bytes` equal to its `queue.page_capacity` could become permanently blocked when _precisely_ full [#16178]
- Fixes a regression in multi-local pipeline loader that caused variable-references in a configured `pipelines.yml` to not be replaced by their values in the environment and/or keystore [#16201]
Plugins:
- Elastic_integration Filter - 0.1.9*
- [DOC] Removes Tech Preview label and adds link to extending integrations topic in LSR [#142]
- Azure_event_hubs Input - 1.4.7*
- [DOCS] Clarify examples for single and multiple event hubs [#90]
- [DOCS] Add outbound port requirements for Event Hub [#88]
- Jdbc Integration - 5.4.11*
- Fixes an issue in which any one instance of a JDBC input plugin using `jdbc_default_timezone` changes the behaviour of plugin instances that do _not_ use `jdbc_default_timezone`, ensuring that timezone offsets remain consistent for each instance of the plugin _as configured_ [#151]
- Fixes an exception that could occur while reloading `jdbc_static` databases when the underlying connection to the remote has been broken [#165]
- Kafka Integration - 11.4.2*
- Add default client_id of logstash to kafka output [#169]
- Http Output - 5.6.1*
- Added body logging for non 2xx responses [#142]
- Tcp Output - 6.2.1*
- Document correct default plugin codec [#54]
Node.js v22.3.0
Notable Changes:
- [5a41bcf9ca] - **(SEMVER-MINOR)** **src**: traverse parent folders while running `--run` (Yagiz Nizipli) [#53154](https://github.com/nodejs/node/pull/53154)
- [1d5934524b] - **(SEMVER-MINOR)** **buffer**: add .bytes() method to Blob (Matthew Aitken) [#53221](https://github.com/nodejs/node/pull/53221)
- [75e5612fae] - **(SEMVER-MINOR)** **src,permission**: --allow-wasi & prevent WASI exec (Rafael Gonzaga) [#53124](https://github.com/nodejs/node/pull/53124)
- [b5c30e2f5e] - **(SEMVER-MINOR)** **module**: print amount of load time of a cjs module (Vinicius Lourenço) [#52213](https://github.com/nodejs/node/pull/52213)
- [8c6dffc269] - **(SEMVER-MINOR)** **test_runner**: add snapshot testing (Colin Ihrig) [#53169](https://github.com/nodejs/node/pull/53169)
- [048478d351] - **(SEMVER-MINOR)** **doc**: add context.assert docs (Colin Ihrig) [#53169](https://github.com/nodejs/node/pull/53169)
- [f6d2af8ee7] - **(SEMVER-MINOR)** **test_runner**: add context.fullName (Colin Ihrig) [#53169](https://github.com/nodejs/node/pull/53169)
- [a0766bdf0e] - **(SEMVER-MINOR)** **net**: add new net.server.listen tracing channel (Paolo Insogna) [#53136](https://github.com/nodejs/node/pull/53136)
- [374743cd4e] - **(SEMVER-MINOR)** **process**: add process.getBuiltinModule(id) (Joyee Cheung) [#52762](https://github.com/nodejs/node/pull/52762)
- [1eb55f3550] - **(SEMVER-MINOR)** **doc**: improve explanation about built-in modules (Joyee Cheung) [#52762](https://github.com/nodejs/node/pull/52762)
- [6165894774] - **fs**: mark recursive cp methods as stable (Théo LUDWIG) [#53127](https://github.com/nodejs/node/pull/53127)
- [db5dd0c6df] - **doc**: add StefanStojanovic to collaborators (StefanStojanovic) [#53118](https://github.com/nodejs/node/pull/53118)
- [cfcde78513] - **(SEMVER-MINOR)** **cli**: add `NODE_RUN_PACKAGE_JSON_PATH` env (Yagiz Nizipli) [#53058](https://github.com/nodejs/node/pull/53058)
- [7a67ecf161] - **(SEMVER-MINOR)** **test_runner**: support module mocking (Colin Ihrig) [#52848](https://github.com/nodejs/node/pull/52848)
- [ee56aecced] - **(SEMVER-MINOR)** **lib**: add EventSource Client (Aras Abbasi) [#51575](https://github.com/nodejs/node/pull/51575)
- [6413769bc7] - **(SEMVER-MINOR)** **lib**: replace MessageEvent with undici's (Matthew Aitken) [#52370](https://github.com/nodejs/node/pull/52370)
- [c70b2f7a76] - **(SEMVER-MINOR)** **cli**: add `NODE_RUN_SCRIPT_NAME` env to `node --run` (Yagiz Nizipli) [#53032](https://github.com/nodejs/node/pull/53032)
- [badec0c38b] - **doc**: add Marco Ippolito to TSC (Rafael Gonzaga) [#53008](https://github.com/nodejs/node/pull/53008)
OpenUpdate - June 13, 2024
Stay Informed
This week, read about:
Security Based Updates
PHP Security Releases 8.3.8, 8.2.20, and 8.1.29
- PHP 8.3.8
- PHP 8.2.20
- PHP 8.1.29
These SECURITY Releases Fix:
- Argument Injection in PHP-CGI
- Bypass in filter_var FILTER_VALIDATE_URL
- proc_open workaround Windows with escaping arguments for bat/cmd files
- openssl_private_decrypt vulnerability to the Marvin attack
Zend has released the same patches for the ZendPHP 8.1, 8.2, and 8.3 distributions, with LTS patches coming later this week.
- Changelog: https://www.php.net/ChangeLog-8.php
- Source: https://www.php.net/downloads
The Changelog Link includes further details:
- Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument Injection in PHP-CGI). (CVE-2024-4577)
- Fixed bug GHSA-w8qr-v226-r27w (Filter bypass in filter_var FILTER_VALIDATE_URL). (CVE-2024-5458)
- Fixed bug GHSA-9fcc-425m-g385 (Bypass of CVE-2024-1874). (CVE-2024-5585)
- The openssl_private_decrypt function in PHP, when using PKCS1 padding (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the Marvin Attack unless it is used with an OpenSSL version that includes the changes from this pull request: https://github.com/openssl/openssl/pull/13817 (rsa_pkcs1_implicit_rejection). These changes are part of OpenSSL 3.2 and have also been backported to stable versions of various Linux distributions, as well as to the PHP builds provided for Windows since the previous release. All distributors and builders should ensure that this version is used to prevent PHP from being vulnerable.
Non-Security Based Updates
Angular 18.0.2
CORE:
- (fix - 78cf9bfc0e) | Do not migrateHttpClientModuleimports on components. (#56067)
- (fix - 616cdef474) | don't coerce all producers to consumers on liveness change (#56140)
- (fix - 2a440e1064) | Fix shouldPreventDefaultBeforeDispatching bug (#56188)
- (fix - 290a47d842) | handle missingwithI18nSupport()call for components that use i18n blocks (#56175)
MIGRATIONS:
- (fix - b70b80ba55) | do not generate aliased variables with the same name (#56154)
AWX 24.5.0
What's Changed:
- Fixed the promote GitHub workflow associated with the release event (@TheRealHaoLiu https://github.com/ansible/awx/pull/15215)
- Replaced deprecated ``locale.format()`` with ``locale.format_string()`` to fix human output on Python 3.12 (@hb9hnt https://github.com/ansible/awx/pull/15170)
- Reformatted long text line wrap to fit help window (@irozet12 https://github.com/ansible/awx/pull/15169)
- Updated the docker-compose README to mention that you can skip ``make docker-compose-build`` (@AlexPykavy https://github.com/ansible/awx/pull/15149)
- Update test so that DAB change can merge (@AlanCoding https://github.com/ansible/awx/pull/15222
- Added Kube credentials to the inventory source picker (@matburt https://github.com/ansible/awx/pull/15223)
- Fixed Galaxy publishing (@TheRealHaoLiu https://github.com/ansible/awx/pull/15233)
- Updated the collection to be compatible with the ``OPTIONAL_API_URLPATTERN_PREFIX`` environment variable (@Harshith-umesh https://github.com/ansible/awx/pull/15205)
- Updated ``named_url`` to work with optional URL prefixes (@chrismeyersfsu https://github.com/ansible/awx/pull/15114)
- Added the use of settings fixture in tests (@chrismeyersfsu https://github.com/ansible/awx/pull/15237)
- Added ``check_instance_ready`` to management commands (@TheRealHaoLiu https://github.com/ansible/awx/pull/15238)
- Added centralized logging via OpenTelemetry (OTel) (@chrismeyersfsu https://github.com/ansible/awx/pull/15199)
- Updated the link in the documentation and Help text for the Terraform State inventory plugin to improve readability (@akira6592 https://github.com/ansible/awx/pull/15241)
- Added AWS SNS notification support for webhooks (@ethemcemozkan https://github.com/ansible/awx/pull/15184)
- Unpinned Cypthon in the requirements file (@TheRealHaoLiu https://github.com/ansible/awx/pull/15246
- Repinned Cython due to build constraints associated with Cython versions older than 3.0 (@TheRealHaoLiu https://github.com/ansible/awx/pull/15248)
- Updated Django version to 4.2.10 (@thedoubl3j https://github.com/ansible/awx/pull/15250)
**Full Changelog**: https://github.com/ansible/awx/compare/24.4.0...24.5.0
AWX Operator:
- Released with AWX Operator [v2.18.0](https://github.com/ansible/awx-operator/releases/tag/2.18.0)
Elasticsearch 8.14.0
Breaking changes
Security:
- Prevent DLS/FLS if `replication` is assigned {es-pull}108600[#108600]
- Apply stricter Document Level Security (DLS) rules for the validate query API with the rewrite parameter {es-pull}105709[#105709]
- Apply stricter Document Level Security (DLS) rules for terms aggregations when min_doc_count is set to 0 {es-pull}105714[#105714]
Bug Fixes
Aggregations:
- Cross check livedocs for terms aggs when index access control list is non-null {es-pull}105714[#105714]
- ESQL: Enable VALUES agg for datetime {es-pull}107016[#107016]
- Fix IOOBE in TTest aggregation when using filters {es-pull}109034[#109034]
- Validate stats formatting in standard `InternalStats` constructor {es-pull}107678[#107678] (issue: {es-issue}107671[#107671])
- Application::
- [Bugfix] Connector API - fix status serialisation issue in termquery {es-pull}108365[#108365]
- [Connector API] Fix bug with filtering validation toXContent {es-pull}107467[#107467]
- [Connector API] Fix bug with parsing *_doc_count nullable fields {es-pull}108854[#108854]
- [Connector API] Fix bug with with wrong target index for access control sync {es-pull}109097[#109097]
Authorization:
- Users with monitor privileges can access async_search/status endpoint even when setting keep_alive {es-pull}107383[#107383]
CAT APIs:
- Fix numeric sorts in `_cat/nodes` {es-pull}106189[#106189] (issue: {es-issue}48070[#48070])
CCR:
- Add ?master_timeout query parameter to ccr apis {es-pull}105168[#105168]
CRUD:
- Fix `noop_update_total` is not being updated when using the `_bulk` {es-pull}105745[#105745] (issue: {es-issue}105742[#105742])
- Use correct system index bulk executor {es-pull}106150[#106150]
Cluster Coordination:
- Fix support for infinite `?master_timeout` {es-pull}107050[#107050]
Data streams:
- Add non-indexed fields to ecs templates {es-pull}106714[#106714]
- Fix bulk NPE when retrying failure redirect after cluster block {es-pull}107598[#107598]
- Improve error message when rolling over DS alias {es-pull}106708[#106708] (issue: {es-issue}106137[#106137])
- Only skip deleting a downsampled index if downsampling is in progress as part of DSL retention {es-pull}109020[#109020]
Downsampling:
- Fix downsample action request serialization {es-pull}106919[#106919] (issue: {es-issue}106917[#106917])
EQL:
- Use #addWithoutBreaking when adding a negative number of bytes to the circuit breaker in `SequenceMatcher` {es-pull}107655[#107655]
ES|QL:
- ESQL: Allow reusing BUCKET grouping expressions in aggs {es-pull}107578[#107578]
- ESQL: Disable quoting in FROM command {es-pull}108431[#108431]
- ESQL: Fix MV_DEDUPE when using data from an index {es-pull}107577[#107577] (issue: {es-issue}104745[#104745])
- ESQL: Fix error message when failing to resolve aggregate groupings {es-pull}108101[#108101] (issue: {es-issue}108053[#108053])
- ESQL: Fix treating all fields as MV in COUNT pushdown {es-pull}106720[#106720]
- ESQL: Re-enable logical dependency check {es-pull}105860[#105860]
- ESQL: median, count and `count_distinct` over constants {es-pull}107414[#107414] (issues: {es-issue}105248[#105248], {es-issue}104900[#104900])
- ES|QL fix no-length substring with supplementary (4-byte) character {es-pull}107183[#107183]
- ES|QL: Fix usage of IN operator with TEXT fields {es-pull}106654[#106654] (issue: {es-issue}105379[#105379])
- ES|QL: Improve support for TEXT fields in functions {es-pull}106810[#106810]
- Fix docs generation of signatures for variadic functions {es-pull}107865[#107865]
- [ESQL] Mark `date_diff` as requiring all three arguments {es-pull}108834[#108834] (issue: {es-issue}108383[#108383])
Health:
- Don't stop checking if the `HealthNode` persistent task is present {es-pull}105449[#105449] (issue: {es-issue}98926[#98926])
- Health monitor concurrency fixes {es-pull}105674[#105674] (issue: {es-issue}105065[#105065])
Highlighting:
- Check preTags and postTags params for empty values {es-pull}106396[#106396] (issue: {es-issue}69009[#69009])
- added fix for inconsistent text trimming in Unified Highlighter {es-pull}99961[#99961] (issue: {es-issue}101803[#101803])
Infra/CLI:
- Workaround G1 bug for JDK 22 and 22.0.1 {es-pull}108571[#108571]
Infra/Core:
- Add a check for the same feature being declared regular and historical {es-pull}106285[#106285]
- Fix `AffixSetting.exists` to include secure settings {es-pull}106745[#106745]
- Fix regression in get index settings (human=true) where the version was not displayed in human-readable format {es-pull}107447[#107447]
- Nativeaccess: try to load all located libsystemds {es-pull}108238[#108238] (issue: {es-issue}107878[#107878])
- Update several references to `IndexVersion.toString` to use `toReleaseVersion` {es-pull}107828[#107828] (issue: {es-issue}107821[#107821])
- Update several references to `TransportVersion.toString` to use `toReleaseVersion` {es-pull}107902[#107902]
Infra/Logging:
- Log when update AffixSetting using addAffixMapUpdateConsumer {es-pull}97072[#97072]
Infra/Node Lifecycle:
- Consider `ShardRouting` roles when calculating shard copies in shutdown status {es-pull}106063[#106063]
- Wait indefintely for http connections on shutdown by default {es-pull}106511[#106511]
Infra/Scripting:
- Guard against a null scorer in painless execute {es-pull}109048[#109048] (issue: {es-issue}43541[#43541])
- Painless: Apply true regex limit factor with FIND and MATCH operation {es-pull}105670[#105670]
Ingest Node:
- Catching `StackOverflowErrors` from bad regexes in `GsubProcessor` {es-pull}106851[#106851]
- Fix `uri_parts` processor behaviour for missing extensions {es-pull}105689[#105689] (issue: {es-issue}105612[#105612])
- Remove leading is_ prefix from Enterprise geoip docs {es-pull}108518[#108518]
- Slightly better geoip `databaseType` validation {es-pull}106889[#106889]
License:
- Fix lingering license warning header {es-pull}108031[#108031] (issue: {es-issue}107573[#107573])
- Machine Learning::
- Fix NPE in ML assignment notifier {es-pull}107312[#107312]
- Fix `startOffset` must be non-negative error in XLMRoBERTa tokenizer {es-pull}107891[#107891] (issue: {es-issue}104626[#104626])
- Fix the position of spike, dip and distribution changes bucket when the sibling aggregation includes empty buckets {es-pull}106472[#106472]
- Make OpenAI embeddings parser more flexible {es-pull}106808[#106808]
Mapping:
- Dedupe terms in terms queries {es-pull}106381[#106381]
- Extend support of `allowedFields` to `getMatchingFieldNames` and `getAllFields` {es-pull}106862[#106862]
- Fix for raw mapping merge of fields named "properties" {es-pull}108867[#108867] (issue: {es-issue}108866[#108866])
- Handle infinity during synthetic source construction for scaled float field {es-pull}107494[#107494] (issue: {es-issue}107101[#107101])
- Handle pass-through subfields with deep nesting {es-pull}106767[#106767]
- Wrap "Pattern too complex" exception into an `IllegalArgumentException` {es-pull}109173[#109173]
Network:
- Fix HTTP corner-case response leaks {es-pull}105617[#105617]
Search:
- Add `internalClusterTest` for and fix leak in `ExpandSearchPhase` {es-pull}108562[#108562] (issue: {es-issue}108369[#108369])
- Avoid attempting to load the same empty field twice in fetch phase {es-pull}107551[#107551]
- Bugfix: Disable eager loading `BitSetFilterCache` on Indexing Nodes {es-pull}105791[#105791]
- Cross-cluster painless/execute actions should check permissions only on target remote cluster {es-pull}105360[#105360]
- Fix error 500 on invalid `ParentIdQuery` {es-pull}105693[#105693] (issue: {es-issue}105366[#105366])
- Fix range queries for float/half_float fields when bounds are out of type's range {es-pull}106691[#106691]
- Fixing NPE when requesting [_none_] for `stored_fields` {es-pull}104711[#104711]
- Fork when handling remote field-caps responses {es-pull}107370[#107370]
- Handle parallel calls to `createWeight` when profiling is on {es-pull}108041[#108041] (issues: {es-issue}104131[#104131], {es-issue}104235[#104235])
- Harden field-caps request dispatcher {es-pull}108736[#108736]
- Replace `UnsupportedOperationException` with `IllegalArgumentException` for non-existing columns {es-pull}107038[#107038]
- Unable to retrieve multiple stored field values {es-pull}106575[#106575]
- Validate `model_id` is required when using the `learning_to_rank` rescorer {es-pull}107743[#107743]
Security:
- Disable validate when rewrite parameter is sent and the index access control list is non-null {es-pull}105709[#105709]
- Fix field caps and field level security {es-pull}106731[#106731]
Snapshot/Restore:
- Fix double-pausing shard snapshot {es-pull}109148[#109148] (issue: {es-issue}109143[#109143])
- Treat 404 as empty register in `AzureBlobStore` {es-pull}108900[#108900] (issue: {es-issue}108504[#108504])
- `SharedBlobCacheService.maybeFetchRegion` should use `computeCacheFileRegionSize` {es-pull}106685[#106685]
TSDB:
- Flip dynamic mapping condition when create tsid {es-pull}105636[#105636]
Transform:
- Consolidate permissions checks {es-pull}106413[#106413] (issue: {es-issue}105794[#105794])
- Disable PIT for remote clusters {es-pull}107969[#107969]
- Make force-stopping the transform always remove persistent task from cluster state {es-pull}106989[#106989] (issue: {es-issue}106811[#106811])
- Only trigger action once per thread {es-pull}107232[#107232] (issue: {es-issue}107215[#107215])
- [Transform] Auto retry Transform start {es-pull}106243[#106243]
Vector Search:
- Fix multithreading copies in lib vec {es-pull}108802[#108802]
- [8.14] Fix multithreading copies in lib vec {es-pull}108810[#108810]
Deprecations
Mapping:
- Deprecate allowing `fields` in scenarios where it is ignored {es-pull}106031[#106031]
Enhancements
Aggregations:
- Add a `PriorityQueue` backed by `BigArrays` {es-pull}106361[#106361]
- All new `shard_seed` parameter for `random_sampler` agg {es-pull}104830[#104830]
Allocation:
- Add allocation stats {es-pull}105894[#105894]
- Add index forecasts to /_cat/allocation output {es-pull}97561[#97561]
Application:
- [Profiling] Add TopN Functions API {es-pull}106860[#106860]
- [Profiling] Allow to override index settings {es-pull}106172[#106172]
- [Profiling] Speed up serialization of flamegraph {es-pull}105779[#105779]
Authentication:
- Support Profile Activate with JWTs with client authn {es-pull}105439[#105439] (issue: {es-issue}105342[#105342])
Authorization:
- Allow users to get status of own async search tasks {es-pull}106638[#106638]
- [Security Solution] Add `read` permission for third party agent indices for `kibana_system` {es-pull}107046[#107046]
Data streams:
- Add data stream lifecycle to kibana reporting template {es-pull}106259[#106259]
ES|QL:
- Add ES|QL Locate function {es-pull}106899[#106899] (issue: {es-issue}106818[#106818])
- Add ES|QL signum function {es-pull}106866[#106866]
- Add status for enrich operator {es-pull}106036[#106036]
- Add two new OGC functions ST_X and ST_Y {es-pull}105768[#105768]
- Adjust array resizing in block builder {es-pull}106934[#106934]
- Bulk loading enrich fields in ESQL {es-pull}106796[#106796]
- ENRICH support for TEXT fields {es-pull}106435[#106435] (issue: {es-issue}105384[#105384])
- ESQL: Add timers to many status results {es-pull}105421[#105421]
- ESQL: Allow grouping key inside stats expressions {es-pull}106579[#106579]
- ESQL: Introduce expression validation phase {es-pull}105477[#105477] (issue: {es-issue}105425[#105425])
- ESQL: Log queries at debug level {es-pull}108257[#108257]
- ESQL: Regex improvements {es-pull}106429[#106429]
- ESQL: Sum of constants {es-pull}105454[#105454]
- ESQL: Support ST_DISJOINT {es-pull}107007[#107007]
- ESQL: Support partially folding CASE {es-pull}106094[#106094]
- ESQL: Use faster field caps {es-pull}105067[#105067]
- ESQL: extend BUCKET with spans {es-pull}107272[#107272]
- ESQL: perform a reduction on the data node {es-pull}106516[#106516]
- Expand support for ENRICH to full set supported by ES ingest processors {es-pull}106186[#106186] (issue: {es-issue}106162[#106162])
- Introduce ordinal bytesref block {es-pull}106852[#106852] (issue: {es-issue}106387[#106387])
- Leverage ordinals in enrich lookup {es-pull}107449[#107449]
- Serialize big array blocks {es-pull}106373[#106373]
- Serialize big array vectors {es-pull}106327[#106327]
- Specialize serialization for `ArrayVectors` {es-pull}105893[#105893]
- Specialize serialization of array blocks {es-pull}106102[#106102]
- Speed up serialization of `BytesRefArray` {es-pull}106053[#106053]
- Support ST_CONTAINS and ST_WITHIN {es-pull}106503[#106503]
- Support ST_INTERSECTS between geometry column and other geometry or string {es-pull}104907[#104907] (issue: {es-issue}104874[#104874])
Engine:
- Add metric for calculating index flush time excluding waiting on locks {es-pull}107196[#107196]
Highlighting:
- Enable 'encoder' and 'tags_schema' highlighting settings at field level {es-pull}107224[#107224] (issue: {es-issue}94028[#94028])
ILM+SLM:
- Add a flag to re-enable writes on the final index after an ILM shrink action. {es-pull}107121[#107121] (issue: {es-issue}106599[#106599])
Indices APIs:
- Wait forever for `IndexTemplateRegistry` asset installation {es-pull}105985[#105985]
Infra/CLI:
- Enhance search tier GC options {es-pull}106526[#106526]
- Increase KDF iteration count in `KeyStoreWrapper` {es-pull}107107[#107107]
Infra/Core:
- Add pluggable `BuildVersion` in `NodeMetadata` {es-pull}105757[#105757]
Infra/Metrics:
- Infrastructure for metering the update requests {es-pull}105063[#105063]
- `DocumentParsingObserver` to accept an `indexName` to allow skipping system indices {es-pull}107041[#107041]
Infra/Scripting:
- String sha512() painless function {es-pull}99048[#99048] (issue: {es-issue}97691[#97691])
Ingest Node:
- Add support for the 'Anonymous IP' database to the geoip processor {es-pull}107287[#107287] (issue: {es-issue}90789[#90789])
- Add support for the 'Enterprise' database to the geoip processor {es-pull}107377[#107377]
- Adding `cache_stats` to geoip stats API {es-pull}107334[#107334]
- Support data streams in enrich policy indices {es-pull}107291[#107291] (issue: {es-issue}98836[#98836])
Machine Learning:
- Add GET `_inference` for all inference endpoints {es-pull}107517[#107517]
- Added a timeout parameter to the inference API {es-pull}107242[#107242]
- Enable retrying on 500 error response from Cohere text embedding API {es-pull}105797[#105797]
Mapping:
- Make int8_hnsw our default index for new dense-vector fields {es-pull}106836[#106836]
Ranking:
- Add retrievers using the parser-only approach {es-pull}105470[#105470]
Search:
- Add Lucene spanish plural stemmer {es-pull}106952[#106952]
- Add `modelId` and `modelText` to `KnnVectorQueryBuilder` {es-pull}106068[#106068]
- Add a SIMD (Neon) optimised vector distance function for int8 {es-pull}106133[#106133]
- Add transport version for search load autoscaling {es-pull}106377[#106377]
- CCS with `minimize_roundtrips` performs incremental merges of each `SearchResponse` {es-pull}105781[#105781]
- Track ongoing search tasks {es-pull}107129[#107129]
Security:
- Invalidating cross cluster API keys requires `manage_security` {es-pull}107411[#107411]
- Show owner `realm_type` for returned API keys {es-pull}105629[#105629]
Snapshot/Restore:
- Add setting for max connections to S3 {es-pull}107533[#107533]
- Distinguish different snapshot failures by log level {es-pull}105622[#105622]
Stats:
- (API+) CAT Nodes alias for shard header to match CAT Allocation {es-pull}105847[#105847]
- Add total size in bytes to doc stats {es-pull}106840[#106840] (issue: {es-issue}97670[#97670])
TSDB:
- Improve short-circuiting downsample execution {es-pull}106563[#106563]
- Support non-keyword dimensions as routing fields in TSDB {es-pull}105501[#105501]
- Text fields are stored by default in TSDB indices {es-pull}106338[#106338] (issue: {es-issue}97039[#97039])
Transform:
- Check node shutdown before fail {es-pull}107358[#107358] (issue: {es-issue}100891[#100891])
- Do not log error on node restart when the transform is already failed {es-pull}106171[#106171] (issue: {es-issue}106168[#106168])
New Features
Application:
- Allow `typed_keys` for search application Search API {es-pull}108007[#108007]
- [Connector API] Support cleaning up sync jobs when deleting a connector {es-pull}107253[#107253]
ES|QL:
- ESQL: Values aggregation function {es-pull}106065[#106065] (issue: {es-issue}103600[#103600])
- ESQL: allow sorting by expressions and not only regular fields {es-pull}107158[#107158]
- Support ES|QL requests through the `NodeClient::execute` {es-pull}106244[#106244]
Indices APIs:
- Add granular error list to alias action response {es-pull}106514[#106514] (issue: {es-issue}94478[#94478])
Machine Learning:
- Add Cohere rerank to `_inference` service {es-pull}106378[#106378]
- Add support for Azure OpenAI embeddings to inference service {es-pull}107178[#107178]
- Create default word based chunker {es-pull}107303[#107303]
- Text structure endpoints to determine the structure of a list of messages and of an indexed field {es-pull}105660[#105660]
Mapping:
- Flatten object mappings when subobjects is false {es-pull}103542[#103542] (issues: {es-issue}99860[#99860], {es-issue}103497[#103497])
Security:
- Get and Query API Key with profile uid {es-pull}106531[#106531]
Vector Search:
- Adding support for hex-encoded byte vectors on knn-search {es-pull}105393[#105393]
Upgrades
Infra/Core:
- Upgrade jna to 5.12.1 {es-pull}105717[#105717]
Ingest Node:
- Updating the tika version to 2.9.1 in the ingest attachment plugin {es-pull}106315[#106315]
Network:
- Upgrade to Netty 4.1.107 {es-pull}105517[#105517]
Packaging:
- Update bundled JDK to Java 22 (again) {es-pull}108654[#108654]
Jenkins 2.461
1. Restore the September 30 2024 Java 11 end of life date for LTS releases. (pull 9323))
2. Move Add description to app bar. (pull 9271))
3. Fix width of weather icons in Safari when zoomed. (issue 73047))
OpenUpdate - June 6, 2024
Stay Informed
This week, read about:
Security Based Updates
nginx 1.27.0
*) Security: when using HTTP/3, processing of a specially crafted QUIC session might cause a worker process crash, worker process memory disclosure on systems with MTU larger than 4096 bytes, or might have potential other impact (CVE-2024-32760, CVE-2024-31079, CVE-2024-35200, CVE-2024-34161). Thanks to Nils Bars of CISPA.
*) Feature: variables support in the "proxy_limit_rate", "fastcgi_limit_rate", "scgi_limit_rate", and "uwsgi_limit_rate" directives.
*) Bugfix: reduced memory consumption for long-lived requests if "gzip", "gunzip", "ssi", "sub_filter", or "grpc_pass" directives are used.
*) Bugfix: nginx could not be built by gcc 14 if the --with-atomic option was used. Thanks to Edgar Bonet.
*) Bugfixes in HTTP/3.
Non-Security Based Updates
Angular 18.0.1
COMPILER:
(fix - 419ffa2026) | optimize track function that only passes $index (#55872)
COMPILER-CLI:
(fix - 4c7efc005a) | interpolatedSignalNotInvoked diagnostic for class, style, attribute and animation bindings (#55969)
CORE:
(fix - 4e6ea0e19c) | handle elements with local refs in event replay serialization logic (#56076)
(fix - d73a0175cb) | link errors to ADEV (#55554)
(fix - 985a215b10) | typo in zoneless warning (#55974)
MIGRATIONS:
(fix - ba85d08158) | handle empty ngSwitchCase (#56105)
ActiveMQ Artemis 2.34.0
Bug:
- [ARTEMIS-1551] - Conversion of most of the properties is not working when crossing protocols.
- [ARTEMIS-1634] - Coverity: Unintentional integer overflow (OVERFLOW_BEFORE_WIDEN) in QueueControlImpl.java
- [ARTEMIS-1691] - JMS Bridge: After the FailureHandler exits, a bridge cannot be started full functional anymore
- [ARTEMIS-1921] - Setting client ID on core JMS should be reflected in broker RemotingConnection
- [ARTEMIS-2492] - [Doc] Confusing/old paragraph in clusters.md
- [ARTEMIS-3622] - MQTT can deadlock on client connection / disconnection
- [ARTEMIS-4420] - User authentication leaks into non-Artemis servlets
- [ARTEMIS-4652] - Rollback of XAResource implementation should never return XA_RETRY
- [ARTEMIS-4666] - Federated queue consumers do not receive messages on classic clients
- [ARTEMIS-4694] - Servers should be resilient to large headers
- [ARTEMIS-4698] - MetricsManagers' remove method may cause a NullPointerException
- [ARTEMIS-4699] - properties config - implied factoryClassName on TransportConfiguration can be wrong, it needs to be provided via a property value
- [ARTEMIS-4705] - Remove unnecessary field from STOMP HeartBeater
- [ARTEMIS-4711] - XmlDataImporter now requires JMS code
- [ARTEMIS-4712] - Remove LDAP connection pooling
- [ARTEMIS-4713] - Mitigate NPE in LargeMessageControllerImpl
- [ARTEMIS-4714] - Mitigate NPE in FederatedQueueConsumerImpl MessageListener
- [ARTEMIS-4718] - Diverted messages are not properly routed on cluster remote bindings
- [ARTEMIS-4721] - Possible documentation error in wildcard syntax recommendation
- [ARTEMIS-4723] - org.apache.activemq.artemis.utils.actors.Handler$Counter left on the ThreadLocal
- [ARTEMIS-4725] - Mirror may send wrong headers
- [ARTEMIS-4726] - Removing scheduled message from queue via management can cause negative message count
- [ARTEMIS-4727] - Fix STOMP durable sub doc and property precedence
- [ARTEMIS-4731] - Openwire failure detection leak with Windows Clients / Server won't cleanup openwork clients with Exception
- [ARTEMIS-4733] - Mirror Infinite loops (mirror infinite Reflection) from Internal Queues
- [ARTEMIS-4734] - Null dereferencing in ReplicationManager.java
- [ARTEMIS-4744] - AMQP broker connections don't fully support multi host URIs
- [ARTEMIS-4746] - SIMILAR_BRANCHES.SWITCH Identical branches in switch node
- [ARTEMIS-4749] - SIMILAR_BRANCHES.SWITCH in ../activemq/artemis/utils/ThreadDumpUtil.java
- [ARTEMIS-4759] - Restore compatibility with LiveOnlyPolicyConfiguration
- [ARTEMIS-4762] - Queue Stat throw NPE if executed against old server
- [ARTEMIS-4765] - Target Mirror is setting wrong size on duplicate cache
- [ARTEMIS-4768] - Property _AMQ_SCHED_DELIVERY lost from Scheduled Persistent Message after broker restart
- [ARTEMIS-4771] - NPE between AMQPLargeMessageWriter::tryDelivering and resetClose
- [ARTEMIS-4774] - PageCounters get out of sync after AckManager
- [ARTEMIS-4776] - Replicated Paged Files may leak as open on replica target
- [ARTEMIS-4784] - Large messages are being kept on the ReplicationEndpoint after they are closed.
- [ARTEMIS-4789] - Page.destroy race with cleanup
New Feature:
- [ARTEMIS-4675] - Add replication status metrics
- [ARTEMIS-4709] - Add a plugin to provide periodic expiry of connections on a per acceptor basis
- [ARTEMIS-4763] - properties config - support metrics plugin, conversion of .class for non string attributes and empty init
Improvement:
- [ARTEMIS-1769] - Return JMS Session's ClientID via JMX
- [ARTEMIS-4306] - Add authn/z metrics
- [ARTEMIS-4498] - Enable management for internal addresses & queues
- [ARTEMIS-4510] - Add auto-create-destination logic to diverts
- [ARTEMIS-4582] - add view and edit permissions to extend security-settings rbac for management operations
- [ARTEMIS-4696] - Deprecate queue prefetch address setting
- [ARTEMIS-4697] - Auto reload SSL PEM config sources on change
- [ARTEMIS-4704] - Eliminate unnecessary variable in ReplicationManager
- [ARTEMIS-4710] - Keep pem-keystore dependencies as is; make it really optional
- [ARTEMIS-4740] - Reduce unnecessary boxing
- [ARTEMIS-4742] - Decoding PersistedSecuritySetting fails after upgrade
- [ARTEMIS-4743] - Improve CLI Queue Stat Output: Split lines and include internal queue attribute
- [ARTEMIS-4745] - Allow configuration of AMQP federation pull consumer batch size
- [ARTEMIS-4754] - Make configuring security for AMQP federation user accounts simpler
- [ARTEMIS-4758] - Hardening Mirroring
- [ARTEMIS-4766] - gate every newInstance call with a type check on the class to ensure we only call static initialisers of the expected type
- [ARTEMIS-4772] - Expose registered broker plugin class names in JMX
- [ARTEMIS-4773] - Performance improvement on page.sync
- [ARTEMIS-4783] - Touch up federation docs
Wish:
- [ARTEMIS-1729] - Automatically check for broken documentation links
Task:
- ARTEMIS-4703] - Add additional Queue federation example for AMQP federation
- [ARTEMIS-4715] - Using # wildcard from OpenWire JMS consumer stopped working with 2.33.0
- [ARTEMIS-4720] - Add additional example for AMQP federation showing TLS configuration
- [ARTEMIS-4722] - Exclude netty-tcnative-boringssl-static artifacts
- [ARTEMIS-4750] - AMQP Large Message flow control to use runAfter
- [ARTEMIS-4778] - misc test cleanup
Dependency upgrade:
- [ARTEMIS-4625] - Upgrade CheckStyle to 10.15.0
- [ARTEMIS-4701] - Update to Netty 4.1.108
- [ARTEMIS-4717] - Upgrade commons-configuration2 to 2.10.1
- [ARTEMIS-4724] - Upgrade karaf version to 4.4.6
- [ARTEMIS-4728] - Upgrade jgroups version to 5.3.4.Final
- [ARTEMIS-4729] - Upgrade slf4j version to 2.0.12
- [ARTEMIS-4751] - Upgrade to Apache parent 32
- [ARTEMIS-4752] - Upgrade ErrorProne to 2.27.0
- [ARTEMIS-4753] - Upgrade CheckStyle to 10.16.0
- [ARTEMIS-4755] - Upgrade Jackson to 2.17.0
- [ARTEMIS-4756] - Upgrade Commons IO to 2.16.1
- [ARTEMIS-4757] - Upgrade Netty to 4.1.109.Final
- [ARTEMIS-4769] - Update to pem-keystore 2.4.0
- [ARTEMIS-4770] - Update to bouncycastle 1.78
ETC-D 3.5.14
etcd server:
- Fix [LeaseTimeToLive returns error if leader changed](https://github.com/etcd-io/etcd/pull/17704).
- Add [metrics `etcd_disk_wal_write_duration_seconds`](https://github.com/etcd-io/etcd/pull/17616).
- Fix [ignore raft messages if member id mismatch](https://github.com/etcd-io/etcd/pull/17813).
- Update [the compaction log when bootstrap](https://github.com/etcd-io/etcd/pull/17830).
- Fix [Revision decreasing after panic during compaction](https://github.com/etcd-io/etcd/pull/17865)
- Add [`etcd --experimental-stop-grpc-service-on-defrag`](https://github.com/etcd-io/etcd/pull/17914) to enable client failover on defrag.
- Add [support for `AllowedCN` and `AllowedHostname` through config file](https://github.com/etcd-io/etcd/pull/18063)
etcdutl v3:
- Add [`--initial-memory-map-size` to `snapshot restore` to avoid memory allocation issues](https://github.com/etcd-io/etcd/pull/17977)
Package `clientv3`:
- Add [requests retry when receiving ErrGPRCNotSupportedForLearner and endpoints > 1](https://github.com/etcd-io/etcd/pull/17641).
- Fix [initialization for mu in client context](https://github.com/etcd-io/etcd/pull/17699).
Dependencies:
- Compile binaries using [go 1.21.10](https://github.com/etcd-io/etcd/pull/17980).
- Upgrade [bbolt to v1.3.10](https://github.com/etcd-io/etcd/pull/17943).
HAProxy 3.0
- MINOR: sample: implement the uptime sample fetch
- CI: scripts: fix build of vtest regarding option -C
- CI: scripts: build vtest using multiple CPUs
- MINOR: log: rename 'log-format tag' to 'log-format alias'
- DOC: config: document logformat item naming and typecasting features
- BUILD: makefile: yearly reordering of objects by build time
- BUILD: fd: errno is also needed without poll()
- DOC: config: fix two typos "RST_STEAM" vs "RST_STREAM"
- DOC: config: refer to the non-deprecated keywords in ocsp-update on/off
- DOC: streamline http-reuse and connection naming definition
- REGTESTS: complete http-reuse test with pool-conn-name
- DOC: config: add %ID logformat alias alternative
- CLEANUP: ssl/ocsp: readable ifdef in ssl_sock_load_ocsp
- BUG/MINOR: ssl/ocsp: init callback func ptr as NULL
- CLEANUP: ssl_sock: move dirty openssl-1.0.2 wrapper to openssl-compat
- BUG/MINOR: activity: fix Delta_calls and Delta_bytes count
- CI: github: upgrade the WolfSSL job to 5.7.0
- DOC: install: update quick build reminders with some missing options
- DOC: install: update the range of tested openssl version to cover 3.3
- DEV: patchbot: prepare for new version 3.1-dev
- MINOR: version: mention that it's 3.0 LTS now.
jenkins-2.460
1. Remove Disable project button from project view. (pull 9287))
2. Display how many users there are on the Users page. (pull 9221))
3. Warn Java 11 users of the new end of life (pull 9314))
4. Improve the performance of file compression and decompression. (pull 9312))
5. Improve startup performance when jobs have been created via REST API or command line interface. (issue 64356))
6. Add download option to Console output, move View as plain text and Copy buttons to app bar. (pull 9169))
7. Consistently notify job listeners when the job definition is updated from the REST API or command line interface. (issue 64553))
Node.js v20.14.0
Notable Changes:
* [28d2baa17c] - **src,permission**: throw async errors on async APIs (Rafael Gonzaga) [#52730](https://github.com/nodejs/node/pull/52730)
* [77e2bf029a] - **(SEMVER-MINOR)** **test_runner**: support forced exit (Colin Ihrig) [#52038](https://github.com/nodejs/node/pull/52038)
RabbitMQ 3.13.3
- RabbitMQ `3.13.3` is a maintenance release in the `3.13.x` [release series]. Starting June 1st, 2024, community support for this series will only be provided to [regularly contributing users] and those. who hold a valid [commercial support license]. Please refer to the upgrade section from the [3.13.0 release notes] if upgrading from a version prior to 3.13.0. This release requires Erlang 26 and supports Erlang versions up to `26.2.x`.
- [RabbitMQ and Erlang/OTP Compatibility Matrix] has more details on Erlang version requirements for RabbitMQ.
Minimum Supported Erlang Version:
- As of 3.13.0, RabbitMQ requires Erlang 26. Nodes **will fail to start** on older Erlang releases. Users upgrading from 3.12.x (or older releases) on Erlang 25 to 3.13.x on Erlang 26 (both RabbitMQ *and* Erlang are upgraded at the same time) **must** consult the [v3.12.0 release notes] and [v3.13.0 release notes] first.
Changes Worth Mentioning:
- Release notes can be found on GitHub at [rabbitmq-server/release-notes]
Core Broker
Bug Fixes:
- * Fixes an exception in classic queue message store that produced large scary looking log entries. No data was lost as a result of the exception but clients could run into a channel error. GitHub issue: [#11292]
- * Corrected several 3.13-specific issues related to how the `x-death` headers are populated during [dead lettering]. GitHub issues: [#11160] [#11159] [#11174] [#11339] [#10709] [#11331]
- * Per-virtual host queue (and stream) limit is now enforced for AMQP 1.0, MQTT, RabbitMQ Stream Protocol and STOMP as well as AMQP 0-9-1. Contributed by @SimonUnge. GitHub issue: [#11293]
- * Periodic replica reconciliation of quorum queues now reacts to node shutdown in cluster where Khepri is enabled. Contributed by @SimonUnge. GitHub issue: [#11134]
- * Declaration of an exchange of a non-existent type will now report a more suitable "precondition failed" error to the client. Contributed by @carlhoerberg. GitHub issue: [#11215]
- * Avoids a scary looking log message during node shutdown in certain plugin configurations. GitHub issue: [#11323]
Enhancements:
- * `x-death` headers used to provide metadata about [dead-lettering] are now included for messages consumed from a stream. GitHub issue: [#11173]
- * Classic queue message store recovery was optimized (peak memory footprint-wise) for cases where large (multiple MiB in size) messages were routed to multiple queues. Contributed by @gomoripeti. GitHub issue: [#11072]
- * Besides the previously existing option of configuring default queue type per virtual host,there is now a "global" per node default that can be set via `rabbitmq.conf`:
``` ini
- # Changes default queue type for all clients connected to the configured node
- # to quorum queues.
- # This is just an example, not all queues should be quorum queues.
- # See https://www.rabbitmq.com/docs/quorum-queues to learn more.
default_queue_type = quorum
```
- Contributed by @SimonUnge. GitHub issue: [#11163]
- * When a virtual host process stops, fails or is restarted, a clear message will now be logged. GitHub issue: [#11276]
CLI Tools
Bug Fixes:
- * `rabbitmq-plugins list` incorrectly marked disabled plugins as "pending an upgrade". Partially contributed by @gomoripeti. GitHub issue: [#11198]
- * `rabbitmqctl check_if_any_deprecated_features_are_used` could run into an exception. Partially contributed by @metron2. GitHub issue: [#11194]
Prometheus Plugin
Enhancements:
- * A new Prometheus-exposed metric, `rabbit_stream_segments`, indicates how many stream segment files there are on the target node. Contributed by @markus812498. GitHub issue: [#11325]
Management Plugin
Bug Fixes:
- * After signing out of management UI, the page was not refreshed to reflect updated login (session) status. GitHub issue: [#11224]
Shovel Management Plugin
Bug Fixes:
- * `rabbitmqctl delete_shovel` is now more effective at deleting Shovels that cannot start (for example, because they cannot connect using the configured URIs) and repeatedly fail, get restarted, fail again, get restarted, and so on. GitHub issue: [#11324]
- * `fail_if_no_peer_cert`, a server-side TLS setting, was removed from Shovel URI examples. Erlang 26's TLS implementation will refuse to accept it as a client-side setting whereas previously it was quietly ignored. Contributed by @womblep.
GitHub issue: [#11318]
None in this release.
Source Code Archives:
- To obtain source code of the entire distribution, please download the archive named `rabbitmq-server-3.13.3.tar.xz` instead of the source tarball produced by GitHub.
Wildfly 32.0.1
BUG:
[WFLY-19305] - ClassCastException when running live-only HA policy in messaging-activemq subsystem
[WFLY-19326] - LinkageError: loader constraint violation for class io.netty.*
[WFLY-19355] - Deploying multiple OpenAPI endpoints can result in a NoSuchElementException
[WFLY-19366] - OpenTelemetryDependencyProcessor should add io.smallrye.opentelemetry to deployment classpath
TASK:
[WFLY-18217] - Add LICENSE and other community documents to widfly-archetypes
[WFLY-19341] - Make the testsuite/galleon tests appropriately scoped
COMPONENT UPGRADE:
[WFLY-19278] - Upgrade Infinispan to 14.0.28.Final
[WFLY-19279] - Upgrade JGroups to 5.2.25.Final
[WFLY-19353] - Upgrade RESTEasy to 6.2.9.Final
[WFLY-19364] - Upgrade WildFly Core to 24.0.1.Final