GitLab
詳細情報
| タイトル | GitLab |
|---|---|
| URL | https://about.gitlab.com/ |
| バージョン | ver 18.6.2 |
| 更新日 | 2025/12/11 |
| 追加日 | 2016/02/23 |
| 種別 | フリーソフト |
| 説明 | GitHubのようなサービスをローカルで提供することができるGitリポジトリ管理ソフト。 |
レビュー
レビューはありません。
スクリーンショット
スクリーンショットはありません。
更新グラフ
バージョン履歴
## 18.6.2 (2025-12-10)
### Fixed (3 changes)
- [Handle 429s during github LFS import](https://gitlab.com/gitlab-org/security/gitlab/-/commit/de982c5ce9f7cb3d68b487aef4d5770d1ae32fed)
- [Fix partition missing error in project_daily_statistics backfill](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9a2a6f278f822d1fb73336a55696fcf94dca055)
- [Update diff note representation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ad30bf915c8adf50c1ddb56441a61a7a48a9279)
### Changed (2 changes)
- [Fix: Restore branch protection check in cache_suffix_for](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c30a088a7d553805e9c4e7afda52c563c47eb8e6)
- [Ensure LFS imports work correctly with nil revisions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b32e678fe2ddecefd70a9a9823753847a09c20cf)
### Security (10 changes)
- [Hide private project name to unauthorized users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7060745b8ada531cc1445df9afc9fef3d3aef24a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5550))
- [Apply requestBodyUploader to commit creation endpoints](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3bd577e0ee92c19cb9e48d370e215eae6458ebdc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5581))
- [Fix "Total 2FA Bypass for Users"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/887505e8fcfa67bd4f483b68bbdf541e6c1139fc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5573))
- [Add strict validations for dismissal path input](https://gitlab.com/gitlab-org/security/gitlab/-/commit/39a07480e84bf59c161c618e8f2f6d637905596a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5585))
- [Fix merge request delete modal not escaping title](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9fba70dae46e2330d0ff509c6a708c5dd3bd627d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5570))
- [Fixes the logical bug present in the complexity_multiplier method](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2648233caf6d0d58a28c32678d0058c53d0e9a6c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5529))
- [Require correct permissions to access frameworks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/daecb53efb85e3f5a77872f66916aca49971b2c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5540))
- [Stop preserving various exif tags](https://gitlab.com/gitlab-org/security/gitlab/-/commit/83c482c7395eb687001daa4e7a2856acd30cef82) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5532))
## 18.5.4 (2025-12-10)
### Fixed (2 changes)
(省略されました)
### Fixed (3 changes)
- [Handle 429s during github LFS import](https://gitlab.com/gitlab-org/security/gitlab/-/commit/de982c5ce9f7cb3d68b487aef4d5770d1ae32fed)
- [Fix partition missing error in project_daily_statistics backfill](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9a2a6f278f822d1fb73336a55696fcf94dca055)
- [Update diff note representation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ad30bf915c8adf50c1ddb56441a61a7a48a9279)
### Changed (2 changes)
- [Fix: Restore branch protection check in cache_suffix_for](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c30a088a7d553805e9c4e7afda52c563c47eb8e6)
- [Ensure LFS imports work correctly with nil revisions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b32e678fe2ddecefd70a9a9823753847a09c20cf)
### Security (10 changes)
- [Hide private project name to unauthorized users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7060745b8ada531cc1445df9afc9fef3d3aef24a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5550))
- [Apply requestBodyUploader to commit creation endpoints](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3bd577e0ee92c19cb9e48d370e215eae6458ebdc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5581))
- [Fix "Total 2FA Bypass for Users"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/887505e8fcfa67bd4f483b68bbdf541e6c1139fc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5573))
- [Add strict validations for dismissal path input](https://gitlab.com/gitlab-org/security/gitlab/-/commit/39a07480e84bf59c161c618e8f2f6d637905596a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5585))
- [Fix merge request delete modal not escaping title](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9fba70dae46e2330d0ff509c6a708c5dd3bd627d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5570))
- [Fixes the logical bug present in the complexity_multiplier method](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2648233caf6d0d58a28c32678d0058c53d0e9a6c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5529))
- [Require correct permissions to access frameworks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/daecb53efb85e3f5a77872f66916aca49971b2c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5540))
- [Stop preserving various exif tags](https://gitlab.com/gitlab-org/security/gitlab/-/commit/83c482c7395eb687001daa4e7a2856acd30cef82) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5532))
## 18.5.4 (2025-12-10)
### Fixed (2 changes)
(省略されました)
## 18.6.1 (2025-11-25)
### Fixed (3 changes)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ccf15957c87ce3fe5dd6e5ed83bd59c9ea81c876)
- [Fix BackfillTimelogsNamespace finalization order](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4460d317e1c5b8a76406d09d0cfad0f1b56b1b48)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/743ff5eb22638654df2598fa054243606d301cac) **GitLab Enterprise Edition**
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a175db6ae54ee6430a1c87b0e1bc83b5469b257) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5520))
- [Use Gitlab::Json.safe_parse to prevent parsing of large JSON objects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/124790eb84c20cd00b8e05c06f7d514b75bcd3b0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5495))
- [Limit JSON parsing depth, size, and elements in HTTParty](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c83315f5257169a6dce0eb04eb14dc4894915a6e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5504))
- [Add protection suffix to cache depending on role](https://gitlab.com/gitlab-org/security/gitlab/-/commit/44f7d7162660a5dbe506dac85acb7eb47a1ef6a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5483))
## 18.5.3 (2025-11-25)
### Fixed (6 changes)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/72d4caccc77ed4ab55936353f8ed5f1c8fd8f35e) **GitLab Enterprise Edition**
- [Revert "Support nested variables expention in rules:if"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49c0aa322da8a85508a98f0657cf046bbead1a1b)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7627f8b8b2437092c47126761d887810d1b8740f)
- [Relax blobs complexity in favor of limiting data](https://gitlab.com/gitlab-org/security/gitlab/-/commit/26a7f1e8fc314e4a31631c1070e21113fd5750e1)
- [Fix missing gitaly_context forward in BranchPushService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/54b93a422709b4087e0e06d3cbf061e082e05a7a)
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5ed73cbb59f02d20ff64f94b517b016f37ddab42) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5521))
(省略されました)
### Fixed (3 changes)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ccf15957c87ce3fe5dd6e5ed83bd59c9ea81c876)
- [Fix BackfillTimelogsNamespace finalization order](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4460d317e1c5b8a76406d09d0cfad0f1b56b1b48)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/743ff5eb22638654df2598fa054243606d301cac) **GitLab Enterprise Edition**
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a175db6ae54ee6430a1c87b0e1bc83b5469b257) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5520))
- [Use Gitlab::Json.safe_parse to prevent parsing of large JSON objects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/124790eb84c20cd00b8e05c06f7d514b75bcd3b0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5495))
- [Limit JSON parsing depth, size, and elements in HTTParty](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c83315f5257169a6dce0eb04eb14dc4894915a6e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5504))
- [Add protection suffix to cache depending on role](https://gitlab.com/gitlab-org/security/gitlab/-/commit/44f7d7162660a5dbe506dac85acb7eb47a1ef6a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5483))
## 18.5.3 (2025-11-25)
### Fixed (6 changes)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/72d4caccc77ed4ab55936353f8ed5f1c8fd8f35e) **GitLab Enterprise Edition**
- [Revert "Support nested variables expention in rules:if"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49c0aa322da8a85508a98f0657cf046bbead1a1b)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7627f8b8b2437092c47126761d887810d1b8740f)
- [Relax blobs complexity in favor of limiting data](https://gitlab.com/gitlab-org/security/gitlab/-/commit/26a7f1e8fc314e4a31631c1070e21113fd5750e1)
- [Fix missing gitaly_context forward in BranchPushService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/54b93a422709b4087e0e06d3cbf061e082e05a7a)
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5ed73cbb59f02d20ff64f94b517b016f37ddab42) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5521))
(省略されました)
## 18.6.0 (2025-11-19)
### Added (194 changes)
- [Remove bulk_edit_security_attributes feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a9bc7c9b9ae3e7a3b373d68f20b40f732da294f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212651)) **GitLab Enterprise Edition**
- [Document `approvedTools` configuration field for MCP clients](https://gitlab.com/gitlab-org/gitlab/-/commit/0fb581dd5e4c31df67ff87d9356141249895be84) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212064))
- [Enable foundational_duo_planner feature flag by default](https://gitlab.com/gitlab-org/gitlab/-/commit/7c9310df52d1db2f88be4bb76d871249b5e9e086) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212958))
- [Track times the API to refresh token status is used](https://gitlab.com/gitlab-org/gitlab/-/commit/f29bca989fd2e1aaad2561f7e5c9d330c28f06e7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209253)) **GitLab Enterprise Edition**
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/df8d70ed1ec05057709e04cfdf376952d9e628d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212893))
- [Add onboarding error for composite identity](https://gitlab.com/gitlab-org/gitlab/-/commit/d589b8afea41eb8192a90991d6868c5c0ba780e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212618)) **GitLab Enterprise Edition**
- [Allow to filter code suggestions by IDE names](https://gitlab.com/gitlab-org/gitlab/-/commit/31ad60116426ee7d52ec6ff91f936ec4984e8516) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212302)) **GitLab Enterprise Edition**
- [Add metric for active context queue sizes](https://gitlab.com/gitlab-org/gitlab/-/commit/e9b54344f71207be41f5c912337af691dd642414) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212365)) **GitLab Enterprise Edition**
- [PackagesFinder support search by exact name](https://gitlab.com/gitlab-org/gitlab/-/commit/8b682db63ff40a67439249610ba4b18c8156fea1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212615))
- [Add copy ID actions to group and project lists](https://gitlab.com/gitlab-org/gitlab/-/commit/903b3ef6c42f99dfc59d148e0ac3f7b63c2be503) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211512))
- [Rename graphql queries for maven virtual registries](https://gitlab.com/gitlab-org/gitlab/-/commit/cc408b4ac95d964398c997556360dba8153a4a36) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212037))
- [Add agent platform sessions materialized view to clickhouse](https://gitlab.com/gitlab-org/gitlab/-/commit/15a7d3a5f101acc3ba2cb1e3af634235c28c97d6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210808))
- [Remove security_attribute_inventory_filters flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a5026ba8b2ee7255f76262d9831827269ad75b2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212653)) **GitLab Enterprise Edition**
- [Add organization isolation for personal snippets](https://gitlab.com/gitlab-org/gitlab/-/commit/c7a6a0e09d68ed033c1cfd820e3858905e9c56d2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210630))
- [Support default scope for search](https://gitlab.com/gitlab-org/gitlab/-/commit/1f2e5bd791457565925025cd20b80d757f92ab95) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212481))
- [Add security scan profiles table](https://gitlab.com/gitlab-org/gitlab/-/commit/a2ac9c35477778f324fb2c40a02f4d44e8b9bcee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211336))
- [Add composite identity to token revoke service](https://gitlab.com/gitlab-org/gitlab/-/commit/f483c4b8555557568e9e228aaf5a7cd9fa51da87) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212564)) **GitLab Enterprise Edition**
(省略されました)
### Added (194 changes)
- [Remove bulk_edit_security_attributes feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a9bc7c9b9ae3e7a3b373d68f20b40f732da294f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212651)) **GitLab Enterprise Edition**
- [Document `approvedTools` configuration field for MCP clients](https://gitlab.com/gitlab-org/gitlab/-/commit/0fb581dd5e4c31df67ff87d9356141249895be84) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212064))
- [Enable foundational_duo_planner feature flag by default](https://gitlab.com/gitlab-org/gitlab/-/commit/7c9310df52d1db2f88be4bb76d871249b5e9e086) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212958))
- [Track times the API to refresh token status is used](https://gitlab.com/gitlab-org/gitlab/-/commit/f29bca989fd2e1aaad2561f7e5c9d330c28f06e7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209253)) **GitLab Enterprise Edition**
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/df8d70ed1ec05057709e04cfdf376952d9e628d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212893))
- [Add onboarding error for composite identity](https://gitlab.com/gitlab-org/gitlab/-/commit/d589b8afea41eb8192a90991d6868c5c0ba780e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212618)) **GitLab Enterprise Edition**
- [Allow to filter code suggestions by IDE names](https://gitlab.com/gitlab-org/gitlab/-/commit/31ad60116426ee7d52ec6ff91f936ec4984e8516) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212302)) **GitLab Enterprise Edition**
- [Add metric for active context queue sizes](https://gitlab.com/gitlab-org/gitlab/-/commit/e9b54344f71207be41f5c912337af691dd642414) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212365)) **GitLab Enterprise Edition**
- [PackagesFinder support search by exact name](https://gitlab.com/gitlab-org/gitlab/-/commit/8b682db63ff40a67439249610ba4b18c8156fea1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212615))
- [Add copy ID actions to group and project lists](https://gitlab.com/gitlab-org/gitlab/-/commit/903b3ef6c42f99dfc59d148e0ac3f7b63c2be503) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211512))
- [Rename graphql queries for maven virtual registries](https://gitlab.com/gitlab-org/gitlab/-/commit/cc408b4ac95d964398c997556360dba8153a4a36) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212037))
- [Add agent platform sessions materialized view to clickhouse](https://gitlab.com/gitlab-org/gitlab/-/commit/15a7d3a5f101acc3ba2cb1e3af634235c28c97d6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210808))
- [Remove security_attribute_inventory_filters flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a5026ba8b2ee7255f76262d9831827269ad75b2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212653)) **GitLab Enterprise Edition**
- [Add organization isolation for personal snippets](https://gitlab.com/gitlab-org/gitlab/-/commit/c7a6a0e09d68ed033c1cfd820e3858905e9c56d2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210630))
- [Support default scope for search](https://gitlab.com/gitlab-org/gitlab/-/commit/1f2e5bd791457565925025cd20b80d757f92ab95) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212481))
- [Add security scan profiles table](https://gitlab.com/gitlab-org/gitlab/-/commit/a2ac9c35477778f324fb2c40a02f4d44e8b9bcee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211336))
- [Add composite identity to token revoke service](https://gitlab.com/gitlab-org/gitlab/-/commit/f483c4b8555557568e9e228aaf5a7cd9fa51da87) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212564)) **GitLab Enterprise Edition**
(省略されました)
## 18.5.2 (2025-11-11)
### Fixed (10 changes)
- [Fix test failure by adjusting dates to match partition range](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7a43d4b3eed4e6730269fc18e78459ec711c913a)
- [Fix background migration when Ghost user is missing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2d51659333e0ba46b24ba208f7e1ea6e31817ea1)
- [Downgrade Zeitwerk to 2.6.18](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b620e65bb65b810fe62d962ada488ec924ffe271)
- [Allow Legacy FIPS instances to Upgrade Oauth secerets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1baa80bb05b379a516b2a3971f34e1ad9078fae7)
- [Fix the zoekt filters caching](https://gitlab.com/gitlab-org/security/gitlab/-/commit/63be8de02b236411b9d18176f37dc5c68a009251) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209798)) **GitLab Enterprise Edition**
- [Web Agentic Chat: fix calling workflowGoal on undefined](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebfa262932b64f78b31e7282e1f62db0cb9d7936) **GitLab Enterprise Edition**
- [Add deleted Geo migration back](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cf8c43b60180ab370b6c42a22eeea643daf8a97d) **GitLab Enterprise Edition**
- [Fix password validation exception for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/463c5aec8f33c3e9094fc5f47e831b3a97436741)
- [Fix admin_project_member policy SAML projects user namespaces](https://gitlab.com/gitlab-org/security/gitlab/-/commit/38414b0e0222f9d4cc58f090668121cd1409b383) **GitLab Enterprise Edition**
### Security (8 changes)
- [Security fix package api pipeline details](https://gitlab.com/gitlab-org/security/gitlab/-/commit/68646fa1ebff4180ee1fcc438f12a151bbf766c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5424))
- [Group enforced pages access control should restrict non-members](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8264a0d7c6a1b401aeee164e99727e446c3f2a2b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5440))
- [Update to gitlab-glfm-markdown 0.0.38](https://gitlab.com/gitlab-org/security/gitlab/-/commit/81de1960f41aecfd105644c11ab3c969a88ed8ad) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5461))
- [Encode protected branch names in API requests](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1aeb7601fe42c19b10c8d2a9408bf9ae88814935) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5456))
- [Prevent GraphQL subscriptions from blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/42843be77904596c58dd3168f408929432e0a3ed) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5430))
- [Prevent Duo Chat from reading confidential resources](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2a92aab1af9f57cf37175728888779bd0cab419) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5437))
- [Hide related branches when repository is private](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7957c6aaa3dda67c4ce7b236f0de1c19c34f8b47) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5434))
(省略されました)
### Fixed (10 changes)
- [Fix test failure by adjusting dates to match partition range](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7a43d4b3eed4e6730269fc18e78459ec711c913a)
- [Fix background migration when Ghost user is missing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2d51659333e0ba46b24ba208f7e1ea6e31817ea1)
- [Downgrade Zeitwerk to 2.6.18](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b620e65bb65b810fe62d962ada488ec924ffe271)
- [Allow Legacy FIPS instances to Upgrade Oauth secerets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1baa80bb05b379a516b2a3971f34e1ad9078fae7)
- [Fix the zoekt filters caching](https://gitlab.com/gitlab-org/security/gitlab/-/commit/63be8de02b236411b9d18176f37dc5c68a009251) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209798)) **GitLab Enterprise Edition**
- [Web Agentic Chat: fix calling workflowGoal on undefined](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebfa262932b64f78b31e7282e1f62db0cb9d7936) **GitLab Enterprise Edition**
- [Add deleted Geo migration back](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cf8c43b60180ab370b6c42a22eeea643daf8a97d) **GitLab Enterprise Edition**
- [Fix password validation exception for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/463c5aec8f33c3e9094fc5f47e831b3a97436741)
- [Fix admin_project_member policy SAML projects user namespaces](https://gitlab.com/gitlab-org/security/gitlab/-/commit/38414b0e0222f9d4cc58f090668121cd1409b383) **GitLab Enterprise Edition**
### Security (8 changes)
- [Security fix package api pipeline details](https://gitlab.com/gitlab-org/security/gitlab/-/commit/68646fa1ebff4180ee1fcc438f12a151bbf766c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5424))
- [Group enforced pages access control should restrict non-members](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8264a0d7c6a1b401aeee164e99727e446c3f2a2b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5440))
- [Update to gitlab-glfm-markdown 0.0.38](https://gitlab.com/gitlab-org/security/gitlab/-/commit/81de1960f41aecfd105644c11ab3c969a88ed8ad) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5461))
- [Encode protected branch names in API requests](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1aeb7601fe42c19b10c8d2a9408bf9ae88814935) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5456))
- [Prevent GraphQL subscriptions from blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/42843be77904596c58dd3168f408929432e0a3ed) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5430))
- [Prevent Duo Chat from reading confidential resources](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2a92aab1af9f57cf37175728888779bd0cab419) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5437))
- [Hide related branches when repository is private](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7957c6aaa3dda67c4ce7b236f0de1c19c34f8b47) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5434))
(省略されました)
## 18.5.1 (2025-10-21)
### Fixed (2 changes)
- [Fix connection pool errors when health check is running](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7852a9fa8c852ff2a949ea8f4ea46026418fc1dd)
- [Downgrade redis-rb gem to v5.4.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c5c44135b4ac722173fc343718828d0cce06fa53)
### Security (7 changes)
- [Ensure NPM upload cannot exceed plan limit](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a863e7d2cd55e6e0ec7c583cfb83ee5b2292c1eb) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5427))
- [Limit JSON request payload for /-/collect_events](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2c0995e8c27b0c71aff275bc53d15ecc375dcb5c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5403))
- [Track pull mirror updates using gitaly_context](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d702910abf4e2c45f0bf34ec0cd2ca4845ed4a0d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5410))
- [Reject quick actions for ai_workflows scope](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b1a7d090f334e2f584097746e85b4d0b3b32512e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5409))
- [Use CE policy for runner ability check](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8ccd23988915716dfd7682b3b2e2339f049c136a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5413))
- [Limit depth, size and total elements when parsing JSON string](https://gitlab.com/gitlab-org/security/gitlab/-/commit/137c1b88a25e5b00025fc43ad3609ab021d83222) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5406))
## 18.4.3 (2025-10-21)
### Fixed (5 changes)
- [Fix connection pool errors when health check is running](https://gitlab.com/gitlab-org/security/gitlab/-/commit/53f5d29c93ea36cd6f1f6f8c4ccb4a144a53a239)
- [Downgrade redis-rb gem to v5.4.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3fb24f782beb8708fc8e156e3cd8d5ec38f2613b)
- [Fix zoekt search for API when elasticsearch is disable](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5945f19d1b94d2882faf8c889917f64490db28e5) ([merge request](https://gitilab.com/gitlab-org/gitlab/-/merge_requests/208124))
- [Fix the undefined method id for nil:NilClass in WorkItem](https://gitlab.com/gitlab-org/security/gitlab/-/commit/400938e318bc34ce3bc90f1ff9c3bd21c8ddb868) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208091))
- [Revert discarded database pool check in load balancer](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2c146b05834027cd1fb1dd97f010d108149d33a9)
### Security (7 changes)
(省略されました)
### Fixed (2 changes)
- [Fix connection pool errors when health check is running](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7852a9fa8c852ff2a949ea8f4ea46026418fc1dd)
- [Downgrade redis-rb gem to v5.4.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c5c44135b4ac722173fc343718828d0cce06fa53)
### Security (7 changes)
- [Ensure NPM upload cannot exceed plan limit](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a863e7d2cd55e6e0ec7c583cfb83ee5b2292c1eb) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5427))
- [Limit JSON request payload for /-/collect_events](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2c0995e8c27b0c71aff275bc53d15ecc375dcb5c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5403))
- [Track pull mirror updates using gitaly_context](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d702910abf4e2c45f0bf34ec0cd2ca4845ed4a0d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5410))
- [Reject quick actions for ai_workflows scope](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b1a7d090f334e2f584097746e85b4d0b3b32512e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5409))
- [Use CE policy for runner ability check](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8ccd23988915716dfd7682b3b2e2339f049c136a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5413))
- [Limit depth, size and total elements when parsing JSON string](https://gitlab.com/gitlab-org/security/gitlab/-/commit/137c1b88a25e5b00025fc43ad3609ab021d83222) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5406))
## 18.4.3 (2025-10-21)
### Fixed (5 changes)
- [Fix connection pool errors when health check is running](https://gitlab.com/gitlab-org/security/gitlab/-/commit/53f5d29c93ea36cd6f1f6f8c4ccb4a144a53a239)
- [Downgrade redis-rb gem to v5.4.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3fb24f782beb8708fc8e156e3cd8d5ec38f2613b)
- [Fix zoekt search for API when elasticsearch is disable](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5945f19d1b94d2882faf8c889917f64490db28e5) ([merge request](https://gitilab.com/gitlab-org/gitlab/-/merge_requests/208124))
- [Fix the undefined method id for nil:NilClass in WorkItem](https://gitlab.com/gitlab-org/security/gitlab/-/commit/400938e318bc34ce3bc90f1ff9c3bd21c8ddb868) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208091))
- [Revert discarded database pool check in load balancer](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2c146b05834027cd1fb1dd97f010d108149d33a9)
### Security (7 changes)
(省略されました)
## 18.5.0 (2025-10-15)
### Added (178 changes)
- [Migrate WorkItemBulkMove to use shared projects query](https://gitlab.com/gitlab-org/gitlab/-/commit/39709cf894c4fb83605e78c413ece1190807f34e) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208583))
- [Add download route for Attestations](https://gitlab.com/gitlab-org/gitlab/-/commit/e74511d404b9fec7e057b7a0f8cc44f14a334eea) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207917))
- [Persist and surface prefilled variables from PEP](https://gitlab.com/gitlab-org/gitlab/-/commit/8e55da7ee05f61cdefebda0c0bab26ba2462ab26) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207861)) **GitLab Enterprise Edition**
- [Rollout security_inventory_filtering feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/b2e09eff8ac25285c43365a5ef5e69dbf0286855) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208460)) **GitLab Enterprise Edition**
- [Queueing Background operations](https://gitlab.com/gitlab-org/gitlab/-/commit/63b75906077e2de7ca62596862da218c232254f4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207241))
- [Add clear upstream cache functionality to Maven upstreams list](https://gitlab.com/gitlab-org/gitlab/-/commit/679eca47bc1ec730f19a07387e3029387850cb33) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208049))
- [Prevent connection check if no url is provided](https://gitlab.com/gitlab-org/gitlab/-/commit/d6d0d242d8eac7ad7a0536e1f5965b785ec6114c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204582))
- [Added header integration](https://gitlab.com/gitlab-org/gitlab/-/commit/048f3cf67596be9f2bf585258686b986ba675040) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207129)) **GitLab Enterprise Edition**
- [Add model metadata to geo helper](https://gitlab.com/gitlab-org/gitlab/-/commit/c8df63a4ecc81c5a5e09b03580dd92f03992fc74) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207281)) **GitLab Enterprise Edition**
- [Add `Code generation volume trends` chart](https://gitlab.com/gitlab-org/gitlab/-/commit/fa95a0a6f9c859c936d5d321cf26a77d0c2687a3) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207924)) **GitLab Enterprise Edition**
- [Add latest flag loading to graphql request](https://gitlab.com/gitlab-org/gitlab/-/commit/1db1019632745dbac43c54ebece739002b210ceb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207477)) **GitLab Enterprise Edition**
- [Extend runner job metadata with user and project context](https://gitlab.com/gitlab-org/gitlab/-/commit/45011605485b3be4cbcc51b8cc1f83d3bdb1f1e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/206700))
- [Enable `work_item_status_mvc2` by default](https://gitlab.com/gitlab-org/gitlab/-/commit/4ea2ef271211ee178dd22abe7af3fea8976fcc9b) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207570))
- [Add experiment to manage stage inject strategy](https://gitlab.com/gitlab-org/gitlab/-/commit/5dd577cdd04afcac229de009b17bd266007bb3fa) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207175)) **GitLab Enterprise Edition**
- [Add API endpoint to store SAST FP detection results](https://gitlab.com/gitlab-org/gitlab/-/commit/61ba69ff61ccc813e68b82e0141eaa345f1ab628) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207592)) **GitLab Enterprise Edition**
- [Drop invalid rows from security_trainings table](https://gitlab.com/gitlab-org/gitlab/-/commit/116bf61794b6b1939d72f539ef9ac3a26ab36376) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207080))
- [Requeue security inventory filters backfill](https://gitlab.com/gitlab-org/gitlab/-/commit/53a9e2e6977f81cf3fee6c14d9273723efdf5f0c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208111)) **GitLab Enterprise Edition**
(省略されました)
### Added (178 changes)
- [Migrate WorkItemBulkMove to use shared projects query](https://gitlab.com/gitlab-org/gitlab/-/commit/39709cf894c4fb83605e78c413ece1190807f34e) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208583))
- [Add download route for Attestations](https://gitlab.com/gitlab-org/gitlab/-/commit/e74511d404b9fec7e057b7a0f8cc44f14a334eea) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207917))
- [Persist and surface prefilled variables from PEP](https://gitlab.com/gitlab-org/gitlab/-/commit/8e55da7ee05f61cdefebda0c0bab26ba2462ab26) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207861)) **GitLab Enterprise Edition**
- [Rollout security_inventory_filtering feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/b2e09eff8ac25285c43365a5ef5e69dbf0286855) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208460)) **GitLab Enterprise Edition**
- [Queueing Background operations](https://gitlab.com/gitlab-org/gitlab/-/commit/63b75906077e2de7ca62596862da218c232254f4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207241))
- [Add clear upstream cache functionality to Maven upstreams list](https://gitlab.com/gitlab-org/gitlab/-/commit/679eca47bc1ec730f19a07387e3029387850cb33) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208049))
- [Prevent connection check if no url is provided](https://gitlab.com/gitlab-org/gitlab/-/commit/d6d0d242d8eac7ad7a0536e1f5965b785ec6114c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204582))
- [Added header integration](https://gitlab.com/gitlab-org/gitlab/-/commit/048f3cf67596be9f2bf585258686b986ba675040) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207129)) **GitLab Enterprise Edition**
- [Add model metadata to geo helper](https://gitlab.com/gitlab-org/gitlab/-/commit/c8df63a4ecc81c5a5e09b03580dd92f03992fc74) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207281)) **GitLab Enterprise Edition**
- [Add `Code generation volume trends` chart](https://gitlab.com/gitlab-org/gitlab/-/commit/fa95a0a6f9c859c936d5d321cf26a77d0c2687a3) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207924)) **GitLab Enterprise Edition**
- [Add latest flag loading to graphql request](https://gitlab.com/gitlab-org/gitlab/-/commit/1db1019632745dbac43c54ebece739002b210ceb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207477)) **GitLab Enterprise Edition**
- [Extend runner job metadata with user and project context](https://gitlab.com/gitlab-org/gitlab/-/commit/45011605485b3be4cbcc51b8cc1f83d3bdb1f1e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/206700))
- [Enable `work_item_status_mvc2` by default](https://gitlab.com/gitlab-org/gitlab/-/commit/4ea2ef271211ee178dd22abe7af3fea8976fcc9b) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207570))
- [Add experiment to manage stage inject strategy](https://gitlab.com/gitlab-org/gitlab/-/commit/5dd577cdd04afcac229de009b17bd266007bb3fa) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207175)) **GitLab Enterprise Edition**
- [Add API endpoint to store SAST FP detection results](https://gitlab.com/gitlab-org/gitlab/-/commit/61ba69ff61ccc813e68b82e0141eaa345f1ab628) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207592)) **GitLab Enterprise Edition**
- [Drop invalid rows from security_trainings table](https://gitlab.com/gitlab-org/gitlab/-/commit/116bf61794b6b1939d72f539ef9ac3a26ab36376) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/207080))
- [Requeue security inventory filters backfill](https://gitlab.com/gitlab-org/gitlab/-/commit/53a9e2e6977f81cf3fee6c14d9273723efdf5f0c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/208111)) **GitLab Enterprise Edition**
(省略されました)
## 18.4.2 (2025-10-08)
### Added (1 change)
- [Remove check_f02a3f53bf not null constraint](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8286ade8d801ab80891f81defc627839a4d86e20)
### Fixed (3 changes)
- [Prevent session creation for sessionless users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f88c1242f0a8e5e9f13a187755568d0545f69305)
- [Remove non Saas instances from calling CDOT for trial duration](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6ba5b24afb192c042cf67be4bb85c0dc306db143) **GitLab Enterprise Edition**
- [Transfer start and due dates data upon work item move or clone](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9025e065d671143b547126269c775d52102b9775)
### Security (5 changes)
- [Log JSON bytesize as well](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b6b5c289d3183019524e5604c25f431cf45682c2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5388))
- [Adjust complexity for blob data fields](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49554246af3e45202ca7c32e0a0273f13421eb8a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5384))
- [Some mutations have read_api scope](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5714b2f3c9411e709d6abcb0896b34a208798d1b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5370))
- [Reject irrelevant 1xx responses](https://gitlab.com/gitlab-org/security/gitlab/-/commit/390f4fddbb5a778dbd52a9647bf22ab52ee8478e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5332))
- [Restrict manual variables to explicit guests in internal projects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/446b25ac5e3e9c02c49f26a1da31ba108c0bdd23) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5366))
## 18.3.4 (2025-10-08)
### Fixed (2 changes)
- [Remove non Saas instances from calling CDOT for trial duration](https://gitlab.com/gitlab-org/security/gitlab/-/commit/764210b1790db3e4984ecbd404f211c0668af1a4) **GitLab Enterprise Edition**
- [Transfer start and due dates data upon work item move or clone](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ec7a2082e1229aa64d0b1529135f2fb209ba656d)
### Security (5 changes)
- [Log JSON bytesize as well](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bd818dff7bb196ba52e428e8a90eb33869f60fa2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5389))
(省略されました)
### Added (1 change)
- [Remove check_f02a3f53bf not null constraint](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8286ade8d801ab80891f81defc627839a4d86e20)
### Fixed (3 changes)
- [Prevent session creation for sessionless users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f88c1242f0a8e5e9f13a187755568d0545f69305)
- [Remove non Saas instances from calling CDOT for trial duration](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6ba5b24afb192c042cf67be4bb85c0dc306db143) **GitLab Enterprise Edition**
- [Transfer start and due dates data upon work item move or clone](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9025e065d671143b547126269c775d52102b9775)
### Security (5 changes)
- [Log JSON bytesize as well](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b6b5c289d3183019524e5604c25f431cf45682c2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5388))
- [Adjust complexity for blob data fields](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49554246af3e45202ca7c32e0a0273f13421eb8a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5384))
- [Some mutations have read_api scope](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5714b2f3c9411e709d6abcb0896b34a208798d1b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5370))
- [Reject irrelevant 1xx responses](https://gitlab.com/gitlab-org/security/gitlab/-/commit/390f4fddbb5a778dbd52a9647bf22ab52ee8478e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5332))
- [Restrict manual variables to explicit guests in internal projects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/446b25ac5e3e9c02c49f26a1da31ba108c0bdd23) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5366))
## 18.3.4 (2025-10-08)
### Fixed (2 changes)
- [Remove non Saas instances from calling CDOT for trial duration](https://gitlab.com/gitlab-org/security/gitlab/-/commit/764210b1790db3e4984ecbd404f211c0668af1a4) **GitLab Enterprise Edition**
- [Transfer start and due dates data upon work item move or clone](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ec7a2082e1229aa64d0b1529135f2fb209ba656d)
### Security (5 changes)
- [Log JSON bytesize as well](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bd818dff7bb196ba52e428e8a90eb33869f60fa2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5389))
(省略されました)
## 18.4.1 (2025-09-25)
### Fixed (2 changes)
- [Use isUnsafeLink for xcode protocol](https://gitlab.com/gitlab-org/security/gitlab/-/commit/199dbffae5d6ed7063d73b557b3b1d9d06d88968)
- [Optimize HandleMalformedStrings middleware for CPU and memory](https://gitlab.com/gitlab-org/security/gitlab/-/commit/98da626e12117aff71d135ff2c9ca543a2e8b313)
### Security (10 changes)
- [Add JSON input streaming validator middleware](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e5df969d80cc69a5c3dc0fee932047f08c65a0c1) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5349))
- [Addresses logical bug in the GraphQL base resolver](https://gitlab.com/gitlab-org/security/gitlab/-/commit/48ac9ce9606c742ca94056b94da1d8ea641e8977) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5313))
- [Escape text for wrapNodes utility](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4eb2db6fddf376e187e759871ccc1f5aed1b93d7) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5326))
- [Add the rate limit in BlobSearch GraphQL](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5d8dda684434da9b5f3e6aee195241cacea04cb5) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5335))
- [Prevent role assignment for custom roles in projects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c377c525426063425a076c6cfcba86d9fa35638b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5337))
- [Only owners can invite groups](https://gitlab.com/gitlab-org/security/gitlab/-/commit/068d6e200bf2ac6eaa2e68d2ef349228376d7539) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5334))
- [Add limit to array fields in WorkItems API](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a7c51c9588bc2f8a87a57d85f871f2332c8bb312) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5325))
- [Limit String => Integer conversions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2db8dad6d85dffbb9ca30bc8ecb42146b6a12d3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5324))
- [Removes password field from maven upstream GraphQL type](https://gitlab.com/gitlab-org/security/gitlab/-/commit/27a5700b6152d22b08735480d7d118c77dee58de) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5330))
## 18.3.3 (2025-09-25)
### Added (1 change)
- [Add job project claims to CI ID Tokens](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f2fbc42345c2b907c7b3a8f9988972117199788f)
### Fixed (7 changes)
- [Use isUnsafeLink for xcode protocol](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cceeb02fd87dea5260935ca6dc485eb8de0b62c0)
(省略されました)
### Fixed (2 changes)
- [Use isUnsafeLink for xcode protocol](https://gitlab.com/gitlab-org/security/gitlab/-/commit/199dbffae5d6ed7063d73b557b3b1d9d06d88968)
- [Optimize HandleMalformedStrings middleware for CPU and memory](https://gitlab.com/gitlab-org/security/gitlab/-/commit/98da626e12117aff71d135ff2c9ca543a2e8b313)
### Security (10 changes)
- [Add JSON input streaming validator middleware](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e5df969d80cc69a5c3dc0fee932047f08c65a0c1) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5349))
- [Addresses logical bug in the GraphQL base resolver](https://gitlab.com/gitlab-org/security/gitlab/-/commit/48ac9ce9606c742ca94056b94da1d8ea641e8977) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5313))
- [Escape text for wrapNodes utility](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4eb2db6fddf376e187e759871ccc1f5aed1b93d7) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5326))
- [Add the rate limit in BlobSearch GraphQL](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5d8dda684434da9b5f3e6aee195241cacea04cb5) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5335))
- [Prevent role assignment for custom roles in projects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c377c525426063425a076c6cfcba86d9fa35638b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5337))
- [Only owners can invite groups](https://gitlab.com/gitlab-org/security/gitlab/-/commit/068d6e200bf2ac6eaa2e68d2ef349228376d7539) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5334))
- [Add limit to array fields in WorkItems API](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a7c51c9588bc2f8a87a57d85f871f2332c8bb312) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5325))
- [Limit String => Integer conversions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2db8dad6d85dffbb9ca30bc8ecb42146b6a12d3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5324))
- [Removes password field from maven upstream GraphQL type](https://gitlab.com/gitlab-org/security/gitlab/-/commit/27a5700b6152d22b08735480d7d118c77dee58de) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5330))
## 18.3.3 (2025-09-25)
### Added (1 change)
- [Add job project claims to CI ID Tokens](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f2fbc42345c2b907c7b3a8f9988972117199788f)
### Fixed (7 changes)
- [Use isUnsafeLink for xcode protocol](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cceeb02fd87dea5260935ca6dc485eb8de0b62c0)
(省略されました)
## 18.4.0 (2025-09-17)
### Added (149 changes)
- [Handle IP ranges in the IP validation](https://gitlab.com/gitlab-org/gitlab/-/commit/fb82ac4e01c36c208307dc15180586ba17913aee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204334))
- [Fix breadcrumb navigation for work items in project issues](https://gitlab.com/gitlab-org/gitlab/-/commit/6c29ffc76a5af702752ec93a618b681c60432d32) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204335))
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/96a61fd4c42ac455e7ae4223db503b2cd0c6144a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/205000))
- [Add “Reformat table” to More options menu in PTE](https://gitlab.com/gitlab-org/gitlab/-/commit/89db5d606ef408cd66b591fd1af77c95a49f1931) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201392))
- [Add agent selection dropdown for agentic chat](https://gitlab.com/gitlab-org/gitlab/-/commit/a68f6f4f05eb1c7773ca18bbae68ee29f8157755) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204075)) **GitLab Enterprise Edition**
- [Add webPath and editPath to group and project GraphQL types](https://gitlab.com/gitlab-org/gitlab/-/commit/682783046b849e9259d96faac16429c2baa91dab) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203935))
- [Resolve status by mapping](https://gitlab.com/gitlab-org/gitlab/-/commit/b698844cf40100ec1982c746ef83be128f931fad) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204229)) **GitLab Enterprise Edition**
- [Use new import by url UI when feature flag enabled](https://gitlab.com/gitlab-org/gitlab/-/commit/78013637dff0568786f6510ad5b4f1832f6de534) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201202))
- [Geo Replicables: Resync all failed registries](https://gitlab.com/gitlab-org/gitlab/-/commit/f5045c92c4070724560e0df69eec87c9c5d6f75a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204282)) **GitLab Enterprise Edition**
- [Add project to attributes update service](https://gitlab.com/gitlab-org/gitlab/-/commit/59b7b15136356b1cad0cc5a0cd4a14d21b7e32bb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203149)) **GitLab Enterprise Edition**
- [Add GraphQL mutation to undo keep as placeholder](https://gitlab.com/gitlab-org/gitlab/-/commit/9b3e61b4242ea1cf2430f10fc2de515b405fef7d) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204272))
- [Include approved_at timestamp in approvals API response](https://gitlab.com/gitlab-org/gitlab/-/commit/bffe907f00459321c11398dd7edfa1d25c9e9420) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204605))
- [Add security report time window to MR approval policy](https://gitlab.com/gitlab-org/gitlab/-/commit/18d0ddd7d9954db5e3ec4faf523c9b9d6326b2b7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204521)) **GitLab Enterprise Edition**
- [Create the lease_outstanding table](https://gitlab.com/gitlab-org/gitlab/-/commit/a163d57cbcf2ba341b37a74586913ca5e0df8ae2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203567))
- [Add name filter to workItemAllowedStatuses field](https://gitlab.com/gitlab-org/gitlab/-/commit/bb6de20f26a078150b50c7a6a4e1bd7caf2cb71c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204616)) **GitLab Enterprise Edition**
- [Add spdx or custom_license constraint to software_license_policies](https://gitlab.com/gitlab-org/gitlab/-/commit/cb2bc472504fb96077925930fd85d28999b6b81c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201975))
- [Add category create and update mutations](https://gitlab.com/gitlab-org/gitlab/-/commit/0a269169c0ede40bb089c61a24d81e3520369c0f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/202652)) **GitLab Enterprise Edition**
(省略されました)
### Added (149 changes)
- [Handle IP ranges in the IP validation](https://gitlab.com/gitlab-org/gitlab/-/commit/fb82ac4e01c36c208307dc15180586ba17913aee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204334))
- [Fix breadcrumb navigation for work items in project issues](https://gitlab.com/gitlab-org/gitlab/-/commit/6c29ffc76a5af702752ec93a618b681c60432d32) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204335))
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/96a61fd4c42ac455e7ae4223db503b2cd0c6144a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/205000))
- [Add “Reformat table” to More options menu in PTE](https://gitlab.com/gitlab-org/gitlab/-/commit/89db5d606ef408cd66b591fd1af77c95a49f1931) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201392))
- [Add agent selection dropdown for agentic chat](https://gitlab.com/gitlab-org/gitlab/-/commit/a68f6f4f05eb1c7773ca18bbae68ee29f8157755) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204075)) **GitLab Enterprise Edition**
- [Add webPath and editPath to group and project GraphQL types](https://gitlab.com/gitlab-org/gitlab/-/commit/682783046b849e9259d96faac16429c2baa91dab) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203935))
- [Resolve status by mapping](https://gitlab.com/gitlab-org/gitlab/-/commit/b698844cf40100ec1982c746ef83be128f931fad) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204229)) **GitLab Enterprise Edition**
- [Use new import by url UI when feature flag enabled](https://gitlab.com/gitlab-org/gitlab/-/commit/78013637dff0568786f6510ad5b4f1832f6de534) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201202))
- [Geo Replicables: Resync all failed registries](https://gitlab.com/gitlab-org/gitlab/-/commit/f5045c92c4070724560e0df69eec87c9c5d6f75a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204282)) **GitLab Enterprise Edition**
- [Add project to attributes update service](https://gitlab.com/gitlab-org/gitlab/-/commit/59b7b15136356b1cad0cc5a0cd4a14d21b7e32bb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203149)) **GitLab Enterprise Edition**
- [Add GraphQL mutation to undo keep as placeholder](https://gitlab.com/gitlab-org/gitlab/-/commit/9b3e61b4242ea1cf2430f10fc2de515b405fef7d) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204272))
- [Include approved_at timestamp in approvals API response](https://gitlab.com/gitlab-org/gitlab/-/commit/bffe907f00459321c11398dd7edfa1d25c9e9420) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204605))
- [Add security report time window to MR approval policy](https://gitlab.com/gitlab-org/gitlab/-/commit/18d0ddd7d9954db5e3ec4faf523c9b9d6326b2b7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204521)) **GitLab Enterprise Edition**
- [Create the lease_outstanding table](https://gitlab.com/gitlab-org/gitlab/-/commit/a163d57cbcf2ba341b37a74586913ca5e0df8ae2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/203567))
- [Add name filter to workItemAllowedStatuses field](https://gitlab.com/gitlab-org/gitlab/-/commit/bb6de20f26a078150b50c7a6a4e1bd7caf2cb71c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/204616)) **GitLab Enterprise Edition**
- [Add spdx or custom_license constraint to software_license_policies](https://gitlab.com/gitlab-org/gitlab/-/commit/cb2bc472504fb96077925930fd85d28999b6b81c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/201975))
- [Add category create and update mutations](https://gitlab.com/gitlab-org/gitlab/-/commit/0a269169c0ede40bb089c61a24d81e3520369c0f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/202652)) **GitLab Enterprise Edition**
(省略されました)
## 18.3.2 (2025-09-09)
### Added (1 change)
- [Add Compare link to submodule diffs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2f6ecb3f3443b4cd710d59d5bda31ac1475a90f0)
### Fixed (9 changes)
- [Backport comment suggestion line range fix to 18-3](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b6ab76b225017a1e5046a11bc4456a918b76a66c)
- [Update gitlab-shell to v14.45.2 to allow ED25519 for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/497cc999266226f1a61b5eac3ff87014e313bd4a)
- [Make FileLocationType.endLine nullable](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eabd8d768f54de8c43a8206d272da2dfe82369f2) **GitLab Enterprise Edition**
- [Preserve the exact string representation of the URI](https://gitlab.com/gitlab-org/security/gitlab/-/commit/edc490fcb992e0ca351050beed0397331bb35162) **GitLab Enterprise Edition**
- [Fix nil error in Gitlab:Auth:IpRateLimiter](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6f1d8f3ec3841790aeb1d440122f89ffe8acc00e)
- [Display MCP in General settings of root groups for SM instances](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3abe94466b6ee1c99962d42400da46513d1b5e94)
- [Fix shared group access for advanced code search](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6bc61a1551d9a3c7b4df2c1d19efd33a7fd3f0c6) **GitLab Enterprise Edition**
- [Fix webauthn authentication in Firefox](https://gitlab.com/gitlab-org/security/gitlab/-/commit/05b92aeca1cf8590ae070e3c3d5ad5f12a7130ad)
- [Update gitlab-shell to v14.45.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8f040315eb5b3a09c19957fb1697b7e764ff9e6b)
### Security (6 changes)
- [Introduce limit for closed issues](https://gitlab.com/gitlab-org/security/gitlab/-/commit/00b2bd3e6a02e544918f4d604d64c8a5ab4832a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5257))
- [Add file size limit for blob editing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4db58c8cb370d31f5c93543bd6c533106c420182) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5296))
- [Fix DoS via large SAML Response](https://gitlab.com/gitlab-org/security/gitlab/-/commit/52602fdd1094a9ca30603ca01be44093799a52e3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5263))
- [Add limit to deploy token name](https://gitlab.com/gitlab-org/security/gitlab/-/commit/df2340492a220a11f9fdebfd54df25be0c6e6d38) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5299))
- [Fix webhook custom header validation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d80e590444fcee5ed0d747b83f4d051b1b8be218) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5292))
(省略されました)
### Added (1 change)
- [Add Compare link to submodule diffs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2f6ecb3f3443b4cd710d59d5bda31ac1475a90f0)
### Fixed (9 changes)
- [Backport comment suggestion line range fix to 18-3](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b6ab76b225017a1e5046a11bc4456a918b76a66c)
- [Update gitlab-shell to v14.45.2 to allow ED25519 for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/497cc999266226f1a61b5eac3ff87014e313bd4a)
- [Make FileLocationType.endLine nullable](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eabd8d768f54de8c43a8206d272da2dfe82369f2) **GitLab Enterprise Edition**
- [Preserve the exact string representation of the URI](https://gitlab.com/gitlab-org/security/gitlab/-/commit/edc490fcb992e0ca351050beed0397331bb35162) **GitLab Enterprise Edition**
- [Fix nil error in Gitlab:Auth:IpRateLimiter](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6f1d8f3ec3841790aeb1d440122f89ffe8acc00e)
- [Display MCP in General settings of root groups for SM instances](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3abe94466b6ee1c99962d42400da46513d1b5e94)
- [Fix shared group access for advanced code search](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6bc61a1551d9a3c7b4df2c1d19efd33a7fd3f0c6) **GitLab Enterprise Edition**
- [Fix webauthn authentication in Firefox](https://gitlab.com/gitlab-org/security/gitlab/-/commit/05b92aeca1cf8590ae070e3c3d5ad5f12a7130ad)
- [Update gitlab-shell to v14.45.0](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8f040315eb5b3a09c19957fb1697b7e764ff9e6b)
### Security (6 changes)
- [Introduce limit for closed issues](https://gitlab.com/gitlab-org/security/gitlab/-/commit/00b2bd3e6a02e544918f4d604d64c8a5ab4832a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5257))
- [Add file size limit for blob editing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4db58c8cb370d31f5c93543bd6c533106c420182) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5296))
- [Fix DoS via large SAML Response](https://gitlab.com/gitlab-org/security/gitlab/-/commit/52602fdd1094a9ca30603ca01be44093799a52e3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5263))
- [Add limit to deploy token name](https://gitlab.com/gitlab-org/security/gitlab/-/commit/df2340492a220a11f9fdebfd54df25be0c6e6d38) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5299))
- [Fix webhook custom header validation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d80e590444fcee5ed0d747b83f4d051b1b8be218) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5292))
(省略されました)
## 18.3.1 (2025-08-26)
### Fixed (1 change)
- [Fix trusted proxies regression when hostname is specified](https://gitlab.com/gitlab-org/security/gitlab/-/commit/70f1e084bfff4ee4e66c25729afba77d11f567f1)
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eba1f64c91f30a3196b176cd02212a66b1602437) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5253))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5c48100ee91213b8ba0d607a67b2dcd972cee889) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5248))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bf00956e1861280ab7e12e2ecc86f314ea125ade) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5255))
## 18.2.5 (2025-08-26)
### Fixed (2 changes)
- [Ignore silent mode in clickhouse http calls](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ed59a658334df6d01362f6d23c08f5acd768ff8e)
- [Check Stage for self-managed](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eb039f297e553de4847c97eff3c7c6f6f303fd7b) **GitLab Enterprise Edition**
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9dd8d3b15f7b4b5a6c9775d9f72de2cf8fa36f3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5252))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f871b4ea8a988103c28423a99b7907fe1b36705a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5238))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1f5b9f623bcc43612fa07861a57d0901291be72c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5194))
## 18.1.5 (2025-08-26)
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5e14b26cb33e61c0605f1a0ec91c3e0467533fb3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5254))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ffb1039c1e06962b217b479799b6b3052a824b7b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5239))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e4fa4e405ddb8eca1cfccc9a8db355a07254f8f3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5195))
### Fixed (1 change)
- [Fix trusted proxies regression when hostname is specified](https://gitlab.com/gitlab-org/security/gitlab/-/commit/70f1e084bfff4ee4e66c25729afba77d11f567f1)
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eba1f64c91f30a3196b176cd02212a66b1602437) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5253))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5c48100ee91213b8ba0d607a67b2dcd972cee889) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5248))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bf00956e1861280ab7e12e2ecc86f314ea125ade) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5255))
## 18.2.5 (2025-08-26)
### Fixed (2 changes)
- [Ignore silent mode in clickhouse http calls](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ed59a658334df6d01362f6d23c08f5acd768ff8e)
- [Check Stage for self-managed](https://gitlab.com/gitlab-org/security/gitlab/-/commit/eb039f297e553de4847c97eff3c7c6f6f303fd7b) **GitLab Enterprise Edition**
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9dd8d3b15f7b4b5a6c9775d9f72de2cf8fa36f3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5252))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f871b4ea8a988103c28423a99b7907fe1b36705a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5238))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1f5b9f623bcc43612fa07861a57d0901291be72c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5194))
## 18.1.5 (2025-08-26)
### Security (4 changes)
- [Gitea import rate limiting](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5e14b26cb33e61c0605f1a0ec91c3e0467533fb3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5254))
- [Fix tag/branch ambiguity in raw file display](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ffb1039c1e06962b217b479799b6b3052a824b7b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5239))
- [Add authentication check for manual variables via new policy](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e4fa4e405ddb8eca1cfccc9a8db355a07254f8f3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5195))
RSS[全体]
Tw[@softantenna]