GitLab
詳細情報
| タイトル | GitLab |
|---|---|
| URL | https://about.gitlab.com/ |
| バージョン | ver 18.8.4 |
| 更新日 | 2026/02/11 |
| 追加日 | 2016/02/23 |
| 種別 | フリーソフト |
| 説明 | GitHubのようなサービスをローカルで提供することができるGitリポジトリ管理ソフト。 |
レビュー
レビューはありません。
スクリーンショット
スクリーンショットはありません。
更新グラフ
バージョン履歴
## 18.8.4 (2026-02-09)
### Added (1 change)
- [Add REST endpoint for seeding external agents](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9308a66c34904c475f22d3288b75305c3e5fb1e3) **GitLab Enterprise Edition**
### Fixed (4 changes)
- [Add cleanup of replicas without indices to RolloutService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ee791a6c1947afebbdabb0b96ff6eb9bb26d08ea) **GitLab Enterprise Edition**
- [Add preflight checks to resume_indexing rake task](https://gitlab.com/gitlab-org/security/gitlab/-/commit/884b17351514fe3db1271db6f660ad0636f06606) **GitLab Enterprise Edition**
- [Fix project state getting out of sync when deletion fails](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ea893eb7aab9dbd98ea03da77c47bde3813279f7)
- [Exclude Git LFS paths from Git HTTP throttling](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bd2c7efa3b958dca20816a923003a8de89c8f54d)
### Changed (1 change)
- [Add seed external agents button to Admin](https://gitlab.com/gitlab-org/security/gitlab/-/commit/86e53598ca77513eed0975b3fd611c52894b7983) **GitLab Enterprise Edition**
### Security (13 changes)
- [587546 DoS Customizable Dashboards](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4ddf86cd2bd0b0a281f92391687cc152e60bee12) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5727))
- [Fix SSRF vulnerability in virtual registry upstream checks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a8bad27927fb40962014c85f23dff28c13cf1b79) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5656))
- [Filter groups by accessible to user](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6495ffe052c2ee5627718c36d6eb18af8f6a4e48) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5714))
- [Don't quadratically re-process children in TaskListFilter](https://gitlab.com/gitlab-org/security/gitlab/-/commit/fe2fee5e83ae6476f41b3322c1ca4febf76da857) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5726))
- [Add authorization for pipeline schedule inputs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4c5126dee6b6361e9099cb944b5b8772231246f6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5690))
- [Fix DoS vulnerability via malformed JSON escape sequences](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9bd81602325b48e823db3b40061eea91f394d89d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5708))
- [Don't render label link tooltip names as HTML](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a7236aeec6c2c1017e6a2970557b513a82d258e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5702))
- [Fix test case title html injection](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5d5cab70d2f154d1f22f1c589454a6b386853b07) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5683))
(省略されました)
### Added (1 change)
- [Add REST endpoint for seeding external agents](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9308a66c34904c475f22d3288b75305c3e5fb1e3) **GitLab Enterprise Edition**
### Fixed (4 changes)
- [Add cleanup of replicas without indices to RolloutService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ee791a6c1947afebbdabb0b96ff6eb9bb26d08ea) **GitLab Enterprise Edition**
- [Add preflight checks to resume_indexing rake task](https://gitlab.com/gitlab-org/security/gitlab/-/commit/884b17351514fe3db1271db6f660ad0636f06606) **GitLab Enterprise Edition**
- [Fix project state getting out of sync when deletion fails](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ea893eb7aab9dbd98ea03da77c47bde3813279f7)
- [Exclude Git LFS paths from Git HTTP throttling](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bd2c7efa3b958dca20816a923003a8de89c8f54d)
### Changed (1 change)
- [Add seed external agents button to Admin](https://gitlab.com/gitlab-org/security/gitlab/-/commit/86e53598ca77513eed0975b3fd611c52894b7983) **GitLab Enterprise Edition**
### Security (13 changes)
- [587546 DoS Customizable Dashboards](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4ddf86cd2bd0b0a281f92391687cc152e60bee12) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5727))
- [Fix SSRF vulnerability in virtual registry upstream checks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a8bad27927fb40962014c85f23dff28c13cf1b79) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5656))
- [Filter groups by accessible to user](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6495ffe052c2ee5627718c36d6eb18af8f6a4e48) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5714))
- [Don't quadratically re-process children in TaskListFilter](https://gitlab.com/gitlab-org/security/gitlab/-/commit/fe2fee5e83ae6476f41b3322c1ca4febf76da857) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5726))
- [Add authorization for pipeline schedule inputs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4c5126dee6b6361e9099cb944b5b8772231246f6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5690))
- [Fix DoS vulnerability via malformed JSON escape sequences](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9bd81602325b48e823db3b40061eea91f394d89d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5708))
- [Don't render label link tooltip names as HTML](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a7236aeec6c2c1017e6a2970557b513a82d258e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5702))
- [Fix test case title html injection](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5d5cab70d2f154d1f22f1c589454a6b386853b07) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5683))
(省略されました)
## 18.8.3 (2026-02-04)
### Fixed (13 changes)
- [Unsubscribe from pipeline status updates when pipeline ID changes](https://gitlab.com/gitlab-org/gitlab/-/commit/5a93d93ceddc12ef98d833717b184bab079e1774) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221762))
- [Fix JWT token expiration when memoized before timeout is set](https://gitlab.com/gitlab-org/gitlab/-/commit/a61df840beac37dde7e4d12b4ace6f6f9088fbc4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221379))
- [Fix encoding error in related branches work item widget](https://gitlab.com/gitlab-org/gitlab/-/commit/6089657a222498a6126448ffa6879d6a0fad9cd2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221365))
- [Disable Sidekiq retries for ClickHouse pipeline/build sync workers](https://gitlab.com/gitlab-org/gitlab/-/commit/8948eee503609004a0706c444f605dc5676d8356) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221356))
- [Disable async_insert in build and pipeline sync operations](https://gitlab.com/gitlab-org/gitlab/-/commit/07b691e621a09c1b1a3c19ab8d726199ac94bb85) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221299))
- [Add work item support to missing chat integrations](https://gitlab.com/gitlab-org/gitlab/-/commit/6e3ce968eea0aee05025e70c5044feede332b98c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221178))
- [Only check optional ActionCable Redis instance if necessary](https://gitlab.com/gitlab-org/gitlab/-/commit/d6eeb7d175d53bca608ee29d639c9160fb661044) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220695))
- [Fixes preserving external author on work item move and clone](https://gitlab.com/gitlab-org/gitlab/-/commit/f4dff41724c940ac233cbdf7a5fd485e54c2b181) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220160))
- [Refactor Redis TLS options parsing to fix ActionCable configuration](https://gitlab.com/gitlab-org/gitlab/-/commit/bac23007c9ac7c5fc8fda53fc19184589c4721cf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219997))
- [Open SD issues and tickets on boards in legacy view instead of drawer](https://gitlab.com/gitlab-org/gitlab/-/commit/6b1759e5611f4ae7dc05503e8d87dc1322a29c26) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219758))
- [Add info on UI for new Ticket work item type](https://gitlab.com/gitlab-org/gitlab/-/commit/d6d54c09c9dfe877d763994e2a201f6ffe9c66e4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219750))
- [Fix enforced_scans sync with inject_policy](https://gitlab.com/gitlab-org/gitlab/-/commit/234ded0747283dfa0085af28d7b818a211093c75) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219609)) **GitLab Enterprise Edition**
### Changed (5 changes)
- [Remove duo_workflow Feature Flag](https://gitlab.com/gitlab-org/gitlab/-/commit/84c562165a30eef1c8b6be1c2289acfa379d716a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220973)) **GitLab Enterprise Edition**
- [Adds work items to custom email notifications](https://gitlab.com/gitlab-org/gitlab/-/commit/7e017ccf9df05e642203f7e71c3a099144856298) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219926))
- [Display work item type names in chat notifications](https://gitlab.com/gitlab-org/gitlab/-/commit/7f5d87a43ea3c4b9c7daf6b7efba69005c754cac) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221046))
- [Remove duo_workflow_in_ci Feature Flag](https://gitlab.com/gitlab-org/gitlab/-/commit/7512dade12309120492cb0657a0f742e52ea6722) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220885)) **GitLab Enterprise Edition**
(省略されました)
### Fixed (13 changes)
- [Unsubscribe from pipeline status updates when pipeline ID changes](https://gitlab.com/gitlab-org/gitlab/-/commit/5a93d93ceddc12ef98d833717b184bab079e1774) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221762))
- [Fix JWT token expiration when memoized before timeout is set](https://gitlab.com/gitlab-org/gitlab/-/commit/a61df840beac37dde7e4d12b4ace6f6f9088fbc4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221379))
- [Fix encoding error in related branches work item widget](https://gitlab.com/gitlab-org/gitlab/-/commit/6089657a222498a6126448ffa6879d6a0fad9cd2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221365))
- [Disable Sidekiq retries for ClickHouse pipeline/build sync workers](https://gitlab.com/gitlab-org/gitlab/-/commit/8948eee503609004a0706c444f605dc5676d8356) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221356))
- [Disable async_insert in build and pipeline sync operations](https://gitlab.com/gitlab-org/gitlab/-/commit/07b691e621a09c1b1a3c19ab8d726199ac94bb85) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221299))
- [Add work item support to missing chat integrations](https://gitlab.com/gitlab-org/gitlab/-/commit/6e3ce968eea0aee05025e70c5044feede332b98c) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221178))
- [Only check optional ActionCable Redis instance if necessary](https://gitlab.com/gitlab-org/gitlab/-/commit/d6eeb7d175d53bca608ee29d639c9160fb661044) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220695))
- [Fixes preserving external author on work item move and clone](https://gitlab.com/gitlab-org/gitlab/-/commit/f4dff41724c940ac233cbdf7a5fd485e54c2b181) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220160))
- [Refactor Redis TLS options parsing to fix ActionCable configuration](https://gitlab.com/gitlab-org/gitlab/-/commit/bac23007c9ac7c5fc8fda53fc19184589c4721cf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219997))
- [Open SD issues and tickets on boards in legacy view instead of drawer](https://gitlab.com/gitlab-org/gitlab/-/commit/6b1759e5611f4ae7dc05503e8d87dc1322a29c26) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219758))
- [Add info on UI for new Ticket work item type](https://gitlab.com/gitlab-org/gitlab/-/commit/d6d54c09c9dfe877d763994e2a201f6ffe9c66e4) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219750))
- [Fix enforced_scans sync with inject_policy](https://gitlab.com/gitlab-org/gitlab/-/commit/234ded0747283dfa0085af28d7b818a211093c75) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219609)) **GitLab Enterprise Edition**
### Changed (5 changes)
- [Remove duo_workflow Feature Flag](https://gitlab.com/gitlab-org/gitlab/-/commit/84c562165a30eef1c8b6be1c2289acfa379d716a) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220973)) **GitLab Enterprise Edition**
- [Adds work items to custom email notifications](https://gitlab.com/gitlab-org/gitlab/-/commit/7e017ccf9df05e642203f7e71c3a099144856298) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/219926))
- [Display work item type names in chat notifications](https://gitlab.com/gitlab-org/gitlab/-/commit/7f5d87a43ea3c4b9c7daf6b7efba69005c754cac) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/221046))
- [Remove duo_workflow_in_ci Feature Flag](https://gitlab.com/gitlab-org/gitlab/-/commit/7512dade12309120492cb0657a0f742e52ea6722) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/220885)) **GitLab Enterprise Edition**
(省略されました)
## 18.8.2 (2026-01-20)
### Added (1 change)
- [Rake task to seed AI Catalogs with external agents](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d55d15507ac1dae272cfc5230616d2ce0e57e3cd) **GitLab Enterprise Edition**
### Fixed (3 changes)
- [Fix beta status of foundational flows](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7aeb7139f08add55324fe431a4bc4cf9c7d15cd5) **GitLab Enterprise Edition**
- [Pass user id to workflow service](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c50eb4c11294b9e368bd3a82854d4756177ea76c) **GitLab Enterprise Edition**
- [Ensure currentSelectedReviewers is always an array](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5236c50c2566011f4fa533f2315fcc7bbcefa69b)
### Security (5 changes)
- [Reject expired keys and blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/11f2df99940e349369021bb7613afebd7665c6af) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5652))
- [Limit JWT token size in Jira Connect to prevent DoS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/51480b19ab4e87c7128927e0cb620eca79bb8ca8) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5659))
- [Fix endless redirection loop in wikis for prepared redirect file](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8a68318f350f598c97781e9bc9568e886a16505b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5658))
- [Adds size validation to job token before decoding](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ae827a88f454dcc0f4b21c7db522ea530966cee2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5654))
- [Prevent bypass 2FA with WebAuthn & passkey authentication](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ec6f16d7b95fe87d61d97ecf9a16e8784c172bec) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5653))
## 18.7.2 (2026-01-20)
### Fixed (8 changes)
- [Disable async_insert in build and pipeline sync operations](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8e5a7028c64d134fcca7b2a6ba89cbff0320bf64)
- [Disable Sidekiq retries for ClickHouse pipeline/build sync workers](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3469cf61ffc33a5186c5c0dc108d90b521737c61)
- [Exclude Git LFS paths from Git HTTP throttling](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e96f86cc5bcdbe0a22468dfc07ef39ef8a903fc2)
- [Fix migration health check endpoint](https://gitlab.com/gitlab-org/security/gitlab/-/commit/35813c8895bc080d7d72d7c69716a374c084da6f)
(省略されました)
### Added (1 change)
- [Rake task to seed AI Catalogs with external agents](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d55d15507ac1dae272cfc5230616d2ce0e57e3cd) **GitLab Enterprise Edition**
### Fixed (3 changes)
- [Fix beta status of foundational flows](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7aeb7139f08add55324fe431a4bc4cf9c7d15cd5) **GitLab Enterprise Edition**
- [Pass user id to workflow service](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c50eb4c11294b9e368bd3a82854d4756177ea76c) **GitLab Enterprise Edition**
- [Ensure currentSelectedReviewers is always an array](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5236c50c2566011f4fa533f2315fcc7bbcefa69b)
### Security (5 changes)
- [Reject expired keys and blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/11f2df99940e349369021bb7613afebd7665c6af) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5652))
- [Limit JWT token size in Jira Connect to prevent DoS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/51480b19ab4e87c7128927e0cb620eca79bb8ca8) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5659))
- [Fix endless redirection loop in wikis for prepared redirect file](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8a68318f350f598c97781e9bc9568e886a16505b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5658))
- [Adds size validation to job token before decoding](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ae827a88f454dcc0f4b21c7db522ea530966cee2) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5654))
- [Prevent bypass 2FA with WebAuthn & passkey authentication](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ec6f16d7b95fe87d61d97ecf9a16e8784c172bec) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5653))
## 18.7.2 (2026-01-20)
### Fixed (8 changes)
- [Disable async_insert in build and pipeline sync operations](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8e5a7028c64d134fcca7b2a6ba89cbff0320bf64)
- [Disable Sidekiq retries for ClickHouse pipeline/build sync workers](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3469cf61ffc33a5186c5c0dc108d90b521737c61)
- [Exclude Git LFS paths from Git HTTP throttling](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e96f86cc5bcdbe0a22468dfc07ef39ef8a903fc2)
- [Fix migration health check endpoint](https://gitlab.com/gitlab-org/security/gitlab/-/commit/35813c8895bc080d7d72d7c69716a374c084da6f)
(省略されました)
## 18.8.1 (2026-01-19)
### Fixed (1 change)
### Changed (2 changes)
- [Disallow creation of new external agents](https://gitlab.com/gitlab-org/gitlab/-/commit/f44382e9baff074d0495678e82447442944832aa) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218920)) **GitLab Enterprise Edition**
- [Release AI Catalog External Agents](https://gitlab.com/gitlab-org/gitlab/-/commit/74685605a678ec099f4b082188b90a41b27b80c2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218867)) **GitLab Enterprise Edition**
### Fixed (1 change)
### Changed (2 changes)
- [Disallow creation of new external agents](https://gitlab.com/gitlab-org/gitlab/-/commit/f44382e9baff074d0495678e82447442944832aa) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218920)) **GitLab Enterprise Edition**
- [Release AI Catalog External Agents](https://gitlab.com/gitlab-org/gitlab/-/commit/74685605a678ec099f4b082188b90a41b27b80c2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218867)) **GitLab Enterprise Edition**
## 18.8.0 (2026-01-14)
### Added (95 changes)
- [Add pipeline link to the single tag page](https://gitlab.com/gitlab-org/gitlab/-/commit/fe715b650020e01462aba99af31dbf13b26c97b9) by @therealrinku ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217508))
- [Add npm vregs model for remote cache entries](https://gitlab.com/gitlab-org/gitlab/-/commit/91c909326e500049e79cf81069769dbf965360b7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217303)) **GitLab Enterprise Edition**
- [Filter project pipelines by id](https://gitlab.com/gitlab-org/gitlab/-/commit/d421855c6f2be1afed6499f4a254312d8942dd15) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218207))
- [Add checkbox for web based commit signing](https://gitlab.com/gitlab-org/gitlab/-/commit/1e660621781d740de5935ef6b8c065445554feb8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217416))
- [Add false_positive filter to vulnerability API](https://gitlab.com/gitlab-org/gitlab/-/commit/d3fe3dd531d41802596ff87d67c4d9cb2630d9b8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218045)) **GitLab Enterprise Edition**
- [Enable Geo Primary Verification flag](https://gitlab.com/gitlab-org/gitlab/-/commit/2236b8abef54d8febf484b5217c819286056a520) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216500)) **GitLab Enterprise Edition**
- [Add npm vregs model for local cache entries](https://gitlab.com/gitlab-org/gitlab/-/commit/7a420658fa030626a673cbed2d1a6349996e072d) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214031)) **GitLab Enterprise Edition**
- [Add sorting for per-user metric tables](https://gitlab.com/gitlab-org/gitlab/-/commit/e2ed448996fcd8ead5dd465c63d700e8e8a250f6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216601)) **GitLab Enterprise Edition**
- [Add `active` parameter support to groups projects API](https://gitlab.com/gitlab-org/gitlab/-/commit/71413a457792d419358a18500ab2bb5d1b38ef14) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218053))
- [Enable granular PAT for avatar endpoints](https://gitlab.com/gitlab-org/gitlab/-/commit/bce5c9d237666afa788cd51cd357367c88d0c23e) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218277))
- [Remove `enterprise_disable_ssh_keys` FF](https://gitlab.com/gitlab-org/gitlab/-/commit/967092617bf97b833d82cba655155d83cd164cf6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218265))
- [Add POST endpoint for container protection tag rules API](https://gitlab.com/gitlab-org/gitlab/-/commit/ae56d80fc0aa97ba59ef35d160b0cd200e2c449d) by @gerardo-navarro ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/213801))
- [Add `GitLab Duo Code Review Comments Sentiment` chart](https://gitlab.com/gitlab-org/gitlab/-/commit/08263c13deb3fd2b89da8c69b0a0230361f4629f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217069)) **GitLab Enterprise Edition**
- [Enable by default UI check for credits for DAP](https://gitlab.com/gitlab-org/gitlab/-/commit/8530310519ea9de6a694fde53463248e27a78def) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218162)) **GitLab Enterprise Edition**
- [Add exponential backoff retry for `include: remote`](https://gitlab.com/gitlab-org/gitlab/-/commit/39359d49e030c9d56193445b61a4822243b7c642) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214062))
- [Invert the logic and rename work item URL feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/c7ae32e3f79e49ced7bb581e0a46deced836c3d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218024))
- [Support hour and day duration formatting in pipelines.](https://gitlab.com/gitlab-org/gitlab/-/commit/75a366168c95d0c5d9196c11a33ab24ca15b00a2) by @featherless ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217486))
(省略されました)
### Added (95 changes)
- [Add pipeline link to the single tag page](https://gitlab.com/gitlab-org/gitlab/-/commit/fe715b650020e01462aba99af31dbf13b26c97b9) by @therealrinku ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217508))
- [Add npm vregs model for remote cache entries](https://gitlab.com/gitlab-org/gitlab/-/commit/91c909326e500049e79cf81069769dbf965360b7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217303)) **GitLab Enterprise Edition**
- [Filter project pipelines by id](https://gitlab.com/gitlab-org/gitlab/-/commit/d421855c6f2be1afed6499f4a254312d8942dd15) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218207))
- [Add checkbox for web based commit signing](https://gitlab.com/gitlab-org/gitlab/-/commit/1e660621781d740de5935ef6b8c065445554feb8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217416))
- [Add false_positive filter to vulnerability API](https://gitlab.com/gitlab-org/gitlab/-/commit/d3fe3dd531d41802596ff87d67c4d9cb2630d9b8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218045)) **GitLab Enterprise Edition**
- [Enable Geo Primary Verification flag](https://gitlab.com/gitlab-org/gitlab/-/commit/2236b8abef54d8febf484b5217c819286056a520) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216500)) **GitLab Enterprise Edition**
- [Add npm vregs model for local cache entries](https://gitlab.com/gitlab-org/gitlab/-/commit/7a420658fa030626a673cbed2d1a6349996e072d) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214031)) **GitLab Enterprise Edition**
- [Add sorting for per-user metric tables](https://gitlab.com/gitlab-org/gitlab/-/commit/e2ed448996fcd8ead5dd465c63d700e8e8a250f6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216601)) **GitLab Enterprise Edition**
- [Add `active` parameter support to groups projects API](https://gitlab.com/gitlab-org/gitlab/-/commit/71413a457792d419358a18500ab2bb5d1b38ef14) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218053))
- [Enable granular PAT for avatar endpoints](https://gitlab.com/gitlab-org/gitlab/-/commit/bce5c9d237666afa788cd51cd357367c88d0c23e) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218277))
- [Remove `enterprise_disable_ssh_keys` FF](https://gitlab.com/gitlab-org/gitlab/-/commit/967092617bf97b833d82cba655155d83cd164cf6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218265))
- [Add POST endpoint for container protection tag rules API](https://gitlab.com/gitlab-org/gitlab/-/commit/ae56d80fc0aa97ba59ef35d160b0cd200e2c449d) by @gerardo-navarro ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/213801))
- [Add `GitLab Duo Code Review Comments Sentiment` chart](https://gitlab.com/gitlab-org/gitlab/-/commit/08263c13deb3fd2b89da8c69b0a0230361f4629f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217069)) **GitLab Enterprise Edition**
- [Enable by default UI check for credits for DAP](https://gitlab.com/gitlab-org/gitlab/-/commit/8530310519ea9de6a694fde53463248e27a78def) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218162)) **GitLab Enterprise Edition**
- [Add exponential backoff retry for `include: remote`](https://gitlab.com/gitlab-org/gitlab/-/commit/39359d49e030c9d56193445b61a4822243b7c642) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214062))
- [Invert the logic and rename work item URL feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/c7ae32e3f79e49ced7bb581e0a46deced836c3d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/218024))
- [Support hour and day duration formatting in pipelines.](https://gitlab.com/gitlab-org/gitlab/-/commit/75a366168c95d0c5d9196c11a33ab24ca15b00a2) by @featherless ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/217486))
(省略されました)
## 18.7.1 (2026-01-07)
### Fixed (1 change)
- [Remove search_glql_fix_null_field_pagination feature flag](https://gitlab.com/gitlab-org/security/gitlab/-/commit/739045bf71d2d6631cb763a502478bd5d11f2d80) **GitLab Enterprise Edition**
### Security (8 changes)
- [Fix 404 errors for Duo Workflow WS connection](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8f611a6ed9ab78db1f0d5ebb1329867f4689d76f) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5633))
- [Only delete runner projects scoped to the intended runner](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3c26e9f8669d43ed3e25100adb190488a77132b1) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5616))
- [Add base authorization check to update feature settings mutation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/dcc442150b40e86a915bc2fcc41bb33be01ab85d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5509))
- [Don't do arbitrary placeholder replacement on HTML](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3e9ac4b689c7be319dbf54e356b9903aa0debec7) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5605))
- [Pass Mermaid images through asset proxy, apply CSP to deny leaks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3eeb3448f3062c9a9119fe7d4826f6c6282678e3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5606))
- [Fix security issue related to namespace context](https://gitlab.com/gitlab-org/security/gitlab/-/commit/507d2064f4679c02de2b0771ec6f8299d85d8dbd) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5599))
- [backport(18.7): Fix XSS vulnerability in Web IDE VSCode assets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f34dd0fddc0d015f3c6cd53d9c0a93d1d39926f5) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5604))
- [Limit XML and CSV HTTP responses](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f7bb8670028df4a810ed725472dc6a971e8dfcc6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5602))
## 18.6.3 (2026-01-07)
### Added (1 change)
- [Add status filter argument to work items CSV export](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebc3d9729ffab1b8b434126e9fddeb7258420f31) **GitLab Enterprise Edition**
### Fixed (5 changes)
- [Fix Elasticsearch pagination with null sortable field values](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5baae4cf5d577bf6aaf5a6d49dc42b65df24cf0a) **GitLab Enterprise Edition**
- [Backport use upstream for DWS API requests in Workhorse](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ce11772a0519a8154d08b2672f4809d7c4458e8) **GitLab Enterprise Edition**
- [Exclude Git HTTP requests from authenticated web throttle](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c4cd108c60d518a4718b16e1921273236fe1d793)
(省略されました)
### Fixed (1 change)
- [Remove search_glql_fix_null_field_pagination feature flag](https://gitlab.com/gitlab-org/security/gitlab/-/commit/739045bf71d2d6631cb763a502478bd5d11f2d80) **GitLab Enterprise Edition**
### Security (8 changes)
- [Fix 404 errors for Duo Workflow WS connection](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8f611a6ed9ab78db1f0d5ebb1329867f4689d76f) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5633))
- [Only delete runner projects scoped to the intended runner](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3c26e9f8669d43ed3e25100adb190488a77132b1) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5616))
- [Add base authorization check to update feature settings mutation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/dcc442150b40e86a915bc2fcc41bb33be01ab85d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5509))
- [Don't do arbitrary placeholder replacement on HTML](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3e9ac4b689c7be319dbf54e356b9903aa0debec7) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5605))
- [Pass Mermaid images through asset proxy, apply CSP to deny leaks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3eeb3448f3062c9a9119fe7d4826f6c6282678e3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5606))
- [Fix security issue related to namespace context](https://gitlab.com/gitlab-org/security/gitlab/-/commit/507d2064f4679c02de2b0771ec6f8299d85d8dbd) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5599))
- [backport(18.7): Fix XSS vulnerability in Web IDE VSCode assets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f34dd0fddc0d015f3c6cd53d9c0a93d1d39926f5) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5604))
- [Limit XML and CSV HTTP responses](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f7bb8670028df4a810ed725472dc6a971e8dfcc6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5602))
## 18.6.3 (2026-01-07)
### Added (1 change)
- [Add status filter argument to work items CSV export](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebc3d9729ffab1b8b434126e9fddeb7258420f31) **GitLab Enterprise Edition**
### Fixed (5 changes)
- [Fix Elasticsearch pagination with null sortable field values](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5baae4cf5d577bf6aaf5a6d49dc42b65df24cf0a) **GitLab Enterprise Edition**
- [Backport use upstream for DWS API requests in Workhorse](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ce11772a0519a8154d08b2672f4809d7c4458e8) **GitLab Enterprise Edition**
- [Exclude Git HTTP requests from authenticated web throttle](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c4cd108c60d518a4718b16e1921273236fe1d793)
(省略されました)
## 18.7.0 (2025-12-17)
### Added (198 changes)
- [Enable ff validity_checks by default](https://gitlab.com/gitlab-org/gitlab/-/commit/f5f93e66259f501b2abe3735067b75a6a05214ad) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216525)) **GitLab Enterprise Edition**
- [Add Foundational Flow triggers](https://gitlab.com/gitlab-org/gitlab/-/commit/c63cbb06aa33233ef7cb0ca4b0713b51a0c9c9ae) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216090)) **GitLab Enterprise Edition**
- [Call seeding service before syncing foundational flows](https://gitlab.com/gitlab-org/gitlab/-/commit/cbe8f9d778cbd3bb343796fbc76677bf2c4ccfba) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216150)) **GitLab Enterprise Edition**
- [api: Remove project_repositories_health flag](https://gitlab.com/gitlab-org/gitlab/-/commit/a51b049f1debca21e9002178bb32e62aa90b62be) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214169))
- [feat: Always show FP confidence score when available](https://gitlab.com/gitlab-org/gitlab/-/commit/24cf74656b68a0ee9a5670389ed526979bbb2dce) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216361)) **GitLab Enterprise Edition**
- [Add upgrade notes guidelines for batched background migrations](https://gitlab.com/gitlab-org/gitlab/-/commit/1d5a9f09584d048bfee32097c1bebc5cfef185bf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215919))
- [Add additional_ca_cert_bundle input for DS v2 template](https://gitlab.com/gitlab-org/gitlab/-/commit/9bf06db00ff3916abf1c16d9e10a9c5d7f10cde2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216177)) **GitLab Enterprise Edition**
- [Adds support disabling duo agent platform at namespace](https://gitlab.com/gitlab-org/gitlab/-/commit/9ca64c50bd46cd3985603b5438c2c64733128a21) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216143)) **GitLab Enterprise Edition**
- [Add disabled fields to user hash](https://gitlab.com/gitlab-org/gitlab/-/commit/1a0bdd3c95aeca2adb5cfbe5e26ebccb8cf4c08f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216153)) **GitLab Enterprise Edition**
- [Set validity_check_es_filter default true](https://gitlab.com/gitlab-org/gitlab/-/commit/3e94ecd21fb82d076997b2f60b2d34ddd48c3c81) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211927)) **GitLab Enterprise Edition**
- [Clean up FF](https://gitlab.com/gitlab-org/gitlab/-/commit/5506a71352f411d03f3176b572a3300066d9df3f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215796))
- [Add total Duo events by user table](https://gitlab.com/gitlab-org/gitlab/-/commit/61ce76a7bee7570b749b0843520b694a118babcb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215694)) **GitLab Enterprise Edition**
- [Add pagination UI for branch rules](https://gitlab.com/gitlab-org/gitlab/-/commit/1ba82ff6480e08d9aded32e73f75f2ba34b426cf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216253)) **GitLab Enterprise Edition**
- [Add limited experience alert to vulnerability report](https://gitlab.com/gitlab-org/gitlab/-/commit/3a57d913ab29cb0585ae53d0756b3715c1b9ec9f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215979)) **GitLab Enterprise Edition**
- [Add security scan profile query type and resolver](https://gitlab.com/gitlab-org/gitlab/-/commit/248f8aba3f821ac3ce2a1b99ae4eeb3a411ea2fb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215667)) **GitLab Enterprise Edition**
- [Add template for multi container scanner](https://gitlab.com/gitlab-org/gitlab/-/commit/b05b8b32de6ef186ea89e045eaa6d031cad250dc) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210414)) **GitLab Enterprise Edition**
- [Add selectable and selectable reason fields](https://gitlab.com/gitlab-org/gitlab/-/commit/c2a2946ad348c8c007125e0ab90a325ba3ada134) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215999))
(省略されました)
### Added (198 changes)
- [Enable ff validity_checks by default](https://gitlab.com/gitlab-org/gitlab/-/commit/f5f93e66259f501b2abe3735067b75a6a05214ad) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216525)) **GitLab Enterprise Edition**
- [Add Foundational Flow triggers](https://gitlab.com/gitlab-org/gitlab/-/commit/c63cbb06aa33233ef7cb0ca4b0713b51a0c9c9ae) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216090)) **GitLab Enterprise Edition**
- [Call seeding service before syncing foundational flows](https://gitlab.com/gitlab-org/gitlab/-/commit/cbe8f9d778cbd3bb343796fbc76677bf2c4ccfba) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216150)) **GitLab Enterprise Edition**
- [api: Remove project_repositories_health flag](https://gitlab.com/gitlab-org/gitlab/-/commit/a51b049f1debca21e9002178bb32e62aa90b62be) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/214169))
- [feat: Always show FP confidence score when available](https://gitlab.com/gitlab-org/gitlab/-/commit/24cf74656b68a0ee9a5670389ed526979bbb2dce) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216361)) **GitLab Enterprise Edition**
- [Add upgrade notes guidelines for batched background migrations](https://gitlab.com/gitlab-org/gitlab/-/commit/1d5a9f09584d048bfee32097c1bebc5cfef185bf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215919))
- [Add additional_ca_cert_bundle input for DS v2 template](https://gitlab.com/gitlab-org/gitlab/-/commit/9bf06db00ff3916abf1c16d9e10a9c5d7f10cde2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216177)) **GitLab Enterprise Edition**
- [Adds support disabling duo agent platform at namespace](https://gitlab.com/gitlab-org/gitlab/-/commit/9ca64c50bd46cd3985603b5438c2c64733128a21) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216143)) **GitLab Enterprise Edition**
- [Add disabled fields to user hash](https://gitlab.com/gitlab-org/gitlab/-/commit/1a0bdd3c95aeca2adb5cfbe5e26ebccb8cf4c08f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216153)) **GitLab Enterprise Edition**
- [Set validity_check_es_filter default true](https://gitlab.com/gitlab-org/gitlab/-/commit/3e94ecd21fb82d076997b2f60b2d34ddd48c3c81) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211927)) **GitLab Enterprise Edition**
- [Clean up FF](https://gitlab.com/gitlab-org/gitlab/-/commit/5506a71352f411d03f3176b572a3300066d9df3f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215796))
- [Add total Duo events by user table](https://gitlab.com/gitlab-org/gitlab/-/commit/61ce76a7bee7570b749b0843520b694a118babcb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215694)) **GitLab Enterprise Edition**
- [Add pagination UI for branch rules](https://gitlab.com/gitlab-org/gitlab/-/commit/1ba82ff6480e08d9aded32e73f75f2ba34b426cf) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/216253)) **GitLab Enterprise Edition**
- [Add limited experience alert to vulnerability report](https://gitlab.com/gitlab-org/gitlab/-/commit/3a57d913ab29cb0585ae53d0756b3715c1b9ec9f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215979)) **GitLab Enterprise Edition**
- [Add security scan profile query type and resolver](https://gitlab.com/gitlab-org/gitlab/-/commit/248f8aba3f821ac3ce2a1b99ae4eeb3a411ea2fb) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215667)) **GitLab Enterprise Edition**
- [Add template for multi container scanner](https://gitlab.com/gitlab-org/gitlab/-/commit/b05b8b32de6ef186ea89e045eaa6d031cad250dc) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210414)) **GitLab Enterprise Edition**
- [Add selectable and selectable reason fields](https://gitlab.com/gitlab-org/gitlab/-/commit/c2a2946ad348c8c007125e0ab90a325ba3ada134) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/215999))
(省略されました)
## 18.6.2 (2025-12-10)
### Fixed (3 changes)
- [Handle 429s during github LFS import](https://gitlab.com/gitlab-org/security/gitlab/-/commit/de982c5ce9f7cb3d68b487aef4d5770d1ae32fed)
- [Fix partition missing error in project_daily_statistics backfill](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9a2a6f278f822d1fb73336a55696fcf94dca055)
- [Update diff note representation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ad30bf915c8adf50c1ddb56441a61a7a48a9279)
### Changed (2 changes)
- [Fix: Restore branch protection check in cache_suffix_for](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c30a088a7d553805e9c4e7afda52c563c47eb8e6)
- [Ensure LFS imports work correctly with nil revisions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b32e678fe2ddecefd70a9a9823753847a09c20cf)
### Security (10 changes)
- [Hide private project name to unauthorized users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7060745b8ada531cc1445df9afc9fef3d3aef24a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5550))
- [Apply requestBodyUploader to commit creation endpoints](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3bd577e0ee92c19cb9e48d370e215eae6458ebdc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5581))
- [Fix "Total 2FA Bypass for Users"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/887505e8fcfa67bd4f483b68bbdf541e6c1139fc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5573))
- [Add strict validations for dismissal path input](https://gitlab.com/gitlab-org/security/gitlab/-/commit/39a07480e84bf59c161c618e8f2f6d637905596a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5585))
- [Fix merge request delete modal not escaping title](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9fba70dae46e2330d0ff509c6a708c5dd3bd627d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5570))
- [Fixes the logical bug present in the complexity_multiplier method](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2648233caf6d0d58a28c32678d0058c53d0e9a6c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5529))
- [Require correct permissions to access frameworks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/daecb53efb85e3f5a77872f66916aca49971b2c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5540))
- [Stop preserving various exif tags](https://gitlab.com/gitlab-org/security/gitlab/-/commit/83c482c7395eb687001daa4e7a2856acd30cef82) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5532))
## 18.5.4 (2025-12-10)
### Fixed (2 changes)
(省略されました)
### Fixed (3 changes)
- [Handle 429s during github LFS import](https://gitlab.com/gitlab-org/security/gitlab/-/commit/de982c5ce9f7cb3d68b487aef4d5770d1ae32fed)
- [Fix partition missing error in project_daily_statistics backfill](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a9a2a6f278f822d1fb73336a55696fcf94dca055)
- [Update diff note representation](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2ad30bf915c8adf50c1ddb56441a61a7a48a9279)
### Changed (2 changes)
- [Fix: Restore branch protection check in cache_suffix_for](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c30a088a7d553805e9c4e7afda52c563c47eb8e6)
- [Ensure LFS imports work correctly with nil revisions](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b32e678fe2ddecefd70a9a9823753847a09c20cf)
### Security (10 changes)
- [Hide private project name to unauthorized users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7060745b8ada531cc1445df9afc9fef3d3aef24a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5550))
- [Apply requestBodyUploader to commit creation endpoints](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3bd577e0ee92c19cb9e48d370e215eae6458ebdc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5581))
- [Fix "Total 2FA Bypass for Users"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/887505e8fcfa67bd4f483b68bbdf541e6c1139fc) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5573))
- [Add strict validations for dismissal path input](https://gitlab.com/gitlab-org/security/gitlab/-/commit/39a07480e84bf59c161c618e8f2f6d637905596a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5585))
- [Fix merge request delete modal not escaping title](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9fba70dae46e2330d0ff509c6a708c5dd3bd627d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5570))
- [Fixes the logical bug present in the complexity_multiplier method](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2648233caf6d0d58a28c32678d0058c53d0e9a6c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5529))
- [Require correct permissions to access frameworks](https://gitlab.com/gitlab-org/security/gitlab/-/commit/daecb53efb85e3f5a77872f66916aca49971b2c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5540))
- [Stop preserving various exif tags](https://gitlab.com/gitlab-org/security/gitlab/-/commit/83c482c7395eb687001daa4e7a2856acd30cef82) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5532))
## 18.5.4 (2025-12-10)
### Fixed (2 changes)
(省略されました)
## 18.6.1 (2025-11-25)
### Fixed (3 changes)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ccf15957c87ce3fe5dd6e5ed83bd59c9ea81c876)
- [Fix BackfillTimelogsNamespace finalization order](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4460d317e1c5b8a76406d09d0cfad0f1b56b1b48)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/743ff5eb22638654df2598fa054243606d301cac) **GitLab Enterprise Edition**
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a175db6ae54ee6430a1c87b0e1bc83b5469b257) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5520))
- [Use Gitlab::Json.safe_parse to prevent parsing of large JSON objects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/124790eb84c20cd00b8e05c06f7d514b75bcd3b0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5495))
- [Limit JSON parsing depth, size, and elements in HTTParty](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c83315f5257169a6dce0eb04eb14dc4894915a6e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5504))
- [Add protection suffix to cache depending on role](https://gitlab.com/gitlab-org/security/gitlab/-/commit/44f7d7162660a5dbe506dac85acb7eb47a1ef6a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5483))
## 18.5.3 (2025-11-25)
### Fixed (6 changes)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/72d4caccc77ed4ab55936353f8ed5f1c8fd8f35e) **GitLab Enterprise Edition**
- [Revert "Support nested variables expention in rules:if"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49c0aa322da8a85508a98f0657cf046bbead1a1b)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7627f8b8b2437092c47126761d887810d1b8740f)
- [Relax blobs complexity in favor of limiting data](https://gitlab.com/gitlab-org/security/gitlab/-/commit/26a7f1e8fc314e4a31631c1070e21113fd5750e1)
- [Fix missing gitaly_context forward in BranchPushService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/54b93a422709b4087e0e06d3cbf061e082e05a7a)
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5ed73cbb59f02d20ff64f94b517b016f37ddab42) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5521))
(省略されました)
### Fixed (3 changes)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ccf15957c87ce3fe5dd6e5ed83bd59c9ea81c876)
- [Fix BackfillTimelogsNamespace finalization order](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4460d317e1c5b8a76406d09d0cfad0f1b56b1b48)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/743ff5eb22638654df2598fa054243606d301cac) **GitLab Enterprise Edition**
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5a175db6ae54ee6430a1c87b0e1bc83b5469b257) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5520))
- [Use Gitlab::Json.safe_parse to prevent parsing of large JSON objects](https://gitlab.com/gitlab-org/security/gitlab/-/commit/124790eb84c20cd00b8e05c06f7d514b75bcd3b0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5495))
- [Limit JSON parsing depth, size, and elements in HTTParty](https://gitlab.com/gitlab-org/security/gitlab/-/commit/c83315f5257169a6dce0eb04eb14dc4894915a6e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5504))
- [Add protection suffix to cache depending on role](https://gitlab.com/gitlab-org/security/gitlab/-/commit/44f7d7162660a5dbe506dac85acb7eb47a1ef6a6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5483))
## 18.5.3 (2025-11-25)
### Fixed (6 changes)
- [Fix custom role approvers lookup for inherited users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/72d4caccc77ed4ab55936353f8ed5f1c8fd8f35e) **GitLab Enterprise Edition**
- [Revert "Support nested variables expention in rules:if"](https://gitlab.com/gitlab-org/security/gitlab/-/commit/49c0aa322da8a85508a98f0657cf046bbead1a1b)
- [Fix /admin/sidekiq not loading CSS assets in Cloud Native GitLab](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7627f8b8b2437092c47126761d887810d1b8740f)
- [Relax blobs complexity in favor of limiting data](https://gitlab.com/gitlab-org/security/gitlab/-/commit/26a7f1e8fc314e4a31631c1070e21113fd5750e1)
- [Fix missing gitaly_context forward in BranchPushService](https://gitlab.com/gitlab-org/security/gitlab/-/commit/54b93a422709b4087e0e06d3cbf061e082e05a7a)
### Security (5 changes)
- [Override organization of signup users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/5ed73cbb59f02d20ff64f94b517b016f37ddab42) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5521))
(省略されました)
## 18.6.0 (2025-11-19)
### Added (194 changes)
- [Remove bulk_edit_security_attributes feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a9bc7c9b9ae3e7a3b373d68f20b40f732da294f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212651)) **GitLab Enterprise Edition**
- [Document `approvedTools` configuration field for MCP clients](https://gitlab.com/gitlab-org/gitlab/-/commit/0fb581dd5e4c31df67ff87d9356141249895be84) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212064))
- [Enable foundational_duo_planner feature flag by default](https://gitlab.com/gitlab-org/gitlab/-/commit/7c9310df52d1db2f88be4bb76d871249b5e9e086) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212958))
- [Track times the API to refresh token status is used](https://gitlab.com/gitlab-org/gitlab/-/commit/f29bca989fd2e1aaad2561f7e5c9d330c28f06e7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209253)) **GitLab Enterprise Edition**
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/df8d70ed1ec05057709e04cfdf376952d9e628d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212893))
- [Add onboarding error for composite identity](https://gitlab.com/gitlab-org/gitlab/-/commit/d589b8afea41eb8192a90991d6868c5c0ba780e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212618)) **GitLab Enterprise Edition**
- [Allow to filter code suggestions by IDE names](https://gitlab.com/gitlab-org/gitlab/-/commit/31ad60116426ee7d52ec6ff91f936ec4984e8516) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212302)) **GitLab Enterprise Edition**
- [Add metric for active context queue sizes](https://gitlab.com/gitlab-org/gitlab/-/commit/e9b54344f71207be41f5c912337af691dd642414) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212365)) **GitLab Enterprise Edition**
- [PackagesFinder support search by exact name](https://gitlab.com/gitlab-org/gitlab/-/commit/8b682db63ff40a67439249610ba4b18c8156fea1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212615))
- [Add copy ID actions to group and project lists](https://gitlab.com/gitlab-org/gitlab/-/commit/903b3ef6c42f99dfc59d148e0ac3f7b63c2be503) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211512))
- [Rename graphql queries for maven virtual registries](https://gitlab.com/gitlab-org/gitlab/-/commit/cc408b4ac95d964398c997556360dba8153a4a36) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212037))
- [Add agent platform sessions materialized view to clickhouse](https://gitlab.com/gitlab-org/gitlab/-/commit/15a7d3a5f101acc3ba2cb1e3af634235c28c97d6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210808))
- [Remove security_attribute_inventory_filters flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a5026ba8b2ee7255f76262d9831827269ad75b2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212653)) **GitLab Enterprise Edition**
- [Add organization isolation for personal snippets](https://gitlab.com/gitlab-org/gitlab/-/commit/c7a6a0e09d68ed033c1cfd820e3858905e9c56d2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210630))
- [Support default scope for search](https://gitlab.com/gitlab-org/gitlab/-/commit/1f2e5bd791457565925025cd20b80d757f92ab95) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212481))
- [Add security scan profiles table](https://gitlab.com/gitlab-org/gitlab/-/commit/a2ac9c35477778f324fb2c40a02f4d44e8b9bcee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211336))
- [Add composite identity to token revoke service](https://gitlab.com/gitlab-org/gitlab/-/commit/f483c4b8555557568e9e228aaf5a7cd9fa51da87) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212564)) **GitLab Enterprise Edition**
(省略されました)
### Added (194 changes)
- [Remove bulk_edit_security_attributes feature flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a9bc7c9b9ae3e7a3b373d68f20b40f732da294f) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212651)) **GitLab Enterprise Edition**
- [Document `approvedTools` configuration field for MCP clients](https://gitlab.com/gitlab-org/gitlab/-/commit/0fb581dd5e4c31df67ff87d9356141249895be84) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212064))
- [Enable foundational_duo_planner feature flag by default](https://gitlab.com/gitlab-org/gitlab/-/commit/7c9310df52d1db2f88be4bb76d871249b5e9e086) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212958))
- [Track times the API to refresh token status is used](https://gitlab.com/gitlab-org/gitlab/-/commit/f29bca989fd2e1aaad2561f7e5c9d330c28f06e7) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209253)) **GitLab Enterprise Edition**
- [Update table_size database dictionary entries](https://gitlab.com/gitlab-org/gitlab/-/commit/df8d70ed1ec05057709e04cfdf376952d9e628d1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212893))
- [Add onboarding error for composite identity](https://gitlab.com/gitlab-org/gitlab/-/commit/d589b8afea41eb8192a90991d6868c5c0ba780e8) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212618)) **GitLab Enterprise Edition**
- [Allow to filter code suggestions by IDE names](https://gitlab.com/gitlab-org/gitlab/-/commit/31ad60116426ee7d52ec6ff91f936ec4984e8516) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212302)) **GitLab Enterprise Edition**
- [Add metric for active context queue sizes](https://gitlab.com/gitlab-org/gitlab/-/commit/e9b54344f71207be41f5c912337af691dd642414) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212365)) **GitLab Enterprise Edition**
- [PackagesFinder support search by exact name](https://gitlab.com/gitlab-org/gitlab/-/commit/8b682db63ff40a67439249610ba4b18c8156fea1) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212615))
- [Add copy ID actions to group and project lists](https://gitlab.com/gitlab-org/gitlab/-/commit/903b3ef6c42f99dfc59d148e0ac3f7b63c2be503) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211512))
- [Rename graphql queries for maven virtual registries](https://gitlab.com/gitlab-org/gitlab/-/commit/cc408b4ac95d964398c997556360dba8153a4a36) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212037))
- [Add agent platform sessions materialized view to clickhouse](https://gitlab.com/gitlab-org/gitlab/-/commit/15a7d3a5f101acc3ba2cb1e3af634235c28c97d6) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210808))
- [Remove security_attribute_inventory_filters flag](https://gitlab.com/gitlab-org/gitlab/-/commit/1a5026ba8b2ee7255f76262d9831827269ad75b2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212653)) **GitLab Enterprise Edition**
- [Add organization isolation for personal snippets](https://gitlab.com/gitlab-org/gitlab/-/commit/c7a6a0e09d68ed033c1cfd820e3858905e9c56d2) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/210630))
- [Support default scope for search](https://gitlab.com/gitlab-org/gitlab/-/commit/1f2e5bd791457565925025cd20b80d757f92ab95) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212481))
- [Add security scan profiles table](https://gitlab.com/gitlab-org/gitlab/-/commit/a2ac9c35477778f324fb2c40a02f4d44e8b9bcee) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/211336))
- [Add composite identity to token revoke service](https://gitlab.com/gitlab-org/gitlab/-/commit/f483c4b8555557568e9e228aaf5a7cd9fa51da87) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/212564)) **GitLab Enterprise Edition**
(省略されました)
## 18.5.2 (2025-11-11)
### Fixed (10 changes)
- [Fix test failure by adjusting dates to match partition range](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7a43d4b3eed4e6730269fc18e78459ec711c913a)
- [Fix background migration when Ghost user is missing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2d51659333e0ba46b24ba208f7e1ea6e31817ea1)
- [Downgrade Zeitwerk to 2.6.18](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b620e65bb65b810fe62d962ada488ec924ffe271)
- [Allow Legacy FIPS instances to Upgrade Oauth secerets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1baa80bb05b379a516b2a3971f34e1ad9078fae7)
- [Fix the zoekt filters caching](https://gitlab.com/gitlab-org/security/gitlab/-/commit/63be8de02b236411b9d18176f37dc5c68a009251) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209798)) **GitLab Enterprise Edition**
- [Web Agentic Chat: fix calling workflowGoal on undefined](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebfa262932b64f78b31e7282e1f62db0cb9d7936) **GitLab Enterprise Edition**
- [Add deleted Geo migration back](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cf8c43b60180ab370b6c42a22eeea643daf8a97d) **GitLab Enterprise Edition**
- [Fix password validation exception for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/463c5aec8f33c3e9094fc5f47e831b3a97436741)
- [Fix admin_project_member policy SAML projects user namespaces](https://gitlab.com/gitlab-org/security/gitlab/-/commit/38414b0e0222f9d4cc58f090668121cd1409b383) **GitLab Enterprise Edition**
### Security (8 changes)
- [Security fix package api pipeline details](https://gitlab.com/gitlab-org/security/gitlab/-/commit/68646fa1ebff4180ee1fcc438f12a151bbf766c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5424))
- [Group enforced pages access control should restrict non-members](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8264a0d7c6a1b401aeee164e99727e446c3f2a2b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5440))
- [Update to gitlab-glfm-markdown 0.0.38](https://gitlab.com/gitlab-org/security/gitlab/-/commit/81de1960f41aecfd105644c11ab3c969a88ed8ad) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5461))
- [Encode protected branch names in API requests](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1aeb7601fe42c19b10c8d2a9408bf9ae88814935) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5456))
- [Prevent GraphQL subscriptions from blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/42843be77904596c58dd3168f408929432e0a3ed) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5430))
- [Prevent Duo Chat from reading confidential resources](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2a92aab1af9f57cf37175728888779bd0cab419) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5437))
- [Hide related branches when repository is private](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7957c6aaa3dda67c4ce7b236f0de1c19c34f8b47) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5434))
(省略されました)
### Fixed (10 changes)
- [Fix test failure by adjusting dates to match partition range](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7a43d4b3eed4e6730269fc18e78459ec711c913a)
- [Fix background migration when Ghost user is missing](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2d51659333e0ba46b24ba208f7e1ea6e31817ea1)
- [Downgrade Zeitwerk to 2.6.18](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b620e65bb65b810fe62d962ada488ec924ffe271)
- [Allow Legacy FIPS instances to Upgrade Oauth secerets](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1baa80bb05b379a516b2a3971f34e1ad9078fae7)
- [Fix the zoekt filters caching](https://gitlab.com/gitlab-org/security/gitlab/-/commit/63be8de02b236411b9d18176f37dc5c68a009251) ([merge request](https://gitlab.com/gitlab-org/gitlab/-/merge_requests/209798)) **GitLab Enterprise Edition**
- [Web Agentic Chat: fix calling workflowGoal on undefined](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ebfa262932b64f78b31e7282e1f62db0cb9d7936) **GitLab Enterprise Edition**
- [Add deleted Geo migration back](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cf8c43b60180ab370b6c42a22eeea643daf8a97d) **GitLab Enterprise Edition**
- [Fix password validation exception for FIPS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/463c5aec8f33c3e9094fc5f47e831b3a97436741)
- [Fix admin_project_member policy SAML projects user namespaces](https://gitlab.com/gitlab-org/security/gitlab/-/commit/38414b0e0222f9d4cc58f090668121cd1409b383) **GitLab Enterprise Edition**
### Security (8 changes)
- [Security fix package api pipeline details](https://gitlab.com/gitlab-org/security/gitlab/-/commit/68646fa1ebff4180ee1fcc438f12a151bbf766c0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5424))
- [Group enforced pages access control should restrict non-members](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8264a0d7c6a1b401aeee164e99727e446c3f2a2b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5440))
- [Update to gitlab-glfm-markdown 0.0.38](https://gitlab.com/gitlab-org/security/gitlab/-/commit/81de1960f41aecfd105644c11ab3c969a88ed8ad) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5461))
- [Encode protected branch names in API requests](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1aeb7601fe42c19b10c8d2a9408bf9ae88814935) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5456))
- [Prevent GraphQL subscriptions from blocked users](https://gitlab.com/gitlab-org/security/gitlab/-/commit/42843be77904596c58dd3168f408929432e0a3ed) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5430))
- [Prevent Duo Chat from reading confidential resources](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e2a92aab1af9f57cf37175728888779bd0cab419) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5437))
- [Hide related branches when repository is private](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7957c6aaa3dda67c4ce7b236f0de1c19c34f8b47) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/5434))
(省略されました)
RSS[全体]
Tw[@softantenna]