Bernhard Rausch @rauschbit
Reported 2020-10-19 09:54:20
@tonka_2000 @dnsmichi @RealRockaut @m4r10k @solidnerd @nmeisenzahl We made a separate gitlab repo where all needed images get pushed with an underlying organisational process to get everyone to make us an issue or a pull request on that repo if a new image is needed. Also there is a simple ci job implemented which pulls these images regularly...
Code Café @The_Code_Cafe
Reported 2020-10-19 09:20:58
Join our online expert talk with @gitlab and learn how to improve #DevSecOps through breaking down #silos and better #collaboration. Free registration: https://t.co/2GyA73emae https://t.co/KZdIXbLEt4
RunSafe Security @RunSafeSecurity
Reported 2020-10-19 07:05:16
RSAC Webcast: The Benefits and Challenges of High Velocity Code Release w/ Joe Saunders, RunSafe Security, and #cybersecurity ldrs from GitLab, JFrog, SecurityCurve, CloudBees. Build sec into the dev process w/o slowing down. #RSA #devops #devsecops https://t.co/RqT34I3l4K https://t.co/PsoFdij5ge
Reported 2020-10-19 06:32:17
@gitlabstatus Is this impacting https://t.co/WRcC0491tv too? Or is that a separate issue?
jeffrey Huang @jeffrey63086272
Reported 2020-10-19 02:40:27
@simbadmarin0 @BitTorrent I am writing things here so that they fix it faster. The issue was already here 6 months ago when I tried ( not on gitlab issue, true ) :P
Reported 2020-10-18 18:21:53
@antiproprietary they took down their gitlab instance already
aaron but like. BOO 👻🎃 @acar321
Reported 2020-10-18 16:10:44
@TheEnbyperor tru but i heard a lot of good things about the gitlab issue tracker hmmmm
Reported 2020-10-18 13:36:58
@saadazzz @gitlab I don't have to clear my whole cache by hand every now and then to see my merge requests, could be a dns issue but they can fix the UX if they look how much time a request takes for example, it keeps loading forever a lot
Govi S 🚀🍃 @folcohn
Reported 2020-10-18 06:50:01
@curtiseinsmann Very insightful thread. Questions from my end:
1⃣How to push back when changes suggested by reviewer don't make any sense?
2⃣if I give review comments on a senior programmer's PR and that person instead of addressing comments, creates a Gitlab issue and resolve open threads?
Felix Petriconi @FelixPetriconi
Reported 2020-10-18 04:43:10
@veethikaa Thanks for asking. This issue has this ticket: https://t.co/VLGKNuZJgb. For us it is a show stopper with GitLab CI not to have multiple stages on the same container instance. It is a waste of time and resources to cache >10GB data between each stage.
Stepan Vrany @MstrsObserver
Reported 2020-10-17 06:03:14
Do you use Gitlab runner on EKS together with IRSA? It seems that there's an issue with AWS_REGION variable injected by EKS 1.18. Here's the quick fix:
Jan Giacomelli @jangiacomelli
Reported 2020-10-17 04:21:09
5⃣ Keep your development things in one place
Use single application for:
* git mono repo
* issue tracking
* time tracking
For us @gitlab wins.
Reported 2020-10-16 14:12:55
Tomorrow, I will talk about Ansible AWX, integration with jenkins and GitLab
How we are doing pipeline in steps more details in every role
1- pre deployment check
2- deployment of new releas
3- Health check
4- Roll back if Health check issue
hncynic bot @hncynic
Reported 2020-10-16 09:37:07
Title: Embracing Asynchronous Communication at Gitlab
💬: So I'm guessing the problem is that your email client can't read the email...
Anyways, I've been using GitLab at work for over a couple years now. It was the most secure email client out there and it was always…
Ludwig Weinzierl @weinzierl
Reported 2020-10-16 08:46:59
@jmattheij Congrats for releasing it. As promised we played with it last weekend with a MIDI keyboard and I filed one issue on GitLab.
Michał Sidor @Michcioperz
Reported 2020-10-15 21:32:00
i remembered that last one because i recebtly got an email from pleroma gitlab that somebody re***igned my ticket about it and i remember the discussion on it included "**** can't fix it properly because mastodon does something very close"
Reported 2020-10-15 15:48:32
@pcarmonac Hi @pcarmonac, we recommend you take a look at the Boxes wiki page. It lists a couple resources that would be helpful for this issue including the issue tracker on GitLab, the IRC channel where you can find some of the Boxes maintainers, and a list of project contributors.
Martin Ehrnst ☁️ @ehrnst
Reported 2020-10-15 09:39:11
@pdtit @AzureDevOps @GoHugoIO A greater part of our org uses gitlab. I wanted to separate content and the actual site to make it easier for everyone to create content. Due to a license 'issue'. Sharing artifacts from other pipelines wasn't possible. I therfore spawned to devops.
What a mess
Francis Lemaire @FLemaire_
Reported 2020-10-15 09:18:55
@AllisonVacanti @blelbach @PaulDreik @lefticus @Atrix256 @Guriwesu @conan_io Wouldn't adding a required CI check to the PR (for GitHub at least) for the sha not being an older one than the current one "fix" this issue (i don't know if the same can be done in Gitlab tho)?
Nuritzi Sanchez @1nuritzi
Reported 2020-10-15 07:21:16
An example of something for us to remember in #FOSS communities:
"If it's not in a GitLab epic, issue, or merge request, it doesn't exist. This mentality is essential to reaping the benefits of asynchronous communication."
... I've definitely lost meeting notes in the past 😬
Reported 2020-10-14 20:12:28
@xx_hannah_xx but I mean, how?
1) they attempt to sign in for the first time with github
2) doesn't exist in gitlab, so gitlab prompts them to make an account
3) they have to input info (what info?)
4) *now* they can open an issue in some repo (do they look like a regular gitlab user?)
Matthew Strasiotto @MStrasiotto
Reported 2020-10-14 16:51:35
@DocHPJones @TimDoherty_ @prof_smurph Sure, that's a problem, but there's plenty of other git services that don't come with the "standard file sharing" problems
Bitbucket, gitlab to name a few
Ahmad Haghighi @haghighi_ahmad
Reported 2020-10-14 12:49:41
Whoa! #GitLab removed Issue number 260406 with title "Cloudflare check is blocking Iranian IPs from GitLab .com (#260406)" which was about our problem!
Shame #Shame Shame ...
My e-mail notification is enable, here is some screenshots from emailed replies: https://t.co/wuxaccjDNq
Vojtech Mares @vojtechmares_
Reported 2020-10-14 09:06:34
@steveazz_ @dnsmichi @gitlab Well I am new to OpenStack, but maybe some time later I will be able to give some info and even collab on this feature, since autoscaling of gitlab runners on it's own is a much needed feature.
Issue bookmarked and subscribed to it.
Jeffrey Freeman @DocFreemo
Reported 2020-10-14 09:03:43
might go down in the next day or two as I continue to work on the infrastructure but backups are happening often so no worries.
I will continue to bring up the other services in the next day or so.
#QOTO #Mastoadmin #NextCloud #Git #GitLab
Luis Ascorbe @Lascorbe
Reported 2020-10-14 08:32:19
@gitlab Hi folks. We’re seeing an issue where the pipelines triggered when pushing to main are not executed if it comes from a merge request and the merge is done by someone that is not the owner or ***ignee of that MR.
Is this expected behaviour or a bug?
Michael Friedrich 🦊 @dnsmichi
Reported 2020-10-14 06:50:14
Removing issue labels real quick in @gitlab. So small and so effective. Love it ❤️
Tried it live on https://t.co/sqCZ3KoPk7 - coming soon in 13.5. #development #issuemanagement https://t.co/DZ9JonoyiY
Nagy Viktor @nagyviktor
Reported 2020-10-14 06:00:02
@le_pappad @gitlab Hi @le_pappad! The PM responsible for Auto DevOps here. I've opened an issue just now for this: https://t.co/eeOg7HEFQa
AFAIK Flutter is a cross-platform tool, so it's not obvious how you'd like to use it with Auto DevOps. What would be your target platform?
Ndzalama Mabasa @ndzalama_m
Reported 2020-10-14 04:37:35
@MartinSichibeya @StasKlymenko From @Netlify website scroll down to "Just git push..." then "getting started in seconds" and sign up with your GitHub/GitLab/Gitbucket account to deploy straight from your repositories.
Reported 2020-10-13 13:10:35
@t4cc0re @gitlab But why is it possible then, that my User which have no access to the repo is displayed and used? Isn't it all security issue then? 🤔
Hendrik 'T4cC0re' Meyer @t4cc0re
Reported 2020-10-13 09:43:55
@Koala_Phil @gitlab I am 80% sure this is because both SSH keys are available and openssh retries them all in case of a permission problem.
Reported 2020-10-13 08:31:31
@gitlab I have two ssh key configs local but when i push to a private git repo where my private account does not have access to get refered as the user who pushed the commit. This looks critical. Any idea how to fix it or is it a known bug there?
Debra M. Fezza Reed #MasksSaveLives #Save2020Vote @SecRiskRptSME
Reported 2020-10-13 03:36:50
CVE-2020-13341 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions. https://t.co/mCU3rQtY59
— CVE (@CVEnew) October 12, 2020
Reported 2020-10-13 03:32:42
CVE-2020-13341 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions. https://t.co/mw6CrbpZgh
Debra M. Fezza Reed #MasksSaveLives #Save2020Vote @SecRiskRptSME
Reported 2020-10-13 03:17:29
New/Modified vulnerability published October 12, 2020 at 07:15AM on the NVD: CVE-2020-13341 https://t.co/QfpHQ5fNBC An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer ro…
Hernan Espinoza @hernanespinoza
Reported 2020-10-13 03:12:29
CVEnew: CVE-2020-13341 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions. https://t.co/yDS5gcEozm
Matt Glaman @nmdmatt
Reported 2020-10-12 16:03:31
🥳 Made a patch for Metatag through the Drupal issue queue integration with GitLab using the GitLab Web IDE
The only remaining "coolness" would be auto uploading of MR patches to the Drupal issue https://t.co/QLWZ78xgr7
Reported 2020-10-12 15:20:55
Push event notifications contain broken link to Gitlab user page
Poletaev Vsevolod @hexfaker
Reported 2020-10-12 14:33:18
@newkozlukov @abdalazizrashid BUT github and gitlab will ignore this trick and will show formatting author. I hope they'll fix it.
Yuan Gao (Meseta) @mesetatron
Reported 2020-10-12 11:34:53
Each of these builds can also be torn down from the Gitlab UI, so when you're done testing the feature branch, it can be undeployed (or re-deployed if you need).
It's also auto-undeploy after 1 day if you accidentally left it up. These are features provided by Gitlab CI) https://t.co/ZtDloOHM7o
Reported 2020-10-12 10:45:40
CVE-2020-13341 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2. Insufficient permission check allows attacker with developer role to perform various deletions. https://t.co/2EqaMJmESq
Reported 2020-10-12 07:16:11
I can't believe I'm installing greasemonkey in 2020 mostly to fix like... 3 kinda annoying GitLab features
(although mostly to make "MRs" default filter "author" rather than "***igned" tbh)
Reported 2020-10-12 04:38:48
Add functionality that will attach a mattermost post to a specific issue inside a GitLab project
Reported 2020-10-11 12:55:45
Appears there is an issue with connecting via GitLab. Not sure if it’s something changed with the API or recent update to Laravel 8.
Investigating now. Should have a patch later today.
Reported 2020-10-11 12:33:11
@FarzadShbfn Specific issue, even if that issue is genuinely important, is just as much bull****. It definitely sounds like GitLab could have handled their compliance issues better, but raising the git default branch name issue as a comparison doesn’t help you make your case.
Reported 2020-10-11 07:21:06
Sustainable Solution: Encourage all addon / mod authors to embrace @github or @gitlab and be free of Frameworks!
Reported 2020-10-11 04:22:53
gitlab down night before ***ignment due? cl***ic https://t.co/rYPqJUms57
Reported 2020-10-11 03:04:58
New vulnerability on the NVD: CVE-2020-13334 In GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, improper authorization checks allow a non-member of a project/group to change the confidentiality attribute of issue via mutation GraphQL query https://t.co/TbBaVP8xJM
Reported 2020-10-11 03:04:57
New vulnerability on the NVD: CVE-2020-13339 (gitlab) An issue has been discovered in GitLab affecting all versions before 13.2.10, 13.3.7 and 13.4.2: XSS in SVG File Preview. Overall impact is limited due to the current user only being impacted. https://t.co/csQxE6eZ7c
Reported 2020-10-11 03:04:57
New vulnerability on the NVD: CVE-2020-13340 An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log https://t.co/63yJBNcVvf