GitLab 13.4 Release

Connect an Atlassian Account

Connect an Atlassian Account

GitLab users will now be able to connect their GitLab account to their Atlassian Cloud account. Connecting accounts allows users to sign in to GitLab with their Atlassian credentials. This change also lays the foundation for future enhancements to the Gitlab Jira integration and integrating with other products in the Atlassian suite.

Export a list of all merge commits

Export a list of all merge commits

Compliance-minded organizations need a way to show auditors a holistic view of the components involved with any particular change to production. Within GitLab, this means connecting all of the dots: MRs, issues, pipelines, security scans, and other data about a commit. Until now, you had to either dig through the GitLab application and/or build custom tooling to aggregate the information - which was not very efficient.

Now, you can programmatically collect and export this data to satisfy auditing requirements or perform other analyses by navigating to the Compliance Dashboard and clicking the button to export a list of all merge commits for the group. The resulting file will contain all merge commits and their author, related merge request ID, group, project, approvers, and more.

List and Revoke Personal Access Tokens via API

List and Revoke Personal Access Tokens via API

Managing access to your GitLab namespace is an important part of your compliance program. From the principles of least privilege to timely termination of access, there are several compliance requirements related to Personal Access Tokens within GitLab. To support easier, better and bulk management of these user credentials within your namespace we’ve introduced the ability to list all user PATs and optionally revoke them via API.

These improvements to GitLab’s API capabilities enable users to list and revoke their own PATs and enables administrators to list and revoke the PATs of their users. Administrators now have better visibility into who has access to their namespace, can make data-informed decisions about their users’ credentials, and are empowered to revoke PATs that may be compromised or which may exceed corporate policy for credential rotation.

Related Issues and more are now available in Core

Related Issues and more are now available in Core

A few months ago, we announced a plan to open source 18 features. In working towards honoring that commitment, Related Issues[1], Issues CSV Export, and Issue Board Focus Mode are now available in Core. This only applies to the “relates to” relationship. “Blocks” and “is blocked by” remain in paid tiers.

Display source branch name in merge request sidebar

Display source branch name in merge request sidebar

When reviewing code changes, discussions, and commits in a merge request, it is often desirable to checkout the branch locally for a more in-depth review. However, finding the branch name becomes harder as more content is added to the merge request description as more scrolling is necessary.

The branch name has now been added to the merge request sidebar, making it easily accessible at all times and removing the need for scrolling. Just as the merge request reference, the source branch section provides a convenient “copy” button for easy local checkout.

Many thanks to Ethan Reesor for this great contribution.

Emphasize collapsed diffs in merge request diffs

Emphasize collapsed diffs in merge request diffs

Merge requests which apply changes to multiple files will sometimes collapse large file diffs in order to improve performance. When this happens, it’s easy to overlook a file and not review it, especially in merge requests with many files. Starting with GitLab 13.4, the merge request will emphasize diffs containing collapsed files which will ensure those files are not missed by reviewers during the code review process. For added clarity, we are planning to highlight these files in a future release. Follow gitlab#16047 for updates.

Gitaly Cluster automatic repository repair

Gitaly Cluster automatic repository repair

When a primary Gitaly Cluster node went offline, repositories on the node were marked as read only to prevent data loss when there were changes that hadn’t been replicated. If the node came back online, GitLab did not automatically recover and administrators had to manually trigger reconciliation, otherwise, you had to accept data loss. Other situations could also result in outdated or read only repositories, such as a replication job failing to be processed on a secondary node. In this case, the repository would stay out of date until another write came in and triggered a replication job.

To address these situations, Praefect now schedules a replication job when it detects an outdated repository on one node, but the latest version of the repository on a different node. This replication job brings the outdated repository up to date automatically, mitigating concerns about manual data recovery. Automatic repair also ensures that secondary nodes are brought back up to date quickly if a replication job has failed, rather than needing to wait for the next write to occur. Since many Gitaly clusters store a large number of repositories, this significantly reduces the time that administrators and site reliability engineers need to spend recovering data after a failover.

In addition, automatic repair initiates replication of repositories to any new Gitaly node that is added to the cluster, removing the need for manual intervention when adding new nodes.

Mark a to do as Done in the Design View

Mark a to do as Done in the Design View

Effective communication in GitLab relies on the To-Do List. If you are mentioned in a comment, it’s critical to be able to follow the to do and either take action or mark it as done. It’s also important to be able to give yourself to dos when you need to remember to work on something or come back later.

Until now, it was super frustrating that you could not add a to do or mark it as done on Designs. This really impaired the effectiveness of communication between product teams as to dos are essential to managing the flow of work in GitLab.

As of 13.4, Designs achieve parity with Issue comments and their use of to dos for a more consistent and useful experience!

Warning on merge request diff when files are collapsed

Warning on merge request diff when files are collapsed

Collapsing large files on a merge request diff is done to enhance the performance and responsiveness of the diff section in a merge request. However, during code review, some files may be missed by the reviewer when scrolling through the list of files, because large files are collapsed.

We have introduced a visible warning at the top of the merge request diff page, clearly informing the user that a file in the section is collapsed. This ensures all related changes in the merge request are reviewed.

GitLab Runner 13.4

GitLab Runner 13.4

We’re also releasing GitLab Runner 13.4 today! GitLab Runner is the lightweight, highly-scalable agent that runs your build jobs and sends the results back to a GitLab instance. GitLab Runner works in conjunction with GitLab CI/CD, the open-source continuous integration service included with GitLab.

What’s new:

• Use secrets stored in a Hashicorp Vault server for CI/CD job variables
• Use Azure Blob Storage for runner cache
• Add userns_mode support for Gitlab CI services
• Allow overwriting Service container resources for Kubernetes executor
• Allow overwriting Helper container resources for Kubernetes executor
• Add Kubernetes node affinities settings

Bug fixes:

• Fix: File-type variable has byte order mark when using PowerShell
• Fix: Docker authentication random behavior
• Fix: Docker windows Git cloning

The list of all changes is in the GitLab Runner CHANGELOG.

Improved troubleshooting guide for CI/CD

Improved troubleshooting guide for CI/CD

We have improved the GitLab CI/CD troubleshooting guide with additional information on common issues you might run into. We hope the improved documentation is a valuable resource to help you get up and running quickly and easily with GitLab CI/CD.

Merge requests not accidentally dropped from merge train

Merge requests not accidentally dropped from merge train

Previously, merge requests could be dropped from the Merge Train accidentally by late comments. If a merge request was already on the merge train, and someone added a comment that created a new unresolved thread, the merge request was then considered unmergeable and dropped from the train. Now, after the merge request is added to the train, new comments can be made without any worries about disrupting the merge process.

Show job data for Code Coverage value in MR

Show job data for Code Coverage value in MR

As a developer, you should be able to easily see code coverage after a pipeline finishes running, even in complex scenarios that make this more difficult, like when your pipeline has multiple jobs that are parsed to calculate the coverage value. Until now, the Merge Request widget only showed the average of those values, which meant you had to navigate to the jobs page and then back to the Merge Request itself to get more granular details for the coverage value. To save you time and eliminate those extra steps, you’re now presented with the average coverage value, how it has changed from the target and source branch, and a tooltip that shows the coverage for each job used to calculate the average.

Delete Package Registry packages while viewing a group

Delete Package Registry packages while viewing a group

The GitLab Package Registry is where you store and share a variety of package formats. When your project or group has a large number of packages, you want to quickly identify unused packages and delete them, to prevent people from installing the wrong package. You can delete packages from your registry by using the Packages API or from the Package Registry user interface. However, until recently, you could not delete packages when viewing a group in the UI. As a result, you were forced to delete packages for each project, which was inefficient.

Now you can delete packages while you’re viewing the Package Registry for a group. Simply navigate to your group’s Package Registry, filter by package name, and delete any unwanted packages.

Scope Conan packages to a project

Scope Conan packages to a project

You can use the GitLab Conan Repository to publish and share C/C++ dependencies. However, packages could previously only be scoped to the instance. This was problematic because Conan package names must be 51 characters or fewer. For anyone trying to publish a package that lived within a sub-group, like gitlab-org/ci-cd/package-stage/feature-testing/conan, it was nearly impossible to use this feature.

Now you can scope your Conan packages to a project, making it easy to publish and share your project’s dependencies.

Create EKS clusters with user-specified Kubernetes version

Create EKS clusters with user-specified Kubernetes version

GitLab users can now choose their preferred Kubernetes version to be provisioned on EKS. In line with the supported Kubernetes versions available on EKS, users can choose between versions 1.14 - 1.17.

Notifications when ‘Merge When Pipeline Succeeds’ is set on a merge request

Notifications when ‘Merge When Pipeline Succeeds’ is set on a merge request

When a reviewer sets a merge request (MR) to Merge When Pipeline Succeeds (MWPS), no email notification is sent. You must manually check to see the status or wait for the notification when the MR is merged. In this release we are excited to include a community contribution by @ravishankar2kool which solves this problem by automatically notifying all the subscribers in the merge request thread when a reviewer sets the MR to MWPS.

Create incidents as a type of issue

Create incidents as a type of issue

Not every problem that arises triggers an alert first: customers report outages, and team members identify performance problems. Incidents are now a type of issue, so your team members can quickly create incidents through a familiar workflow. Click New Issue from anywhere within GitLab, and in the Type field, select Incident.

Reference GitLab alerts in Markdown

Reference GitLab alerts in Markdown

We improved alerts by adding an alert-specific reference in GitLab-flavored Markdown, making it easy for you to share and reference alerts. Use ^alert#1234 to reference an alert in any Markdown field in incidents, issues, or merge requests. This alert reference also helps you identify to-dos resulting from alerts, rather than issues or merge requests!

View alert payload on incidents

View alert payload on incidents

An alert’s payload contains critical information to diagnosing outages and restoring service, and this information must be easily accessible so you don’t need to switch tools or tabs when working to resolve the incident. Incidents created from alerts display the alert’s full payload in the Alert Details tab.

On-demand DAST Scanner Profiles

On-demand DAST Scanner Profiles

Adding onto the DAST On-demand scans that were introduced in the last release, DAST Scanner Profiles extend the configuration options of these scans by allowing for the quick creation of multiple profiles, to cover multiple scan types. In 13.4, the Scanner Profile initially includes a spider timeout option, which sets how long the DAST spider should run when it tries to discover all the pages of a site to be scanned. It also includes a target timeout option, to set how long the scanner should wait for a site to become available before it aborts the scan, if the site does not respond with a 200 or 300 status code. As we continue to iterate on this feature in upcoming releases, more configuration options will be added to the Scanner Profile.

Azure Blob storage support

Azure Blob storage support

Both GitLab and GitLab Runner now support Azure Blob storage, making it easier to run GitLab services on Azure.

GitLab instances support Azure for all object storage types, including: LFS files, CI artifacts, backups, and more. To configure Azure Blob storage, follow the instructions for Omnibus or Helm chart installations.

GitLab Runners also support Azure for storing the distributed cache. Azure storage can be configured using the [runners.cache.azure] section.

Omnibus ARM64 packages for Ubuntu and OpenSUSE

Omnibus ARM64 packages for Ubuntu and OpenSUSE

In response to increasing demand for support running GitLab on the 64-bit ARM architecture, we are excited to announce the availability of an official ARM64 Ubuntu 20.04 Omnibus package. A huge thanks to Zitai Chen and Guillaume Gardet for the enormous contribution they have made - their merge requests have been a key enabler to making this happen!

To download and install the Ubuntu 20.04 package, go to our Install page and select Ubuntu.

Smartcard authentication support for GitLab Helm chart

Smartcard authentication support for GitLab Helm chart

Smartcards, such as Common Access Cards (CAC), can now be used to authenticate against a Helm chart-deployed GitLab instance. Smartcards are authenticated against a local database using X.509 certificates. This brings the Helm chart in parity with the smartcard support available in Omnibus deployments.

Bug fixes

Bug fixes

Some of the notable bug fixes in 13.4 are:

• 500 error when uploading a PyPI package
• 500 error when uploading a Conan package
• Conan returns incorrect package version
• Composer returns 404 on API request
• Conan package names are not clear in the Package Registry UI
• Don’t send SameSite=None to incompatible browsers
• Iteration reports should include Issues from deeply nested Projects
• Reactions should not be allowed on locked Issues
• Group Boards can’t be scoped to Group Milestones
• Jira Importer user mapping only shows a maximum of 50 users
• Fix Windows runner helper Docker container
• Ensure Powershell file variables contain no BOM
• Security Approvals required even when no new vulnerabilities have been found
• Unable to fetch vulnerable projects
• Cilium cluster application state is not updated upon installation
• Geo: Skip container repo update events based on selective sync
• Geo: Skip design repo update events based on selective sync
• Geo: Fix blob delete events
• Geo: Disabled secondary causes issues in failover
• Geo: Container repository update events race condition
• Restore from backup fails due to ActiveRecord::IrreversibleOrderError
• User search times out when filtering to group
• Service Desk adds support for X-Envelope-To header
• Sub-epics inherit dates from parent when issue is moved
• Fix creation of epics from within epic tree of confidential epic
• Fix assigning of epics through quick actions
• Cast GIDs when updating issue epics through GraphQL
• Scrolling through tests tab is buggy when tests have failed
• All environment variables are not propagated to Code Quality job
• Unit test times below 1 second are reported as 00:00:00
• Inconsistent behavior when using needs with skipped jobs
• Child pipeline execution is skipped when previous job in parent pipeline is retried
• “Closes #issue” text is duplicated when opening an MR from source branch that starts with issue number
• 500 error / timeout when creating new issues
• Iterations should not auto-close on the due date, but rather the day after
• ArgumentError in Todos API
• Fix projectMembers GraphQL endpoint
• The names of the columns in a board are missing when the column is collapsed
• Issue Comments no longer displaying for users of Edge 17/42 after upgrade from 13.0.3 to 13.3.1
• Fix “mark all todos as done” on mobile
• Search query is added without query parameter name in the service desk issues list
• Issue weight in issues board needs alignment and update to color
• Triggering multiple dynamically generated child pipelines in a single phase causes all but one to fail

Deleted projects view for administrators

Deleted projects view for administrators

Thank you to Ashesh Vidyut (@asheshvidyut7) for this community contribution!

The ability to delay project deletion was introduced in 12.6. However, previously there was no way to see all projects pending deletion in one place. Now self-managed administrators can view all projects pending deletion in a single view, along with buttons to easily restore these projects.

This capability allows self-managed administrators to have better control of project deletion by aggregating this information in a single place and providing the opportunity to undo undesirable deletion activity.

Group Push Rules Support Added to API

Group Push Rules Support Added to API

Previously, group push rules could only be configured by visiting each group individually via GitLab UI and applying these rules. Now you can manage these rules via API to support your custom GitLab tooling and automation.

Revoke PATs for self-managed credential inventory

Revoke PATs for self-managed credential inventory

The Credentials inventory provides the insight administrators need to manage user access credentials for their GitLab instance. As compliance-minded organizations vary in the strictness of their credential management policies, we’ve added a button that allows administrators to optionally revoke a user’s Personal Access Token (PAT). Administrators can now easily revoke PATs that may be compromised. This feature supports organizations that want more flexible enforcement options, to minimize disruptions to their users.

Configuration file for the Static Site Editor

Configuration file for the Static Site Editor

In GitLab 13.4, we’re introducing a new way to configure the Static Site Editor. While the configuration file doesn’t store or retrieve any values in this release, we’re laying the foundation for customization of the editor’s behavior. In upcoming releases, we’ll add values to .gitlab/static-site-editor.yml for setting the site’s base URL, where images uploaded from the editor are stored, overriding Markdown syntax preferences, and other editor-specific settings.

Edit front matter using the Static Site Editor

Edit front matter using the Static Site Editor

Front matter is a flexible and convenient way to define page-specific variables in data files intended to be parsed by a static site generator. It is commonly used for setting a page’s title, layout template, or author, but can be used to pass any kind of metadata to the generator as the page renders out to HTML. Included at the very top of each data file, the front matter is often formatted as YAML or JSON and requires consistent and accurate syntax. Collaborators unfamiliar with the specific syntax rules can inadvertently introduce invalid markup that can in turn cause formatting issues or even build failures.

The Static Site Editor’s WYSIWYG editing mode already removes the front matter from the editor to prevent these formatting errors. However, that leaves you with no way to modify the values stored in the front matter without reverting to editing the raw source of the file. In GitLab 13.4, you can access and edit the values for each front matter field in a familiar form-based interface. Clicking the Settings button will reveal a panel that displays a form field for each key defined in the front matter. The fields are populated with the current value and editing any of them is as simple as typing into a web form. Editing front matter in this way allows you to avoid syntax complexities and gives you complete control over the content while ensuring the final output is formatted consistently.

GitLab for Jira and DVCS Connector now in Core

GitLab for Jira and DVCS Connector now in Core

For users of Jira GitLab, the GitLab for Jira app and the DVCS Connector allow you to display information about GitLab commits and merge requests directly in Jira. Combined with our native integration with Jira, you can easily move back and forth between the two applications as you work.

These features were previously available only in our Premium plan, but are now available to all users! 🎉

Gitaly Cluster majority-wins reference transactions (beta)

Gitaly Cluster majority-wins reference transactions (beta)

Gitaly Cluster allows Git repositories to be replicated on multiple warm Gitaly nodes. This improves fault tolerance by removing single points of failure. Reference transactions, introduced in GitLab 13.3, causes changes to be broadcast to all the Gitaly nodes in the cluster, but only the Gitaly nodes that vote in agreement with the primary node persist the changes to disk. If all the replica nodes dissented, only one copy of the change would be persisted to disk, creating a single point of failure until asynchronous replication completed.

Majority-wins voting improves fault tolerance by requiring a majority of nodes to agree before persisting changes to disk. When the feature flag is enabled, writes must succeed on multiple nodes. Dissenting nodes are automatically brought in sync by asynchronous replication from the nodes that formed the quorum.

Support custom JSON schema validation in the Web IDE

Support custom JSON schema validation in the Web IDE

Projects that rely on people writing configurations in JSON or YAML format can cause problems because it’s easy to make a typo and break things. It’s possible to write validation tools that catch this in the CI pipeline but using a JSON schema file can be helpful for offering documentation and hints.

Project contributors can define a custom schema path in the .gitlab/.gitlab-webide.yml file in their repository which specifies the schema and path of files to validate. When loading the defined file in the Web IDE additional feedback and validation will be visible to help create the file.

Directed Acyclic Graph (DAG) relationship limit increased to 50

Directed Acyclic Graph (DAG) relationship limit increased to 50

If you’re using Directed Acyclic Graph (DAG) pipelines, you might have found that the limit of 10 jobs that a job can list in needs: is insufficient. In 13.4, the default limit was raised from 10 to 50 to allow for more complicated networks of relationships between jobs in your pipelines.

If you are an administrator for a self-managed instance, you can make this even higher by adjusting a feature flag setting, though we don’t offer official support for this.

Improved the behavior of needs with skipped jobs

Improved the behavior of needs with skipped jobs

In certain edge cases, it was possible for a skipped job in your pipeline to be considered successful for needs dependencies, which allowed later jobs to run that shouldn’t have. This is fixed in 13.4, and the behavior of skipped jobs is now handled properly by needs.

Lock the latest job artifact to prevent deletion

Lock the latest job artifact to prevent deletion

GitLab will now automatically lock the latest artifact of a successful job and pipeline on any active branch, MR, or tag to prevent it from being deleted based on expiration. This makes it easier to set a more aggressive expiration policy to clean up older artifacts, helps reduce disk space consumption, and ensures you’ve always got a copy of the latest artifact from your pipeline.

Pipeline efficiency guide for CI/CD

Pipeline efficiency guide for CI/CD

Optimizing your CI/CD pipeline runs can result in improved speed and cost-savings. We’ve improved our documentation with a short guide on how to get the most out of optimizing your pipelines.

Test Report Sorted by Test Status

Test Report Sorted by Test Status

The Unit Test Report is an easy way to see results from all tests in a pipeline. However, if there are a large number of tests, it can be time consuming to find the failing tests. Other problems that made the report hard to use include difficulty scrolling long trace output, and data often rounding down to 0 for tests running in less than 1 second. Now, by default the Test Report sorts the failed tests to the top of the report first, then by duration. This makes finding failures and long running tests easier. Also, the duration of tests now displays in milliseconds or seconds so it is much quicker to read and the previous issues with scrolling have also been resolved.

Limits for file size uploads to the Package Registry

Limits for file size uploads to the Package Registry

There are now limits that restrict the size of package files that can be uploaded to the GitLab Package Registry. The limits were added to prevent abuse and optimize the performance of the Package Registry. The limits vary by package format. For GitLab.com, the maximum file sizes are:

• Conan: 250MB
• Maven: 3GB
• NPM: 300MB
• NuGet: 250MB
• PyPI: 3GB

For self-managed instances, the defaults are the same. However, an administrator can update the limits by using the Rails console.

Use CI_JOB_TOKEN to publish PyPI packages

Use CI_JOB_TOKEN to publish PyPI packages

You can use the GitLab PyPI Repository to build, publish, and share python packages, right alongside your source code and CI/CD Pipelines. However, previously you couldn’t authenticate with the repository by using the pre-defined environment variable CI_JOB_TOKEN. As a result, you were forced to use your personal credentials for making updates to the PyPI Repository, or you may have decided not to use the repository at all.

Now it is easier than ever to use GitLab CI/CD to publish and install PyPI packages by using the predefined CI_JOB_TOKEN environment variable.

GitLab Managed Terraform State

GitLab Managed Terraform State

Having access to previous versions of a Terraform state is necessary both for compliance and occasional debugging needs. Support for versioning of GitLab Managed Terraform state is provided starting with GitLab 13.4. Versioning is turned on automatically for new Terraform state files. Existing GitLab Managed Terraform state files will be migrated automatically to versioned storage in a later release.

Simple redirect configuration file for GitLab Pages

Simple redirect configuration file for GitLab Pages

If you are a user of GitLab Pages wanting to better manage URL changes, you’ve encountered the pain point of being unable to manage redirects in your GitLab Pages site. GitLab now allows you to configure rules to forward one URL to another for your Pages site by adding a configuration file to your repository. This feature was made possible by contributions from Kevin Barnett (@PopeDrFreud), our very own Eric Eastwood (@MadLittleMods), and the GitLab team. Thank you all for your contributions.

Highlight critical alert details on incidents

Highlight critical alert details on incidents

When triaging incidents, it should be easy for you to identify how long an alert has been open and how many times the event has fired. These details are often critical when determining customer impact and what your team needs to respond to right now. In the new incident highlight bar, we surface the alert start time, events count, and a link to the originating alert front and center. This information is available on incidents that are promoted from alerts.

Set and edit incident severity

Set and edit incident severity

An incident’s severity tells responders and stakeholders the impact of an outage, and the methods and urgency needed for responses. As your team shares findings during the fire-fight and remediates the outage, they can edit the incident’s severity. You can now edit the severity of the incident in the right-hand sidebar of the Incident Details page, and the severity is displayed in the incident list.

Expand package managers and languages supported by Dependency Scanning

Expand package managers and languages supported by Dependency Scanning

We are pleased to add Dependency Scans for C, C++, C#, and .Net projects that use NuGet 4.9+ or Conan package managers to our supported languages and frameworks. As part of our Secure stage, you can enable Dependency Scanning to check the dependencies included via package managers for known vulnerabilities. These vulnerabilities will be shown in your merge request, along with their severity level, so you can know before merging what risks that new dependency may introduce. You can also configure your project to require a merge request approval for any vulnerabilities with severity Critical, High, or Unknown.

Create, Edit, and Delete for Container Network Policies

Create, Edit, and Delete for Container Network Policies

This improvement to the Container Network Policy editor allows users to easily create, edit, and delete their policies from directly within the GitLab UI. The editor’s capabilities include a .yaml mode for experienced users and an intuitive rules editor UI for users new to Network Policies. You can find the new policy management capabilities at Security & Compliance > Threat Management > Policies.

GitLab chart improvements

GitLab chart improvements

• A RedHat Universal Base Image (UBI) version of the alpine-certificates image is now available. Previously, deployments using UBI-based images needed to use a non-UBI image for the certificate container. To deploy GitLab with this new image, specify global.certificates.image.tag=master-ubi8 in your values.yaml file. For more information on deploying GitLab using UBI images, see GitLab with UBI-based images.
• Helm installs now support smartcard authentication. See the smartcard announcement for more details.
• A sub chart has been added for deploying and configuring the Praefect service. Praefect allows you to manage storage of Git repositories across a cluster of Gitaly nodes for a fault tolerant configuration. To learn more about Gitaly clusters, see the Gitaly documentation.
• Caches of archive files downloaded to Workhorse have been disabled for Helm chart installations. Storing archive caches on local disk was carried over from the Omnibus installation method. With Kubernetes deployments, the disk is not shared across pods. Archives build up over time because there is no way to clean up the archive files. This can cause excessive disk usage issues on nodes.
• It is now possible to enable a Content Security Policy (CSP) in the chart to help prevent JavaScript cross-site scripting (XSS) attacks. For details, see the Global Settings documentation.
• A bug has been resolved that prevented Helm-based installs on VMWare clusters when a job name contained a dot.
• Instructions for migrating from Helm 2 to Helm 3 are now available.

Omnibus improvements

Omnibus improvements

• Support for deploying GitLab on ARM64 is now available. See the announcement for more details.
• This release includes minor version updates for PostgreSQL from 11.7 to 11.9, and 12.3 to 12.4. For details of the changes made in these releases, see the PosgreSQL release announcement.
• GitLab 13.4 includes Mattermost 5.26, an open source Slack-alternative. This release includes the ability to categorize and reorder channels with experimental channel sidebar enhancements, the ability to get help from the Mattermost community via ‘Ask the community’ link, and much more. It also includes security updates. We recommend you upgrade from earlier versions.

75% faster search results in Advanced Search

75% faster search results in Advanced Search

As a single application, GitLab has a unique opportunity to make locating content across the entire DevOps workflow delightful. In GitLab 13.4, Advanced Search now outputs results 75% faster when it is limited to specific namespaces and projects, like on GitLab.com.

Performance Improvements

Performance Improvements

In every release, we continue to make great strides improving GitLab’s performance. We’re committed to making every GitLab instance faster. This includes GitLab.com, an instance with over 1 million registered users!

In GitLab 13.4, we’re shipping performance improvements for issues, projects, milestones, and much more! Some improvements in GitLab 13.4 are:

• Fix Package versions rendering results with N^2 queries
• Reduced loading of Settings > Notifications in some situations from over 60s to ~2s
• Merge Requests no longer time out when they are created with a large description
• Improve Snowplow product analytics performance
• Fix some N+1 GraphQL queries
• Geo: Improve performance of package files queries