リリースノート

Enterprise Server 3.0.25

Download GitHub Enterprise Server 3.0.25

February 17, 2022

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Known issues

On a freshly set up GitHub Enterprise Server instance without any users, an attacker could create the first admin user.
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.24

Download GitHub Enterprise Server 3.0.24

February 01, 2022

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Pages would become unavailable following a MySQL secret rotation until nginx was manually restarted.
When setting the maintenance schedule with a ISO 8601 date, the actual scheduled time wouldn't match due to the timezone not being transformed to UTC.
The version number would not be correctly updated after a installing a hotpatch using ghe-cluster-each.
Spurious error messages concerning the cloud-config.service would be output to the console.
When using CAS authentication and the "Reactivate suspended users" option was enabled, suspended users were not automatically reactivated.

Changes

The GitHub Connect data connection record now includes a count of the number of active and dormant users and the configured dormancy period.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.23

Download GitHub Enterprise Server 3.0.23

January 18, 2022

Security fixes

Packages have been updated to the latest security versions. In these updates, Log4j has been updated to version 2.17.1. Note: previous mitigations released in 3.3.1, 3.2.6, 3.1.14, and 3.0.22 are sufficient to address the impact of CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, and CVE-2021-44832 in these versions of GitHub Enterprise Server.
Sanitize more secrets in the generated support bundles
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Running ghe-config-apply could sometimes fail because of permission issues in /data/user/tmp/pages.
The save button in management console was unreachable by scrolling in lower resolution browsers.
IOPS and Storage Traffic monitoring graphs were not updating after collectd version upgrade.
Some webhook related jobs could generated large amount of logs.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.22

Download GitHub Enterprise Server 3.0.22

December 13, 2021

Security fixes

Critical: A remote code execution vulnerability in the Log4j library, identified as CVE-2021-44228, affected all versions of GitHub Enterprise Server prior to 3.3.1. The Log4j library is used in an open source service running on the GitHub Enterprise Server instance. This vulnerability was fixed in GitHub Enterprise Server versions 3.0.22, 3.1.14, 3.2.6, and 3.3.1. For more information, please see this post on the GitHub Blog.
December 17, 2021 update: The fixes in place for this release also mitigate CVE-2021-45046, which was published after this release. No additional upgrade for GitHub Enterprise Server is required to mitigate both CVE-2021-44228 and CVE-2021-45046.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.21

Download GitHub Enterprise Server 3.0.21

December 07, 2021

Security fixes

Support bundles could include sensitive files if they met a specific set of conditions.
A UI misrepresentation vulnerability was identified in GitHub Enterprise Server that allowed more permissions to be granted during a GitHub App's user-authorization web flow than was displayed to the user during approval. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.3 and was fixed in versions 3.2.5, 3.1.13, 3.0.21. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-41598.
A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.3 and was fixed in versions 3.0.21, 3.1.13, 3.2.5. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-41599. Updated February 17, 2022.

Bug fixes

Running ghe-config-apply could sometimes fail because of permission issues in /data/user/tmp/pages.
A misconfiguration in the Management Console caused scheduling errors.
Docker would hold log files open after a log rotation.
GraphQL requests did not set the GITHUB_USER_IP variable in pre-receive hook environments.

Changes

Clarifies explanation of Actions path-style in documentation.
Updates support contact URLs to use the current support site, support.github.com.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.20

Download GitHub Enterprise Server 3.0.20

November 23, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Pre-receive hooks would fail due to undefined PATH.
Running ghe-repl-setup would return an error: cannot create directory /data/user/elasticsearch: File exists if the instance had previously been configured as a replica.
In large cluster environments, the authentication backend could be unavailable on a subset of frontend nodes.
Some critical services may not have been available on backend nodes in GHES Cluster.

Changes

An additional outer layer of gzip compression when creating a cluster support bundle with ghe-cluster-suport-bundle is now turned off by default. This outer compression can optionally be applied with the ghe-cluster-suport-bundle -c command line option.
We have added extra text to the admin console to remind users about the mobile apps' data collection for experience improvement purposes.
The GitHub Connect data connection record now includes a list of enabled GitHub Connect features. [Updated 2021-12-09]

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.19

Download GitHub Enterprise Server 3.0.19

November 09, 2021

Security fixes

A path traversal vulnerability was identified in GitHub Pages builds on GitHub Enterprise Server that could allow an attacker to read system files. To exploit this vulnerability, an attacker needed permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.3, and was fixed in versions 3.0.19, 3.1.11, and 3.2.3. This vulnerability was reported through the GitHub Bug Bounty program and has been assigned CVE-2021-22870.
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Some Git operations failed after upgrading a GitHub Enterprise Server 3.x cluster because of the HAProxy configuration.
Unicorn worker counts might have been set incorrectly in clustering mode.
Resqued worker counts might have been set incorrectly in clustering mode.
If Ubuntu's Uncomplicated Firewall (UFW) status was inactive, a client could not clearly see it in the logs.
Some pages and Git-related background jobs might not run in cluster mode with certain cluster configurations.
The enterprise audit log page would not display audit events for secret scanning.
Users were not warned about potentially dangerous bidirectional unicode characters when viewing files. For more information, see "Warning about bidirectional Unicode text" in GitHub ããã°.
Hookshot Go sent distribution type metrics that Collectd could not handle, which caused a ballooning of parsing errors.
Public repositories displayed unexpected results from secret scanning with a type of Unknown Token.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.18

Download GitHub Enterprise Server 3.0.18

October 28, 2021

Security fixes

Several known weak SSH public keys have been added to the deny list and can no longer be registered. In addition, versions of GitKraken known to generate weak SSH keys (7.6.x, 7.7.x and 8.0.0) have been blocked from registering new public keys.
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Several parts of the application were unusable for users who are owners of many organizations.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.17

Download GitHub Enterprise Server 3.0.17

October 12, 2021

Security fixes

ããã±ã¼ã¸ãææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«æ´æ°ããã¾ããã

Bug fixes

Custom pre-receive hooks could have failed due to too restrictive virtual memory or CPU time limits.
Attempting to wipe all existing configuration settings with ghe-cleanup-settings failed to restart the Management Console service.
During replication teardown via ghe-repl-teardown Memcached failed to be restarted.
During periods of high load, users would receive HTTP 503 status codes when upstream services failed internal healthchecks.
Pre-receive hook environments were forbidden from calling the cat command via BusyBox on Alpine.
The external database password was logged in plaintext.
An erroneous jq error message may have been displayed when running ghe-config-apply.
Failing over from a primary Cluster datacenter to a secondary Cluster datacenter succeeds, but then failing back over to the original primary Cluster datacenter failed to promote Elasticsearch indicies.
The Site Admin page for repository self-hosted runners returned an HTTP 500.
In some cases, GitHub Enterprise Administrators attempting to view the Dormant users page received 502 Bad Gateway or 504 Gateway Timeout response.

Changes

More effectively delete Webhook logs that fall out of the Webhook log retention window.

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.16

Download GitHub Enterprise Server 3.0.16

September 24, 2021

Security fixes

HIGH: A path traversal vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration options used by GitHub Pages were not sufficiently restricted and made it possible to read files on the GitHub Enterprise Server instance. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.1.8 and was fixed in 3.1.8, 3.0.16, and 2.22.22. This is the result of an incomplete fix for CVE-2021-22867. This vulnerability was reported via the GitHub Bug Bounty program and has been assigned CVE-2021-22868.
MEDIUM: An improper access control vulnerability in GitHub Enterprise Server allowed a workflow job to execute in a self-hosted runner group it should not have had access to. This affects customers using self-hosted runner groups for access control. A repository with access to one enterprise runner group could access all of the enterprise runner groups within the organization because of improper authentication checks during the request. This could cause code to be run unintentionally by the incorrect runner group. This vulnerability affected GitHub Enterprise Server versions from 3.0.0 to 3.0.15 and 3.1.0 to 3.1.7 and was fixed in 3.0.16 and 3.1.8 releases. It has been assigned CVE-2021-22869.

Bug fixes

Resque worker counts were displayed incorrectly during maintenance mode.
Allocated memcached memory could be zero in clustering mode.
Fixes GitHub Pages builds so they take into account the NO_PROXY setting of the appliance. This is relevant to appliances configured with an HTTP proxy only. (update 2021-09-30)
The GitHub Connect configuration of the source instance was always restored to new instances even when the --config option for ghe-restore was not used. This would lead to a conflict with the GitHub Connect connection and license synchronization if both the source and destination instances were online at the same time. The fix also requires updating backup-utils to 3.2.0 or higher. [updated: 2021-11-18]

Known issues

On a freshly set up GitHub Enterprise Server without any users, an attacker could create the first admin user.
Custom firewall rules are removed during the upgrade process.
Git LFS tracked files uploaded through the web interface are incorrectly added directly to the repository.
Issues cannot be closed if they contain a permalink to a blob in the same repository, where the blob's file path is longer than 255 characters.
When "Users can search GitHub.com" is enabled with GitHub Connect, issues in private and internal repositories are not included in GitHub.com search results.
When a replica node is offline in a high availability configuration, GitHub Enterprise Server may still route GitHub Pages requests to the offline node, reducing the availability of GitHub Pages for users.
Resource limits that are specific to processing pre-receive hooks may cause some pre-receive hooks to fail.

Enterprise Server 3.0.15

Download GitHub Enterprise Server 3.0.15

September 07, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ghe-repl-teardownã§UUIDãæå®ãã¦ãæ°ãã«è¿½å ãããã¬ããªã«ãã¼ããç ´æ£ãããã¨ããã¨ãã¬ããªã±ã¼ã·ã§ã³ãéå§ããã¦ããªãã£ãå ´åã«ã¨ã©ã¼ãå ±åãããã¨ãªãå¤±æãã¾ãã
å¤é¨ãããã·ãè¨å®ããã¦ããå ´åãGitHub Pagesã®ãã«ãããããéãã¦æ¸¡ããã¦ãã¾ããã
ãµãããã»ã¹ãçæããã«ã¹ã¿ã ã®pre-receive ããã¯ã®ç°å¢ã«PATHå¤æ°ãæ¬ å¦ãã"No such file or directory"ã¨ã©ã¼ãçãã¾ãã
mysql-auto-failoverãæå¹åããã¦ããã¨ãMySQLãã¢ããã°ã¬ã¼ãã®éã«ãã§ã¤ã«ãªã¼ãã¼ãããã¨ãããã¾ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.14

Download GitHub Enterprise Server 3.0.14

August 24, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ç»åãããã¯Pull Requestã«éå¸¸ã«å¤§ããªç»åãããã¯ã¢ãã¡ã¼ã·ã§ã³GIFãæ·»ä»ããã¨å¤±æãã¾ãã
èªåã¢ãããã¼ãã«é¢ä¿ããJournaldã®ã¡ãã»ã¼ã¸ (Adding h/m/s random time.)ããsyslogã«è¨é²ããã¾ããã
bashã®ãµãã·ã§ã«ãä½¿ãã«ã¹ã¿ã ã®pre-receive ããã¯ã¯ãNo such file or directoryã¨ããã¨ã©ã¼ãè¿ãã¾ãã
ååä»ããã¤ãï¼FIFOï¼ãä½æããã«ã¹ã¿ã ã®pre-receive ããã¯ã¯ãã¯ã©ãã·ã¥ãããã¯ãã³ã°ããã¿ã¤ã ã¢ã¦ãã¨ã©ã¼ãçãããã¾ãã
ç£æ»ãã°ã®é«åº¦ãªæ¤ç´¢ãã¼ã¸ã«ãã£ã«ã¿ãè¿½å ãã¦ããé©åãªãã¡ã»ãããã¬ãã£ãã¯ã¹ã¨å¤ä»ãã§ã¯ã¨ãªããã¹ãããã¯ã¹ããªã¢ã«ã¿ã¤ã ã§å±éããã¾ããã§ããã
ãªã¯ã¨ã¹ãã«å¤±æããåé¨APIã¸ã®Gitããã¯ããæç¤ºçãªnilãè¿ãä»£ããã«undefined method body for "success":String (NoMethodError)ã¨ããä¾å¤ãè¿ãã¾ããã
ã¤ã³ãã°ã¬ã¼ã·ã§ã³ãåé¤ãããã¨ãé¢ä¿ã®ç¡ãOAuthã¢ããªã±ã¼ã·ã§ã³ãããã¯ã¤ã³ãã°ã¬ã¼ã·ã§ã³ãåé¤ããã¦ãã¾ãå¯è½æ§ãããã¾ããã
çµµæåãå«ãå¿é ã®ã¡ãã»ã¼ã¸ãè¿½å ãããå ´åããã®ã¡ãã»ã¼ã¸ãè¡¨ç¤ºãããã¯å¤æ´ãããã¨ããã¨500 Internal Server Errorãè¿ããã¾ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.13

Download GitHub Enterprise Server 3.0.13

August 10, 2021

Bug fixes

å®æçãªMSSQLã®ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã®ã¹ã±ã¸ã¥ã¼ã«ããã¯ã¢ãããå®è¡ãããã¨ãªãGitHub Actionsãæå¹åããã¨ããã°ãç¡å¶éã«æ¡å¤§ããã¢ãã©ã¤ã¢ã³ã¹ã®ãã¼ã¿ãã£ã¹ã¯ã®å©ç¨å¯è½ãªé åããã¹ã¦æ¶è²»ããéå®³ã«ã¤ãªããå¯è½æ§ãããã¾ãã
"Repository creation" Organizationã®è¨å®ã«å¯¾ããå¤æ´ã®ç£æ»ãã°ã¨ã³ããªãä¸æ£ç¢ºã§ããã
ActionController::UnknownFormatä¾å¤ã®éå°ãªãã®ã³ã°ããä¸è¦ãªãã£ã¹ã¯æ¶è²»ãæãã¦ãã¾ããã
255æåä»¥ä¸ã®LDAP group_dnå¤ã«ãã£ã¦ãData truncated for column 'group_dn' at row 1ã¨ããã¨ã©ã¼ãè¨é²ããã¾ãã

Changes

ä¸æ£å©ç¨ã¬ã¼ãå¶éã¯ãã»ã«ã³ããªã¬ã¼ãå¶éã¨å¼ã°ããããã«ãªãã¾ãããããã¯ãããã«ãã£ã¦å¶éãããã®ãå¿ãããä¸æ£å©ç¨ã¨ã¯éããªãããã§ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.12

Download GitHub Enterprise Server 3.0.12

July 27, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ã«ã¹ã¿ã ã®pre-receive ããã¯ã§error: object directory /data/user/repositories/0/nw/12/34/56/7890/network.git/objects does not exist; check .git/objects/info/alternatesã®ãããªã¨ã©ã¼ãçãããã¨ãããã¾ãã
HTTPãããã·ãä½¿ç¨ããã¦ã¼ã¶ã§ã¯ãPagesã®ã³ã³ãããã«ãã®èªè¨¼ããã¦ããªãHTTPãããã·ã¯ãµãã¼ãããã¦ãã¾ããã§ããã
ä¾åé¢ä¿ã°ã©ããæå¹åããã¦ããªãå ´åãã¦ã¼ã¶ããªãã¸ããªã®/settingsãã¼ã¸ã«ã¢ã¯ã»ã¹ãããã³ã«å¤§éã®503ã¨ã©ã¼ãè¨é²ããã¾ããã
ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã¯ãã¦ã¼ã¶ããã®ãªãã¸ããªã«Teamãéãã¦ããããã¯ã³ã©ãã¬ã¼ã¿ã®ã¹ãã¼ã¿ã¹ãéãã¦é¢ä¿ããããã?type=internalãã©ã¡ã¼ã¿ä»ãã§ã¯ã¨ãªãããå ´åã«ã®ã¿è¿ããã¾ããã
å¤±æããããã¯ã°ã©ã¦ã³ãã¸ã§ããç¡å¶éã®ãªãã©ã¤ãè¡ããå¤§ããªãã¥ã¼ã®æ·±ããçãããããã¨ãããã¾ããã
ä¾åé¢ä¿ã°ã©ããæå¹åããã¦ããããã³ã³ãã³ãåæãæå¹åããã¦ããç¶æã§ãã¹ã±ã¸ã¥ã¼ã«ã¸ã§ããGitHub.comã¨èå¼±æ§ãåæãããã¨ããã¨ãå¤§éã®503ã¨ã©ã¼ãçºçãã¾ããã

Changes

babeldã®ãã°ã«ã¯ããã´ã·ã¨ã¼ã·ã§ã³ãªã¯ã¨ã¹ãã®éã ãã§ã¯ãªããHTTPåç§åºåãªã¯ã¨ã¹ãã®cmdãã£ã¼ã«ããå«ã¾ããããã«ãªãã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.11

Download GitHub Enterprise Server 3.0.11

July 14, 2021

Security fixes

é«: GitHubPagesã®ãµã¤ãããã«ãããéã«å©ç¨ãããå¯è½æ§ããããã¹ãã©ãã¼ãµã«ã®èå¼±æ§ããGitHub Enterprise Serverã§ç¹å®ããã¾ãããGitHub Pagesãä½¿ç¨ããã¦ã¼ã¶ãå¶å¾¡ããè¨å®ãªãã·ã§ã³ãååã«å³å¯ã§ã¯ãªããGitHub Enterprise Serverã¤ã³ã¹ã¿ã³ã¹ä¸ã®ãã¡ã¤ã«ãèªãã¦ãã¾ãã¾ãããã®èå¼±æ§ãå©ç¨ããã«ã¯ãæ»æèã¯GitHub Enterprise Serverã¤ã³ã¹ã¿ã³ã¹ä¸ã§GitHub Pagesã®ãµã¤ããä½æãã¦ãã«ãããæ¨©éãæã£ã¦ããªããã°ãªãã¾ããããã®èå¼±æ§ã¯3.1.3ä»¥åã®ãã¹ã¦ã®ãã¼ã¸ã§ã³ã®GitHub Enterprise Serverã«å½±é¿ããCVE-2021-22867ãå²ãå½ã¦ããã¾ããããã®èå¼±æ§ã¯GitHub Bug Bountyããã°ã©ã ãéãã¦å ±åããã¾ããã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

SAMLã®æéåãã®æ¥ä»å¤æ°ã¯è¨å®ã§ãã¾ããã§ããã
ã¢ããªã±ã¼ã·ã§ã³ãµã¼ãã¹ã¯ãè¨å®ã®é©ç¨ã®éã«å¥å¨ãªç¶æã«å¥ãåããã«ã¹ãã§ãã¯ã«å¤±æãã¾ãã
ghe-cluster-config-node-initã¯ãHTTPãããã·ãæå¹åããã¦ããã¨ã¯ã©ã¹ã¿ã®ã»ããã¢ããã®éã«å¤±æãã¾ãã
pre-receive ããã¯ã§ã/procãã³ã³ããã«ãã¦ã³ãããã¦ããªãããã«Failed to resolve full path of the current executableã¨ããå¤±æãçãããã¨ãããã¾ãã
collectdã¯ãåæã®ã»ããã¢ããå¾ã«ãã©ã¯ã¼ãåã®ãã¹ãåãè§£æ±ºãã¾ããã
å¤ãæµå¾é¤ããããªãã¸ããªããã¼ã¸ããã¸ã§ãã¯ããããã®ãªãã¸ããªã®ä¸ã«è¨´è¨ãã¼ã«ãã«ãã£ã¦åé¤ããä¿è·ããã¦ãããã®ãããå ´åãå¦çãé²ããããªããã¨ãããã¾ãã
git nw-gc --pristineãå®è¡ããã¨ãã¨ã©ã¼ã«ãªãã¾ãã
ããã¯ã°ã©ã¦ã³ãã¸ã§ãããå¦çããã¦ããªãspamãã¥ã¼ã«ãã¥ã¼ã¤ã³ã°ããã¾ããã
å¤±æããPRãã¼ã¸å¾ã«ãªãã©ã¤ããéã«ãåªåããããã¼ã¸æ¹æ³ããªã»ããããã¾ãã
LDAPèªè¨¼ã¢ã¼ããä½¿ãã¤ã³ã¹ã¿ã³ã¹ã«ããã¦ãGit pushãã¦ã¼ã¶ç§åããã»ã¹ä¸ã«500 Internal Server Errorã«ãªããã¨ãããã¾ãã

Changes

å¤æ´ãããªãã£ãIPè¨±å¯ãã¡ã¤ã¢ã¦ã©ã¼ã«ã«ã¼ã«ãã¹ããããããã¨ã«ãã£ã¦ãè¨å®é©ç¨ã®å¹çæ§ãæ¹åããã¾ãããããã¯å¤§è¦æ¨¡ãªã¯ã©ã¹ã¿ã§ã¯å¤§ããªæéã®ç¯ç´ã«ãªãã¾ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.10

Download GitHub Enterprise Server 3.0.10

June 24, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

å¤æ°ã®gauge-dependency-graph-api-dispatch_dispatchã¡ããªã¯ã¹ãManagement Consoleã«èç©ããããã¨ãããã¾ãã
Google Cloud Plafformä¸ã§åä½ããã¤ã³ã¹ã¿ã³ã¹ã«ããã¦ãsshdãµã¼ãã¹ãèµ·åã«å¤±æãããã¨ãããã¾ãã
å¤ãã¢ããã°ã¬ã¼ããã¡ã¤ã«ãã¦ã¼ã¶ãã£ã¹ã¯ã«æ®ããç©ºãé åããªããªãç¶æ³ã«ãªããã¨ãããã¾ãã
ãã°ã®ãã¼ãã¼ã·ã§ã³ããããã¯ã°ã©ã¦ã³ãã¸ã§ããä¸æããããã¨ãããã¾ãã
gh-migratorããã°ã®åºåã«èª¤ã£ããã¹ãåºåãã¾ããã
ã¢ã¼ã«ã¤ãã«åå¨ããªãTeamããã®ã¬ãã¥ã¼ãªã¯ã¨ã¹ããå«ã¾ãã¦ããå ´åãã¨ã¯ã¹ãã¼ããããã¢ã¼ã«ã¤ãã®ã¤ã³ãã¼ãã¯å¤±æãã¾ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.9

Download GitHub Enterprise Server 3.0.9

June 10, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ã¤ã³ã¹ã¿ã³ã¹ãè¨å®ããããã¹ãåãä½¿ã£ã¦èªå·±ãªã¯ã¨ã¹ããçºè¡ã§ããªãã£ãå ´åãActionsãã¢ããã°ã¬ã¼ãããéã«ã¢ããã°ã¬ã¼ãã®ããã»ã¹ãå¤±æãããã¨ãããã¾ãã
SVN 1.7åã³ãããããå¤ãã¯ã©ã¤ã¢ã³ãããsvn coåã³svn exportã³ãã³ããä½¿ã£ãå ´åã«ã¨ã©ã¼ãè¡¨ç¤ºãã¾ããã
ç®¡çã·ã§ã«ãéãã¦ghe-repo <owner>/<reponame>ãä½¿ã£ã¦ãªãã¸ããªã«ã¢ã¯ã»ã¹ããã¨ããã³ã°ãã¾ãã
ã¢ããã°ã¬ã¼ãå¾ããµã¼ãã¹ãéå°ã«é »ç¹ã«åèµ·åããããã«ãé«è² è·ã®éã«ã¦ã¼ã¶ããã¿ã¦å¯ç¨æ§ãä½ä¸ãã¾ãããããã¯ãnomadã®è¨å®ã¨åé¨ãµã¼ãã¹ã®è¨å®éã®ã¿ã¤ã ã¢ã¦ãã®ãã¹ãããã«ãã£ã¦çãã¾ãã
ã¤ã³ã¹ã¿ã³ã¹ã«ãã£ã¦ã¯ãGitHub Actionsãã»ããã¢ããããå¾ã«ghe-repl-statusãå®è¡ããã¨ã¨ã©ã¼ãçããghe-actions-teardownãå¤±æãã¾ãã
ç¶æ³ã«ãã£ã¦ã¯ãghe-dbconsoleãã¨ã©ã¼ãè¿ãã¾ãã
GitHubä»¥å¤ã®ã½ã¼ã¹ããã®Organizationãããã¯ãªãã¸ããªã®ã¤ã³ãã¼ãã®å¤±æããundefined method '[]' for nil:NilClassã¨ã©ã¼ãçãããããã¨ãããã¾ãã
SAMLèªè¨¼ãä½¿ã£ã¦ãã¦ãGitHubã®ãããã£ã¼ã«åãç®¡çã³ã³ã½ã¼ã«ã®Full nameãã£ã¼ã«ãã«ããããããå±æ§ã®å¤ã¨ãããããªãå ´åãGitHubã®ãããã£ã¼ã«åãæå³ããå¤æ´ããã¦ãã¾ããã¨ãããã¾ãã

Changes

GraphQL APIã«ããã¦ãfirstPatchedVersionãã£ã¼ã«ããSecurityVulnerabilityãªãã¸ã§ã¯ãã§å©ç¨ã§ããããã«ãªãã¾ããã
GraphQL APIã®ã¦ã¼ã¶ããPullRequestãªãã¸ã§ã¯ãã®å¬éãã£ã¼ã«ãã®closingIssuesReferencesã«å¯¾ããã¯ã¨ãªãè¡ãã¾ãããã®ãã£ã¼ã«ãã¯ãé¢é£ããPull Requestããã¼ã¸ãããã¨ãã«èªåçã«ã¯ãã¼ãºãããIssueãåå¾ãã¾ãããã®ã¢ããã¼ãã¯ãããå¿ å®åº¦ã®é«ãç§»è¡ããã»ã¹ã®ä¸é¨ã¨ãã¦ããã®ãã¼ã¿ãå°æ¥ç§»è¡ããããã¨ãå¯è½ã«ãã¾ãã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã¢ããã°ã¬ã¼ãã®éç¨ã§ãã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ãåé¤ããã¾ãã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.8

Download GitHub Enterprise Server 3.0.8

May 25, 2021

Security fixes

ä¸: ç¹å®ã®ç°å¢ä¸ã§ãTeamãããã¯Organizationããåé¤ãããã¦ã¼ã¶ã¯ããªã¼ãã³ãªæ¢åã®Pull Requestãæã¤ãã©ã³ãã¸ã®æ¸ãè¾¼ã¿ã¢ã¯ã»ã¹æ¨©ãæã£ãã¾ã¾ã«ãªããã¨ãããã¾ãã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

åæã®ã¤ã³ã¹ãã¼ã«ããã»ã¹ã®"Configure Actions and Packages"ãã¼ã¸ã§ãç®¡çèã"Test domain settings"ãã¿ã³ãã¯ãªãã¯ãã¦ããã¹ããå®äºãã¾ããã§ããã
ghe-btopã®å®è¡ãcannot find a 'babeld' containerã¨ããã¨ã©ã¼ã§å¤±æãã¾ããã
åé¨åã³å¤é¨ã®ã¿ã¤ã ã¢ã¦ãå¤ã®ãã¹ãããã®ããã«ãã¢ããã°ã¬ã¼ãå¾ã«ãµã¼ãã¹ãå©ç¨ã§ããªããªã£ã¦ãã¾ããã
MySQLã§ã®éå¸¸ã®ã¬ããªã±ã¼ã·ã§ã³ã®éå»¶ã§è¦åãçãã¾ããã
ç®¡çã³ã³ã½ã¼ã«ã®GitHub Enterprise Clustering Guideã¸ã®ãªã³ã¯ãæ£ããããã¾ããã§ããã
"Create Whitelist Entry"ãã¿ã³ãä½¿ã£ã¦ç®¡çèãè¿½å ããIPã¢ãã¬ã¹ããããã¯ã¢ã¦ããããã¾ã¾ã«ãªããã¨ãããã¾ãã
ãä¾åé¢ä¿ã°ã©ããåã³ãDependabotã¢ã©ã¼ããæ©è½ã¸ã®åç§ããããããæå¹åããã¦ããªããªãã¸ããªã§è¡¨ç¤ºããã¾ããã
/hooksã¨ã³ããã¤ã³ãã¸ã®HTTP POSTãªã¯ã¨ã¹ãããhookIDãæ£ããè¨å®ããã¦ããªãããã401ã¬ã¹ãã³ã¹ã§å¤±æãããã¨ãããã¾ãã
build-serverãããã»ã¹ã®ã¯ãªã¼ã³ã¢ããã«å¤±æãããããã®ããã»ã¹ãdefunctç¶æã§æ®ã£ãã¾ã¾ã«ãªãã¾ããã
spokesdã"fixing placement skipped"ã¨ãããã¬ã¼ãºãå«ãéå°ãªãã°ã®ã¨ã³ããªãçæãã¾ããã

Changes

4ã¶æä»¥ä¸çµéãããã§ãã¯ã¢ããã¼ã·ã§ã³ãã¢ã¼ã«ã¤ãããã¾ãã

Known issues

ghe-repo <owner>/<reponame>ãä½¿ã£ã¦ç®¡çã·ã§ã«ãéãã¦ãªãã¸ããªã«ã¢ã¯ã»ã¹ããã¨ããã³ã°ãã¾ããåé¿çã¨ãã¦ãæ¬¡ã®ãã¼ã¸ã§ã³ã§ä¿®æ£ãæä¾ãããã¾ã§ghe-repo <owner>/<reponame> -c "bash -i"ãä½¿ã£ã¦ãã ããã
æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ã¯ãã¢ããã°ã¬ã¼ãã®éã«ç¶æããã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.7

Download GitHub Enterprise Server 3.0.7

May 13, 2021

Security fixes

é«: GitHub Enterprise Serverã«ããã¦ãGitHub Appã®ã¦ã¼ã¶èªè¨¼Webããã¼ã®éã«ãæ¿èªã®éã«ã¦ã¼ã¶ã«è¡¨ç¤ºãããä»¥ä¸ã®æ¨©éãä»ä¸ããã¦ãã¾ãUIã®è¡¨ç¾ãã¹ã®èå¼±æ§ãç¹å®ããã¾ããããã®èå¼±æ§ãçªãã«ã¯ãæ»æèã¯ã¤ã³ã¹ã¿ã³ã¹ä¸ã«GitHub Appãä½æããã¦ã¼ã¶ããã®ã¢ããªã±ã¼ã·ã§ã³ãWebèªè¨¼ããã¼ãéãã¦èªå¯ããå¿è¦ãããã¾ããæåã®èªå¯ã®éã«ã¯ãã¹ã¦ã®æ¨©éãé©åã«ä»ä¸ããã¾ãããç¹å®ã®ç°å¢ä¸ã§ã¯ãGitHub Appã«è¿½å ã®ã¦ã¼ã¶ã¬ãã«ã®æ¨©éãè¨å®ãããå¾ãã¦ã¼ã¶ãèªå¯ããã¼ã«åã¢ã¯ã»ã¹ããã¨ããããã®è¿½å æ¨©éãè¡¨ç¤ºãããªããã¨ããããã¦ã¼ã¶ãæ½å¨çã«æå³ãã¦ããä»¥ä¸ã®æ¨©éãä»ä¸ããããã¨ã«ã¤ãªããã¾ãããã®èå¼±æ§ã¯3.0.7ä»¥åã®GitHub Enterprise Server 3.0.xåã³2.22.13ä»¥åã®2.22.xã«å½±é¿ãã¾ããããã¯ãã¼ã¸ã§ã³3.07åã³2.22.13ã§ä¿®æ£ããã¾ããããã®èå¼±æ§ã«ã¯CVE-2021-22866ãå²ãå½ã¦ãããGitHub Bug Bounty Programãéãã¦å ±åããã¾ããã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

Actionsãããã¯Packagesã®ã¹ãã¬ã¼ã¸è¨å®ã«å«ã¾ããã¯ãªã¼ããã¨ã©ã¼ãå¼ãèµ·ãããã¨ãããã¾ãã
å¶ç´ã®å³ãããã¡ã¤ã«ãµã¤ãºãããã¯ãªã¼ãã³ãã¡ã¤ã«æ°ã®å¶éã®ããã«ãã«ã¹ã¿ã ã®pre-receive ããã¯ãå¤±æãããã¨ãããã¾ãã
Orchestratorã®èªåãã§ã¤ã«ãªã¼ãã¼ããè¨å®ã®é©ç¨ãã§ã¼ãºã«æå¹åããããã¨ãããã¾ãã
ãªãã¸ããªã®ã¡ã³ããæ¨©éãæã¤ã¦ã¼ã¶ã«ããªãã¸ããªã®Pagesã®è¨å®ãã¼ã¸ã«ããã¦æåãããã¼ã¸ãã«ãã®ä»£ããã«ã¡ã¼ã«æ¤è¨¼ã®è¦åãè¡¨ç¤ºããã¾ããã
ã¯ã¤ã«ãã«ã¼ãã«ã¼ã«ã®ã³ã¼ããªã¼ãã¼ã¯ãå¾ã®ã«ã¼ã«ããã®ãã¹ã«å¯¾ãã¦åªåããããã®ã§ãã£ã¦ããã³ã¼ããªã¼ãã¼ããã¸ã®ææèã®ãªã¹ãã«ééã£ã¦è¿½å ããã¾ãã
OpenAPIã®ããã¥ã¡ã³ãã¼ã·ã§ã³ãç¡å¹ãªããããåç§ãã¦ãã¾ãã
pre-receiveããã¯ãä½æãããã¯ç·¨éããéã«ãã¦ã¼ã¶ã¤ã³ã¿ã¼ãã§ã¼ã¹ã®ã¬ã¼ã¹æ¡ä»¶ã«ãã£ã¦ããªãã¸ããªãé¸æããå¾ããã®ãªãã¸ããªåã®ãã¡ã¤ã«ããã¡ã¤ã«ã®ãããããã¦ã³ã«å±éãããªããã¨ãããã¾ããã

Changes

HAProxyã®ãªãã¼ãæã®è¨å®å¤æ´ã«å¯¾ãããã°ãè¿½å ãã¾ããã
ãªãã¸ããªä½æã«å¯¾ãããã°ãè¿½å ãã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ã¯ãã¢ããã°ã¬ã¼ãã®éã«ç¶æããã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.6

Download GitHub Enterprise Server 3.0.6

April 28, 2021

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ã¢ããã°ã¬ã¼ãä¸ã«ãcleanup nomad jobã®å¾ããã»ã¹ãç¡æéã«ä¸æåæ¢ããã¾ãã
ghe-cluster-failoverãTrilogy::Error: trilogy_connectã¨ããã¨ã©ã¼ã¡ãã»ã¼ã¸ã§å¤±æãã¾ãã
ghe-cluster-status-mysqlããã§ã¤ã«ãªã¼ãã¼ã«é¢ããè¦åãã¨ã©ã¼ã¨ãã¦è¡¨ç¤ºãã¾ãã
MySQLã®ã¬ããªã±ã¼ã·ã§ã³ã§å®è¡ãããã»ããã¢ããã¹ã¯ãªããã¯ããã¼ã¿ãã¼ã¹ã®ãã§ã¤ã«ãªã¼ãã¼ã®éã«ä¸è¦ãªãã¼ã¿ãã¼ã¹ã®åã·ã¼ããå¼ãèµ·ãããã¨ãããã¾ããã
ã¢ããã°ã¬ã¼ãã«ãé©åã«ã¤ã³ã¹ãã¼ã«ãããææ°ãã¼ã¸ã§ã³ã®Actionsã®ã©ã³ãã¼ãå«ã¾ãã¾ããã
github-envã®è¨å®ã§ã¾ã³ãããã»ã¹ãæ®ããã¨ãããã¾ãã
config-applyã¯ãä¸è¦ãªrake db:migrateã®å¼ã³åºãã®ããã«å¿è¦ä»¥ä¸ã«æéãããããã¨ãããã¾ããã
ãªã¼ã±ã¹ãã¬ã¼ã¿ã¼ã¯ããã©ã¤ããªã«æ¥ç¶ã§ããªãå ´åã®ã·ã¼ãã£ã³ã°ãã§ã¼ãºä¸ã«ããã©ã¤ããªããã¬ããªã±ã¼ã·ã§ã³ããã¦ããªãMySQLã¬ããªã«ã«ãã§ã¤ã«ãªã¼ãã¼ãã¦ãã¾ããã¨ãããã¾ããã
ã¨ã©ã¼ã®ããOrganizationãããã¯ããã¸ã§ã¯ããç§»è¡ããããã¯ããé¤å¤ã§ãã¾ããã§ããã
50ä»¥ä¸ã®Organizationã«å±ãã¦ããã¦ã¼ã¶ã§ããªãã¸ããªã®ä½æãã¿ã³ãç¡å¹ã«ãªã£ã¦ãã¾ããã
ãã©ã³ããåé¤ããã¨ãåé¤ãæåããå ´åã«ä½ãåé¡ãçãããã¨ãç¤ºãã¨ã©ã¼ã¡ãã»ã¼ã¸ãä¸æçã«è¡¨ç¤ºããã¾ãã
rms-packagesã¤ã³ããã¯ã¹ããµã¤ãç®¡çèã®ããã·ã¥ãã¼ãã«è¡¨ç¤ºããã¾ããã
Organizationã®ãªã¼ãã¼ã¯ããã©ã¼ã ã§å¯è¦æ§ã®é¸æè¢ãæ£ããè¡¨ç¤ºãããªããããã¤ã³ã¿ã¼ãã«ãªãã¸ããªãä½æã§ãã¾ããã§ããã
ã¢ã¯ã·ã§ã³ã®ã¹ã¿ã¼ã¿ã¼ã¯ã¼ã¯ããã¼ã®è¨å®ã«åé¡ãããå ´åã«ããªãã¸ããªã®ã¢ã¯ã·ã§ã³ã¿ãã500ã§è¡¨ç¤ºããã¾ããã
3ã¤ä»¥ä¸ã®ã¹ãã¬ã¼ã¸ãã¹ããæã¤ãå®¢æ§ããç©ºã®ãã¼ãã§ã¯ãªãæãä½¿ããã¦ãããã£ã¹ã¯ãé¸æãããããã«ããã£ã¶ã¹ã¿ãªã«ããªã¯ã©ã¹ã¿ã¸ãªã¹ãã¢ã§ãã¾ããã§ããã
Code Scanningã®ããã¯ã¨ã³ããµã¼ãã¹ããããããããã®é©ç¨å¾ã«ç¢ºå®ã«ã¯èµ·åãã¾ããã§ããã

Changes

ããªãã©ã¤ããã§ãã¯ã§ã¯ãããã©ã«ãã§ãã¹ã¦ã®AWSã®ã¤ã³ã¹ã¿ã³ã¹ã¿ã¤ããè¨±å¯ããã¦ãã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ã¯ãã¢ããã°ã¬ã¼ãã®éã«ç¶æããã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.5

Download GitHub Enterprise Server 3.0.5

April 14, 2021

GitHub Enterprise Server 3.0ä»¥éã§ã¯æå°ã®ã¤ã³ãã©ã¹ãã©ã¯ãã£ã®è¦ä»¶ãå¢å ããã¾ãããè©³ããæå ±ã«ã¤ãã¦ã¯ãGitHub Enterprise Server 3.0ä»¥éã«å¯¾ããæå°è¦ä»¶ã«ã¤ãã¦ããåç§ãã¦ãã ããã

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ãã°è»¢éè¨å®ã«ä¸é¨ã®ãã°ãå«ã¾ãã¦ãã¾ããã§ããã
ã¬ããªã«ã®ææ ¼ä¸ã«jq: error (at <stdin>:0): Cannot index number with string "settings"ã¨ããè¦åã¡ãã»ã¼ã¸ãçãããã¨ãããã¾ãã
MySQLã®ã¬ããªã«ããã©ã¤ããªã¸ã®æ¥ç¶ã«å¤±æãããã¨ã«ãã£ã¦ãç¶ç¶çãªããã¯ã¢ããã®ã¯ã©ã¹ã¿ã¸ã®ãªã¹ãã¢ãå¤±æãããã¨ãããã¾ããã
ã«ã¹ã¿ã ã®CAè¨¼ææ¸ãä½¿ç¨ãã¦ããå ´åãPagesãå¬éããã¾ããã§ããã
Subdomain Isolationã®"Test domain settings"ããã³ããã«ããµããã¡ã¤ã³ã«é¢é£ããããã±ã¼ã¸ãè¡¨ç¤ºããã¾ããã§ããã
webhookã¨å±ã«éä¿¡ãããX-GitHub-Enterprise-Hostãããã«ããã®HTTP POSTã®ãã¤ãã¼ããéä¿¡ããGitHub Enterprise Serverã¤ã³ã¹ã¿ã³ã¹ã®ãã¹ãåã§ã¯ãªããã©ã³ãã ãªæååãå«ã¾ãã¦ãã¾ããã
GitHub Actionsãä»¥åã«æå¹åãããã¢ããã°ã¬ã¼ãã®åã«ç¡å¹åããã¦ããã¨ã2.22.xãã3.0.xã¸ã®ã¢ããã°ã¬ã¼ããå¤±æãã¾ããã
/settings/emails ãã¼ã¸ã«ã¢ã¯ã»ã¹ããã¨ããã°ã¢ã¦ããã¦ãã°ã¤ã³ããªãããã¨ãã«ä¸é©åãªãªãã¤ã¬ã¯ãã®åå ã¨ãªãããç¶æãä¿åããã¾ãã
GitHubã¤ã³ãã°ã¬ã¼ã·ã§ã³ã¢ããªã±ã¼ã·ã§ã³ã¯ãIssueã³ã¡ã³ãåã®at-ã¡ã³ã·ã§ã³ã§ç´æ¥ã¡ã³ã·ã§ã³ãããã¨ãã«Teamã«éç¥ã§ãã¾ããã§ããã
Web UIã§ã®reStructuredText (RST) ã®ã¬ã³ããªã³ã°ãå¤±æããä»£ããã«RSTã®ãã¼ã¯ã¢ããããã¹ãããã®ã¾ã¾è¡¨ç¤ºããã¾ãã
ä¾åé¢ä¿ã°ã©ããå®å¨ã«æå¹ã«ãªã£ã¦ããªãå ´åã«ãSecret Scanningã®ã¢ã©ã¼ãã®ã¡ã¼ã«éç¥ãèªå¯ãããã¦ã¼ã¶ã«éä¿¡ããã¾ããã§ããã
ghe-migratorã§ã¤ã³ãã¼ãã¨ã©ã¼ãçããéã«ãããã»ã¹å¨ä½ãä¸æããããã°ã«ååãªã³ã³ããã¹ããå«ã¾ããªããã¨ãããã¾ãã
éASCIIæåãå«ãJupyter notebookã®ã¬ã³ããªã³ã°ã«å¤±æãããã¨ãããã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
ã«ã¹ã¿ã ã®ãã¡ã¤ã¢ã¦ã©ã¼ã«ã®ã«ã¼ã«ã¯ãã¢ããã°ã¬ã¼ãã®éã«ç¶æããã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
Pull Requestããã¼ã¸ããå¾ã«ãã©ã³ããåé¤ããã¨ããã©ã³ãã®åé¤ã¯æåãã¦ããã«ããããããã¨ã©ã¼ã¡ãã»ã¼ã¸ãè¡¨ç¤ºããã¾ãã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.4

Download GitHub Enterprise Server 3.0.4

April 01, 2021

GitHub Enterprise Server 3.0ä»¥éã§ã¯æå°ã®ã¤ã³ãã©ã¹ãã©ã¯ãã£ã®è¦ä»¶ãå¢å ããã¾ãããè©³ããæå ±ã«ã¤ãã¦ã¯ãGitHub Enterprise Server 3.0ä»¥éã«å¯¾ããæå°è¦ä»¶ã«ã¤ãã¦ããåç§ãã¦ãã ããã

Security fixes

é«: GitHub Appã®Webèªè¨¼ããã¼ããçæãããã¢ã¯ã»ã¹ãã¼ã¯ã³ã«å¯¾ããé©åãªæ¨©éãè¨±å¯ããã¦ããªãã¦ãREST APIãéãã¦ãã©ã¤ãã¼ããªãªãã¸ããªã®ã¡ã¿ãã¼ã¿ãèªããããã«ãã¦ãã¾ããä¸é©åãªã¢ã¯ã»ã¹å¶å¾¡ã®èå¼±æ§ãGitHub Enterprise Serverã§ç¹å®ããã¾ããããã®èå¼±æ§ãå©ç¨ããã«ã¯ãæ»æèã¯ãã®ã¤ã³ã¹ã¿ã³ã¹ä¸ã§GitHub Appãä½æããWebèªè¨¼ããã¼ãéãã¦ãã®ã¢ããªã±ã¼ã·ã§ã³ãèªè¨¼ããã¦ã¼ã¶ãå¿è¦ã§ããè¿ããããã©ã¤ãã¼ããªãã¸ããªã®ã¡ã¿ãã¼ã¿ã¯ããã®ãã¼ã¯ã³ãç¹å®ããã¦ã¼ã¶ãææãããªãã¸ããªã«éå®ããã¾ãããã®èå¼±æ§ã¯3.0.4ä»¥åã®ãã¹ã¦ã®ãã¼ã¸ã§ã³ã®GitHub Enterprise Serverã«å½±é¿ãã3.0.4ã2.22.10ã2.21.18ã§ä¿®æ£ããã¾ããããã®èå¼±æ§ã«ã¯CVE-2021-22865ãå²ãå½ã¦ããã GitHub Bug Bounty Programãéãã¦å ±åããã¾ããã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ã¡ã³ããã³ã¹ã¢ã¼ããæå¹ã«ãªã£ã¦ããå ´åã«ãä¸é¨ã®ãµã¼ãã¹ã¯å®è¡ä¸ã§ãããã¨ãæå¾ããããªã¹ãã«è¡¨ç¤ºãããã¹ãã§ã¯ãªãã«ãé¢ãããã"active processes"ã¨ãã¦ãªã¹ãããç¶ãã¾ããã
å¤ãGitHub Pagesã®ãã«ããã¯ãªã¼ã³ã¢ãããããããã£ã¹ã¯ä½¿ç¨éã®å¢å¤§ã«ã¤ãªããã¾ããã
ã¢ã¯ãã£ããªã¬ããªã«ä¸ã§memcachedãåä½ãã¦ãã¾ããã§ããã
ãã°ãã¼ãã¼ã·ã§ã³ã®ä¸é¨ã¨ãã¦ãµã¼ãã¹ãæ°ãããã°ãã¡ã¤ã«ã«ç§»è¡ããããã£ã¹ã¯ã®ä½¿ç¨éãå¢å¤§ãã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
ãã¼ãããã¯ã«éASCIIã®UTF-8æåãå«ã¾ãã¦ããå ´åãWeb UIä¸ã§ã®Jupyter Notebookã®ã¬ã³ããªã³ã°ãå¤±æãããã¨ãããã¾ãã
Web UIã§ã®reStructuredText (RST) ã®ã¬ã³ããªã³ã°ãå¤±æããä»£ããã«RSTã®ãã¼ã¯ã¢ããããã¹ãããã®ã¾ã¾è¡¨ç¤ºããããã¨ãããã¾ãã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.3

Download GitHub Enterprise Server 3.0.3

March 23, 2021

Security fixes

é«: GitHubPagesã®ãµã¤ãããã«ãããéã«å©ç¨ãããå¯è½æ§ããããªã¢ã¼ãã³ã¼ãå®è¡ã®èå¼±æ§ããGitHub Enterprise Serverã§ç¹å®ããã¾ãããGitHub Pagesãä½¿ç¨ããã¦ã¼ã¶ãå¶å¾¡ããè¨å®ãªãã·ã§ã³ãååã«å³å¯ã§ã¯ãªããç°å¢å¤æ°ãä¸æ¸ãã§ãã¦ãã¾ããGitHub Enterprise Serverã¤ã³ã¹ã¿ã³ã¹ä¸ã§ã³ãã³ããå®è¡ã§ãã¦ãã¾ãã¾ãããã®èå¼±æ§ãå©ç¨ããã«ã¯ãæ»æèã¯GitHub Enterprise Serverã¤ã³ã¹ã¿ã³ã¹ä¸ã§GitHub Pagesã®ãµã¤ããä½æãã¦ãã«ãããæ¨©éãæã£ã¦ããªããã°ãªãã¾ããããã®èå¼±æ§ã¯3.0.3ä»¥åã®ãã¹ã¦ã®ãã¼ã¸ã§ã³ã®GitHub Enterprise Serverã«å½±é¿ãã3.0.3ã2.22.9ã2.21.17ã§ä¿®æ£ããã¾ããããã®èå¼±æ§ã¯GitHub Bug Bountyããã°ã©ã ãéãã¦å ±åãããCVE-2021-22864ãå²ãå½ã¦ããã¾ããã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

GUIä¸ã§ã®ãã¼ã¸ã³ã³ããªã¯ãã®è§£æ±ºãããªãã¸ããªã§ã«ã¹ã¿ã ã®pre-receiveããã¯ãè¨å®ããã¦ããå ´åã«å¤±æãã¾ãã
launch-deployeråã³launch-receiverãDEBUGã¬ãã«ã§ãã®ã³ã°ãããä¸è¦ãªæå ±ã§ãã°ãåãã¦ãã¾ãã¾ããã
ã·ã¹ãã ãHAProxyã®PIDãè¦å¤±ããã¨ãããã¾ããã
ã¢ã¯ã·ã§ã³ãS3ã¹ãã¬ã¼ã¸ãä½¿ãããã«è¨å®ããã¦ããã¨ãã¢ã¯ã·ã§ã³ã®ãã°ã®ãã¼ãã«å¤±æãããã¨ãããã¾ãã
æåãããã§ã¤ã«ãªã¼ãã¼ã®å¾ãmysql-failoverã®è¦åãç¡æéã«è¡¨ç¤ºããã¾ããã
ghe-cluster-config-initã®å®è¡ã§ããã¯ã°ã©ã¦ã³ãã¸ã§ãã®çµäºã³ã¼ããå®å¨ã«èæ®ããã¦ããããããªãã©ã¤ããã§ãã¯ãä¸é©åã«å¦çããããã¨ã«ã¤ãªãã£ã¦ãã¾ããã
GitHub Actionsãæå¹åããéã«ãåæåãä½ã®åå¿ããªãã«å¤±æãããã¨ãããã¾ããã

Changes

consulã¨normadã®bootstrap_expectã«ç¸å¯¾çãªå¤ãä½¿ç¨ãããã¨ã«ãã£ã¦ãã¯ã©ã¹ã¿ã¯å°æ°ã®ãã¼ãããã¦ã³ãã¦ããå ´åã§ããã¼ãã¹ãã©ããã§ãã¾ãã
ãã°ããæéã«å ãã¦ãµã¤ãºã«åºã¥ãã¦ãã¼ãã¼ãããã¾ãã
ghe-cluster-statusã³ãã³ãã«kafka-liteãè¿½å ãã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
When maintenance mode is enabled, some services continue to be listed as "active processes". The services identified are expected to run during maintenance mode. If you experience this issue and are unsure, contact GitHub Enterprise Support.
ãã¼ãããã¯ã«éASCIIã®UTF-8æåãå«ã¾ãã¦ããå ´åãWeb UIä¸ã§ã®Jupyter Notebookã®ã¬ã³ããªã³ã°ãå¤±æãããã¨ãããã¾ãã
Web UIã§ã®reStructuredText (RST) ã®ã¬ã³ããªã³ã°ãå¤±æããä»£ããã«RSTã®ãã¼ã¯ã¢ããããã¹ãããã®ã¾ã¾è¡¨ç¤ºããããã¨ãããã¾ãã
Pagesã®å¤ããã«ããã¯ãªã¼ã³ã¢ããããããã¦ã¼ã¶ãã£ã¹ã¯(/data/user/)ãä½¿ãåã£ã¦ãã¾ããã¨ãããã¾ãã
Log rotation may fail to signal services to transition to new log files, leading to older log files continuing to be used, and eventual root disk space exhaustion. To remedy and/or prevent this issue, run the following commands in the administrative shell (SSH), or contact GitHub Enterprise Support for assistance:
```
printf "PATH=/usr/local/sbin:/usr/local/bin:/usr/local/share/enterprise:/usr/sbin:/usr/bin:/sbin:/bin\n29,59 * * * * root /usr/sbin/logrotate /etc/logrotate.conf\n" | sudo sponge /etc/cron.d/logrotate
sudo /usr/sbin/logrotate -f /etc/logrotate.conf
```
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.2

Download GitHub Enterprise Server 3.0.2

March 16, 2021

GitHub Enterprise Server 3.0ä»¥éã§ã¯æå°ã®ã¤ã³ãã©ã¹ãã©ã¯ãã£ã®è¦ä»¶ãå¢å ããã¾ãããè©³ããæå ±ã«ã¤ãã¦ã¯ãGitHub Enterprise Server 3.0ä»¥éã«å¯¾ããæå°è¦ä»¶ã«ã¤ãã¦ããåç§ãã¦ãã ããã

Security fixes

ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

ããã¯ã¢ããä¸ã«ããã¼ã¸å¯è½ãªã¹ãã¬ã¼ã¸ãªãã¸ã§ã¯ããã¯ãªã¼ã³ã¢ãããããã¨ããã¨ãã«ã"Warning: One or more storage objects were not found on the source appliance."ã¨ããã¨ã©ã¼ãçãã¾ããã
GitHub Actionsã®ç¡å¹åã«å¤±æãããã¨ãããã¾ãã
ã«ã¹ã¿ã ã®pre-receiveããã¯ã«/tmpã¸ã®æ¸ãè¾¼ã¿ãè¨±ããããæ£ããå®è¡ã§ããªãã¹ã¯ãªãããããã¾ãã
Systemdã®ã¸ã£ã¼ãã«ãã°ãè¤æ°ã®å ´æã§è¤è£½ããã¾ããã
GitHub Enterprise 11.10.xä»¥åã§è¨å®ãããã¿ã¤ã ã¾ã¼ã³ãã3.0ã¸ã®ã¢ããã°ã¬ã¼ãã®å¾ã§UTCæéã«ãªã»ãããããã¤ã³ã¹ã¿ã³ã¹ã«ãã£ã¦ã¯ã¿ã¤ã ã¹ã¿ã³ããããããã¨ãããã¾ããã
ãªãã¸ããªã®Packagesãµã¤ããã¼åã§ãDockerã®ã¢ã¤ã³ã³ãç°è²ã«ãªã£ã¦ããããã¼ã«ãããã"This service is deprecated"ã¨è¡¨ç¤ºãã¾ããã
application/x-www-form-urlencodedã¨ããã³ã³ãã³ãã¿ã¤ãã§è¨å®ãããwebhookã¯ãPOSTã®ãªã¯ã¨ã¹ãããã£ä¸ã®ã¯ã¨ãªãã©ã¡ã¼ã¿ãåä¿¡ãã¾ããã§ããã
ã¦ã¼ã¶ãããã¹ã¦ã®ãã§ãã¯ããã¯ã¹ããã§ãã¯ãããã¨ãªãå¿é ã®ã¡ãã»ã¼ã¸ãéãããã¨ãã§ãã¾ããã
2.22.Xã¤ã³ã¹ã¿ã³ã¹ããã¢ããã°ã¬ã¼ãããå¾ãwebã¤ã³ã¿ã¼ãã§ã¼ã¹ã®ã¢ã»ãããæ¬ ãã¦ããã¼ã¸ãæ£ããæç»ãããªããã¨ãããã¾ããã
ghe-config-applyãå®è¡ããã¨ã'job' stanza not foundã«ãã£ã¦Failure waiting for nomad jobs to applyã§ã¿ã¤ã ã¢ã¦ãã«ãªããã¨ãããã¾ããã

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
When maintenance mode is enabled, some services continue to be listed as "active processes". The services identified are expected to run during maintenance mode. If you experience this issue and are unsure, contact GitHub Enterprise Support.
ãã¼ãããã¯ã«éASCIIã®UTF-8æåãå«ã¾ãã¦ããå ´åãWeb UIä¸ã§ã®Jupyter Notebookã®ã¬ã³ããªã³ã°ãå¤±æãããã¨ãããã¾ãã
Web UIã§ã®reStructuredText (RST) ã®ã¬ã³ããªã³ã°ãå¤±æããä»£ããã«RSTã®ãã¼ã¯ã¢ããããã¹ãããã®ã¾ã¾è¡¨ç¤ºããããã¨ãããã¾ãã
Pagesã®å¤ããã«ããã¯ãªã¼ã³ã¢ããããããã¦ã¼ã¶ãã£ã¹ã¯(/data/user/)ãä½¿ãåã£ã¦ãã¾ããã¨ãããã¾ãã
ã¦ã¼ã¶ã¯ãã¢ãã¿ã¼ã®ãããªã¢ã»ããããã¼ããããªããã¨ããã³ã¼ãã®ããã·ã¥/ãã«ã®å¤±æãä½é¨ããããããã¾ãããããã¯ãhaproxy-cluster-proxyãµã¼ãã¹åã®PIDãã¹ãããã«ãã£ã¦çãããã¨ãããã¾ããå½±é¿ãããã¤ã³ã¹ã¿ã³ã¹ããããã¯ãä»¥ä¸ã®ããã«ãã¦å¤æãã¾ãã

åä¸ã¤ã³ã¹ã¿ã³ã¹
1. ä»¥ä¸ãç®¡çã·ã§ã« (SSH)ã§å®è¡ãã¦ãã ãã:
```
if [ $(cat /var/run/haproxy-cluster-proxy.pid) -ne $(systemctl show --property MainPID --value haproxy-cluster-proxy) ]; then echo 'Main PID of haproxy-cluster-proxy does not match /var/run/haproxy-cluster-proxy.pid'; fi
```
2. ãã¹ããããããã¨è¡¨ç¤ºãããããã¤ã³ã¹ã¿ã³ã¹ãåèµ·åãã¦ãã ããã
ã¯ã©ã¹ã¿ãããã¯High Availabilityæ§æ
1. ä»¥ä¸ãç®¡çã·ã§ã« (SSH)ã§å®è¡ãã¦ãã ãã:
```
ghe-cluster-each -- 'if [ $(cat /var/run/haproxy-cluster-proxy.pid) -ne $(systemctl show --property MainPID --value haproxy-cluster-proxy) ]; then echo 'Main PID of haproxy-cluster-proxy does not match /var/run/haproxy-cluster-proxy.pid'; fi'
```
2. 1ã¤ä»¥ä¸ã®ãã¼ããå½±é¿ããã¦ããã¨è¡¨ç¤ºãããããå½±é¿ããã¦ãããã¼ããåèµ·åãã¦ãã ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.1

Download GitHub Enterprise Server 3.0.1

March 02, 2021

GitHub Enterprise Server 3.0ä»¥éã§ã¯æå°ã®ã¤ã³ãã©ã¹ãã©ã¯ãã£ã®è¦ä»¶ãå¢å ããã¾ãããè©³ããæå ±ã«ã¤ãã¦ã¯ãGitHub Enterprise Server 3.0ä»¥éã«å¯¾ããæå°è¦ä»¶ã«ã¤ãã¦ããåç§ãã¦ãã ããã

Security fixes

é«: ç¹å¥ãªç´°å·¥ãè¡ãããPull RequestãREST APIã®ãªã¯ã¨ã¹ããéãã¦ãèªå¯ããã¦ããªããªãã¸ããªã¸ã®æ¸ãè¾¼ã¿ã¢ã¯ã»ã¹ããã¤ã³ã¹ã¿ã³ã¹ã®èªè¨¼ãããã¦ã¼ã¶ãåå¾ã§ãã¦ãã¾ããä¸é©åãªã¢ã¯ã»ã¹å¶å¾¡ã®èå¼±æ§ãGitHub Enterprise Serverã§ç¹å®ããã¾ãããæ»æèã¯ã¿ã¼ã²ããã®ãªãã¸ããªããã©ã¼ã¯ã§ããªããã°ãªãã¾ããããããã¯Organizationãææãã¦ãããã©ã¤ãã¼ããªãã¸ããªã§ã¯ããã©ã«ãã§ç¡å¹åããã¦ããè¨å®ã§ããå¿é ã®Pull Requestã¬ãã¥ã¼ãã¹ãã¼ã¿ã¹ãã§ãã¯ã¨ãã£ããã©ã³ãä¿è·ã§ããããªãã¬ãã¥ã¼ãæ¤è¨¼ãªãã«æªèªå¯ã®ã³ãããããã¼ã¸ããããã¨ã¯é¿ãããã¾ãããã®èå¼±æ§ã«ã¯CVE-2021-22861ãå²ãå½ã¦ããã¾ããããã®åé¡ã¯ãGitHub Bug Bounty Programãéãã¦å ±åããã¾ããã
é«: é©åãªèªå¯ãªãã«ãPull Requestã®ã¡ã³ããã®ã³ã©ãã¬ã¼ã·ã§ã³æ¨©éãä¿®æ£ã§ãããä¸é©åãªã¢ã¯ã»ã¹å¶å¾¡ã®èå¼±æ§ãGitHub Enterprise Serverã§ç¹å®ããã¾ããããã®èå¼±æ§ãçªããã¨ã§ãæ»æèã¯èªåãã¡ã³ããã«ãªã£ã¦ãããªãã¸ããªã§ãªã¼ãã³ãããPull Requestã®headãã©ã³ãã¸ã®ã¢ã¯ã»ã¹ãå¾ããã¨ãã§ãã¾ããOrganizationãææãããã©ã¤ãã¼ããªãã¸ããªã§ã¯ãã©ã¼ã¯ãããã©ã«ãã§ç¡å¹ã«ãªã£ã¦ããããã®èå¼±æ§ãé¿ãããã¨ãã§ãã¾ããå ãã¦ãå¿é ã®Pull Requestã¬ãã¥ã¼ãã¹ãã¼ã¿ã¹ãã§ãã¯ã¨ãã£ããã©ã³ãä¿è·ã§ããããªãã¬ãã¥ã¼ãæ¤è¨¼ãªãã«æªèªå¯ã®ã³ãããããã¼ã¸ããããã¨ã¯é¿ãããã¾ãããã®èå¼±æ§ã«ã¯CVE-2021-22863ãå²ãå½ã¦ããã¾ããããã®åé¡ã¯ãGitHub Bug Bounty Programãéãã¦å ±åããã¾ããã
é«: ãªãã¸ããªããã©ã¼ã¯ã§ããèªè¨¼ãããã¦ã¼ã¶ãããã©ã¼ã¯ã®è¦ªãªãã¸ããªã®Actionsã®ã·ã¼ã¯ã¬ãããéç¤ºã§ãã¦ãã¾ããä¸é©åãªã¢ã¯ã»ã¹å¶å¾¡ã®èå¼±æ§ãGitHub Enterprise Serverã§ç¹å®ããã¾ããããã®èå¼±æ§ãåå¨ããã®ã¯ãä»»æã®SHAãããã¯ãã©ã¼ã¯ãªãã¸ããªå¤ã®ä»ã®Pull Requestã®æç¹ã¾ã§ãPull Requestã®ãã¼ã¹åç§ãæ´æ°ã§ããæ¬ é¥ã®ããã§ããPRåã®ãã®æ£ãããªãåç§ãç¢ºç«ãããã¨ã«ãã£ã¦ããã©ã¼ã¯ããã¯ã¼ã¯ããã¼ã«éä¿¡ãããActionsã®ã·ã¼ã¯ã¬ãããéå®ããå¶éããã¤ãã¹ããããã¨ãããã¾ããããã®èå¼±æ§ã¯ãGitHub Enterprise Serverã®ãã¼ã¸ã§ã³3.0.0ã3.0.0.rc2ã3.0.0.rc1ã«å½±é¿ãããã®ã§ãCVE-2021-22862ãå²ãå½ã¦ããã¾ããããã®èå¼±æ§ã¯GitHub Bug Bountyããã°ã©ã ãéãã¦å ±åããã¾ããã
ä¸: GitHub Pagesã®ãã«ãããã®GitHubãã¼ã¯ã³ããã°ã«æ®ããã¨ãããã¾ãã
ããã±ã¼ã¸ã¯ææ°ã®ã»ãã¥ãªãã£ãã¼ã¸ã§ã³ã«ã¢ãããã¼ãããã¾ããã

Bug fixes

HTTPãããããã¢ã¼ã«ã¤ãã«å¯¾ãã304ã¹ãã¼ã¿ã¹ã®ãããªç¹å®ã®ã¬ã¹ãã³ã¹ã«ããã¦HTTP RFCæ¨æºã«æºæ ãã¦ãã¾ããã§ããã
ä¾åé¢ä¿ã°ã©ãã®æ©è½ãæå¹åãããPythonã®ãªãã¸ããªããã¹ãããã¤ã³ã¹ã¿ã³ã¹ã«ããã¦ãã«ã¼ããã£ã¹ã¯ãã¨ã©ã¼ãã°ã§åãå°½ãããã¦ãã¾ããã¤ã³ã¹ã¿ã³ã¹ãå¿çããªããªããã¨ãããã¾ããã
GitHub Enterprise Backup Utilitiesãã¹ãããã·ã§ãããåãéã«ãæå ±æä¾ã®ã¡ãã»ã¼ã¸ãæå³ããã¨ã©ã¼ã¨ãã¦è¨é²ããããã®ããã«cronã¸ã§ãã«ãã£ã¦ã¹ã±ã¸ã¥ã¼ã«ãããstderrã¸ã®åºåãå¾ã¡åãã¦ããããã¯ã¢ããã®éã«ãä¸è¦ãªã¡ã¼ã«ãéä¿¡ããã¦ãã¾ãã¾ãã
VMWare ESX 6.7ã«ããã¦ãåæã®è¨å®ããã¹ãã®ãã¼ãçæããéã«ãã³ã°ãããã®ã¤ã³ã¹ã¿ã³ã¹ãSSHã§ã¢ã¯ã»ã¹ã§ããªããªã£ã¦ãã¾ããã¨ãããã¾ããã
GitHub Actionsãæå¹åããã¦ããã¨ãç®¡çã³ã³ã½ã¼ã«ã§ã¡ã³ããã³ã¹ã¢ã¼ãã®ç¡å¹åã«å¤±æãã¾ãã
ãµãã¸ã§ã¯ãã®å¥åã«è¤æ°ã®ååãããè¨¼ææ¸ãä½¿ã£ã¦S/MIMEç½²åãããã³ãããã§ãèª¤ã£ã¦ã³ãããããã¸ã«"Unverified"ã¨è¡¨ç¤ºããã¾ãã
ãµã¹ãã³ããããã¦ã¼ã¶ãTeamã«è¿½å ãããã¨ãã¡ã¼ã«ãéä¿¡ããã¾ãã
ãªãã¸ããªãå¤§éã®ãããã§ã¹ããæã£ã¦ããã¨ãYou have reached the maximum number of allowed manifest files (20) for this repositoryã¨ããã¨ã©ã¼ãInsights -> Dependency graphã¿ãã«è¡¨ç¤ºããã¾ããè©³ããæå ±ã«ã¤ãã¦ã¯å¯è¦åã®å¶éãåç§ãã¦ãã ããã
ææãããªãã¸ããªã§Actionsãæå¹åããã¦ããªãã¦ããã¦ã¼ã¶ã«Code Scanning CodeQL Actionãã»ããã¢ãããããªãã·ã§ã³ãè¡¨ç¤ºããã¦ãã¾ãã®ãä¿®æ£ãã¾ããã
Enterpriseã¢ã«ã¦ã³ãè¨å®ã«ãã"Prevent repository admins from changing anonymous Git read access"ãã§ãã¯ããã¯ã¹ããæ£å¸¸ã«æå¹åã¾ãã¯ç¡å¹åã§ãã¾ããã§ããã
é ã®ã¡ãã»ã¼ã¸ãè¡¨ç¤ºããããã«ä½¿ãããã¢ã¼ãã«ã«åç´ã¹ã¯ãã¼ã«ãã¼ãå«ã¾ãããé·ãã¡ãã»ã¼ã¸ããã¹ã¦è¦ããã¨ãã§ãã¾ããã§ããã
ä¾åé¢ä¿ã°ã©ããPythonã®setup.pyãããã§ã¹ããã¡ã¤ã«ã®ãã¼ã¹ã«å¤±æããHTTP 500ã¨ã©ã¼ããã°ã«æ®ããã¾ãããããéè¤ããããã®ã³ã°ã®åé¡ã¨çµã¿åãããã¨ãã«ã¼ãããªã¥ã¼ã ã®ä½¿ç¨çãå¢å¤§ãã¾ãã

Changes

Known issues

æ°ããã»ããã¢ãããããã¦ã¼ã¶ãæããªãGitHub Enterprise Serverã§ãæ»æèãæåã®ç®¡çã¦ã¼ã¶ãä½æã§ãã¾ããã
Git LFSãè¿½è·¡ãããã¡ã¤ã«Webã¤ã³ã¿ã¼ãã§ã¼ã¹ããã¢ãããã¼ãããããã®ããä¸æ£ã«ãªãã¸ããªã«ç´æ¥è¿½å ããã¦ãã¾ãã¾ãã
åããªãã¸ããªåã®ãã¡ã¤ã«ãã¹ã255æåãè¶ããblobã¸ã®ãã¼ããªã³ã¯ãå«ãIssueãã¯ãã¼ãºã§ãã¾ããã§ããã
GitHub Connectã§"Users can search GitHub.com"ãæå¹åããã¦ããå ´åãGitHub.comã®æ¤ç´¢çµæã«ãã©ã¤ãã¼ãåã³ã¤ã³ã¿ã¼ãã«ãªãã¸ããªã®Issueãå«ã¾ãã¾ããã
When maintenance mode is enabled, some services continue to be listed as "active processes". The services identified are expected to run during maintenance mode. If you experience this issue and are unsure, contact GitHub Enterprise Support.
/var/log/messagesã/var/log/syslogã/var/log/user.logã¸ã®éè¤ãããã®ã³ã°ã«ãã£ã¦ãã«ã¼ãããªã¥ã¼ã ã®ä½¿ç¨çãå¢å¤§ãã¾ãã
ã¦ã¼ã¶ãããã¹ã¦ã®ãã§ãã¯ããã¯ã¹ããã§ãã¯ãããã¨ãªãå¿é ã®ã¡ãã»ã¼ã¸ãéãããã¨ãã§ãã¾ãã
pre-receiveããã¯ã¹ã¯ãªããã¯ä¸æãã¡ã¤ã«ãæ¸ããã¨ãã§ããããã®ããã«ã¹ã¯ãªããã®å®è¡ãå¤±æãããã¨ãããã¾ããpre-receiveããã¯ãä½¿ãã¦ã¼ã¶ã¯ãã¹ãã¼ã¸ã³ã°ç°å¢ã§ã¹ã¯ãªãããæ¸ãè¾¼ã¿ã¢ã¯ã»ã¹æ¨©ãå¿è¦ã¨ããããç¢ºèªããããã®ãã¹ããããã¹ãã§ãã
ãªãã¸ããªã®ãããã¤ãã¼ããLFSãªãã¸ã§ã¯ããå«ããªãã¸ããªã§ä½¿ç¨ã§ãã¾ããã
ãã¼ãããã¯ã«éASCIIã®UTF-8æåãå«ã¾ãã¦ããå ´åãWeb UIä¸ã§ã®Jupyter Notebookã®ã¬ã³ããªã³ã°ãå¤±æãããã¨ãããã¾ãã
Web UIã§ã®reStructuredText (RST) ã®ã¬ã³ããªã³ã°ãå¤±æããä»£ããã«RSTã®ãã¼ã¯ã¢ããããã¹ãããã®ã¾ã¾è¡¨ç¤ºããããã¨ãããã¾ãã
ä»¥åã®GitHub Enterprise Serverã®ãªãªã¼ã¹ããã¢ããã°ã¬ã¼ãããããã«ã¹ã¿ã ã®ã¿ã¤ã ã¾ã¼ã³ãæã¤ã¤ã³ã¹ã¿ã³ã¹ã¯ãWeb UIã«ä¸æ£ç¢ºãªã¿ã¤ã ã¹ã¿ã³ãããããã¨ãããã¾ãã
Pagesã®å¤ããã«ããã¯ãªã¼ã³ã¢ããããããã¦ã¼ã¶ãã£ã¹ã¯(/data/user/)ãä½¿ãåã£ã¦ãã¾ããã¨ãããã¾ãã
ã¦ã¼ã¶ã¯ãã¢ãã¿ã¼ã®ãããªã¢ã»ããããã¼ããããªããã¨ããã³ã¼ãã®ããã·ã¥/ãã«ã®å¤±æãä½é¨ããããããã¾ãããããã¯ãhaproxy-cluster-proxyãµã¼ãã¹åã®PIDãã¹ãããã«ãã£ã¦çãããã¨ãããã¾ããå½±é¿ãããã¤ã³ã¹ã¿ã³ã¹ããããã¯ãä»¥ä¸ã®ããã«ãã¦å¤æãã¾ãã

åä¸ã¤ã³ã¹ã¿ã³ã¹
1. ä»¥ä¸ãç®¡çã·ã§ã« (SSH)ã§å®è¡ãã¦ãã ãã:
```
if [ $(cat /var/run/haproxy-cluster-proxy.pid) -ne $(systemctl show --property MainPID --value haproxy-cluster-proxy) ]; then echo 'Main PID of haproxy-cluster-proxy does not match /var/run/haproxy-cluster-proxy.pid'; fi
```
2. ãã¹ããããããã¨è¡¨ç¤ºãããããã¤ã³ã¹ã¿ã³ã¹ãåèµ·åãã¦ãã ããã
ã¯ã©ã¹ã¿ãããã¯High Availabilityæ§æ
1. ä»¥ä¸ãç®¡çã·ã§ã« (SSH)ã§å®è¡ãã¦ãã ãã:
```
ghe-cluster-each -- 'if [ $(cat /var/run/haproxy-cluster-proxy.pid) -ne $(systemctl show --property MainPID --value haproxy-cluster-proxy) ]; then echo 'Main PID of haproxy-cluster-proxy does not match /var/run/haproxy-cluster-proxy.pid'; fi'
```
2. 1ã¤ä»¥ä¸ã®ãã¼ããå½±é¿ããã¦ããã¨è¡¨ç¤ºãããããå½±é¿ããã¦ãããã¼ããåèµ·åãã¦ãã ããã
High Availabilityæ§æã§ã¬ããªã«ãã¼ãããªãã©ã¤ã³ã®å ´åã§ããGitHub Enterprise ServerãGitHub Pagesãªã¯ã¨ã¹ãããªãã©ã¤ã³ã®ãã¼ãã«ã«ã¼ãã£ã³ã°ãç¶ããå ´åããããããã«ãã£ã¦ã¦ã¼ã¶ã«ã¨ã£ã¦ã®GitHub Pagesã®å¯ç¨æ§ãä¸ãã£ã¦ãã¾ãã¾ãã
pre-receive ããã¯ã®å¦çã«åºæã®ãªã½ã¼ã¹å¶éã«ãã£ã¦ãpre-receive ããã¯ã«å¤±æãããã®ãçãããã¨ãããã¾ãã

Enterprise Server 3.0.0

Download GitHub Enterprise Server 3.0.0

February 16, 2021

The minimum infrastructure requirements have increased for GitHub Enterprise Server 3.0+. For more information, see "About minimum requirements for GitHub Enterprise Server 3.0 and later."

Security fixes

HIGH: A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration of the underlying parsers used by GitHub Pages were not sufficiently restricted and made it possible to execute commands on the GitHub Enterprise Server instance. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This vulnerability has been assigned CVE-2020-10519 and was reported via the GitHub Bug Bounty Program.

Features

GitHub Actions

GitHub Actions is now generally available on GitHub Enterprise Server 3.0+. Build, test, and deploy your code from GitHub. Submit code reviews, branch management, and issue triaging work the way you want.

This release includes several improvements from the beta of GitHub Actions on GitHub Enterprise Server:
- Enterprise, organization, and repository admins can create security policies for access to GitHub Actions on GitHub.com.
- Enterprise, organization, and repository admins can allow public repositories to use self-hosted runners.
- Enterprise, organization, and repository admins can now allow workflows to run on pull requests raised from forks of private repositories.
- The workflow_run event is now supported
- Users now have the ability to disable workflows and enable them at a later date.
- Workflow logs have been enhanced for a better user experience.
- Users can now use private images in container jobs and services.
- The max retention days for artifacts and logs can now be customized.
- The runner group API now includes labels.
- You can now create reusable actions using shell scripts with compose run steps.
- Encrypted secrets for an organization allows you to consolidate secrets across repositories.
- Workflow templates for an organization streamlines and promotes best practices and consistency across your organization.
GitHub Actions is not currently supported for enterprises using cluster configurations.

GitHub Packages

GitHub Packages is a package hosting service, natively integrated with GitHub APIs, Actions, and webhooks. Create an end-to-end DevOps workflow that includes your code, continuous integration, and deployment solutions.

Supported storage back ends include AWS S3 and MinIO with support for Azure blob coming in a future release. Please note that the current Docker support will be replaced by a beta of the new GitHub Container Registry in a future release. Please review the updated minimum requirements for your platform before you turn on GitHub Packages.

When publishing packages to NuGet, users can now use the --api-key option to pass their authentication token instead of writing it into a file. For more information, see Configuring dotnet CLI for use with GitHub Packages

GitHub Packages is not currently supported for enterprises using cluster configurations.

GitHub Mobile beta

GitHub Mobile beta allows you to triage notifications and manage issues and pull requests from your device. You can be simultaneously signed into mobile with one user account on GitHub.com and one user account on GitHub Enterprise Server.

GitHub Mobile beta is now available for GitHub Enterprise Server. Sign in with our Android and iOS apps to triage notifications and manage issues and pull requests on the go. Administrators can disable mobile support for their Enterprise using the management console or by running ghe-config app.mobile.enabled false.

Advanced Security Secret Scanning beta

Secret Scanning beta scans public and private repositories for committed credentials, finds secrets, and notifies the secret provider or admin the moment they are committed into a repository.

Administrators using GitHub Advanced Security can enable and configure GitHub Advanced Security secret scanning. You can review the updated minimum requirements for your platform before you turn on GitHub Advanced Security secret scanning.

Advanced Security Code Scanning

GitHub Advanced Security code scanning is now generally available on GitHub Enterprise Server. Organizations who have purchased Advanced Security can use this capability to do static analysis security testing against their code, and prevent vulnerabilities from making it to their production code using CodeQL, our semantic analysis engine. For more information, see "Configuring code scanning on your appliance"

Changes

Administration Changes

The webhook events delivery system has been rearchitected for higher throughput, faster deliveries, and fewer delayed messages. It also uses less CPU and memory in GitHub Enterprise Server 3.0+.
Organization and Enterprise owners can now see when a team member has been promoted to or demoted from being a team maintainer in the audit log through the new team.promote_maintainer and team.demote_maintainer audit log events. For more information, see "Audited actions."
Repository maintainers with existing GitHub Pages sites can easily update their prior default branch name.
Additional hardware resources are required to run GitHub Enterprise Server with any of Actions, Packages or Advanced Security enabled. For more information on the minimum required resources for each supported platform, see "Setting up a GitHub Enterprise Server instance."
Administrators can now publish a message, which all users must accept. This can help to onboard new users and surface other organization-specific information and policies.

Security Changes

Organization owners can now disable publication of GitHub Pages sites from repositories in the organization. Disabling GitHub Pages for the organization will prevent members from creating new Pages sites but will not unpublish existing sites. For more information, see "Disabling publication of GitHub Pages sites for your organization."
A datacenter must be explicitly defined on all nodes before enabling an active replica.
All usage of SSH fingerprints has been switched to use SHA256 fingerprints as they are used with OpenSSH since version 6.8 as well. This applies to the web interface and also the API where fingerprints are returned such as in GraphQL. The fingerprints follow the OpenSSH format.
SHA-1 and SHA-256 signature headers (two headers) are sent on webhooks.

Developer Changes

Majority of the services running in GitHub Enterprise Server 3.0+ are now on containers which internally enables GitHub to iterate fast and ship high quality releases
The webhook events delivery system has been rearchitected for higher throughput, faster deliveries, and fewer delayed messages.

API Changes

Administrators can now configure and manage the site-wide announcement banner via the REST API. For more information, see the endpoints for "GitHub Enterprise administration."
A new API endpoint enables the exchange of a user to server token for a user to server token scoped to specific repositories. For more information, see "Apps" in the GitHub REST API documentation.

Default branch renaming

Enterprise and organization administrators can now set the default branch name for new repositories. Enterprise administrators can also enforce their choice of default branch name across all organizations or allow individual organizations to choose their own.

Existing repositories are unaffected by these settings, and their default branch name will not be changed.

The default branch for newly-created repositories will be set to main in GHES 3.1, unless you opt out by setting the default branch setting at the enterprise level.

This change is one of many changes GitHub is making to support projects and maintainers that want to rename their default branch. To learn more about the changes we're making, see github/renaming.

Bug fixes

Fixes for known issues from Release Candidates

All known issues from Release Candidate 1 and Release Candidate 2 have been fixed, except those listed in the Known Issues section below.

Fixes for other issues

Issues with migrations and upgrades to 3.0.0 have been fixed.
Backup Utilities versioning now works for release candidate versions.
Generating a support bundle resulted in an error in the orchestrator logs.
A large restore could result in Redis running out of memory.
The checkbox to enable GitHub Actions in the Management Console is now visible with any authentication method.
GitHub Actions could be enabled if the required storage was also configured.
ghe-repl-status could silently fail if MSSQL replication was not configured.
The format of several log files have changed, including the addition of a PID for different log types. This does not affect how GitHub Enterprise Support uses support bundles to troubleshoot issues.
A PATCH request to the webhook configuration API no longer erases the webhook secret.
Certain types of pre-receive hooks were failing.
The Packages NuGet service now normalizes semantic versions on publish. An invalid semantic version (for example: v1.0.0.0.0.0) is not downloadable by NuGet clients and therefore a NuGet service is expected to normalize those versions (for example: v1.0.0.0.0.0 --> v1.0.0). Any original, non-normalized, version will be available in the verbatimVersion field. No changes to client configurations are required.

Known issues

On a freshly set up GitHub Enterprise Server without any users, an attacker could create the first admin user.
Custom firewall rules are not maintained during an upgrade.
Git LFS tracked files uploaded through the web interface are incorrectly added directly to the repository.
When "Users can search GitHub.com" is enabled with GitHub Connect, issues in private and internal repositories are not included in GitHub.com search results.
When maintenance mode is enabled, some services continue to be listed as "active processes". The services identified are expected to run during maintenance mode. If you experience this issue and are unsure, contact GitHub Enterprise Support.
When GitHub Actions is enabled, use 'ghe-maintenance -u' to unset maintenance mode.
Duplicated logging to /var/log/messages, /var/log/syslog, and /var/log/user.log results in increased root volume utilization.
Users can dismiss a mandatory message without checking all checkboxes.
Pre-receive hook scripts cannot write temporary files, which may cause script execution to fail. Users who use pre-receive hooks should test in a staging environment to see if scripts require write access.
Repository deploy keys are unable to be used with repositories containing LFS objects.
Jupyter Notebook rendering in the web UI may fail if the notebook includes non-ASCII UTF-8 characters.
reStructuredText (RST) rendering in the web UI may fail and instead display raw RST markup text.
Dependency graph fails to parse setup.py Python manifest files, resulting in HTTP 500 errors in logs. This, combined with the duplicated logging issue, results in increased root volume utilization.
A race condition can cause dependency graph database migrations to appear to fail.
Instances with a custom timezone that were upgraded from an earlier release of GitHub Enterprise Server may have incorrect timestamps in the web UI.
Old builds of Pages are not cleaned up, which could fill up the user disk (/data/user/).
When deleting a branch after merging a pull request, an error message appears although the branch deletion succeeds.
When a replica node is offline in a high availability configuration, GitHub Enterprise Server may still route GitHub Pages requests to the offline node, reducing the availability of GitHub Pages for users.
Resource limits that are specific to processing pre-receive hooks may cause some pre-receive hooks to fail.

Deprecations

Deprecation of GitHub Enterprise Server 2.19

GitHub Enterprise Server 2.19 is deprecated as of November 12, 2020. That means that no patch releases will be made, even for critical security issues, after this date. For better performance, improved security, and new features, upgrade to the newest version of GitHub Enterprise Server as soon as possible.

Deprecation of Legacy GitHub App Webhook Events

Starting with GitHub Enterprise Server 2.21.0 two legacy GitHub Apps-related webhook events have been deprecated and will be removed in GitHub Enterprise Server 3.2.0. The deprecated events integration_installation and integration_installation_repositories have equivalent events which will be supported. More information is available in the deprecation announcement blog post.

Deprecation of Legacy GitHub Apps Endpoint

Starting with GitHub Enterprise Server 2.21.0 the legacy GitHub Apps endpoint for creating installation access tokens was deprecated and will be removed in GitHub Enterprise Server 3.2.0. More information is available in the deprecation announcement blog post.

Deprecation of OAuth Application API

GitHub no longer supports the OAuth application endpoints that contain access_token as a path parameter. We have introduced new endpoints that allow you to securely manage tokens for OAuth Apps by moving access_token to the request body. While deprecated, the endpoints are still accessible in this version. We intend to remove these endpoints on GitHub Enterprise Server 3.4. For more information, see the deprecation announcement blog post.

Deprecation of support for Semiotic

The service supported a "Find by Symbol" experience in the pull request view that was not widely used.

Deprecation of workflow commands

GitHub Actions set-env and add-path workflow commands have been deprecated. For more information, see the changelog.

Backups

GitHub Enterprise Server 3.0 requires at least GitHub Enterprise Backup Utilities 3.0.0 for Backups and Disaster Recovery.

Enterprise Server 3.0 release notes

Security fixes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Known issues

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Known issues

Security fixes

Bug fixes

Changes

Known issues

Security fixes