Nixpkgs Security Tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged
(browse all)
Permalink CVE-2026-1751
created 7 hours ago
Missing Authorization in GitLab

A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8 before 18.5.0 that could have allowed unauthorized edits to merge request approval rules under certain conditions.

Affected products

GitLab
  • <18.5.0

Matching in nixpkgs

pkgs.gitlab-duo

CLI for GitLab AI assistant

pkgs.gitlab-kas

Kubernetes Agent (Gitlab side)

pkgs.gitlab-ci-ls

GitLab CI Language Server (gitlab-ci-ls)

pkgs.danger-gitlab

Gem that exists to ensure all dependencies are set up for Danger with GitLab

pkgs.gitlab-clippy

Convert clippy warnings into GitLab Code Quality report

pkgs.gitlab-runner

GitLab Runner the continuous integration executor of GitLab

pkgs.gitlab-ci-local

Run gitlab pipelines locally as shell executor or docker executor

pkgs.gitlab-timelogs

CLI utility to support you with your time logs in GitLab

pkgs.gitlab-ci-linter

.gitlab-ci.yml lint helper tool

pkgs.gitlab-release-cli

Toolset to create, retrieve and update releases on GitLab

pkgs.ocamlPackages.gitlab

Native OCaml bindings to Gitlab REST API v4

pkgs.vimPlugins.gitlab-vim

Integrate GitLab Duo with Neovim

pkgs.gitlab-container-registry

GitLab Docker toolset to pack, ship, store, and deliver content

pkgs.ocamlPackages.gitlab-jsoo

Gitlab APIv4 JavaScript library

pkgs.ocamlPackages.gitlab-unix

Gitlab APIv4 Unix library

pkgs.rubyPackages.gitlab-markup

None

pkgs.terraform-providers.gitlab

None

pkgs.ocamlPackages_latest.gitlab

Native OCaml bindings to Gitlab REST API v4

pkgs.gitlab-elasticsearch-indexer

Indexes Git repositories into Elasticsearch for GitLab

pkgs.rubyPackages_3_1.gitlab-markup

None

pkgs.rubyPackages_3_2.gitlab-markup

None

pkgs.rubyPackages_3_5.gitlab-markup

None

  • nixos-25.11 -

pkgs.rubyPackages_4_0.gitlab-markup

None

pkgs.python312Packages.mkdocs-gitlab

MkDocs plugin to transform strings such as #1234, %56, or !789 into links to a Gitlab repository

pkgs.python312Packages.python-gitlab

Interact with GitLab API

pkgs.python313Packages.mkdocs-gitlab

MkDocs plugin to transform strings such as #1234, %56, or !789 into links to a Gitlab repository

pkgs.python313Packages.python-gitlab

Interact with GitLab API

pkgs.python314Packages.mkdocs-gitlab

MkDocs plugin to transform strings into links to a Gitlab repository

pkgs.python314Packages.python-gitlab

Interact with GitLab API

pkgs.ocamlPackages_latest.gitlab-jsoo

Gitlab APIv4 JavaScript library

pkgs.ocamlPackages_latest.gitlab-unix

Gitlab APIv4 Unix library

pkgs.terraform-providers.gitlabhq_gitlab

None

pkgs.prometheus-gitlab-ci-pipelines-exporter

Prometheus / OpenMetrics exporter for GitLab CI pipelines insights

pkgs.vscode-extensions.gitlab.gitlab-workflow

GitLab extension for Visual Studio Code

pkgs.perlPackages.AlienBuildPluginDownloadGitLab

Alien::Build plugin to download from GitLab

pkgs.perl5Packages.AlienBuildPluginDownloadGitLab

Alien::Build plugin to download from GitLab

  • nixos-unstable -

pkgs.perl538Packages.AlienBuildPluginDownloadGitLab

Alien::Build plugin to download from GitLab

pkgs.perl540Packages.AlienBuildPluginDownloadGitLab

Alien::Build plugin to download from GitLab

  • nixos-25.05 -

Package maintainers