GitLab

Created by: sakof

Summary: User is able to push to protected branches, as a developer, with no admin rights.
Steps to reproduce: 

Protect 2 branches (my exact case: master + prod) create a user, add it to a project with developer profile. Login as the newly test user Add a ssh key git clone the project modify a file, git add, git commit, then git push directly to the protected branch Expected behavior: User should be refused to push to origin in a protected branch Observed behavior User was able to push in prod branch Output of checks gitlab was installed with RPM, version is GitLab 7.2.1 ff1633f4. Can't run the bundle command, commant not found, even with embedded bundle, I got a gemfile missing. I think this is just because of the RPM version.