A Gitlab security update will be applied on March 29th, between 8am and 10am, EST (UTC-05:00). This site may have intermittent delays during that time.
Some code paths in `ExpandVariablesInString{New,Old}` were not checking the `filename` parameter for a null pointer, but this can happen when using the above flags together. Add the checks and a test case. Fixes: #17896