Create an exception to invalid rules for Security Policy projects
Why are we doing this work
A scenario can occur where users managing a security policy project can lock their project due to the invalid rule applying to the security policy project itself.
The approval rule shouldn't fail-close for the security policy projects.
Relevant links
More information can be found in the linked epic
Verification steps
-
Create a group -
Create a group scan result policy, for example requiring SAST scanners, which is invalid - require more approvals than eligible approvers and merge it -
Make sure to invite the user whose approval is required directly into the group -
Edit the policy, fix the number of required approvals -
The MR for the security policy project should not be blocked due to invalid rule and it should be auto-approved.
Edited by Martin Čavoj