Add migration to sync policies to ScanResultPolicyRead
Why are we doing this work
The security policies are stored as YAML files in the security policy project. This approach has a lot of advantages (like version control for policies using git, auditable etc) but it faces some performance drawbacks. Since reading from the git repository requires calls to gitaly, it gets difficult to add additional features
This issue focusses on adding a background migration to re-sync the policies in YAML to update the ScanResultPolicyRead
records with updated values
Relevant links
Non-functional requirements
-
Documentation: -
Feature flag: -
Performance: -
Testing:
Implementation plan
-
Create background migration to iterate all values of Security::OrchestrationPolicyConfiguration
and callSecurity::SyncScanPoliciesWorker
similar to one in !116608 (merged)
Verification steps
Edited by Sashi Kumar Kumaresan