Add `license_finding` rule type to security orchestration schema (!108818) · Merge requests · GitLab.org / GitLab

Dominic Bauer requested to merge 385604-be-license-approvals-extend-json-schema-to-support-license-approval-policies into master Jan 12, 2023

What does this MR do and why?

Introduces a new license_finding rule type to the security orchestration schema.

The new scan result policy rule type allows users to block merge requests depending on the results of license scanning.

The structure of license_finding rules was determined in #371502 (closed):

---
rules:
- type: license_finding
  branches: []
  match_on_inclusion: true
  license_types:
  - BSD
  - MIT
  license_states:
  - newly_detected
  - detected

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #385604 (closed)

Add `license_finding` rule type to security orchestration schema

What does this MR do and why?

MR acceptance checklist

Merge request reports