Schedule StoreScansWorker for root pipelines only
What does this MR do and why?
This change ensures that the StoreScansWorker is only scheduled when a root pipeline transitions to a completed status. This ensures that all the Security::Scan
records are created before the worker begins executing.
How to set up and validate locally
- Clone https://gitlab.com/gitlab-org/govern/threat-insights-demos/verification-projects/verify-393305/parent-child-pipeline to your local gdk
- Trigger a pipeline in the project.
- Navigate to the vulnerability report.
- Select "Still Detected" under "Activity"
- Ensure that the vulnerability report contains two vulnerabilities.
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Edited by mo khan