Draft: Add new JWT claims to SEP jobs (!143723) · Merge requests · GitLab.org / GitLab

Aaron Huntsman requested to merge 434105-add-new-job_source-claim into master Feb 03, 2024

What does this MR do and why?

Adds the following JWT claims to build artifacts generated by SEP jobs:

job_source
job_policy_ref_uri
job_policy_ref_sha

job_source will be set to scan_execution_policy for SEP jobs triggered by pipeline; for other jobs, the value will be inherited from the job's pipeline source.

(This will require determining which jobs were generated by SEPs. See discussion and this issue for implementation ideas; or address attributing SEP jobs in this epic)

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

Before	After

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

Related to #434105 (closed)

Edited Feb 03, 2024 by Aaron Huntsman

Draft: Add new JWT claims to SEP jobs

What does this MR do and why?

MR acceptance checklist

Screenshots or screen recordings

How to set up and validate locally

Merge request reports