Merge requests · GitLab.org / GitLab · GitLab

Add Auto Fix service 5 of 5 checklist items completed

!48679 · created Nov 27, 2020 by Tetiana Chupryna 13.7
AST Leadership Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning backend devopssecure direction feature flag featureenhancement groupcomposition analysis missed-deliverable missed:13.5 missed:13.6 releasedpublished sectionsec security sub-issue typemaintenance workflowproduction
- Merged
- 40
- Approved
updated Apr 21, 2023
Permissions for Security bot 4 of 4 checklist items completed

!49167 · created Dec 03, 2020 by Tetiana Chupryna 13.7
AST Leadership Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning backend devopssecure direction feature flag featureenhancement groupcomposition analysis missed-deliverable missed:13.5 missed:13.6 releasedpublished sectionsec sub-issue typefeature workflowproduction
- Merged
- 56
- Approved
updated Apr 21, 2023
Add auto-fix Label 2 of 7 checklist items completed

!50657 · created Dec 29, 2020 by Tetiana Chupryna 13.9
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis GitLab Ultimate SCA:Dependency Scanning auto remediation backend devopssecure feature flag featureenhancement groupcomposition analysis releasedcandidate sectionsec workflowproduction
- Merged
- 8
- Approved
updated Apr 21, 2023
Remove feature flag autofix indicator [RUN ALL RSPEC] [RUN AS-IF-FOSS] 0 of 10 checklist items completed

!51998 · created Jan 19, 2021 by Tetiana Chupryna 13.9
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Category:Vulnerability Management Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning auto remediation backend devopssecure feature flag frontend groupcomposition analysis pipeline:run-all-rspec pipeline:run-as-if-foss releasedcandidate sectionsec typemaintenance workflowproduction
- Merged
- 10
- 1
- Approved
updated Apr 21, 2023
Remove flag path_to_vulnerable_dependency 4 of 6 checklist items completed

!52576 · created Jan 26, 2021 by Tetiana Chupryna 13.9
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning backend dependency list dependency path devopssecure feature flag frontend groupcomposition analysis releasedcandidate sectionsec typemaintenance workflowproduction
- Merged
- 10
- Approved
updated Apr 21, 2023
Get vulnerabilities from db [RUN ALL RSPEC] [RUN AS-IF-FOSS] 0 of 14 checklist items completed

!55641 · created Mar 03, 2021 by Tetiana Chupryna 13.10
AST Leadership Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning backend devopssecure documentation feature flag groupcomposition analysis quad-planningcomplete-action releasedcandidate sectionsec typemaintenance workflowproduction
- Merged
- 27
- Approved
updated Apr 21, 2023
Standalone vulnerabilities on Dependency List page - backend 1 of 11 checklist items completed

!56394 · created Mar 11, 2021 by Tetiana Chupryna 13.10
AST Leadership Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning backend devopssecure documentation feature flag featureaddition groupcomposition analysis quad-planningcomplete-action releasedcandidate sectionsec sub-issue typefeature workflowproduction
- Merged
- 12
- Approved
updated Apr 21, 2023
Enable the secDependencyScanningUiEnable feature flag by default

!58363 · created Apr 01, 2021 by Paul Gascou-Vaillancourt 14.1
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:Dependency Scanning Technical Writing devopssecure docsfeature documentation feature flag featureenhancement frontend groupcomposition analysis missed-deliverable missed:14.0 releasedcandidate sectionsec twfinished typefeature workflowproduction
- Merged
- 17
- Approved
updated Apr 21, 2023
Sort vulnerabilities in dependency list [RUN ALL RSPEC] [RUN AS-IF-FOSS] 10 of 10 checklist items completed

!62983 · created Jun 02, 2021 by Adam Cohen 14.0
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Enterprise Edition GitLab Ultimate SCA:Dependency Scanning Stretch backend dependency list devopssecure feature flag groupcomposition analysis missed-deliverable missed:13.10 priority2 releasedpublished sectionsec severity3 typebug workflowproduction
- Merged
- 36
- Approved
updated Apr 21, 2023
Set sort_dependency_vulnerabilities feature flag to true by default [RUN ALL RSPEC] [RUN AS-IF-FOSS] 11 of 11 checklist items completed

!63500 · created Jun 08, 2021 by Adam Cohen 14.1
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis Enterprise Edition GitLab Ultimate SCA:Dependency Scanning Stretch backend dependency list devopssecure feature flag groupcomposition analysis missed-deliverable missed:13.10 missed:14.0 priority2 releasedpublished sectionsec severity3 typebug workflowproduction
- Merged
- 7
- Approved
updated Apr 21, 2023
Use Feature Flag for Finding Links 11 of 11 checklist items completed

!66868 · created Jul 26, 2021 by Jonathan Schafer 14.2
Category:Dependency Scanning [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning backend customer devopssecure feature flag groupthreat insights priority3 regression regression:13.12 releasedpublished sectionsec severity3 typebug workflowproduction
- Merged
- 5
- Approved
updated Apr 21, 2023
feat: Report build completed metrics on Ci::Build finished 1 of 1 checklist item completed

!80334 · created Feb 09, 2022 by Lucas Charles 15.3
CI artifacts Category:Build Artifacts Category:Code Quality Category:Container Scanning Category:DAST Category:Dependency Scanning [DEPRECATED] Category:Fuzz Testing Category:SAST Category:Secret Detection Category:Software Composition Analysis SCA:Dependency Scanning backend devopsverify documentation feature flag featureenhancement groupstatic analysis pipeline:run-all-rspec releasedpublished sectionsec security reports typefeature workflowpost-deploy-db-production
- Merged
- 25
- Approved
updated Apr 21, 2023
Add worker for ingesting SBoM reports 0 of 1 checklist item completed

!92277 · created Jul 12, 2022 by Brian Williams 15.3
Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:Dependency Scanning SCA:License Scanning WorkingGroupContinuousScanning backend devopsgovern feature flag featureaddition groupsecurity policies releasedpublished sectionsec typefeature workflowpost-deploy-db-production
- Merged
- 35
- Approved
updated Apr 21, 2023
chore: Cleanup report_artifact_build_completed FF 1 of 1 checklist item completed

!95823 · created Aug 19, 2022 by Lucas Charles 15.4
CI artifacts Category:Build Artifacts Category:Code Quality Category:Container Scanning Category:DAST Category:Dependency Scanning [DEPRECATED] Category:Fuzz Testing Category:SAST Category:Secret Detection Category:Software Composition Analysis SCA:Dependency Scanning backend devopssecure feature flag featureenhancement groupstatic analysis maintenancerefactor releasedpublished sectionsec security reports typemaintenance workflowpost-deploy-db-production
- Merged
- 9
- Approved
updated Apr 21, 2023
Add license list to "Security and Compliance" nav section - Add license list, modals, and links 0 of 12 checklist items completed

!18934 · created Oct 22, 2019 by - 12.6
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition SCA:License Scanning Secure UXCompliance & Auditing auto updated backend devopssecure feature flag frontend groupcomposition analysis missed-deliverable missed:12.4 missed:12.5 release post item typefeature workflowproduction
- Merged
- 285
- Approved
updated Apr 21, 2023
Merge licenses controllers 4 of 4 checklist items completed

!21087 · created Dec 02, 2019 by mo khan 12.6
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Enterprise Edition SCA:License Scanning Secure UXCompliance & Auditing backend backstage [DEPRECATED] devopssecure feature flag groupcomposition analysis
- Merged
- 10
- Approved
updated Apr 21, 2023
Merge dependencies controllers together 4 of 5 checklist items completed

!21885 · created Dec 17, 2019 by mo khan 12.7
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition SCA:License Scanning Secure UXCompliance & Auditing backend backstage [DEPRECATED] devopssecure feature flag groupcomposition analysis
- Merged
- 16
- Approved
updated Apr 21, 2023
Enable License compliance feature for self-hosted instances 1 of 11 checklist items completed

!22250 · created Dec 24, 2019 by Tetiana Chupryna 12.7
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition SCA:License Scanning Secure UXCompliance & Auditing backend devopssecure feature flag frontend groupcomposition analysis missed-deliverable missed:12.4 missed:12.5 missed:12.6 typefeature
- Merged
- 17
- Approved
updated Apr 21, 2023
Remove FF for License Compliance rule 0 of 13 checklist items completed

!43577 · created Sep 28, 2020 by Tetiana Chupryna 13.5
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis SCA:License Scanning backend devopssecure feature flag groupcomposition analysis published sectionsec typemaintenance workflowproduction
- Merged
- 10
- Approved
updated Apr 21, 2023
Drop license_management artifact [RUN ALL RSPEC] [RUN AS-IF-FOSS] 9 of 11 checklist items completed

!62302 · created May 21, 2021 by Tetiana Chupryna 14.0
Category:License Compliance [DEPRECATED] Category:Software Composition Analysis Deliverable Enterprise Edition GitLab Ultimate SCA:License Scanning SOX Reviewed Technical Writing backend database databasereviewed devopssecure docsimprovement documentation feature flag groupcomposition analysis missed-deliverable missed:13.12 pipeline:run-all-rspec pipeline:run-as-if-foss quad-planningcomplete-no-action releasedpublished sectionsec twfinished typemaintenance workflowproduction
- Merged
- 14
- Approved
updated Apr 21, 2023