Require "Squash commits when merge request is accepted" on Security Merge Requests
We're merging security merge requests without enabling the "Squash commits" option, which causes stable branches to be polluted and complicates a bit the security process.
Take a look at 12.7 stable branch on Security https://gitlab.com/gitlab-org/security/gitlab/commits/12-7-stable-ee, there are commits like "Change changelog title" that doesn't bring any value on that branch.
Moving forward it'd be a good idea to require "Squash commits when merge request is accepted" on Security Merge Requests, so we just deal with the merge commit instead of all the commits in the merge request.
Currently, there's no way to enforce this per project (issue related - gitlab-org/gitlab#17613 (closed)), so a first step would be to include it in the "Merge Request template"