[FY21-Q4 KR] Dogfood Secure features in projects related to the Threat Management sub-department
Objective (Product): Increase dogfooding, performance, and productivity
- Understand what is preventing us from implementing the dogfooding
- Enable scanners for SAST, Secret Detection, Dependency Scanning, License Compliance for Threat Management code/components that are in separate projects from the main GitLab project
- Ensure security findings are being triaged (create issues or dismiss)
- Security issues have a milestone no further than 4 releases away.
- By end of quarter, enable Security Approvals (blocking MRs on critical/high)
- Enable DAST, fuzzing, container scanning
Scope and progress tracker
Project | SAST | DAST | Secret Detection | Dependency Scanning | License Compliance | # of open blocking vulnerabilities | Security approvals |
---|---|---|---|---|---|---|---|
Auto-deploy Helm Chart | n/a | n/a | n/a | n/a | n/a (superseeded by auto-deploy-image | ||
auto-deploy-image | n/a | TBC | |||||
Cluster Applications | TBC | ||||||
Cluster Management | TBC |
Related issues
- Secure sub-department tracker: gitlab-org/gitlab#30568 (closed)
Edited by Thiago Figueiró