Add Dependency Firewall category to package (!28339) · Merge requests · GitLab.com / www-gitlab-com

Kenny Johnston requested to merge add-artifact-analysis-category into master Aug 19, 2019

@trizzi - Consider adding this category. It came up when @sytses was talking about the Dependency Proxy category with investors last week. He highlighted how the availability of that proxy enables these kind of dependency firewall use cases. For example you could prevent the update of a dependency by not updating your proxy if the dependency had a known vulnerability. It seems similar to how JFrog is positioning their products and Sonatype position their offers.

Listing as WIP until a category vision page and maturity goals are added.

Approval

Informed

@edjdev @clefelhocz1 @meks

FYI

@stkerr @NicoleSchwartz @plafoucriere

TODO after merge:

create new category label
create new category epic for dependency firewall
remove content from the dependency proxy direction page that is related to dependency firewall to avoid duplication

Edited Aug 28, 2019 by Tim Rizzi

Add Dependency Firewall category to package

Approval

Informed

FYI

TODO after merge:

Merge request reports