Other labels
all Sec groups
GitLab.org
Pertains to all Sec Section groups https://about.gitlab.com/direction/security/
analytics
GitLab.org
Issues related to analytics, like feature usage, graphs and data we can display in GitLab UI
analytics instrumentationonboarding issue
GitLab.org
Good issues for onboarding to technical aspects of product intelligence domain
approvals
GitLab.org
Issues related to the Merge Request approvals feature: http://doc.gitlab.com/ee/workflow/merge_request_approvals.html
appsec-sastcommented
GitLab.org
Added when automation has detected a SAST violation of GitLab's AppSec team's rules. See https://gitlab.com/gitlab-com/gl-security/product-security/appsec/sast-custom-rules
appsec-sasthelpful
GitLab.org
Add this label when AppSec's SAST rules were helpful, informative, and/or not unhelpful. See https://gitlab.com/gitlab-com/gl-security/product-security/appsec/sast-custom-rules
appsec-sastunhelpful
GitLab.org
Apply this label if AppSec's SAST rules were unhelpful and/or incorrect. See https://gitlab.com/gitlab-com/gl-security/product-security/appsec/sast-custom-rules
audit_eventsdata_change_deletion
GitLab.org
Actions which can permanently affect the state of an instance, group, project or data are key events that we want to maintain a log of, since they generally cannot be undone.
audit_eventsdata_copy_or_export
GitLab.org
Because the data in an instance is very sensitive, we will record logs of actions that are used to copy, mirror, or export that data.
audit_eventshigh_volume_event
GitLab.org
Events likely to generate a high volume of data that could affect performance. This type of event could be served in Webhook-based audit events.
Prioritized