Secure group issues requiring attention
Hi @bikebilly,
Here is a list of feature proposals without a milestone.
We would like to ask you to determine whether this issue should be scheduled or closed. For each issue please:
- Close the issue out if it is no longer relevant or a duplicate.
- Assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone.
For the issues triaged please check off the box in front of the given issue.
Please work with your team to complete the list this week.
-
https://gitlab.com/gitlab-org/gitlab-ee/issues/10588 Interpreter and compiler support for Dependency Scanning ~"Secure", ~"dependency scanning", ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/10522 C/C++ Dependency Scanning ~"Secure", ~"dependency scanning", ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/10479 Consider splitting Security Product analyzers between build and scan functionality ~"Secure", ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/10368 Create a security vulnerability from Webhook Persona: Security Analyst, ~"Secure", backend, ~"devops:secure", feature, ~"webhooks" -
https://gitlab.com/gitlab-org/gitlab-ee/issues/10326 Update HackerOne reports based on remediation flow in GitLab GitLab Ultimate, HackerOne, Persona: Security Analyst, ~"Secure", UX, ~"devops:secure", direction, feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9996 License Management for Elixir ~"P4", ~"S4", ~"Secure", ~"auto devops", ~"devops:secure", feature, ~"license management" -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9890 Secure for 3rd party SCM Persona: DevOps Engineer, Persona: Development Team Lead, Persona: Security Analyst, ~"Secure", ~"devops:secure", ~"external services", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9873 Dast - include the list of scanned urls at the bottom of the report ~"Secure", ~"dast", ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9852 Check security for serverless functions ~"Secure", ~"Serverless", analysts, ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9851 Support additional policies for external dependencies ~"Secure", analysts, ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9850 Identify unknown components in SCA ~"Secure", analysts, ~"dependency scanning", ~"devops:secure", feature, ~"license management" -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9815 Support incremental scans for SAST GitLab Ultimate, Persona: Software developer, ~"Secure", ~"devops:secure", feature, ~"sast" -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9584 Consider dismissed items in security reports summary: Pipeline and Project security dashboard ~"Secure", UX, ~"devops:secure", feature -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9562 Alternate chart solution for mobile users of the security dashboard Persona: Security Analyst, ~"Secure", UX, ~"devops:secure", feature, security dashboard -
https://gitlab.com/gitlab-org/gitlab-ee/issues/9550 Security Dashboard View access for Guests ~"Secure", ~"devops:secure", feature, permissions, security dashboard
This is a group level triage package that aims to collate the latest bug reports (for frontend and otherwise) and feature proposals. For more information please refer to the handbook:
Edited by Fabio Busatto