Required CI Elements (Jobs, stages, etc.)
Problem to solve
As a customer with compliance requirements, I may want to ensure that a particular job (security scan, auditing task, etc.) is run on every build. At the instance level or maybe at the group level.
There are financial customers who have built a custom version of this by:
- Create a DevOps repository with
ymlfiles with the required job definition(s)
- Instance wid project template with
ymlfile with the DevOps files referenced in
- Post-commit hooks to a custom app to enforce no one removing the
What does success look like, and how can we measure that?
(If no way to measure success, link to an issue that will implement a way to measure this)
Links / references
I believe this would relate to https://about.gitlab.com/solutions/financial-services-regulatory-compliance/.