Client application can use `has_warnings` and `has_errors` attributes
to show the necessary alert information to end users.

This change also introduces a database migration to add indices on
`security_scans` table.

Changelog: added

Changelog: changed
EE: true

Daniel Tian authored 2 years ago and Savas Vedova committed 2 years ago

Changelog: changed
MR: !86833
EE: true

Add the shared runner duration to the project
for usage quota.

Changelog: changed

Daniel Tian authored 2 years ago and Savas Vedova committed 2 years ago

Changelog: changed
MR: !86833
EE: true

Zamir Martins authored 2 years ago and Pavel Shutsin committed 2 years ago

EE: true
Changelog: removed

Zamir Martins authored 2 years ago and Andrew Fontaine committed 2 years ago

under merge request approvals.

EE: true
Changelog: added

When the user has the necessary permissions, display a button
to create a vulnerability manually.

- authored 3 years ago and Phil Hughes committed 2 years ago

- This reverts commit 3c70b090.
- Manually resolve merge conflicts

Changelog: removed

Changed the project deletion container to use a new danger UI and
updated the project restoration container to use gl-alert whilst moving
it to the top of the advanced section

Changelog: changed
MR: !82313
EE: true

Savas Vedova authored 2 years ago and Jose Ivan Vargas committed 2 years ago

Create a new button which links the user to the new vulnerability
form. This button is only visible when the :new_vulnerability_form
is enabled and user is on the project vulnerability page.

Jiaan Louw authored 2 years ago and Jose Ivan Vargas committed 2 years ago

Depending on a user's permission, it can be unclear what compliance
frameworks are or how they are added. This change helps clarify
what frameworks are, where they can be added.

Changelog: changed
EE: true

Changelog: other
EE: true

Use adjourned deletion if the projects belong to a group
and the instance has 'adjourned_deletion_for_projects_and_groups'
feature available

Changelog: changed

Changelog: changed

This commit adds a new Vue component that displays a promotion callout
for the new, security training feature to the security dashboard.

Alex Buijs authored 3 years ago and Vitaly Slobodin committed 3 years ago

The experiment was considered not successful.

Changelog: removed

Updates all calls to the Feature check to return true.
The intention is to release this by default in 14.5 self-managed
and remove the flag entirely in 14.6 if there are no issues.

Changelog: added
EE: true

Remove the compliance framework section from the project settings
and compliance badges from the project homepage for EE without license.

Changelog: fixed
EE: true

Changelog: added

* Remove feature flag checks
* Update unit test
* Remove yaml file
* Remove doc reference to feature flag

Changelog: changed

* Scope to instance

- authored 3 years ago and - committed 3 years ago

* Surface false positives in Vulnerability UI behind a feature flag

Experiment for testing SAST entry points with 3 variants:
- banner
- popover_light
- popover_dark

Removes redundant text and removes the use of etc.

while keeping the existing logic for License-Check

Changelog: changed
EE: true

Robert Hunt authored 3 years ago and Thong Kuah committed 3 years ago

This strips out all the status checks code from the approval rules,
updates the controller to stop passing the feature flag, updates the
helper to not pass status checks data, and updates the feature specs
to test the new status checks area

Refactors all references to ExternalApprovalRules to
ExternalStatusChecks to more properly represent the
features purpose.

Changelog: changed

List status checks for a merge request

Adds a new API endpoint to list all approval rules (status checks)
for a merge request and their status.

List status checks for a merge request

Adds a new API endpoint to list all approval rules (status checks)
for a merge request and their status.