Secure group issues requiring attention
Heat map for bugs:
| ~S1 | ~S2 | ~S3 | ~S4 | |
|---|---|---|---|---|
| ~P1 | 2 | 1 | 0 | 0 |
| ~P2 | 0 | 3 | 8 | 0 |
| ~P3 | 0 | 0 | 8 | 0 |
| ~P4 | 0 | 0 | 0 | 23 |
Hi @kencjohnston,
Here is a list of feature proposals without a milestone.
We would like to ask you to determine whether this issue should be scheduled or closed. For each issue please:
- Close the issue out if it is no longer relevant or a duplicate.
- Assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone.
For the issues triaged please check off the box in front of the given issue.
Please work with your team to complete the list this week.
- #12923 (closed) Display when blacklisted licenses have been approved ~"Secure", UX, auto updated, devopssecure, feature, ~"group::software composition analysis", ~"license management"
- #12917 (closed) API Dependency List - usage ping ~"Secure", ~"Secure::Software Composition Analysis", backend, dependency list, devopssecure, feature, ~"group::software composition analysis"
- #12903 (closed) Secure: Explore Security Code Review Experience ~"Secure", Secure UXSecurity Scanning & Testing, UX, devopssecure, feature, groupstatic analysis, ~"product discovery"
- #12899 (closed) MR Security Overview Section MVC ~"Secure", Secure UXSecurity Scanning & Testing, UX, devopssecure, feature, groupstatic analysis
- #12896 (closed) MR Security Report MVC ~"Secure", Secure UXSecurity Scanning & Testing, UX, devopssecure, feature, groupstatic analysis
- #12858 (closed) Update gitleaks secret detection to v2 ~"Secure", ~"Secure::Static and Dynamic Analysis", devopssecure, feature, groupstatic analysis, ~"sast"
- #12738 (closed) blacklist and whitelist licenses across an entire instance ~"Secure", Secure UXCompliance & Auditing, ~"Secure::Software Composition Analysis", devopssecure, feature, ~"group::software composition analysis", ~"license management"
- #12685 (closed) License management settings: user awareness if setup configuration is not complete ~"Secure", Secure UXCompliance & Auditing, ~"Secure::Software Composition Analysis", UX, auto updated, devopssecure, feature, ~"group::software composition analysis", ~"license management"
- #12315 (closed) Synchronize gemnasium-db with oss-security mailing list ~"Secure", ~"Secure::Software Composition Analysis", ~"dependency scanning", devopssecure, feature, ~"group::software composition analysis"
- #8911 (closed) Add support for 'license_compliance' reports ~"Accepting merge requests", ~"Secure", ~"Secure::Software Composition Analysis", backend, devopssecure, feature, frontend
- #8500 (closed) Group Security Dashboard API ~"Accepting merge requests", GitLab Ultimate, ~"Secure", ~"Secure::Static and Dynamic Analysis", analysts, api, backend, devopssecure, direction, feature, internal customer
- #6858 (closed) Dependency scanning should not run maven tests ~"Secure", customer, ~"dependency scanning", feature
This is a group level triage package that aims to collate the latest bug reports (for frontend and otherwise) and feature proposals. For more information please refer to the handbook: