Suggested Solution - Create the new setting [parent issue]

Problem to solve

This is an implementation issue following with #36500 (closed).

As a first step to enable automatic creation of merge requests we need to provide a setting.

Intended users

User experience goal

Proposal

TODO: see A. Activating feature in #36500 (closed)

Implementation plan

backend (~ weight 3) #215668 (closed)

• Create an API endpoint to toggle the new project setting Automatically create MRs for different report types.
• Those settings should be enabled by default.

frontend (possibly frontend-weight3 ) #215682 (closed)

• Create and push the security_auto_fix feature flag.
• Create the new Auto-fix vulnerabilities section in Security & Compliance > Configuration (picture a.).
• Implement API calls to toggle the setting.

Further details

Permissions and Security

Documentation

Availability & Testing

What does success look like, and how can we measure that?

What is the type of buyer?

Is this a cross-stage feature?

Links / references