Locate Secure CA use of problematic terms

Problem to solve

Locate Secure CA use of "Blacklist" and "Whitelist" to "allowlist" and "blocklist" (except LC where we're doing denylist)

Locate Secure CA use of "Master" and "Slave"

these are problematic terms and should not be used

Proposal

Identify & Document

Let's identify instances of problematic terms and document them (here)

NB: there is already one issue for CS: #220262 (closed)

Further details

Next Steps (out of the scope of this issue)

Quick Fix

For any that are documentation/ui only let's quickly replace/update user facing references where possible (docs, UI) and update appropriate tests if applicable

GitLab Backlog

For Backend references let's make backlog issues and ask for community contribution/help to update

Dependencies

Where referencing third parties feel free to use "blacklist (as per VENDOR terms, we prefer blocklist)" etc and make a backlog item

For Items/terms inherited from dependencies (like clair, redis) let's make a backlog item acknowledging we have requested the upstream project to change and check on it occasionally. @NicoleSchwartz will make these if you feel uncomfortable dong so.

Availability & Testing

If updates are made check the tests as you may need to update them!

Links / references

added typefeature label

added to epic &3497 (closed)

changed title from Secure - Change "Blacklist" and "Whitelist" to "allowlist" and "blocklist" (except LC where we're doing denylist) to Locate Secure use of problematic terms

changed the description

changed the description

changed the description

added Category:Container Scanning Category:Dependency Scanning [DEPRECATED] Category:License Compliance [DEPRECATED] devopssecure groupcomposition analysis labels

changed milestone to %13.2

added workflowplanning breakdown label

changed title from Locate Secure use of problematic terms to Locate Secure CA use of problematic terms

changed the description

added [deprecated] Accepting merge requests label

marked this issue as related to #12738 (closed)

marked this issue as related to #220614 (closed)

added backend documentation frontend labels

added quad-planningready label

changed the description

Let's timebox this to ~1 day

@gonzoyumo assign a backend engineer to grep the whole project and log found items here. Let's ping frontend if we find some occurrences there (and re-add frontend label).

set weight to 2

added workflowscheduling label and removed workflowplanning breakdown label

removed frontend label

added workflowready for development label and removed workflowscheduling label

added Deliverable label

assigned to @caneldem

marked this issue as related to #219982 (closed)

removed [deprecated] Accepting merge requests label

added quad-planningcomplete-action label and removed quad-planningready label

@gonzoyumo @NicoleSchwartz I checked following projects for terms Whitelist, Blacklist, Master, Slave

• gemnasium (master used as branch)
• gemnasium-python
• retirejs (master used as branch)
• bundler-audit (master used as branch)
• gemnasium-maven (master used as branch)
• license-management (master used as branch)
• gemnasium-gradle-plugin
• SCA docs
• Klar (whitelist, currently addressed)

I only found master for referring branch. Let me know if you want me to check other terms.

Thanks @caneldem let's close this one then!

closed

added workflowin dev label and removed workflowready for development label

I created two issues

#225907 (closed) -> empty LC configuration page has word blacklist

#225912 (closed) -> Managed licenses page approved status has blaclisted

mentioned in issue gl-retrospectives/secure#20 (closed)

added Enterprise Edition GitLab Ultimate labels

added Category:Software Composition Analysis SCA:License Scanning labels

added SCA:Dependency Scanning label