2020-07-27 - Triage report for "group::compliance"
Hi, @mattgonzales @djensen @dennis
This is a group or stage level triage report that aims to summarize the feature proposals and bugs which have not been scheduled or triaged. For more information please refer to the handbook:
Scheduling the workload is a collaborative effort by the Product Managers and Engineering Managers for that group. Please work together to provide a best estimate on priority and milestone assignments. For each issue please:
- Determine if the issue should be closed if it is no longer relevant or a duplicate.
- If it is still relevant please assign either a best estimate versioned milestone, the %Backlog or the %Awaiting further demand milestone.
- Specifically for ~bug, if there is no priority or clarity on a versioned milestone, please add a Priority label. Priority labels have an estimate SLO attached to them and help team members and the wider community understand roughly when it will be considered to be scheduled.
- Once a milestone has been assigned please check off the box for that issue.
- Please work with your team to complete the list by the due date set.
Feature Proposal Section
For the following feature proposals. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone.
Unscheduled feature with customer
-
#230932 (closed) Ability to modify user access level via users API customer, devopsmanage, feature, groupcompliance -
#225352 Allow Access to Project Information via CI_JOB_TOKEN api, customer, devopsmanage, feature, groupcompliance -
#207539 (closed) GitLab integration with Netskope Alliances, customer, ~"devops::defend", feature, groupcompliance -
#39139 (closed) Display project deletion in group audit event log Enterprise Edition, GitLab Starter, ~"P2", ~"S4", backend, customer, devopsmanage, feature, groupcompliance, missed-deliverable, missed:12.9, workflowblocked -
#26383 (closed) Transfering groups does not warn in the same way than transfering projects does ~"Category:Subgroups", customer, devopsmanage, feature, frontend, groupcompliance, workflowdesign -
#20603 (closed) Feature Request: Activity log should contain changes to project/group settings Manage [DEPRECATED], ~"P4", ~"S4", UX, backend, customer, devopsmanage, feature, groupcompliance, security, user profile
Unscheduled feature (non-customer)
-
#231249 (closed) Allow for use of more than one compliance pipeline configuration Category:Compliance Management, Next Up, ~"P2", UX, devopsmanage, feature, groupcompliance -
#231247 (closed) Expand the concept of project labels for compliance use cases Category:Compliance Management, Next Up, ~"P3", UX, devopsmanage, feature, groupcompliance -
#231246 (closed) Require compliance pipeline templates be applied only to compliance framework-labeled projects Category:Compliance Management, Next Up, ~"P1", UX, devopsmanage, feature, groupcompliance -
#230731 (closed) Add ability to create External API Approver UX, backend, devopsmanage, feature, groupcompliance, workflowdesign -
#230508 Add audit event logging for registry actions Category:Audit Events, devopsmanage, feature, groupcompliance -
#228821 (closed) Disable update of project settings fields that are awaiting for approval devopsmanage, feature, groupcompliance -
#227704 (closed) Provision for Optional PAT expiration Settings in Groups Category:Compliance Management, backend, devopsmanage, feature, frontend, groupcompliance -
#227629 (closed) Add changes to group-level push rules to audit events Category:Audit Events, devopsmanage, feature, groupcompliance -
#227628 (closed) Provide a cancel button for two-person approval requests Category:Compliance Management, devopsmanage, feature, groupcompliance, workflowdesign -
#227595 (closed) Build a service to handle (two-person) approvals Category:Compliance Management, devopsmanage, feature, groupcompliance -
#227593 (closed) Notify eligible approvers of a two-person approval request Category:Compliance Management, devopsmanage, feature, groupcompliance -
#227471 (closed) Do not display projects pending deletion backend, devopsmanage, feature, groupcompliance, workflowdesign -
#227468 (closed) Create a list of authorized users for two-person approvals Category:Compliance Management, devopsmanage, feature, groupcompliance, workflowdesign -
#227456 (closed) Prevent deleting a namespace on GitLab.com if it's attached to an active subscription devopsmanage, feature, groupcompliance -
#225550 (closed) Saving HTML/Ruby in AuditEvent details "custom_message" backend, devopsmanage, feature, groupcompliance, workflowproblem validation -
#225355 (closed) Proposed changes to improve required pipeline configuration devopsmanage, feature, groupcompliance -
#225248 (closed) Add Delete buttons to the SSH tab of the credential inventory Next Up, ~"P1", UX, devopsmanage, feature, frontend, groupcompliance, workflowplanning breakdown -
#225233 Update the "remove fork relationship" confirmation devopsmanage, feature, frontend, groupcompliance, workflowdesign -
#225231 (closed) Update the "transfer project" confirmation devopsmanage, feature, frontend, groupcompliance, workflowdesign -
#224643 (closed) Update approval requests on instance-level settings changes Category:Compliance Management, Enterprise Edition, GitLab Ultimate, devopsmanage, feature, groupcompliance -
#224409 Add an instance-level toggle to prevent forking devopsmanage, feature, groupcompliance -
#223124 (closed) Allow group owners to define and lock a custom CI config path Category:Compliance Management, devopsmanage, feature, groupcompliance, workflowdesign -
#222734 (closed) Listing expired active tokens - UX improvisations UX, devopsmanage, ~"enhancement", feature, groupcompliance -
#222472 (closed) Allow non-admins to see the Removed Projects tab backend, devopsmanage, feature, groupcompliance, workflowsolution validation -
#221297 (closed) Remove feature exclusion when writing audit events Category:Audit Events, backend, devopsmanage, feature, groupcompliance, workflowplanning breakdown -
#221261 (closed) Recursively apply group-level push rules to existing projects Category:Compliance Management, Enterprise Edition, GitLab Starter, Next Up, ~"P2", backend, devopsmanage, feature, groupcompliance, workflowdesign -
#221004 Add Contextual Compliance Approvals in Merge Requests devopsmanage, feature, groupcompliance -
#220982 (closed) AuditEvent for service bot PAT creation backend, devopsmanage, feature, groupcompliance, workflowplanning breakdown -
#220391 Add All Impersonable Keys and Tokens to Credentials Inventory Category:Compliance Management, devopsmanage, feature, groupcompliance, workflowdesign -
#218826 (closed) Update compliance dashboard table layout to be fully responsive Category:Compliance Management, Enterprise Edition, GitLab Ultimate, ~"P3", UX, devopsmanage, estimationneeded, feature, frontend, groupcompliance, workflowsolution validation
Unscheduled UX Debt Issues
-
#231382 (closed) Match Project Pending Removal Behavior to Groups ~"S4", UX debt, devopsmanage, groupcompliance
Bug Section
For the following bugs. Please either close or assign either a versioned milestone, the %Backlog or the %Awaiting further demand milestone and ensure that a priority label is set.
Heatmap for all bugs
Bugs for their priority and severity label are counted here. Every bug should have severity and priority labels applied. Please take a look at the bugs which fall into the columns indicating that the priority or severity labels are currently missing.
| ~S1 | ~S2 | ~S3 | ~S4 | No severity | |
|---|---|---|---|---|---|
| ~P1 | 0 | 0 | 0 | 0 | 0 |
| ~P2 | 0 | 0 | 0 | 0 | 0 |
| ~P3 | 0 | 0 | 1 | 0 | 0 |
| ~P4 | 0 | 0 | 0 | 0 | 0 |
| No priority | 0 | 2 | 8 | 1 | 1 |
Unscheduled frontend ~bug (non-customer)
-
#230454 (closed) Admin page tabs overflow and become usable on small displays ~"S4", UX, ~"bug", devopsmanage, frontend, groupcompliance
Unscheduled ~bug with customer
-
#213578 (confidential) ~"(confidential)"
Unscheduled ~bug (non-customer)
-
#231343 (closed) audit_json.log serializes ip_address into JSON object Observability, ~"bug", devopsmanage, groupcompliance -
#230949 (closed) Deleted Projects not being properly deleted ~"S2", ~"bug", devopsmanage, groupcompliance -
#38576 (closed) Audit Events API - target ids are not real ids Category:Audit Events, Next Up, ~"S2", ~"bug", devopsmanage, groupcompliance, support request, workflowproblem validation -
#33454 (confidential) ~"(confidential)"
This is a group level triage report that aims to collate the latest bug reports (for frontend and otherwise) and feature proposals. For more information please refer to the handbook:
If assignees or people mentioned in this individual triage report need to be amended, please edit group_definition.rb.