Application security feature addition: Add ability to block MR when SAST/DAST scans find new vulnerabilities
Proposal
For SAST/DAST etc security scans it would be helpful to have the option to block the MR (disable merging) if any new, non dismissed vulnerabilities are found.
The MR would be unblocked when:
- The vulnerabilities are set to
DismissedorResolved - The offending code is removed
The vulnerability resolutions could optionally require approval before allowing the merge.