Automating document link checking and alerting in GitLab issues

Problem to solve

It is important in some cases to maintain confidentiality of documents referenced in GitLab issues comments. The GitLab application should automate Google Doc link checks and alert in the comment if a Google Doc is globally accessible, and add a new label to the issue, 'Globally accessible document'. Having this label designated to the issue will help security teams quickly identify the total number of issues that have triggered this alert, so that action can be taken to investigate and remediate as needed.

Intended users

Any user of GitLab issues in an environment where Google docs are referenced in comments will benefit from having this alerting mechanism.

Further details

Proposal

Permissions and Security

Permissions will be needed to enumerate Google doc link share settings, likely as an authorized GCP service account.

Documentation

Testing

Low risk.

What does success look like, and how can we measure that?

Success criteria: Reduction of future accidental exposure of potentially sensitive data to the public.

Links / references