CODEOWNERS Approval misattributing Maintainer

Summary

There seems to be a bug in enabling CODEOWNERS approvals where the Maintainer is misattributed. There's no clear indicator of what the issue is but perhaps it's linked to the "Optional" state of the CODEOWNER group.

Steps to reproduce

I've only witnessed this on one gitlab.com project so far, so unclear how to reproduce

Example Project

gitlab-org/security-products/analyzers/gosec!123 (merged)

Note that I am not the author of this MR nor have I added commits so "Prevent MR approvals by the author." is not relevant.

What is the current bug behavior?

Incorrect CODEOWNER attributed preventing approval by Maintainer

What is the expected correct behavior?

The correct CODEOWNER is required for approval

Relevant logs and/or screenshots

Screen_Shot_2021-07-30_at_10.54.58_AM

Output of checks

This bug happens on GitLab.com

Possible fixes