Relocate mislocated vulnerability classes to lib/security to remove unneeded CI review requirements
@allison.browne flagged that the Vulnerability::ReportsComparer
is mislocated under the Ci
namespace and should be moved to somewhere more appropriate.
@bwill has flagged entire folders of files that could be moved similarly to reduce the need for CI approval on unrelated features.
This issue is to discuss a more appropriate location and set out the task of moving it accordingly.
Implementation Plan
Move the security files in the following paths to /lib/security
lib/gitlab/ci/reports/{security,sbom}/
ee/lib/gitlab/ci/reports/{coverage_fuzzing,dependency_list,license_scanning,security}/
ee/lib/gitlab/ci/parsers/{coverage_fuzzing,dependency_list,license_scanning,security}/
Testing
-
Run e2e:package-and-test
job and review results to make sure nothing is broken.
/cc @thiagocsf
Edited by Harsha Muralidhar