Create table/setting that stores the organization quota for tracked vulnerability refs
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
A substantial topic during the planning of vulnerability tracking across multiple branches has involved ensuring that the implementation is safe and does not pose an operation risk to GitLab.com.
One such proposed solution is to create a quota of vulnerability tracked branches per organization. Then when a user attempts to track a new ref, if the organization has filled it's quota, the branch will be rejected from creation.
While this is likely inconvenient, it is important to safeguard the stability of GitLab. The customer can then request the expansion of the quota, allowing us to analyse our current system stability and determine if we can safely fulfill the request for further capacity. If so, we can increase the quota accordingly.
To facilitate this system, we need to store the quota on a per organization basis, either associated with the organization itself, or the top level namespace of the customer.