Check merge requests for spam (!122938) · Merge requests · GitLab.org / GitLab

Alex Buijs requested to merge check-mrs-for-spam into master Jun 07, 2023

What does this MR do and why?

This MR onboards merge requests to spamcheck. The current version of spamcheck will always return an ALLOW verdict for any Generic spammable. This will allow us to analyze the results before implementing more restrictive actions.

Issue: https://gitlab.com/gitlab-org/gl-security/security-engineering/security-automation/spam/spamcheck/-/issues/7

Epic: https://gitlab.com/groups/gitlab-org/-/epics/10118

How to set up and validate locally

Enable spamcheck in GDK
Create a merge request in a public project. You should see logs emitted from the spamcheck container showing that the merge request was checked for spam.
Update the title or description of the merge request. This should result in another call to spamcheck.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jun 08, 2023 by Alex Buijs

Check merge requests for spam

What does this MR do and why?

How to set up and validate locally

MR acceptance checklist

Merge request reports