Schedule StoreScansWorker for root pipelines only (!127055) · Merge requests · GitLab.org / GitLab

mo khan requested to merge mokhax/393305/state-machine into master Jul 19, 2023

What does this MR do and why?

This change ensures that the StoreScansWorker is only scheduled when a root pipeline transitions to a completed status. This ensures that all the Security::Scan records are created before the worker begins executing.

#393305 (comment 1476903463)

How to set up and validate locally

Clone https://gitlab.com/gitlab-org/govern/threat-insights-demos/verification-projects/verify-393305/parent-child-pipeline to your local gdk
Trigger a pipeline in the project.
Navigate to the vulnerability report.
Select "Still Detected" under "Activity"
Ensure that the vulnerability report contains two vulnerabilities.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jul 19, 2023 by mo khan

Schedule StoreScansWorker for root pipelines only

What does this MR do and why?

How to set up and validate locally

MR acceptance checklist

Merge request reports