Humanised strings for branch exceptions for scan execution policy
What does this MR do and why?
This MR partially resolves #418744 (closed)
Policy drawer has humanised strings for branch exceptions in security execution policy
UI mode is only supported for project level, for group level exceptions can be added via yaml mode
Screenshots or screen recordings
Screenshots are required for UI changes, and strongly recommended for all other merge requests.
| Description | UI |
|---|---|
Project level |
exceptions project level.mov |
Group level |
group level.mov |
No exceptions |
no exceptions.mov |
Alignment fix |
|
How to set up and validate locally
Enable feature flag
Feature.enable(:security_policies_branch_exceptions)-
Go to a project
-
Open Secure -> Policies
-
Create new
scan execution policy -
Add
triggerscondition orschedulescan rule -
Add some branch exceptions (if local project has no branches, you can add some)
-
Create policy and go back to policy list Secure -> Policies
-
Click on created policy -> result for project level will be in drawer description
-
Go to a group
-
Open Secure -> Policies
-
Create new
scan execution policy -
Open
yamlmode, you can addbranch exceptionsfor a rulebranch_exceptions: - { name: ${BRANCH_NAME}, full_path: ${PATH_TO_PROJECT} } - { name: ${BRANCH_NAME_2 }, full_path: ${PATH_TO_PROJECT } } -
Create policy and go back to policy list Secure -> Policies
-
Make sure that there is path in brackets right next to a branch name
MR acceptance checklist
This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.
-
I have evaluated the MR acceptance checklist for this MR.
Related to #418744 (closed)