Refresh security policies only when user is present in approvers (!139980) · Merge requests · GitLab.org / GitLab

Sashi Kumar Kumaresan requested to merge sk/fix-refresh-worker into master Dec 16, 2023

What does this MR do and why?

This MR adds an improvement to Security::RefreshProjectPoliciesWorker by not calling Security::ProcessScanResultPolicyWorker if the project's policies does not have user_approvers in YAML. This also adds a feature flag to skip the worker to mitigate incident: gitlab-com/gl-infra/production#17282 (closed)

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Dec 16, 2023 by Sashi Kumar Kumaresan

Refresh security policies only when user is present in approvers

What does this MR do and why?

MR acceptance checklist

Merge request reports