Add basic GraphQL resources for project security exclusions

What does this MR do and why?

This merge request adds the basic GraphQL resources for the project security exclusions.

• Types:
  • ProjectSecurityExclusion
  • ExclusionTypeEnum
  • ExclusionScannerEnum
• Resolvers:
  • ProjectSecurityExclusionResolver
• [Database] Finders:
  • ProjectSecurityExclusionsFinder

And updates ProjectType to include the ProjectSecurityExclusion as well.

Resolves #479305 (closed) partially.

Note: The target branch is ahmed.hemdan-allowlist-for-secret-push-protection-4fdd537f because this merge request was built using stacked diffs, so it merges back onto the previous merge request. I'm also happy to wait until the three earlier MRs (1, 2, 3) have been approved and merged before proceeding with this one.

MR acceptance checklist

I have evaluated this MR against the MR acceptance checklist.

Query Plans

Please note that the table was only created a couple of days ago, so it has no records in the database at this point, but I have included the query plans below.

Query Plans

Without params/filters

SELECT
    "project_security_exclusions".*
FROM
    "project_security_exclusions"
WHERE
    "project_security_exclusions"."project_id" = 278964;

Query Plan: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31317/commands/97214.

With scanner filter specified

SELECT
    "project_security_exclusions".*
FROM
    "project_security_exclusions"
WHERE
    "project_security_exclusions"."project_id" = 278964
AND
    "project_security_exclusions"."scanner" = 0;

Query Plan: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31317/commands/97215.

With type filter specified

SELECT
    "project_security_exclusions".*
FROM
    "project_security_exclusions"
WHERE
    "project_security_exclusions"."project_id" = 278964
AND
    "project_security_exclusions"."type" = 2;

Query Plan: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31317/commands/97216.

With active filter specified

SELECT
    "project_security_exclusions".*
FROM
    "project_security_exclusions"
WHERE
    "project_security_exclusions"."project_id" = 278964
AND
    "project_security_exclusions"."active" = FALSE;

Query Plan: https://console.postgres.ai/gitlab/gitlab-production-main/sessions/31317/commands/97217.

changed milestone to %17.4

added Category:Secret Detection GraphQL backend database devopssecure featureaddition groupsecret detection secret detection allowlist sectionsec typefeature workflowin dev + 1 deleted label

assigned to @ahmed.hemdan

added pipelinetier-3 pipeline:run-e2e-omnibus-once labels

added databasereview pending documentation labels

	1 Message
	This merge request adds or changes documentation files. A review from the Technical Writing team before you merge is recommended. Reviews can happen after you merge.

Documentation review

The following files require a review from a technical writer:

• doc/api/graphql/reference/index.md (Link to current live version)

The review does not need to block merging this merge request. See the:

• Metadata for the *.md files that you've changed. The first few lines of each *.md file identify the stage and group most closely associated with your docs change.
• The Technical Writer assigned for that stage and group.
• Documentation workflows for information on when to assign a merge request for review.

Reviewer roulette

Category	Reviewer	Maintainer
backend	@tvellishetty (UTC+5.5, 3.5 hours ahead of author)	@pedropombeiro (UTC+2, same timezone as author)
database	@jdrpereira (UTC+1, 1 hour behind author)	@mbobin (UTC+3, 1 hour ahead of author)

Please refer to documentation page for guidance on how you can benefit from the Reviewer Roulette, or use the GitLab Review Workload Dashboard to find other available reviewers.

If needed, you can retry the danger-review job that generated this comment.

Generated by Danger

removed databasereview pending documentation pipelinetier-3 pipeline:run-e2e-omnibus-once labels

mentioned in issue #479305 (closed)

changed the description

mentioned in epic gitlab-org#14878 (closed)

mentioned in merge request !163956 (merged)

mentioned in epic gitlab-org#13107 (closed)

added 11 commits

• edad0c49...a635dfc7 - 9 commits from branch ahmed.hemdan-allowlist-for-secret-push-protection-4fdd537f
• 99ec15e0 - Add basic graphql resources for project security ignorelist entries
• 07a849a8 - Rename the feature based on a final decision

Compare with previous version

added databasereview pending documentation labels

added 600 commits

• 07a849a8...f6503569 - 598 commits from branch ahmed.hemdan-allowlist-for-secret-push-protection-4fdd537f
• 9dbe9a55 - Add basic graphql resources for project security ignorelist entries
• a82b99ab - Rename the feature based on a final decision

Compare with previous version

added 7 commits

• a82b99ab...415e20b5 - 5 commits from branch ahmed.hemdan-allowlist-for-secret-push-protection-4fdd537f
• 03f9483c - Add basic graphql resources for project security ignorelist entries
• 4e747169 - Rename the feature based on a final decision

Compare with previous version

changed title from Draft: Add basic GraphQL resources for project security ignorelist entries to Draft: Add basic GraphQL resources for project security exclusions

changed the description

added 2 commits

• a2458a2f - Rename the feature based on a final decision
• 804f4e5b - Update specs

Compare with previous version