Draft: Enable Sec CI for MR's labelled sec-decomposition
What does this MR do and why?
Configure Sec CI for MR's labelled sec-decomposition
Changelog: added
MR acceptance checklist
Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Spec failures
List of unique failures by job ID (pipeline ID 1539125140) (using this script)
./mr-jobs.bash 170283 "(01O |^)rspec " | sed 's/.*\/\///' | sed 's/\.log/\t/' | sed 's/\t.*01O/\t/' | sed 's/\.rb.*/\.rb/' | sed "s/'//" | sort -u > 170283_rspec_uniq_failures_by_job.txt
echo "| job_url | job_name | failure | tracking_issue |\n|---|---|---|---|" && cat 170283_rspec_uniq_failures_by_job.txt | perl -pe 's/_/\t/;' | sed 's/^/https:\/\/gitlab\.com\/gitlab\-org\/gitlab\/\-\/jobs\//' | sort -ut $'\t' -k 3 | sed 's/\t/ \| /g' | sed 's/^/\| /g' | sed 's/$/\| \|/g' | pbcopyMain epic
| job_url | job_name | failure | tracking_issue |
|---|---|---|---|
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842709 | rspec_unit_pg14_40_44 | rspec ./spec/lib/gitlab/database/health_status/indicators/patroni_apdex_spec.rb | #501590 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842596 | rspec_unit_pg14_9_44 | rspec ./spec/lib/gitlab/database/health_status/indicators/wal_rate_spec.rb | Fixed with !170857 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842620 | rspec_unit_pg14_15_44 | rspec ./spec/lib/gitlab/database/health_status/indicators/wal_receiver_saturation_spec.rb | Fixed with !170857 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842611 | rspec_unit_pg14_13_44 | rspec ./spec/lib/gitlab/database/tables_locker_spec.rb | #501592 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842622 | rspec_unit_pg14_16_44 | rspec ./spec/lib/gitlab/seeder_spec.rb | #501593 (closed) |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842570 | rspec_unit_pg14_1_44 | rspec ./spec/lib/system_check/app/table_truncate_check_spec.rb | #501594 (closed) |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339843020 | rspec_integration_pg14_12_20 | rspec ./spec/requests/api/graphql/custom_emoji_query_spec.rb | #501596 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842695 | rspec_unit_pg14_36_44 | rspec ./spec/tasks/gitlab/db_rake_spec.rb | #501605 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842588 | rspec_unit_pg14_7_44 | rspec ./spec/workers/concerns/worker_attributes_spec.rb | #503456 |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842593 | rspec_unit_pg14_8_44 | rspec ./spec/workers/database/monitor_locked_tables_worker_spec.rb | #501606 (closed) |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842706 | rspec_unit_pg14_39_44 | rspec ./spec/workers/loose_foreign_keys/cleanup_worker_spec.rb | #501607 (closed) |
Slice 1
| job_url | job_name | failure | tracking_issue |
|---|---|---|---|
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842555 | rspec_background_migration_pg14_14_17 | rspec ./spec/lib/gitlab/background_migration/backfill_project_id_to_dependency_list_exports_spec.rb |
Slice 2
| job_url | job_name | failure | tracking_issue |
|---|---|---|---|
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845221 | rspec-ee_unit_pg14_32_39 | rspec ./ee/spec/services/vulnerabilities/security_finding/create_issue_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845213 | rspec-ee_unit_pg14_29_39 | rspec ./ee/spec/services/vulnerabilities/security_finding/create_merge_request_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8340647353 | rspec-ee_background_migration_pg14_1_3 | rspec ./ee/spec/lib/ee/gitlab/background_migration/purge_security_scans_with_empty_finding_data_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845063 | rspec-ee_unit_pg14_14_39 | rspec ./ee/spec/lib/gitlab/usage/metrics/instrumentations/count_secure_pipelines_metric_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844947 | rspec-ee_unit_pg14_8_39 | rspec ./ee/spec/models/dast/profile_schedule_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845118 | rspec-ee_unit_pg14_19_39 | rspec ./ee/spec/services/app_sec/dast/profiles/create_service_spec.rb |
Slice 3
| job_url | job_name | failure | tracking_issue |
|---|---|---|---|
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845236 | rspec-ee_unit_pg14_35_39 | rspec ./ee/spec/services/ee/groups/autocomplete_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845512 | rspec-ee_integration_pg14_6_9 | rspec ./ee/spec/requests/ee/groups/autocomplete_sources_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845491 | rspec-ee_integration_pg14_1_9 | rspec ./ee/spec/controllers/ee/projects/autocomplete_sources_controller_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845579 | rspec-ee_system_pg14_5_16 | rspec ./ee/spec/features/groups/analytics/dashboards_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845599 | rspec-ee_system_pg14_13_16 | rspec ./ee/spec/features/groups/analytics/visualizations_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845512 | rspec-ee_integration_pg14_6_9 | rspec ./ee/spec/controllers/projects/security/vulnerabilities_controller_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845574 | rspec-ee_system_pg14_3_16 | rspec ./ee/spec/features/projects/security/vulnerability_details_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845574 | rspec-ee_system_pg14_3_16 | rspec ./ee/spec/features/projects/security/vulnerability_report_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845263 | rspec-ee_unit_pg14_38_39 | rspec ./ee/spec/finders/autocomplete/vulnerabilities_autocomplete_finder_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845217 | rspec-ee_unit_pg14_30_39 | rspec ./ee/spec/finders/security/vulnerabilities_finder_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845166 | rspec-ee_unit_pg14_23_39 | rspec ./ee/spec/graphql/mutations/audit_events/streaming/event_type_filters/create_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845236 | rspec-ee_unit_pg14_35_39 | rspec ./ee/spec/graphql/mutations/vulnerabilities/bulk_dismiss_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845166 | rspec-ee_unit_pg14_23_39 | rspec ./ee/spec/graphql/resolvers/vulnerabilities/scanners_resolver_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845154 | rspec-ee_unit_pg14_21_39 | rspec ./ee/spec/graphql/resolvers/vulnerabilities_count_per_day_resolver_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845058 | rspec-ee_unit_pg14_13_39 | rspec ./ee/spec/graphql/resolvers/vulnerabilities_grade_resolver_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845145 | rspec-ee_unit_pg14_20_39 | rspec ./ee/spec/graphql/resolvers/vulnerabilities_resolver_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844985 | rspec-ee_unit_pg14_10_39 | rspec ./ee/spec/graphql/resolvers/vulnerability_severities_count_resolver_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845217 | rspec-ee_unit_pg14_30_39 | rspec ./ee/spec/helpers/vulnerabilities_helper_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8340647353 | rspec-ee_background_migration_pg14_1_3 | rspec ./ee/spec/lib/ee/gitlab/background_migration/set_total_number_of_vulnerabilities_for_existing_projects_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844498 | rspec-ee_background_migration_pg14_3_3 | rspec ./ee/spec/lib/gitlab/background_migration/create_vulnerability_links_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844918 | rspec-ee_unit_pg14_6_39 | rspec ./ee/spec/lib/gitlab/ingestion/bulk_insertable_task_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845218 | rspec-ee_unit_pg14_31_39 | rspec ./ee/spec/models/ee/group_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845231 | rspec-ee_unit_pg14_34_39 | rspec ./ee/spec/models/ee/organizations/organization_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845028 | rspec-ee_unit_pg14_11_39 | rspec ./ee/spec/models/ee/vulnerability_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845173 | rspec-ee_unit_pg14_24_39 | rspec ./ee/spec/models/instance_security_dashboard_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845236 | rspec-ee_unit_pg14_35_39 | rspec ./ee/spec/models/vulnerabilities/finding_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845091 | rspec-ee_unit_pg14_16_39 | rspec ./ee/spec/models/vulnerabilities/projects_grade_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845197 | rspec-ee_unit_pg14_28_39 | rspec ./ee/spec/models/vulnerabilities/read_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845515 | rspec-ee_integration_pg14_7_9 | rspec ./ee/spec/requests/api/graphql/group_query_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845515 | rspec-ee_integration_pg14_7_9 | rspec ./ee/spec/requests/api/graphql/instance_security_dashboard_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845512 | rspec-ee_integration_pg14_6_9 | rspec ./ee/spec/requests/api/graphql/mutations/vulnerabilities/bulk_dismiss_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/api/graphql/mutations/vulnerabilities/confirm_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/api/graphql/mutations/vulnerabilities/create_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/api/graphql/mutations/vulnerabilities/resolve_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845493 | rspec-ee_integration_pg14_2_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/cve_enrichment_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845522 | rspec-ee_integration_pg14_8_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/details_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845515 | rspec-ee_integration_pg14_7_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/external_issue_links_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845493 | rspec-ee_integration_pg14_2_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/fields_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/identifiers_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845515 | rspec-ee_integration_pg14_7_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/instance_vulnerability_count_by_day_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845502 | rspec-ee_integration_pg14_4_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/issue_links_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845522 | rspec-ee_integration_pg14_8_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/location_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845502 | rspec-ee_integration_pg14_4_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/primary_identifier_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845512 | rspec-ee_integration_pg14_6_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/scanner_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845502 | rspec-ee_integration_pg14_4_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/sort_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845508 | rspec-ee_integration_pg14_5_9 | rspec ./ee/spec/requests/api/graphql/vulnerabilities/vulnerability_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845498 | rspec-ee_integration_pg14_3_9 | rspec ./ee/spec/requests/api/vulnerability_issue_links_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/custom_roles/admin_vulnerability/request_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845525 | rspec-ee_integration_pg14_9_9 | rspec ./ee/spec/requests/custom_roles/read_vulnerability/request_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845213 | rspec-ee_unit_pg14_29_39 | rspec ./ee/spec/serializers/vulnerabilities/finding_entity_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844947 | rspec-ee_unit_pg14_8_39 | rspec ./ee/spec/services/security/ingestion/tasks/ingest_vulnerabilities/set_present_on_default_branch_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845179 | rspec-ee_unit_pg14_25_39 | rspec ./ee/spec/services/security/ingestion/tasks/ingest_vulnerabilities_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339844709 | rspec-ee_unit_pg14_2_39 | rspec ./ee/spec/services/vulnerabilities/bulk_dismiss_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845218 | rspec-ee_unit_pg14_31_39 | rspec ./ee/spec/services/vulnerabilities/statistics/adjustment_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339845187 | rspec-ee_unit_pg14_26_39 | rspec ./ee/spec/services/vulnerability_feedback/create_service_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842577 | rspec_unit_pg14_3_44 | rspec ./spec/helpers/admin/components_helper_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8340763245 | rspec_background_migration_pg14_17_17 | rspec ./spec/lib/gitlab/background_migration/backfill_vulnerability_external_issue_links_project_id_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842561 | rspec_background_migration_pg14_16_17 | rspec ./spec/lib/gitlab/background_migration/resync_has_vulnerabilities_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842488 | rspec_migration_pg14_22_26 | rspec ./spec/migrations/20241001115912_queue_set_total_number_of_vulnerabilities_for_existing_projects_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842507 | rspec_migration_pg14_26_26 | rspec ./spec/migrations/20241002155253_queue_fix_project_settings_has_vulnerabilities_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339842500 | rspec_migration_pg14_24_26 | rspec ./spec/migrations/20241007115637_queue_backfill_identifier_names_of_vulnerability_reads_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339843080 | rspec_integration_pg14_20_20 | rspec ./spec/requests/api/graphql/group_query_spec.rb | |
| https://gitlab.com/gitlab-org/gitlab/-/jobs/8339843080 | rspec_integration_pg14_20_20 | rspec ./spec/requests/api/graphql/groups_query_spec.rb |
Edited by Lucas Charles