Add security update workload creation service
What does this MR do and why?
This service is responsible for creating the CI/CD workload that will run the dependency updater. The service will receive the project, the component information, and the location of the component, then define a pipeline that uses this information to update the required dependency files.
The CI/CD workload itself is executed under a GitLab Dependency Manager internal user, which the service upserts before it executes the workload.
EE: true
Signed-off-by: Oscar Alberto Tovar otovar@gitlab.com
Change-Id: nknnqrkknrkumuqmnvlyuqyoukytsqlp
Stacked Diffs
- master
-
Add security update workload creation service (!223849 - merged)
- Add dependency management security update sched... (!224996 - merged)
-
Add Dependency Management Service Account Service (!228340)
-
Add dep. management security update merge reque... (!225540)
- auto remediation merge request creation worker
-
Add dep. management security update merge reque... (!225540)
-
Add security update workload creation service (!223849 - merged)
References
Relates to #583114
Screenshots or screen recordings
| Before | After |
|---|---|
How to set up and validate locally
This service cannot be validated end-to-end locally yet. The scheduling subsystem that triggers it is not yet complete, and the orchestrator image (registry.gitlab.com/security-products/dependency-management/orchestrator:0) is not yet available.
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.