Use grouped services for atomic scanner criteria

Sashi Kumar Kumaresanrequested to merge
584704-atomic-scanner-3 into 584704-atomic-scanner-2

What does this MR do and why?

Use grouped services for atomic scanner criteria

Integrates the grouped findings/vulnerabilities services into the approval evaluation flow:

  • Extract ScanPresenceValidator concern from UpdateApprovalsService
  • Add GroupedViolationEvaluator concern for grouped rule evaluation
  • Wire use_grouped_finder? into UpdateApprovalsService and SyncPreexistingStatesApprovalRulesService
  • Add vulnerabilities_count_for_uuids_with_allowed for per-group thresholds

All new behavior is gated behind the atomic_scanner_rule_criteria feature flag.

Changelog: added EE: true

References

Screenshots or screen recordings

Before After

How to set up and validate locally

MR acceptance checklist

Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Related to #584704

Merge request reports