SAST VR – Backend (2) – Add feature flag + replace `admin_project` gate with `update_sast_vr_setting` for the project toggle
What does this MR do and why?
We add the update_sast_vr_setting_permission feature flag. When this flag is enabled, the Security Manager role can update update_sast_vulnerability_resolution_setting.
This MR is part of the bigger initiative &21725 . The goal of that project is for Security Managers to be able to enable and configure SAST Vulnerability Resolution across their portfolio without requiring the Maintainer/Owner roles on every individual project.
This MR closes: #599604 (closed)
References
-
Feature flag rollout issue: [Feature flag] Rollout of `update_sast_vr_setti... (#600680) • Charlie Kroon
-
Project epic: SAST Vulnerability Resolution – Permission AppS... (gitlab-org#21725) • Charlie Kroon • 19.1
-
Main Backend issue: SAST Vulnerability Resolution - Backend (gitlab-org#21971) • Charlie Kroon
-
Related MRs: SAST VR – Backend (1) – Create new custom abili... (!235831 - merged) • Charlie Kroon • 19.1
Screenshots or screen recordings
| Before | After |
|---|---|
How to set up and validate locally
MR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.