In https://gitlab.com/gitlab-org/gitlab/-/issues/467953 we saw an issue where between when an MR is created, and when the code owner rules are synced, we were able to merge. We have added a temp fix, but temporarily unapproving the MR. A more complete solution is to introduce a way to know whether the approval rules are synced or not. Questions: - Does this include only code owners? Or security approval rules as well? This issue was also seen in this RFH: https://gitlab.com/gitlab-com/request-for-help/-/issues/3415#note_2807689862