What does this MR do?
Fixes the false-positive cve results finding for git when a gitaly sha if used in the git version in the manifest. (See example failed job: https://dev.gitlab.org/gitlab/omnibus-gitlab/-/jobs/9925707
Now that we are using gitaly to compile git, the git version isn't known from the manifest, instead we are getting the gitaly version. Update our vendor field to be
gitlab to avoid cve matching old versions.
See Definition of done.
For anything in this list which will not be completed, please provide a reason in the MR discussion
Merge Request Title, and Description are up to date, accurate, and descriptive
MR targeting the appropriate branch
MR has a green pipeline on GitLab.com
Pipeline is green on dev.gitlab.org if the change is touching anything besides documentation or internal cookbooks
trigger-packagehas a green pipeline running against latest commit