Upgrade to gitlab-depscan 3.0.0

What does this MR do?

Restores gitlab-depscan dependency scanning by upgrading its version from 2.4.0 (broken) to 3.0.0 (fixed).

Related issues

https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/8608+s

Checklist

See Definition of done.

For anything in this list which will not be completed, please provide a reason in the MR discussion.

Required

• MR title and description are up to date, accurate, and descriptive.
• MR targeting the appropriate branch.
• Latest Merge Result pipeline is green.
• When ready for review, MR is labeled "~workflow::ready for review" per the Distribution MR workflow.

For GitLab team members

If you don't have access to this, the reviewer should trigger these jobs for you during the review process.

• The manual Trigger:ee-package jobs have a green pipeline running against latest commit.
• If config/software or config/patches directories are changed, make sure the build-package-on-all-os job within the Trigger:ee-package downstream pipeline succeeded.
• If you are changing anything SSL related, then the Trigger:package:fips manual job within the Trigger:ee-package downstream pipeline must succeed.
• If CI configuration is changed, the branch must be pushed to dev.gitlab.org to confirm regular branch builds aren't broken.

Expected (please provide an explanation if not completing)

• Test plan indicating conditions for success has been posted and passes.
• Documentation created/updated.
• Tests added.
• Integration tests added to GitLab QA.
• Equivalent MR/issue for the GitLab Chart opened.
• Validate potential values for new configuration settings. Formats such as integer 10, duration 10s, URI scheme://user:passwd@host:port may require quotation or other special handling when rendered in a template and written to a configuration file.

added devopssystems groupvulnerability research maintenancerefactor sectioncore platform labels

requested review from @balasankarc

assigned to @dbolkensteyn

added typemaintenance label

changed the description

removed typemaintenance label

removed maintenancerefactor label

marked the checklist item MR title and description are up to date, accurate, and descriptive. as completed

marked the checklist item MR targeting the appropriate branch. as completed

	1 Message
	CHANGELOG missing: If you want to create a changelog entry for GitLab FOSS, add the Changelog trailer to the commit message you want to add to the changelog. If you want to create a changelog entry for GitLab EE, also add the EE: true trailer to your commit message. If this merge request doesn't need a CHANGELOG entry, feel free to ignore this message.

Reviewer roulette

Changes that require review have been detected! A merge request is normally reviewed by both a reviewer and a maintainer in its primary category and by a maintainer in all other categories.

To spread load more evenly across eligible reviewers, Danger has picked a candidate for each review slot. Feel free to override these selections if you think someone else would be better-suited or use the GitLab Review Workload Dashboard to find other available reviewers.

To read more on how to use the reviewer roulette, please take a look at the Engineering workflow and code review guidelines. Please consider assigning a reviewer or maintainer who is a domain expert in the area of the merge request.

Once you've decided who will review this merge request, mention them as you normally would! Danger does not automatically notify them for you.

Reviewer	Maintainer
@axugl (UTC-7, 9 hours behind @dbolkensteyn)	@apatterson2 (UTC-6, 8 hours behind @dbolkensteyn)

If needed, you can retry the danger-review job that generated this comment.

Generated by Danger

added workflowready for review label

changed milestone to %17.2

resolved all threads

added 1 commit

• a781db08 - Apply 1 suggestion(s) to 1 file(s)

Compare with previous version

Proper labels assigned to this merge request. Please ignore me.

@dbolkensteyn - please see the following guidance and update this merge request.

	1 Error
	Please add typebug typefeature, or typemaintenance label to this merge request.

added maintenancedependency typemaintenance labels

resolved all threads

marked the checklist item Latest Merge Result pipeline is green. as completed

marked the checklist item When ready for review, MR is labeled "~workflow::ready for review" per the Distribution MR workflow. as completed

Confirmed a successful dependency scanning pipeline - https://gitlab.com/gitlab-org/omnibus-gitlab/-/pipelines/1371473681

@dbolkensteyn Can you please squash the commits and remove my commit? I can't approve/merge when the MR has a commit from me.

added 45 commits

• a781db08...fcdc62b7 - 44 commits from branch master
• 885327eb - Upgrade to gitlab-depscan 3.0.0

Compare with previous version

approved this merge request

enabled an automatic merge when all merge checks for 885327eb pass

merged

added workflowstaging-canary label and removed workflowready for review label

added workflowcanary label and removed workflowstaging-canary label

added workflowstaging label and removed workflowcanary label

added workflowproduction label and removed workflowstaging label

added workflowstaging label and removed workflowproduction label

added releasedcandidate label

added releasedpublished label and removed releasedcandidate label

mentioned in commit 78c11038