Review S2s bugs between 1 & 2 years old for correct severity and validity
We have continuously reviewed S2 bugs as part of our OKRs. These included:
- S2s > 300 days old with missing product groups
- subset of the oldest remaining S2s > 300 days old
- Another subset of the oldest remaining S2s > 300 days old
We should continue to review the old S2s to ensure we have our backlog maintained.
While reviewing, please check to see if the bug potentially is no longer a problem and could be closed. Also verify the severity makes sense (is it actually an S3 or S4?).
The following lists are formatted thus: issue | age in days as of Feb 7 | listed group |
@sliaquat
Authentication and authorization --
| Overriding LDAP permissions no longer possible | 553 | authentication and authorization | => Valid, Developer assigned, targeted for %15.10 -
| LDAP integration generates massive amount of invalid logins | 550 | authentication and authorization | => Related to Recognize Deploy Tokens early in throttler iden... (gitlab-org/gitlab#342325 - closed) whose priority and severity I have adjusted as well and pulled both into %15.11
@jay_mccure
Code review --
| Error 500 creating diff note (comment) - hide whitespace mode | 538 | code review |
Composition analysis - Vincy
-
| Licenses do not show up in Dependency List for Maven Dependencie | 601 | composition analysis | -
| License Scanning encounters "GC overhead limit exceeded" error f | 503 | composition analysis | -
| License Scanning doesn't handle gradle subprojects | 503 | composition analysis | -
| License Scanning doesn't handle gradle dependency constraints | 503 | composition analysis |
Configure - Sofia
-
| Cannot disable terraform_state | 420 | configure |
Container registry - Sofia
-
| Dependency proxy image pull failures for pipelines triggered by | 616 | container registry | -
| Dependency proxy error with non-ldap users | 406 | container registry | -
| Investigate: Dependency Proxy not working with Azure object stor | 361 | container registry |
Distribution - Kassandra
-
| Geo: gitlab-ctl show-config
doesn't work on secondary sites | 511 | distribution |
Editor - Ramya
-
| Failure in browser_ui/3_create/web_ide/web_terminal_spec.rb | Cr | 545 | editor | -
| Wiki: accept case insensitive page title changes when updating w | 382 | editor |
Foundations - Ramya
-
| Filtered search > User should be able to select all text | 425 | foundations |
@sgregory2
Integrations --
| Slack notifications fails to send to multiple channels | 523 | integrations |
@vburton
Organization --
| Improve performance of Groups Issues List API under load into ne | 732 | organization | => Valid, assigned, scheduled for %15.10 -
| A group that someone is added to by way of membership in subgrou | 628 | organization | => Valid, blocked by Research if the `Preloaders::UserMaxAccessLevel... (gitlab-org/gitlab#390331 - closed), scheduled for %15.11 -
| Improve performance of show action for ProjectsController under | 594 | organization | => Reevaluated, relabeled as severity4 -
| Improve performance of show action for GroupsController under lo | 588 | organization | => Reevaluated, relabeled as severity4 -
| Wrong Max Role for Members Invited through Group Invitation | 559 | organization | => Valid, recently updated to severity2, now scheduled for %15.11 -
| API members/all missing some inherited members. | 552 | organization | => Valid, blocked by GroupMembersFinder returns elevated role for th... (gitlab-org/gitlab#377922 - closed), scheduled for %15.10 -
| Empty subgroups are accessible, but not listed w/o replicating g | 465 | organization | => Valid, blocked by POC - Remove the has_projects condition from Gr... (gitlab-org/gitlab#385072). POC could introduce a breaking a change and will take several milestones to complete. See comment here. -
| Minimal access role does not allow user to navigate to subgroup | 376 | organization | => Valid, blocked by POC - Remove the has_projects condition from Gr... (gitlab-org/gitlab#385072). POC could introduce a breaking a change and will take several milestones to complete. See comment here. - Please note, the bugs blocked by POC - Remove the has_projects condition from Gr... (gitlab-org/gitlab#385072) are being kept open individually to verify the POC will fix all issues.
Package registry - Sofia
-
| Package Registry - pypi support for Python compatibility tags | 664 | package registry | -
| PG::CheckViolation: ERROR: new row for relation "packages_rubyg | 603 | package registry | -
| Composer package version validation - GitLab Package Registry | 564 | package registry | -
| confidential - masked | 473 | package registry |
Pipeline authoring - Sofia
-
| Disable CI/CD for external repos when Allow mirrors to be set up | 721 | pipeline authoring | -
| Cross dependency error for trigger job in child pipeline | 713 | pipeline authoring | -
| Gitlab-CI: Nested Variables Not Evaluated Correctly in Rules | 664 | pipeline authoring | -
| stages are not flattened when substituted via reference tag | 622 | pipeline authoring | -
| regression: 'Run pipeline' button not appearing for merge reques | 621 | pipeline authoring | -
| Pipeline status is not updated on a forked project with Jenkins | 599 | pipeline authoring | -
| needs: pipeline
does not have the appropriate error when addin | 595 | pipeline authoring | -
| Using Only:Changes with Only:Ref on multiple jobs stops one from | 586 | pipeline authoring | -
| CI variables set via push options don't work in child pipelines | 575 | pipeline authoring | -
| confidential - masked | 559 | pipeline authoring | -
| CI reference tags can not be used in rules
underinclude
b | 498 | pipeline authoring | -
| Backend: CI_MERGE_REQUEST_APPROVED unset after approval of MR | 484 | pipeline authoring | -
| Failing jobs when triggered by webhooks with large payload. | 463 | pipeline authoring | -
| Frontend: Play all button appears even without manual jobs in a | 434 | pipeline authoring | -
| Backend: CI Linter does not properly validate included variables | 384 | pipeline authoring | -
| Backend: Gitlab CI_JOB_JWT token does not use job/project/runner | 370 | pipeline authoring |
Pipeline execution - Sofia
-
| pipelines emails don't work (while others work fine) | 732 | pipeline execution | -
| No job event webhook firing for the trigger jobs | 683 | pipeline execution | -
| API call results with "500 Internal Server Error" | 680 | pipeline execution | -
| Backend: Query cancelled due to statement timeout when destroyin | 657 | pipeline execution | -
| Job webhook stopped sending build_status created | 638 | pipeline execution | -
| Backend: Push options are ignored for merge request pipelines | 628 | pipeline execution | -
| Backend: Transient: MR added to merge train doesn't get merged a | 628 | pipeline execution | -
| Pipelines#show gives error 500 | 622 | pipeline execution | -
| CI Pipelines run for every commit on every branch | 596 | pipeline execution | -
| CI-CD timeout not followed and got billed for a stuck runner | 594 | pipeline execution | -
| Merge Request and Commit pipeline endpoints return the incorrect | 594 | pipeline execution | -
| Creating or retrying a CI job fails with a 403 for users that ne | 559 | pipeline execution | -
| Backend: Scheduled pipelines are triggering multiple times | 540 | pipeline execution | -
| Backend: Disabling shared runners in a top-level group does not | 504 | pipeline execution | -
| Backend: Wrong parent pipeline status when child pipeline contai | 502 | pipeline execution | -
| Job Timeout not working in dynamic child pipeline with manual jo | 497 | pipeline execution | -
| Backend: GitLab CI Failing (Sort Of) When Manual is Set on Downs | 495 | pipeline execution | -
| Backend: Failed pipelines are not accessible when the logs are d | 490 | pipeline execution | -
| Spike - Inconsistent external pull request pipelines | 460 | pipeline execution | -
| Pipelines created from merge requests not running (stuck at Crea | 419 | pipeline execution | -
| Backend: Error raised in /jobs/request caused job to be stuck in | 418 | pipeline execution | -
| Cron takes min of day of week and day of month when both are spe | 370 | pipeline execution |
Pipeline insights - Sofia
-
| Gitlab -CI/CD artifacts uploads fails | 707 | pipeline insights | -
| Failed to transfer artifact of type trace with error: undefined | 685 | pipeline insights | -
| Visual Review does not find project | 620 | pipeline insights | -
| Auto DevOps performance test step has permissions issue | 595 | pipeline insights |
@dchevalier2
Product planning --
| Adding a label does not always update on a board list | 356 | product planning | => Still being looked into. Currently blocked.
@dchevalier2
project management --
| Single Issue Details API shows significantly higher Rails memory | 726 | project management | -
| Selecting text with mouse don't work on issue board in central c | 385 | project management | => Fixed recently. Closed.
Respond - Sofia
-
| Cannot add emojis on notes in incidents related to alerts | 685 | respond |
Runner - Sofia
-
| Infinite loops on trace updates | 720 | runner | -
| gitlab runner v13.9.0 - error relocating RELRO protection failed | 698 | runner | -
| Job pod cleanup | 698 | runner | -
| Race condition between UserData and Provisioning steps with amaz | 658 | runner | -
| ActiveRecord::StatementInvalid: PG::InvalidTextRepresentation: E | 650 | runner | -
| Pass Powershell scripts through mounted file in docker executor | 641 | runner | -
| Long Polling from GitLab Runners not correctly working in a Kube | 629 | runner | -
| RoleBinding: Gitlab-runner-operator creates `gitlab-runner-app-r | 622 | runner | -
| Pipeline job trace not fully updated when runner cancelled | 601 | runner | -
| Job execution pods in Kubernetes don't handle signals | 530 | runner | -
| CI job will indicate it is running, but I don't suspect it actua | 505 | runner | -
| allow_failure:exit_codes unusable with windows shell executor be | 502 | runner | -
| executor docker-windows error: cannot lock ref 'refs/remotes/ori | 477 | runner | -
| confidential - masked | 473 | runner | -
| Retry logic when receiving 503 and 429 error codes from Azure Bl | 461 | runner | -
| confidential - masked | 428 | runner | -
| Kubernetes Runner Container ContainersNotReady | 422 | runner |
@a_mcdonald
Source code --
| Invalid characters in git repo filenames and contents cause prob | 708 | source code | -
| confidential - masked | 697 | source code | -
| confidential - masked | 685 | source code | -
| Improve performance of show action for Projects::CompareControll | 664 | source code | -
| confidential - masked | 658 | source code | -
| Improve browser Total Blocking Time (TBT) performance of Project | 629 | source code | -
| Improve browser Largest Contentful Paint (LCP) performance of Pr | 629 | source code | -
| Number of roles allowed to merge/push to a protected branch is w | 609 | source code | -
| Further improve performance of show action for Projects::CommitC | 607 | source code | -
| Groups defined in CODEOWNERS file are only optional approvers? | 587 | source code | -
| The newest tag is missing in the compare page branch/tag menu | 582 | source code | -
| x509 / TLS signed commits: only the first email address in the s | 565 | source code | -
| Changing visibility of an invited subgroup from internal to priv | 476 | source code | -
| History timeout for files in large repo | 463 | source code | -
| Cannot commit to fork from main project if fork is behind | 463 | source code | -
| Unprotecting a branch returning 403 | 455 | source code | -
| Gitlab mirror to Gitlab: remote gitlab lfs objects are missing | 340 | source code |
Undefined - Vincy
-
| Seg fault in grape on Sidekiq in staging | 357 | undefined | ~"group::application performance" | S2 -
| pre-receive hook declined and 500 after pushing branch with issu | 350 | undefined | groupgitaly
Results
Overall Summary between 1 & 2 years old
Total Bugs reviewed: 110
- Valid severity2 bugs: 80
- Resolved: 9
- Closed/Deprecated: 13
- Mislabeled/ not bug: 2
- Lowered severity: 6
Findings
- 70% of bugs are still valid
- 8% is closed
- 11% closed deprecated
Edited by Mek Stittri