Feature flags requiring attention for group::security insights - 2025-10-01

This is a group level feature flag report containing feature flags that should be evaluated or need action.

Feature flag trends can be found in this dashboard.

A feature flag is considered end-of-life when it has existed in the codebase for longer than the prescribed lifespan based on feature flag type.

Feature flags needing action

These flags are approaching end-of-life in the next milestone.

Feature flag	Milestone added	End of life milestone	Enabled by default?	Rollout issue
`duo_vulnerability_resolution_use_files_multiservice` gitlab_com_derisk \| Introduced by \| Feature issue \| GitLab.com state changes	%18.4	%18.6	❌	[FF] `duo_vulnerability_resolution_use_files_mu... (gitlab-org/gitlab#545668) • Michael Becker • Backlog

Please take action on these feature flags by performing one of the following options:

Enable the feature flag by default and remove it.
Convert it to an instance, group, or project setting.
Revert the changes if it's still disabled and not needed anymore.

Feature flags overdue

These flags have reached their maximum lifespan.

Feature flag	Milestone added	End of life milestone	Enabled by default?	Rollout issue
`ignore_supported_cwe_list_check` gitlab_com_derisk \| Introduced by \| Feature issue \| GitLab.com state changes	%17.8	%17.10	❌	Create ignoreSupportedCWEListCheck feature flag... (gitlab-org/gitlab#508174 - closed) • Subashis Chakraborty • 17.8 • On track
`existing_jira_issue_attachment_from_vulnerability_bulk_action` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%17.9	%18.1	❌	[Feature flag] Enable `existing_jira_issue_atta... (gitlab-org/gitlab#518038) • Unassigned • Backlog
`vulnerability_report_type_scanner_filter` beta \| Introduced by \| Feature issue \| GitLab.com state changes	%17.9	%18.3	✅	[Feature flag] Rollout of `vulnerability_report... (gitlab-org/gitlab#513546) • Charlie Kroon • 18.0
`security_scan_error_rate` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%17.9	%18.1	❌
`dependency_paths` beta \| Introduced by \| Feature issue \| GitLab.com state changes	%17.10	%18.4	✅	[Feature flag] Enable `dependency_paths` (gitlab-org/gitlab#520269) • Samantha Ming • 18.6
`dependencies_page_filter_by_package_manager` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%17.10	%18.2	❌	[Feature flag] Enable `dependencies_page_filter... (gitlab-org/gitlab#517271) • Unassigned • 18.6
`project_dependencies_graphql` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%17.11	%18.3	❌
`group_dependencies_graphql` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%18.0	%18.4	❌
`group_security_dashboard_new` wip \| Introduced by \| Feature issue \| GitLab.com state changes	%18.1	%18.5	❌
`pipeline_security_ai_vr` gitlab_com_derisk \| Introduced by \| Feature issue \| GitLab.com state changes	%18.2	%18.4	❌	[FF] `pipeline_security_ai_vr` (gitlab-org/gitlab#548930) • Unassigned • 18.6
`vulnerability_partial_scans` gitlab_com_derisk \| Introduced by \| Feature issue \| GitLab.com state changes	%18.2	%18.4	❌	[FF] `vulnerability_partial_scans` -- Enable pa... (gitlab-org/gitlab#552051) • Savas Vedova, Shao Ming Tan • 18.6
`validity_check_es_filter` gitlab_com_derisk \| Introduced by \| Feature issue \| GitLab.com state changes	%18.3	%18.5	❌	[Feature flag] `validity_check_es_filter` (gitlab-org/gitlab#560433) • Samantha Ming • Backlog

Please review these feature flags to determine if they are able to be removed entirely.

This report is generated from feature-flag-alert project by https://gitlab.com/gitlab-org/quality/toolbox/-/jobs/11559330452.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information