2022-05-16 Recently delivered features and high-priority bugs
Hi, @gitlab-org/secure/managers.
Here is the list of features and high-priority bugs delivered in the last 7 days.
Please copy the list to the Sec Section weekly meeting agenda, and close this issue.
- Investigate and configure bundle on CI to disallow any changes to Gemfile.lock
- Investigate and configure bundle on CI to disallow any changes to Gemfile.lock
- (confidential)
- Add form for editing scanner and site profiles to a drawer
- Add form for creating scanner and site profiles to a drawer
- [Feature flag] Rollout of
usage_data_users_visiting_testing_manage_license_compliance - placeholder
- placeholder
- STEP ONE PLACEHOLDER
- (confidential)
- Create side drawer with empty state
- BE: Unwrap features from
group_level_security_policiesFF - Refactor On-demand scans page to use
ConfigurationPageLayoutcomponent - Update Security Policy Applied Configuration to support FIPS Mode
- DEV - Create plan to split build and analyze for dependency scanning
- sbom + cryptographic audit of gemnasium-python
- sbom + cryptographic audit of gemnasium-maven
- sbom + cryptographic audit of gemnasium
- (confidential)
- Remove Vulnerability-Check
- Add back button to policy page
- [docs-only] Announce "Show paths to dependencies" MVC completion in release post
- [License Compliance MR Widget Extension] - Frontend - Specify
for the source branch onlyheader messaging - DAST Target Profile - Inline creation and editing within the drawer
- DAST Scanner Profile - Inline creation and editing within the drawer
- Add option to set DAST_SUBMIT_FIELD for on-demand DAST scans
- Update container scanning docs
- Update gcs license
- Restructure gcs codebase with EE directory
- Update container scanning CI/CD template
- Remove Cilium Alert functionality from GitLab Rails and GitLab Agent for Kubernetes
- Use GitLab's advisory DB with container scanning
- Show one
shortest pathon the finding details page - [Feature flag] Rollout of
vulnerability_reads_table - [15.0] Remove bundler-audit analyzer
- [15.0] Remove legacy approval status names from
managed_licensesAPI - [15.0] Remove deprecated DS_DEFAULT_ANALYZERS variable
- [15.0] Remove Retire.js analyzer from Dependency Scanning
- (confidential)
Job URL: https://gitlab.com/gitlab-org/quality/triage-ops/-/jobs/2459529215