feat: integrate MergeRequestsProcessor with rollback

Maina Ng'ang'arequested to merge
feat/integrate-merge-requests-processor into master

What does this MR do and why?

This MR integrates the MergeRequestsProcessor with the rollback functionality to identify security and incident-related merge requests that would be affected by a rollback operation.

Content

Key Features:

  • Detects security fixes via URL patterns (/gitlab-org/security/)
  • Identifies S1/S2 incidents via severity labels (severity::1, severity::2)
  • Adds warnings to Slack notifications when critical fixes would be rolled back
  • Controlled by feature flag :security_incident_rollback_checks for safe rollout

This is the final integration step that builds upon the foundation established in:

  • MR !4204 (merged): Added MergeRequestsFinder and DeploymentsInformation
  • MR !4319 (merged): Made deployment util pagination limit configurable
  • MR !4330 (merged): Updated canonical_sha_intersection to accept commit_count parameter
  • MR !4289 (merged): Added MergeRequestsProcessor for security and incident MR detection

Screenshots

Slack Output

Screenshot_2025-09-11_at_16.03.49

Pipeline Logs example

Screenshot_2025-09-11_at_16.03.21

Related Issue: gitlab-com/gl-infra/delivery#20923 (closed)

Author Check-list

  • Has documentation been updated?
Edited by Maina Ng'ang'a

Merge request reports