FY25Q2 Stage lead planning issue: Secure
This issue outlines the projects that will be the focus of the Secure stage lead during Q2 of 2024.
Projects
Secret Detection
- Project: Fix docs information architecture issues so that users can find the information they need.
- Reasoning: Some content is lacking, in the wrong location, or otherwise difficult to find. These changes will improve the findability of these topics.
Issue | Status | Priority | Details |
---|---|---|---|
Clarify pipeline secret detection custom rule o... (gitlab#465942) |
|
Medium | Led by: TW |
Incorrect information on main secret detection ... (gitlab#466370 - closed) |
|
High | Led by: TW |
Add supported token/API key/secret types to doc... (gitlab#454905 - closed) |
|
High | Led by: TW |
Static Analysis
- Project: Expand documentation coverage.
- Reasoning: Several common SAST features are not documented. These changes will provide users with the information they need to successfully use these features.
Issue | Status | Priority | Details |
---|---|---|---|
SAST documentation: latest template is referenc... (gitlab#466442) |
|
Medium | Target is 17.2. Led by: Engineer |
SAST documentation: Document IaC scanning offli... (gitlab#466443) |
|
Medium | Target is 17.2. Led by: Engineer |
Projects on hold
Project | Issue | Groups | Status | Priority | Details |
---|---|---|---|---|---|
Reorganize documentation for Browser-based DAST authentication | &12966 (comment 1860423952) | groupdynamic analysis |
|
Medium | On hold as the PM has designated other work a higher priority. |
Reorganize application security docs nav entries | gitlab#451977 | N/A |
|
High | On hold pending decisions in Adding best practices for setting up, configuri... (gitlab-com/Product#13401 - closed) |
Ongoing tasks
Manage TW-DRI assignments for all milestones:
https://gitlab.com/gitlab-org/gitlab/-/boards/7602348
Specific milestone planning issues:
References
Edited by Russell Dickenson