[Beta] Validity checks
### Beta Features 1. Enablement - Validity Checks is opt-in by default. To opt-in to the feature users can: 1. At the project level, add a toggle under Secure \> Security configuration that enables the validity checks feature at the project level, https://gitlab.com/groups/gitlab-org/-/epics/16995+ 2. Use the group API to turn on Validity Checks for all projects within a group, https://gitlab.com/groups/gitlab-org/-/epics/18636+ 2. Token status refresh 1. In a vulnerability record, add a refresh button that re-checks the status of the token, https://gitlab.com/groups/gitlab-org/-/epics/17407+ 2. (Optional) the refresh button is also available on the modals for the MR security widget and the pipeline security tab 3. Expose the token status on the 1. Project vulnerability report, https://gitlab.com/groups/gitlab-org/-/epics/17657+ 2. MR security widget, https://gitlab.com/groups/gitlab-org/-/epics/17659+ 3. Pipeline security tab, https://gitlab.com/groups/gitlab-org/-/epics/17660+ 4. Pipeline security widget https://gitlab.com/gitlab-org/gitlab/-/issues/537754+ 4. https://gitlab.com/gitlab-org/gitlab/-/issues/519785+ ## Remaining work to deliver Beta (as of 2025-09-01) | Type | Description | Issue | BE/FE | Dependency | Milestone | |------|-------------|-------|-------|------------|-----------| | | GraphQL | | ~backend | | 18.4 | | ~"type::feature" | UI for Pipeline > Security Report Page | https://gitlab.com/gitlab-org/gitlab/-/issues/557280+ | ~frontend | | 18.4 | | ~"type::feature" | API integration for Pipeline > Security Report Page | https://gitlab.com/gitlab-org/gitlab/-/issues/557280+ | ~frontend | Requires BE GraphQL query | 18.5 | | ~"type::feature" | UI for Pipeline > Security Details Page | https://gitlab.com/gitlab-org/gitlab/-/issues/537754+ | ~frontend | | 18.4 | | ~"type::feature" | API integration for Pipeline > Security Details Page | https://gitlab.com/gitlab-org/gitlab/-/issues/537754+ | ~frontend | Requires BE GraphQL query | 18.5 | | ~"type::feature" | API Integration for the validity check in the MR modal | https://gitlab.com/gitlab-org/gitlab/-/issues/561068+ | ~frontend | Requires BE GraphQL query | 18.5 | | ~"type::feature" | Telemetry for Validity Checks | https://gitlab.com/gitlab-org/gitlab/-/issues/519785+ | ~frontend ~backend | | 18.4 | | ~"type::feature" | Update documentation | https://gitlab.com/gitlab-org/gitlab/-/issues/544636+ | ~"Technical Writing" | Sections of documentation can be released as features are made available | 18.4 && 18.5 | ## Feature Flags In Use ### MRs currently hidden behind validity_checks_security_finding_status - https://gitlab.com/gitlab-org/gitlab/-/issues/557280+ - https://gitlab.com/gitlab-org/gitlab/-/issues/537754+ - https://gitlab.com/gitlab-org/gitlab/-/issues/537751+
epic