Enable feature checking for SAST, Secret Detection
As it stands today, we license the entire feature categories of SAST and Secret Detection. While this may have been workable while the feature categories were only available in one license tier, it doesn't scale with these features now available in Core. We need to create a way by which the individual features of SAST and Secret Detection can be enumerated and pinned to the appropriate levels of licensure. This need has come up a couple times, most notably when implementing [custom rulesets for SAST](https://gitlab.com/groups/gitlab-org/-/epics/4179) and [improving the MR experience for Secure scans on non-Ultimate plans](https://gitlab.com/groups/gitlab-org/-/epics/4388). ## Business needs - Ability to offer a graduated experience for ~"group::static analysis" feature categories through GitLab's various licenses. - Ability to move features between licenses without changing how the features are implemented. ## Breakdown of Features per plan [Current & Future Feature breadown](https://docs.google.com/document/d/1gPYRQGyiauAAbHxvkm6nc7hU0GDmfvlTbu1hLvJaSF0/edit?usp=sharing) - Details features per plan both today and tomorrow. ## Links - [license.rb](https://gitlab.com/gitlab-org/gitlab/-/blob/master/ee/app/models/license.rb)
epic