Bala Kumar (41fb1d52) at 18 Mar 11:32
Remove feature flag advanced_vulnerability_management
... and 260 more commits
@maddievn backfill_vulnerability_occurrence_id is dependent on a BBM and it will be skipped till the dependent BBM is completed so it is not sequenced and we require this check.
Bala Kumar (4ffb296e) at 17 Mar 17:59
Fix: use MalwareAdvisory#to_advisory_data_object instead of inline ...
Bala Kumar (8323b64e) at 17 Mar 17:46
Update TODO comment with ADS authentication reference link
Bala Kumar (1f022f54) at 17 Mar 17:42
Add malware advisory scanning to SecurityReportBuilder
Migration stubbing for the migrations can be done using the spec helper. Using this helper will set the migrations before it to be completed and the assigned migration as false.
set_elasticsearch_migration_to :my_migration_name, including: falseTODO:
Consider the checkpoint implementations discussed in #593080 (comment 3150243990)
Thanks for the clear and detailed breakdown @adil.farrukh. Sounds good
advanced vulnerability management docs section includes the list of features/filters it supports. Maintaining a list here will become outdated.
Bala Kumar (a944a1dd) at 17 Mar 13:04
Update tracked_refs_scope description to mention advanced vulnerabi...
Bala Kumar (620a224e) at 17 Mar 12:57
Update 'advanced vulnerability management enabled' to 'advanced vul...
Bala Kumar (55daeda1) at 17 Mar 12:47
Add changelog trailer
@hmehra Can you review from groupauthorization. There are no logical changes, since the file is touched we need the group's review.
@srushik Can you review the backend and if good pass to @subashis for maintainer review.
Bala Kumar (58341a62) at 17 Mar 12:30
Remove duplicate history entry in vulnerability report docs
Bala Kumar (b5d788ac) at 17 Mar 12:27
Replace 'Elasticsearch configured' with 'advanced search configured...
We are already using ES for aggregations and counts on the new security dashboard without issues and also this API is currently returning full counts when any of the advanced vulnerability management filters are included.
Bala Kumar (8bdddec2) at 17 Mar 12:16
Update capped argument description in VulnerabilitySeveritiesCoun...
Bala Kumar (04ab234d) at 17 Mar 12:09
Revert bulk_es_operation_service changes and remove changelog entry
Removes the advanced_vulnerability_management feature flag which has been stable since GitLab 18.2 and was default-enabled in the same milestone via !193929 for gitlab.com and Dedicated.
On GitLab self-managed this feature was available from %18.7 and since then we have not received any customer complaints, so we can remove the FF.
Closes #555055
ee/config/feature_flags/beta/advanced_vulnerability_management.yml
advanced_vulnerability_management_enabled? method and its Feature.enabled? checks from Vulnerabilities::AdvancedVulnerabilityManagementPolicy
can_access_vulnerability_es_features condition now relies solely on advanced_vulnerability_management_allowed? (the ES/infrastructure check via Search::Elastic::VulnerabilityIndexHelper)advanced_vulnerability_management feature flag from argument descriptions in:
Resolvers::VulnerabilitiesResolverResolvers::VulnerabilitySeveritiesCountResolvercounts_from_es
doc/user/application_security/vulnerability_report/_index.md to:
> [!flag] callout from the Advanced vulnerability management sectionadvanced_vulnerability_management removed." to both history entries (the section header and the inline filter history)stub_feature_flags(advanced_vulnerability_management: false) test context from the policy spec since the flag no longer existsBala Kumar (e0631263) at 17 Mar 12:03
Remove feature flag advanced_vulnerability_management