Or Gal activity https://gitlab.com/or-gal 2026-03-12T22:56:29Z tag:gitlab.com,2026-03-12:5199069980 Or Gal pushed to project branch master at GitLab.com / www-gitlab-com 2026-03-12T22:56:29Z or-gal Or Gal

Or Gal (718caefe) at 12 Mar 22:56

Merge branch 'm-omokoh/security-platform-management-pipeline-sd-pro...

... and 1 more commit

tag:gitlab.com,2026-03-12:5199068114 Or Gal deleted project branch m-omokoh/security-platform-management-pipeline-sd-profiles-v2 at GitLab.com / www-gitlab-com 2026-03-12T22:55:27Z or-gal Or Gal

Or Gal (580ff351) at 12 Mar 22:55

tag:gitlab.com,2026-03-12:5199067759 Or Gal accepted merge request !142807: RP - Pipeline secret detection in security configuration profiles at GitLab.com / www-gitlab-com 2026-03-12T22:55:17Z or-gal Or Gal

Team members for review and approval: Engineer(s): `` | Product Marketing: @PMM | Tech Writer: `@rlehmann1` | Product Designer(s): `@mfangman`

Engineering Manager to merge when the feature is deployed and enabled: @or-gal

Important note on tier labels: Until further notice, due to change management reasons, please leverage label core to indicate 'free' tier in all code and templates.

Please review the guidelines for content block creation at https://handbook.gitlab.com/handbook/marketing/blog/release-posts/#content-blocks. They are frequently updated, and everyone should make sure they are aware of the current standards (PM, PMM, EM, and TW). There are separate (and slightly different) templates for primary and secondary features, bugs, removals, and upgrade notes. Please make sure to use the right template!

Please be aware deprecations follow a different process in a different project and you should not be using this MR template unless you are making edits to a release post prior to 14.4.

Links

  • Feature Issue (required): gitlab-org#19802
  • Pricing theme MR (required for primary features in Premium or Ultimate only):
  • Feature MR (optional):
  • Feature Flag Issue (optional):

Release Post

---
features:
  secondary:
  - name: "Pipeline secret detection in security configuration profiles"
    available_in: [ultimate]
    documentation_link: 'https://docs.gitlab.com/ee/user/application_security/configuration/security_configuration_profiles.html'
    gitlab_com: true
    self_managed: true
    gitlab_dedicated: true
    gitlab_dedicated_for_government: true
    add_ons: []
    reporter: m-omokoh
    stage: security_risk_management
    categories:
    - 'Vulnerability Management'
    image_url: '/images/unreleased/security-platform-management-pipeline-sd-profiles.png'
    issue_url:
    - 'https://gitlab.com/groups/gitlab-org/-/work_items/19802'
    description: |
      In GitLab 18.9, we introduced security configuration profiles with the Secret Detection - Default profile, starting with push protection. You can now apply standardized secret scanning enablement across hundreds of projects without touching a single CI/CD configuration file.

      The Secret Detection - Default profile now extends to cover pipeline-based scanning, completing a unified control surface for secret detection across your entire development workflow.

      The profile activates three scan triggers:

      - **Push Protection**: Scans all Git push events and blocks pushes where secrets are detected, preventing secrets from ever entering your codebase.
      - **Merge Request Pipelines**: Automatically runs a scan each time new commits are pushed to a branch with an open merge request. Results are scoped to new vulnerabilities introduced by the merge request.
      - **Branch Pipelines (default only)**: Runs automatically when changes are merged or pushed to the default branch, providing a complete picture of your default branch's secret detection posture.

      Applying the profile requires no YAML configuration. The profile can be applied at the group level to propagate coverage across all projects in scope, or at the project level for more granular control.

Key dates

  • By Monday of the week the milestone ends: PMs should draft/submit for review ALL release post item content, whether they are feature or recurring blocks, earlier and no later than the Monday of the week the milestone ends.
  • By Thursday, the day before the milestone ends: All required TW reviews as well as any optional PMM and PM Director/Group Manager reviews and resulting revisions should get done no later than Thursday, the day before the milestone ends.
  • By the Friday the milestone ends: Release post items need to be marked with the Ready label in order to be merged for the current release post.
  • By the end of the Friday the milestone ends: EMs will merge RP items with the Ready label by the end of day 11:59PM PT on the Friday the milestone ends. Any MRs merged into master after 11:59PM PT will not make the release post and need to follow this process:

If you need to make a change or addition to a release post item after 11:59PM PT on the Friday the milestone ends, open a new MR targeting the release-X-Y branch and assign to the Release Post Manager, with @mention of the lead Tech Writer and PMM. Please do not re-target the existing MR. Revisions for content in the release post branch should be made with new MRs targeted to the release post branch. It is important you follow the instructions on how to create a new MR to the release X-Y branch in Adding, editing, or removing merged content blocks after the Monday of release week and before the release date. It's highly recommended the PM connect with the release post manager to make sure content can still be added prior to creating the new MR.

Notes: Drafting release post content well in advance of the Monday of the week the milestone ends is highly recommended so reviews/revisions can happen in a rolling fashion and not bottleneck against the merge due date which is the Friday the milestone ends.

Getting ready for merge

Reminder: Make sure any feature flags have been enabled or removed!

Once all content is reviewed and complete, add the Ready label and set the Engineering Manager (EM) as the Assignee. The EM is responsible for merging as soon as the implementing feature is deployed to GitLab.com, after which this content will appear on the GitLab.com Release page and can be included in the next release post. All release post items must be merged on or before the Friday the milestone ends. If a feature is not ready by the due date of the Friday the milestone ends the EM should push the release post item to the next milestone.

PM release post item checklist

Expand for Details

Please only mark a section as completed once you performed all individual checks!

  • Set yourself as the Assignee.
  • Why? – The benefit of this feature to the user is clearly explained
    • What is the problem we are solving for the user, and how is the situation improved?
    • Be specific about the problem, using examples so that the reader can recall the last time they had that problem.
    • Be specific about the solution, using examples so that the reader can quickly understand the improvement.
    • Describe the benefits in terms of outcomes like productivity, efficiency, velocity, communication.
    • Avoid feature language, like removing a limitation, that focuses on the product and not our users.
    • Avoid assumed knowledge, assume a customer or prospect will be linked this description without context.
  • Title:
  • Content:
    • Make it clear if it is a new feature, or an improvement to an existing feature.
    • If your item is a deprecation, upgrade or removal reference the appropriate section in the release-posts handbook page for guidance. Please also see communication guidelines for breaking changes.
    • Make sure your content is reasonably aligned with guidance in Writing about features
    • Check title is in sentence case, and feature and product names are in capital case.
    • Run the content through an automated spelling and grammar check.
    • Validate all links are functional and have meaningful text for SEO (e.g., "click here" is bad link text).
  • Images and Video:
    • Screenshot or video is included (required for all changes with a visible UI component). Consider preferring a speed run video since this will showcase your feature better, and also serve as a functional test to validate that it actually works as expected.
    • Check that the image follows the image guidelines. It should be less than 150 KB, and minimizes empty space.
    • Check if the image shadow is applied correctly. Add image_noshadow: true when an image already has a shadow.
    • Ensure screenshots have realistic looking data. Avoid screenshots that say "test", "demo", "example".
    • Remove any remaining instructions (comments).
  • Frontmatter:
    • Check feature availability frontmatter (available_in:) is correct: (Core, Premium, Ultimate). Make sure to set gitlab_com: false when the feature isn't available for GitLab.com users.
    • Check documentation link points to the latest docs (documentation_link:), and includes the anchor to the relevant section on the page if possible.
    • Check that documentation is updated, very clearly talks about the feature (mentions it by the same name consistently in all resources).
    • Check that all links to about.gitlab.com content are relative URLs.
  • Review Experiment, Beta, and General Availability guidelines
  • Add Reviewers: Once the above are complete, add the Tech Writer, PMM, and Group Manager or Director as Reviewers.
  • If this MR is a community contribution, consider nominating the contributor for MVP.

Pricing theme updates for Premium and Ultimate primary features

This is required as part of the release post workflow. However, since review/alignment on this may take longer than the release post allows, please use a separate MR to de-couple timeline dependencies.

Expand for Details
  • In the bottom right corner of this screen, copy the name of the "Source branch"
  • Create a new branch
  • Paste the name of this branch into the name and append it with "-pricing-theme"
  • Select this branch name as the source from the "Create from" field
  • Click "Create Branch"
  • Click the "Create merge request" button that appears near the top of the UI
  • Choose the Pricing Theme template in the new MR and follow the steps in the template

Review

When the above is complete and the content is ready for review, it must be reviewed by Tech Writing. It can also be reviewed by Product Marketing, Product Design, and the Product Leader for this area.

Use the Reviewers for Merge Requests feature in GitLab when adding team members for content reviews. Reviewers will then approve the MR and remove themselves from Reviewers when their review is complete.

Tip: Try using the Review App in this MR to see exactly how the release post item is rendered.

Tech writer review

Expand for Details

After the technical writer from the corresponding group is added as a reviewer to this merge request, they will perform their review.

Please mark a section as complete only after you performed all individual checks!

  • Feature: If the feature is listed as secondary, updating features.yml is optional.
  • Name/title: Try to limit to 7 words (not including articles or prepositions). Use sentence case.
  • Feature availability: Ensure available_in: is correct. Ensure the offering fields (gitlab_com:, self_managed:, gitlab_dedicated:, gitlab_dedicated_for_government:) are accurately set to true or false.
  • Documentation link: Ensure the documentation_link links to the correct document and anchor, and is wrapped in single quotes.
  • Image URL: The image should be smaller than 150 KB.
  • Links: Make sure the linked issue_url or epic_url is correct. Verify that all links and anchors work as intended.
  • Description: Review the content. Make sure it accurately describes the feature. Look for typos or grammar mistakes.

Notes:

  • If checklist items are incomplete, tell the PMs or other team members. You can remove yourself as a reviewer, but request to be added back after the missing tasks are done.
  • After all checklist items are done, approve the merge request, select your checkbox in the review checklist, and remove yourself from the list of reviewers. Your job is done!

PMM review

PMM Review is Optional

Expand for Details

Please only mark this section as completed once you performed all individual checks! When your review is complete, please approve this MR and remove yourself from Reviewers.

  • PMM review
    • problem/solution: Does this describe the user pain points (problem) as well as how the new feature removes the pain points (solves the problem)?
      • short/pithy: Is this communicated clearly with the fewest words possible?
      • tone clarify: Is the language and sentence structure clear and grammatically correct?
      • technical clarity: Does the description of the feature make sense for various audiences, including folks who are not deeply familiar with GitLab?
    • Check/copyedit all your content blocks (including links/images)
    • If you think any features should change from primary to secondary, add a suggestion to the release post item and ping the PM owner to review.
    • Check/copyedit features.yml

EM release post item checklist

Expand for Details
  • Set at least one code MR as a blocker for this MR by going to Edit > Merge request dependencies.
  • When this MR is labeled as Ready and assigned to you:
    • Confirm the feature is in the release and note the following:
      • Be aware that merging code to master "does not guarantee that the feature will be in the release" (source).
      • If in doubt, you should confirm the feature commits are in the x-y-stable-ee branch (for example, 13-12-stable-ee).
      • You can also use the chatops command /chatops run release check [MR_URL] [RELEASE] to check if the MR will be included in the release.
    • If the feature has a feature flag, verify it is enabled by default.
    • If before 11:59PM PT on the Friday the milestone ends, merge this merge request to the master branch. If after that time, but you believe this should be merged late, follow the process for late additions and be sure to inform the release post manager.
 tag:gitlab.com,2026-03-10:5187114112 Or Gal commented on issue #520499 at GitLab.org / GitLab 2026-03-10T11:42:48Z or-gal Or Gal

@vpedak1 Looks great, thanks! Looking forward to seeing the MR 🙏

 tag:gitlab.com,2026-03-09:5181980695 Or Gal closed issue #575741: 18.6 Milestone Planning Issue - Security Platform Management at GitLab.org / GitLab 2026-03-09T11:12:28Z or-gal Or Gal tag:gitlab.com,2026-03-09:5181949707 Or Gal closed issue #556953: Remaining questions: Retrieval and display of security attributes at GitLab.org / GitLab 2026-03-09T11:05:34Z or-gal Or Gal tag:gitlab.com,2026-03-09:5181876153 Or Gal commented on issue #592069 at GitLab.org / GitLab 2026-03-09T10:52:05Z or-gal Or Gal

@gkatz1 @rossfuhrman Please provide @vpedak1 some background knowledge about the various feature categories and he will take this issue

 tag:gitlab.com,2026-03-08:5179613430 Or Gal pushed to project branch master at GitLab.com / www-gitlab-com 2026-03-08T17:39:02Z or-gal Or Gal

Or Gal (cb9cff7e) at 08 Mar 17:39

Merge branch 'vp-team-page-update-srmspm-mar03' into 'master'

... and 1 more commit

tag:gitlab.com,2026-03-08:5179612850 Or Gal deleted project branch vp-team-page-update-srmspm-mar03 at GitLab.com / www-gitlab-com 2026-03-08T17:38:31Z or-gal Or Gal

Or Gal (21d9c268) at 08 Mar 17:38

tag:gitlab.com,2026-03-08:5179612640 Or Gal accepted merge request !142754: Update my team info according to canonical approach at GitLab.com / www-gitlab-com 2026-03-08T17:38:20Z or-gal Or Gal

Why is this change being made?

💡 Provide a detailed answer to the question on why this change is being proposed, in accordance with our value of Transparency.

Please add the details saying why, not just what in this section. Example: We have discussed the topic in Slack - (copy of Slack conversation). The current process is not efficient, this MR makes the description of X more clear, and helps move Y forward.

Update my team info according to the canonical approach: include link to the role

Author and Reviewer Checklist

Please verify the check list and ensure to tick them off before the MR is merged.

  • Provided a concise title for this Merge Request (MR)
  • Added a description to this MR explaining the reasons for the proposed change, per say why, not just what
    • Copy/paste the Slack conversation to document it for later, or upload screenshots. Verify that no confidential data is added, and the content is SAFE
  • Assign reviewers for this MR to the correct Directly Responsible Individual/s (DRI)
    • If the DRI for the page/s being updated isn’t immediately clear, then assign it to one of the people listed in the Maintained by section on the page being edited
    • If your manager does not have merge rights, please ask someone to merge it AFTER it has been approved by your manager in #mr-buddies
    • The when to get approval handbook section explains the workflow in more detail
  • For transparency, share this MR with the audience that will be impacted.
    • Team: For changes that affect your direct team, share in your group Slack channel
    • Department: If the update affects your department, share the MR in your department Slack channel
    • Company: If the update affects all (or the majority of) GitLab team members, post an update in #whats-happening-at-gitlab linking to this MR

Commits

  • Update my team info according to canonical approach
 tag:gitlab.com,2026-03-08:5179590927 Or Gal commented on issue #578392 at GitLab.org / GitLab 2026-03-08T17:24:08Z or-gal Or Gal

@m-omokoh we are aligned 👍

 tag:gitlab.com,2026-03-08:5179588719 Or Gal approved merge request !142754: Update my team info according to canonical approach at GitLab.com / www-gitlab-com 2026-03-08T17:22:05Z or-gal Or Gal

Why is this change being made?

💡 Provide a detailed answer to the question on why this change is being proposed, in accordance with our value of Transparency.

Please add the details saying why, not just what in this section. Example: We have discussed the topic in Slack - (copy of Slack conversation). The current process is not efficient, this MR makes the description of X more clear, and helps move Y forward.

Update my team info according to the canonical approach: include link to the role

Author and Reviewer Checklist

Please verify the check list and ensure to tick them off before the MR is merged.

  • Provided a concise title for this Merge Request (MR)
  • Added a description to this MR explaining the reasons for the proposed change, per say why, not just what
    • Copy/paste the Slack conversation to document it for later, or upload screenshots. Verify that no confidential data is added, and the content is SAFE
  • Assign reviewers for this MR to the correct Directly Responsible Individual/s (DRI)
    • If the DRI for the page/s being updated isn’t immediately clear, then assign it to one of the people listed in the Maintained by section on the page being edited
    • If your manager does not have merge rights, please ask someone to merge it AFTER it has been approved by your manager in #mr-buddies
    • The when to get approval handbook section explains the workflow in more detail
  • For transparency, share this MR with the audience that will be impacted.
    • Team: For changes that affect your direct team, share in your group Slack channel
    • Department: If the update affects your department, share the MR in your department Slack channel
    • Company: If the update affects all (or the majority of) GitLab team members, post an update in #whats-happening-at-gitlab linking to this MR

Commits

  • Update my team info according to canonical approach
 tag:gitlab.com,2026-03-08:5179583963 Or Gal commented on issue #589532 at GitLab.org / GitLab 2026-03-08T17:17:41Z or-gal Or Gal

FYI @ccharnolevsky