Seperate gitlab_sec updates from gitlab_main transaction

Changelog: changed EE: true

Seperate gitlab_sec updates from gitlab_main transaction
debda5dd · Gregory Havenga · GitLab · fcf93c07 · debda5dd
--- a/ee/app/services/vulnerabilities/starboard_vulnerability_create_service.rb
+++ b/ee/app/services/vulnerabilities/starboard_vulnerability_create_service.rb
@@ -39,40 +39,28 @@ def execute
        )
      end
-      response = nil
+      vulnerability_service_response = Vulnerability.transaction do
-      Gitlab::Database::QueryAnalyzers::PreventCrossDatabaseModification.temporary_ignore_tables_in_transaction(
+        finding.save!
-        %w[
+        vulnerability.vulnerability_finding = finding
-          vulnerabilities
+        vulnerability.save!
-          vulnerability_historical_statistics
+        finding.update!(vulnerability_id: vulnerability.id)
-          vulnerability_identifiers
-          vulnerability_occurrences
+        vulnerability.vulnerability_read.update!(traversal_ids: project.namespace.traversal_ids)
-          vulnerability_occurrence_identifiers
+        update_security_statistics!
-          vulnerability_reads
-          vulnerability_scanners
+        Statistics::UpdateService.update_for(vulnerability)
-          cluster_agents
-          project_settings
+        ServiceResponse.success(payload: { vulnerability: vulnerability })
-        ], url: 'https://gitlab.com/gitlab-org/gitlab/-/issues/476584'
+      end
-      ) do
-        response = Vulnerability.transaction do
+      Project.transaction do
-          finding.save!
+        agent.update!(has_vulnerabilities: true) unless agent.has_vulnerabilities?
-          vulnerability.vulnerability_finding = finding
+        project.mark_as_vulnerable!
-          vulnerability.save!
-          finding.update!(vulnerability_id: vulnerability.id)
-          agent.update!(has_vulnerabilities: true) unless agent.has_vulnerabilities?
-          vulnerability.vulnerability_read.update!(traversal_ids: project.namespace.traversal_ids)
-          project.mark_as_vulnerable!
-          update_security_statistics!
-          Statistics::UpdateService.update_for(vulnerability)
-          ServiceResponse.success(payload: { vulnerability: vulnerability })
-        end
      end
-      process_archival_and_traversal_ids_changes if response&.success?
+      process_archival_and_traversal_ids_changes if vulnerability_service_response&.success?
-      response
+      vulnerability_service_response
    rescue ActiveRecord::RecordInvalid => e
      ServiceResponse.error(message: e.message)
    end