* Hide toggle behind feature flag
* Define component, update card logic, add graphQL mutation

* Remove frontend constants
* Update parsing function in frontend to account for using backend data

Refactor file location. Merge constants file and move
it to subfolder root.

Changelog: changed
EE: true

Remove the global_dependency_scanning_on_advisory_ingestion flag.
As a result, Continuous Vulnerability Scanning (CVS)
for Dependency Scanning always runs globally,
and the opt-in behavior introduced when the feature
was experimental is no longer available.

Changelog: changed
EE: true

* Added new global_dependency_scanning_on_advisory_ingestion flag

Changelog: changed

This change removes the webpack alias for `@sentry/browser` that
points to `~/sentry/sentry_browser_wrapper`.

This change is aimed to reduce indirection and make it easier for users
to debug Sentry calls.

This add the feature to enable continuous vulnerability
scans in Security Configuration page.

This change is behind a feature flag.

- remove tab
- update tests

Changelog: removed

EE: true

* Use toBeDefined instead of toBe('true')

- Moved upgrade_banner to ee and use ee_component
- Added ee specific spec to check for upgrade_banner

Changelog: changed

Introduce the Breach and Attack Simulation Incubation project to users
in the Security Configuration page. Add a security feature for BAS
Learn more link and help guide for enabling the DAST BAS feature flag.

Changelog: changed

This is just a refactoring of the error parsing mechanism
on the frontend

This commit solves: https://gitlab.com/gitlab-org/gitlab/-/issues/386854
It enhances the error handling for the Security & Compliance Configuration
to make the distinction between user-facing and non-user facing errors.
To achieve this behaviour this commit introduces a Backend and a
Frontend util to make User facing errors distinguishable by adding
and parsing a prefix.

Changelog: changed
EE: true

Andrei Zubov 创作于 2 years ago ，Vitaly Slobodin 提交于 2 years ago

* update @gitlab/eslint-plugin to the 18.2.0
* enable vtu-no-explicit-wrapper-destroy rule for spec files

Within the "Security and Compliance" menu. We also make sure that all
the existing "Security Configuration" breadcrumbs match the sentence
casing. We also fix a few sentence casing issues in children pages:

- DAST Configuration => DAST configuration
- SAST Configuration => SAST configuration

The choice not to rename "API Fuzzing Configuration" to
"API fuzzing configuration" was made deliberately, because there are so
many wrong cased "Fuzz"es in the code base, that it would blow up the
scale of this changeset too much.

Part of: https://gitlab.com/gitlab-org/gitlab/-/issues/378546

Changelog: changed

Vue 3 does not expose the name of the directive on the binding, so we
must explicitly pass a name to createMockDirective when setting up a
mock.

This is to assist with the slow migration to Vue 3.

GitLab Dependency Bot 创作于 2 years ago ，Vitaly Slobodin 提交于 2 years ago

This also fixes/works around/ignores some of the new lint errors.

* using `find` to find components is deprecated in `@vue/test-utils`

See Merge Request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/94716

Most problems come due to a breaking change in Jest 27
and new fake timers implementation. Additional extra tick
happens between Jest event hook. For instance, if our test
validates the component loading state and we create a component
in "beforeEach" hook the loading state will go away
due to an extra tick in between "beforeEach" and "it" blocks.

Another problem is changed Jest matchers for string and numbers.
Jest 27 validates the type by default when we use matchers like
"toContain", "toBe". The solution is to call "toString" function
on expected values as VTU and Vue.js in general renders everything
as strings.

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/366665

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/365355

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/358180

Changelog: added

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/358183

Changelog: fixed

This reverts merge request !86639

Changelog: changed
MR: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/86639

This commit adds an error handler to the query, which is responsible
for fetching the license tier of the current user. Currently if
the query fails, the whole security training feature is not show.

Changelog: fixed
EE: true

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/357327

Changelog: changed

This MR changes layout of new/edit DAST scanner configuration.
It now looks similar to Security Configuration.
It has two columns layout and scan schedule is updated
according to design.

Changelog: changed
MR: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/84906
EE: true

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/346308

Changelog: changed

New component, feature-card-badge, is displayed on DAST
configuration card. It is shown based on feature configuration.
New property "badge" can be added to
a specific feature via backend or frontend.
Layout of the card is adjusted accordingly
based on configuration. Specs are adjusted accordingly.
feature-card-badge has internal logic for conditional
tooltip rendering.

Changelog: changed
MR: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/83723
EE: true

Closes https://gitlab.com/gitlab-org/gitlab/-/issues/356279

Due to an open issue within gitlab-ui the settings for the primary
security training provider were using a native form radio.

Since then the issue with `GlFormRadio` has been fixed and
we are now using it instead of the native radio buttons.

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/349035

This commit adds a temporary workaround to address an issue
with the "learn more" links for security providers on the
security-training configuration page.

Use import svg logos as relative path is not working in production

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/355119

Issue: https://gitlab.com/gitlab-org/gitlab/-/issues/346899