This add the feature to enable continuous vulnerability
scans in Security Configuration page.

This change is behind a feature flag.

Add sidebar component for standards adherence list page

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/128813



Merged-by: Phil Hughes <me@iamphill.com>
Approved-by: Libor Vanc <5022246-lvanc@users.noreply.gitlab.com>
Approved-by: Lorenz van Herwaarden <lvanherwaarden@gitlab.com>
Approved-by: Phil Hughes <me@iamphill.com>
Reviewed-by: Phil Hughes <me@iamphill.com>
Reviewed-by: Evan Read <eread@gitlab.com>
Reviewed-by: Jay Montal <jmontal@gitlab.com>
Reviewed-by: Lorenz van Herwaarden <lvanherwaarden@gitlab.com>
Co-authored-by: Jay Montal <jmontal@gitlab.com>

- Adds list using GlTable

Changelog: added
EE: true

Migrates legacy dropdown in embed_dropdown

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131584



Merged-by: Ankit Panchal <apanchal@gitlab.com>
Approved-by: Annabel Dunstone Gray <annabel.dunstone@gmail.com>
Approved-by: Ankit Panchal <apanchal@gitlab.com>
Approved-by: Minahil Nichols <minahilnichols@gitlab.com>
Reviewed-by: Artur Fedorov <afedorov@gitlab.com>
Reviewed-by: Ankit Panchal <apanchal@gitlab.com>
Co-authored-by: Artur Fedorov <afedorov@gitlab.com>

Migrate legacy GlDropdown to GlDisclosure
according to pajamas migrations

Changelog: changed
EE: true

Update Gitaly version

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131868



Merged-by: release-tools approver bot <project278964_bot6@example.com>
Approved-by: release-tools approver bot <project278964_bot6@example.com>
Co-authored-by: GitLab Release Tools Bot <delivery-team+release-tools@gitlab.com>

Add analytics visualization designer feature flag

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131634



Merged-by: Halil Coban <hcoban@gitlab.com>
Approved-by: Minahil Nichols <minahilnichols@gitlab.com>
Approved-by: Aakriti Gupta <agupta@gitlab.com>
Approved-by: Halil Coban <hcoban@gitlab.com>
Approved-by: Elwyn Benson <ebenson@gitlab.com>
Co-authored-by: Jiaan Louw <3468028-jiaan@users.noreply.gitlab.com>
Co-authored-by: Minahil Nichols <minahilnichols@gitlab.com>
Co-authored-by: Jiaan Louw <jlouw@gitlab.com>

- Add a new combined_analytics_visualization_editor feature flag
- Hide the analytics "Visualization designer" button unless enabled
- Update specs

Cleanup JSON parsing for TanukiBot responses

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131294



Merged-by: Denys Mishunov <dmishunov@gitlab.com>
Approved-by: Denys Mishunov <dmishunov@gitlab.com>
Reviewed-by: Denys Mishunov <dmishunov@gitlab.com>
Co-authored-by: Pavel Shutsin <pshutsin@gitlab.com>

Enqueue assignments refresh worker

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131274



Merged-by: Manoj M J <mmj@gitlab.com>
Approved-by: Josianne Hyson <jhyson@gitlab.com>
Approved-by: Manoj M J <mmj@gitlab.com>
Reviewed-by: Manoj M J <mmj@gitlab.com>
Reviewed-by: Josianne Hyson <jhyson@gitlab.com>
Reviewed-by: Bishwa Hang Rai <bhrai@gitlab.com>
Co-authored-by: Bishwa Hang Rai <bhrai@gitlab.com>

Use batch relation from each_batch to
find the list of ineligbile user_ids to delete.

Use a CTE to speed up the Group#sbom_occurrences query

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131652



Merged-by: David Fernandez <dfernandez@gitlab.com>
Approved-by: Siddharth Dungarwal <sdungarwal@gitlab.com>
Approved-by: Jarka Košanová <jarka@gitlab.com>
Approved-by: Dylan Griffith <dyl.griffith@gmail.com>
Approved-by: David Fernandez <dfernandez@gitlab.com>
Co-authored-by: mo khan <mo@mokhan.ca>

```bash
RSpec::Retry: 2nd try ./ee/spec/services/dependencies/export_serializers/group_dependencies_service_spec.rb:33
    when the group has dependencies
      example at ./ee/spec/services/dependencies/export_serializers/group_dependencies_service_spec.rb:43 (FAILED - 2)

1st Try error in ./ee/spec/services/dependencies/export_serializers/group_dependencies_service_spec.rb:43:
PG::AmbiguousColumn: ERROR:  column reference "id" is ambiguous
LINE 1: ... AND "projects"."pending_delete" = FALSE)) SELECT id FROM "o...
```

```sql
WITH "our_occurrences" AS MATERIALIZED (
  SELECT "sbom_occurrences".*
  FROM "sbom_occurrences"
  WHERE "sbom_occurrences"."project_id" IN (
    SELECT "projects"."id"
    FROM "projects"
    WHERE "projects"."namespace_id" IN (
      SELECT namespaces.traversal_ids[array_length(namespaces.traversal_ids, 1)] AS id
      FROM "namespaces"
      WHERE "namespaces"."type" = 'Group'
      AND (traversal_ids @> ('{3456}'))
    )
    AND "projects"."marked_for_deletion_at" IS NULL
    AND "projects"."pending_delete" = FALSE
  )
)
SELECT id
FROM "our_occurrences" AS "sbom_occurrences"
LEFT OUTER JOIN "projects" ON "projects"."id" = "sbom_occurrences"."project_id"
LEFT OUTER JOIN "routes" ON "routes"."source_type" = 'Project' AND "routes"."source_id" = "projects"."id"
INNER JOIN (
  SELECT component_id,
        COUNT(DISTINCT id) AS occurrence_count,
        COUNT(DISTINCT project_id) AS project_count
  FROM our_occurrences
  GROUP BY component_id
) agg_occurrences ON sbom_occurrences.component_id = agg_occurrences.component_id
ORDER BY "sbom_occurrences"."id" ASC
LIMIT 1000;
```

ci: Enable Merge Request notes for slow RSpec tests

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/128880



Merged-by: Rémy Coutable <remy@rymai.me>
Approved-by: Rémy Coutable <remy@rymai.me>
Reviewed-by: Rémy Coutable <remy@rymai.me>
Co-authored-by: Alina Mihaila <amihaila@gitlab.com>

Exclude terminated workspaces from full reconcile

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131853



Merged-by: Alper Akgun <aakgun@gitlab.com>
Approved-by: Alper Akgun <aakgun@gitlab.com>
Reviewed-by: Chad Woolley <cwoolley@gitlab.com>
Co-authored-by: Chad Woolley <cwoolley@gitlab.com>

Silent Mode - Add experiment badge

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131686



Merged-by: Lukas 'Eipi' Eipert <leipert@gitlab.com>
Approved-by: Nataliia Radina <nradina@gitlab.com>
Approved-by: Lukas 'Eipi' Eipert <leipert@gitlab.com>
Reviewed-by: Lukas 'Eipi' Eipert <leipert@gitlab.com>
Co-authored-by: Zachary Cuddy <zcuddy@gitlab.com>

This change adds the experiment badge to the settings.

Changelog: added

Merge branch '423541-index_vulnerabilities_on_finding_id-synchronous-database-index-addition' into 'master' 

Synchronous index for `finding_id` to the `vulnerabilities` table

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131739



Merged-by: Eulyeon Ko <5961404-euko@users.noreply.gitlab.com>
Approved-by: Eulyeon Ko <5961404-euko@users.noreply.gitlab.com>
Co-authored-by: Michael Becker <11881043-wandering_person@users.noreply.gitlab.com>

The asynchronous index was added in
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/130007

related to https://gitlab.com/gitlab-org/gitlab/-/issues/418970
resolves https://gitlab.com/gitlab-org/gitlab/-/issues/423541

Changelog: changed
EE: true

Prepend mod to RestrictedSignup

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131719



Merged-by: Marc Shaw <mshaw@gitlab.com>
Approved-by: mo khan <mo@mokhan.ca>
Approved-by: Félix Veillette-Potvin <fveillette@gitlab.com>
Approved-by: Marc Shaw <mshaw@gitlab.com>
Reviewed-by: mo khan <mo@mokhan.ca>
Co-authored-by: Baodong <wwwicbd@gmail.com>

Prefixes OAuth Application Secrets with gloas

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131601



Merged-by: Bojan Marjanovic <bmarjanovic@gitlab.com>
Approved-by: Lorenz van Herwaarden <lvanherwaarden@gitlab.com>
Approved-by: Aakriti Gupta <agupta@gitlab.com>
Approved-by: Bojan Marjanovic <bmarjanovic@gitlab.com>
Reviewed-by: Aakriti Gupta <agupta@gitlab.com>
Reviewed-by: Nick Malcolm <nmalcolm@gitlab.com>
Reviewed-by: Bojan Marjanovic <bmarjanovic@gitlab.com>
Co-authored-by: Nick Malcolm <nmalcolm@gitlab.com>
Co-authored-by: Aakriti Gupta <agupta@gitlab.com>

GitLab applies a prefix to some of its generated secrets. For example,
a Personal Access Token begins with glpat-. This MR adds a prefix to
OAuth Application Secrets. This is distinct from OAuth _Access
Tokens_.

Learn more about OAuth Applications at https://docs.gitlab.com/ee/integration/oauth_provider.html

Resolves https://gitlab.com/gitlab-org/gitlab/-/issues/376747

Update dependency rack-proxy to '~> 0.7.7'

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/130706



Merged-by: Rémy Coutable <remy@rymai.me>
Approved-by: Rémy Coutable <remy@rymai.me>
Co-authored-by: GitLab Renovate Bot <gitlab-bot@gitlab.com>

Enable violation export conditionally with FF

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131206



Merged-by: Huzaifa Iftikhar <hiftikhar@gitlab.com>
Approved-by: Malcolm Locke <mlocke@gitlab.com>
Approved-by: Huzaifa Iftikhar <hiftikhar@gitlab.com>
Reviewed-by: Evan Read <eread@gitlab.com>
Reviewed-by: Huzaifa Iftikhar <hiftikhar@gitlab.com>
Reviewed-by: Malcolm Locke <mlocke@gitlab.com>
Co-authored-by: Sam Figueroa <sfigueroa@gitlab.com>

- Still requires feature flag to be enabled for group

- Add docs for compliance violation export

- Refs: https://gitlab.com/gitlab-org/gitlab/-/issues/356791

- Refs: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131206#note_1548460097

Changelog: added
EE: true

Resolve "Introduce GitLab Duo scope for personal access tokens"

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131034



Merged-by: Madelein van Niekerk <mvanniekerk@gitlab.com>
Approved-by: Jessie Young <jessieyoung@gitlab.com>
Approved-by: Greg Alfaro <galfaro@gitlab.com>
Reviewed-by: Nicolas Dular <ndular@gitlab.com>
Reviewed-by: Eduardo Bonet <ebonet@gitlab.com>
Reviewed-by: Jessie Young <jessieyoung@gitlab.com>
Co-authored-by: Eduardo Bonet <ebonet@gitlab.com>

Adding a new scope allows us to minimize the permission needed for a
token used to access GitLab Duo features. The following endpoints can
now be accessed through duo scope:

- GET /metadata
- GET /version
- GET /code_suggestions/*
- POST /code_suggestions/*

Changelog: added
EE: true

Introduce default global CI config for id_tokens

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/129592



Merged-by: Fabio Pitino <fpitino@gitlab.com>
Approved-by: Michael Becker <11881043-wandering_person@users.noreply.gitlab.com>
Approved-by: Fabio Pitino <fpitino@gitlab.com>
Reviewed-by: Fabio Pitino <fpitino@gitlab.com>
Reviewed-by: Michael Becker <11881043-wandering_person@users.noreply.gitlab.com>
Co-authored-by: Dmytro Biryukov <dbiryukov@gitlab.com>
Co-authored-by: Marcel Amirault <mamirault@gitlab.com>

Add a graphql mutation for toggling cvs

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131450



Merged-by: charlie ablett <cablett@gitlab.com>
Approved-by: Ross Byrne <robyrne@gitlab.com>
Approved-by: Ryan Cobb <rcobb@gitlab.com>
Approved-by: charlie ablett <cablett@gitlab.com>
Reviewed-by: charlie ablett <cablett@gitlab.com>
Reviewed-by: Igor Frenkel <ifrenkel@gitlab.com>
Co-authored-by: Igor Frenkel <ifrenkel@gitlab.com>

Add mutation to enable or disable Continuous Vulnerability
Scans for a project.

Changelog: added
EE: true

Fix flaky csv_service_spec

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131754



Merged-by: Marius Bobin <mbobin@gitlab.com>
Approved-by: Gregory Havenga <11164960-ghavenga@users.noreply.gitlab.com>
Approved-by: Marius Bobin <mbobin@gitlab.com>
Co-authored-by: Mehmet Emin INAC <minac@gitlab.com>

Fixed sligthly off text element on CI job sidebar

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131751



Merged-by: Lukas 'Eipi' Eipert <leipert@gitlab.com>
Approved-by: Ross Byrne <robyrne@gitlab.com>
Approved-by: Lukas 'Eipi' Eipert <leipert@gitlab.com>
Co-authored-by: Marco Zille <marco.zille@gmail.com>

Migrate from ci_label_for_status in template

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/130430



Merged-by: Stan Hu <stanhu@gmail.com>
Approved-by: Ammar Alakkad <aalakkad@gitlab.com>
Approved-by: Stan Hu <stanhu@gmail.com>
Reviewed-by: Miguel Rincon <mrincon@gitlab.com>
Co-authored-by: Miguel Rincon <mrincon@gitlab.com>

This change migrates from ci_label_for_status to detailed_status in
template and make the method private to prevent it from being reused.

Finalize index on merge_requests.merged_commit_sha

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/131682



Merged-by: Adam Hegyi <ahegyi@gitlab.com>
Approved-by: Terri Chu <tchu@gitlab.com>
Approved-by: Adam Hegyi <ahegyi@gitlab.com>
Co-authored-by: Hordur Freyr Yngvason <hfyngvason@gitlab.com>

Docs: Tutorial: Automate runner creation and registration

See merge request https://gitlab.com/gitlab-org/gitlab/-/merge_requests/130436



Merged-by: Ashraf Khamis <akhamis@gitlab.com>
Approved-by: Pedro Pombeiro <noreply@pedro.pombei.ro>
Approved-by: Ashraf Khamis <akhamis@gitlab.com>
Reviewed-by: Pedro Pombeiro <noreply@pedro.pombei.ro>
Co-authored-by: fneill <fneill@gitlab.com>
Co-authored-by: Pedro Pombeiro <noreply@pedro.pombei.ro>