自动推荐 security reviewer 的机制
类似 Global,可以通过 @triage-bot 来推荐一个 security reviewer, 一个 MR 有了任何代码改动都需要重新做 security review
Main point
- Add two labels in gitlab-cn/gitlab project:
~security-review::pendingand~security-review::approved - Add security info in members data (Current: Fu, Martin, Baodong)
- Add security-review CI in gitlab project, always failed when have no label
~security-review::approved - When MR got first approval, a label
~security-review::pendingand a comment to notify security members will be automatically added - When MR with label
~security-review::approvedhas been updated, the label will be changed to~security-review::pending, and need renotify security members in the same comment
由 Song Huang 编辑于