summaryrefslogtreecommitdiff
path: root/tooling/config/CODEOWNERS.yml
blob: 0fb336f3857278713b14fc9530f05dca61cd62aa (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
# This is supposed to be used with:
#     tooling/bin/find_codeowners tooling/config/CODEOWNERS.yml
# And paste the contents into .gitlab/CODEOWNERS

'[Authentication and Authorization]':
  '@gitlab-org/manage/authentication-and-authorization/approvers':
    allow:
      keywords:
        - 'password'
        - 'auth'
        - 'token'
      patterns:
        - '/{,ee/}app/**/*%{keyword}*{,/**/*}'
        - '/{,ee/}config/**/*%{keyword}*{,/**/*}'
        - '/{,ee/}lib/**/*%{keyword}*{,/**/*}'
    deny:
      keywords:
        - '*author{,s}.*'
        - '*author{,s}_*'
        - '*authored*'
        - '*authoring*'
        - '*.png'
        - '*.svg'
        - '*deploy_token{,s}{*,/**/*}'
        - '*runner{,s}_token*'
        - '*job_token{,_scope}{*,/**/*}'
        - '*autocomplete_tokens*'
        - 'dast_site_token*'
        - 'reset_prometheus_token*'
        - 'reset_registration_token*'
        - 'runners_registration_token{*,/**/*}'
        - 'terraform_registry_token*'
        - 'filtered_search{_bar,}/'
        - 'alert_management/'
        - 'analytics/'
        - 'bitbucket/'
        - 'clusters/'
        - 'clusters_list/'
        - 'dast/'
        - 'dast_profiles/'
        - 'dast_site_tokens/'
        - 'dast_site_validation/'
        - 'dependency_proxy/'
        - 'error_tracking/'
        - 'google_api/'
        - 'google_cloud/'
        - 'jira_connect/'
        - 'kubernetes/'
        - 'protected_environments/'
        - '/config/feature_flags/**/*'
        - '/config/metrics/'
        - '/app/controllers/groups/dependency_proxy_auth_controller.rb'
        - '/app/finders/ci/auth_job_finder.rb'
        - '/ee/config/metrics/'
        - '/lib/gitlab/conan_token.rb'
      patterns:
        - '%{keyword}'

'[Compliance]':
  '@gitlab-org/manage/compliance':
    entries:
      - '/ee/app/services/audit_events/build_service.rb'
      - '/ee/spec/services/audit_events/custom_audit_event_service_spec.rb'
    allow:
      keywords:
        - audit
      patterns:
        - '/{,ee/}app/**/*%{keyword}*'
        - '/{,ee/}config/**/*%{keyword}*'
        - '/{,ee/}lib/**/*%{keyword}*'
    deny:
      keywords:
        - '*.png'
        - '*bundler-audit*'
        - '**/merge_requests/**'
        - '/config/feature_flags/**/*'
        - '/ee/app/services/audit_events/**/*'
        - '/ee/spec/services/audit_events/**/*'
        - '/ee/spec/services/ci/*'
        - '/ee/spec/services/personal_access_tokens/*'
      patterns:
        - '%{keyword}'