Tactical Priorities - Compliance

1. You are here:
2. GitLab Direction
3. Product Stage Direction - Govern
4. Group Direction - Compliance
5. Tactical Priorities - Compliance

Last edited: 2023-07-21

This page captures our priorities at a finer-grained level than the what's next section does. It shows major topics and projects that we are working on and prioritizing. It is stack ranked, which means that items at the top of the list are higher priority than items lower on the list.

This list highlights major initiatives but is not comprehensive. For specific work being done in an inidividual milestone, please refer to the appropriate milestone planning issues.

Priorities

Priority	Name	DRI	Target release
1	Custom Standards Adherence configuration	nrosandich, huzaifaiftikhar1	17.5
2	Multiple compliance frameworks labels	hraghuvanshi	17.2
3	Third party connector to Snowflake	huzaifaiftikhar1	17.4
4	Compliance Pipeline to Security Policy Migration	sam.figueroa	17.0
5	(Size: XXL) Cells 1.0 - Compliance database tables work	harsimarsandhu	17.4
6	Consolidation of tables for streaming audit events to various external destinations	hraghuvanshi	17.0
7	Improved Admin and Group-level branch protection settings	harsimarsandhu	17.0
8	Comprehensive instance level audit log	nrosandich	18.0
9	SAML SSO authentication for merge request approval	sam.figueroa	17.0
10	Improve manage/edit compliance frameworks MVC	xanf	17.0
11	Standards Adherence Report Improvements	xanf	17.0
12	Migrate Audit Events to ClickHouse Cloud	TBD	TBD
13	Increase E2E test coverage for Govern:Compliance	TBD	TBD
14	Show compliance progress for SOC2 based on the starting seven criteria	TBD	TBD
15	Compliance Framework report show linked Security Policies MVC	TBD	TBD
16	Allow filtering of streamed audit events	TBD	TBD
17	Add event type information for all streaming audit events	TBD	TBD
18	Compliance Violations Report improvements	TBD	TBD
19	Comprehensive audit log	TBD	TBD
20	Enforce project settings with compliance frameworks	TBD	TBD
21	Improve manage/edit compliance frameworks improvements	TBD	TBD
22	Compliance Framework report ability to link Security Policies	TBD	TBD
23	Add compliance adherence requirment for each security scanner	TBD	TBD
24	Streaming audit events to AWS S3	TBD	TBD
25	Compliance violation export	TBD	TBD
26	Streaming audit events to Azure Blob Storage	TBD	TBD
27	Streaming audit events to Google Cloud Storage	TBD	TBD
28	Instance Streaming Audit Events Improvements	TBD	TBD
29	Compliance feature exports MVC	TBD	TBD
30	Streaming audit events to Datadog	TBD	TBD
31	Expand audit event usability	TBD	TBD
32	Streaming audit events to Snowflake	TBD	TBD
33	Add a version field to the audit event schema	TBD	TBD
34	Compliance Framework report add change history	TBD	TBD
35	Compliance Framework report add Adherence Report	TBD	TBD
36	Test Streaming Audit Events configuration and surface connection issues	TBD	TBD
37	Link to compliance violation report	TBD	TBD
38	Repository configuration checks	TBD	TBD
39	Destination streaming audit events improvements	TBD	TBD
40	Streaming audit events to Splunk	TBD	TBD
41	Audit Event data retention settings	TBD	TBD
42	Create commit custody report	TBD	TBD
43	Compliance Center Improvements	TBD	TBD
44	Add availability level to audit events	TBD	TBD
45	Support for OCSF	TBD	TBD
46	New policy type: overwrite group/project general settings	TBD	TBD

*This page may contain information related to upcoming products, features and functionality.

It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes.

Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.*