GitLab.com audits are to be completed every 6 months:
This audit is focused solely on the group permissions of the support team, as
defined in the various roles' baseline entitlements. To start, you will want to
gitlab_com audit script
(see below for help with running the script). It will
take a bit of time, but the script reduces a large portion of the manual work
required for the process. Once the script completes, it will output a large
amount of information. This should be copied and pasted into the
section of the issue you created via the
GitLab.com issue template.
From there, you need to reach out to a Support Operations Manager to fix the issues reported. They will then fix the permissions, add notes on what was changed, and close out the issue.
The requirements to run the script are:
To run the script, you will want to do the following commands:
git clone firstname.lastname@example.org:gitlab-com/support/support-ops/audits.git cd audits gem install bundler bundle install ./bin/gitlab_com
NOTE: This uses environment variables to run. As such, you'd want to set the following environment variables:
GL_ADMIN_TOKEN- The GitLab.com access token to use