Merge branch 'docs-update-ssot-security-requirements' into 'master'

Add ssot link to security reviews documentation See merge request gitlab-org/gitlab-ce!26291

Merge branch 'docs-update-ssot-security-requirements' into 'master'
Add ssot link to security reviews documentation See merge request gitlab-org/gitlab-ce!26291
20fef917 · Marcia Ramos · 13cd7cd7 · 58d3d9ce · 20fef917
Commit 20fef917 authored Mar 25, 2019 by Marcia Ramos
Show whitespace changes
Inline Side-by-side

Showing with 6 additions and 11 deletions

doc/development/code_review.md doc/development/code_review.md +6 -11

No files found.
--- a/doc/development/code_review.md
+++ b/doc/development/code_review.md
@@ -58,12 +58,7 @@ from teams other than your own.
 #### Security requirements
-   1. If your merge request is processing, storing, or transferring any kind of [RED or ORANGE data](https://docs.google.com/document/d/15eNKGA3zyZazsJMldqTBFbYMnVUSQSpU14lo22JMZQY/edit) (this is a confidential document), it must be
+View the updated documentation regarding [internal application security reviews](https://about.gitlab.com/handbook/engineering/security/index.html#internal-application-security-reviews) for **when** and **how** to request a security review.
-      **approved by a [Security Engineer][team]**.
-   1. If your merge request involves implementing, utilizing, or is otherwise related to any type of authentication, authorization, or session handling mechanism, it must be
-      **approved by a [Security Engineer][team]**.
-   1. If your merge request has a goal which requires a cryptographic function such as: confidentiality, integrity, authentication, or non-repudiation, it must be
-      **approved by a [Security Engineer][team]**.
 ### The responsibility of the merge request author