GitLab Code Review

Enable Secret Detection in .gitlab-ci.yml

Set MR approval rule to require Security Team sign-off if vulnerabilities are detected

Reviewer sees '1 critical vulnerability' warning in MR

AI suggests a fix

Developer applies fix and merges.

New hire opens MR

AI Duo generates an 'MR Summary' explaining the change

Reviewer Roulette assigns a mentor

Mentor uses multi-line suggestions to teach best practices

MR is merged following template checklist.

Create a Multi-Project Pipeline

Trigger downstream builds in Service B from Service A's MR

Observe cross-project status in the MR widget

Fix breaking changes in Service B

Merge both simultaneously.

Apply 'Compliance Framework' label to project

Configure 'Approval Rules' for 2 mandatory approvals

Block 'Merge when pipeline succeeds' until approvals are met

Audit log records all approval timestamps and identities.

CI pipeline builds Docker image of the app

GitLab Review Apps deploys to a temporary URL

QA clicks 'View App' from the MR

Visual regression bot compares screenshots

QA approves if visual diff is acceptable.

Dependency Scanning runs on CI

Dependency List identifies vulnerable package

GitLab automatically opens a 'Remediation MR' to update the version

Developer reviews and merges.

Use 'File Tree View' in MR interface

Mark files as 'Viewed' to track progress

Use 'Batch Comments' to submit all reviews at once

Apply global search/replace via Web IDE within the MR.