APIGOV-29384 - convert CSR to SecurityCI (#871)

* APIGOV-29384 - implement securityCI

* APIGOV-29384 - final refs

* APIGOV-29384 -

.gitlab-ci.yml

@@ -34,26 +34,26 @@ include:
     ref: master
     file: "/.gitlab-ci-sonar.yml"
   - project: "apigov/beano_cicd"
-    ref: $BEANO_CICD_LATEST
+    ref: $BEANO_CICD_BLUE
     # the order of these include files is important
     file:
       - "/gitlabci/variables.yml"
       - "/gitlabci/restrictions.yml"
       - "/gitlabci/jobs.yml"
   - project: "scurity/gitlabci"
-    ref: $SCURITY_LATEST
+    ref: $SCURITY_BLUE
     file:
       - "/.gitlab-ci-fortify.yml"
       - "/.gitlab-ci-twistlock.yml"
       - "/.gitlab-ci-iriusrisk.yml"
       - "/.gitlab-ci-blackduck.yml"
-      - "/.gitlab-ci-csr.yml"
+      - "/.gitlab-ci-security.yml"
   - project: "apigov/beano_cicd"
-    ref: $BEANO_CICD_LATEST
+    ref: $BEANO_CICD_BLUE
     # this one MUST be after the scurity jobs in order for overrides to work correctly!
     file:
-      - "/gitlabci/csrjobs.yml"
-      - "/gitlabci/csrjobsformirror.yml"
+      - "/gitlabci/securityjobs.yml"
+      - "/gitlabci/securityjobsformirror.yml"
 
 stages:
   - test
@@ -111,11 +111,11 @@ upload-files-to-srm:on-schedule:
     - !reference [.only-never-rule, rules]
 
 # For these 2, override the 'needs' from base
-run-csr:
+report-main:
   needs:
     - fetch-fortify
 
-update-csr:
+report-latest-and-push:
   needs:
     - fetch-fortify:on-schedule
     - fetch-third-party:on-schedule

CODEOWNERS

@@ -2,9 +2,9 @@
 
 * @jcollins-axway @dfeldick @sbolosan @vivekschauhan @alrosca @dgghinea
 
-#[CSR]
- # .csr-profile.json requires SPOC approval for any modifications
-.csr-profile.json @dfeldick @jcollins-axway @vivekschauhan
+#[SECURITY]
+ # .security-profile.json requires SPOC approval for any modifications
+.security-profile.json @dfeldick @jcollins-axway @vivekschauhan
 renovate.json @dfeldick