Previously, requests using a token that only had read_api access would
be treated as unauthenticated by the rate limiter. This ensures that
they are (correctly) treated as authenticated.

This does point to a general problem with the rate limiting code:
because it happens in a middleware before any application code, it's
hard to keep in sync with the different authentication methods the
application may allow. This applies to things like:

1. How the credentials are sent (Private-Token header, Authorization
   header, basic auth, etc.).
2. What credentials we accept (a personal access token, a personal
   access token with read_api scope, a job token, a deploy token, etc.).
3. Which endpoints those apply to.

The last one is mostly a concern for performance: we might pre-emptively
try authenticating using a method that isn't valid for a particular
endpoint. From a rate limiting perspective it doesn't matter so much, as
we're treating a request with valid credentials for a different endpoint
as authenticated for the current endpoint, which is wrong but not a
significant problem.

Introduce dismissal reason for vulnerability feedback

See merge request gitlab-org/gitlab!50632

Stablize register spec

See merge request gitlab-org/gitlab!50675

Migrate to native window scrolling

See merge request gitlab-org/gitlab!43167

We can replace jquery.scrollTo.js with commonUtils scrollToElement or
native browser scrolling.

Quarantine flaky default branch name setting spec

See merge request gitlab-org/gitlab!50645

Fix project export audit log spec

See merge request gitlab-org/gitlab!50644

Add Packages::Debian::GetOrCreateIncomingService

See merge request gitlab-org/gitlab!50431

Minor API readme style updates

See merge request gitlab-org/gitlab!50670

[RUN ALL RSPEC] Deprecations job

See merge request gitlab-org/gitlab!49792

Update Cohorts page to improve style

See merge request gitlab-org/gitlab!50668

Fixes several style and wording items.

Incorporated several style updates to page.

Change CE to EE

See merge request gitlab-org/gitlab!50656

Additional style and wording updates from recent Install change

See merge request gitlab-org/gitlab!50620

Improve GraphQL style guide docs

See merge request gitlab-org/gitlab!50641

Remove tier badging from doc links on index page

See merge request gitlab-org/gitlab!50637

Configure sampler intervals via environment variables

See merge request gitlab-org/gitlab!50625

This is useful for development but also to more easily
change these values in production.

Update language re. docs for disabled FFs

See merge request gitlab-org/gitlab!47917

Increase the diff limit

See merge request gitlab-org/gitlab!50572

Minor typo on the "Renaming queues"

See merge request gitlab-org/gitlab!50643

Creates new on-demand scans routes

See merge request gitlab-org/gitlab!50469

Add a quick action for /rebase

See merge request gitlab-org/gitlab!49800

Add the NuGet group level API

See merge request gitlab-org/gitlab!48356

Re using the shareable nuget endpoint
Add related specs

Resolve "OnboardingUserAddedWorker fails frequently"

See merge request gitlab-org/gitlab!50622

Remove users#show.json completely

See merge request gitlab-org/gitlab!49670

Refactor coverage report service

See merge request gitlab-org/gitlab!50424

This commit refators our coverage report service to prepare
our new codequality service which will be introduced in a
follow up.

Copy vulnerability level details from handbook page to docs

See merge request gitlab-org/gitlab!49581