Mention exception to clicking email links during onboarding process
During the onboarding process of a new team member People Operations will create a number of accounts for the various services GitLab uses on behalf of the new team member. This will fire off legitimate emails with links to complete the registration process but the handbook clearly states "Do not click on links in emails you did not request yourself."
I would like to suggest that we inform new team members of the exception to the rule during the onboarding process, "You may click a new account registration link during the onboarding process only once you have confirmed a team member in People Operations created the request." The services we use should not be listed publicly as this will open us up to attacks.