Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/doc/development/integrations/secure.md
diff options
context:
space:
mode:
Diffstat (limited to 'doc/development/integrations/secure.md')
-rw-r--r--doc/development/integrations/secure.md26
1 files changed, 4 insertions, 22 deletions
diff --git a/doc/development/integrations/secure.md b/doc/development/integrations/secure.md
index 0f4fa1a97a8..1a51ee88c58 100644
--- a/doc/development/integrations/secure.md
+++ b/doc/development/integrations/secure.md
@@ -312,8 +312,7 @@ The format is extensively described in the documentation of
[SAST](../../user/application_security/sast/index.md#reports-json-format),
[DAST](../../user/application_security/dast/#reports),
[Dependency Scanning](../../user/application_security/dependency_scanning/index.md#reports-json-format),
-[Container Scanning](../../user/application_security/container_scanning/index.md#reports-json-format),
-and [Cluster Image Scanning](../../user/application_security/cluster_image_scanning/index.md#reports-json-format).
+and [Container Scanning](../../user/application_security/container_scanning/index.md#reports-json-format)
You can find the schemas for these scanners here:
@@ -333,33 +332,16 @@ GitLab has the following retention policies for vulnerabilities on non-default b
To view vulnerabilities, either:
-- Re-run the pipeline.
+- Run a new pipeline.
- Download the related CI job artifacts if they are available.
NOTE:
This does not apply for the vulnerabilities existing on the default branch.
-### Enable report validation
-
-> [Deprecated](https://gitlab.com/gitlab-org/gitlab/-/issues/354928) in GitLab 14.9, and planned for removal in GitLab 15.0.
-DISCLAIMER:
-This page contains information related to upcoming products, features, and functionality.
-It is important to note that the information presented is for informational purposes only.
-Please do not rely on this information for purchasing or planning purposes.
-As with all projects, the items mentioned on this page are subject to change or delay.
-The development, release, and timing of any products, features, or functionality remain at the
-sole discretion of GitLab Inc.
-In GitLab 15.0 and later, report validation is enabled and enforced. Reports that fail validation
-are not ingested, and an error message displays on the corresponding pipeline.
-
-In GitLab 14.10 and later, report validation against the schemas is enabled but not enforced.
-Reports that fail validation are ingested but display a warning in the pipeline security tab.
-
-To enforce report validation for GitLab version 14.10 and earlier, set
-[`VALIDATE_SCHEMA`](../../user/application_security/#enable-security-report-validation) to `"true"`.
-
### Report validation
+> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/351000) in GitLab 15.0.
+
You must ensure that reports generated by the scanner pass validation against the schema version
declared in your reports. Reports that don't pass validation are not ingested by GitLab, and an
error message displays on the corresponding pipeline.
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-15 04:34:11 +0300