Warning parsing security reports

rolandgs · July 18, 2024, 1:02pm

Hello, recently we started to get some warnings in the security tab in the pipelines:

Warning parsing security reports

Check the messages generated while parsing the following security reports, as they may prevent the results from being ingested by GitLab. Ensure the security report conforms to a supported [JSON schema].

In all schemas, we got: This report uses a supported MAJOR.MINOR schema version, but the PATCH version doesn’t match any vendored schema version. Validation will be attempted against version 15.1.2.

So, after doing some research, I’ve found that secure schema versions 15.1.4 were released 3 weeks ago here.

After that, I have two questions:

In the merge request, it is said that:

Blockquotein order to support analyzers using this version, the new schema files must be included in the Rails codebase.

I want to understand what the Rails Codebase is and how to upgrade to newer versions, if necessary.
2. In the MR, the milestone is version 17.2. After the merge is complete, are the schema secure updates applied automatically?

I’m using GitLab 17.1.2-ee.

Topic		Replies	Views
DAST report fails with JSON schemas GitLab CI/CD	0	600	September 13, 2023
Critical security release 15.11.1 -> 15.11.2 Community security	3	448	May 5, 2023
Unable to upgrade GitLab-EE from version 13.4.6 to 13.5.0 Migrations docker	1	750	November 26, 2020
Warnings upgrading from 15.3.2 to 15.4.2 General	5	891	May 17, 2023
How to use Danger with GitLab.com's CI/CD? GitLab CI/CD ci , ruby , pipelines , cicd	1	2474	June 6, 2023

Warning parsing security reports

Related topics