Dependency Scanning ignores DEPENDENCY_SCANNING_DISABLED if DS_DISABLE_DIND is set
Summary
Dependency Scanning ignores the DEPENDENCY_SCANNING_DISABLED
variable if DS_DISABLE_DIND
is set.
Steps to reproduce
- Add the Dependency Scanning template to a project
- Set
DEPENDENCY_SCANNING_DISABLED
andDS_DISABLE_DIND
to"true"
- Project will run Dependency Scanning
Example Project
https://gitlab.com/gitlab-org/defend/waf-enablement-demo/pipelines/104668784 (same issue as #119345 (closed))
What is the current bug behavior?
Dependency Scanning is running
What is the expected correct behavior?
Dependency Scanning should not run, a DEPENDENCY_SCANNING_DISABLED
project variable has been set in the CI/CD settings.
Edited by Philippe Lafoucrière