Cannot cure unsupported dependency file: composer.lock
Before raising an issue to the GitLab Enterprise Edition issue tracker, please read through our guide for finding help to determine the best place to post:
We are using the GitLab gold dependency scanner and are unable to scan our PHP dependencies which use composer. The job logs show Cannot cure unsupported dependency file: composer.lock
which means nothing to me. I have not been able to find any information bout this on Google and I believe it might be a bug with Gitlab or https://gitlab.com/gitlab-org/security-products/gemnasium
Steps: Create a PHP project Add a composer.lock file Add the following to your .gitlab-ce file
include:
template: Dependency-Scanning.gitlab-ci.yml
Observe that no PHP dependency scanner occurs and the following error is in the logs: Cannot cure unsupported dependency file: composer.lock