Container Scanning Error Parsing security reports for schema version 15.0.0
Summary
container_scanning
job unable to display results on GitLab 15.1 instance, showing "Errors parsing security reports" with these error messages:
The following security reports contain one or more vulnerability findings that could not be parsed and were not recorded. Ensure the security report conforms to the relevant JSON schema.
and
[Schema] Version 15.0.0 for report type
dependency_scanning
is unsupported, supported versions for this report type are: 14.0.0, 14.0.1, 14.0.2, 14.0.3, 14.0.4, 14.0.5, 14.0.6, 14.1.0, 14.1.1, 14.1.2
Steps to reproduce
Run container_scanning
job on container image with vulnerabilities on GitLab 15.1, using container-scanning:5.2.0
image.
Example Project
What is the current bug behavior?
Vulnerabilities detected by container_scanning
job run on GitLab 15.1 using default CS_ANALYZER_IMAGE
but can't be shown in UI, error shown about schema errors.
What is the expected correct behavior?
Vulnerabilities detected by container_scanning
job run on GitLab 15.1 using default CS_ANALYZER_IMAGE
are displayed in UI, reports can be parsed without schema errors.