Issues · GitLab.org / GitLab · GitLab

Common report format for Container Scanning

#10826 · opened Apr 01, 2019 by Fabio Busatto Accepting merge requests Category:Container Scanning Enterprise Edition Stretch backend devops::secure feature frontend group::composition analysis
- CLOSED
- 17
updated Nov 18, 2019
Update process for Dependency Scanning vulnerabilities (Java) 0 of 4 tasks completed

#10930 · opened Apr 05, 2019 by Fabio Busatto 12.0 Accepting merge requests Category:Dependency Scanning Deliverable Enterprise Edition devops::secure documentation group::composition analysis meta
- CLOSED
- 0
updated Nov 18, 2019
Refactor vue-router/vuex synchronisation/persistence in Security Dashboard

#10783 · opened Mar 29, 2019 by Mark Florian 12.5 Accepting merge requests Enterprise Edition Secure::Static and Dynamic Analysis [Deprecated] devops::secure frontend group::static analysis missed-deliverable missed:11.11 security dashboard technical debt
- CLOSED
- 8
updated Nov 18, 2019
Explore the combination of Severity and Confidence in one badge for the Security Dashboard

#11187 · opened Apr 16, 2019 by Andy Volpe Backlog Accepting merge requests Enterprise Edition UX devops::secure feature group::static analysis
- CLOSED
- 6
updated Nov 18, 2019
Evaluation - Document options of SAST, DS automatically [ end result, do not proceed ]

#11251 · opened Apr 22, 2019 by Fabien Catteau 12.2 Accepting merge requests Category:Dependency Scanning Category:SAST Enterprise Edition backend backstage customer devops::secure documentation group::composition analysis
- CLOSED
- 13
updated Nov 18, 2019
Container scanning job fails with docker networking error on K8s Runner

#11448 · opened May 02, 2019 by Tristan Williams 12.1 Accepting merge requests Category:Auto DevOps Category:Container Scanning Category:Kubernetes Management Enterprise Edition P2 S2 bug customer devops::secure group::composition analysis reproduced on GitLab.com
- CLOSED
- 1
- 4
- 24
updated Nov 18, 2019
Dependency Scanning analysis is taking too much time on CE/EE

#12021 · opened Apr 25, 2019 by Olivier Gonzalez 12.1 Accepting merge requests Category:Dependency Scanning Enterprise Edition P2 S2 bug devops::secure group::composition analysis performance
- CLOSED
- 1
- 1
- 8
updated Nov 18, 2019
Usage Ping for DAST Full scans

#11480 · opened May 05, 2019 by Victor Zagorodny 12.2 Accepting merge requests Enterprise Edition Secure::Static and Dynamic Analysis [Deprecated] backend backstage devops::secure group::dynamic analysis missed:12.0
- CLOSED
- 15
updated Nov 18, 2019
Gitlab license checker fails to install package from pip

#11283 · opened Apr 24, 2019 by Brett Higgins 12.0 Accepting merge requests Category:License Compliance Enterprise Edition P3 S3 bug devops::secure
- CLOSED
- 7
updated Nov 18, 2019
Support custom gitleaks configs for Secret Detection

#11333 · opened Apr 26, 2019 by Martin Rowe Accepting merge requests Enterprise Edition P4 S4 Secure::Static and Dynamic Analysis [Deprecated] backend devops::secure feature group::static analysis 3
- CLOSED
- 10
updated Nov 18, 2019
Dependency Scanning is reporting vulnerabilities in .yarn-cache/

#11303 · opened Apr 24, 2019 by Philippe Lafoucrière 12.3 Accepting merge requests Category:Dependency Scanning Enterprise Edition P4 S4 bug devops::secure
- CLOSED
- 1
- 4
updated Nov 18, 2019
Clair binary downloaded for every job

#11521 · opened May 07, 2019 by Kevin Chasse Backlog Accepting merge requests Enterprise Edition devops::secure feature
- CLOSED
- 2
- 5
updated Nov 18, 2019
License Management icons are confusing

#11292 · opened Apr 24, 2019 by Philippe Lafoucrière Accepting merge requests Category:License Compliance Enterprise Edition UX devops::secure group::composition analysis
- CLOSED
- 6
updated Nov 18, 2019
Include scheduled security pipeline for Auto DevOps

#11831 · opened May 29, 2019 by Andy Volpe Backlog Accepting merge requests Enterprise Edition UX devops::secure feature group::composition analysis
- CLOSED
- 5
updated Nov 18, 2019
Gemnasium API endpoint to patch an advisory

#11844 · opened May 30, 2019 by Fabien Catteau Accepting merge requests Category:Dependency Scanning Enterprise Edition backend devops::secure feature group::composition analysis workflow::blocked 1
- CLOSED
- 2
- 10
updated Nov 18, 2019
Gemnasium not in sync with packagist.org

#11823 · opened May 29, 2019 by Fabien Catteau Accepting merge requests Category:Dependency Scanning Enterprise Edition P3 S2 backend bug devops::secure group::composition analysis missed-SLO
- CLOSED
- 8
updated Nov 18, 2019
PLACEHOLDER: Fix Secure's static or dynamic analysis feature breaks as part of the transition to CI/CD

#11941 · opened Jun 04, 2019 by Thomas Woodham 12.1 Accepting merge requests Enterprise Edition Secure::Static and Dynamic Analysis [Deprecated] backstage devops::secure 3
- CLOSED
- 1
updated Nov 18, 2019
Support air-gapped (offline) License Compliance for on-prem instances

#12727 · opened Jul 09, 2019 by Lucas Charles Accepting merge requests Category:License Compliance Enterprise Edition devops::secure feature group::composition analysis
- CLOSED
- 4
updated Nov 18, 2019
Synchronize gemnasium-db with CVE Details

#12319 · opened Jun 20, 2019 by Olivier Gonzalez Accepting merge requests Category:Vulnerability Database Enterprise Edition devops::secure feature group::composition analysis
- CLOSED
- 6
updated Nov 18, 2019
No dependencies for a dependency file that is not affected

#12284 · opened Jun 19, 2019 by Tetiana Chupryna 12.0 Jul 22, 2019 Accepting merge requests Category:Dependency Scanning Enterprise Edition P1 S2 backend bug dependency list devops::secure group::composition analysis
- CLOSED
- 4
updated Nov 18, 2019