Skip to content

GitLab Next

Why GitLab
Pricing
Contact Sales
Explore

Sign in
Get free trial

Fix broken container scanning job

Review changes
Download
Patches
Plain diff

Craig Smith requested to merge investigate-broken-container-scanning into main May 18, 2023

Overview 4
Commits 3
Pipelines 3
Changes 1

What does this MR do?

This MR fixes the broken container scanner job by setting CS_IMAGE: $CI_REGISTRY_IMAGE/tmp:$CI_COMMIT_SHA$IMAGE_TAG_SUFFIX, so container scanning knows which image to scan.

Example main broken scans:

https://gitlab.com/gitlab-org/security-products/analyzers/semgrep/-/jobs/4310569092
https://gitlab.com/gitlab-org/security-products/analyzers/semgrep/-/jobs/4310569094

What are the relevant issue numbers?

NA

Does this MR meet the acceptance criteria?

Changelog entry added
Documentation created/updated for GitLab EE, if necessary
Documentation created/updated for this project, if necessary
Documentation reviewed by technical writer or follow-up review issue created
Tests updated/added for this feature/bug
Job definition updated, if necessary
Conforms to the code review guidelines
Conforms to the Go guidelines
Security reports checked/validated by reviewer

Edited May 19, 2023 by Craig Smith

Merge request reports

Assignee

Reviewers

Request review from

Time tracking