Use CS_IGNORE_STATUSES to ignore non-actionable CS findings (!371) · Merge requests · GitLab.org / security-products / ci-templates

Olivier Gonzalez requested to merge gonzoyumo-master-patch-ac2d into master Nov 22, 2023

What does this MR do?

Leverage the new CS_IGNORE_STATUSES variable to configure container scanning to ignore non-actionable findings and skip them in the generated security report. Reporting these findings would only lead to the creation of SLA Exception Requests which is a waste of time for our development and security teams.

This policy will also be documented soon in the handbook.

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Tests added for this feature/bug

Use CS_IGNORE_STATUSES to ignore non-actionable CS findings

What does this MR do?

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Merge request reports