Merge branch 'russell-schema-validation-error-message' into 'master'

Add mention of schema validation message See merge request gitlab-org/gitlab!64138

Merge branch 'russell-schema-validation-error-message' into 'master'
Add mention of schema validation message See merge request gitlab-org/gitlab!64138
239509b9 · Evan Read · 70dd7221 · b9aac7c4 · 239509b9
Commit 239509b9 authored Jun 16, 2021 by Evan Read
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 1 deletion

doc/user/application_security/index.md doc/user/application_security/index.md +5 -1

No files found.
--- a/doc/user/application_security/index.md
+++ b/doc/user/application_security/index.md
@@ -265,13 +265,17 @@ If you don’t want scans running in your normal DevOps process you can use on-d

 ## Security report validation

-> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/321918) in GitLab 13.11.
+> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/321918) in GitLab 13.11.
+> - Schema validation message [added](https://gitlab.com/gitlab-org/gitlab/-/issues/321730) in GitLab 14.0.

 You can optionally enable validation of the security report artifacts based on the
 [report schemas](https://gitlab.com/gitlab-org/security-products/security-report-schemas/-/tree/master/dist).
 If you enable validation, GitLab validates the report artifacts before ingesting the vulnerabilities.
 This prevents ingestion of broken vulnerability data into the database.

+In GitLab 14.0 and later, the pipeline's **Security** tab lists any report artifacts
+that failed validation. Security report validation must first be enabled.
+
 ### Enable security report validation

 To enable report artifacts validation, set the `VALIDATE_SCHEMA` environment variable to `"true"` for the jobs in the `.gitlab-ci.yml` file.