Compliance frameworks report

DETAILS: Tier: Ultimate Offering: GitLab.com, Self-managed, GitLab Dedicated

• Introduced in GitLab 16.5 with a flag named compliance_framework_report_ui. Disabled by default.
• In GitLab 16.4 and earlier, Compliance frameworks report referred to what is now called Compliance projects report. The formally-named Compliance frameworks report was renamed to Compliance projects report in GitLab 16.5.
• Enabled by default in GitLab 16.8.
• Feature flag removed in GitLab 16.10.

With the compliance frameworks report, you can see all the compliance frameworks in a group. Each row of the report shows:

• Framework name.
• Associated projects.

The default framework for the group has a default badge.

View the compliance frameworks report for a group

Prerequisites:

• You must be an administrator or have the Owner role for the group.

To view the compliance frameworks report:

1. On the left sidebar, select Search or go to and find your group.
2. Select Secure > Compliance center.
3. On the page, select the Frameworks tab.

Create a new compliance framework

Prerequisites:

• You must be an administrator or have the Owner role for the group.

To create a new compliance framework from the compliance frameworks report:

1. On the left sidebar, select Search or go to and find your group.
2. Select Secure > Compliance center.
3. On the page, select the Frameworks tab.
4. Select the New framework.
5. Select the Add framework to create compliance framework.

Edit a compliance framework

Prerequisites:

• You must be an administrator or have the Owner role for the group.

To edit a compliance framework from the compliance frameworks report:

1. On the left sidebar, select Search or go to and find your group.
2. Select Secure > Compliance center.
3. On the page, select the Frameworks tab.
4. Hover over framework and select Edit the framework.
5. Select the Save changes to edit compliance framework.

Delete a compliance framework

Prerequisites:

• You must be an administrator or have the Owner role for the group.

To delete a compliance framework from the compliance frameworks report:

1. On the left sidebar, select Search or go to and find your group.
2. Select Secure > Compliance center.
3. On the page, select the Frameworks tab.
4. Hover over framework and select Edit the framework.
5. Select the Delete framework to delete compliance framework.

Export a report of compliance frameworks in a group

• Introduced in GitLab 16.11 with a flag named compliance_frameworks_report_csv_export. Disabled by default.
• Generally available in GitLab 17.1. Feature flag compliance_frameworks_report_csv_export removed.

Exports the contents of a compliance frameworks report in a group. Reports are truncated at 15 MB to avoid a large email attachment.

Prerequisites:

• You must be an administrator or have the Owner role for the group.

To export the standards adherence report for projects in a group:

1. On the left sidebar, select Search or go to and find your group.
2. Select Secure > Compliance center.
3. In the top-right corner, select Export.
4. Select Export framework report.

A report is compiled and delivered to your email inbox as an attachment.