Skip to content
Snippets Groups Projects
Commit e8a7bd12 authored by Corné Lukken's avatar Corné Lukken
Browse files

Enable security dashboard features

parent 81437c6a
No related branches found
No related tags found
1 merge request!24Enable security dashboard features
This commit is part of merge request !24. Comments created here will be created in the context of that merge request.
Show whitespace changes
Inline Side-by-side
{{cookiecutter.project_slug}}/.gitlab-ci.yml
+ 20
0
View file @ e8a7bd12
...@@ -21,6 +21,10 @@ stages: ...@@ -21,6 +21,10 @@ stages:
variables: variables:
PIP_CACHE_DIR: "$CI_PROJECT_DIR/.cache/pip" PIP_CACHE_DIR: "$CI_PROJECT_DIR/.cache/pip"
include:
- template: Security/SAST.gitlab-ci.yml
- template: Security/Dependency-Scanning.gitlab-ci.yml
- template: Security/Secret-Detection.gitlab-ci.yml
# Prepare image to run ci on # Prepare image to run ci on
trigger_prepare: trigger_prepare:
...@@ -52,6 +56,22 @@ run_pylint: ...@@ -52,6 +56,22 @@ run_pylint:
# script: # script:
# - echo "build fortran/c/cpp extension source code" # - echo "build fortran/c/cpp extension source code"
sast:
variables:
SAST_EXCLUDED_ANALYZERS: brakeman, flawfinder, kubesec, nodejs-scan, phpcs-security-audit,
pmd-apex, security-code-scan, sobelow, spotbugs
stage: test
dependency_scanning:
# override default before_script, job won't have Python available
before_script:
- uname
secret_detection:
# override default before_script, job won't have Python available
before_script:
- uname
# Basic setup for all Python versions for which we don't have a base image # Basic setup for all Python versions for which we don't have a base image
.run_unit_test_version_base: .run_unit_test_version_base:
before_script: before_script:
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment