Configure SAST in .gitlab-ci.yml, creating this file if it does not already exist

.gitlab-ci.yml

@@ -1,13 +1,20 @@
+# You can override the included template(s) by including variable overrides
+# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
+# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings
+# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
+# Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings
+# Note that environment variables can be set in several places
+# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
 run tests:
   stage: test
   image: python:3.9
   script:
-    - pip install pytest pytest-cov pytest-mock pytest-flask
+  - pip install pytest pytest-cov pytest-mock pytest-flask
-    - pip install Flask-HTTPAuth
+  - pip install Flask-HTTPAuth
-    - coverage run -m pytest --junitxml=report.xml
+  - coverage run -m pytest --junitxml=report.xml
-    - coverage report
+  - coverage report
-    - coverage xml
+  - coverage xml
-  coverage: '/^TOTAL.+?(\d+\%)$/'
+  coverage: "/^TOTAL.+?(\\d+\\%)$/"
   artifacts:
     when: always
     reports:
@@ -16,4 +23,23 @@ run tests:
         path: coverage.xml
       junit: report.xml
   tags:
-    - docker
+  - docker
+stages:
+- build
+- test
+- deploy
+- review
+- dast
+- staging
+- canary
+- production
+- incremental rollout 10%
+- incremental rollout 25%
+- incremental rollout 50%
+- incremental rollout 100%
+- performance
+- cleanup
+sast:
+  stage: test
+include:
+- template: Auto-DevOps.gitlab-ci.yml