Configure SAST in .gitlab-ci.yml, creating this file if it does not already exist
This commit is contained in:
parent
a64d17b2e8
commit
0a7517c5dc
@ -1,3 +1,10 @@
|
||||
# You can override the included template(s) by including variable overrides
|
||||
# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
|
||||
# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings
|
||||
# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
|
||||
# Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings
|
||||
# Note that environment variables can be set in several places
|
||||
# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
|
||||
run tests:
|
||||
stage: test
|
||||
image: python:3.9
|
||||
@ -7,7 +14,7 @@ run tests:
|
||||
- coverage run -m pytest --junitxml=report.xml
|
||||
- coverage report
|
||||
- coverage xml
|
||||
coverage: '/^TOTAL.+?(\d+\%)$/'
|
||||
coverage: "/^TOTAL.+?(\\d+\\%)$/"
|
||||
artifacts:
|
||||
when: always
|
||||
reports:
|
||||
@ -17,3 +24,22 @@ run tests:
|
||||
junit: report.xml
|
||||
tags:
|
||||
- docker
|
||||
stages:
|
||||
- build
|
||||
- test
|
||||
- deploy
|
||||
- review
|
||||
- dast
|
||||
- staging
|
||||
- canary
|
||||
- production
|
||||
- incremental rollout 10%
|
||||
- incremental rollout 25%
|
||||
- incremental rollout 50%
|
||||
- incremental rollout 100%
|
||||
- performance
|
||||
- cleanup
|
||||
sast:
|
||||
stage: test
|
||||
include:
|
||||
- template: Auto-DevOps.gitlab-ci.yml
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user