From fa1c27bc3ccd015e4d9b86fe7805dc3818edaa01 Mon Sep 17 00:00:00 2001 From: Matthias Benkard Date: Sun, 8 Jan 2023 05:16:16 +0000 Subject: Configure SAST in `.gitlab-ci.yml`, creating this file if it does not already exist Part-of: --- .gitlab-ci.yml | 18 ++++++++++++++---- 1 file changed, 14 insertions(+), 4 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index aa2dc0b..d17de6e 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -1,9 +1,19 @@ +# You can override the included template(s) by including variable overrides +# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings +# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings +# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings +# Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings +# Note that environment variables can be set in several places +# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence stages: - - verify - +- verify +- test image: maven:3-openjdk-17 - verify-job: stage: verify script: - - mvn verify + - mvn verify +sast: + stage: test +include: +- template: Security/SAST.gitlab-ci.yml -- cgit v1.2.3 From 833933a109d10775bbd1f44d3460b191f39f01d2 Mon Sep 17 00:00:00 2001 From: Matthias Benkard Date: Sun, 8 Jan 2023 05:22:57 +0000 Subject: Clean up .gitlab-ci.yml. Part-of: --- .gitlab-ci.yml | 21 ++++++++------------- 1 file changed, 8 insertions(+), 13 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index d17de6e..b502175 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -1,19 +1,14 @@ -# You can override the included template(s) by including variable overrides -# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings -# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings -# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings -# Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings -# Note that environment variables can be set in several places -# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence stages: -- verify -- test + - verify image: maven:3-openjdk-17 -verify-job: + +verify: stage: verify script: - - mvn verify + - mvn verify + sast: - stage: test + stage: verify + include: -- template: Security/SAST.gitlab-ci.yml + - template: Security/SAST.gitlab-ci.yml -- cgit v1.2.3 From 2b719e5174126bbd83d3a5600c7db6221ba15cfe Mon Sep 17 00:00:00 2001 From: Matthias Benkard Date: Sun, 8 Jan 2023 05:27:23 +0000 Subject: CI: Clean up some more. Part-of: --- .gitlab-ci.yml | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index b502175..a478c90 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -1,14 +1,15 @@ stages: - - verify + - check + image: maven:3-openjdk-17 verify: - stage: verify + stage: check script: - mvn verify sast: - stage: verify + stage: check include: - template: Security/SAST.gitlab-ci.yml -- cgit v1.2.3