Gitlab CI Security Scanning Jobs §

You can enable SAST and Secret-Detection in your gitlab CI.

• https://docs.gitlab.com/ee/user/application_security/get-started-security.html
• Template SAST.gitlab-ci.yml
• Template Secret-Detection.gitlab-ci.yml

include:
  - template: Security/Secret-Detection.gitlab-ci.yml
  - template: Security/SAST.gitlab-ci.yml
 
workflow:
  name: '$PIPELINE_NAME'
  rules:
    # Deploy Pipelines
    - if: $DEPLOY
      variables:
      
        PIPELINE_NAME: "Deploy Pipeline: $DEPLOY"
        # disable security scanning jobs
        SAST_DISABLED: "true"
        SECRET_DETECTION_DISABLED: "true"