Gitlab CI Security Scanning Jobs
You can enable SAST and Secret-Detection in your gitlab CI.
- https://docs.gitlab.com/ee/user/application_security/get-started-security.html
- Template SAST.gitlab-ci.yml
- Template Secret-Detection.gitlab-ci.yml
include:
- template: Security/Secret-Detection.gitlab-ci.yml
- template: Security/SAST.gitlab-ci.yml
workflow:
name: '$PIPELINE_NAME'
rules:
# Deploy Pipelines
- if: $DEPLOY
variables:
PIPELINE_NAME: "Deploy Pipeline: $DEPLOY"
# disable security scanning jobs
SAST_DISABLED: "true"
SECRET_DETECTION_DISABLED: "true"