Commit 070abaca authored by Russell Dickenson's avatar Russell Dickenson

Merge branch '10429_set_dast_default_git_strategy_to_none' into 'master'

Set GIT_STRATEGY to none by default for DAST

Closes #10429

See merge request gitlab-org/gitlab!25320
parents eb9a074e 071b0b6d
---
title: Project repositories are no longer cloned by default when running DAST
merge_request: 25320
author:
type: performance
...@@ -351,6 +351,11 @@ dast: ...@@ -351,6 +351,11 @@ dast:
- /analyze -z"-config replacer.full_list\(0\).description=auth -config replacer.full_list\(0\).enabled=true -config replacer.full_list\(0\).matchtype=REQ_HEADER -config replacer.full_list\(0\).matchstr=Authorization -config replacer.full_list\(0\).regex=false -config replacer.full_list\(0\).replacement=TOKEN" -t $DAST_WEBSITE - /analyze -z"-config replacer.full_list\(0\).description=auth -config replacer.full_list\(0\).enabled=true -config replacer.full_list\(0\).matchtype=REQ_HEADER -config replacer.full_list\(0\).matchstr=Authorization -config replacer.full_list\(0\).regex=false -config replacer.full_list\(0\).replacement=TOKEN" -t $DAST_WEBSITE
``` ```
### Cloning the project's repository
The DAST job does not require the project's repository to be present when running, so by default
[`GIT_STRATEGY`](../../../ci/yaml/README.md#git-strategy) is set to `none`.
## Reports ## Reports
The DAST job can emit various reports. The DAST job can emit various reports.
......
...@@ -18,6 +18,7 @@ dast: ...@@ -18,6 +18,7 @@ dast:
image: image:
name: "registry.gitlab.com/gitlab-org/security-products/dast:$DAST_VERSION" name: "registry.gitlab.com/gitlab-org/security-products/dast:$DAST_VERSION"
variables: variables:
GIT_STRATEGY: none
# URL to scan: # URL to scan:
# DAST_WEBSITE: https://example.com/ # DAST_WEBSITE: https://example.com/
# #
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment