Commit 1cb0b760 authored by Russell Dickenson's avatar Russell Dickenson

Merge branch 'theoretick-master-patch-49859' into 'master'

chore: Update SAST docs pinning example

See merge request gitlab-org/gitlab!72227
parents b8ed7bbf b66d8ade
...@@ -255,12 +255,16 @@ versions are pulled, there are certain cases where it can be beneficial to pin ...@@ -255,12 +255,16 @@ versions are pulled, there are certain cases where it can be beneficial to pin
an analyzer to a specific release. To do so, override the `SAST_ANALYZER_IMAGE_TAG` CI/CD variable an analyzer to a specific release. To do so, override the `SAST_ANALYZER_IMAGE_TAG` CI/CD variable
in the job template directly. in the job template directly.
In the example below, we are pinning to a specific patch version of the `spotbugs` analyzer: In the example below, we pin to a specific patch version of the `spotbugs` analyzer and minor version of the `semgrep` analyzer:
```yaml ```yaml
include: include:
- template: Security/SAST.gitlab-ci.yml - template: Security/SAST.gitlab-ci.yml
semgrep-sast:
variables:
SAST_ANALYZER_IMAGE_TAG: "2.12"
spotbugs-sast: spotbugs-sast:
variables: variables:
SAST_ANALYZER_IMAGE_TAG: "2.28.1" SAST_ANALYZER_IMAGE_TAG: "2.28.1"
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment