Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
977a3ef9
Commit
977a3ef9
authored
Jan 12, 2018
by
Achilleas Pipinellis
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Replace CI with CI/CD
parent
bcdb92a4
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
3 additions
and
3 deletions
+3
-3
doc/ci/examples/sast.md
doc/ci/examples/sast.md
+1
-1
doc/ci/examples/sast_docker.md
doc/ci/examples/sast_docker.md
+2
-2
No files found.
doc/ci/examples/sast.md
View file @
977a3ef9
# Static
application security t
esting with GitLab CI/CD
# Static
Application Security T
esting with GitLab CI/CD
NOTE:
**Note:**
In order to use this tool, a
[
GitLab Enterprise Edition Ultimate
][
ee
]
license
...
...
doc/ci/examples/sast_docker.md
View file @
977a3ef9
...
...
@@ -35,7 +35,7 @@ sast:container:
paths
:
[
gl-sast-container-report.json
]
```
The above example will create a
`sast:container`
job in your CI pipeline, pull
The above example will create a
`sast:container`
job in your CI
/CD
pipeline, pull
the image from the
[
Container Registry
](
../../user/project/container_registry.md
)
(whose name is defined from the two
`CI_APPLICATION_`
variables) and scan it
for possible vulnerabilities. The report will be saved as an artifact that you
...
...
@@ -48,7 +48,7 @@ in our case its named `clair-whitelist.yml`.
TIP:
**Tip:**
Starting with
[
GitLab Enterprise Edition Ultimate
][
ee
]
10.4, this information will
be automatically extracted and shown right in the merge request widget. To do
so, the CI job must be named
`sast:container`
and the artifact path must be
so, the CI
/CD
job must be named
`sast:container`
and the artifact path must be
`gl-sast-container-report.json`
.
[
Learn more on application security testing results shown in merge requests
](
../../user/project/merge_requests/sast_docker.md
)
.
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment