forked from jaredhanson/passport-strategy
-
Notifications
You must be signed in to change notification settings - Fork 1
/
.gitlab-ci.yml
33 lines (32 loc) · 1.25 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
dependency_scanning:
image: docker:stable
variables:
DOCKER_DRIVER: overlay2
services:
- docker:stable-dind
script:
- export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
- docker run
--env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
--volume "$PWD:/code"
--volume /var/run/docker.sock:/var/run/docker.sock
"registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
artifacts:
paths: [gl-dependency-scanning-report.json]
# Once sast has nodejs support https://gitlab.com/gitlab-org/security-products/sast/blob/master/README.md
# outside the master branch enable this
#sast:
# image: docker:stable
# variables:
# DOCKER_DRIVER: overlay2
# services:
# - docker:stable-dind
# script:
# - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
# - docker run
# --env SAST_CONFIDENCE_LEVEL="${SAST_CONFIDENCE_LEVEL:-3}"
# --volume "$PWD:/code"
# --volume /var/run/docker.sock:/var/run/docker.sock
# "registry.gitlab.com/gitlab-org/security-products/sast:$SP_VERSION" /app/bin/run /code
# artifacts:
# paths: [gl-sast-report.json]