From cbb43bbad56de2c468649ac40f14a468b9b7454f Mon Sep 17 00:00:00 2001 From: Pascal Serrarens Date: Tue, 25 Jan 2022 10:43:32 +0000 Subject: [PATCH 1/2] Configure SAST in `.gitlab-ci.yml`, creating this file if it does not already exist --- .gitlab-ci.yml | 51 +++++++++++++++++++++----------------------------- 1 file changed, 21 insertions(+), 30 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index 2437682..01503c6 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -1,37 +1,28 @@ -# This file is a template, and might need editing before it works on your project. -# To contribute improvements to CI/CD templates, please follow the Development guide at: -# https://docs.gitlab.com/ee/development/cicd/templates.html -# This specific template is located at: -# https://gitlab.com/gitlab-org/gitlab/-/blob/master/lib/gitlab/ci/templates/Getting-Started.gitlab-ci.yml - -# This is a sample GitLab CI/CD configuration file that should run without any modifications. -# It demonstrates a basic 3 stage CI/CD pipeline. Instead of real tests or scripts, -# it uses echo commands to simulate the pipeline execution. -# -# A pipeline is composed of independent jobs that run scripts, grouped into stages. -# Stages run in sequential order, but jobs within stages run in parallel. -# -# For more information, see: https://docs.gitlab.com/ee/ci/yaml/index.html#stages - -# Specify the docker image to use (only used if using docker runners) -# See http://doc.gitlab.com/ee/ci/docker/using_docker_images.html +# You can override the included template(s) by including variable overrides +# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings +# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings +# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings +# Note that environment variables can be set in several places +# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence default: image: rikorose/gcc-cmake - -stages: # List of stages for jobs, and their order of execution - - test - -unit-test-job: # This job runs in the test stage. - stage: test # It only starts when the job in the build stage completes successfully. +stages: +- test +unit-test-job: + stage: test script: - - mkdir build - - cd build - - cmake .. - - cmake --build . - - export GTEST_OUTPUT="xml:report.xml" - - ls -la - - ./VectorAlgebraTest + - mkdir build + - cd build + - cmake .. + - cmake --build . + - export GTEST_OUTPUT="xml:report.xml" + - ls -la + - "./VectorAlgebraTest" artifacts: when: always reports: junit: build/report.xml +sast: + stage: test +include: +- template: Security/SAST.gitlab-ci.yml From de215e41bbfea6078dab969b9bdd5c70367bda8a Mon Sep 17 00:00:00 2001 From: Pascal Serrarens Date: Tue, 25 Jan 2022 10:51:10 +0000 Subject: [PATCH 2/2] Included comment for the docker image to use --- .gitlab-ci.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index 01503c6..49ac91e 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -4,6 +4,9 @@ # Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings # Note that environment variables can be set in several places # See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence +# +# Specify the docker image to use (only used if using docker runners) +# See http://doc.gitlab.com/ee/ci/docker/using_docker_images.html) default: image: rikorose/gcc-cmake stages: