2019-04-12 08:56:38 +00:00
|
|
|
include:
|
2019-04-17 09:20:18 +00:00
|
|
|
- template: Code-Quality.gitlab-ci.yml
|
2019-06-25 08:57:33 +00:00
|
|
|
- template: Security/SAST.gitlab-ci.yml
|
|
|
|
|
- template: Security/Dependency-Scanning.gitlab-ci.yml
|
2019-08-20 17:04:23 +00:00
|
|
|
- template: Security/DAST.gitlab-ci.yml
|
2019-04-12 08:56:38 +00:00
|
|
|
|
|
|
|
|
code_quality:
|
2019-06-25 08:57:33 +00:00
|
|
|
extends: .dedicated-no-docs
|
2019-04-12 08:56:38 +00:00
|
|
|
# gitlab-org runners set `privileged: false` but we need to have it set to true
|
|
|
|
|
# since we're using Docker in Docker
|
|
|
|
|
tags: []
|
|
|
|
|
before_script: []
|
|
|
|
|
cache: {}
|
|
|
|
|
|
|
|
|
|
sast:
|
2019-06-25 08:57:33 +00:00
|
|
|
extends: .dedicated-no-docs
|
|
|
|
|
tags: []
|
2019-07-11 20:31:18 +00:00
|
|
|
before_script: []
|
|
|
|
|
cache: {}
|
2019-04-12 08:56:38 +00:00
|
|
|
variables:
|
2019-07-11 20:31:18 +00:00
|
|
|
SAST_BRAKEMAN_LEVEL: 2
|
2019-08-26 09:14:15 +00:00
|
|
|
SAST_EXCLUDED_PATHS: qa,spec,doc
|
2019-04-12 08:56:38 +00:00
|
|
|
|
|
|
|
|
dependency_scanning:
|
2019-06-25 08:57:33 +00:00
|
|
|
extends: .dedicated-no-docs
|
2019-07-11 20:31:18 +00:00
|
|
|
tags: []
|
|
|
|
|
before_script: []
|
|
|
|
|
cache: {}
|
2019-08-20 17:04:23 +00:00
|
|
|
|
|
|
|
|
dast:
|
2019-08-21 09:34:42 +00:00
|
|
|
extends:
|
|
|
|
|
- .dedicated-runner
|
|
|
|
|
- .review-only
|
2019-08-20 17:04:23 +00:00
|
|
|
stage: qa
|
|
|
|
|
dependencies:
|
|
|
|
|
- review-deploy
|
|
|
|
|
before_script:
|
|
|
|
|
- export DAST_WEBSITE="$(cat review_app_url.txt)"
|
|
|
|
|
cache: {}
|
