kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity

Add latest changes from gitlab-org/gitlab@master

Browse source
This commit is contained in:
GitLab Bot 2021-06-13 12:10:15 +00:00
parent 19197d7806
commit 2d027c892a
1 changed files with 18 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
doc/user/application_security/sast/index.md
View file

@ -239,6 +239,24 @@ spotbugs-sast:
FAIL_NEVER: 1
```
#### Pinning to minor image version
While our templates use `MAJOR` version pinning to always ensure the latest analyzer
versions are pulled, there are certain cases where it can be beneficial to pin
an analyzer to a specific release. To do so, override the `SAST_ANALYZER_IMAGE_TAG` CI/CD variable
in the job template directly.
In the example below, we are pinning to a specific patch version of the `spotbugs` analyzer:
```yaml
include:
- template: Security/SAST.gitlab-ci.yml
spotbugs-sast:
variables:
SAST_ANALYZER_IMAGE_TAG: "2.28.1"
```
### Customize rulesets **(ULTIMATE)**
> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/235382) in GitLab 13.5.