Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
071b0b6d
Commit
071b0b6d
authored
Feb 17, 2020
by
Craig Smith
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Set GIT_STRATEGY to none by default
as the projects repository is not required to run DAST
parent
471b9888
Changes
3
Show whitespace changes
Inline
Side-by-side
Showing
3 changed files
with
11 additions
and
0 deletions
+11
-0
changelogs/unreleased/10429_set_dast_default_git_strategy_to_none.yml
...nreleased/10429_set_dast_default_git_strategy_to_none.yml
+5
-0
doc/user/application_security/dast/index.md
doc/user/application_security/dast/index.md
+5
-0
lib/gitlab/ci/templates/Security/DAST.gitlab-ci.yml
lib/gitlab/ci/templates/Security/DAST.gitlab-ci.yml
+1
-0
No files found.
changelogs/unreleased/10429_set_dast_default_git_strategy_to_none.yml
0 → 100644
View file @
071b0b6d
---
title
:
Project repositories are no longer cloned by default when running DAST
merge_request
:
25320
author
:
type
:
performance
doc/user/application_security/dast/index.md
View file @
071b0b6d
...
@@ -351,6 +351,11 @@ dast:
...
@@ -351,6 +351,11 @@ dast:
-
/analyze -z"-config replacer.full_list\(0\).description=auth -config replacer.full_list\(0\).enabled=true -config replacer.full_list\(0\).matchtype=REQ_HEADER -config replacer.full_list\(0\).matchstr=Authorization -config replacer.full_list\(0\).regex=false -config replacer.full_list\(0\).replacement=TOKEN" -t $DAST_WEBSITE
-
/analyze -z"-config replacer.full_list\(0\).description=auth -config replacer.full_list\(0\).enabled=true -config replacer.full_list\(0\).matchtype=REQ_HEADER -config replacer.full_list\(0\).matchstr=Authorization -config replacer.full_list\(0\).regex=false -config replacer.full_list\(0\).replacement=TOKEN" -t $DAST_WEBSITE
```
```
### Cloning the project's repository
The DAST job does not require the project's repository to be present when running, so by default
[
`GIT_STRATEGY`
](
../../../ci/yaml/README.md#git-strategy
)
is set to
`none`
.
## Reports
## Reports
The DAST job can emit various reports.
The DAST job can emit various reports.
...
...
lib/gitlab/ci/templates/Security/DAST.gitlab-ci.yml
View file @
071b0b6d
...
@@ -18,6 +18,7 @@ dast:
...
@@ -18,6 +18,7 @@ dast:
image
:
image
:
name
:
"
registry.gitlab.com/gitlab-org/security-products/dast:$DAST_VERSION"
name
:
"
registry.gitlab.com/gitlab-org/security-products/dast:$DAST_VERSION"
variables
:
variables
:
GIT_STRATEGY
:
none
# URL to scan:
# URL to scan:
# DAST_WEBSITE: https://example.com/
# DAST_WEBSITE: https://example.com/
#
#
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment