Add feature flag for Dependency Scanning reports parsing

691f11b1 · Olivier Gonzalez · 35e60b44 · 691f11b1 · 691f11b1
Commit 691f11b1 authored Dec 07, 2018 by Olivier Gonzalez
Hide whitespace changes
Inline Side-by-side

Showing with 17 additions and 0 deletions

ee/app/models/ee/ci/build.rb ee/app/models/ee/ci/build.rb +3 -0

ee/spec/models/ci/build_spec.rb ee/spec/models/ci/build_spec.rb +14 -0

No files found.
--- a/ee/app/models/ee/ci/build.rb
+++ b/ee/app/models/ee/ci/build.rb
@@ -47,6 +47,9 @@ module EE

      def collect_security_reports!(security_reports)
        each_report(::Ci::JobArtifact::SECURITY_REPORT_FILE_TYPES) do |file_type, blob|
+          next if file_type == "dependency_scanning" &&
+              ::Feature.disabled?(:parse_dependency_scanning_reports, default_enabled: true)
+
          security_reports.get_report(file_type).tap do |security_report|
            begin
              next unless project.feature_available?(LICENSED_PARSER_FEATURES.fetch(file_type))

--- a/ee/spec/models/ci/build_spec.rb
+++ b/ee/spec/models/ci/build_spec.rb
@@ -185,6 +185,20 @@ describe Ci::Build do
        end
      end

+      context 'when Feature flag is disabled for Dependency Scanning reports parsing' do
+        before do
+          stub_feature_flags(parse_dependency_scanning_reports: false)
+          create(:ee_ci_job_artifact, :sast, job: job, project: job.project)
+          create(:ee_ci_job_artifact, :dependency_scanning, job: job, project: job.project)
+        end
+
+        it 'does NOT parse dependency scanning report' do
+          subject
+
+          expect(security_reports.reports.keys).to contain_exactly('sast')
+        end
+      end
+
      context 'when there is a corrupted sast report' do
        before do
          create(:ee_ci_job_artifact, :sast_with_corrupted_data, job: job, project: job.project)