Merge branch 'da/setup-security-jobs' into 'master'

Add CI jobs for dependency scanning and static analysis See merge request gitlab-org/gitlab-workhorse!458

Merge branch 'da/setup-security-jobs' into 'master'
Add CI jobs for dependency scanning and static analysis See merge request gitlab-org/gitlab-workhorse!458
3d35bee2 · Jacob Vosmaer · 8fa3f59b · 67b376f2 · 3d35bee2
Commit 3d35bee2 authored Feb 17, 2020 by Jacob Vosmaer
Show whitespace changes
Inline Side-by-side

Showing with 13 additions and 0 deletions

.gitlab-ci.yml .gitlab-ci.yml +13 -0

No files found.
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
 image: golang:1.11
+# Disable DIND for SAST because we need to execute a before_script in the gosec-sast job
+variables:
+  SAST_DISABLE_DIND: "true"
 verify:
  script:
  - make verify
@@ -33,3 +37,12 @@ test:release:
    - tags
  script:
    - git describe --exact-match
+include:
+  - template: Security/SAST.gitlab-ci.yml
+  - template: Security/Dependency-Scanning.gitlab-ci.yml
+gosec-sast:
+  before_script:
+    - apk add make
+    - make install
\ No newline at end of file