Merge branch 'secure-scanner-integration-recommend-debug-messages-for-cli' into 'master'

Recommend debug messages for CLIs scanners run See merge request gitlab-org/gitlab!46210

Merge branch 'secure-scanner-integration-recommend-debug-messages-for-cli' into 'master'
Recommend debug messages for CLIs scanners run See merge request gitlab-org/gitlab!46210
1946a989 · Russell Dickenson · a4b0fa69 · 9794ee4d · 1946a989
Commit 1946a989 authored Oct 28, 2020 by Russell Dickenson
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

doc/development/integrations/secure.md doc/development/integrations/secure.md +5 -0

No files found.
--- a/doc/development/integrations/secure.md
+++ b/doc/development/integrations/secure.md
@@ -248,6 +248,11 @@ It is recommended to use the `debug` level for verbose logging that could be
 useful when debugging. The default value for `SECURE_LOG_LEVEL` should be set
 to `info`.

+When executing command lines, scanners should use the `debug` level to log the command line and its output.
+For instance, the [bundler-audit](https://gitlab.com/gitlab-org/security-products/analyzers/bundler-audit) scanner
+uses the `debug` level to log the command line `bundle audit check --quiet`,
+and what `bundle audit` writes to the standard output.
+
 #### common logutil package

 If you are using [go](https://golang.org/) and