Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
4c54a8ab
Commit
4c54a8ab
authored
Apr 27, 2021
by
Daniel Paul Searles
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Add semgrep offline support docs
parent
32474423
Changes
3
Hide whitespace changes
Inline
Side-by-side
Showing
3 changed files
with
15 additions
and
2 deletions
+15
-2
changelogs/unreleased/semgrep-offline-support.yml
changelogs/unreleased/semgrep-offline-support.yml
+5
-0
doc/user/application_security/sast/index.md
doc/user/application_security/sast/index.md
+2
-1
lib/gitlab/ci/templates/Security/Secure-Binaries.gitlab-ci.yml
...itlab/ci/templates/Security/Secure-Binaries.gitlab-ci.yml
+8
-1
No files found.
changelogs/unreleased/semgrep-offline-support.yml
0 → 100644
View file @
4c54a8ab
---
title
:
Add semgrep to Secure-Binaries and update support docs
merge_request
:
61411
author
:
type
:
added
doc/user/application_security/sast/index.md
View file @
4c54a8ab
...
...
@@ -653,6 +653,7 @@ registry.gitlab.com/gitlab-org/security-products/analyzers/nodejs-scan:2
registry.gitlab.com/gitlab-org/security-products/analyzers/phpcs-security-audit:2
registry.gitlab.com/gitlab-org/security-products/analyzers/pmd-apex:2
registry.gitlab.com/gitlab-org/security-products/analyzers/security-code-scan:2
registry.gitlab.com/gitlab-org/security-products/analyzers/semgrep:2
registry.gitlab.com/gitlab-org/security-products/analyzers/sobelow:2
registry.gitlab.com/gitlab-org/security-products/analyzers/spotbugs:2
```
...
...
@@ -682,7 +683,7 @@ Support for custom certificate authorities was introduced in the following versi
|
`phpcs-security-audit`
|
[
v2.8.2
](
https://gitlab.com/gitlab-org/security-products/analyzers/phpcs-security-audit/-/releases/v2.8.2
)
|
|
`pmd-apex`
|
[
v2.1.0
](
https://gitlab.com/gitlab-org/security-products/analyzers/pmd-apex/-/releases/v2.1.0
)
|
|
`security-code-scan`
|
[
v2.7.3
](
https://gitlab.com/gitlab-org/security-products/analyzers/security-code-scan/-/releases/v2.7.3
)
|
|
`semgrep`
|
[
v0.0.1
](
https://gitlab.com/gitlab-org/security-products/analyzers/se
curity-code-scan
/-/releases/v0.0.1
)
|
|
`semgrep`
|
[
v0.0.1
](
https://gitlab.com/gitlab-org/security-products/analyzers/se
mgrep
/-/releases/v0.0.1
)
|
|
`sobelow`
|
[
v2.2.0
](
https://gitlab.com/gitlab-org/security-products/analyzers/sobelow/-/releases/v2.2.0
)
|
|
`spotbugs`
|
[
v2.7.1
](
https://gitlab.com/gitlab-org/security-products/analyzers/spotbugs/-/releases/v2.7.1
)
|
...
...
lib/gitlab/ci/templates/Security/Secure-Binaries.gitlab-ci.yml
View file @
4c54a8ab
...
...
@@ -13,7 +13,7 @@
variables
:
SECURE_BINARIES_ANALYZERS
:
>-
bandit, brakeman, gosec, spotbugs, flawfinder, phpcs-security-audit, security-code-scan, nodejs-scan, eslint, secrets, sobelow, pmd-apex, kubesec,
bandit, brakeman, gosec, spotbugs, flawfinder, phpcs-security-audit, security-code-scan, nodejs-scan, eslint, secrets, sobelow, pmd-apex, kubesec,
semgrep,
bundler-audit, retire.js, gemnasium, gemnasium-maven, gemnasium-python,
klar, clair-vulnerabilities-db,
license-finder,
...
...
@@ -134,6 +134,13 @@ secrets:
variables
:
SECURE_BINARIES_ANALYZER_VERSION
:
"
3"
semgrep
:
extends
:
.download_images
only
:
variables
:
-
$SECURE_BINARIES_DOWNLOAD_IMAGES == "true" &&
$SECURE_BINARIES_ANALYZERS =~ /\bsemgrep\b/
sobelow
:
extends
:
.download_images
only
:
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment