Merge branch 'russell/ondemand-note-protected-branches' into 'master'

Add note about DAST on-demand scans Closes #231397 See merge request gitlab-org/gitlab!38445

Merge branch 'russell/ondemand-note-protected-branches' into 'master'
Add note about DAST on-demand scans Closes #231397 See merge request gitlab-org/gitlab!38445
6e515e1a · Nick Gaskill · 290974b4 · e368faf0 · 6e515e1a
Commit 6e515e1a authored Aug 03, 2020 by Nick Gaskill
Show whitespace changes
Inline Side-by-side

Showing with 5 additions and 2 deletions

doc/user/application_security/dast/index.md doc/user/application_security/dast/index.md +5 -2

No files found.
--- a/doc/user/application_security/dast/index.md
+++ b/doc/user/application_security/dast/index.md
@@ -608,8 +608,11 @@ Alternatively, you can use the variable `SECURE_ANALYZERS_PREFIX` to override th
 > - It's able to be enabled or disabled per-project.
 > - To use it in GitLab self-managed instances, ask a GitLab administrator to [enable it](#enable-or-disable-on-demand-scans).
-Passive DAST scans may be run on demand against a target website, outside the DevOps lifecycle. These scans will
+Passive DAST scans may be run on demand against a target website, outside the DevOps lifecycle. These scans are
-always be associated with the default or `master` branch of your project and the results can be seen in the project dashboard.
+always associated with the default or `master` branch of your project and the results can be seen in the project dashboard.
+NOTE: **Note:**
+You cannot run an on-demand DAST scan against a protected branch unless you have permission to do so. The `master` branch is protected by default. For more details, see [Pipeline security on protected branches](../../../ci/pipelines/index.md#pipeline-security-on-protected-branches).
 ![DAST On-Demand Scan](img/dast_on_demand_v13_2.png)