Remove security checks from static analysis and add sast job

ef82cbef · Dmitriy Zaporozhets · Rémy Coutable · 6c967c2b · ef82cbef · ef82cbef
Commit ef82cbef authored Dec 23, 2017 by Dmitriy Zaporozhets Committed by Rémy Coutable Dec 23, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 2 deletions

.gitlab-ci.yml .gitlab-ci.yml +8 -0

scripts/static-analysis scripts/static-analysis +0 -2

No files found.
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -600,6 +600,14 @@ codequality:
  artifacts:
    paths: [codeclimate.json]
+sast:
+  image: registry.gitlab.com/gitlab-org/gl-sast:latest
+  before_script: []
+  script:
+    - /app/bin/run .
+  artifacts:
+    paths: [gl-sast-report.json]
 qa:internal:
  <<: *dedicated-runner
  <<: *except-docs

--- a/scripts/static-analysis
+++ b/scripts/static-analysis
@@ -3,12 +3,10 @@
 require ::File.expand_path('../lib/gitlab/popen', __dir__)
 tasks = [
-  %w[bundle exec bundle-audit check --update],
  %w[bundle exec rake config_lint],
  %w[bundle exec rake flay],
  %w[bundle exec rake haml_lint],
  %w[bundle exec rake scss_lint],
-  %w[bundle exec rake brakeman],
  %w[bundle exec license_finder],
  %w[yarn run eslint],
  %w[bundle exec rubocop --parallel],