Merge branch 'docs-sast-vuln-filters' into 'master'

New gitleaks environment variables for SAST See merge request gitlab-org/gitlab!28947

Merge branch 'docs-sast-vuln-filters' into 'master'
New gitleaks environment variables for SAST See merge request gitlab-org/gitlab!28947
f992a23d · Nick Gaskill · c914f59c · c79f2060 · f992a23d
Commit f992a23d authored Apr 07, 2020 by Nick Gaskill
Show whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

doc/user/application_security/sast/index.md doc/user/application_security/sast/index.md +3 -0

No files found.
--- a/doc/user/application_security/sast/index.md
+++ b/doc/user/application_security/sast/index.md
@@ -298,6 +298,9 @@ Some analyzers make it possible to filter out vulnerabilities under a given thre
 | `SAST_FLAWFINDER_LEVEL` |         1 | Ignore Flawfinder vulnerabilities under given risk level. Integer, 0=No risk, 5=High risk. |
 | `SAST_GITLEAKS_ENTROPY_LEVEL` | 8.0 | Minimum entropy for secret detection. Float, 0.0 = low, 8.0 = high. |
 | `SAST_GOSEC_LEVEL`      |         0 | Ignore gosec vulnerabilities under given confidence level. Integer, 0=Undefined, 1=Low, 2=Medium, 3=High. |
+| `SAST_GITLEAKS_COMMIT_FROM` | -     | The commit a gitleaks scan starts at. |
+| `SAST_GITLEAKS_COMMIT_TO` | -       | The commit a gitleaks scan ends at. |
+| `SAST_GITLEAKS_HISTORIC_SCAN` | false | Flag to enable a historic gitleaks scan. |

 #### Timeouts