Update SecurityOrchestrationPolicies processor to support SAST

This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.

Why are we doing this work

We are adding support for SAST to security orchestration policies in &6586 (closed).

To do this, we need to update the policy processing services (CiConfigurationService and ScanPipelineService) to be able to load CI configuration for SAST pipelines.

Relevant links

Non-functional requirements

• Documentation:
• Feature flag:
• Performance:
• Testing:

Implementation plan

• backend Add SAST to scan types in ee/app/models/security/orchestration_policy_configuration.rb
• backend Update ee/app/services/security/security_orchestration_policies/ci_configuration_service.rb to load the SAST CI template when the scan type is sast.
• backend Add SAST environment variables to ee/app/services/security/security_orchestration_policies/scan_pipeline_service.rb
• backend Add new test cases for SAST to rspec tests