Enable On Demand DAST Scans in FIPS Mode (!139908) · Merge requests · GitLab.org / GitLab

Arpit Gogia requested to merge 430212-enable-ods-fips into master Dec 15, 2023

What does this MR do and why?

Enables on demand DAST Scans in FIPS mode using the Browser Based Analyzer
The Browser Based Analyzer for On Demand DAST Scans is currently behind the feature flag dast_ods_browser_based_scanner , hence On Demand Scans will be available in FIPS mode only when the feature flag is enabled

Screenshots or screen recordings

Project Menu shows On Demand Scans menu item

On Demand Badge

On Demand Scan CI Job fetching the FIPS image

Site Validation uses the FIPS image

How to set up and validate locally

Set up GDK and enable FIPS mode (quick hack: hard code true in lib/gitlab/fips.rb
Setup On Demand Scan through the project menu

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #430212 (closed)

Edited Dec 20, 2023 by Arpit Gogia

Enable On Demand DAST Scans in FIPS Mode

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports