Add rules definition to support SAST_DISABLED and SECRET_DETECTION_DISABLED (!228) · Merge requests · GitLab.org / security-products / ci-templates

rossfuhrman requested to merge respect-sast-disabled into master Jun 15, 2021

What does this MR do?

Some of our downstream SAST QA jobs have no rules, so they are triggered when the SAST jobs themselves are disabled. This adds support for the disabling of SAST.

An example of this problem can be seen here:

https://gitlab.com/gitlab-org/security-products/analyzers/gemnasium/-/pipelines/320487925

https://gitlab.com/gitlab-org/security-products/tests/php-composer/-/pipelines/320491767

Note that this problem has been worked around by disabling the downstream pipelines to move the related Gemnasium MR forward.

Also added corresponding SECRET_DETECTION_DISABLED changes.

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Tests added for this feature/bug

Edited Jun 15, 2021 by rossfuhrman

Add rules definition to support SAST_DISABLED and SECRET_DETECTION_DISABLED

What does this MR do?

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Merge request reports