GitLab actions
Adding new scanners
Put scanner version in
common/variables.yml
(pipelines repo).Add the
Dockerfile
to the folder in the security-images repo.Add the job to the
gitlab-ci.yml
file (isecurity-images repo).Add the job with the scan script in the common folder (pipelines repo).
Configure the default variables in
common/variables.yml
(pipelines repo).Test the new scanner.
Integration
You can integrate the Security Pipeline with your CI/CD pipeline in two ways: triggering pipelines without passing any parameters and triggering pipelines with specific parameters.
Triggering Pipelines Without Passing Any Parameters
This example of .gitlab-ci.yml
settings will detect all languages/technologies automatically and run checks without parameters.
Triggering Pipelines With Specific Parameters
This is a detailed integration example of .gitlab-ci.yml
.
Integration Examples
There are several integration examples provided in the repository, each containing a .gitlab-ci.yml
file where you can see how to integrate the security checks into your pipelines. Here are a few examples:
Python app: This example shows the difference between the
include
andparent-child
approaches.
Detailed video tutorial from our team
Last updated