Security
Security
Long list of security features
Many are only in Ultimate:
- Container scanning based on trivy and grype
- Dependency scanning based on gemnasium
- Dynamic Application Security Testing (DAST) based on the OWASP Zed Attack Proxy
- Security dashboards
Available in all tiers:
- Secret detection based on gitleaks
- Static Application Security Testing (SAST) based on language specific tools
Hands-On: Secret detection
GitLab automatically adds a job in the stage called test
-
Add include:
include:
- template: Security/Secret-Detection.gitlab-ci.yml
- Check pipeline
- Check report
Hands-On: SAST
GitLab automatically adds jobs in the stage called test
-
Enable SAST:
include:
- template: Security/SAST.gitlab-ci.yml
- Check pipeline
- Check reports