...
Note: the Gitlab pipeline must run the Data Theorem SAST step on a docker executoran that supports the image feature.
See https://docs.gitlab.com/runner/executors/#compatibility-chart for more information on compatible executors
| Code Block |
|---|
stages:
- security-scan
datatheorem-sast-scan-job:
tags:
- gitlab-runner-docker # Needs to be a docker executoran executor compatible with the`image` feature
stage: security-scan
image: us-central1-docker.pkg.dev/dev-scandal-us/datatheorem-sast-dev/datatheorem-sast-dev:latest
script:
- echo $CI_COMMIT_REF_NAME $CI_COMMIT_BRANCH
- export DT_SAST_API_KEY=$DT_SAST_API_KEY
- export DT_SAST_REPOSITORY_NAME=$CI_PROJECT_PATH
- export DT_SAST_REPOSITORY_PLATFORM="GITLAB_ON_PREM"
- export DT_SAST_REPOSITORY_ID=$CI_PROJECT_ID
- export DT_SAST_REPOSITORY_HTML_URL=$CI_PROJECT_URL
- export DT_SAST_REPOSITORY_DEFAULT_BRANCH_NAME=$CI_DEFAULT_BRANCH
- export DT_SAST_SCAN_HEAD_REF=$CI_COMMIT_BRANCH
- data_theorem_sast_analyzer scan ./
|