Commit 6be9dc7f authored by SBassett's avatar SBassett
Browse files

Add default semgrep ci template file

(still needs more work)

Bug: T297991
parent b034a540
Pipeline #1419 passed with stage
in 48 seconds
semgrep_check::
image: returntocorp/semgrep-agent:v1
stage: test
allow_failure: false
variables:
SEMGREP_RULES: >- # more at semgrep.dev/explore
p/security-audit
p/secrets
# Upload findings to GitLab SAST Dashboard (remove `script:` line above) [step 2/2]
# script: semgrep-agent --gitlab-json > gl-sast-report.json || true
# artifacts:
# reports:
# sast: gl-sast-report.json
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment