Skip to content

Commit

Permalink
Fix: Make Semgrep-based SAST analyzer available in tagged release(Mer…
Browse files Browse the repository at this point in the history 
…ge pull request gigascience#2095)

Make the Semgrep SAST job available in a tagged release, which is essential for the production release.

Refs: gigascience#2094
  • Loading branch information
@rija
rija authored Nov 20, 2024
2 parents adde9c7 + 262e43c commit 80ea4a6
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 0 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).

## Unreleased

- Fix #2094: Make Semgrep-based SAST analyzer available in tagged release
- Feat #701: Code refactoring to separate upload status transitions and notifications to prepare for upload status overhaul
- Security #1867: Update the gitlab static application security testing (SAST) job using the Semgrep-based analyzer

Expand Down
2 changes: 2 additions & 0 deletions ops/pipelines/gigadb-conformance-security-jobs.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,6 +70,8 @@ check_PHPDoc:

semgrep-sast:
stage: conformance and security
rules:
- if: $CI_COMMIT_BRANCH || $CI_COMMIT_TAG

variables:
CS_ANALYZER_IMAGE: "$CI_TEMPLATE_REGISTRY_HOST/security-products/container-scanning:6"
Expand Down

0 comments on commit 80ea4a6

Please sign in to comment.