Add comments for SAST to GitLab CI config

would use https://security-code-scan.github.io but currently there's no way to limit it to one .sln so it tries to build cores and breaks
Randomno · Mar 4, 2021 · c28de35 · c28de35
1 parent 513dbcf
commit c28de35
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
@@ -1,3 +1,6 @@
+#include:
+#- template: Security/SAST.gitlab-ci.yml
+
 variables:
   CI_HAWK_ARTIFACT_NAME: "BizHawk_devbuild_${CI_COMMIT_SHORT_SHA}"
   CI_HAWK_TMPARTIFACT_NAME: "BizHawk_tempbuild_${CI_COMMIT_REF_SLUG}_${CI_COMMIT_SHORT_SHA}"
@@ -125,6 +128,11 @@ run_tests:
     - Dist/BuildTestRelease.sh || Dist/BuildTestRelease.sh
   stage: test
 
+#sast:
+#  variables:
+#    SAST_EXCLUDED_ANALYZERS: bandit, brakeman, eslint, flawfinder, gosec, kubesec, nodejs-scan, phpcs-security-audit, pmd-apex, sobelow, spotbugs
+#  stage: test
+
 #cache:
 #  key: "$CI_COMMIT_REF_SLUG"
 #  paths: