Use Secure jobs in the security-projects group templates for analyzers.
Problem to solve
Currently analyzer.yml which is included in all Secure SAST and Dependency Scanning analyzers repository doesn't have any SAST and Container Scanning jobs (DAST and Dependency scanning don't apply, those are Golang applications).
- Sasha, Software Developer, https://design.gitlab.com/research/personas#persona-sasha
Include SAST and container scanning jobs to the analyzer.yml file.
What does success look like, and how can we measure that?
SAST and container scanning is run on every push to the security-product analyzers projects.