Integrate with Contrast Security
Problem to solve
Community Edition of GitLab does not yet have robust Secure features or categories.
Contrast Security has a community edition that enables some languages to receive some security functionality.
Contrast Security would like to make it easy to offer their community edition features to uor community edition users.
Intended users
Community edition users
Further details
GitLab Secure would like to play well with others, in an agnostic way, and is open to creating generic API, WebHooks and similar mechanisms to allow for other companies, users and groups to integrate in third party tools.
Proposal
Work with Contrast Security to design a generic integration point on the GitLab side that Contrast can leverage on their side to provide a smooth integration point between the two community edition tools.
Permissions and Security
Documentation
Testing
What does success look like, and how can we measure that?
- GitLab makes available an agnostic mechanism for integrate in to one of our categories.
- Community edition users would easily be able to connect and leverage the Contrast Security and GitLab systems for one particular scan type initially, for one specific language.
- Scan data is available in MRs
- Scan data is available in reports and dashboards
- documentation is made available on how to use the generic integration point if a person or company wishes to write an integration.