Deprecating SAST analyzer SAST_GOSEC_CONFIG variable in favor of custom rulesets

Problem to solve

With the release of SAST Custom Rulesets in GitLab 13.5 we allow greater flexibility in configuration options for our Go analyzer (GoSec). As a result we no longer plan to support our less flexible SAST_GOSEC_CONFIG analyzer setting. This variable will be deprecated in GitLab 13.10, and removed in GitLab 14.0.

Proposal

• Add deprecation comment within the gosec project's source code.
• File removal issue for %14.0 | #328301 (closed).