Bring SAST to Core - ESLint security plugin
Full requirements listing in &2098
Scope of this issue specifically
ESLint security plugin scanning, when Docker-in-Docker is disabled -
SAST_DISABLED_DIND = true
Update SAST vendored template
- Remove check for /sast/ in features for the brakeman analyzers for the DIND-free version.
- Ensure support for downloading artifact
- Update documentation
Update license for the repository from
MIT ExpatMajor Version Bump
- Explicitly stating that we will not be supporting brakeman in Core when Docker-in-Docker is enabled.