Skip to content

GitLab Next

  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
  • GitLab GitLab
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
    • Locked Files
  • Issues 42,934
    • Issues 42,934
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 1,375
    • Merge requests 1,375
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages & Registries
    • Packages & Registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar

GitLab 15.0 is launching on May 22! This version brings many exciting improvements, but also removes deprecated features and introduces breaking changes that may impact your workflow. To see what is being deprecated and removed, please visit Breaking changes in 15.0 and Deprecations.

  • GitLab.org
  • GitLabGitLab
  • Issues
  • #3776
Closed
Open
Created Oct 16, 2017 by Fabio Busatto@bikebillyContributor0 of 3 tasks completed0/3 tasks

CI view for SAST

Description

We have SAST analysis in https://gitlab.com/gitlab-org/gitlab-ee/issues/3723. It creates a report, and some information is partially available in the MR widget (https://gitlab.com/gitlab-org/gitlab-ee/issues/3775).

Proposal

Create a specific CI view for SAST output results.

Links / references

Documentation blurb

Overview

What is it? Why should someone use this feature? What is the underlying (business) problem? How do you use this feature?

Use cases

Who is this for? Provide one or more use cases.

Feature checklist

Make sure these are completed before closing the issue, with a link to the relevant commit.

  • Feature assurance
  • Documentation
  • Added to features.yml

Proposal

As a first iteration, we will bring the SAST view from the MR widget to the Pipeline page. This view will appear under a new tab Security report.

If any vulnerabilities have been detected, the number of vulnerabilities will be shown on the tab's badge

A new row should be added to the 'Pipeline widget', which shows the result of the security report without having to access the tab.

The number of vulnerabilities detected will be a link to http://DOMAIN/PROJECT/pipelines/XXX/security, so clicking it will open the Security report tab

Vulnerabilities detected No vulnerabilities detected
Artboard_2 Artboard
Edited Feb 15, 2018 by Chris Peressini
Assignee
Assign to
Time tracking