pass scanner-specific arguments to flawfinder
Proposal
Allow users to pass scanner-specific arguments to flawfinder
using SAST_SCANNER_ALLOWED_CLI_OPTS
.
Specifically, allow passing --neverignore
argument: https://www.mankier.com/1/flawfinder#--neverignore
Possibly, even extend this to be used with other analyzers that support similar flag.
Relevant Merge Request: gitlab-org/security-products/analyzers/flawfinder!93 (merged)
This feature was requested by a customer in an internal ticket https://gitlab.zendesk.com/agent/tickets/385174
Edited by Kate Grechishkina