Support SSH Git protocol for Security Secret Detection Scan Remote Rulesets

Release notes

Allow to use Secret Detection Scanning Remote Rulesets in environments where HTTPS git operations are prohibited.

Problem to solve

Currently only HTTPS endpoints are allowed through the analyzer ruleset:

const (
	// GitProtocol is currently limited to cloning over https only
	GitProtocol = "https://"
)

Proposal

• The value of SECRET_DETECTION_RULEST_GIT_REFERENCE should accept a full protocol-plus-uri git reference to enable cloning independent of the method. Parse the value and default to prepending https:// only if there is no protocol in the URL.
• The code which implements the actual cloning for remote rulest retreval must also be updated to support other methods than HTTPS

Intended users

Feature Usage Metrics

Does this feature require an audit event?

This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.