Gitlab Advanced SAST | Implement guidelines for Sec projects
Why are we doing this work
Sec section has guidelines for project setup that need to be followed.
The following projects were found to have gaps that need to be addressed:
- https://gitlab.com/gitlab-org/security-products/oxeye/product/lightz
- https://gitlab.com/gitlab-org/security-products/oxeye/product/lightz-aio
- https://gitlab.com/gitlab-org/security-products/analyzers/gitlab-advanced-sast
Relevant links
Non-functional requirements
-
Documentation: -
Feature flag: -
Performance: -
Testing:
Implementation plan
- For each project in scope:
-
Audit configuration against guidelines -
Update configuration to match guidelines
-
Verification steps
Edited by Thiago Figueiró