Add SAST scan feature to gitlab-lsp
The technical discovery work for real-time SAST in the IDEA focused on the gitlab-vscode-extension
. Ultimately, we intend to support a wider range of IDEs.
This issue tracks both the gitlab-lsp
and gitlab-vscode-extension
changes.
Implementation plan
-
If necessary, configure GitLab specific context using custom messages, following the implementations of $/gitlab/token/check
and$/gitlab/telemetry
.-
Update VSCode extension
-
-
Run a scan on a didSave notifications -
Update VSCode extension
-
-
Parse scanner results and relay as Diagnostics -
Update VSCode extension
-
Edited by Jason Leasure