Skip to content
Snippets Groups Projects

semgrep-appsec-custom-rules

Passed Started by
Fabio Pitino
@fabiopitino
1Running with gitlab-runner 16.1.0~beta.5.gf131a6a2 (f131a6a2)
2 on blue-3.private.runners-manager.gitlab.com/gitlab.com/gitlab-org 6io2xoDD, system ID: s_8f94f7760223
3 feature flags: FF_NETWORK_PER_BUILD:true, FF_USE_FASTZIP:true, FF_USE_IMPROVED_URL_MASKING:true
4 Resolving secrets 00:00
5 Preparing the "docker+machine" executor 00:08
6Using Docker executor with image returntocorp/semgrep ...
7Pulling docker image returntocorp/semgrep ...
8Using docker image sha256:e170bf8376aa292f40c47f288fad5c86c1635b1957a995b100dc8f20b7a25e57 for returntocorp/semgrep with digest returntocorp/semgrep@sha256:4cbb04219a0c590fe26e15cf16d476affaf7b87d74d890668cc2665c727d239b ...
9 Preparing environment 00:04
10Running on runner-6io2xodd-project-278964-concurrent-0 via runner-6io2xodd-private-1685679447-5cd9d556...
11 Getting source from Git repository 00:26
12Fetching changes with git depth set to 20...
13Initialized empty Git repository in /builds/gitlab-org/gitlab/.git/
14Created fresh repository.
15remote: Enumerating objects: 139970, done.
16remote: Counting objects: 100% (139970/139970), done.
17remote: Compressing objects: 100% (94736/94736), done.
18remote: Total 139970 (delta 61223), reused 92025 (delta 39894), pack-reused 0
19Receiving objects: 100% (139970/139970), 123.36 MiB | 32.31 MiB/s, done.
20Resolving deltas: 100% (61223/61223), done.
21From https://git-us-east1-c.ci-gateway.int.gprd.gitlab.net:8989/gitlab-org/gitlab
22 * [new ref] refs/pipelines/887306308 -> refs/pipelines/887306308
23Checking out 95754c79 as detached HEAD (ref is refs/merge-requests/122015/merge)...
24Skipping Git submodules setup
25$ git remote set-url origin "${CI_REPOSITORY_URL}"
26 Executing "step_script" stage of the job script 00:04
27Using docker image sha256:e170bf8376aa292f40c47f288fad5c86c1635b1957a995b100dc8f20b7a25e57 for returntocorp/semgrep with digest returntocorp/semgrep@sha256:4cbb04219a0c590fe26e15cf16d476affaf7b87d74d890668cc2665c727d239b ...
28$ git fetch origin master
29From https://gitlab.com/gitlab-org/gitlab
30 * branch master -> FETCH_HEAD
31 * [new branch] master -> origin/master
32$ semgrep ci --gitlab-sast --metrics off --config $CUSTOM_RULES_URL \ # collapsed multi-line command
33
34
35┌────────────────┐
36│ Debugging Info │
37└────────────────┘
38
39 SCAN ENVIRONMENT
40 versions - semgrep 1.24.1 on python 3.11.3
41 environment - running in environment gitlab-ci, triggering event is
42 pull_request
43
44
45┌─────────────┐
46│ Scan Status │
47└─────────────┘
48 Scanning 14 files tracked by git with 2 Code rules:
49
50 Language Rules Files Origin Rules
51 ────────────────────────── ─────────────────
52 ruby 1 5 Unknown 2
53 js 1 1
54
55 Current version has 0 findings.
56Skipping baseline scan, because there are no current findings.
57
58
59┌──────────────┐
60│ Scan Summary │
61└──────────────┘
62Some files were skipped or only partially analyzed.
63 Scan was limited to files changed since baseline commit.
64 Scan skipped: 5 files not matching --include patterns
65 For a full list of skipped files, run semgrep with the --verbose flag.
66(need more rules? `semgrep login` for additional free Semgrep Registry rules)
67CI scan completed successfully.
68 Found 0 findings (0 blocking) from 2 rules.
69 No blocking findings so exiting with code 0
70 Uploading artifacts for successful job 00:02
71Uploading artifacts...
72gl-sast-report.json: found 1 matching artifact files and directories
73WARNING: Upload request redirected location=https://gitlab.com/api/v4/jobs/4400964064/artifacts?artifact_format=zip&artifact_type=archive new-url=https://gitlab.com
74WARNING: Retrying... context=artifacts-uploader error=request redirected
75Uploading artifacts as "archive" to coordinator... 201 Created id=4400964064 responseStatus=201 Created token=64_V6VYs
76 Cleaning up project directory and file based variables 00:00
77Job succeeded