Skip to content

Add a Secure Continuous Vulnerability Scanning E2E Spec

Will Meekrequested to merge
secure_cvs_spec into master

What does this MR do and why?

As per #462876 (closed)

Adds a spec to test Continuous Vulnerability Scanning

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

n/a

How to set up and validate locally

Needs to use the GitLab QA scenario from gitlab-qa!1361 (diffs)

  1. Build QA image
gitlab % docker build -t gitlab/gitlab-ee-qa:cvstest --file ./qa/Dockerfile ./
  1. Tag GitLab image from the latest pipeline of this MR eg.
docker pull --platform linux/x86_64 registry.gitlab.com/gitlab-org/build/omnibus-gitlab-mirror/gitlab-ee:<SHA>-ruby3.1.5
docker tag registry.gitlab.com/gitlab-org/build/omnibus-gitlab-mirror/gitlab-ee:<SHA>-ruby3.1.5 gitlab/gitlab-ee:cvstest
  1. Run
gitlab-qa % CHROME_DISABLE_DEV_SHM=true QA_SKIP_PULL=TRUE ./exe/gitlab-qa Test::Integration::ContinuousVulnerabilityScanning gitlab/gitlab-ee:cvstest --no-teardown -- --tag orchestrated qa/specs/features/ee/browser_ui/13_secure/cvs_dependency_scanning_spec.rb
Edited by Will Meek

Merge request reports