Draft: Change SAST IaC job finder to use iac-sast (!78223) · Merge requests · GitLab.org / GitLab

Greg Myers requested to merge secure-job-finder-iac-sast into master Jan 13, 2022

What does this MR do and why?

Changes sast_iac to iac-sast in security jobs finder so UI accurately detects when SAST IaC scanning is enabled.

It appears to be looking for sast_iac which does not correspond with the name of any jobs in our SAST templates.

https://gitlab.com/gitlab-org/gitlab/-/blob/master/app/finders/security/security_jobs_finder.rb#L16

The job name is actually iac-sast.

https://gitlab.com/gitlab-org/gitlab/-/blob/master/lib/gitlab/ci/templates/Jobs/SAST-IaC.latest.gitlab-ci.yml#L7

Related MR: !73155 (diffs)

Screenshots or screen recordings

How to set up and validate locally

WIP, validating now - check back soon!

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jan 13, 2022 by Greg Myers

Draft: Change SAST IaC job finder to use iac-sast

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports