Update DAST API/API Fuzzing templates to select FIPS image when enabled (!84312) · Merge requests · GitLab.org / GitLab

Michael Eddington requested to merge 354362-api-sec-fips-template into master Apr 04, 2022

What does this MR do and why?

The API Security analyzers (DAST API/API Fuzzing) have a new container image for FIPS. The templates must support image "tags" (-fips) and auto populate it in the rules when CI_GITLAB_FIPS_MODE=true.

Related to #354362 (closed)
Update templates adding new _VERSION_TAG variable
Update templates with a new rule to set _VERSION_TAG when CI_GITLAB_FIPS_MODE=true
Add spec tests to verify behavior
Add Changelog entry
Manually tested

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Apr 06, 2022 by Michael Eddington

Update DAST API/API Fuzzing templates to select FIPS image when enabled

What does this MR do and why?

MR acceptance checklist

Merge request reports