Draft: Expose uploaded artifacts when env var is set
What does this MR do?
Writes the artifacts that are internally uploaded to the MobSF server to disk, so they can be manually inspected for debugging purposes. This is only enabled if the SAST_MOBSF_EXPOSE_SCAN_ARTIFACTS
env var is set. Artifacts are written out to a fixed directory (/tmp/scanArchives
), so they can in turn be exposed as CI job artifacts.
What are the relevant issue numbers?
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests updated/added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer