Pin to a recent MobSF base image
What does this MR do?
Pins to a more recent MobSF base image using the image digest SHA. We were previously pinning to v3.6.0 which hasn't been updated in some time.
This should allow us to incorporate fixes as they're merged into the MobSF master branch.
The only change required for the wrapper code is to handle a new response format from MobSF; they now include a findings
top-level object in the JSON response.
What are the relevant issue numbers?
- https://gitlab.com/gitlab-com/sec-sub-department/section-sec-request-for-help/-/issues/58
- gitlab-org/gitlab#417573 (closed)
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests updated/added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Lucas Charles