Limit analyzer.yml SAST_DEFAULT_ANALYZERS to gosec,secrets (!131) · Merge requests · GitLab.org / security-products / ci-templates · GitLab

Lucas Charles requested to merge set-default-sast-analyzers-for-analyzers-to-gosec-secrets into master Jul 23, 2020

What does this MR do?

This prevents noise from the many file detections that occur against our testing fixtures; i.e. flawfinder-sast running against flawfinder see https://gitlab.com/gitlab-org/security-products/analyzers/flawfinder/-/pipelines/169062856/failures

What are the relevant issue numbers?

Does this MR meet the acceptance criteria?

Tests added for this feature/bug

Edited Jul 23, 2020 by Lucas Charles