Create a multi-project test solution (!1) · Merge requests · GitLab.org / security-products / Tests / csharp-dotnetcore-multiproject

Aleksandr Soborov requested to merge add-test-project into master Dec 05, 2019

Creates a multi-project test solution including a SAST analyzer test.

The WebApp project returns an insecure traversal vulnerability. The WebLib project returns a weak random generator vulnerability.

Currently, our SAST analyzer only identifies issues in the first project alphabetically. When that issue is fixed, we would expect the QA step of this project to fail as it generates a report including vulnerabilities in two projects instead of just one; at that time, we should update the expectations for the new report.

Closes https://gitlab.com/gitlab-org/quality/team-tasks/issues/269

Edited Dec 05, 2019 by Aleksandr Soborov

Create a multi-project test solution

Merge request reports