Create a multi-project test solution
Creates a multi-project test solution including a SAST analyzer test.
The WebApp
project returns an insecure traversal vulnerability. The WebLib
project returns a weak random generator vulnerability.
Currently, our SAST analyzer only identifies issues in the first project alphabetically. When that issue is fixed, we would expect the QA step of this project to fail as it generates a report including vulnerabilities in two projects instead of just one; at that time, we should update the expectations for the new report.
Closes https://gitlab.com/gitlab-org/quality/team-tasks/issues/269
Edited by Aleksandr Soborov