Update to support latest analyzer and changes in ci-templates
requested to merge ifrenkel/fix/analyzer/advisory-db-scan-time-sync-FREEZE into advisory-db-scan-time-sync-FREEZE
Changes
-
gemnasium
analyzer version used inadvisory-db-scan-time-sync-FREEZE
needed to be bumped because this branch started to generate errors when the expectations of the analyzer integration test diverged: gitlab-org/security-products/analyzers/gemnasium!597 (merged) because of schema changes. -
go
project scanning was updated in the analyzer to move away from the textual parsing ofgo.sum
. This required the change togo.mod
,go.sum
, andmain.go
. - The fake vuln had to be updated b/c it was no longer possible to insert a fake vulnerable module into
go.sum
. -
ci-templates
was also updated to change the variable identifying the variable to be searched when evaluating a pipeline with multiple qa jobs: gitlab-org/security-products/ci-templates@a93ac7bc
Edited by Igor Frenkel