Use more robust security CI includes which will work on dev.gitlab.org
Use more robust security CI includes which will work on https://dev.gitlab.org/gitlab/gitter/webapp
See https://gitlab.com/gitlab-org/gitter/webapp/issues/2118#note_222600113
I tried this on dev.gitlab.org
here
The pipeline is still broken on dev.gitlab.org
but we are running into the .sast
vs sast
problem, see https://gitlab.com/gitlab-org/gitter/webapp/merge_requests/1375#note_221308360
Edited by Eric Eastwood