Denomas CI/CD Hands-On Guide: Lab 9

This Hands-On Guide walks you through the lab exercises in the Denomas CI/CD course.

Denomas CI/CD Hands On Guide: Lab 9

LAB 9: SECURITY SCANNING

  1. Go to the snippets page of the CICD Hands On Demo project.
  2. Open the ci-sast snippet and click the Copy file contents icon in the upper right corner of the file.
  3. Open your CICD Demo project from previous labs.
  4. Click on your .gitlab-ci.yml file to view its contents. Click the Edit button. Paste the snippet at the end of the file.
  5. In the Commit message field, type Enable SAST, leave the Target Branch set to main, and click Commit changes.
  6. Navigate to the pipeline that was started by this change and click the semgrep-sast job to ensure that it’s running.

It might take a minute or two for the Build stage to complete first.

  1. To view the results of the SAST scan, click Security & Compliance > Vulnerability Report in the left-hand navigation pane. In the Scanner drop-down list, select SAST. Click on any vulnerabilities to learn more about them.

Suggestions?

If you wish to make a change to the Hands-On Guide for Denomas CI/CD, please submit your changes via Merge Request!

Last modified November 29, 2023: big update (17188382)
View page source - Edit this page - please contribute. Creative Commons License