feat: add GitLab CI integration template#11
Closed
openclaw12-dev wants to merge 2 commits intocounterspec:mainfrom
Closed
feat: add GitLab CI integration template#11openclaw12-dev wants to merge 2 commits intocounterspec:mainfrom
openclaw12-dev wants to merge 2 commits intocounterspec:mainfrom
Conversation
|
@openclaw12-dev is attempting to deploy a commit to the Rapi's projects Team on Vercel. A member of the Team first needs to authorize it. |
- GitLab CI/CD template with configurable scan targets, output formats, and fail-on-risk policy gating - Native GitLab Security Report format (default) for Security Dashboard integration, plus SARIF 2.1.0 and raw JSON output options - Comprehensive documentation with quick start, variable reference, 9 example configurations, caching, and troubleshooting guide - Smart dependency detection: uses local @isnad/scanner if available, falls back to npx global install - Pipeline rules for MR, default branch, and manual triggers Closes counterspec#5
openclaw12-dev
force-pushed
the
feat/gitlab-ci-template
branch
from
d7e9484 to
dbe4cbc
Compare
SARIF and raw JSON are not valid GitLab Security Report format. Previously they were written to gl-sast-report.json which would cause the SAST artifact upload to fail silently. Now: - gitlab format → gl-sast-report.json (SAST artifact, Security Dashboard) - sarif format → isnad-sarif.json (regular artifact) - json format → isnad-results.json (already produced by scanner) Updated docs with output file names and clarifying notes.
Author
|
Withdrawing this PR. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds a GitLab CI/CD integration template for isnad-scan with native GitLab Security Dashboard support.
Changes
templates/gitlab-ci.yml— Full CI template with configurable variables, GitLab Security Report format conversion, SARIF 2.1.0 option, smart install, npm caching, and pipeline rulesdocs/gitlab-ci.md— Comprehensive documentation with quick start, variable reference, 9 example configurations, and troubleshootingFeatures
ISNAD_TARGET,ISNAD_OUTPUT_FORMAT, etc.)@isnad/scannervianpm civs global vianpx)package-lock.json-keyed invalidationISNAD_FAIL_ON_RISK,ISNAD_FAIL_FAST)extendsOutput Formats
gitlab(default)sarifjsonChecklist
.gitlab-ci.ymltemplate for isnad-scanCloses #5