Add latest changes from gitlab-org/gitlab@13-10-stable-eev13.10.0-rc20210223090520

author: GitLab Bot <gitlab-bot@gitlab.com> 2021-02-23 12:14:52 +0300
committer: GitLab Bot <gitlab-bot@gitlab.com> 2021-02-23 12:14:52 +0300
commit: 347bf09d6ecf4871da234c06ca8ee541e27b5105 (patch)
tree: 2ad6943e0c681c22acc8850d1debc6a983b0e006 /lib/gitlab/ci/templates/Security
parent: 0a51be0866d33273070f535257626a9eb2e10700 (diff)
2 files changed, 8 insertions, 2 deletions
diff --git a/lib/gitlab/ci/templates/Security/API-Fuzzing.gitlab-ci.yml b/lib/gitlab/ci/templates/Security/API-Fuzzing.gitlab-ci.yml
index 135f0df99fe..460cb84460a 100644
--- a/lib/gitlab/ci/templates/Security/API-Fuzzing.gitlab-ci.yml
+++ b/lib/gitlab/ci/templates/Security/API-Fuzzing.gitlab-ci.yml
@@ -172,6 +172,7 @@ apifuzzer_fuzz_dnd:
                     -e FUZZAPI_HAR \
                     -e FUZZAPI_OPENAPI \
                     -e FUZZAPI_POSTMAN_COLLECTION \
+                    -e FUZZAPI_POSTMAN_COLLECTION_VARIABLES \
                     -e FUZZAPI_TARGET_URL \
                     -e FUZZAPI_OVERRIDES_FILE \
                     -e FUZZAPI_OVERRIDES_ENV \
@@ -214,6 +215,7 @@ apifuzzer_fuzz_dnd:
                     -e FUZZAPI_HAR \
                     -e FUZZAPI_OPENAPI \
                     -e FUZZAPI_POSTMAN_COLLECTION \
+                    -e FUZZAPI_POSTMAN_COLLECTION_VARIABLES \
                     -e FUZZAPI_TARGET_URL \
                     -e FUZZAPI_OVERRIDES_FILE \
                     -e FUZZAPI_OVERRIDES_ENV \
diff --git a/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml b/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml
index 828352743b4..3b166505e0a 100644
--- a/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml
+++ b/lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml
@@ -140,7 +140,9 @@ gosec-sast:
 mobsf-android-sast:
   extends: .sast-analyzer
   services:
-    - name: opensecurity/mobile-security-framework-mobsf:latest
+    # this version must match with analyzer version mentioned in: https://gitlab.com/gitlab-org/security-products/analyzers/mobsf/-/blob/master/Dockerfile
+    # Unfortunately, we need to keep track of mobsf version in 2 different places for now.
+    - name: opensecurity/mobile-security-framework-mobsf:v3.2.9
       alias: mobsf
   image:
     name: "$SAST_ANALYZER_IMAGE"
@@ -161,7 +163,9 @@ mobsf-android-sast:
 mobsf-ios-sast:
   extends: .sast-analyzer
   services:
-    - name: opensecurity/mobile-security-framework-mobsf:latest
+    # this version must match with analyzer version mentioned in: https://gitlab.com/gitlab-org/security-products/analyzers/mobsf/-/blob/master/Dockerfile
+    # Unfortunately, we need to keep track of mobsf version in 2 different places for now.
+    - name: opensecurity/mobile-security-framework-mobsf:v3.2.9
       alias: mobsf
   image:
     name: "$SAST_ANALYZER_IMAGE"
author	GitLab Bot <gitlab-bot@gitlab.com>	2021-02-23 12:14:52 +0300
committer	GitLab Bot <gitlab-bot@gitlab.com>	2021-02-23 12:14:52 +0300
commit	347bf09d6ecf4871da234c06ca8ee541e27b5105 (patch)
tree	2ad6943e0c681c22acc8850d1debc6a983b0e006 /lib/gitlab/ci/templates/Security
parent	0a51be0866d33273070f535257626a9eb2e10700 (diff)