diff options
author | Jaime Martinez <jmartinez@gitlab.com> | 2020-08-24 02:39:29 +0300 |
---|---|---|
committer | Jaime Martinez <jmartinez@gitlab.com> | 2020-08-24 02:39:29 +0300 |
commit | c25cef21485d411ebc3e163c5babe70a011bffa3 (patch) | |
tree | a172baf9c3a041a6145b0e84ec1fa2e4ede2b254 /.gitlab/ci/prepare.yml | |
parent | 69b756610687752929b98ee681495a99a199bb6c (diff) |
Use rules from referencereorg-ci-config-file
Diffstat (limited to '.gitlab/ci/prepare.yml')
-rw-r--r-- | .gitlab/ci/prepare.yml | 45 |
1 files changed, 9 insertions, 36 deletions
diff --git a/.gitlab/ci/prepare.yml b/.gitlab/ci/prepare.yml index 2666d6ba..ef438a0b 100644 --- a/.gitlab/ci/prepare.yml +++ b/.gitlab/ci/prepare.yml @@ -6,10 +6,8 @@ include: # workflow rules are not extended by scanner jobs, need to override them manually # TODO: remove when https://gitlab.com/gitlab-org/gitlab/-/issues/218444 is done -license_scanning: +.rules-for-scanners: &rules-for-scanners stage: prepare - variables: - LICENSE_MANAGEMENT_SETUP_CMD: go mod vendor rules: # For merge requests, create a pipeline. - if: '$CI_MERGE_REQUEST_IID' @@ -21,45 +19,20 @@ license_scanning: - if: '$CI_COMMIT_BRANCH =~ /^[\d-]+-stable(-ee)?$/' - if: '$CI_COMMIT_BRANCH =~ /^security\//' +license_scanning: + <<: *rules-for-scanners + variables: + LICENSE_MANAGEMENT_SETUP_CMD: go mod vendor + dependency_scanning: - stage: prepare - rules: - # For merge requests, create a pipeline. - - if: '$CI_MERGE_REQUEST_IID' - # For `master` branch, create a pipeline (this includes on schedules, pushes, merges, etc.). - - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH' - # For tags, create a pipeline. - - if: '$CI_COMMIT_TAG' - # For stable, and security branches, create a pipeline. - - if: '$CI_COMMIT_BRANCH =~ /^[\d-]+-stable(-ee)?$/' - - if: '$CI_COMMIT_BRANCH =~ /^security\//' + <<: *rules-for-scanners secrets-sast: - stage: prepare - rules: - # For merge requests, create a pipeline. - - if: '$CI_MERGE_REQUEST_IID' - # For `master` branch, create a pipeline (this includes on schedules, pushes, merges, etc.). - - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH' - # For tags, create a pipeline. - - if: '$CI_COMMIT_TAG' - # For stable, and security branches, create a pipeline. - - if: '$CI_COMMIT_BRANCH =~ /^[\d-]+-stable(-ee)?$/' - - if: '$CI_COMMIT_BRANCH =~ /^security\//' + <<: *rules-for-scanners gosec-sast: - stage: prepare - rules: - # For merge requests, create a pipeline. - - if: '$CI_MERGE_REQUEST_IID' - # For `master` branch, create a pipeline (this includes on schedules, pushes, merges, etc.). - - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH' - # For tags, create a pipeline. - - if: '$CI_COMMIT_TAG' - # For stable, and security branches, create a pipeline. - - if: '$CI_COMMIT_BRANCH =~ /^[\d-]+-stable(-ee)?$/' - - if: '$CI_COMMIT_BRANCH =~ /^security\//' + <<: *rules-for-scanners # disable eslint-sast since html files are fixtures for testing eslint-sast: |