yesBad/proton-bridge
1
0
Fork 0
forked from Silverfish/proton-bridge
Code Actions Activity

fix(BRIDGE-49): Configure gitleaks baseline and grype config

Browse Source
This commit is contained in:
Atanas Janeshliev
2024-05-02 10:59:43 +00:00
parent 8a859082cd
commit a28dc9f2f3
2 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.gitlab-ci.yml
View File

@ -45,7 +45,8 @@ include:
- component: gitlab.protontech.ch/proton/devops/cicd-components/devsecops/gitleaks/scan-repository@~latest - component: gitlab.protontech.ch/proton/devops/cicd-components/devsecops/gitleaks/scan-repository@~latest
inputs: inputs:
stage: analyse stage: analyse
- component: gitlab.protontech.ch/proton/devops/cicd-components/devsecops/grype/scan-code@0.0.12 cli-args: "--baseline-path $GITLEAKS_BASELINE"
- component: gitlab.protontech.ch/proton/devops/cicd-components/devsecops/grype/scan-code@~latest
inputs: inputs:
stage: analyse stage: analyse

2
.grype.yaml Normal file
View File

@ -0,0 +1,2 @@
# Check out for configuration details: https://github.com/anchore/grype?tab=readme-ov-file#configuration
fail-on-severity: "medium"