Skip to content
Snippets Groups Projects
Name Last commit Last update
.gitlab/security-policies
README.md

Security Policy Project for Pauls copy zach freedom

This project is automatically generated to manage security policies for the project.

The Security Policies Project is a repository used to store policies. All security policies are stored as a YAML file named .gitlab/security-policies/policy.yml, with this format:

---
scan_execution_policy:
- name: Enforce DAST in every pipeline
  description: This policy enforces pipeline configuration to have a job with DAST scan
  enabled: true
  rules:
  - type: pipeline
    branches:
    - master
  actions:
  - scan: dast
    scanner_profile: Scanner Profile A
    site_profile: Site Profile B
- name: Enforce DAST in every pipeline in the main branch
  description: This policy enforces pipeline configuration to have a job with DAST scan for the main branch
  enabled: true
  rules:
  - type: pipeline
    branches:
    - main
  actions:
  - scan: dast
    scanner_profile: Scanner Profile C
    site_profile: Site Profile D

You can read more about the format and policies schema in the documentation.

Default branch protection settings

This project is preconfigured with the default branch set as a protected branch, and only maintainers/owners of Pauls copy zach freedom have permission to merge into that branch. This overrides any default branch protection both at the group level and at the instance level.