4. Add Container and Dependency Scanning

Add Container and Dependency scanning to the CI pipeline.

1. Find the 4-add-container-and-dependency-scanning branch in Repository > Branches
2. Click Merge Request to create a new MR from this branch
3. Uncheck Delete source branch when merge request is accepted. if you prefer to keep the branch.
4. Click Create Merge Request
5. Review the changes to .gitlab-ci.yml in the Changes tab
6. Note CS_DEFAULT_BRANCH_IMAGE defined in variables
7. Review the .gitlab/Jobs/Container-Scanning.gitlab-ci.yml template
8. Note the artifacts:paths: block, these will be used later when uploading additional evidence
9. Review the .gitlab/Jobs/Dependency-Scanning.gitlab-ci.yml template
10. Click Mark as Ready on the Overview tab
11. Click Merge

Edited Apr 28, 2023 by Paul Pickhardt

Assignee Loading

Time tracking Loading

Confidentiality

Confidentiality controls have moved to the issue actions menu () at the top of the page.