Edit .gitlab-ci.yml

.gitlab-ci.yml

@@ -1,10 +1,19 @@
-# The Docker image that will be used to build your app
+# You can override the included template(s) by including variable overrides
-image: node:lts
+# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
-create-pages:
+# Secret Detection customization: https://docs.gitlab.com/user/application_security/secret_detection/pipeline/configure
-  pages:
+# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
-    # The folder that contains the files to be exposed at the Page URL
+# Container Scanning customization: https://docs.gitlab.com/ee/user/application_security/container_scanning/#customizing-the-container-scanning-settings
-    publish: website
+# Note that environment variables can be set in several places
-  rules:
+# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
-    # This ensures that only pushes to the default branch will trigger
+stages:
-    # a pages deploy
+- test
-    - if: $CI_COMMIT_REF_NAME == $CI_DEFAULT_BRANCH
+- secret-detection
+sast:
+  stage: test
+include:
+- template: Security/SAST.gitlab-ci.yml
+- template: Security/Secret-Detection.gitlab-ci.yml
+variables:
+  SECRET_DETECTION_ENABLED: 'true'
+secret_detection:
+  stage: secret-detection