meissa/mastodon-bot
Archived
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add security scanner

Browse source
This commit is contained in:
jem 2021-02-10 15:23:06 +01:00
parent b03e2456ee
commit 5ad6114423
1 changed files with 18 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
.gitlab-ci.yml
View file

@ -1,4 +1,4 @@
image: node:lts-buster image: node:lts-buster
stages: stages:
- test - test
@ -12,9 +12,9 @@ cache:
default: default:
before_script: before_script:
- apt update && apt -qqy install openjdk-11-jre-headless - apt update && apt -qqy install openjdk-11-jre-headless
- npm install - npm install
- npm install -g --save-dev shadow-cljs - npm install -g --save-dev shadow-cljs
build: build:
stage: test stage: test
@ -27,7 +27,7 @@ package:
- if: '$CI_COMMIT_BRANCH == "master"' - if: '$CI_COMMIT_BRANCH == "master"'
artifacts: artifacts:
paths: paths:
- target/ - target/
script: script:
- shadow-cljs compile app - shadow-cljs compile app
- chmod a+x target/mastodon-bot.js - chmod a+x target/mastodon-bot.js
@ -52,7 +52,6 @@ upload-prerelease:
- npm version --no-git-tag-version prerelease - npm version --no-git-tag-version prerelease
- npm publish ./target/npm-build/mastodon_bot --access public - npm publish ./target/npm-build/mastodon_bot --access public
upload-release: upload-release:
stage: upload stage: upload
rules: rules:
@ -70,3 +69,12 @@ upload-release:
- cp README.md target/npm-build/mastodon_bot/ - cp README.md target/npm-build/mastodon_bot/
- npm version --no-git-tag-version $CI_COMMIT_TAG - npm version --no-git-tag-version $CI_COMMIT_TAG
- npm publish ./target/npm-build/mastodon_bot --access public - npm publish ./target/npm-build/mastodon_bot --access public
sast:
variables:
SAST_EXCLUDED_ANALYZERS:
bandit, brakeman, flawfinder, gosec, kubesec, phpcs-security-audit,
pmd-apex, security-code-scan, sobelow, spotbugs
stage: test
include:
- template: Security/SAST.gitlab-ci.yml