add security scanner

.gitlab-ci.yml

@@ -52,7 +52,6 @@ upload-prerelease:
     - npm version --no-git-tag-version prerelease
     - npm publish ./target/npm-build/mastodon_bot --access public
 
-
 upload-release:
   stage: upload
   rules:
@@ -70,3 +69,12 @@ upload-release:
     - cp README.md target/npm-build/mastodon_bot/
     - npm version --no-git-tag-version $CI_COMMIT_TAG
     - npm publish ./target/npm-build/mastodon_bot --access public
+
+sast:
+  variables:
+    SAST_EXCLUDED_ANALYZERS:
+      bandit, brakeman, flawfinder, gosec, kubesec, phpcs-security-audit,
+      pmd-apex, security-code-scan, sobelow, spotbugs
+  stage: test
+include:
+  - template: Security/SAST.gitlab-ci.yml