mirror of
https://gitlab.com/components/sast.git
synced 2025-06-30 23:48:27 +02:00
Merge branch 'add-clangsa' into 'main'
Draft: Add clangsa analyzer See merge request components/sast!29
This commit is contained in:
Jason Leasure
commit
0cd55615a7
1 changed files with 18 additions and 16 deletions
|
|
@ -69,14 +69,6 @@ spec:
|
||||||
|
|
||||||
.semgrep-with-advanced-sast-exist-rules:
|
.semgrep-with-advanced-sast-exist-rules:
|
||||||
exists:
|
exists:
|
||||||
- '**/*.c'
|
|
||||||
- '**/*.cc'
|
|
||||||
- '**/*.cpp'
|
|
||||||
- '**/*.c++'
|
|
||||||
- '**/*.cp'
|
|
||||||
- '**/*.cxx'
|
|
||||||
- '**/*.h'
|
|
||||||
- '**/*.hpp'
|
|
||||||
- '**/*.scala'
|
- '**/*.scala'
|
||||||
- '**/*.sc'
|
- '**/*.sc'
|
||||||
- '**/*.php'
|
- '**/*.php'
|
||||||
|
|
@ -96,14 +88,6 @@ spec:
|
||||||
- '**/*.jsx'
|
- '**/*.jsx'
|
||||||
- '**/*.ts'
|
- '**/*.ts'
|
||||||
- '**/*.tsx'
|
- '**/*.tsx'
|
||||||
- '**/*.c'
|
|
||||||
- '**/*.cc'
|
|
||||||
- '**/*.cpp'
|
|
||||||
- '**/*.c++'
|
|
||||||
- '**/*.cp'
|
|
||||||
- '**/*.cxx'
|
|
||||||
- '**/*.h'
|
|
||||||
- '**/*.hpp'
|
|
||||||
- '**/*.go'
|
- '**/*.go'
|
||||||
- '**/*.java'
|
- '**/*.java'
|
||||||
- '**/*.cs'
|
- '**/*.cs'
|
||||||
|
|
@ -254,3 +238,21 @@ spotbugs-sast:
|
||||||
- if: $CI_COMMIT_BRANCH
|
- if: $CI_COMMIT_BRANCH
|
||||||
exists:
|
exists:
|
||||||
- '**/*.groovy'
|
- '**/*.groovy'
|
||||||
|
|
||||||
|
clangsa-sast:
|
||||||
|
extends: .sast-analyzer
|
||||||
|
image:
|
||||||
|
name: "$CI_TEMPLATE_REGISTRY_HOST/gitlab-org/security-products/analyzers/clangsa:0"
|
||||||
|
rules:
|
||||||
|
- if: '"$[[ inputs.excluded_analyzers ]]" =~ /clangsa/'
|
||||||
|
when: never
|
||||||
|
- if: $CI_COMMIT_BRANCH
|
||||||
|
exists:
|
||||||
|
- "**/*.c"
|
||||||
|
- "**/*.cc"
|
||||||
|
- "**/*.cpp"
|
||||||
|
- "**/*.c++"
|
||||||
|
- "**/*.cp"
|
||||||
|
- "**/*.cxx"
|
||||||
|
- "**/*.h"
|
||||||
|
- "**/*.hpp"
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue