From 21b51d4cbd74f4ecc5b2ed49aad050ec9a092606 Mon Sep 17 00:00:00 2001
From: Paul Schneider <paul@pschneider.fr>
Date: Sun, 20 Jun 2021 04:07:59 +0000
Subject: [PATCH] Set .gitlab-ci.yml to enable or configure SAST

---
 .gitlab-ci.yml | 77 ++++++++++++++++++++++++++++----------------------
 1 file changed, 44 insertions(+), 33 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 6c5df5a..8c5d5ee 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -1,58 +1,69 @@
-# This file is a template, and might need editing before it works on your project.
-# see https://docs.gitlab.com/ee/ci/yaml/README.html for all available options
-
-# you can delete this line if you're not using Docker
+# You can override the included template(s) by including variable overrides
+# See https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
+# Note that environment variables can be set in several places
+# See https://docs.gitlab.com/ee/ci/variables/#priority-of-environment-variables
 image: busybox:latest
-
 before_script:
-  - dotnet restore
-  - dotnet nuget remove source gitlab || true
-
-after_script:
-
+- dotnet restore
+- dotnet nuget remove source gitlab || true
 nonreg:
   stage: test
   script:
-    - |
-      cd test/nuget.host.tests
-      ASPNETCORE_ENVIRONMENT=Development dotnet test
-
+  - |
+    cd test/nuget.host.tests
+    ASPNETCORE_ENVIRONMENT=Development dotnet test
 test2:
   stage: test
   script:
-    - echo "Do another parallel test here"
-    - echo "For example run a lint test"
-
+  - echo "Do another parallel test here"
+  - echo "For example run a lint test"
 publish:
   stage: deploy
   artifacts:
-    paths: 
-      - src/nuget-host/bin/Release/netcoreapp2.1/publish/
+    paths:
+    - src/nuget-host/bin/Release/netcoreapp2.1/publish/
     when: always
   script:
-    - dotnet publish --configuration Release
-
+  - dotnet publish --configuration Release
 deploy:
   stage: deploy
   artifacts:
-    paths: 
-      - src/*/bin/Release/*.nupkg
+    paths:
+    - src/*/bin/Release/*.nupkg
     when: always
   script:
-    - dotnet pack -c Release
-    - dotnet nuget add source --name gitlab --username gitlab+deploy-token-2 --password $CI_JOB_TOKEN --store-password-in-clear-text "$CI_SERVER_URL/api/v4/projects/$CI_PROJECT_ID/packages/nuget/index.json"
-    - dotnet nuget push src/*/bin/Release/*.nupkg -s gitlab
+  - dotnet pack -c Release
+  - dotnet nuget add source --name gitlab --username gitlab+deploy-token-2 --password
+    $CI_JOB_TOKEN --store-password-in-clear-text "$CI_SERVER_URL/api/v4/projects/$CI_PROJECT_ID/packages/nuget/index.json"
+  - dotnet nuget push src/*/bin/Release/*.nupkg -s gitlab
   only:
-    - master
-
+  - master
 pack:
   stage: deploy
   artifacts:
     paths:
-      - src/*/bin/Release/*.nupkg
+    - src/*/bin/Release/*.nupkg
     when: always
   script:
-    - dotnet pack --configuration Release --no-restore
-    - cd src/nuget-cli
-    - dotnet run push -s $NUGETSOURCE -k $NUGETSOURCEAPIKEY ../nuget-host/bin/Release/nuget-host.*.nupkg
-
+  - dotnet pack --configuration Release --no-restore
+  - cd src/nuget-cli
+  - dotnet run push -s $NUGETSOURCE -k $NUGETSOURCEAPIKEY ../nuget-host/bin/Release/nuget-host.*.nupkg
+stages:
+- build
+- test
+- deploy
+- review
+- dast
+- staging
+- canary
+- production
+- incremental rollout 10%
+- incremental rollout 25%
+- incremental rollout 50%
+- incremental rollout 100%
+- performance
+- cleanup
+sast:
+  stage: test
+include:
+- template: Auto-DevOps.gitlab-ci.yml