# To contribute improvements to CI/CD templates, please follow the Development guide at:
# https://docs.gitlab.com/ee/development/cicd/templates.html
# This specific template is located at:
# https://gitlab.com/gitlab-org/gitlab/-/blob/master/lib/gitlab/ci/templates/Security/DAST-On-Demand-Scan.gitlab-ci.yml
# NOTE: This template is intended for internal GitLab use only and likely will not work properly
# in any other project. Do not include it in your pipeline configuration.
# For information on how to set up and use DAST, visit https://docs.gitlab.com/ee/user/application_security/dast/

stages:
  - build
  - test
  - deploy
  - dast

variables:
  DAST_VERSION: 3
  # Setting this variable will affect all Security templates
  # (SAST, Dependency Scanning, ...)
  SECURE_ANALYZERS_PREFIX: "$CI_TEMPLATE_REGISTRY_HOST/security-products"

dast:
  stage: dast
  image:
    name: "$SECURE_ANALYZERS_PREFIX/dast:$DAST_VERSION"
  variables:
    GIT_STRATEGY: none
  allow_failure: true
  script:
    - /analyze
  artifacts:
    reports:
      dast: gl-dast-report.json