1.6 KiB
| type | stage | group | info |
|---|---|---|---|
| reference, howto | Secure | Static Analysis | To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#designated-technical-writers |
Security Configuration (ULTIMATE)
Introduced in GitLab Ultimate 12.6.
Overview
The security configuration page displays the configuration state of each of the security features and can be accessed through a project's sidebar nav.
The page uses the project's latest default branch CI pipeline to determine the configuration state of each feature. If a job with the expected security report artifact exists in the pipeline, the feature is considered configured.
NOTE: Note: If the latest pipeline used Auto DevOps, all security features will be configured by default.
Limitations
It is not yet possible to enable or disable most features using the configuration page. However, instructions on how to enable or disable a feature can be found through the links next to each feature on that page.
If a project does not have an existing CI configuration, then the SAST feature can be enabled by clicking on the "Enable with Merge Request" button under the "Manage" column. Future work will expand this to editing existing CI configurations, and to other security features.