Feat: Ruby add sast stage #126

lilianeconstantino · 2021-12-23T16:35:30Z

Added a SAST (Static application security testing) stage for Ruby. In pipelinit, semgrep is the tool used for static analysis.

Resolves: #125

To test:
In a GitHub repository with a ruby file, create a pull request of a branch. See the tests performed also in the Action tab.

We get this on GitHub PR:

And this on GitHub Actions:

oesgalha

@lilianeconstantino I've update the #125 description to build a SAST stage more similar to other stacks (prefer the owasp-top-ten to web apps).

Can you check it out and update this PR? Sorry for the inconvenience.

oesgalha

Well done! 👏

Just one note:
You've included a new sample project, but the test is missing. Can you add it in the default_test.ts file?

lilianeconstantino closed this Dec 23, 2021

lilianeconstantino force-pushed the feat/125-add-sast-stage branch from a6ae8a3 to 40ab38c Compare December 23, 2021 19:01

joao10lima reopened this Dec 23, 2021

lilianeconstantino force-pushed the feat/125-add-sast-stage branch from 6741136 to e6e6892 Compare December 23, 2021 19:37

oesgalha requested changes Dec 28, 2021

View reviewed changes

oesgalha requested changes Dec 30, 2021

View reviewed changes

Liliane Constantino added 3 commits January 3, 2022 15:56

feat: ruby add sast stage

79efc5f

feat: detection if ruby code is a web application or not

6c73ede

feat: added web app example with sinatra

049d6ff

lilianeconstantino force-pushed the feat/125-add-sast-stage branch 2 times, most recently from f8d23a1 to c5eff3f Compare January 3, 2022 19:51

Fix: web app example sinatra

695a24e

lilianeconstantino force-pushed the feat/125-add-sast-stage branch from c5eff3f to 695a24e Compare January 3, 2022 19:55

oesgalha merged commit 82be558 into main Jan 4, 2022

oesgalha deleted the feat/125-add-sast-stage branch January 4, 2022 18:12

Provide feedback