Skip to content

Commit a7496bb

Browse files
andrei-pavelandrei-pavel
committed
[#3605] Do not run sast on scheduler
1 parent f3917df commit a7496bb

File tree

1 file changed

+13
-10
lines changed

1 file changed

+13
-10
lines changed

.gitlab-ci.yml

Lines changed: 13 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -295,15 +295,9 @@ include:
295295
.sast-analyzer:
296296
extends: sast
297297
stage: test
298-
<<: *rules_for_test_stage
299298
allow_failure: true
300299
script:
301300
- /analyzer run
302-
rules:
303-
- if: $SAST_DISABLED
304-
when: never
305-
- if: $CI_PIPELINE_SOURCE == 'schedule'
306-
when: never
307301

308302
flawfinder-sast:
309303
extends: .sast-analyzer
@@ -313,12 +307,21 @@ flawfinder-sast:
313307
SAST_ANALYZER_IMAGE_TAG: latest
314308
SAST_ANALYZER_IMAGE: "$SECURE_ANALYZERS_PREFIX/flawfinder:$SAST_ANALYZER_IMAGE_TAG"
315309
rules:
310+
- if: $SAST_DISABLED
311+
when: never
312+
- if: $CI_PIPELINE_SOURCE == 'schedule'
313+
when: never
316314
- if: $SAST_EXCLUDED_ANALYZERS =~ /flawfinder/
317315
when: never
318-
- if: $CI_COMMIT_BRANCH
319-
exists:
320-
- '**/*.cc'
321-
- '**/*.h'
316+
- when: always
322317

323318
semgrep-sast:
324319
extends: .sast-analyzer
320+
rules:
321+
- if: $SAST_DISABLED
322+
when: never
323+
- if: $CI_PIPELINE_SOURCE == 'schedule'
324+
when: never
325+
- if: $SAST_EXCLUDED_ANALYZERS =~ /semgrep/
326+
when: never
327+
- when: always

0 commit comments

Comments
 (0)