Scan diffs for changes commits via UI
Contributes to https://gitlab.com/gitlab-org/gitlab/-/issues/491282 **Problem** Currently, diff scan is applied only to git pushes via ssh/https protocol, because there was no way to distiguishing between RPC actions that triggered the scan. For example, we want to skip the check for merge commit creation but verify commits created via WebIDE. https://gitlab.com/gitlab-org/gitlab/-/issues/423992 introduces an option to pass additional context from Gitaly RPC endpoint to the checker code. **Solution** * Provide `enable_secrets_check` to selected RPC endpoints * Run diff scan for checks triggered by calls to these endpoints
显示
- config/feature_flags/gitlab_com_derisk/secret_checks_for_web_requests.yml 9 个添加, 0 个删除...lags/gitlab_com_derisk/secret_checks_for_web_requests.yml
- ee/lib/gitlab/checks/secrets_check.rb 8 个添加, 1 个删除ee/lib/gitlab/checks/secrets_check.rb
- ee/spec/lib/gitlab/checks/secrets_check_spec.rb 30 个添加, 21 个删除ee/spec/lib/gitlab/checks/secrets_check_spec.rb
- ee/spec/support/shared_contexts/secrets_check_shared_contexts.rb 12 个添加, 0 个删除.../support/shared_contexts/secrets_check_shared_contexts.rb
- lib/gitlab/gitaly_client/conflicts_service.rb 9 个添加, 1 个删除lib/gitlab/gitaly_client/conflicts_service.rb
- lib/gitlab/gitaly_client/operation_service.rb 20 个添加, 6 个删除lib/gitlab/gitaly_client/operation_service.rb
加载中
想要评论请 注册 或 登录