config · d19f07072c68a95958dbb0c8790e3683cf3f21ec · gitlab-cn / GitLab

Vasilii Iakliushin 编辑于 2 weeks ago

Contributes to https://gitlab.com/gitlab-org/gitlab/-/issues/491282

**Problem**

Currently, diff scan is applied only to git pushes via ssh/https
protocol, because there was no way to distiguishing between RPC actions
that triggered the scan.

For example, we want to skip the check for merge commit creation but
verify commits created via WebIDE.

https://gitlab.com/gitlab-org/gitlab/-/issues/423992 introduces an
option to pass additional context from Gitaly RPC endpoint to the
checker code.

**Solution**

* Provide `enable_secrets_check` to selected RPC endpoints
* Run diff scan for checks triggered by calls to these endpoints

d19f0707

历史

d19f0707 2 weeks ago

历史

代码所有者

将用户和群组指定为特定文件更改的核准人。了解更多。

名称	最后提交	最后更新
..
application_setting_columns
audit_events/types
environments
events
feature_flags
helpers
initializers
initializers_before_autoloader
knative
locales
metrics
plugins
prometheus
routes
security
vue3migration
README.md
apollo.config.js
application.rb
boot.rb
bounded_contexts.yml
bullet.yml
bundler_setup.rb
cable.yml.example
click_house.yml.example
coverband.rb
database.yml.decomposed-postgresql
database.yml.decomposed-sec-postgresql
database.yml.postgresql
dependency_cruiser.js
dependency_decisions.yml
environment.rb
feature_categories.yml
gitlab.yml.example
gitlab_loose_foreign_keys.yml
gitleaks.toml
known_invalid_graphql_queries.yml
license_finder.yml
mail_room.yml
object_store_settings.rb
open_api.yml
pdfjs.constants.js
puma.example.development.rb
puma.rb.example
redis.yml.example
resque.yml.example
routes.rb
secrets.yml.example
session_store.yml.example
settings.rb
sidekiq.yml.example
sidekiq_queues.yml
smime_signature_settings.rb
spring.rb
storage.yml
tailwind.config.js
upgrade_path.yml
vite.json
vite.rb
weak_password_digests.yml
webpack.config.js
webpack.constants.js
webpack.helpers.js
webpack.vendor.config.js

README.md