As we reevaluate how to best support and maintain Staging Ref in the future, we encourage development teams using this environment to highlight their use cases in the following issue: https://gitlab.com/gitlab-com/gl-infra/software-delivery/framework/software-delivery-framework-issue-tracker/-/issues/36.

Skip to content
Snippets Groups Projects

semgrep-sast

Passed Started by
Paulina Sedlak-Jakubowska
@psedlak-jakubowska
1Running with gitlab-runner 16.10.0 (81ab07f6)
2 on staging-ref-autoscale-instance-runner x5kFc4P8-, system ID: s_83e1c3d437f6
3 Resolving secrets 00:00
4 Preparing the "docker+machine" executor 00:06
5Using Docker executor with image registry.gitlab.com/security-products/semgrep:5 ...
6Pulling docker image registry.gitlab.com/security-products/semgrep:5 ...
7Using docker image sha256:d6b7df6856b4671898faa4345e74986f61df56d754fdf571432107bc7d0dafff for registry.gitlab.com/security-products/semgrep:5 with digest registry.gitlab.com/security-products/semgrep@sha256:7710b369c90822c44b2041d635327c910607b095267bc241fd7b9eb13ebb86d3 ...
8 Preparing environment 00:03
9Running on runner-x5kfc4p8--project-149212-concurrent-0 via runner-x5kfc4p8--st-ref-autoscale-1725625067-c3da6507...
10 Getting source from Git repository 00:01
11Fetching changes with git depth set to 20...
12Reinitialized existing Git repository in /builds/my-ce-test-group/test-project/.git/
13Checking out 5293981a as detached HEAD (ref is prod-1)...
14Skipping Git submodules setup
15 Executing "step_script" stage of the job script 00:18
16Using docker image sha256:d6b7df6856b4671898faa4345e74986f61df56d754fdf571432107bc7d0dafff for registry.gitlab.com/security-products/semgrep:5 with digest registry.gitlab.com/security-products/semgrep@sha256:7710b369c90822c44b2041d635327c910607b095267bc241fd7b9eb13ebb86d3 ...
17$ /analyzer run
18[INFO] [Semgrep] [2024-09-06T12:39:03Z] ▶ GitLab Semgrep analyzer v5.12.0
19[INFO] [Semgrep] [2024-09-06T12:39:03Z] ▶ Detecting project
20[INFO] [Semgrep] [2024-09-06T12:39:03Z] ▶ Analyzer will attempt to analyze all projects in the repository
21[INFO] [Semgrep] [2024-09-06T12:39:03Z] ▶ Loading ruleset for /builds/my-ce-test-group/test-project
22[WARN] [Semgrep] [2024-09-06T12:39:03Z] ▶ /builds/my-ce-test-group/test-project/.gitlab/sast-ruleset.toml not found, ruleset customization will be disabled.
23[INFO] [Semgrep] [2024-09-06T12:39:03Z] ▶ Running analyzer
24[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ 19 active rule files detected with 590 active rules
25[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/bandit.yml': '8daafbc6505097e54273c6a18343fc2d554db81e4105291833fb9286e4f1a735'
26[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/eslint.yml': '5deb869b3ef519e4224caf31036909b5947e065ed41e0899ea1f410ecfef8113'
27[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/find_sec_bugs.yml': '4b01c3c83bb16d764e079bbedd62323d17411fe012a81c0147e068dfbade4421'
28[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/find_sec_bugs_scala.yml': '8b638a7eac00246f0357232ebb944ee9559d458e975d57d1a673aa3221dac6de'
29[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/flawfinder.yml': 'e7291bf4b5a5442b74f269c809a976fd6e71eef77b49ee68ee6e05cf72c984ed'
30[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/gitlab/gitlab_ee_java.yml': '063cfc232f38a47ec6500568cec8d919a0f15a1d2712fb171c22e8a91a8eec61'
31[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/gitlab/gitlab_ee_javascript.yml': 'fae03945e0582ede071eaa6b26f33f33844acd8049f733b510aebdaedbb26899'
32[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/gitlab_ce_python.yml': '2a58553737231839810f33b0ee45cce34b09f78b65966982d6f6df0b0a1101f0'
33[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/gitlab_ce_scala.yml': 'e7a4bf842ee192ba97d6b28be2bb2b7bd7bd1d52e9028974528c5f1267e40b19'
34[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/gosec.yml': '2366cfccdfdfefb1b2480185196510765180e5873f12dc239ef56520e9dc75a2'
35[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl-cc/brakeman.yml': '55c155e439ca87c90d8a34a7698567c2271ec6417c75a2d17122722353bef20b'
36[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_java.yml': 'ee1162d899c15b1527920f438af6d6b71b438a5b1ed06ac3f0cf7e7e5008d1bc'
37[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_javascript.yml': '85fd91c797a0da882b4d7ccd332bf72e15a9ec676a0e00d10b83bc7e516b2ac3'
38[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl-cc/gitlab_lgpl_cc_python.yml': '0b6575628008f352dd6de48d816c2f10375f2c7b6641fc385542caacb5b37134'
39[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl-cc/phpcs_security_audit.yml': 'b6f2680d1ad1e5466971d31a3940460cae1fc1a79ffb3f946ac5aea6ef605c49'
40[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl/find_sec_bugs_kotlin.yml': '48d7ddd3efe33bc2b349a32b1764cab23370c9e7f17e207b9c20ce0308843100'
41[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl/mobsf.yml': 'd268e00a6ed31150e3a38ac05222f22315be2ce87fc970edffaa9e6abebbc650'
42[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/lgpl/nodejs_scan.yml': '3358522ffd809a3442973c446838bf34b703221c4f2afe75eee3e5eae8899fbe'
43[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ * rule file '/rules/security_code_scan.yml': 'caca09457d200b5e73cc7ef1a220d642fb0b34431a4416539e51d5f9192deb79'
44[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ Combined rule checksum: '6cfcc365534b77e6374a3e947d8251126e353a7a2921996c19191c46f53ea214'
45[INFO] [Semgrep] [2024-09-06T12:39:04Z] ▶ Using the GitLab SAST default ruleset
46[INFO] [Semgrep] [2024-09-06T12:39:20Z] ▶ Creating report
47[INFO] [2024-09-06T12:39:21Z] ▶ /builds/my-ce-test-group/test-project/gl-report-post.json written
48 Uploading artifacts for successful job 00:01
49Uploading artifacts...
50gl-sast-report.json: found 1 matching artifact files and directories
51Uploading artifacts as "sast" to coordinator... 201 Created id=75225 responseStatus=201 Created token=glcbt-64
52 Cleaning up project directory and file based variables 00:01
53Job succeeded

As we reevaluate how to best support and maintain Staging Ref in the future, we encourage development teams using this environment to highlight their use cases in the following issue: https://gitlab.com/gitlab-com/gl-infra/software-delivery/framework/software-delivery-framework-issue-tracker/-/issues/36.