Configure Dependency Scanning in .gitlab-ci.yml, creating this file if it does not already exist

.gitlab-ci.yml

@@ -1,81 +1,82 @@
+# You can override the included template(s) by including variable overrides
+# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
+# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings
+# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
+# Note that environment variables can be set in several places
+# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
 variables:
   GOCACHE: "${CI_PROJECT_DIR}/_go/cache"
   DOCKER_HOST: tcp://docker:2375
   DOCKER_DRIVER: overlay2
-
 before_script:
-  - mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache}
-  - rm -rf /go/pkg
-  - ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg
-  - ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin
-
+- mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache}
+- rm -rf /go/pkg
+- ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg
+- ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin
 cache:
   key: "$CI_COMMIT_REF_NAME"
   paths:
-    - _go
+  - _go
   untracked: true
-
 stages:
-  - deps
-  - test
-  - build
-  - package
-  - release
-
+- deps
+- test
+- build
+- package
+- release
 deps:
   stage: deps
   image: golang:1.12
   script:
-    - go get -mod=readonly
-
+  - go get -mod=readonly
 test:
   stage: test
   dependencies:
-    - deps
+  - deps
   image: golang:1.12
   script:
-    - go fmt $(go list ./...)
-    - go vet $(go list ./...)
-    - CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt
-
+  - go fmt $(go list ./...)
+  - go vet $(go list ./...)
+  - CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt
 build:
   stage: build
   dependencies:
-    - deps
+  - deps
   image: golang:1.12
   script:
-    - GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder -ldflags '-w -s'
+  - GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder
+    -ldflags '-w -s'
   artifacts:
     paths:
-      - release/
-
+    - release/
 package:
   stage: package
   dependencies:
-    - build
+  - build
   image: docker:stable
   services:
-    - docker:dind
+  - docker:dind
   before_script:
-    - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY
+  - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY
   script:
-    - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA .
-    - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
-    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
-    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
-
+  - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA .
+  - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
+  - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+  - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
 release:
   stage: release
   dependencies:
-    - package
+  - package
   image: docker:stable
   services:
-    - docker:dind
+  - docker:dind
   before_script:
-    - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY
+  - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY
   script:
-    - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
-    - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:latest
-    - docker push $CI_REGISTRY_IMAGE:latest
+  - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+  - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:latest
+  - docker push $CI_REGISTRY_IMAGE:latest
   only:
-    - master
+  - master
+include:
+- template: Security/Dependency-Scanning.gitlab-ci.yml