Commit 62605f20 authored by Pierre Smeyers's avatar Pierre Smeyers
Browse files

Merge branch 'fix/mobsfscan-artifact' into 'master' 

Fix MobSFScan Artifact Upload and Job Exit Code Handling

Closes #16

See merge request to-be-continuous/mobsf!54
parents ca7aec1e df970af9

README.md

+3 −0
Original line number Diff line number Diff line
@@ -75,6 +75,9 @@ This job can be enabled or disabled based on the `sources-scan-disabled` variabl 


It is bound to the `package-test` stage.



**Reports:**  

The `mobsf-code` job produces both a JSON report (`reports/mobsf-code.native.json`) and an additional HTML report (`reports/mobsf-code.native.html`) as job artifacts.



### Secrets management



Here are some advices about your **secrets** (variables marked with a :lock:):

templates/gitlab-ci-mobsf.yml

+4 −1
Original line number Diff line number Diff line
@@ -471,11 +471,14 @@ mobsf-code: 
      then

        mobsfscan ${MOBSF_SOURCES_FOLDER} --json -o reports/mobsf-code.native.json || true

      fi

    # html report (non-failing)

    - mobsfscan ${MOBSF_SOURCES_FOLDER} --html -o reports/mobsf-code.native.html || true

    # console report

    - mobsfscan ${MOBSF_SOURCES_FOLDER}

  artifacts:

    when: always

    paths:

      - "reports/mobsf-code.native.json"

      - "reports/mobsf-code.native.*"

  rules:

    - if: '$MOBSF_SOURCES_SCAN_DISABLED == "true"'

      when: never