Configure Pipeline Script
Click to view navigation pane

Home

Configure Pipeline Script

We provide you with a pipeline script that you can use in the repository. You can also use the Qualys template for IaC scans that are added in GitLab.

To use the template:

  1. 1. In GitLab, navigate to your repository.
  2. 2. Click plusicon.png > New file.
  3. 3. Select the .gitlab-ci.yml from the Select a template type drop-down.

    The Apply a template drop-down is available when you select the template type.

    gitlabymlfiletemplate.png

  4. Select the Qualys-IaC-Security from the Apply a template drop-down.

Once you select the template, the file's contents are automatically loaded.

gitlabymlfile.png

Alternatively, you can also create the .gitlab-ci.yml file in the root directory of your repository with the content provided.

Contents of Pipeline Script (.gitlab-ci.yml)

stages:

 - build

 - test

 - qualys_iac_scan

 - deploy

qualys_iac_sast:

 stage: qualys_iac_scan

 image:

   name: qualys/qiac_security_cli:latest

   entrypoint: [""]

 script:

   - sh /home/qiac/gitlab.sh

 artifacts:

   name: "qualys-iac-sast-artifacts"

   paths:

     - qualys_iac_ci_result.json

   reports:

     sast: gl-sast-qualys-iac-ci-report.json

 Next step:

Trigger Scan