SAST include not working on new projects

mlazo · June 29, 2023, 2:14pm

We have existing groups and projects where SAST scans are working using the default yml when enabling SAST:

stages:

test
sast:
stage: test
include:
template: Security/SAST.gitlab-ci.yml

However, when new projects are created under the same pre-existing group the scan is no longer getting invoked. I compared new and old projects and don’t see any configuration(s) that would prevent it from working on new.

Any suggestions?

Current version:

gitlab-ce[15.8.1]

balonik · June 29, 2023, 2:37pm

Are the pipelines triggered or not at all?
Do the new projects have .gitlab-ci.yml?
Do you have AutoDevOps turned off?

mlazo · July 6, 2023, 5:00pm

Hi and thanks for following up!

Pipeline does not trigger at all

Yes they have .gitlab-ci.yml

Yes AutoDevOps it is turned off

balonik · July 7, 2023, 9:06am

If you try to open the Pipeline Editor what does it say?