Other Topics #
In this Section, I’ll touch upon some a few other topics which you can leverage to get full usage out of GitLab’s Security Solutions.
OnDemand Scans #
On-Demand Scans can be used to run DAST whenever we choose as well as on a schedule.
- Go to Security & Compliance > On-Demand Scans
You will be taken to the On-demand scans list which contains a list of scans which have been run in the past with additional details.
Click on the New DAST scan button
Provide a Scan name and Description
Select a Scanner profile or create your own
Select a Site profile or create your own
Click on the Schedule scan box and select a Start time.
Press Save and run scan
Dependency List #
Make sure you have Dependency Scanning enabled on the main branch.
Go to Security & Compliance > Dependency List
Here you can see a list of Dependencies which includes the following sections:
- Vulnerabilties Detected
GraphQL API #
With GitLab’s GraphQL API, we can perform functions on Security Vulnerabilites. This makes it easy to write our own reporting tools.
Create a Personal Access Token
Congratulations! You have now successfully completed this workshop. Want to Contribute and add to this project? See the Contribution Documentation.