{"id":20134256,"url":"https://github.com/trickfilm400/gitlab-security-scan-parser","last_synced_at":"2026-05-12T14:33:41.242Z","repository":{"id":215650270,"uuid":"739257309","full_name":"Trickfilm400/gitlab-security-scan-parser","owner":"Trickfilm400","description":"CI/CD Job to analyize Application test files for GitLab's Free \u0026 Premium tier (as it is only available in Ultimate)","archived":false,"fork":false,"pushed_at":"2025-12-04T19:54:36.000Z","size":181,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2026-03-19T02:47:00.752Z","etag":null,"topics":["ci-cd","cicd","gitlab","parser","pipeline","sast","scanner","security"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Trickfilm400.png","metadata":{"files":{"readme":"readme.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-01-05T06:13:02.000Z","updated_at":"2025-12-04T19:54:40.000Z","dependencies_parsed_at":"2025-01-13T09:22:57.454Z","dependency_job_id":"b5d90787-3583-44e9-ba16-384282a12f88","html_url":"https://github.com/Trickfilm400/gitlab-security-scan-parser","commit_stats":null,"previous_names":["trickfilm400/gitlab-security-scan-parser"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Trickfilm400/gitlab-security-scan-parser","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trickfilm400%2Fgitlab-security-scan-parser","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trickfilm400%2Fgitlab-security-scan-parser/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trickfilm400%2Fgitlab-security-scan-parser/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trickfilm400%2Fgitlab-security-scan-parser/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Trickfilm400","download_url":"https://codeload.github.com/Trickfilm400/gitlab-security-scan-parser/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Trickfilm400%2Fgitlab-security-scan-parser/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32943445,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-12T09:19:52.626Z","status":"ssl_error","status_checked_at":"2026-05-12T09:17:33.438Z","response_time":102,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ci-cd","cicd","gitlab","parser","pipeline","sast","scanner","security"],"created_at":"2024-11-13T21:08:23.888Z","updated_at":"2026-05-12T14:33:41.221Z","avatar_url":"https://github.com/Trickfilm400.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# gitlab-security-scan-parser\n\n\n## About this project\nThis script is designed to improve the experience in GitLab Free and GitLab Premium with the Application Testing Templates for the CI/CD Pipelines.\nThere are some provided templates for code-scanner which scan you application for leaking security tokens or perform SAST.\nThese scanners output a JSON file, but in the GitLab Free \u0026 Premium tier they will not be shown in Merge Requests - the files are only an artifact and will not processed in any way.\nBecause of the rising security topic on applications,\nthis project aims to improve this experience and security by reading and parsing the JSON files inside a CI/CD job and giving a simple output for the user to interpret,\nif the scanners have found something.\n\n\n## Usage\n```yaml\n# enable pah reporting for downloadable files (todo: add expire date)\nstages:\n  - test\n  - post\n.sast-analyzer:\n  artifacts:\n    expire_in: 1 week\n    paths:\n      - gl-sast-report.json\n.secret-analyzer:\n  artifacts:\n    expire_in: 1 week\n    paths:\n      - gl-secret-detection-report.json\ngl-testing-parser:\n  image: ghcr.io/trickfilm400/gitlab-security-scan-parser:master\n  allow_failure: true\n  stage: post\n  needs:\n    - container_scanning\n    - semgrep-sast\n    - secret_detection\n  script:\n    # debugging info\n    - ls -lah\n    - npm start\n```\n\n### Future features and ideas (contributions welcome)\n- [ ] add html report (for gitlab pages or whatever)\n- [ ] add more report files (DAST Scanning / Premium Scanner)\n- [ ] improve parsing of data (ignore specific vulnerabilities or whatever)\n- [ ] add configuration for en/-disable specific test files on purpose\n\n\u0026copy; 2024\n\nCreated with ♥ by [typescript-project-scaffolding](https://github.com/Trickfilm400/typescript-project-scaffolding)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftrickfilm400%2Fgitlab-security-scan-parser","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftrickfilm400%2Fgitlab-security-scan-parser","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftrickfilm400%2Fgitlab-security-scan-parser/lists"}