Reapsaw scanner reference
Security step settings
You can set up Reapsaw scans using a Security step: create a CI Build or Security Tests stage, add a Security step, and then add the setting:value
pairs as specified below.
Security step dialog box
product_name
=reapsaw
scan_type
=repository
policy_type
=ingestionOnly
product_config_name
=default
fail_on_severity
- See Fail on Severity.
Repository scan settings
Ingestion scan settings
Fail on Severity
Every Security step has a Fail on Severity setting. If the scan finds any vulnerability with the specified severity level or higher, the pipeline fails automatically. You can specify one of the following:
CRITICAL
HIGH
MEDIUM
LOW
INFO
NONE
— Do not fail on severity
The YAML definition looks like this: fail_on_severity : critical # | high | medium | low | info | none