Merge pull request #322 from Axway/APIGOV-29656

APIGOV-29656 - changes for SSG
Axway · Jan 31, 2025 · a027b50 · a027b50
2 parents e238888 + 5901f08
commit a027b50
Show file tree

Hide file tree

Showing 2 changed files with 22 additions and 5 deletions.
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
@@ -41,22 +41,22 @@ include:
     ref: master
     file: "/.gitlab-ci-sonar.yml"
   - project: "apigov/beano_cicd"
-    ref: $BEANO_CICD_BLUE
+    ref: $BEANO_CICD_GREEN
     # the order of these include files is important
     file:
       - "/gitlabci/variables.yml"
       - "/gitlabci/restrictions.yml"
       - "/gitlabci/jobs.yml"
   - project: "scurity/gitlabci"
-    ref: $SCURITY_BLUE
+    ref: $SCURITY_GREEN
     file:
       - "/.gitlab-ci-fortify.yml"
       - "/.gitlab-ci-twistlock.yml"
       - "/.gitlab-ci-iriusrisk.yml"
       - "/.gitlab-ci-blackduck.yml"
       - "/.gitlab-ci-security.yml"
   - project: "apigov/beano_cicd"
-    ref: $BEANO_CICD_BLUE
+    ref: $BEANO_CICD_GREEN
     # the order of these include files is important
     file:
       - "/gitlabci/securityjobs.yml"
@@ -72,7 +72,7 @@ stages:
 
 twistlock-discovery:
   rules:
-    - !reference [.mirror-branch-security-rules, rules]
+    - !reference [.beano-security-snapshot-rules, rules]
   before_script:
     - apk --no-cache update && apk add make
     - cd discovery && make docker-build
@@ -82,7 +82,7 @@ twistlock-discovery:
 
 twistlock-traceability:
   rules:
-    - !reference [.mirror-branch-security-rules, rules]
+    - !reference [.beano-security-snapshot-rules, rules]
   before_script:
     - apk --no-cache update && apk add make
     - cd traceability && make docker-build

diff --git a/.security-profile-latest.json b/.security-profile-latest.json
@@ -0,0 +1,17 @@
+{
+    "project": "Amplify - APIC Apigee Agents",
+    "repo_url": "https://github.com/Axway/agents-apigee",
+      "security_guide": "https://docs.axway.com/bundle/axway_resources/page/amplify_api_management_platform_security_white_paper.html",
+    "requirements": {
+      "fortify": false,
+      "irius-risk": false,
+      "pentest": false,
+      "twistlock": false,
+      "blackduck": true,
+      "third-party-policy-violation": false,
+      "appspider": false,
+      "insightvm": false
+    },
+    "suppressions": [
+  ]
+}