refactor: make docker scout and iac available in tag release

gigascience · Nov 18, 2024 · da82084 · da82084
1 parent 9c0f2ab
commit da82084
Showing 1 changed file with 6 additions and 2 deletions.
diff --git a/ops/pipelines/gigadb-conformance-security-jobs.yml b/ops/pipelines/gigadb-conformance-security-jobs.yml
@@ -68,7 +68,7 @@ check_PHPDoc:
     - docker-compose run --rm gigadb
     - docker-compose run --rm test ./tests/coverage_check
 
-semgrep-sast:
+semgrep_sast:
   stage: conformance and security
   rules:
     - if: $CI_COMMIT_BRANCH || $CI_COMMIT_TAG
@@ -127,8 +127,12 @@ docker_scout_scanning:
     - docker scout cves registry.gitlab.com/$CI_PROJECT_PATH/production_web:live --only-severity critical
     - docker scout cves registry.gitlab.com/$CI_PROJECT_PATH/production_app:staging --only-severity critical
     - docker scout cves registry.gitlab.com/$CI_PROJECT_PATH/production_app:live --only-severity critical
+  rules:
+    - if: $CI_COMMIT_BRANCH || $CI_COMMIT_TAG
 
-iac-sast:
+iac_sast:
   stage: conformance and security
   variables:
     SAST_IMAGE_SUFFIX: "-fips"
+  rules:
+    - if: $CI_COMMIT_BRANCH || $CI_COMMIT_TAG