From be230d97c93c4b9f9194e2be7ab9fa03eda6a6f3 Mon Sep 17 00:00:00 2001
From: Timo Furrer <tfurrer@gitlab.com>
Date: Fri, 26 Jan 2024 08:55:18 +0100
Subject: [PATCH] Remove container scanning rules for now

---
 .gitlab-ci.yml | 29 +++++++++++++++--------------
 1 file changed, 15 insertions(+), 14 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 76f0072..b55c412 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -22,13 +22,14 @@ include:
       analyzer_image: "$CI_TEMPLATE_REGISTRY_HOST/security-products/container-scanning:6"
       # FIXME: why do I have to set this, this is weird ...
       force_run: true
-    rules:
-      - changes:
-          - Dockerfile
-          - .gitlab-ci.yml
-          - src/gitlab-tofu.sh
-      - if: $CI_COMMIT_TAG
-      - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+    # FIXME: doesn't work
+    # rules:
+    #   - changes:
+    #       - Dockerfile
+    #       - .gitlab-ci.yml
+    #       - src/gitlab-tofu.sh
+    #   - if: $CI_COMMIT_TAG
+    #   - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
 
 stages:
   - build
@@ -117,13 +118,13 @@ container_scanning:
     # Used for remediation
     GIT_STRATEGY: fetch
   # FIXME: because we are using rules with the include, but override here, we also have to have the same rules here
-  rules:
-    - changes:
-        - Dockerfile
-        - .gitlab-ci.yml
-        - src/gitlab-tofu.sh
-    - if: $CI_COMMIT_TAG
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+  # rules:
+  #   - changes:
+  #       - Dockerfile
+  #       - .gitlab-ci.yml
+  #       - src/gitlab-tofu.sh
+  #   - if: $CI_COMMIT_TAG
+  #   - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
 
 gitlab-opentofu-image:deploy:with-opentofu-version:
   extends: .opentofu-versions
-- 
GitLab