Josh

You should look into [MegaLinter](https://github.com/marketplace/actions/megalinter). I was doing all the linting and checks individually and realized most of the tools I was using were already part of MegaLinter. MegaLinter includes...

I'm going to attempt to take a look at this. Just depends on my workload between work and school on how much progress I can make.

GitLab may be adding direct support for sarif reporting very soon since the converter for scip to lsif has been removed from Sourcegraph. Here's some things I've figured out. For...

Possibly. Would still have to assign the reports to the report type similar to how I did above with the sast report.

I'd like to expand this to also having a remote MEGALINTER_CONFIG file. The call to pull this file is executed before any certificate information is applied. Maybe the ability to...

I'm finally back to work. I'm attempting to run the tag with a plugin but it still throws an SSL Certificate Verify error when attempting to make the call to...

I'm confused with it because I'm setting the environment variables REQUESTS_CA_BUNDLE and CURL_CA_BUNDLE which is supposed to work with urllib3. From my understanding of python is requests is supposed to...

That looks like it would work for calling plugins and the remote config file

It's not a private plugin. Because the GitLab runners are behind a corporate proxy, any communication to the internet requires the proxy environment variables and certificates be set on the...

@nvuillam I figured out an alternative to this that allows me to run my pre-scripts first to configure the image with the proper certs and proxy information before megalinter runs....