Generate test vulnerabilities
You can generate test vulnerabilities for the Vulnerability Report to test GitLab vulnerability management features without running a pipeline.
- Log in to GitLab.
- Go to
/-/profile/personal_access_tokens
and generate a personal access token withapi
permissions. - Go to your project page and find the project ID. You can find the project ID below the project title.
- Clone the GitLab repository to your local machine.
- Open a terminal and go to
gitlab/qa
directory. - Run
bundle install
- Run the following command:
GITLAB_QA_ACCESS_TOKEN=<your_personal_access_token> GITLAB_URL="<address:port>" bundle exec rake vulnerabilities:setup\[<your_project_id>,<vulnerability_count>\] --trace
Make sure you do the following:
- Replace
<your_personal_access_token>
with the token you generated in step one. - Double check the
GITLAB_URL
. It should point to address and port of your GitLab instance, for examplehttp://localhost:3000
if you are running GDK - Replace
<your_project_id>
with the ID you obtained in step three above. - Replace
<vulnerability_count>
with the number of vulnerabilities you’d like to generate.
The script creates the specified number of placeholder vulnerabilities in the project.