Add latest changes from gitlab-org/gitlab@13-9-stable-eev13.9.0-rc42

author: GitLab Bot <gitlab-bot@gitlab.com> 2021-02-18 10:34:06 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2021-02-18 10:34:06 +0000
commit: 859a6fb938bb9ee2a317c46dfa4fcc1af49608f0 (patch)
tree: d7f2700abe6b4ffcb2dcfc80631b2d87d0609239 /doc/development/integrations/secure.md
parent: 446d496a6d000c73a304be52587cd9bbc7493136 (diff)
download: gitlab-ce-859a6fb938bb9ee2a317c46dfa4fcc1af49608f0.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/development/integrations/secure.md b/doc/development/integrations/secure.md
index fb9d894d203..1d5aced5869 100644
--- a/doc/development/integrations/secure.md
+++ b/doc/development/integrations/secure.md
@@ -260,6 +260,8 @@ When executing command lines, scanners should use the `debug` level to log the c
 For instance, the [bundler-audit](https://gitlab.com/gitlab-org/security-products/analyzers/bundler-audit) scanner
 uses the `debug` level to log the command line `bundle audit check --quiet`,
 and what `bundle audit` writes to the standard output.
+If the command line fails, then it should be logged with the `error` log level;
+this makes it possible to debug the problem without having to change the log level to `debug` and rerun the scanning job.
 
 #### common logutil package
author	GitLab Bot <gitlab-bot@gitlab.com>	2021-02-18 10:34:06 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2021-02-18 10:34:06 +0000
commit	859a6fb938bb9ee2a317c46dfa4fcc1af49608f0 (patch)
tree	d7f2700abe6b4ffcb2dcfc80631b2d87d0609239 /doc/development/integrations/secure.md
parent	446d496a6d000c73a304be52587cd9bbc7493136 (diff)
download	gitlab-ce-859a6fb938bb9ee2a317c46dfa4fcc1af49608f0.tar.gz