Tidelift can integrate with GitLab through Pipelines and Code Quality.
This example will complete a basic tidelift alignment save, causing Tidelift to check the project's manifest for issues such as vulnerabilites or deprecation.
It then generates a Code Quality report that can be viewed in the GitLab UI to see newly introduced issues.
This is meant to be an example to build upon.
- This example is for a Python-based project. You may need to tweak the
image:yaml value in the configuration based upon your project.
Add the .gitlab-ci.yml configuration in this repository to your project repository and examine it, especially the comments.
The configuration will trigger GitLab Pipelines to run the Tidelift CLI inside a container during CI. The only configuration you'll need to complete is to add a Protected Variable for $TIDELIFT_API_KEY_PROTECTED_VARIABLE. The value of this variable should be a Tidelift API key, as described here.