Scanners

Scanners are external tools that MergeBoard executes in order to find issues in your source code. Unlike a CI, scanners do not report a failure (unless their execution failed), but instead create review comments. These comments can be marked as False Positive so that they do not longer affect the mergeability of a merge request. Scanners are therefore a good alternatives to a CI if a tool tends to detect false positives.

Scanners are run for each revision of a merge request. It is also possible to trigger a manual rerun, for example, after changing the scanner settings.

Each of the scanners shown in the scanners list can be enabled by clicking the Enable button, if the scanner is installed. If not, contact you admin and have them install it for you. You can configure the scanners via the Configure button.