Gitlab offers templates for security scans, such as secret detection and static analysis. Unfortunately, it doesn’t offer any way to see the discovered defects in the UI, unless you’re paying for the Ultimate tier. You only get the report files which you can manually download from the pipelines page.

And that is not helpful at all. In fact, this whole approach strikes me as wrong to begin with, but more on that later. For now, the problem is as follows: we want to download and process those reports programatically.

2 min remaining to read Manipulate Gitlab security reports programatically

You have set up Kustomize for your deployment. Directory structure is something like:

1 min remaining to read Kustomize secret/configMap generator per namespace/environment