Ubgwtf.gitlab Work Now

dependency_scanning: stage: scan extends: .dependency_scanning only: - merge_requests - branches

What is ubgwtf ? I have three theories.

| Symptom | Likely Cause | Fix | |---------|--------------|-----| | | SSH key not added to the runner’s user or missing known_hosts . | Add the runner’s public key to the repo’s Deploy Keys, or use HTTPS with a CI job token ( CI_JOB_TOKEN ). | | Pipeline stalls at “waiting for resource” | No free runner for the tag you specified. | Use shared runners or request additional specific runners from Ops. | | Merge request cannot be merged – “Approvals required” | Required number of approvals not met (project settings). | Request additional reviewer or adjust the Approval Rules (if you have permission). | | Dependency scanning reports empty | No lock files ( package-lock.json , requirements.txt ) detected. | Ensure lock files are committed; otherwise add --skip-lockfile to the scanner if appropriate. | | Docker push fails – “denied: requested access to the resource is denied” | Runner not authenticated to the Container Registry. | Add docker login $CI_REGISTRY -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD step before push. | | Secrets leak in CI logs | A variable printed unintentionally (e.g., echo $API_KEY ). | Use MASKED variables; never echo them. GitLab masks them automatically if the variable is marked as masked . | ubgwtf.gitlab

(A practical, step‑by‑step handbook for developers, DevOps engineers, and contributors working with the ubgwtf.gitlab instance.) dependency_scanning: stage: scan extends:

At first glance, it looks like a typo. "UBG" usually stands for "Unblocked Games" in high school computer labs. "WTF" is the universal acronym for digital confusion. But together, prefixed to a GitLab static site? It felt like a key left under a digital doormat. | Add the runner’s public key to the