From 7639e4ea4a3dbf0ee30eacb0ec5ff37d84c77fbf Mon Sep 17 00:00:00 2001
From: Matt Penna <mpenna@gitlab.com>
Date: Fri, 30 Aug 2019 16:26:16 +0000
Subject: Apply suggestion to doc/user/application_security/sast/index.md

---
 doc/user/application_security/sast/index.md | 21 ++++++++++++---------
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/doc/user/application_security/sast/index.md b/doc/user/application_security/sast/index.md
index 3b344ee6182..e50e4a3d0ac 100644
--- a/doc/user/application_security/sast/index.md
+++ b/doc/user/application_security/sast/index.md
@@ -127,15 +127,18 @@ the pipeline configuration, the last mention of the variable will take precedenc
 
 #### Using a variable to pass username and password to a private Maven repository
 
-If you have a private Apache Maven repository that requires login credentials, you can use the `MAVEN_CLI_OPTS` [environment variable](#available-variables) to pass a username and password. If the username is `myuser` and the password is `verysecret` then you can set:
-
-```yaml
-include:
-  template: SAST.gitlab-ci.yml
-
-variables:
-  MAVEN_CLI_OPTS: "-Drepository.password=verysecret -Drepository.user=myuser"
-```
+If you have a private Apache Maven repository that requires login credentials,
+you can use the `MAVEN_CLI_OPTS` [environment variable](#available-variables)
+to pass a username and password. You can set it under your project's settings
+so that your credentials aren't exposed in `.gitlab-ci.yml`.
+
+If the username is `myuser` and the password is `verysecret` then you would
+set the following [variable](../../../ci/variables/README.md#via-the-ui)
+under your project's settings:
+
+| Type | Key | Value |
+| ---- | --- | ----- |
+| Variable | `MAVEN_CLI_OPTS` | `-Drepository.password=verysecret -Drepository.user=myuser` |
 
 ### Overriding the SAST template
 
-- 
cgit v1.2.1