Connect Repositories

Required Tenable Cloud Security User Role: Administrator.

Before Tenable Cloud Security starts monitoring the code in your repositories, you must connect your repositories to Tenable Cloud Security Console. You can connect using one of the following methods:

  • Connect to a Repository Using Version Control

    Connect your repository using Azure DevOps, AWS CodeCommit, Bitbucket, GitHub, or GitLab.

    Note: To set up an SCM integration, Tenable Cloud Security requires an admin-level account. This allows Tenable Cloud Security to grant itself as an authorized OAuth application to discover and scan all Infrastructure as Code (IaC) projects across all repositories within your SCM account. The admin-level privileges also allow Tenable Cloud Security to create a webhook for auto-remediation and inline reviews to automate pull requests with remediation details.
  • Connect to a Repository Using the CLI

    Download and install command-line interface (CLI) on your system to scan your IaC repositories.

Note: Make sure that the repository names do not have any special characters.

What to do next:

In the row corresponding to the project to which you have added the repository, click > IaC scan to run an IaC scan for the repository.