TOC & Recently Viewed

Recently Viewed Topics

CircleCI

Before You Begin

These instructions describe how to push a Docker image from CircleCI to Tenable.io Container Security.

These steps assume you are already comfortable using CircleCI and are already pushing Docker images to a public or private registry. If you are already using CircleCI, but have not built Docker container images, familiarize yourself with the CircleCI documentation Continuous Integration and Delivery with Docker.

Steps

  1. Add environment variables for the project in the CircleCI console. Open the project and select Project Settings, then Environment Variables.
  2. Define the following variables:

    Variable

    Description

    TENABLE_IO_CONTAINER_SECURITY_EMAIL

    The email that you use to log in to Tenable.io Container Security.

    TENABLE_IO_CONTAINER_SECURITY_USER

    The user name that you use to log in to Tenable.io Container Security. You can find this on the Settings page in Tenable.io Container Security.

    TENABLE_IO_CONTAINER_SECURITY_ENDPOINT

    For hosted cloud users of Tenable.io Container Security, this value is registry.cloud.tenable.com.

  3. To add support for Tenable.io Container Security, update the circle.yml file as follows:

    machine:

    environment:

    VERSION: 2.1.1

    TAG: ${VERSION}

    services:

    - docker

     

    dependencies:

    override:

    - docker info

    - docker version

    - docker build -t $TENABLE_IO_CONTAINER_SECURITY_ENDPOINT/circleci/elasticsearch .

     

    test:

    override:

    - docker run -d -p 9200:9200 $TENABLE_IO_CONTAINER_SECURITY_ENDPOINT/circleci/elasticsearch; sleep 10

    - curl --retry 10 --retry-delay 5 -v registry.cloud.tenable.com

     

    deployment:

    hub:

    branch: master

    commands:

    - docker login -u $TENABLE_IO_ACCESS_KEY -p $TENABLE_IO_SECRET_KEY

    - docker tag $TENABLE_IO_CONTAINER_SECURITY_ENDPOINT/circleci/elasticsearch $TENABLE_IO_CONTAINER_SECURITY_ENDPOINT/circleci/elasticsearch:${TAG}

    - docker push $TENABLE_IO_CONTAINER_SECURITY_ENDPOINT/circleci/elasticsearch:${TAG}

    - docker logout

    CircleCI builds are sent to Tenable.io Container Security for storage, distribution, vulnerability scanning, and malicious code scanning.

Copyright 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.