Tenable Web App Scanning CI/CD Scanning with CircleCI Integration

You can deploy a Tenable Web App Scanning Docker image in continuous integration and continuous delivery/continuous deploymentCI/CD against your application in CircleCI. For more information on this integration, see the CircleCI documentation.

Before you begin:

Be able to deploy your app to an integration environment available to your GitLab build agent, or run it directly on the build agent for testing.
Review the overview information in CI/CD Application Scan Overview.

Pipeline workflow file example for CircleCI:


version: 2.1

jobs:
  build-run-scan:
    machine:
      image: ubuntu-2204:2022.04.2
    steps:
      - checkout
      - run: |
          docker pull swaggerapi/petstore
          docker run -d -e SWAGGER_URL=http://petstore:8080 -e SWAGGER_BASE_PATH=/v2 --name petstore swaggerapi/petstore
          docker pull tenable/was-scanner:latest
          docker run -v $(pwd):/scanner -t -e WAS_MODE=cicd -e ACCESS_KEY=${ACCESS_KEY} -e SECRET_KEY=${SECRET_KEY} --link petstore tenable/was-scanner:latest
workflows:
  was-workflow:
    jobs:
      - build-run-scan

Example integrations for CI/CD tools: