Tenable Web App Scanning CI/CD Scanning with CircleCI Integration

Required User Role: Administrator

You can deploy a Tenable Web App Scanning Docker image in continuous integration and continuous delivery/continuous deploymentCI/CD against your application in CircleCI. For more information on this integration, see the CircleCI documentation.

Before you begin:

• Be able to deploy your app to an integration environment available to your GitLab build agent, or run it directly on the build agent for testing.

• Review the overview information in CI/CD Application Scan Overview.

Pipeline workflow file example for CircleCI:

version: 2.1

jobs:
  build-run-scan:
    machine:
      image: ubuntu-2204:2024.08.1
    resource_class: medium
    steps:
      - checkout
      - run: |
          docker pull swaggerapi/petstore
          docker run -d -e SWAGGER_URL=http://petstore:8080 -e SWAGGER_BASE_PATH=/v2 --name petstore swaggerapi/petstore
          docker pull tenable/was-scanner:latest
          docker run -v $(pwd):/scanner -t -e WAS_MODE=cicd -e ACCESS_KEY=${ACCESS_KEY} -e SECRET_KEY=${SECRET_KEY} --link petstore tenable/was-scanner:latest
workflows:
  was-workflow:
    jobs:
      - build-run-scan

Example integrations for CI/CD tools:

• Atlassian Bamboo

• Azure

• GitHub

• GitLab

• Jenkins