Tenable Web App Scanning CI/CD Scanning with Azure DevOps Integration

You can deploy a Tenable Web App Scanning Docker image in continuous integration and continuous delivery/continuous deployment CI/CD against your application in Azure DevOps. For more information on this integration, see the Azure DevOps documentation.

Before you begin:

Be able to deploy your app to an integration environment available to your Azure DevOps build agent, or run it directly on the build agent for testing.
Review the overview information in CI/CD Application Scan Overview.

Azure DevOps artifact retrieval example:


# Starter pipeline
# Start with a minimal pipeline that you can customize to build and deploy your code.
# Add steps that build, run tests, deploy, and more:
# https://aka.ms/yaml

trigger:
- main

pool:
  vmImage: ubuntu-latest

steps:
- script: echo Hello, world!
  displayName: 'Run a one-line script'

- script: |
	echo Add other tasks to build, test, and deploy your project.
	echo See https://aka.ms/yaml
	docker pull swaggerapi/petstore
	docker run -d -e SWAGGER_URL=http://petstore:8080 -e SWAGGER_BASE_PATH=/v2 --name petstore swaggerapi/petstore
	docker pull tenable/was-scanner:latest
	docker run -v $(pwd):/scanner -t -e WAS_MODE=cicd -e ACCESS_KEY=${ACCESS_KEY} -e SECRET_KEY=${SECRET_KEY} --link petstore tenable/was-scanner:latest
	displayName: 'Run a multi-line script'

Example integrations for CI/CD tools: