Tenable Web App Scanning CI/CD Scanning with Azure DevOps Integration

You can deploy a Tenable Web App Scanning Docker image in continuous integration and continuous delivery/continuous deployment CI/CD against your application in Azure DevOps. For more information on this integration, see the Azure DevOps documentation.

Before you begin:

• Be able to deploy your app to an integration environment available to your Azure DevOps build agent, or run it directly on the build agent for testing.

• Review the overview information in CI/CD Application Scan Overview.

Azure DevOps artifact retrieval example:

# Starter pipeline
# Start with a minimal pipeline that you can customize to build and deploy your code.
# Add steps that build, run tests, deploy, and more:
# https://aka.ms/yaml

trigger:
- main

pool:
  vmImage: ubuntu-latest

steps:
- script: echo Hello, world!
  displayName: 'Run a one-line script'

- script: |
    echo Add other tasks to build, test, and deploy your project.
    echo See https://aka.ms/yaml
    docker pull swaggerapi/petstore
    docker run -d -e SWAGGER_URL=http://petstore:8080 -e SWAGGER_BASE_PATH=/v2 --name petstore swaggerapi/petstore
    docker pull tenable/was-scanner:latest
    docker run -v $(pwd):/scanner -t -e WAS_MODE=cicd -e ACCESS_KEY=${ACCESS_KEY} -e SECRET_KEY=${SECRET_KEY} --link petstore tenable/was-scanner:latest
    displayName: 'Run a multi-line script'

Example integrations for CI/CD tools:

• Atlassian Bamboo

• CircleCI

• GitHub

• GitLab

• Jenkins