Azure Pipelines
|
|
| If you are using Azure DevOps for development automation, you can integrate Bright with your Azure CI pipeline using the Nexploit DevOps Integration extension. The integration allows you to automate the security testing flow by running the Bright scans on every new build within your development environment. | |
Prerequisites |
- You are an active user in the Bright app.
- You have the Nexploit DevOps Integration extension installed on your Azure DevOps Server.
- The target of the scan is accessible from the Internet.
- You have a valid organization API key or personal API key with the following scopes:
scans : runscan : readscans : stop
Setup
Using a Pre-recorded HAR File
If you want to start a new scan with an added HAR file, first upload your HAR file to the Bright app using a simple curl command:
$ curl -X POST "https://app.neuralegion.com/api/v1/files?discard=true" \
-H "Content-Type: multipart/form/data" \
-H "Authorization: Api-Key API_KEY" \
-f '[email protected]//path/to/the/file.har"
The response id will then be used during setting a new scan in the pipeline, for example:
{"ids":["FILE_ID"]}
Step-by-Step Guide
Opening the Integration Extension in Your Pipeline
- In your pipeline, click the Show assistant button.
- In the Tasks field, enter nexploit scan.
- Do one of the following:
- To start a new scan, select the Nexploit Scan file.
- To re-run an existing scan, select the Nexploit Re-run Scan file.
Starting a New Scan in Your Pipeline
To initialize a new scan in your pipeline, follow these steps:
- In the Nexploit Scan section, enter the scan details in the relevant fields and select the settings that you want to apply.
For a scan with uploaded HAR file, additionally enter the response id in the File ID field.
Once you complete the setup, the scan is started automatically.
- To manage the scanning process and view the results, go to your Bright app account.
Re-running an Existing Scan in Your Pipeline
You can restart a scan that you have already set up and run using the Bright app. To do that, follow these steps:
- In the Nexploit Re-run Scan section, enter the scan details in the relevant fields.
- Copy the ID of your scan in the address bar or the scan report window and paste it in the Scan ID field.
Once you complete the setup, the scan is restarted automatically.
- To manage the scanning process and view the results, go to your Bright app account.
Updated 4 months ago
Did this page help you?