TechQA.

blackduck image scanning integration with Gitlab pipelines

962 views Asked by At

I am trying to implement Blackduck Image scanning in GitLab pipelines.

  • How can we read the recent built Image URL (Which would not necessarily be the latest version) from the image build job?
  • what all BD properties are required to run a image scan and save the results in a dedicated location?
gitlab devops blackduck
Original Q&A
1

There are 1 answers

0
jasie On

This article explains how to Run Synopsys Detect with Gitlab:

community.synopsys.com/s/article/Running-Synopsys-Detect-with-GitLab-Integration-Documentation

It provides a PDF document with detailed instructions:

/ Configuring with API Tokens

  1. Navigate to "Settings" in the sidebar menu. Then choose "CI/CD"
  2. Expand the "Secret variables" tab.
  3. Create two environment variables: HUB_URL and HUB_TOKEN
  4. Configure Synopsys Detect to be a script step in the .gitlab-ci.yml file of the project you want to scan. Then add the snippet for Synopsys Detect.

/ Configuring with Username and Password:

  1. Navigate to "Settings" in the sidebar menu. Then choose "CI/CD"
  2. Expand the "Secret variables" tab.
  3. Create three environment variables: HUB_URL, HUB_USERNAME AND HUB_PASSWORD
  4. Configure Synopsys Detect to be a script step in the .gitlab-ci.yml file of the project you want to scan. Then add the snippet for Synopsys Detect.

The PDF document provides more details and screenshots.

Related Questions in GITLAB

Related Questions in DEVOPS

Related Questions in BLACKDUCK

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions