Skip to content
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
Menu
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
Login
Sign up For Free Forever
Login
Use For Free Forver
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
Menu
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
  • Login
  • Use For Free Forever
Menu
  • Product
  • DevOps
  • AppSec
  • All Scans
    • SCA Scans
    • SAST Scans
    • DAST Scans
  • Pricing
  • Blogs
  • Docs
  • Login
  • Use For Free Forever

DevOps

Application Security built into DevOps CI/CD

Sign up For Free
Request Demo

Get started with Sken in 3 easy steps

  • Step 1 . DevOps inserts Sken in their CI/CD
  • Step 2 . DevOps writes Sken.Yaml
  • Step 3 . Review security issues in Sken.ai portal

  • Jenkins
  • Travis
  • Circle CI
  • Github
    Action
  • Bamboo
  • Azure
    DevOps
  • Harness CI

Paste this code segment in your Jenkins | <Your App> | Configure | Add build step | Execute Shell

#!/bin/bash

pip install --upgrade skencli
~/.local/bin/skencli

Paste this code segment in your travis.yaml file

language: python
python:
  - "3.8"
services:
  - docker
before_install:
  - pip install --upgrade --no-cache-dir --default-timeout=210 skencli
script:
  - skencli

We have a CircleCI Orb. Paste this code segment in your Circle CI yaml file. Refer to the Orb Registry page to use the latest, correct version.

version: 2.1
orbs:
  skencli: skenai/skencli@version
workflows:
  main:
    jobs:
      - skencli/scan

Paste this code segment in your workflow main.yml file

name: CI
on:
  push:
    branches: [ github-action ]
  pull_request:
    branches: [ github-action ]

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
    # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
    - uses: actions/checkout@v2

    - name: Set up Python 3.x
      uses: actions/setup-python@v2
      with:
        # Semantic version range syntax or exact version of a Python version
        python-version: '3.x'
        # Optional - x64 or x86 architecture, defaults to x64
        architecture: 'x64'

    - name: Install skencli
      run: pip3 install --upgrade skencli

    - name: Run skencli
      run: skencli

Paste this code segment in your bamboo.yml file

---
version: 2
plan:
  project-key: MYAPP
  key: MYAPP
  name: Build the myapp

stages:
  - Scan the myapp stage:
    - Scan

Scan:
  tasks:
    - script:
        - pip3 install --user --upgrade skencli
        - export PATH="$HOME/.local/bin:$PATH"
        - skencli

Paste this code segment in your azure-pipeline.yml file

trigger:
- feature/add_azure_pipelines

pool:
  vmImage: 'ubuntu-latest'

steps:
- task: Bash@3
  displayName: Install_skencli
  inputs:
    targetType: 'inline'
    script: pip install wheel && pip install --upgrade skencli
- task: Bash@3
  displayName: Run_skencli
  inputs:
    targetType: 'inline'
    script: ~/.local/bin/skencli

Paste this code segment in your .drone.yml file

---
kind: pipeline
type: exec
name: default

platform:
  os: linux
  arch: amd64

steps:
- name: Install skencli
  commands:
  - pip install --upgrade skencli
- name: Run skencli
  commands:
  - skencli

trigger:
  branch:
  - master

Check in this sken.yaml file in the root folder of your source code.

orgid: your-org-id-here
appid: your-app-id-here

# optional Param section start

buildtool: jenkins                # optional param, values=jenkins|travis
scanner: sast,dast,sca            # optional param, default is ALL
language: python,javascript       # optional param, default is Auto-Detect

variables:
  DAST_URL: https://your.url.com  # optional param

# optional Param section end

# end of file

Based on your app’s language, architecture and settings, Sken automatically figures out which open source scanners, and which types of scans (SAST, DAST, SCA, secrets, etc) are appropriate.

Sken automatically downloads the latest docker image of those scanners, and executes the scans in a docker container on your CI/CD machine.

The scan results are uploaded to Sken cloud, and you can review them in sken.ai portal.

Sken.ai incorporates continuous application security seamlessly into the devops process by including security testing in CI/CD.

Build and Deploy Secure Apps Faster

Find security issues during your SDLC

Integrate Security With CI/CD

2-Line CLI Integration With CI/CD

Single CI/CD automation layer for all app security scan types

Unified configuration for all scans in one YAML

Open source scanners packaged and managed

No need to set up, install or update scanners

No more siloed plugins

No need for multiple scanners and multiple plugins

Dockerized scanners

Always use fresh copy of scanners

Social Media

Facebook-f Twitter Linkedin-in Vimeo-v

Sitemap

  • Home
  • Product
  • DevOps
  • AppSec
  • Privacy policy

Resources

  • Blog

Comparison

  • Sken vs Veracode
  • Sken vs Stackhawk
  • Sken vs Sonarqube
  • Sken vs Snyk
  • Sken vs Gitlab's Devsecops
  • Sken vs Checkmarx

Company

For general inquires

  • hello@sken.ai

Newsletter

© 2020 Sken AI. All rights reserved.

Social Media

Facebook-f Twitter Linkedin-in Vimeo-v Youtube

Sitemap

  • Home
  • Product
  • DevOps
  • AppSec
  • Privacy policy

Resources

  • Blog

Company

  • For general inquires
  • hello@skenai.wpcomstaging.com

Newsletter

© 2020 Sken AI. All rights reserved.