Application Security built into DevOps CI/CD
Get started with Sken in 3 easy steps
- Step 1 . DevOps inserts Sken in their CI/CD
- Step 2 . DevOps writes Sken.Yaml
- Step 3 . Review security issues in Sken.ai portal
- Circle CI
- Harness CI
Paste this code segment in your Jenkins | <Your App> | Configure | Add build step | Execute Shell
#!/bin/bash pip install --upgrade skencli ~/.local/bin/skencli
Paste this code segment in your travis.yaml file
language: python python: - "3.8" services: - docker before_install: - pip install --upgrade --no-cache-dir --default-timeout=210 skencli script: - skencli
We have a CircleCI Orb. Paste this code segment in your Circle CI yaml file. Refer to the Orb Registry page to use the latest, correct version.
version: 2.1 orbs: skencli: skenai/skencli@version workflows: main: jobs: - skencli/scan
Paste this code segment in your workflow main.yml file
name: CI on: push: branches: [ github-action ] pull_request: branches: [ github-action ] jobs: build: runs-on: ubuntu-latest steps: # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it - uses: actions/checkout@v2 - name: Set up Python 3.x uses: actions/setup-python@v2 with: # Semantic version range syntax or exact version of a Python version python-version: '3.x' # Optional - x64 or x86 architecture, defaults to x64 architecture: 'x64' - name: Install skencli run: pip3 install --upgrade skencli - name: Run skencli run: skencli
Paste this code segment in your bamboo.yml file
--- version: 2 plan: project-key: MYAPP key: MYAPP name: Build the myapp stages: - Scan the myapp stage: - Scan Scan: tasks: - script: - pip3 install --user --upgrade skencli - export PATH="$HOME/.local/bin:$PATH" - skencli
Paste this code segment in your azure-pipeline.yml file
trigger: - feature/add_azure_pipelines pool: vmImage: 'ubuntu-latest' steps: - task: Bash@3 displayName: Install_skencli inputs: targetType: 'inline' script: pip install wheel && pip install --upgrade skencli - task: Bash@3 displayName: Run_skencli inputs: targetType: 'inline' script: ~/.local/bin/skencli
Paste this code segment in your .drone.yml file
--- kind: pipeline type: exec name: default platform: os: linux arch: amd64 steps: - name: Install skencli commands: - pip install --upgrade skencli - name: Run skencli commands: - skencli trigger: branch: - master
Check in this sken.yaml file in the root folder of your source code.
Based on your app’s language, architecture and settings, Sken automatically figures out which open source scanners, and which types of scans (SAST, DAST, SCA, secrets, etc) are appropriate.
Sken automatically downloads the latest docker image of those scanners, and executes the scans in a docker container on your CI/CD machine.
The scan results are uploaded to Sken cloud, and you can review them in sken.ai portal.
Build and Deploy Secure Apps Faster
Find security issues during your SDLC
Integrate Security With CI/CD
2-Line CLI Integration With CI/CD
Single CI/CD automation layer for all app security scan types
Unified configuration for all scans in one YAML
Open source scanners packaged and managed
No need to set up, install or update scanners
No more siloed plugins
No need for multiple scanners and multiple plugins
Always use fresh copy of scanners