Opsera now offers Git Scraper support in a pipeline step. This allows user to choose from scraper libraries then run a scan against the configured SCM repos. Define a maximum threshold and pipeline will use the values to determine the final status of the step. Use the following documentation as a guideline of how to use Opsera’s Git Scraper support in pipelines.
Table of Content Zone |
---|
Git Scraper Pipeline Configuration
Create a new pipeline step. In Step Setup, choose Gitscraper from the Tool drop-down.
Click the ‘Save’ button and close the step.
Click the gear icon (⚙︎) to configure the step.
In the Step Configuration, select the following values from the provided drop-downs:
Scraper Module - Select a scraper module from the drop-down. Choose ‘Trufflehog’ or ‘Gitleaks’
Source Code Management Tool Type - Select a Source Code Management Tool Type from the drop-down. Choose Bitbucket, Github or GitLab.
Source Code Management Tool - Select the respective Source Code Management Tool containing the repository to run a scan against.
Repository - Select the repository to run a scan against.
Branch - Select the branch to run a scan against.
Maximum Allows Secrets Threshold - Select the maximum allowed secrets that scan can contain without receiving a failure status.
Exclude Certain Secrets from Scan - Secrets to Ignore: Select any Parameters to be ignored during the scan from the drop-down. These will not be counted toward the threshold. To add them to the table, click the ‘Add’ button. Parameters are fetched from Tool Registry Parameters.
Exclude Certain Project Files from Scan - Project Files to Ignore: Select Absolute File Path(s) to be ignored during the scan from the drop-down. These will not be counted toward the threshold. To add them to the table, click the ‘Add’ button.Click the ‘Save’ button to save configurations and trigger the pipeline.
...