30 lines
893 B
YAML
30 lines
893 B
YAML
parameters:
|
|
pool: 'Hosted VS2017'
|
|
jobName: 'credscan'
|
|
displayName: Secret Scan
|
|
|
|
jobs:
|
|
- job: ${{ parameters.jobName }}
|
|
pool:
|
|
name: ${{ parameters.pool }}
|
|
|
|
displayName: ${{ parameters.displayName }}
|
|
|
|
steps:
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-credscan.CredScan@2
|
|
displayName: 'Scan for Secrets'
|
|
inputs:
|
|
suppressionsFile: tools/credScan/suppress.json
|
|
toolMajorVersion: V2
|
|
debugMode: false
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-publishsecurityanalysislogs.PublishSecurityAnalysisLogs@2
|
|
displayName: 'Publish Secret Scan Logs to Build Artifacts'
|
|
continueOnError: true
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-postanalysis.PostAnalysis@1
|
|
displayName: 'Check for Failures'
|
|
inputs:
|
|
CredScan: true
|
|
ToolLogsNotFoundAction: Error
|