Betterscan Azure DevOps
Table of contents
This repository contains a Betterscan CLI Azure DevOps Pipeline extension to be integrated in Azure DevOps Pipeline. With this extension, you will be able to perform a static code analysis (SAST), Code Scanning, Secret scanning also for Cloud Infrastructure (IaC) in search of vulnerabilities.
Executing an analysis
You want to use
Addtionally you might want to push the Artefact and maintain state
Then please install: SARIF Viewed plugin
It will add "Scans" tab to both the Build Results page and the Work Item page.
For more information about Betterscan, please check out the documentation.
If you want to contribute to this repository, access our Contributing Guide.
Apache License 2.0