Let's secure your containers
Azure Devops
1. Create a new pipeline in Azure DevOps
2. Copy and paste the example pipeline yaml below and change "myapp" to the name of your application
3. Save the pipeline and run it. This will build a container from your git repo and scan it for vulnerabilities.
trigger: - master pool: vmImage: 'ubuntu-latest' steps: # Install pre reqs - task: DockerInstaller@0 inputs: dockerVersion: '17.09.0-ce' displayName: 'Install Docker' - task: Bash@3 displayName: 'Docker Build' inputs: targetType: 'inline' script: | docker build . -t myapp:build-$(Build.BuildId) - script: sudo wget https://phonito-public-artifacts.azureedge.net/scanner/phonito-scanner -O /usr/local/bin/phonito-scanner && sudo chmod +x /usr/local/bin/phonito-scanner displayName: 'Download Phonito Security scanner' - script: | export PHONITO_API_TOKEN="GET YOUR API TOKEN HERE https://phonito.io/setup" phonito-scanner -i myapp:build-$(Build.BuildId) displayName: 'Scan Container'
Copyright Phonito 2019