Let's secure your containers

• Welcome

• Getting started

• Pipelines

• Manually
• Github Actions
• Azure Devops

• Monitoring

• Docker
• Docker Compose
• Kubernetes

Azure Devops

1. Create a new pipeline in Azure DevOps
2. Copy and paste the example pipeline yaml below and change "myapp" to the name of your application
3. Save the pipeline and run it. This will build a container from your git repo and scan it for vulnerabilities.

trigger:
- master

pool:
  vmImage: 'ubuntu-latest'

steps:
# Install pre reqs
- task: DockerInstaller@0
  inputs:
    dockerVersion: '17.09.0-ce'
  displayName: 'Install Docker'

- task: Bash@3
  displayName: 'Docker Build'
  inputs:
    targetType: 'inline'
    script: |
      docker build . -t myapp:build-$(Build.BuildId)

- script: sudo wget https://phonito-public-artifacts.azureedge.net/scanner/phonito-scanner -O /usr/local/bin/phonito-scanner && sudo chmod +x /usr/local/bin/phonito-scanner
  displayName: 'Download Phonito Security scanner'

- script: |
    export PHONITO_API_TOKEN="GET YOUR API TOKEN HERE https://phonito.io/setup"
    phonito-scanner -i myapp:build-$(Build.BuildId)
  displayName: 'Scan Container'