Meterian
Meterian
Meterian
Meterian
Meterian
The client
Meterian Thin Client
Using the client from your command line
Using the client in your CI/CD pipeline
General operations
Specific controls
System requirements
The Dockerized Client
THE METERIAN DASHBOARD
The Web Dashboard
Advanced functionalities
Sentinel - Meterian Notifications service
Troubleshooting
Github Badges
Introduction
Public repository
Private repository
ONLINE INTEGRATIONS
GitHub Action
Bitbucket Pipe
Azure DevOps Pipelines
Languages support
Introduction
Java/Kotlin/Scala
NodeJS
Javascript
Python
Ruby
PHP
.NET
Golang
Swift / Objective-C
Rust
Elixir (erlang)
Perl
Special platfoms
Jupyter Notebooks
Containers support
Container Scanner
CI SERVER INTEGRATIONS
Introduction
Generic CI
Jenkins
Azure DevOps
Bamboo
TravisCI
CircleCI
TeamCity
GitLabCICD
CodeShip
AWS CodeBuild
Meterian API
API basics
Authorizing the APIs
Account APIs
Samples
Management Platforms
Threadfix
DefectDojo
Powered by GitBook

Azure DevOps Pipelines

The Meterian Scanner Azure DevOps, available in the Azure DevOps Extensions Marketplace, adds an extra level of protection to your pipelines.

The native integration of Meterian in Azure DevOps can be completed in a few simple steps:

  • Install the Meterian Security Plus extension from the Marketplace

  • Set the Meterian API Token, either:

    • in a variables group

    • as part of a pipeline

In order to work, the Meterian scanner requires a working version of Docker in the image used to run the pipeline.

The only pre-requisite is a Meterian API Token which can be obtained from your paid subscription account's Meterian Dashboard. If you are using a free account and would like to upgrade, contact [email protected].

​

Setting the Meterian API Token in variables group

Select Library from the Pipelines menu and create a new Variable group. Then add METERIAN_API_TOKEN (click on the lock icon to make it as secret variable).

​

​

Specify the variable group in the pipeline (Option A)

# Starter pipeline
# Start with a minimal pipeline that you can customize to build and deploy your code.
# Add steps that build, run tests, deploy, and mode:
# https://aka.ms/yaml
​
trigger:
- main
​
pool:
 vmImage: 'ubuntu-latest'
    
variables:
- group: meterian-team-variables
​
​

​

Setting the Meterian API Token as a pipeline variable (Option B)

  • From the Pipeline editor, click on Variable in the top right corner

​

Add Meterian task to the pipeline

  • In the Review section (or whenever editing the Pipeline) Click on "Show Assistant" and select "Meterian Scanner" from the list

  • The Meterian task must be under "steps"

  • Save the Pipeline

trigger:
- main
​
pool:
 vmImage: 'ubuntu-latest'
    
variables:
- group: meterian-team-variables
​
steps:
- task: Meterian [email protected]

Specifying options

It is possible to specify the Meterian CLI options and also to specify a custom working directory, neither of them is required.

steps: 
- task: Meterian [email protected]
  inputs:
    client_options: "--min-security=90"    
    working_directory: "$(Build.SourcesDirectory)/path/to/directory"

A working example of pipeline can be found here.

You can also find here a non-native integration for Azure DevOps Pipelines

ONLINE INTEGRATIONS - Previous
Bitbucket Pipe
Next - Languages support
Introduction
Last updated 1 week ago