If you are using the Jenkins pipeline for development automation, you can integrate it with NeuraLegion to run security scans on every new build within your development environment.Depending on the use case, you can apply multiple options for running scans from your CI pipeline.
You can run fast scans of the application which is currently under development within your pipeline. NeuraLegion allows you to follow the fail-fast principle by interrupting a scan automatically at the first detected vulnerability. Using this option, you are able to quickly and timely find and fix the security issues at the build level without delaying the whole development process.
As the scan target is closed within your pipeline, NeuraLegion engine cannot access it directly from the cloud. In this case, you can use the Repeater (NeuraLegion local agent) which serves as a request-proxy between NeuraLegion and the scan target inside your private environment. You should first create a Repeater in the NeuraLegion App, and then connect it to your pipeline using the created Repeater ID.
To run scans directly from your pipeline, you need to install the NeuraLegion CLI. It provides an easy-to-use interface and multiple commands you can use in your Jenkins flow.
You can either run the NeuraLegion CLI with the Repeater using the NPM or by installing the existing Docker image inside your pipeline. The Docker image comprises the NeuraLegion CLI and Repeater.
Find the examples here:
Upon a release of a new build, you can run an overall complete scan of the target in the production or public pre-production environment. In this case, long scans will not interfere with the development process as compared to scanning in the private environment.
Depending on the access to the deployed target, you can run a scan using multiple options.
- If the scan target is accessible from the Internet:
Directly from the NeuraLegion App
From your pipeline using the NeuraLegion CLI (NPM). Find the example here.
- If the scan target has a private access (or if you want to scan specific local microservices), you can use the Repeater (NeuraLegion local agent) to ensure secure communication between NeuraLegion and the target. In this case, you can control scanning only via the NeuraLegion CLI which can be installed using either the NPM or the Docker image.
Find the examples here:
Updated 12 days ago