tyler.durden/openssh-portable
1
0
Fork 0
mirror of https://github.com/PowerShell/openssh-portable.git synced 2025-07-29 16:54:51 +02:00
Code Issues Packages Projects Releases Wiki Activity

Enable AzDO CI compliance template (#639)

Browse Source 
* Enable AzDO CI compliance template

* Add compliance results report upload.

* Fix typo
This commit is contained in:
Paul Higinbotham 2022-11-18 14:53:49 -08:00 committed by GitHub
parent 9e804c3e76
commit ed6ba5aa88
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 35 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

59
.azdo/ci.yml
View File

@ -10,12 +10,12 @@ pr:
include: include:
- latestw_all - latestw_all
#resources: resources:
# repositories: repositories:
# - repository: ComplianceRepo - repository: ComplianceRepo
# type: github type: github
# endpoint: ComplianceGHRepo endpoint: ComplianceGHRepo
# name: PowerShell/compliance name: PowerShell/compliance
stages: stages:
- stage: Build - stage: Build
@ -88,24 +88,35 @@ stages:
Write-Host "##vso[artifact.upload containerfolder=$artifactName;artifactname=$artifactName;]$configFilePath" Write-Host "##vso[artifact.upload containerfolder=$artifactName;artifactname=$artifactName;]$configFilePath"
displayName: Upload Win32-OpenSSH build artifacts displayName: Upload Win32-OpenSSH build artifacts
#- stage: Compliance - stage: Compliance
# displayName: Compliance displayName: Compliance
# dependsOn: Build dependsOn: Build
# jobs: jobs:
# - job: ComplianceJob - job: ComplianceJob
# pool: pool:
# vmImage: windows-latest vmImage: windows-latest
# steps: steps:
# - checkout: self - checkout: self
# clean: true clean: true
# - checkout: ComplianceRepo - checkout: ComplianceRepo
# clean: true clean: true
# - download: current - download: current
# artifact: 'Microsoft.PowerShell.SecretManagement' artifact: 'Win32-OpenSSH'
# - template: ci-compliance.yml@ComplianceRepo - template: ci-compliance.yml@ComplianceRepo
# parameters: parameters:
# # credscan # credscan
# suppressionsFile: '' suppressionsFile: ''
# Documentation: https://eng.ms/docs/security-compliance-identity-and-management-scim/security/azure-security/cloudai-security-fundamentals-engineering/security-integration/guardian-wiki/sdl-azdo-extension/security-analysis-report-build-task
- task: securedevelopmentteam.vss-secure-development-tools.build-task-report.SdtReport@2
continueOnError: true
displayName: 'Guardian Export'
inputs:
GdnExportVstsConsole: true
GdnExportSarifFile: true
GdnExportHtmlFile: true
GdnExportAllTools: false
GdnExportGdnToolCredScan: true
#this didn't do anything GdnExportCustomLogsFolder: '$(Build.ArtifactStagingDirectory)/Guardian'
- stage: Test - stage: Test
displayName: Test Win32-OpenSSH displayName: Test Win32-OpenSSH