-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathazure-pipelines.yml
98 lines (85 loc) · 2.81 KB
/
azure-pipelines.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
# ASP.NET Core (.NET Framework)
# Build and test ASP.NET Core projects targeting the full .NET Framework.
# Add steps that publish symbols, save build artifacts, and more:
# https://docs.microsoft.com/azure/devops/pipelines/languages/dotnet-core
trigger:
- master
#pool:
# vmImage: 'windows-latest'
pool: Default
variables:
solution: '**/*.sln'
buildPlatform: 'Any CPU'
buildConfiguration: 'Release'
steps:
- task: NuGetToolInstaller@1
- task: NuGetCommand@2
inputs:
restoreSolution: '$(solution)'
- task: VSBuild@1
inputs:
solution: '$(solution)'
msbuildArgs: '/p:DeployOnBuild=true /p:WebPublishMethod=Package /p:PackageAsSingleFile=true /p:SkipInvalidConfigurations=true /p:DesktopBuildPackageLocation="$(build.artifactStagingDirectory)\WebApp.zip" /p:DeployIisAppPath="Default Web Site"'
platform: '$(buildPlatform)'
configuration: '$(buildConfiguration)'
- task: VSTest@2
inputs:
platform: '$(buildPlatform)'
configuration: '$(buildConfiguration)'
- task: JavaToolInstaller@0
inputs:
versionSpec: '11'
jdkArchitectureOption: 'x64'
jdkSourceOption: 'PreInstalled'
- task: FortifyScanCentralSAST@7
inputs:
scanCentralCtrlUrl: 'http://10.229.222.183:8999/scancentral-ctrl'
scanCentralClientToken: '$(ScanCentral.ClientToken)'
sscUrl: 'http://10.229.222.183:8180/ssc/'
sscCiToken: '$(ScanCentral.SscCiToken)'
uploadToSSC: true
applicationName: 'WebGoat.NET'
applicationVersion: '1'
buildFailureCriteria: '[fortify priority order]:critical'
taskResultForBuildFailureCriteria: 'FAIL'
buildTool: 'msbuild'
buildFile: 'WebGoat.Net.sln'
block: true
outputFile: 'results.fpr'
#- task: FortifyOnDemandStatic@8
# env:
# PATH: C:\Program Files\Microsoft Visual Studio\2022\Enterprise\MSBuild\Current\Bin\;$env:PATH
# inputs:
# FortifyProjects: '.'
# FodConnection: 'FoD-AMS-W'
# ReleaseOptions: '0'
# ReleaseId: 295892
# EntitlementSelection: '1'
# EntitlementPreference: '1'
# OverrideScanSettings: '2'
# InProgressScanActionType: '2'
# RemediationScanPreference: '2'
# BuildType: 'msbuild'
# BuildFile: 'WebGoat.Net.sln'
# PolicyFailAction: '0'
#- task: FortifyOnDemandStatic@8
# inputs:
# FortifyProjects: '.'
# FodConnection: 'FoD-AMS-W'
# ReleaseOptions: '0'
# ReleaseId: 295892
# EntitlementSelection: '1'
# EntitlementPreference: '3'
# OverrideScanSettings: '2'
# InProgressScanActionType: '2'
# RemediationScanPreference: '2'
# BuildType: 'msbuild'
# BuildFile: 'WebGoat.Net.sln'
# PolicyFailAction: '0'
#- task: PowerShell@2
# inputs:
# targetType: 'inline'
# script: |
# echo Running:
# echo "Get-Content $env:LocalAppData\Fortify\scancentral-21.1.2\log\scancentral.log"
# Get-Content $env:LocalAppData\Fortify\scancentral-21.1.2\log\scancentral.log