https://github.com/backbase/bitrise-step-security-checks
https://github.com/backbase/bitrise-step-security-checks
Last synced: 6 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/backbase/bitrise-step-security-checks
- Owner: Backbase
- License: mit
- Created: 2021-06-24T12:52:10.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2023-10-24T13:17:44.000Z (over 2 years ago)
- Last Synced: 2025-07-18T18:47:07.972Z (7 months ago)
- Language: Shell
- Size: 24.4 KB
- Stars: 1
- Watchers: 10
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Backbase Security Checks
This step executes all backbase security checks such as blackduck and veracode scans.
## How to use this Step
Can be run directly with the [bitrise CLI](https://github.com/bitrise-io/bitrise),
just `git clone` this repository, `cd` into it's folder in your Terminal/Command Line
and call `bitrise run test`.
*Check the `bitrise.yml` file for required inputs which have to be
added to your `.bitrise.secrets.yml` file!*
Step by step:
1. Open up your Terminal / Command Line
2. `git clone` the repository
3. `cd` into the directory of the step (the one you just `git clone`d)
5. Create a `.bitrise.secrets.yml` file in the same directory of `bitrise.yml`
(the `.bitrise.secrets.yml` is a git ignored file, you can store your secrets in it)
6. Check the `bitrise.yml` file for any secret you should set in `.bitrise.secrets.yml`
* Best practice is to mark these options with something like `# define these in your .bitrise.secrets.yml`, in the `app:envs` section.
7. Once you have all the required secret parameters in your `.bitrise.secrets.yml` you can just run this step with the [bitrise CLI](https://github.com/bitrise-io/bitrise): `bitrise run test`
An example `.bitrise.secrets.yml` file:
```
envs:
- A_SECRET_PARAM_ONE: the value for secret one
- A_SECRET_PARAM_TWO: the value for secret two
```