Use CircleCI version 2.1 at the top of your .circleci/config.yml file.
1
version: 2.1
Add the orbs
stanza below your version, invoking the orb:
1
2
orbs:
skencli: skenai/skencli@1.0.3
Use skencli
elements in your existing workflows and jobs.
Opt-in to use of uncertified orbs on your organization’s Security settings page.
This example describes how to use sken.ai's orb. First go to https://sken.ai and sign up for a free forever account. Then login to sken dashboard at https://dashboard.sken.ai , create a new application there and obtain your org-id and app-id for that application. This orb will run security scanners based off the config in your sken.yaml file. For more information: http://docs.sken.ai/en/articles/4797372-how-to-integrate-sken-ai-with-circleci
1
2
3
4
5
6
7
version: '2.1'
orbs:
skencli: skenai/skencli@x.y
workflows:
main:
jobs:
- skencli/scan
This job will run security scanners based off the config in your sken.yaml file. Before running this orb, you must login to our dashboard (https://dashboard.sken.ai) to obtain your org-id and app-id. Once done, create a sken.yaml in the root directory. You may then run this job. For more information: http://docs.sken.ai/en/articles/4797372-how-to-integrate-sken-ai-with-circleci . This job runs the scans as defined in sken.yaml and logs the results. The scan results are available in the Sken dashboard https://dashboard.sken.ai once the job is completed.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
# This code is licensed from CircleCI to the user under the MIT license.
# See here for details: https://circleci.com/developer/orbs/licensing
version: 2.1
description: |
Sken.ai offers a DevOps-first Continuous Application Security Scanning. With Sken, your apps on Circle CI will be automatically scanned for security vulnerabilities. Sken is one tool to do all types of scans - SAST, DAST, SCA, Secrets and more, without the need for any AppSec expertise.
display:
home_url: http://docs.sken.ai
source_url: https://github.com/sken-ai/skenai-orb
jobs:
scan:
description: |
This job will run security scanners based off the config in your sken.yaml file. Before running this orb, you must login to our dashboard (https://dashboard.sken.ai) to obtain your org-id and app-id. Once done, create a sken.yaml in the root directory. You may then run this job. For more information: http://docs.sken.ai/en/articles/4797372-how-to-integrate-sken-ai-with-circleci . This job runs the scans as defined in sken.yaml and logs the results. The scan results are available in the Sken dashboard https://dashboard.sken.ai once the job is completed.
machine:
image: circleci/classic:201808-01
steps:
- checkout
- run:
command: |
# Install pyenv-update to allow addition of python 3.7.0
git clone git://github.com/pyenv/pyenv-update.git $(pyenv root)/plugins/pyenv-update
pyenv update
pyenv install 3.6.9
name: Update pyenv
- run:
command: pyenv global 3.6.9
name: Set Python Version
- run:
command: pip install --upgrade skencli
name: Install skencli
- run:
command: skencli
name: Scan
examples:
run-scan:
description: |
This example describes how to use sken.ai's orb. First go to https://sken.ai and sign up for a free forever account. Then login to sken dashboard at https://dashboard.sken.ai , create a new application there and obtain your org-id and app-id for that application. This orb will run security scanners based off the config in your sken.yaml file. For more information: http://docs.sken.ai/en/articles/4797372-how-to-integrate-sken-ai-with-circleci
usage:
version: "2.1"
orbs:
skencli: skenai/skencli@x.y
workflows:
main:
jobs:
- skencli/scan