User Guide
Search…
⌃K

DevSecOps Integrations

Shift left with DevSecOps for cross cloud application delivery

What does Ozone offer in terms of devsecops?

Native Support

Ozone offers native support for the following integrations
  • Snyk
  • Sonarqube
  • Clair

Setting up a Security Integration

Pre-requisites

DevSecOps Pipelines from Ozone

These pipelines are supplied out of the box. Use them either standalone or as part of app of app releases
  • Snyk
    • ozone-snyk-container-scan - supports a container scan on Snyk
    • ozone-snyk-repo-scan - supports a repo scan on Snyk
    • ozone-snyk-iac - supports Infra as Code scans on Snyk
  • Sonarqube
    • ozone-sonarqube-repo-scan - supports a repository level scan on Sonarqube
  • Clair
    • Coming Soon!

Out of the box tasks from Ozone

Combine these tasks from the GUI editor to create your own custom pipelines
  • Snyk
    • ozone-snyk-container-test-0.1 - Supports container scanning as a task on a Snyk instance
    • ozone-snyk-dotnet-test-0.1 - Supports .NET scanning as a task on a Snyk instance
    • ozone-snyk-golang-test-0.1 - Supports Go Build scanning as a task on a Snyk instance
    • ozone-snyk-gradle-test-0.1 - Supports Gradle build scanning as a task on a Snyk instance
    • ozone-snyk-maven-test-0.1 - Supports Maven build scanning as a task on a Snyk instance
    • ozone-snyk-node-test-0.1 - Supports Node build scanning as a task on a Snyk instance
    • ozone-snyk-php-test-0.1 - Supports PHP build scanning as a task on a Snyk instance
    • ozone-snyk-python-test-0.1 - Supports Python build scanning as a task on a Snyk instance
    • ozone-snyk-ruby-test-0.1 - Supports Ruby build scanning as a task on a Snyk instance
    • ozone-snyk-Scala-test-0.1 - Supports Scala scanning as a task on a Snyk instance
    • ozone-snyk-Swift-test-0.1 - Supports Swift (iOS) Build scanning as a task on a Snyk instance
  • Sonarqube
    • sonarqube-scanner-0.1 - Supports a static code scan on an instance of Sonarqube
  • Clair
    • Coming Soon!