User Guide
Search…
DevSecOps Integrations
Shift left with DevSecOps for cross cloud application delivery

What does Ozone offer in terms of security integrations?

Ozone provides native integration with secret management for verification of your security policies during the pre-build and post-build sections of the cross cloud delivery workflow.
Bring your own licenses or use Ozone's managed open-source to bootstrap your shift-left cloud workload security practices in the delivery workflows.

Native Support

Ozone offers native support for the following integrations
  • Snyk
  • Sonarqube
  • Clair

Setting up a Security Integration

Pre-requisites

Out of the box pipelines from Ozone
  • Snyk
    • ozone-snyk-container-scan - supports a container scan on Snyk
    • ozone-snyk-repo-scan - supports a repo scan on Snyk
    • ozone-snyk-iac - supports Infra as Code scans on Snyk
  • Sonarqube
    • ozone-sonarqube-repo-scan - supports a repository level scan on Sonarqube
  • Clair
    • Coming Soon!

Out of the box tasks from Ozone

Combine these tasks from the GUI editor to create your own custom pipelines
  • Snyk
    • ozone-snyk-container-test-0.1 - Supports container scanning as a task on a Snyk instance
    • ozone-snyk-dotnet-test-0.1 - Supports .NET scanning as a task on a Snyk instance
    • ozone-snyk-golang-test-0.1 - Supports Go Build scanning as a task on a Snyk instance
    • ozone-snyk-gradle-test-0.1 - Supports Gradle build scanning as a task on a Snyk instance
    • ozone-snyk-maven-test-0.1 - Supports Maven build scanning as a task on a Snyk instance
    • ozone-snyk-node-test-0.1 - Supports Node build scanning as a task on a Snyk instance
    • ozone-snyk-php-test-0.1 - Supports PHP build scanning as a task on a Snyk instance
    • ozone-snyk-python-test-0.1 - Supports Python build scanning as a task on a Snyk instance
    • ozone-snyk-ruby-test-0.1 - Supports Ruby build scanning as a task on a Snyk instance
    • ozone-snyk-Scala-test-0.1 - Supports Scala scanning as a task on a Snyk instance
    • ozone-snyk-Swift-test-0.1 - Supports Swift (iOS) Build scanning as a task on a Snyk instance
  • Sonarqube
    • sonarqube-scanner-0.1 - Supports a static code scan on an instance of Sonarqube
  • Clair
    • Coming Soon!
Copy link
Outline
What does Ozone offer in terms of security integrations?
Native Support
Setting up a Security Integration