Links

Set up Azure Repos

Overview
Integrating with GitHub enables oak9 to scan for any IaC files within a repository with the end result of pinpointing any existing security design gaps as well as potentially fixing those configurations via pull requests. This process is done:
  • Continuously: oak9 triggers these scans once a day to ensure full monitoring of your repository
  • Autonomously: this process is 100% automatic. After integration, you’ll never have to trigger a scan manually on your end (though you will always still have this option!). That’s right, no more button clicking!
  • Securely: we prioritize client confidentiality and security. We only ask for the permissions absolutely necessary to run this workflow and we ensure that none of your code is kept in our system after execution
  • Seamlessly: oak9 and GitHub work together as essentially, a single application
How to Integrate:
  1. 1.
    Log in to your organization’s oak9 console account
  2. 2.
    Click on the Integrations icon in the navigation bar on the left
3. Scroll down until you locate the Azure Repos integration underneath the Repository Integrations section
4. Click Add Integration on the Azure Repos Integration
5. Click Open Azure Repos
6. Grant Access to oak9 by selecting accept
7. Select your desired organization from the dropdown
8. Oak9 will display you your repositories.
Select one or multiple and chose the desired project or create new project.
9. On the oak9 console integration window, you can also select the repository and the branch which you want oak9 to scan and create pull requests in and additionally you can select the granularity of pull requests and how you want them to be structured
10. Click Save
11. You’ll be redirected to the Visual Designer of the project in which you just integrated with. Within a few seconds you should be able to see that your validation has completed
12. Login to AzureDevOps and try to find a newly created PR made by the
13. If your organization restricts pushing commits based on e-mail addresses, you will have to add an oak9 e-mail to your whitelist. Go to Project Settings --> Repositories --> Policies and in the whitelist for "Commit author email validation" add [email protected]
oak9-remediation-scheduler
14. Select Pull Request
15. Check out to see the Design Gaps:
Hoorah! You’ve integrated with Azure Repos and have validated your IaC code. Get working on getting those changes in if you have any!