This section describes how to integrate Bamboo builds with ShiftLeft
To integrate Bamboo builds with ShiftLeft, please adhere to the following prerequisites:
Supported application and build tool (see code analysis requirements)
Familiarity with ShiftLeft Inspect and Protect
ShiftLeft account credentials: Organization ID and Upload Token
Initially these credentials will be provided to you by ShiftLeft. Once you have established your account you can copy them from the My Profile page at the ShiftLeft Dashboard.
To integrate ShiftLeft with Bamboo builds, install the ShiftLeft CLI on the Bamboo host and authenticate with ShiftLeft:
Install the ShiftLeft CLI on the Bamboo host.
Log in to the Bamboo server as an administrator.
Create the following Environment variables:
SHIFTLEFT_ORG_ID| Value: Paste your Organization ID
SHIFTLEFT_UPLOAD_TOKEN| Value: Paste your Upload Token
See SL Auth for more information.
Create a shell script in Bamboo:
Select the project.
Go to the Tasks tab.
Add a new task.
Make sure the task you are adding is the last task in the list of build tasks.
Enter a task description, such as: SL Analyze.
Enter the script body:
/usr/local/bin/sl anlyze or
/usr/local/bin/sl anlyze - -cpg.
Enter working subdirectory: