Tool that can block your CI/CD pipeline depending on outstanding (open) intigriti issues.
- Download the latest icp release.
- Retrieve your intigriti API token and pass your (external) IP address for whitelisting.
- Create your configuration file:
# your intigriti API credentials
intigriti_client_id: "XXXXXXXXXXX"
intigriti_client_secret: "XXXXXXXXXXX"
# what maximum amount of findings you tolerate per severity
tresholds:
# we allow no criticals
critical: 0
# we allow no highs
high: 0
# we allow 1 medium
medium: 1
# we allow arbitrary amount of lows
low: 100000
- Run
icp
in your CI/CD pipeline with arguments:
./icp -conf=my-conf.yml
icp
will return an error code whenever your defined tresholds are set, stopping your pipeline.
This requires make
and go
to be installed.
Just run make
.