You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have a Git repo in Azure devops where i have couple of folder like below. The MSDO folder have couple of json and bicep files I need to scan, this MSDO folder also contains the .gdnconfig file
AIB
Autodesk
Carml
Deploy
MSDO
I wrote the below yml pipeline using MicrosoftSecurityDevOps task and chose templateanalyzer as a tool. The config property points to path of .gdnconfig file within MSDO folder
trigger:
main # Replace 'main' with your desired branch if different
pool:
vmImage: 'windows-latest'
jobs:
job: SecurityScan
displayName: 'Run Template Analyzer on JSON Files'
steps:
the below is .gdnconfig file. The AnalyzeDirectory points to the MSDO folder in which I have different types code such as json and bicep I need to scan
{
"tools": {
"TemplateAnalyzer": {
"version": "Latest",
"arguments": {
"AnalyzeDirectory": "$(System.DefaultWorkingDirectory)/MSDO",
"ParametersFilePath": "",
"Verbose": "true",
"IncludeNonSecurityRules": "true",
"Help": ""
}
}
}
}
When I run the pipeline, the analyze-directory command points to D:\a\1\s instead of D:\a\1\s\MSDO. Its looking to scan the S folder that contains the repository instead of just scanning the MSDO folder
The below is the output from the pipeline where you see scan analyze-directory path is not right. Could you please help me scan just the checked out MSDO folder in this path D:\a\1\s\MSDO
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hello
I have a Git repo in Azure devops where i have couple of folder like below. The MSDO folder have couple of json and bicep files I need to scan, this MSDO folder also contains the .gdnconfig file
AIB
Autodesk
Carml
Deploy
MSDO
I wrote the below yml pipeline using MicrosoftSecurityDevOps task and chose templateanalyzer as a tool. The config property points to path of .gdnconfig file within MSDO folder
trigger:
pool:
vmImage: 'windows-latest'
jobs:
displayName: 'Run Template Analyzer on JSON Files'
steps:
displayName: 'Run Template Analyzer'
inputs:
tools: 'templateanalyzer'
publish: true
artifactName: 'SecurityScanResults'
config: '$(System.DefaultWorkingDirectory)/MSDO/.gdnconfig'
the below is .gdnconfig file. The AnalyzeDirectory points to the MSDO folder in which I have different types code such as json and bicep I need to scan
{
"tools": {
"TemplateAnalyzer": {
"version": "Latest",
"arguments": {
"AnalyzeDirectory": "$(System.DefaultWorkingDirectory)/MSDO",
"ParametersFilePath": "",
"Verbose": "true",
"IncludeNonSecurityRules": "true",
"Help": ""
}
}
}
}
When I run the pipeline, the analyze-directory command points to D:\a\1\s instead of D:\a\1\s\MSDO. Its looking to scan the S folder that contains the repository instead of just scanning the MSDO folder
The below is the output from the pipeline where you see scan analyze-directory path is not right. Could you please help me scan just the checked out MSDO folder in this path D:\a\1\s\MSDO
D:\a_msdo\packages\nuget\Azure.Templates.Analyzer.CommandLine.win-x64.0.8.0\tools\TemplateAnalyzer.exe analyze-directory D:\a\1\s --report-format sarif --output-file-path D:\a\1\s.gdn.r\templateanalyzer\001\templateanalyzer.sarif
Discovered 576 template-parameter pairs to analyze
Directory: D:\a\1\s
Beta Was this translation helpful? Give feedback.
All reactions