Skip to content

Commit 36276c6

Browse files
Whitespotsgitbook-bot
Whitespots
authored and
gitbook-bot
committed
GITBOOK-470: No subject
1 parent f623701 commit 36276c6

File tree

1 file changed

+21
-0
lines changed
  • appsec-portal/scanners/scanner-description/code-scanners

1 file changed

+21
-0
lines changed

appsec-portal/scanners/scanner-description/code-scanners/kics.md

+21
Original file line numberDiff line numberDiff line change
@@ -4,4 +4,25 @@ description: GitLab Analyzer for Infrastructure as Code (IaC) projects
44

55
# KICS
66

7+
**AppSec Portal Importer Name**: GitLab KICS
8+
79
[GitLab KICS](https://gitlab.com/gitlab-org/security-products/analyzers/kics) (Keeping Infrastructure as Code Secure) is a tool for identifying security vulnerabilities and policy violations in **infrastructure code** (IaC). It supports various IaC formats, such as **Terraform**, **Kubernetes**, **AWS CloudFormation**, and **Azure Resource Manager templates**. KICS helps identify issues in infrastructure code, enabling developers and operations teams to mitigate potential risks.
10+
11+
#### Curl example
12+
13+
{% code overflow="wrap" %}
14+
```
15+
curl -X POST localhost/api/v1/scan/import/ -H "Authorization: Token a75bb26171cf391671e67b128bfc8ae1c779ff7b" -H "Content-Type: multipart/form-data" -F "file=@./" -F "product_name=Product1" -F "product_type=Application" -F "scanner_name=GitLab KICS" -F "branch=dev" -F "repository=git@gitlab.com:whitespots-public/appsec-portal.git"
16+
```
17+
{% endcode %}
18+
19+
In this command, the following parameters are used:
20+
21+
1. `-X POST`: specifies the HTTP method to be used (in this case, POST)
22+
2. `-H "Authorization: Token <authorization_token>"`: specifies the [**authorization token**](../../importing-reports-from-scanners-to-appsec-portal/#authorization-token) obtained from AppSec Portal.
23+
3. `-H "Content-Type: multipart/form-data"`: specifies the content type of the request.
24+
4. `-F "file=@<report_file_path>"`: specifies the **path to the report file** generated by the scanner.
25+
5. `-F "product_name=<product_name>"`: specifies the **name of the product** being scanned.
26+
6. `-F "product_type=<product_type>"`: specifies the **type of the product** being scanned.
27+
7. `-F "scanner_name=<scanner_name>"`: specifies the **name of the scanner** used to generate the report (GitLab KICS)
28+
8. `-F "branch=<branch_name>"`: (_optional_) specifies the name of the branch in the source code repository (if applicable) This parameter is particularly useful when you want to associate the scan results with a specific branch in your repository. If not provided, the scan will be associated with the default branch

0 commit comments

Comments
 (0)