Does Edgescan offer a CI/CD pipeline integration?
Key features, use cases, and an explanation of how Edgescan's CI/CD Pipeline integration works.
Version Number: v1.0
Published Date: 25 August 2025
____________________________________________________________________________
Edgescan integrates seamlessly with modern CI/CD pipelines to ensure continuous security testing during the software development lifecycle. By embedding security into DevOps workflows, Edgescan enables timely vulnerability detection and rapid remediation, supporting secure code delivery without compromising agility.
Key Features:
-
Automated Security Testing: Trigger DAST and API security scans as part of build/deploy stages.
-
Policy Enforcement: Fail builds based on critical/high vulnerabilities or specific vulnerability types.
-
JSON Reporting: Ingest machine-readable results directly into your pipeline for automated decision-making.
-
Token-Based Access: Secure API interaction with Edgescan using authentication tokens.
Supported CI/CD Tools:
-
GitHub Actions
-
Jenkins
-
Azure DevOps
-
Any platform that supports Docker commands
How It Works:
-
Install the Edgescan CLI Container in your CI/CD environment.
-
Set Environment Variables: Pass authentication tokens and configuration settings as variables.
-
Trigger Scans Programmatically: Call scan commands via CLI/Docker in your workflow.
-
Automate Responses: Use returned data to gate deployments, notify stakeholders, or log results.