GCP Cloud Build

GCP Cloud Build

Paste this code segment in the workflow cloudbuild.yaml file for a SAST scan.

steps:
# Run FortiDevSec SAST Scanner, once the build step is done.
- name: 'gcr.io/cloud-builders/docker'
entrypoint: bash
args: ['-c','docker run --rm --env GCP_CLOUDBUILD_CI=$GCP_CLOUDBUILD_CI --env BUILD_ID=$BUILD_ID --env BRANCH_NAME=$BRANCH_NAME --env COMMIT_SHA=$COMMIT_SHA --mount type=bind,source=$(pwd),target=/scan registry.fortidevsec.forticloud.com/fdevsec_sast:latest']

Paste this code segment in the workflow cloudbuild.yaml file for a DAST scan.

steps:
# Run FortiDevSec DAST Scanner, once the deploy step is done.
- name: 'gcr.io/cloud-builders/docker'
entrypoint: bash
args: '-c','docker run --rm --env GCP_CLOUDBUILD_CI=$GCP_CLOUDBUILD_CI --env BUILD_ID=$BUILD_ID --env BRANCH_NAME=$BRANCH_NAME --env COMMIT_SHA=$COMMIT_SHA --mount type=bind,source=$(pwd),target=/scan registry.fortidevsec.forticloud.com/fdevsec_dast:latest']

GCP Cloud Build

Paste this code segment in the workflow cloudbuild.yaml file for a SAST scan.

steps:
# Run FortiDevSec SAST Scanner, once the build step is done.
- name: 'gcr.io/cloud-builders/docker'
entrypoint: bash

  args: ['-c','docker run --rm --env GCP_CLOUDBUILD_CI=$GCP_CLOUDBUILD_CI --env BUILD_ID=$BUILD_ID --env BRANCH_NAME=$BRANCH_NAME --env COMMIT_SHA=$COMMIT_SHA --mount type=bind,source=$(pwd),target=/scan registry.fortidevsec.forticloud.com/fdevsec_sast:latest']

Paste this code segment in the workflow cloudbuild.yaml file for a DAST scan.

steps:
# Run FortiDevSec DAST Scanner, once the deploy step is done.
- name: 'gcr.io/cloud-builders/docker'
entrypoint: bash

  args: '-c','docker run --rm --env GCP_CLOUDBUILD_CI=$GCP_CLOUDBUILD_CI --env BUILD_ID=$BUILD_ID --env BRANCH_NAME=$BRANCH_NAME --env COMMIT_SHA=$COMMIT_SHA --mount type=bind,source=$(pwd),target=/scan registry.fortidevsec.forticloud.com/fdevsec_dast:latest']

User Guide

GCP Cloud Build

GCP Cloud Build