The Synopsys Software Integrity Group is now Black Duck®. If you are an existing Synopsys Detect Azure DevOps extension user, please manually uninstall Synopsys Detect Plugin and install this plugin to receive future updates. If you are a new user, you may proceed with installing the Black Duck Detect Plugin.
The Black Duck Detect plugin for Azure DevOps supports Software Composition Analysis (SCA: open source software detection). It is architected to seamlessly integrate Black Duck Detect with Azure DevOps build and release pipelines. Black Duck Detect makes it easy to set up and scan code bases using a variety of languages and package managers across different application security techniques.
As a Black Duck and Azure DevOps user, Black Duck Detect Extension for Azure DevOps enables you to:
• Run a component scan in an Azure DevOps job.
• Create projects and releases in Black Duck through the Azure DevOps job.
• After a scan is complete, the results are available on the Black Duck server (for SCA).
Open Source Discovery: Rapid scanning and identification of open source libraries, versions, license, and community activity powered by the Black Duck® KnowledgeBase™.
Detect for Azure DevOps is architected to integrate seamlessly with build and release pipelines for Black Duck®.
Instructions and examples for the Azure Plugin are available on our Documentation Portal - Detect Azure Plugin
For information on the full capabilities of Detect visit our Documentation Portal
Before calling Detect in Azure DevOps, an active instance of Black Duck is required.
If you do not have Black Duck, Contact Black Duck Sales for more information.
Want to contribute to this project? All code for this extension is available on Github.