Revert "Revert "Update azure-pipelines.yml for Azure Pipelines (#17)"" (

#30) This reverts commit 875c1b2.
ansible-collections · Feb 17, 2020 · 5805eae · 5805eae
1 parent 9746ede
commit 5805eae
Show file tree

Hide file tree

Showing 2 changed files with 47 additions and 9 deletions.
diff --git a/CredScanSuppressions.json b/CredScanSuppressions.json
@@ -0,0 +1,9 @@
+{
+    "tool": "Credential Scanner",
+    "suppressions": [
+        {
+            "placeholder": "Password123!",
+            "_justification": "Mock secret used for tests."
+        }
+    ]
+}
diff --git a/azure-pipelines.yml b/azure-pipelines.yml
@@ -4,13 +4,42 @@ trigger:
     include:
     - "*"
 
-pool:
-  vmImage: 'ubuntu-latest'
+jobs:
+- job: CG
+  pool:
+    vmImage: 'ubuntu-latest'
 
-steps:
-- task: ComponentGovernanceComponentDetection@0
-  inputs:
-    scanType: 'Register'
-    verbosity: 'Verbose'
-    alertWarningLevel: 'Medium'
-    failOnAlert: true
+  steps:
+  - task: ComponentGovernanceComponentDetection@0
+    inputs:
+      scanType: 'Register'
+      verbosity: 'Verbose'
+      alertWarningLevel: 'Medium'
+      failOnAlert: true
+
+- job: CredScan
+  pool:
+    vmImage: "windows-2019"
+
+  steps:
+    - task: ea576cd4-c61f-48f8-97e7-a3cb07b90a6f@2
+      inputs:
+        toolMajorVersion: 'V2'
+        suppressionsFile: 'CredScanSuppressions.json'
+
+    - task: PostAnalysis@1
+      inputs:
+        AllTools: false
+        APIScan: false
+        BinSkim: false
+        CodesignValidation: false
+        CredScan: true
+        FortifySCA: false
+        FxCop: false
+        ModernCop: false
+        PoliCheck: false
+        RoslynAnalyzers: false
+        SDLNativeRules: false
+        Semmle: false
+        TSLint: false
+        ToolLogsNotFoundAction: 'Standard'