Qualys WAS Plugin for Bamboo

Document created by Dave Ferguson Employee on Feb 23, 2020Last modified by Dave Ferguson Employee on Mar 3, 2020
Version 3Show Document
  • View in full screen mode

We are pleased to announce that a Qualys WAS plugin for Bamboo is now available.  Bamboo by Atlassian is a popular commercial CI/CD tool.  Just like our WAS plugin for Jenkins, the plugin for Bamboo allows DevOps teams to build application vulnerability scans into their existing CI/CD processes.  By integrating and automating scans in this manner, application security testing is accomplished early in the SDLC to catch and eliminate security flaws before they reach production.

 

With a valid Qualys WAS account, you can configure the plugin to fail the build if certain criteria are met such as presence of specific QIDs or a severity 5 vulnerability for example. Scan results can be viewed directly in Bamboo and a link to the full scan report in the Qualys UI is also provided.  The plugin supports all Qualys shared platforms as well as customers using a private cloud platform (PCP).

 

Outcomes