Integrating Acunetix 360 with CircleCI

CircleCI is a continuous integration and delivery system that is used by software teams to allow them to build, test and deploy applications easier and quicker on multiple platforms. With an emphasis on speed and configurability, CircleCI is built to help users test their applications whenever they make changes to it, release it or deploy it.

This topic explains how to configure Acunetix 360 to send a detected vulnerability to CircleCI.

For further information, see What Systems Does Acunetix 360 With?.

CircleCI Fields

This table lists and explains the CircleCI fields in the New CircleCI Integration window.

Button/Section/Field

Description

Scan Type

This is the type of scan:

  • Incremental
  • Full (With primary profile)
  • Full (With selected profile)

For further information, see Types of Scans.

Website

Click to select the URL of the website that will be scanned.

Scan Profile

Click to select the Scan Profile that will be used. (If you selected Full (With primary profile) as the Scan Type, this is not displayed.)

Parameters

Add the information in this script to the corresponding fields in the config.yml file in your project. Use variables for Acunetix 360 and API credentials.

How to Generate and Use Acunetix 360’s CircleCI Integration Orbs

Acunetix 360 uses GitHub for integration with CircleCI.

  1. Navigate to your GitHub project to integrate CircleCI.
  2. Create a .circleci folder then create a config.yml file in it: “.circleci/config.yml.
  3. Copy sample yaml code from the Acunetix 360 orb on CircleCI page and paste it into your config.yml. Note that in config.yml, the job name must be 'acunetix360/scan'.

  1. Log in to Acunetix 360.
  2. From the main menu, click Integrations, then New Integration.
  3. From the Continuous Integration Systems section, click CircleCI.
  4. In the Scan Type field, select the scan type.
  5. In the Website field, enter the website.
  6. If required, from the Scan Profile dropdown, select a scan profile. (This option is displayed only if you have selected Incremental or Full (With selected profile) from the Scan Type.)
  7. In the Parameters field, click Copy to Clipboard to copy the displayed code.

  1. In CircleCI, replace the related values so that the final result will be as illustrated. Also, CircleCI will read it each time and run a new build when it changes.

 

  1. Navigate to your CircleCI projects: https://app.circleci.com/projects/.

  1. Click Set Up Project.

  1. Click Start Building.

  1. Click Add Manually.

  1. Click Start Building.
  1. Next, configure these settings in the project environment settings. Navigate to your CircleCI Project Settings:
  • ACUNETIX_360_USER_ID
  • ACUNETIX_360_API_TOKEN

  1. Then, add these variables with values into Acunetix 360:
  • In Acunetix 360, from the main menu, select YourName, then API Settings.
  • Use the information from the previous step to complete the User ID and Token fields.
  1. In CircleCI, navigate to Organization Settings. In Orb Security Settings, make sure Allow Uncertified Orbs is set to Yes.

  1. If everything is set up correctly, the pipeline will succeed and a new scan will start in Acunetix 360.

 

« Back to the Acunetix Support Page