A continuous integration method based on vulnerability scanning platform

A vulnerability scanning and continuous integration technology, which is applied in the fields of platform integrity maintenance, instrumentation, electronic digital data processing, etc., can solve the problems of high incidence of security incidents and the inability of the vulnerability scanning platform to quickly respond to product releases, etc.

Inactive Publication Date: 2019-01-18
SICHUAN PANOVASIC TECH
View PDF3 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The purpose of the present invention is to provide a continuous integration method based on a vulnerability scanning platform, which is used to solve the problems in the prior a...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A continuous integration method based on vulnerability scanning platform

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0030] A continuous integration method based on a vulnerability scanning platform, including a continuous integration platform, a vulnerability scanning platform and a Jenkins server:

[0031] Step S100): the continuous integration platform calls the continuous integration interface of the vulnerability scanning platform to establish vulnerability scanning rules and scanning tasks, calls the Jenkins interface of the Jenkins server to create projects, build projects and obtain construction results;

[0032] Step S200): The Jenkins server completes the automated testing of the missing scan task on the continuous integration platform through the PipeLine pipeline scheduling.

[0033] The continuous integration platform establishes vulnerability scanning rules and scanning tasks by calling the continuous integration interface of the vulnerability scanning platform; the continuous integration platform calls the Jenkins interface of the Jenkins server to create projects, build projec...

Embodiment 2

[0043] On the basis of Example 1, in conjunction with the attached figure 1 As shown, the step S200) specifically includes:

[0044] Step S210): the xml template of the Jenkins server defines the PipeLine pipeline;

[0045] Step S220): The build trigger is set to Poll SCM, and the source code is regularly checked and updated;

[0046] Step S230): Execute the construction action:

[0047] Step S231) environment deployment;

[0048] Step S232) Initiate a scan task by passing in the address of the vulnerability scanning platform and the scan task information in a parameterized manner, and return the task ID;

[0049] Step S233) According to the task ID returned in step S232), poll the scan task status until the task ends and check the risk level of the scan result;

[0050] Step S234) Upload the test report to the continuous integration platform.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a continuous integration method based on a vulnerability scanning platform, including a continuous integration platform, the vulnerability scanning platform and a Jenkins server. Step S100: the continuous integration platform calls the continuous integration interface of the vulnerability scanning platform to establish a vulnerability scanning rule and a scanning task, calls the Jenkins interface of the Jenkins server to create a project, construct the project and obtain a construction result; Step S200): The Jenkins server completes the automatic test of the missed sweep task of the continuous integration platform end through the PipeLine pipeline scheduling. The invention creates a vulnerability scanning rule and a scanning task, initiates scanning task, queriesscanning task status and obtains scanning task report acquisition by calling the continuous integration interface of the vulnerability scanning platform, which can effectively deal with the rapid iteration of software, ensure software safety quality and save human cost and shorten the development cycle through automated testing means.

Description

technical field [0001] The invention relates to the technical field of continuous integration, in particular to a continuous integration method based on a vulnerability scanning platform. Background technique [0002] With the development of the Internet, the network occupies an increasingly important position in work and life. However, the level of network protection is improving slowly. The rapid iteration of software versions brings hidden dangers to software security and quality; in the current vulnerability scanning field, there are many related vulnerability scanning platforms, but they all exist as commercial products and have not been applied to continuous integration, and there is a lack of corresponding continuous integration solutions; Unable to quickly respond to frequent product releases and product quality assurance, unable to detect security vulnerabilities in a timely manner during the software development process, the probability of security incidents is hi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F21/55G06F21/57H04L29/06
CPCG06F21/55G06F21/577H04L63/1433
Inventor 严金勇
Owner SICHUAN PANOVASIC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap