The user generates a unique Azure DevOps personal access token generated for Snyk specifically. Together the username and password constitute a token that Snyk uses. The token authorizes Snyk to access the user’s repos for only the specific permissions that the user indicates to Azure Repos when generating it.
Snyk tests and monitors Azure Repos that are in any of our supported languages by evaluating root folders and custom file locations.
This integration works similar to our other integrations. To continue to monitor, remediate and manage your projects, see the relevant pages in our Docs.
Integration with Azure Repos Cloud is available for all of our pricing plans whereas integration with Azure Repos Server v2018 Update 2 and above (also known as TFS) is available only for Pro / Enterprise plans.
Snyk integrates with Microsoft Azure Repos to enable you to import your projects and monitor the source code for your repositories. Snyk tests the projects you’ve imported for any known security vulnerabilities found in the application’s dependencies, testing at a frequency you control.
Enable integration between Azure Repos and Snyk, and start managing your vulnerabilities.
Prerequisites
Ensure you have set up your Azure Repos account and your Snyk account.
Steps
-
Access your Azure Repos account and retrieve a unique personal access token for use by Snyk. For help doing this, see the Azure DevOps documentation.
-
When prompted in Azure, enable the following permissions for Snyk access as follows:
-
Expiry—We recommend choosing an expiration date for this token that is far in the future to avoid breaking integration.
-
Scopes—Custom defined
-
Code—Read and write
-
-
Log in to your Snyk account.
-
Navigate to Integrations from the menu bar at the top.
-
From the Integrations page under the Azure Repos logo, click the Connect to Azure Repos button:
-
From the Settings page in the Integrations area, enter the Azure DevOps organization that you want to integrate with (i.e. https://dev.azure.com/{org-name}) and the personal access token that you just generated.
* Pro / Enterprise customers are also be able to provide a custom URL for Azure Repos Server private instance which is publicly reachable.
- Click Save.
-
Snyk tests the connection values and the page reloads, now displaying Azure Repos integration information. A confirmation message that the details were saved also appears in green at the top of the screen. In addition, if the connection to Azure failed, a notification appears under the Connected to Azure Repos section.