We provide you with a pipeline script that you can use in the repository. The pipeline script should copied from QIntegration/bitbucket_pipelines@main to the default pipeline (bitbucket-pipelines.yml) in your Bitbucket repository. It then executes the script on every action such as pull request, push request, manual trigger, and scheduled job.
You can copy the same file into the repository or add the Qualys IaC Bitbucket step into the existing file (bitbucket-pipelines.yml). Add Qualys IaC Bitbucket step at the top of all steps.
Contents of Pipeline Script (bitbucket-pipelines.yml)
image: qualys/qiac_security_cli
pipelines:
custom: # defines that this can only be triggered manually or by a schedule
qualys: # The name that is displayed in the list in the Bitbucket Cloud GUI
- step:
script:
- export ScheduleBuildTrigger=true
- sh /home/qiac/ bitbucket.sh $ScheduleBuildTrigger
default:
- step:
name: Test
caches:
- pip
script:
- export ScheduleBuildTrigger=false
- sh /home/qiac/ bitbucket.sh $ScheduleBuildTrigger
Next step: