CI/CD Reports

1 minute to read

Print
Share
Dark
Light
PDF

Article Summary

Share feedback

Thanks for sharing your feedback!

Using senhasegura DSM, administrators can easily discover environment variables running in CI/CD solutions, such as GitLab, GitHub, Azure DevOps, and others, through plugins or API calls. This makes it easy to find sensitive information on variables without needing a manual search inside pipelines, or CI/CD configured variables.

This configuration also enables developers to map those variables and register them as secrets inside senhasegura when used together with DSM CLI.

CI/CD Variables

Variables Report

This report shows all variables intercepted by senhasegura DSM through its plugins and integration via API. These variables may or may not have sensitive information, such as usernames, passwords, access keys, and SSH keys.

To see a list of all discovered variables, follow the menu DevOps Secret Manager ➔ CI/CD ➔ Varibles.

On this screen, you can view discovered variables with extra information, such as

Variable name,
Approval status,
Application name,
System,
Environment,
Creation date.

View variable details

To view the details of a variable, follow the menu: DevOps Secret Manager ➔ CI/CD ➔ Variables. In the action column of the variable row, click on the Variable details option.

Info

The senhasegura DSM can identify some variables as being sensitive, for example, AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY, and automatically create a secret so that they can be easily managed in the solution.