Integrate a SCM Repository to a Project

Within the Polaris UI, Source Code Management (SCM) Repository integrations supports the following:

  • GitHub and GitHub Enterprise (cloud and self-hosted)
    Note: The Black Duck Security Scan Action is the preferred method for integrating the GitHub pipeline with Polaris.
  • GitLab (SaaS and self-hosted)
  • Azure DevOps (cloud)
  • Bitbucket (cloud and self-hosted)

See Supported Source Code Management (SCM) systems for more information.

Note: Only GitLab and Bitbucket are supported for self-hosted servers.

After you connect Polaris to a repository, assign test scheduling policies to schedule SAST and SCA scans that run automatically. You can also run tests on-demand using the UI.

The default branch in your SCM repository becomes the default branch in your Polaris project. In order to test other branches in your SCM repository, you need to import them. See Add a branch to a project.

Note: Connecting multiple repositories to a single Polaris project is not supported.

From Application, select a Project and navigate to Settings > Integrations. Fill out this screen.

Cloud-hosted

Self-hosted

For details for each source, see sections below.