Polaris IP ranges for Synopsys Bridge

When you run Synopsys Bridge in a pipeline (including the Bridge CLI, Synopsys Security Scan Extension for Azure DevOps, Synopsys GitHub Action, Synopsys GitLab Template, Synopsys Security Scan Plugin for Jenkins), it interacts with several services, along with Polaris (https://polaris.blackduck.com, https://poc.polaris.blackduck.com, https://eu.polaris.blackduck.com).

Note: HTTPS is used for all traffic to Polaris. IPs that include a subnet mask (for example, /22 in 103.21.244.0/22) represent a range of IPs, all of which should be allow listed to ensure Bridge and Polaris function as expected.

Polaris APIs

Polaris APIs are domain-fronted by CloudFlare.

  • 103.21.244.0/22
  • 103.22.200.0/22
  • 103.31.4.0/22
  • 104.16.0.0/13
  • 104.24.0.0/14
  • 108.162.192.0/18
  • 131.0.72.0/22
  • 141.101.64.0/18
  • 162.158.0.0/15
  • 172.64.0.0/13
  • 173.245.48.0/20
  • 188.114.96.0/20
  • 190.93.240.0/20
  • 197.234.240.0/22
  • 198.41.128.0/17
Note: Find Cloudflare IP ranges (IPv4) here: https://www.cloudflare.com/ips.

Storage service

Test artifacts are sent to a Polaris storage service using IPs that vary between Polaris instances.

Table 1. IPs for storage services
Polaris instance DNS IPs
America, production https://store.polaris.blackduck.com (formerly, https://store.polaris.synopsys.com)
  • 34.120.169.184
America, POC https://store-poc.polaris.blackduck.com (formerly, https://store-poc.polaris.synopsys.com)
  • 34.49.227.145
European Union, production https://store-eu.polaris.blackduck.com (formerly, https://store-eu.polaris.synopsys.com)
  • 34.36.5.64
Important: https://store.polaris.synopsys.com (34.110.190.234), https://store-poc.polaris.synopsys.com (34.95.76.31), and https://store-eu.polaris.synopsys.com (34.120.192.89) will continue to function until March 31, 2025. Update your allow list before March 31, 2025 to avoid issues.