How To Resolve The Build Pipeline Security Issue

Last updated by Yana Wang on 3/14/2022 7:12:55 AM This content is over 788 days old.

Steps:

  1. See the action items on Service 360.

  1. See the security items in the Security tab.

  1. Click the item title for detail information.

Find the failed items in the column PIResult. The PIEvidence can help you find the root cause of the failed check points. PIRecommendationText tells you how to resolve the items.

  1. Click the hyper link in PIDocumentation column for Resolving Your Action Item.

You can also find more refer documents on SDL Tools Onboarding.

  1. Change build configurations in the task name PostAnalysis@2 and set up a pr.

  1. For the pipeline which runs with YAML, you need to make a dummy change in ADO UI (such as adding a dummy variable) to create a new version so that the items status can be triggered. If the process is successful, you’ll see a new revision created here with today’s date:

Resolved Items:

PIName PIRecommendationText Action
GuardianBreak_ESLintBuildBreak_Settings Run GuardianBreak with BreakOn Error for ESLint ESLintBreakOn: Error
GuardianBreak_RoslynBuildBreak_Settings Run Guardian Break with M365 Break Policy and BreakOn Error+Warning for Roslyn RoslynAnalyzersBreakOn: WarningAbove GdnBreakPolicy: M365
GuardianBreak_BreakPolicy_MinSeverity Run GuardianBreak with M365 Policy and Minimum Severity=Warning GdnBreakPolicyMinSev: Warning