Retrieve your intigriti API token and pass your (external) IP address for whitelisting.
Create your configuration file:
# your intigriti API credentials
intigriti_client_id: "XXXXXXXXXXX"
intigriti_client_secret: "XXXXXXXXXXX"
# what maximum amount of findings you tolerate per severity
tresholds:
# we allow no criticals
critical: 0
# we allow no highs
high: 0
# we allow 1 medium
medium: 1
# we allow arbitrary amount of lows
low: 100000
Run icp in your CI/CD pipeline with arguments:
./icp -conf=my-conf.yml
icp will return an error code whenever your defined tresholds are set, stopping your pipeline.
Building
This requires make and go to be installed.
Just run make.