| a11y |
Leverages The A11y Machine to perform accessibility compliance scanning |
| Anchore |
Performs comprehensive container image vulnerability scan and compliance policy evaluation using your Anchore Enterprise or Anchore Engine installation |
| Cypress |
This library allows you to run end-to-end tests with Cypress |
| Docker |
Uses docker to build and publish container images, tagging them with the Git SHA |
| Docker Compose |
Uses docker compose to deploy and tear down containers |
| DotNet |
This library allows you to perform .NET build and test commands in the SDP dotnet-sdk agent container |
| Git |
Allows you to map a branching strategy to specific pipeline actions when using Public GitHub, GitLab, or GitHub Enterprise |
| Google Lighthouse |
Performs accessibility compliance, performance, search engine optimization, and best practice validations on a frontend application |
| Grype |
Uses the Grype CLI to scan container images for vulnerabilities. |
| Kubernetes |
Allows you to perform deployments using Helm to a kubernetes cluster (or clusters) |
| Maven |
This library allows you to perform Maven commands in a defined build agent container |
| npm |
Run NPM script commands in an NVM container with a specified Node version |
| OpenShift |
Allows you to perform deployments using Helm to a Red Hat OpenShift Container Platform (or platforms) |
| OWASP Dependency Check |
Leverages OWASP Dependency Check for scanning third party application dependencies |
| OWASP ZAP |
Leverages OWASP ZAP to perform penetration testing |
| Protractor |
Leverages Protractor, a front-end unit testing utility, to perform unit tests |
| PyTest |
Leverages PyTest, a Python unit testing library, to perform unit tests |
| SDP |
An internal helper library that the others utilize |
| Slack |
Facilitates pipeline notifications to the configured Slack channel |
| SonarQube |
Performs static code analysis with SonarQube |
| Syft |
This library allows you to generate a Software Bill of Materials (SBOM) for each container built in your project |
| Sysdig Secure |
Performs container image scanning with Sysdig Secure's inline scanner |
| Terraform |
Deploys Infrastructure as Code using Terraform |
| Twistlock |
Performs container image scanning with TwistLock |
| webhint |
A customizable linting tool that helps you improve your site's accessibility, speed, cross-browser compatibility, and more by checking your code for best practices and common errors |
| Yarn |
Run Yarn script commands in an NVM container with a specified Node version |