Copy the Accurics CLI and associated config to the Bamboo server.
Add the following commands in the Script body of a Script Configuration in a Bamboo Task.
cp /home/user/AccuricsCLI/* ./ export ARM_SUBSCRIPTION_ID=<SUBSCRIPTION ID> export ARM_TENANT_ID=<TENANT ID> export ARM_CLIENT_ID=<CLIENT ID> export ARM_CLIENT_SECRET=<CLIENT SECRET> ./accurics init ./accurics plan if [ $? -eq 0 ]; then exit 0; else exit 1; fi
<SUBSCRIPTION ID> <TENANT ID> <CLIENT ID> <CLIENT SECRET>
To save the Accurics JSON and HTML report as artifacts create a new artifact for the job. Provide a name for the artifacts. In the Copy pattern field enter accurics_report. *
This will save the reports containing the specifics for each violation that was found in the IaC.
After the Accurics CLI is configured you can run the plan. If the Accurics environment is set to
enforce policies the build will fail and you will be provided with a JSON and HTML report detailing the policy violations. Additionally, the violations will be sent to the Accurics console and can be viewed there.