Configure an Azure DevOps Build for ASP.NET Applications

Build Systems

To enable the Veracode Azure DevOps Extension to effectively scan ASP.NET applications, you must perform specific configurations in your Azure DevOps build process.

Before you begin

Before configuring the build, you must precompile your ASP.NET application and generate a PUBXML file according to the instructions in the Compilation Guide.

The Azure DevOps Build configuration task requires that you use Visual Studio as your integrated development environment.

About this task

To configure your Azure DevOps build to effectively process ASP.NET applications:

Procedure

  1. Open the ASP.NET application in Visual Studio.
  2. Add the veracode.pubxml file that contains Veracode-specific settings to the PublishProfiles folder.
  3. View the veracode.pubxml file to verify your configuration.
    Information in this file helps to generate the necessary artifacts which are useful in a Veracode scan.
  4. Check in the changes to your repository.
  5. In TFS or Azure DevOps, open your Azure DevOps project.
  6. Go to the Build tab and navigate to your build definition.
  7. Select the Build solution task.
  8. In the MSBuild Arguments field, enter the path of your application PUBXML file.

    In this example, the path is /p:OutputPath=bin /p:DeployOnBuild=true /p:PublishProfile=veracode.pubxml.

  9. Perform the standard Azure DevOps build configuration steps.