The AWS CodeBuld project that is created and verified in Calling Synopsys Detect from AWS CodeBuild is referenced in the following steps.
Step 1: Create a pipeline in AWS CodePipeline by following the procedures in http://docs.aws.amazon.com/codepipeline/latest/userguide/pipelines-create.html.
While creating a pipeline in the build stage:
- Select Build > Builder provider > AWS CodeBuild.
- Under Build > Configure your project > Select an existing build project > Project name, select the project that is already created and verified using AWS CodeBuild.
Step 2: After a new pipeline is created, a pipeline job automatically starts. If it is successful, you can download and view the artifacts from S3.
- The artifacts are pushed to S3 in .zip files. As part of the artifact, it contains the built artifact and a PDF of the risk profile report.
Step 3: The scan results are pushed to Black Duck.
Step 4: View the console logs and check the pipeline job status.
- The console logs for CodeBuild are at https://console.aws.amazon.com under Services > Management Tools > CloudWatch > Logs. Select the corresponding CodeBuild project and check the latest log.
- You can check the status of your pipeline job by navigating to the corresponding pipeline under https://console.aws.amazon.com/codepipeline, and clicking View pipeline history.
If there are changes in the source code, AWS CodePipeline runs those changes through the pipeline and starts a new pipeline job. The AWS CodeBuild project is invoked during the build stage.