Introduction

Synopsys Detect (formerly called Hub Detect) is a utility that consolidates the client-side functionality of Black Duck and Coverity on Polaris into a single, easy-to-use tool.
With Synopsys Detect, you can invoke Black Duck software-composition analysis scans and Coverity on Polaris Static Application Security Testing (SAST) analyses. (Refer to the Black Duck and Coverity sites for more information.) 
Synopsys Detect consolidates the functionality of several Synopsys scanning tools, package managers, and continuous integration plugin tools. Synopsys Detect enables you to set up and scan applications by using various languages and package managers.

Note: The Polaris Software Integrity Platform provides a unified interface to several Synopsys offerings, including Coverity and Black Duck. The cloud-based Coverity offering is referred to here as Coverity on Polaris.

This page describes how to invoke Synopsys Detect from AWS CodeBuild and AWS CodePipeline.

Invoking Synopsys Detect

To execute a Coverity scan, you must invoke Synopsys Detect as a Build Step in AWS CodeBuild.

To execute a Black Duck scan, you can invoke Synopsys Detect by using either of the following methods:

• Build Step or a Post-Build step in AWS CodeBuild.
• Custom Action in AWS CodePipeline.

Here are some helpful links that provide information about these tasks: