CI/CD Support Matrix¶
CI/CD Support Matrix provides a structured overview of supported capabilities and integration types across popular CI/CD platforms. This helps teams align their DevOps processes with available tools and identify the best fit for their workflows.
This document outlines the integration mechanisms (workflow file, plugin, or native integration) and feature availability for key DevOps and security functionalities such as SAST, DAST, Infrastructure-as-Code (IaC) scanning, container security, secrets scanning, and pipeline monitoring.
By understanding the support landscape for each CI/CD tool, teams can streamline their pipelines while ensuring compliance, security, and efficiency.
Integration Types¶
These are the three supported methods for integrating CI/CD tools with AccuKnox :-
-
Workflow File:
- Description: A workflow file is a configuration file within the CI/CD tool where you define the steps of your build, test, and deploy pipeline. It allows you to automate tasks using specific syntax and structure (often YAML or JSON).
-
Plugin Support:
- Description: This method refers to using external plugins to extend the functionality of the CI/CD tool. Plugins integrate the tool with third-party services or features, such as code scanning, security checks, or deployment to cloud platforms.
-
Native Integration:
- Description: Native integration refers to the seamless, built-in capability of AccuKnox to directly connect with CI/CD tools and platforms, without the need for external plugins. This method utilizes the internal features of AccuKnox to interact with and manage security policies, scans, and assessments within the CI/CD pipeline.
| CI/CD Tool | Workflow File | Plugin Support | Native Integration (IaC) |
|---|---|---|---|
 GitHub Actions |
Available | Available | Available |
 GitLab CI/CD |
Available | Available | Available |
 Jenkins |
Available | Available | WIP |
 Azure DevOps |
Available | WIP | WIP |
 AWS CodePipeline |
Available | WIP | WIP |
 Bitbucket |
Available | Available | Available |
 CircleCI |
Available | WIP | WIP |
 GCP Cloud Build |
Available | WIP | WIP |
 Harness |
Available | WIP | WIP |
Feature Support Table (Plugins)¶
| CI/CD Tool | SAST | DAST | IaC Scanning | Container Scanning | Secrets Scanning | CI/CD Pipeline Monitoring |
|---|---|---|---|---|---|---|
| GitHub Actions |
Available | Available | Available | Available | Available | Available |
| GitLab CI/CD |
Available | Available | Available | Available | WIP | WIP |
| Jenkins |
WIP | WIP | Available | Available | WIP | WIP |
| Azure DevOps |
WIP | WIP | WIP | WIP | WIP | WIP |
| AWS CodePipeline |
WIP | WIP | WIP | WIP | WIP | WIP |
| Bitbucket |
Available | Available | Available | Available | WIP | WIP |
| CircleCI |
WIP | WIP | WIP | WIP | WIP | WIP |
| GCP Cloud Build |
WIP | WIP | WIP | WIP | WIP | WIP |
| Harness |
WIP | WIP | WIP | WIP | WIP | WIP |