You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Jan 21, 2026. It is now read-only.
Copy file name to clipboardExpand all lines: Instructions/Labs/AZ400_M19_Implement_Security_and_Compliance_in_an_Azure_DevOps_pipeline.md
+4-2Lines changed: 4 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -95,13 +95,15 @@ In this task, you will activate WhiteSource Bolt in the newly generated Azure De
95
95
96
96
1. On the MarketPlace, search for **Mend Bolt (formerly WhiteSource)** and open it. Mend Bolt is the free version of the previously known Whitesource tool, which scans all your projects and detects open source components, their license and known vulnerabilities.
97
97
98
+
> Warning: make sure you select the Mend **Bolt** option (the **free** one)!
99
+
98
100
1. On the **Mend Bolt (formerly WhiteSource)** page, clikc on **Get it for free**.
99
101
100
102
101
103
102
104
1. On the next page, select the desired Azure DevOps organization and **Install**. **Proceed to organization** once installed.
103
105
104
-
1. In your Azure DevOps navigate to **Organization Settings** and select **Mend** under **Extensions**. Provide your Work Email, Company Name and other details and click **Create Account** button to start using the Free version.
106
+
1. In your Azure DevOps navigate to **Organization Settings** and select **Mend** under **Extensions**. Provide your Work Email (**your lab personal account**, e.g. using AZ400learner@outlook.com instead of student@microsoft.com ), Company Name and other details and click **Create Account** button to start using the Free version.
105
107
106
108
107
109
@@ -110,7 +112,7 @@ In this task, you will activate WhiteSource Bolt in the newly generated Azure De
110
112
111
113
In this task, you will create and trigger a CI build pipeline within Azure DevOps project. You will use **Mend Bolt** extension to identify vulnerable OSS components present in this code.
112
114
113
-
1. On your lab computer, in the vertical menu bar on the left side, navigate to the **Pipelines>Pipelines** section, click **Create Pipeline**.
115
+
1. On your lab computer, from the **eShopOnWeb** Azure DevOps project, in the vertical menu bar on the left side, navigate to the **Pipelines>Pipelines** section, click **Create Pipeline**.
114
116
115
117
1. On the **Where is your code?** window, select **Azure Repos Git (YAML)** and select the **eShopOnWeb** repository.
0 commit comments