Integrating Netsparker Standard with Pivotal Tracker
Pivotal Tracker is a project management tool that focuses on software development teams’ collaboration around the backlog of stories. It helps software development teams break down projects into small and concrete stories.
This topic explains how to configure Netsparker Standard to send a detected vulnerability to Pivotal Tracker.
For further information, see Configuring the User Interface for Custom Send To Actions in Netsparker Standard and Configuring Auto Send To Actions in Netsparker Standard and What Systems Does Netsparker Integrate With?.
Pivotal Tracker Fields
This table lists and explains the Pivotal Tracker fields in the Send to Actions tab.
|
Button/Section/Field |
Description |
|
Add |
Click to add an integration. |
|
Delete |
Click to delete the integration and clear all fields. |
|
Configure Send To |
Click to configure the integration using the Settings Wizard instead of doing it manually. |
|
Create Sample Issue |
Once all relevant fields have been configured, click to create a sample issue. |
|
Action |
This section contains general fields about the Send To Action. |
|
Display Name |
This is the name of the configuration that will be shown in menus. |
|
Mandatory |
This section contains fields that must be completed. |
|
API Token |
This is the API Token for the user. |
|
Project ID |
This is the Project Identifier. |
|
Story Type |
This is the issue's story type. The options are:
|
|
Vulnerability |
This section contains fields with vulnerability details. |
|
Body Template |
This is the template file that is used to create description fields. |
|
Title Format |
This is the string format that is used to create the vulnerability title. |
|
Optional |
This section contains optional fields. |
|
Owner |
This is the owner of the issue. |
|
Labels |
This is a comma-separated list of labels. |
How to Integrate Netsparker Standard with Pivotal Tracker
- Open Netsparker Standard.
- From the Home tab on the ribbon, click Options. The Options dialog is displayed.
- Click Send To Actions.
- From the Add dropdown, select Pivotal Tracker. The Pivotal Tracker fields are displayed.
- In the Mandatory section, complete the connection details:
- API Token
- Project ID
- Story Type
- In the Vulnerability section, you can change the default Body Template and Title Format.
Body templates are stored in %userprofile%\Documents\Netsparker\Resources\Send To Templates. If you use your own custom templates, store them in this location.
- In the Optional section you can specify:
- Owner Identifiers
- Labels
- Click OK.
- Click Create Sample Issue to confirm that Netsparker Standard can connect to the configured system. The Send To Action Test confirmation dialog is displayed.
- Click the Issue number link to open the issue in Pivotal Tracker in the default browser.
How to Export Reported Vulnerabilities to Pivotal Tracker
Please ensure that you have first configured Pivotal Tracker integration (see How to Integrate Netsparker Standard with Pivotal Tracker).
- Open Netsparker Standard.
- From the ribbon, select the File tab. Local Scans are displayed. Double-click the relevant scan to display its results.
- In the Issues panel, right click the vulnerability you want to export and select Send to Pivotal Tracker. (Alternatively, from the ribbon, click the Vulnerability tab, then Send To Pivotal Tracker.) A confirmation message and link are displayed at the bottom of the screen.
- Click the Pivotal Tracker Send to Action is executed for the selected vulnerability. Click to open in the default browser. link to view the newly-created issue in Pivotal Tracker.
- The vulnerability is automatically exported to Pivotal Tracker. You can view it in Pivotal Tracker's Icebox tab.
