Debricked CLI migration guide

The Legacy CLI has now been officially deprecated. Going forward, all the efforts and enhancements will be dedicated solely to the new Debricked CLI. Thus, Debricked strongly recommends and encourages your transition to the new CLI in order to stay aligned with the latest features and improvements. Read on to find out why you should migrate to the new CLI and what actions are needed from your side.

Advantages of new CLI

The new Debricked CLI is distributed as a self-contained binary, removing the need for a PHP environment. This makes it easier to install, integrate, run, and upgrade. Following are the new functionalities and improvements made the new CLI:

• Automatic application of git metadata to scans

• Faster scanning*: Finding and uploading files is now significantly faster

• Improved call graph generation for vulnerable functionality

• Manifest-less/fingerprint matching

*In the new CLI, a new cutting-edge technology: High Performance Scans is incorporated . This technology enables you to accurately and swiftly resolve full dependency trees for repositories without a lock file.

Migration to new CLI

Migration to the new CLI is a simple process, but the pipeline configuration needed will differ depending on your CI/CD tool. Debricked has created templates using the new CLI for all natively supported integrations. With the new CLI it is also easier than before to set up an integration with a non-natively supported CI/CD tool. The templates for setting up the integration can be found below. If you need help in setting up your migration, do not hesitate to contact Debricked support team which will help you get set up with the new CLI.

• GitHub actions

  • GitHub example template

  • To integrate several repositories with a single configuration check out this page

• Azure DevOps

  • Azure example template

  • To integrate several repositories with a single configuration check out this page

• GitLab CICD

  • GitLab example template

  • To integrate several repositories with a single configuration check out this page

• Bitbucket

  • Bitbucket example template

  • To integrate several repositories with a single configuration check out this page

• Argo

  • Argo example template

• Travis

  • Travis example template

• CircleCI

  • CircleCI example template

• Jenkins

  • Jenkins example template

• BuildKite

  • BuildKite example template

• Other, If your CI/CD tool is not mentioned above

  • Because the CLI is distributed as a self-contained binary, using it in your CI/CD is often as simple as downloading the binary and running `debricked scan`. An example of how that script might look, using a linux based CI/CD setup, can be found below.

    Copy

    - curl -L https://github.com/debricked/cli/releases/download/release-v1/cli_linux_x86_64.tar.gz | tar -xz debricked
    - ./debricked scan