Last updated: July 20, 2021
Read time: 3 Minutes
The driver accepts URLs to scan as standard input (
stdin) in the format
BURP_SCAN_URL = https://application-to-scan.com. You can generate a list of URLs any way you want, as long as the output is passed in this format to the driver. For the purposes of this guide, we'll assume that you are outputting the URLs in a previous build step on your preferred CI/CD platform.
echo BURP_SCAN_URL = https://application-to-scan.com
--api-keyparameter. This is the recommended approach. Alternatively, you can include the API key in the API URL as follows:
https://your-enterprise-server:8080/api/your-api-key. However, this means you will not be able to download scan reports and is primarily to provide continued support for legacy integrations that were configured using older versions of the driver.
java -jar path/to/ci-driver.jar https://your-enterprise-server:8080 --api-key=secret --site-id=7 --min-severity=high --min-confidence=certain --report-file=scan-report.html --report-type=summary
For detailed information about the available parameters and which settings they control, please refer to our parameter reference guide or use the
After you finish configuring the build step, it's a good idea to check whether the integration is working correctly and that your scan is able to run successfully.