Skip to content

Extension FAQ

The scanner and UI code, along with SBOMs and licenses are available here. There is an Azure DevOps extension Observes Scanner that makes it easy to set it up. Obtain it from the market place.

This extension will add the following capabilities to your Azure DevOps environment:

  • The observes UI as a hub in Azure DevOps projects (where you would find the normal hubs for Boards, Repos, Pipelines, etc.)
  • The observes scanners service connection for secure authentication of the scanner.
  • The observes task for running scans within your pipeline.

We package up and present all components for observes into this single extension.

  • UI: https://github.com/observes-io/observes-ui
  • Scanner: https://github.com/observes-io/observes-scanner

Observes UI

Observes UI is a client-side web application for visualizing, managing, and exploring Azure DevOps resources, pipelines and their relationships. It is designed for internal use within your organization, providing a rich dashboard and interactive tools for DevOps inventory, compliance, and risk management. The input file is generated by the Observes Scanner.

Observes Scanner

Observes Scanner is a cross-platform CLI tool for scanning Azure DevOps organizations and its output is parsed by the Observes UI.

The scanner shapes the data to highlight relationships between CI/CD resources (repositories, agent pools, credentials) and pipelines (runs and and preview runs), along with an analysis of projects stats (repos, commiters, pull requests).

Need to Know

Data Security

No data leaves the organisation in the self-hosted scan version. Data collection, processing and visualisation remains within your environment.

The Observes Scanner scans and creates a local json file. This file is published as a pipeline artifact associated with the run of the pipeline task.

You then manually download and upload the json file to the ADO hosted Observes UI. All data processing and visualization occurs within your browser.

Supply Chain Security

We are committed to supply chain security and transparency. A Software Bill of Materials (SBOM) is published for each release.

Resources