Integrations for Sysdig Secure

The Integration menu option in Sysdig Secure provides quick-link access to multiple types of integrations: connectable data sources, outbound services such as event forwarding, and third-party integrations such Jira or Git.

Data Sources

Use the links in Integrations | Data Sources to review the status of your Sysdig agents and connected cloud accounts, and to add agents and accounts as needed.

Cloud Accounts: Individual cloud subpages allow you to review account details and add accounts from AWS, GCP, and Azure.

Managed Kubernetes: Review and add managed Kubernetes clusters detected in the connected cloud accounts.

Sysdig Agents: Deploy the Sysdig agent using a range of options.

Sysdig Platform Audit: Review the activity in the Sysdig platform by user, team, or activity type.

Internal Agents Dashboard: Visible in on-premises installs only, with detailed information about the agents in the environment.

Agent Access Key (aka “Agent Installation”): Retrieve the agent access key assigned to this account.

Outbound

Use the links in the Integrations | Outbound menu to access Sysdig features:

Event Forwarding: Access instructions to forward event details to a range of external tools such as Splunk, Elasticsearch, Syslog, etc.

Capture Storage: Link to the page for configuring S3 or custom storage for storing captures and for (optional) rapid response files.

Notification Channels: Integrations > Outbound | Notification Channels gives a quick link to configure the notification channels in Sysdig Secure. (Sysdig Monitor notification channels must be configured separately and are accessed from the Monitor UI.)

Third-Party

Git Integrations: Set up an integration between Sysdig and Github, Bitbucket, GitLab, or Azure DevOps to check the compliance of a pull request during development and review and remediate results in the Sysdig Secure UI.

Risk Spotlight Integration (Controlled Availability, contact Sysdig Support for access)

Ticketing Integrations: JIRA: Allow users in the Sysdig UI to open JIRA tickets and assign them to team members directly.

Additional

  • Forward vulnerability scan results to ServiceNow or Jenkins
  • Review sample CI/CD integrations

Forward Vulnerability Scan Results

ServiceNow (Tech Preview): Push the results of Sysdig vulnerability scans to an existing ServiceNow installation. Install Guide for the Sysdig Container Vulnerability Response plugin.

Jenkins plugin: Push the results of Sysdig pipeline (cli-scanner) scan to an existing Jenkins installation. Install Guide for the Sysdig Secure Jenkins Plugin.

Additional Examples of CI/CD Integrations

Azure Pipelines

AWS Codepipeline

CircleCI

Github Actions

Gitlab

Tekton Pipelines

Topics in This Section
Cloud Accounts

The various cloud account summary pages provide account details and shortcut links to add accounts. Each cloud provider has a separate page.

Data Sources

Use the links in Data Sources to review the status of your Sysdig agents and connected cloud accounts, and to add agents and accounts as needed.

Ticketing Integrations

Use the Ticketing Integrations to quickly and easily set up a connection between the Sysdig platform and your organization’s task management tool, such as Jira, to inject Sysdig tasks into your existing remediation workflow.

Risk Spotlight Integrations

Sysdig has a simplified way to integrate third-party tools with Risk Spotlight and In Use features.

Vulnerability Integrations

Sysdig provides integration software to allow Sysdig vulnerability scan results to be used in third-party solutions such as ServiceNow and Jenkins. These integrations are available from third-party marketplaces. The Sysdig blog also contains examples of vulnerability scanning integrations into various CI/CD pipelines, which are linked below.