The extension activation procedure will be moved to the Organization settings section by navigating to Organization settings > Extensions > WhiteSource page.
The WhiteSource tab under Project > Pipelines will be deprecated.
The WhiteSource Open Source Risk Report will be available at the Azure DevOps build level only, deprecating the project level aggregated report.
The direct WhiteSource scan from within the Azure DevOps pipeline will be the only scanning option.
The WhiteSource Bolt extension enables you to do the following:
Your Azure DevOps organization is connected to an Azure Active Directory via Organization Settings > Azure Active Directory.
You do not have any existing WhiteSource extensions installed. If so, these must be uninstalled.
An activation key is required for adding this extension to more than one Azure DevOps organization. You can obtain this activation key from the Integrate page within your WhiteSource Essentials trial. This also means that once the Essentials trial is over, you will no longer be able to install Bolt on additional Azure DevOps organizations.
If you are using a self-hosted build agent, note that running it behind a web proxy is not currently supported.
The relevant package manager used by your project is installed.
Installing the Extension
To install the extension, do as follows:
To activate the extension, do as follows:
Inside After installing the extension, navigate to Organization Settings > Extensions > WhiteSource within your Azure DevOps organization, open any of your projects. If you do not have any projects, create one before proceeding.
In the project page, from the sidebar, click Pipelines. The Pipelines page is displayed.
From the sidebar, click WhiteSource Bolt.
In the WhiteSource Bolt page, an .
An activation form enabling you to create your WhiteSource account is displayed. Enter the following details:
Phone Number (optional)
Click Create Account.