No pull request annotations in Azure DevOps
svaenn opened this issue · comments
Describe the bug
No pull request annotations are added in the pull request when using defender for devops with Azure DevOps.
To Reproduce
Steps to reproduce the behavior:
- Configure a pipeline as described here https://learn.microsoft.com/en-us/azure/defender-for-cloud/detect-credential-leaks#setup-secret-scanning-in-azure-devops
- Configure Azure DevOps and Azure Defender as descibed here https://learn.microsoft.com/en-us/azure/defender-for-cloud/tutorial-enable-pull-request-annotations#enable-pull-request-annotations-in-azure-devops
- Create a pull request for a branch containing exposed secrets
- Pipeline detects secrets with credscan
- No annotation added in pull request
Expected behavior
When the validation pipeline detects secrets with credscan an annotation should be added in the pull request
Additional context
This is the Azure Portal Defender for Cloud DevOps Security dashboard: