is the secure development tools extension inbuilt in solution checker component of Power Platform checker task in the build pipeline?
I know that static analysis is run as part of solution checker, but are any of these specific tools run in it as well- credscan, semmle/codeql, binskim etc?
Great question @pallavighosh. Today these tools are not part of the solution checker feature. The included rules are rules provided by the team that are specific to Power Apps, Cloud Flows, and Dataverse. Please see Use solution checker to validate your apps in Power Apps - Power Apps | Microsoft Docs for the rules.
thank you @MikeHuguet I wanted to know before deciding to add those security tasks from the ADO extension into our build pipeline. your answer helps!
Join us in Las Vegas to experience community, incredible learning opportunities, and connections that will help grow skills, know-how, and more.