Integrating Invicti Standard with Pivotal Tracker
Pivotal Tracker is a project management tool that focuses on software development teams' collaboration around the backlog of stories. It helps software development teams break down projects into small and concrete stories.
This document explains how to configure Invicti Standard to send a detected vulnerability to Pivotal Tracker for enhanced agile project management and development team collaboration.
For further information, see Configuring the User Interface for Custom Send To Actions in Invicti Standard and Configuring Auto Send To Actions in Invicti Standard and What Systems Does Invicti Integrate With? external documentation.
Pivotal Tracker Fields
This table lists and explains the Pivotal Tracker fields in the Send to Actions tab.
| Button/Section/Field | Description |
|---|---|
| Add | Click to add an integration. |
| Delete | Click to delete the integration and clear all fields. |
| Configure Send To | Click to configure the integration using the Settings Wizard instead of doing it manually. |
| Create Sample Issue | Once all relevant fields have been configured, click to create a sample issue. |
| Action | This section contains general fields about the Send To Action. |
| Display Name | This is the name of the configuration that will be shown in menus. |
| Mandatory | This section contains fields that must be completed. |
| API Token | This is the API Token for the user. |
| Project ID | This is the Project Identifier. |
| Story Type | This is the issue's story type. The options are: Feature, Chore, Bug, Release |
| Vulnerability | This section contains fields with vulnerability details. |
| Body Template | This is the template file that is used to create description fields. |
| Title Format | This is the string format that is used to create the vulnerability title. |
| Optional | This section contains optional fields. |
| Owner | This is the owner of the issue. |
| Labels | This is a comma-separated list of labels. |
How to Integrate Invicti Standard with Pivotal Tracker
Follow these steps to configure the Pivotal Tracker integration in Invicti Standard:
-
Open Invicti Standard.
-
From the Home tab on the ribbon, select Options > Send To Actions.
-
From the Add drop-down, select Pivotal Tracker.
-
In the Mandatory section, complete the connection details:
- API Token
- Project ID
- Story Type
-
In the Vulnerability section, you can change the default Body Template and Title Format.
Body templates are stored in %userprofile%\Documents\Invicti\Resources\Send To Templates. If you use your own custom templates, store them in this location.
-
In the Optional section you can specify:
- Owner Identifiers
- Labels
-
Select Create Sample Issue to confirm that Invicti Standard can connect to the configured system.
- When the confirmation dialog is displayed, select the Issue number link to open the issue in Pivotal Tracker in the default browser.
-
Select OK to save the integration.
How to Export Reported Vulnerabilities to Pivotal Tracker
Please ensure that you have first configured Pivotal Tracker integration (see How to Integrate Invicti Standard with Pivotal Tracker).
- Open Invicti Standard.
- From the ribbon, select the File tab. Local Scans are displayed. Double-click the relevant scan to display its results.
- In the Issues panel, right-click the vulnerability you want to export and select Send to Pivotal Tracker. (Alternatively, from the ribbon, click the Vulnerability tab, then Send To Pivotal Tracker.) A confirmation message and link are displayed at the bottom of the screen.
- Select the Pivotal Tracker Send to Action is executed for the selected vulnerability. Click to open in the default browser link to view the newly-created issue in Pivotal Tracker.
Need help?
Invicti Support team is ready to provide you with technical help. Go to Help Center