How to Use Aikido Security

Getting started with Aikido Security

In this guide, you will learn how to set up Aikido Security and perform a basic security scan on your code. After reading this, you'll be able to integrate security checks into your development workflow effectively.

Step 1: Sign up and set up

1. Visit Aikido Security's website.
2. Click on the “Get Started” button located in the top right corner.
3. Fill in the required information to create your account, including your name, email, and password.
4. Verify your email address by clicking the link in the confirmation email you receive.
5. Log in to your new account.

Step 2: Your first security scan

1. After logging in, navigate to the “Dashboard” from the left menu.
2. Click on the “Add Project” button on the top right.
3. Enter your project details, including the repository URL (GitHub, GitLab, etc.) and select the type of scan you want (SAST or SCA).
4. Click “Save” to add the project.
5. Run the scan by clicking on the project name and selecting “Run Scan” from the project options.
6. Wait for the scan to complete, then review the results in the “Findings” tab.

Step 3: Get better results

1. For more accurate results, ensure that your code is up to date and free of syntax errors before scanning.
2. Use the “Settings” tab within your project to configure custom rules for your scans, which can help tailor the results to your specific needs.
3. Regularly schedule scans by setting up a CI/CD integration, which can be done under the “Integrations” section.

Pro tip

Use the “Notifications” feature to get alerts for new vulnerabilities. This way, you can stay updated without constantly checking the dashboard.

Common mistake to avoid

Avoid skipping the project settings configuration. Not specifying the correct programming language or scan type can lead to incomplete or misleading results. Always double-check these settings before running your scans.