Adding Azure DevOps Repositories
This guide includes adding a HackerOne Code servcice user to your Organization, authorizing your Azure DevOps account with HackerOne Code, installing and syncing your repositories.
Step 1: Invite the HackerOne Code service user
NOTE: If your organization uses the Azure Active Directory (Azure AD) access management service, please let your HackerOne implementation or accounts contact know.
In order for our system to post feedback to your Azure pull requests, a posting user must be added to your team.
Open your Azure DevOps Organization Settings and click Users -> Add Users
In the Users field, add: [email protected]
The user will need Basic access and will need to be added to all of the Projects you'll need review coverage on.
If possible, we recommend selecting Add all Project access so there's no disruption in service as coverage is needed. You'll be able to maintain control for restricting and enabling service for certain repositories through our dashboard (see Step 5).
Once the user is aded, an invitation will be sent to the HackerOne implementation team to accept.

Step 2: Create a user account by authenticated with Azure DevOps
If you haven't already, visit https://app.pullrequest.com/signup and create a user account by authenticating with Azure DevOps.

Step 3: Authorize and Sync Organization Projects
After signing up, you'll be prompted to authorize and connect with a version control hosting provider. Click the Sync with Azure DevOps option.

You'll then be prompted to authorize your Microsoft account with the HackerOne Code's PullRequest app, click Accept.

Required Permissions
Our integration adheres to the principle of least privilege, ensuring that it only has the access necessary to perform its intended function—providing valuable insights in pull request discussions. Here are the permissions we require and how we use them.
Step 4: Configuring scope of Azure DevOps projects
After authorizing with your Microsoft account, you'll be directed to a page to select the Azure DevOps Organization(s) in scope of service.

Step 5: Select Repositories
You'll be asked to allow to access All repositories or Only select repositories.
If practical, we recommend selecting the All repositories option so you won't need to repeat this step each time your team creates a new repository.
After you've made your selection, click the Connect button.

Step 6: View Repositories
Your repositories should now appear on the dashboard page when the Azure DevOps Organization is selected from the Organizations drop-down menu at the top-left portion of the screen.

Step 7: Verify the posting user has been added
Before scanning and validation is enabled, a member of the HackerOne team will need to accept the invitation sent in step 1 to add the service user.
If you've used our global user, the azure user will be displayed in your Organization Settings screen (see below).

Last updated