Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Amazon Q Developer Pro on Azure CI/CD

0

Hi AWS community,

I’m currently using Amazon Q Developer Pro for code quality and security analysis in my projects. My codebase consists of Node.js and Python, hosted on AWS, and my source control and CI/CD workflows are managed via Azure Repos and Azure DevOps Pipelines.

I'd like to integrate Amazon Q Developer Pro into my Azure DevOps CI/CD process to automatically scan code during builds or deployments, and ideally block releases when critical issues are found.

Im using Microsoft Windows Server Agent on my azure pipelines Specifically:

What is the recommended approach to run the q CLI in a CD Azure pipeline environment? How can I handle authentication securely (e.g., with IAM Identity Center or pre-saved Builder ID tokens)? Are there any best practices for parsing and enforcing severity thresholds (like failing builds on “Severity: Critical”)? Is there an API or structured output format that I can use to generate machine-readable reports for review? Any working examples, pipeline steps, or lessons learned would be greatly appreciated! Thanks in advance!

Topics
DevOpsBusiness ApplicationsMachine Learning & AISecurity, Identity, & Compliance
Tags
Amazon QAWS IAM Identity CenterDevOps
Language
English
asked a year ago412 views
1 Answer
0

Based on the available information, I don't have specific details about integrating Amazon Q Developer Pro with Azure DevOps CI/CD pipelines.

Amazon Q Developer is primarily designed to work within supported IDEs like JetBrains IntelliJ, Visual Studio Code, and others. The security scanning features are integrated into these development environments, where developers can run project scans or use auto-scans (enabled by default with Amazon Q Developer Pro).

Amazon Q Developer offers several capabilities including:

  • Security scanning to detect vulnerabilities
  • Code review with the /review command that performs static application security testing (SAST)
  • Documentation generation with /doc
  • Unit test generation with /test

To use Amazon Q Developer, you need to:

  1. Install the Amazon Q Developer plugin in your supported IDE
  2. Authenticate to the Amazon Q Developer service
  3. For the Pro tier, you can authenticate using AWS IAM Identity Center

However, the sources don't provide information about a Q CLI that could be integrated into Azure DevOps pipelines, nor do they mention specific integration paths with Azure DevOps or other CI/CD systems outside of AWS.

For your specific use case with Azure Repos and Azure DevOps Pipelines, you might want to check the official AWS documentation for Amazon Q Developer or contact AWS Support for more detailed guidance on CI/CD integration options.
Sources
Code security scanning with Amazon Q Developer | AWS DevOps & Developer Productivity Blog
Streamline Development with New Amazon Q Developer Agents | AWS DevOps & Developer Productivity Blog
New Amazon Q Developer agent capabilities include generating documentation, code reviews, and unit tests | AWS News Blog
Accelerate development with secure access to Amazon Q Developer using PingIdentity | AWS DevOps & Developer Productivity Blog

answered a year ago
AWS
SUPPORT ENGINEER
reviewed a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content