Update Azure Mentions in Code Security Documentation (#32425)

kassenq · web-flow · commit b979223bf2d3 · 2025-10-27T16:48:25.000-07:00
* sast home page

* sast setup page

* static SCA setup

* static SCA home page

* Dev tool integrations

* dev tool description update

* ide and pr comments
diff --git a/content/en/security/code_security/dev_tool_int/_index.md b/content/en/security/code_security/dev_tool_int/_index.md
@@ -4,10 +4,10 @@ disable_toc: false
 
 ---
 
-{{< whatsnext desc="You can integrate Code Security with several types of tools and receive real-time feedback on the quality and security of your code as it's written." >}}
+{{< whatsnext desc="You can integrate Code Security with several types of tools throughout the developer workflow. Pull request comments and gates require setup of Datadog's integrations with your source code provider(s)." >}}
    {{< nextlink href="/security/code_security/dev_tool_int/github_pull_requests/" >}}Pull Requests Comments
 {{< /nextlink >}}
-   {{< nextlink href="/pr_gates/" >}}PR Gates{{< /nextlink >}}
-   {{< nextlink href="/security/code_security/dev_tool_int/ide_plugins/" >}}Datadog IDE Plugins for Code Security{{< /nextlink >}}
+   {{< nextlink href="/pr_gates/" >}}Pull Request Gates{{< /nextlink >}}
+   {{< nextlink href="/security/code_security/dev_tool_int/ide_plugins/" >}}IDE Plugins{{< /nextlink >}}
    {{< nextlink href="/security/code_security/dev_tool_int/git_hooks/" >}}Git Hooks{{< /nextlink >}}
 {{< /whatsnext >}}
diff --git a/content/en/security/code_security/dev_tool_int/ide_plugins/_index.md b/content/en/security/code_security/dev_tool_int/ide_plugins/_index.md
@@ -8,7 +8,7 @@ disable_toc: false
 
 ## Overview
 
-[Code Security][1] integrates directly with integrated development environment (IDE) tools to provide real-time feedback on the quality and security of your first-party code as it's being written.
+[Code Security][1] integrates directly with integrated development environment (IDE) tools to provide real-time feedback on the security and quality of your code. IDE integrations are supported for SAST, SCA, and IAST.
 
 {{< whatsnext desc="See the documentation for information about the following integrations:">}}
     {{< nextlink href="developers/ide_plugins/idea/#static-analysis" >}}<u>JetBrains IDEs</u>: IntelliJ IDEA, GoLand, PyCharm, WebStorm, and PhpStorm{{< /nextlink >}}
diff --git a/content/en/security/code_security/dev_tool_int/pull_request_comments/_index.md b/content/en/security/code_security/dev_tool_int/pull_request_comments/_index.md
@@ -26,7 +26,7 @@ You can configure PR comments at the organization or repository level in [Reposi
 **Note**: PR comments are not PR checks. To set up checks, see [Quality Gates][10].
 
 ## Prerequisites
-- You must have the Datadog source code integration for your provider enabled. PR comments are supported for [GitHub][2], [GitLab][8], and Azure DevOps repositories ([in Preview][9]).  
+- You must have the Datadog source code integration for your provider enabled. PR comments are supported for [GitHub][2], [GitLab][8], and [Azure DevOps][9] repositories.  
 - Your repositories must have the relevant Code Security product(s) enabled. To enable Code Security in-app, navigate to the [**Code Security** Settings page][4].  
 
 ## Set up pull request comments
@@ -77,16 +77,16 @@ If you already have a GitHub App connected to Datadog, update it. Otherwise, cre
 {{% /tab %}}
 {{% tab "GitLab" %}}
 
-See the [GitLab Source Code][8] setup instructions to connect GitLab to Datadog.
+See the [GitLab Source Code][8] setup instructions to connect GitLab repositories to Datadog.
 
 [8]: /integrations/gitlab-source-code/
 
 {{% /tab %}}
 {{% tab "Azure DevOps" %}}
 
-Azure DevOps for Code Security is in Preview. [Request access to join the Preview][9].
+See the [Azure Source Code][8] setup instructions to connect Azure repositories to Datadog.
 
-[9]: https://www.datadoghq.com/product-preview/azure-devops-integration-code-security/
+[9]: https://docs.datadoghq.com/integrations/azure-devops-source-code/#source-code-functionality
 
 {{% /tab %}}
 {{< /tabs >}}
@@ -135,7 +135,7 @@ When configuring PR comments, you can:
 [6]: /security/code_security/static_analysis/github_actions/
 [7]: https://app.datadoghq.com/security/configuration/code-security/settings
 [8]: /integrations/gitlab-source-code/
-[9]: https://www.datadoghq.com/product-preview/azure-devops-integration-code-security/
+[9]: https://docs.datadoghq.com/integrations/azure-devops-source-code/#source-code-functionality
 [10]: /quality_gates/?tab=staticanalysis#setup
 
 
diff --git a/content/en/security/code_security/software_composition_analysis/_index.md b/content/en/security/code_security/software_composition_analysis/_index.md
@@ -23,7 +23,7 @@ Datadog SCA uses a curated proprietary database. The database is sourced from Op
 {{% security-products/sca-supported-lang %}}  
 
 SCA supports both static and runtime dependency detection:
-- For **static detection**, you can scan from your CI/CD pipelines or from Datadog's infrastructure. See [static setup][1] to get started.
+- For **static detection**, you can scan your repositories from your CI/CD pipelines or directly from Datadog's infrastructure. See [static setup][1] to get started.
 - For **runtime detection**, you can enable SCA on services instrumented with Datadog APM. See [runtime setup][2] to get started.
 
 ## Search and filter results
diff --git a/content/en/security/code_security/software_composition_analysis/setup_static/_index.md b/content/en/security/code_security/software_composition_analysis/setup_static/_index.md
@@ -91,56 +91,14 @@ See the [GitLab source code setup instructions][1] to connect GitLab to Datadog.
 {{% /tab %}}
 {{% tab "Azure DevOps" %}}
 
-<div class="alert alert-danger">
-Repositories from Azure DevOps are supported in closed Preview. Your Azure DevOps organizations must be connected to a Microsoft Entra tenant. <a href="https://www.datadoghq.com/product-preview/azure-devops-integration-code-security/">Join the Preview</a>.
-</div>
-
-Before you can begin installation, request access to the closed Preview using the form above. After being granted access, see the following instructions to complete the setup process.
-
-**Note:** Azure DevOps Server is not supported.
-
-### Create and register a Microsoft Entra app
-If you are an admin in your Azure portal, you can configure Entra apps to connect your tenant to Datadog.
-
-1. Navigate to [Code Security setup][1].
-2. In **Activate scanning for your repositories**, click **Manage Repositories**.
-3. Select **CI Pipelines**.
-4. Select the scan types you want to use.
-5. Select **Azure DevOps** as your source code management provider.
-6. If this is your first time connecting an Azure DevOps organization to Datadog, click **Connect Azure DevOps Account**.
-7. When connecting a Microsoft Entra tenant for the first time you will need to go to your [Azure Portal][2] to register a new application. During this creation process, ensure the following:
-   1. You select **Accounts in this organizational directory only (Datadog, Inc. only - Single tenant)** as the account type.
-   2. Set the redirect URI to **Web** and paste the URI given to you in the instructions.
-8. Copy the values for **Application (client) ID** and **Directory (tenant) ID** and paste them into Datadog.
-9. In the Azure Portal for your app registration, navigate to **Manage > Certificates & secrets** and switch to **Client secrets**.
-10. Click **New client secret** and create a secret with your desired description and expiration values.
-11. Copy and paste the string in the **Value** column for your new secret, paste it into Datadog, and click **Create Configuration** to complete connecting your Entra tenant to Datadog.
-13. Add one or more Azure DevOps organizations by pasting the organization slug into Datadog and then adding your Service Principal as a user by going to **Organization settings > Users > Add users**.
-    1.  Your Service Principal will need the **Basic** access level and at least the **Project Contributor** security group.
-14. Click **Submit Organization**.
-
-### Configure project service hooks
-
-To enable all Code Security features in Azure DevOps, you'll need to use a [Datadog API key][3] to configure service hooks for your projects.
-
-First, set your environment variables (note: the Datadog UI will fill these values out for you):
-```shell
-export AZURE_DEVOPS_TOKEN="..."                 # Client Secret Value
-export DD_API_KEY="..."                         # Datadog API Key
-```
-
-Then, replace the placeholders in the script below with your [Datadog Site][5] and Azure DevOps organization name to configure the necessary service hooks on your organization's projects:
-```shell
-curl https://raw.githubusercontent.com/DataDog/azdevops-sci-hooks/refs/heads/main/setup-hooks.py > setup-hooks.py && chmod a+x ./setup-hooks.py
-./setup-hooks.py --dd-site="<dd-site>" --az-devops-org="<org-name>"
-```
+**Note:** Your Azure DevOps integrations must be connected to a Microsoft Entra tenant. Azure DevOps Server is **not** supported.
 
-Click [here][4] to see our CLI that automates this process.
+See the [Azure source code setup instructions][4] to connect Azure DevOps repositories to Datadog.
 
 [1]: https://app.datadoghq.com/security/configuration/code-security/setup
 [2]: https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade
 [3]: https://app.datadoghq.com/organization-settings/api-keys
-[4]: https://github.com/DataDog/azdevops-sci-hooks
+[4]: /integrations/azure-devops-source-code/#setup
 [5]: /getting_started/site/
 
 {{% /tab %}}
diff --git a/content/en/security/code_security/static_analysis/_index.md b/content/en/security/code_security/static_analysis/_index.md
@@ -38,7 +38,7 @@ To get started, go to the [**Code Security** setup page][12] or see the [Setup d
 ## Integrate into the development lifecycle
 
 ### Source code management
-{{< whatsnext desc="During code reviews, Datadog can automatically flag Static Code Analysis violations in pull requests by adding inline review comments on the relevant line(s) of code. When applicable, Datadog also provides suggested fixes that can be applied directly in the pull request." >}}
+{{< whatsnext desc="During code reviews, Datadog can automatically flag Static Code Analysis violations in pull requests by adding inline review comments on the relevant line(s) of code. This is supported for GitHub, GitLab, and Azure DevOps repositories (cloud-hosted). When applicable, Datadog also provides suggested fixes that can be applied directly in the pull request." >}}
     {{< nextlink href="static_analysis/github_pull_requests" >}}Pull Requests{{< /nextlink >}}
 {{< /whatsnext >}}
 
@@ -65,7 +65,7 @@ Click on a violation to open a side panel that contains information about the sc
 
 The content of the violation is shown in tabs:
 
-- **Details**: A description of the violation and the lines of code that caused it. To see the offending code snippet, configure the relevant source code integration for your provider (GitHub[4], GitLab[5]).
+- **Details**: A description of the violation and the lines of code that caused it. To see the offending code snippet, configure the relevant source code integration for your provider ([GitHub][4], [GitLab][5], Azure[6]).
 - **Remediation**: One or more code fixes that can resolve the violation, with options for remediation.
 - **Event**: JSON metadata regarding the violation.
 
@@ -74,7 +74,7 @@ For a subset of SAST vulnerabilities, Bits AI can review the context of the find
 
 For each finding, you can provide Bits AI with feedback on its assessment.
 
-{{% collapse-content title="Supported advisories" level="h4" expanded=true id="id-for-anchoring" %}}
+{{% collapse-content title="Supported CWEs" level="h4" expanded=true id="id-for-anchoring" %}}
 False positive filtering is supported for the following CWEs:
 - [CWE-89: SQL Injection](https://cwe.mitre.org/data/definitions/89.html)
 - [CWE-78: OS Command Injection](https://cwe.mitre.org/data/definitions/78.html)
@@ -192,4 +192,4 @@ If you believe a specific violation is a false positive, you can flag it as a fa
 [13]: https://docs.datadoghq.com/security/code_security/static_analysis/#link-results-to-datadog-services-and-teams
 [14]: /account_management/teams/
 [15]: /integrations/github/#connect-github-teams-to-datadog-teams
-
+[16]: /integrations/azure-devops-source-code/
diff --git a/content/en/security/code_security/static_analysis/setup/_index.md b/content/en/security/code_security/static_analysis/setup/_index.md
@@ -20,7 +20,6 @@ algolia:
 To set up Datadog SAST in-app, navigate to [**Security** > **Code Security**][1].
 
 ## Select where to run Static Code Analysis scans
-
 ### Scan with Datadog-hosted scanning
 
 You can run Datadog Static Code Analysis (SAST) scans directly on Datadog infrastructure. Supported repository types include:
@@ -64,64 +63,21 @@ When installing a GitHub App, the following permissions are required to enable c
 {{% /tab %}}
 {{% tab "GitLab" %}}
 
-See the [GitLab source code setup instructions][1] to connect GitLab to Datadog. Both GitLab.com and Self-Managed instances are supported.
+See the [GitLab source code setup instructions][1] to connect GitLab repositories to Datadog. Both GitLab.com and Self-Managed instances are supported.
 
 [1]: /integrations/gitlab-source-code/#setup 
 
 {{% /tab %}}
 {{% tab "Azure DevOps" %}}
 
-<div class="alert alert-danger">
-Repositories from Azure DevOps are supported in closed Preview. Your Azure DevOps organizations must be connected to a Microsoft Entra tenant. <a href="https://www.datadoghq.com/product-preview/azure-devops-integration-code-security/">Join the Preview</a>.
-</div>
-
-Before you can begin installation, request access to the closed Preview using the form above. After being granted access, see the following instructions to complete the setup process.
-
-**Note:** Azure DevOps Server is not supported.
-
-### Create and register a Microsoft Entra app
-If you are an admin in your Azure portal, you can configure Entra apps to connect your tenant to Datadog.
-
-1. Go to [Code Security setup][1].
-2. In **Activate scanning for your repositories**, click **Manage Repositories**.
-3. Select **CI Pipelines**.
-4. Select the scan types you want to use.
-5. Select **Azure DevOps** as your source code management provider.
-6. If this is your first time connecting an Azure DevOps organization to Datadog, click **Connect Azure DevOps Account**.
-7. When connecting a Microsoft Entra tenant for the first time you will need to go to your [Azure Portal][2] to register a new application. During this creation process, ensure the following:
-   1. You select **Accounts in this organizational directory only (Datadog, Inc. only - Single tenant)** as the account type.
-   2. Set the redirect URI to **Web** and paste the URI given to you in the instructions.
-8. Copy the values for **Application (client) ID** and **Directory (tenant) ID** and paste them into Datadog.
-9. In the Azure Portal for your app registration, navigate to **Manage > Certificates & secrets** and switch to **Client secrets**.
-10. Click **New client secret** and create a secret with the description and expiration values you want to use.
-11. Copy and paste the string in the **Value** column for your new secret.
-12. Paste the secret into Datadog and click **Create Configuration** to complete the connection between your Entra tenant and Datadog.
-13. Add one or more Azure DevOps organizations by pasting the organization slug into Datadog and then adding your Service Principal as a user by going to **Organization settings > Users > Add users**.
-    1.  Your Service Principal will need the **Basic** access level and at least the **Project Contributor** security group.
-14. Click **Submit Organization**.
-
-### Configure project service hooks
-
-To enable all Code Security features in Azure DevOps, you'll need to use a [Datadog API key][3] to configure service hooks for your projects.
-
-First, set your environment variables (note: the Datadog UI will fill these values out for you):
-```shell
-export AZURE_DEVOPS_TOKEN="..."                 # Client Secret Value
-export DD_API_KEY="..."                         # Datadog API Key
-```
-
-Then, replace the placeholders in the script below with your [Datadog Site][5] and Azure DevOps organization name to configure the necessary service hooks on your organization's projects:
-```shell
-curl https://raw.githubusercontent.com/DataDog/azdevops-sci-hooks/refs/heads/main/setup-hooks.py > setup-hooks.py && chmod a+x ./setup-hooks.py
-./setup-hooks.py --dd-site="<dd-site>" --az-devops-org="<org-name>"
-```
+**Note:** Your Azure DevOps integrations must be connected to a Microsoft Entra tenant. Azure DevOps Server is **not** supported.
 
-Click [here][4] to see our CLI that automates this process.
+See the [Azure source code setup instructions][4] to connect Azure DevOps repositories to Datadog.
 
 [1]: https://app.datadoghq.com/security/configuration/code-security/setup
 [2]: https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade
 [3]: https://app.datadoghq.com/organization-settings/api-keys
-[4]: https://github.com/DataDog/azdevops-sci-hooks
+[4]: /integrations/azure-devops-source-code/#setup
 [5]: /getting_started/site/
 
 {{% /tab %}}
