Overview
This guide walks you through creating an Azure DevOps Personal Access Token (PAT) to enable the Antimetal integration for inspecting repositories, pull requests, work items, pipelines, wikis, and test plans.Only connect this integration if your team uses Azure DevOps for source control, work items, or pipelines. It is not required for the Azure cloud integration.
Set up in Antimetal
Go to the Azure DevOps integration setup in the Antimetal dashboard.
Prerequisites
- An Azure DevOps organization
- Permission to create Personal Access Tokens
- Access to the projects you want Antimetal to inspect
Setup
Open Personal Access Tokens
In Azure DevOps, click your profile icon (top right) and select User Settings > Personal Access Tokens.
Create a new token
- Click + New Token
- Fill in:
- Name:
Antimetal - Organization: the organization you want to connect
- Expiration: set according to your org’s rotation policy
- Name:
- Under Scopes, select Custom defined
Grant read-only scopes
Select Read access only for each of the following scopes. See Microsoft’s Personal Access Tokens guide for full details.
- Code (Read)
- Work items (Read)
- Build (Read)
- Test Management (Read)
- Wiki (Read)
- Project and team (Read)
Permissions and Access
Antimetal uses a read-only PAT scoped to the permissions below. No write operations are performed in your Azure DevOps organization.| Scope | Access |
|---|---|
| Code | Read repositories, branches, pull requests, commits, file contents |
| Work items | Read work items, queries, iterations |
| Build | Read build definitions, runs, logs, artifacts |
| Test Management | Read test plans, suites, and results |
| Wiki | Read wiki pages and search |
| Project and team | Read project and team metadata |