Quickstart guide

This article describes how to configure a CircleCI CI/CD workflow to automatically upload mobile app binaries to Data Theorem for scanning. 

To automatically upload a mobile binary from CircleCI, a new step should be added at the end of your existing CircleCI workflow to upload the signed application binary (APK or IPA) to Data Theorem.

Step 1: Retrieving the Upload API key

...

Add your Upload API key retrieved in step 1 as an environment variable called DT_UPLOAD_API_KEY in your existing CircleCI workflow.  Open Project Settings, click on Environment Variables, then click on Add Environment Variable:

Step 3: Creating a new Run step to upload builds

Edit the project's configuration file (.circleci/config.yml) to add a new "Run" step at any point after a signed IPA or APK has been generated.  Editing can be done directly from the CircleCI interface (as shown below) or in your favorite editor along with the project's source code.

Insert the following code, replacing <path-to-signed-binary> with the path to the actual .ipa or .apk file relative to the project's root, e.g., app/build/outputs/apk/release/app-release-signed.apk.

...