Support
Project Management

Integrating Invicti Standard with Trello

This document is for:
Invicti Standard

Trello is a web-based Kanban-style list-making application that helps you organize projects into boards, lists, and cards. Teams can then exchange information by adding cards, comments, attachments, and due dates.

This topic explains how to configure Invicti Standard to send a detected vulnerability to Trello (including using the wizard).

For further information, see Configuring the User Interface for Custom Send To Actions in Invicti Standard and Configuring Auto Send To Actions in Invicti Standard and What Systems Does Invicti Integrate With?.

Trello Fields

The table lists and describes the Trello fields in the Send To Actions tab.

Button/Section/Field

Description

Add

Click to add an integration.

Delete

Click to delete the integration and clear all fields.

Configure Send To

Click to configure the integration using the Settings Wizard instead of doing it manually.

Create Sample Issue

Once all relevant fields have been configured, click to create a sample issue.

Action

This section contains general fields about the Send to Action.

Display Name

This is the name of the configuration that will be shown in menus.

Mandatory

This section contains fields that must be completed.

API Key

This is the API Access Key for authentication.

Token

This is the API token for the user.

List ID

This is the list identifier.

Vulnerability

This section contains fields with vulnerability details.

Body Template

This is the template file that is used to create description fields.

Title Format

This is the string format that is used to create the vulnerability title.

Optional

These are optional fields.

Board ID

This is the board identifier.

Member IDs

This is the comma-separated list of member IDs to add to the card.

Label IDs

These are the issue labels.

Due Days

This is the number of days from the date the issue was created to the date it's due.

Custom Fields

Click the ellipsis to open the Custom Fields Editor dialog.

How to Integrate Invicti Standard with Trello

  1. Open Invicti Standard.
  2. From the Home tab on the ribbon, click Options. The Options dialog is displayed.
  3. Click Send To Actions.

  1. From the Add dropdown, select Trello. The Trello fields are displayed.

  1. In the Mandatory section, complete the connection details:
    • API Key
    • Token
    • List ID

To learn how to create an API key and a token in Trello, read Developer API Keys.

  1. In the Vulnerability section, you can specify the Body Template and Title Format.

Body templates are stored in %userprofile%\Documents\Invicti\Resources\Send To Templates. If you use your own custom templates, store them in this location.

  1. In the Optional settings you can specify:
    • Board ID
    • Member IDs
    • Label IDs
    • Due Days
    • Custom Fields
  2. To set custom field values, in the Custom Fields field, click the ellipsis button.
  3. In the Edit Custom Field Value field, enter the relevant value.
  1. Click OK.
  2. Click Create Sample Issue to confirm that Invicti Standard can connect to the configured system. The Send To Action Test confirmation dialog is displayed.
  1. In the Send To Action Test dialog, click the Issue number link to open the issue in Trello in the default browser.

How to Integrate Invicti Standard with Trello Using the Wizard

Instead of configuring the settings manually, the configuration wizard can help you with the settings.

  1. Open Invicti Standard.
  2. From the Home tab on the ribbon, click Options. The Options dialog is displayed.
  3. Click Send To Actions.
  4. From the Add dropdown, select Trello. The Trello fields are displayed.

  1. Click Configure Send To to launch the wizard. The Send To Configuration dialog is displayed.

  1. Click Next. The Authentication Step is displayed.

  1. Click https://trello.com/app-key to retrieve your Trello API Key and Token. Complete the API Key and Token fields, and click Test Credentials.
  2. When the confirmation message, Your credentials are confirmed, is displayed, click Next. The Boards step is displayed.

  1. Select a board, and click Next. The Lists step is displayed.

  1. Select a list, and click Next. The Members step is displayed.

  1. If required, select members, and click Next. The Labels step is displayed.

  1. If required, select labels, and click Next. The Custom Fields step is displayed.

  1. If required, select custom fields and complete the values. Click Next. The Summary step is displayed.

  1. Review your settings, and click Finish. The Settings are applied automatically. You are returned to the Send To Actions fields.

  1. Click Create Sample Issue to confirm that Invicti Standard can connect to the configured system and create a sample issue. The Send To Action Test dialog is displayed to show if the sample issue is successfully created.

  1. In the Send To Action Test dialog, click the Issue number link to open the issue in Trello in the default browser.

How to Export Reported Vulnerabilities to Projects in Trello

Please ensure that you have first configured Trello integration (see How to Integrate Invicti Standard with Trello).

  1. Open Invicti Standard.
  2. From the ribbon, select the File tab. Local Scans are displayed. Double-click the relevant scan to display its results.

  1. In the Issues panel, right click the vulnerability you want to export and select Send to Trello. (Alternatively, from the ribbon, click the Vulnerability tab, then Send to Trello.) A confirmation message and link is displayed at the bottom of the screen.

  1. Click the Trello Send to Action is executed for the selected vulnerability. link to see the newly-created issue in Trello.
  2. The vulnerability is automatically exported to Trello. You can view it on one of Trello's cards.