The following plugin provides functionality available through Pipeline-compatible steps. Read more about how to integrate steps into your Pipeline in the Steps section of the Pipeline Syntax page.

For a list of other such plugins, see the Pipeline Steps Reference page.

Panoptica Vulnerability Scanner Plugin

View this plugin on the Plugins site

secureCNVulnerabilityScanner: SecureCN Vulnerability Scanner

  • secureCnAccessKey : String (optional)
    The access key of the service account used to communicate with the SecureCN management server.
  • secureCnSecretKeyId : String (optional)
    The secret key of the service account used to communicate with the SecureCN management server. the secret should be store as a jenkins credential of text type.
  • imageName : String (optional)
    The name of the image to scan.
  • dockerRegistryPasswordId : String (optional)
    Username and password for docker registry login. use this if the target image is stored in a private registry. if not, leave blank. the secret should be store as a jenkins credential of username and password type.
  • highestSeverityAllowed : String (optional)
    The highest CVE vulnerability severity allowed in the scan
  • highestSeverityAllowedDf : String (optional)
    The highest severity allowed for docker file benchmarking scan
  • pushLocalImage : boolean (optional)
    If checked, local docker image will be pushed on scan success.
  • url : String (optional)
    The URL of the Securecn management server.

Was this page helpful?

Please submit your feedback about this page through this quick form.

Alternatively, if you don't wish to complete the quick form, you can simply indicate if you found this page helpful?

    


See existing feedback here.