The following plugin provides functionality available through Pipeline-compatible steps. Read more about how to integrate steps into your Pipeline in the Steps section of the Pipeline Syntax page.

For a list of other such plugins, see the Pipeline Steps Reference page.

Protecode SC

protecodesc: Protecode SC

  • credentialsId (optional)
    • Type: String
  • protecodeScGroup (optional)
    Specify the Protecode SC Group ID where the artifacts should be uploaded to.

    Group ID can be found from the Protecode SC service by looking at the URL when browsing an individual group: https://protecode-sc.mydomain.com/group/1234/ or with Groups API https://protecode-sc.mydomain.com/api/groups/.


    Please notice that this value should be a number, not the name or the path to the group.
    • Type: String
  • convertToSummary (optional)
    The summary can be shown using Summary Display Jenkins Plugin.
    The report file name to publish is protecodesc.xml.

    If you wish to see only the latest results in the summary, you can run a "shell command" build step before the Protecode SC build step: "rm -rf reports". You can find the mentioned build step in the list of possible build steps on the build configuration page. Please notice that this action is irreversible.
    • Type: boolean
  • customHeader (optional)
    Please specify the custom header in JSON format for fetching a file by URL

    This is for the cases where the server from which Protecode-SC must fetch the file requires authentication or similar header values.

    For example {"Authorization": "Foobar", "token": "oooooooo1!"}
    • Type: String
  • directoryToScan (optional)
    Please specify the directory in the workspace you wish to scan.

    Alternatively you can specify the URL of the file you wish to scan, Protecode-sc will fetch the file from the given URL

    For files in the workarea, if you wish to use an absolute path put '/' at the beginning of the path, this will cause the plugin to not try to find the folder from the build workspace. Please notice that it is possible to upload massive amounts of files if this option is set to absolute path and the 'Include subdirectories' is enabled.

    If there are 10 or more files to scan, the plugin will zip them before sending them. You can specify the name for the Protecode SC scan job in the field "Scan job name (used only for zip)".
    • Type: String
  • failIfVulns (optional)
    Trigger build failure if Protecode SC finds vulnerabilities from the scanned files. The build will always fail if the connection or api calls to Protecode SC returned any errors.
    • Type: boolean
  • includeSubdirectories (optional)
    Also include subdirectories of the directory from which the build attempts to find files to scan.

    Please notice that if this is selected, it is possible to accidentally upload massive amounts of files.
    • Type: boolean
  • pattern (optional)
    Here you can provide a regular expression to include only certain files. The format used in this option is the default java Pattern format: https://docs.oracle.com/javase/8/docs/api/java/util/regex/Pattern.html

    Leave blank to include all found files.
    • Type: String
  • protecodeScanName (optional)
    Protecode SC jenkins plugin will zip given files if there are 10 or more. This is done to avoid file transfer overhead produced by moving many files. The plugin will still show the results per file.
    • Type: String
  • scanOnlyArtifacts (optional)
    Scan only Jenkins Artifacts produced by earlier steps of the build.
    • Type: boolean
  • scanTimeout (optional)
    Timeout for the scan. If this timeout is exceeded the plugin will not try to get further results from Protecode SC. If a comprehensive timeout for the build is needed, it is suggested to use the Build Timeout Plugin.
    • Type: int

Was this page helpful?

Please submit your feedback about this page through this quick form.

Alternatively, if you don't wish to complete the quick form, you can simply indicate if you found this page helpful?

    


See existing feedback here.