mirror of
https://github.com/corda/corda.git
synced 2025-03-10 22:44:20 +00:00
added modules for snyk scanning (#7235)
This commit is contained in:
Jan Szkaradek
GitHub
parent
878f0bba8b
commit
c89ce8e29d
10
.ci/dev/regression/Jenkinsfile
vendored
10
.ci/dev/regression/Jenkinsfile
vendored
@ -193,12 +193,18 @@ pipeline {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
stage('Snyk Security') {
|
stage('Snyk Security') {
|
||||||
when {
|
when {
|
||||||
expression { isReleaseTag || isReleaseCandidate || isReleaseBranch }
|
expression { isReleaseTag || isReleaseCandidate || isReleaseBranch }
|
||||||
}
|
}
|
||||||
steps {
|
steps {
|
||||||
snykSecurityScan("${env.SNYK_API_KEY}", "--all-sub-projects --prune-repeated-subdependencies --debug --target-reference='${env.BRANCH_NAME}' --project-tags=Branch='${env.BRANCH_NAME.replaceAll("[^0-9|a-z|A-Z]+","_")}'")
|
script {
|
||||||
|
// Invoke Snyk for each Gradle sub project we wish to scan
|
||||||
|
def modulesToScan = ['node', 'capsule', 'bridge', 'bridgecapsule']
|
||||||
|
modulesToScan.each { module ->
|
||||||
|
snykSecurityScan("${env.SNYK_API_KEY}", "--sub-project=$module --configuration-matching='^runtimeClasspath\$' --prune-repeated-subdependencies --debug --target-reference='${env.BRANCH_NAME}' --project-tags=Branch='${env.BRANCH_NAME.replaceAll("[^0-9|a-z|A-Z]+","_")}'")
|
||||||
|
}
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user