snyk-security-scanner-plugin

Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.

OTHER License

Stars

59

Committers

View Code on GitHub Visit Website View on X

Ecosystems: Jenkins

Bot releases are visible (Hide)

snyk-security-scanner-plugin - 2.12.0

Published by pavel-snyk about 4 years ago

Improvements

enable using --debug flag without failing the build

Bug Fixes

propagate exception when failing to install CLI #61

snyk-security-scanner-plugin - 2.11.0

Published by pavel-snyk about 4 years ago

Bug Fixes

closed file handles preventing future builds from completing #60

snyk-security-scanner-plugin - 2.10.4

Published by pavel-snyk over 4 years ago

Improvements

use jackson streaming api to process json output #57
update maven wrapper to version 3.6.3 #56

snyk-security-scanner-plugin - 2.10.3

Published by yuliabaron about 5 years ago

The snapshot URL of generated html reports is printed in a job's console output

snyk-security-scanner-plugin - 2.10.2

Published by adrukh about 5 years ago

Bug Fixes

fix broken Snippet Generator for pipeline configurations #53

snyk-security-scanner-plugin - 2.10.1

Published by adrukh about 5 years ago

Bug Fixes

Throw FlowInterruptedException to stop Snyk pipeline step correctly #52

snyk-security-scanner-plugin - 2.10.0

Published by adrukh over 5 years ago

Features

Support alpine-based worker platforms #51

snyk-security-scanner-plugin - 2.0.9

Published by adrukh over 5 years ago

Features

The plugin works as a regular build Step, allowing better env vars support - #50

snyk-security-scanner-plugin - 2.0.8

Published by adrukh over 5 years ago

Bug fixes

Fix a security issue related to jenkins credentials plugin #49

snyk-security-scanner-plugin - 2.0.7

Published by adrukh over 5 years ago

Bug fixes

'Argument list too long' failure on env path being too long #48

snyk-security-scanner-plugin - 2.0.6

Published by adrukh over 5 years ago

Bug fixes

Do not break additional arguments if complex env vars are used (#47)

snyk-security-scanner-plugin - 2.0.5

Published by adrukh over 5 years ago

Bug fixes

When environment vars are used in the plugin arguments, resolve them when logging the plugin output (#46)

snyk-security-scanner-plugin - 2.0.4

Published by adrukh over 5 years ago

Bug fixes

Fix failure when running on an agent with no build tool path (https://github.com/jenkinsci/snyk-security-scanner-plugin/pull/43)

snyk-security-scanner-plugin - 2.0.3

Published by adrukh over 5 years ago

Bug fixes

Identify location of auto-installed build tools such as mvn, gradle and sbt (#42)

snyk-security-scanner-plugin - 2.0.2

Published by adrukh over 5 years ago

Features

Set 2.60.3 as the minimum Jenkins version for official Java 8 support.
Minor dependency upgrades.

snyk-security-scanner-plugin - 2.0.1

Published by adrukh over 5 years ago

Bug fixes

additionalArguments are now split by instead of being provided as a quoted argument.

snyk-security-scanner-plugin - 2.0.0

Published by adrukh over 5 years ago

2.0.0 Release

Features

Snyk Security Installer allows to download and run the Snyk CLI without relying on Docker or Nodejs runtimes.
Improved Snyk configuration.

Breaking changes

Configuration is re-done, hence all pre-configured Snyk Security stages based on the v1 release will be lost, and need to be re-configured.
Plugin no longer relies on an env var specifying the Snyk API token, but on a new credential type called Snyk API token. Add at least one such credential to use the plugin.
Plugin no longer relies on docker being available on the worker hosts, and instead installs the Snyk CLI via a Snyk Installation configuration in your Jenkins settings. Configure at least one such installation to use the plugin.

snyk-security-scanner-plugin - 2.0.0-alpha-9

Published by adrukh over 5 years ago

Report includes link to project if monitor was called
Pipeline function is called snykSecurity as with v1

snyk-security-scanner-plugin - 2.0.0-alpha-8

Published by adrukh over 5 years ago

Better logging for error cases

snyk-security-scanner-plugin - 2.0.0-alpha-7

Published by adrukh over 5 years ago

Distinguish between failing due to vulnerabilities and failing due to other errors
Create report even if snyk monitor fails

Badges

Extracted from project README

Homepage

Changelog

Installs

Related Projects

extra-tool-installers-plugin

Provides additional generic tool installation methods

owasp-jenkins

Want to test your applications using the latest OWASP security toolchains and the NIST National V...

cpp_project_framework

C++ Project Framework is a framework for creating C++ project.

Hello-CICD

Comprehensive DevOps project tutorial covering Flask app development, Docker containerization, Je...

mabl-integration-plugin

build steps to launch and report on mabl tests

osf-builder-suite-for-sfcc-data-import-plugin

OSF Builder Suite For Salesforce Commerce Cloud :: Data Import

sysdig-secure-plugin

Jenkins Plugin for Sysdig Secure

configuration-as-code-plugin

Jenkins Configuration as Code Plugin

20 Oct 2017 2,632

secone-security-plugin

Scan your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Sec1.

k8s-jcasc-management-go

Jenkins management in Go for Kubernetes, Jenkins Configuration as Code (JCasC) and Jenkins JobDSL.

server-health-monitoring-observability

Implement CI/CD pipeline for automated monitoring of linux machines and send system resource-usag...

sdelements-plugin

Jenkins plugin for SD Elements risk assessment tool by Security Compass

jenkinsfile-runner

A command line tool to run Jenkinsfile as a function

24 Feb 2018 1,135

provar-automation-plugin

This plugin allows you to configure and run Provar Automation tests

osf-builder-suite-for-sfcc-deploy-plugin

OSF Builder Suite For Salesforce Commerce Cloud :: Deploy