[JIRA] (JENKINS-61396) Configure the plugin to not generate any report on Jenkins

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq created an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins Issue Type: New Feature Assignee: Sergey Kadaner Components: checkmarx-plugin Created: 2020-03-09 13:26 Priority: Minor Reporter: Mathieu Delrocq If Jenkins is used as services with many project, the administrator must be able to choose if the project can show their vulnerabilities.   I purpose to add an option on the global level to block all checkmarx reports generation on Jenkins. With this option enabled, the plugin will just run a analysis and get the status. To see the full details of the analysis, the user must have the rights to connect to checkmarx. Add Comment

This message was sent by Atlassian Jira (v7.13.12#713012-sha1:6e07c38)

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq updated an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins

Change By: Mathieu Delrocq If Jenkins is used as services with many project, the administrator must be able to choose if the project projects can show their vulnerabilities.

I purpose to add an option on the global level to block all checkmarx reports generation on Jenkins. With this option enabled, the plugin will just run a analysis and get the status. To see the full details of the analysis, the user must have the rights to connect to checkmarx.

Add Comment

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq updated an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins

Change By: Mathieu Delrocq Attachment: image-2020-03-11-11-47-29-476.png

Add Comment

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq updated an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins Change By: Mathieu Delrocq

If Jenkins is used as services with many project, the The administrator must be able to choose if the projects can show their vulnerabilities returned by checkmarx can be visibles or not on Jenkins .   For now, we just patched the plugin to not generate the reports :   !image-2020-03-11-11-47-29-476.png|width=812,height=393!   I purpose to add an option on the global level configuration of the plugin to block all checkmarx reports generation on Jenkins.

With this option enabled, the plugin will just run a analysis and get the status. To see the full details of the analysis, the user must have the rights to connect to checkmarx.

Add Comment

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq assigned an issue to Liran Stern

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins

Change By: Mathieu Delrocq Assignee: Sergey Kadaner Liran Stern

Add Comment

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq updated an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins Change By: Mathieu Delrocq

The administrator must be able to choose if the vulnerabilities returned by checkmarx can be visibles or not on Jenkins.   For now, we just only patched the plugin to not generate the reports :   !image-2020-03-11-11-47-29-476.png|width=812,height=393!   I purpose to add an option on the global configuration of the plugin to block all checkmarx reports generation on Jenkins.

With this option enabled, the plugin will just run a analysis and get the status. To see the full details of the analysis, the user must have the rights to connect to checkmarx.

Add Comment

[delrocq.mathieu@gmail.com (JIRA)]

Mathieu Delrocq updated an issue

Jenkins / JENKINS-61396 Configure the plugin to not generate any report on Jenkins Change By: Mathieu Delrocq

The administrator must be able to choose if the vulnerabilities returned by checkmarx can be visibles or not on Jenkins.

For now, we only patched the plugin to not generate reports :

!image-2020-03-11-11-47-29-476.png|width=812,height=393!   I purpose to add an option on the global configuration of the plugin to block all checkmarx reports generation on Jenkins. With this option enabled, the plugin will just run a analysis and get the status. To see the full details of the analysis, the user must have the rights to connect to checkmarx.

* Jenkins 2.204.1 * checkmarx-plugin 8.90.4

Add Comment