DDF-5635: Attach dependency check report to build.#5643
Merged
Conversation
Author
|
build now |
|
Internal build has been scheduled, your results will be available at build completion. |
TonyMorrison
approved these changes
Nov 27, 2019
Contributor
TonyMorrison
left a comment
TonyMorrison
left a comment
There was a problem hiding this comment.
Looks good, straight forward
|
Refer to this link for build results (access rights to CI server needed): |
shaundmorris
approved these changes
Dec 2, 2019
| } | ||
| post { | ||
| success { | ||
| archiveArtifacts artifacts: 'target/dependency-check-report.html' |
Member
There was a problem hiding this comment.
Think this will work with dependency-check or aggregate 👍
LinkMJB
approved these changes
Dec 3, 2019
| } | ||
| post { | ||
| success { | ||
| archiveArtifacts artifacts: 'target/dependency-check-report.html' |
Contributor
There was a problem hiding this comment.
Is there any case that this file won't exist? Wondering if we should include the allowEmptyArchive option
Author
There was a problem hiding this comment.
If the stage is successful the file has to exist because the maven goal we call creates the file. If the file does not exist the goal failed and the post block will never be called.
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
to AdamBurstynski/ddf
that referenced
this pull request
Dec 17, 2019
…nishes. (codice#5643) (cherry picked from commit 03a3865)
AdamBurstynski
pushed a commit
that referenced
this pull request
Dec 19, 2019
* Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac)
AdamBurstynski
pushed a commit
that referenced
this pull request
Dec 19, 2019
* Updated Jenkinsfile (#5190) Removed the Xss thread stack size option and added a minimum heap memory option to maven opts (cherry picked from commit e523306) * Increased timeout value to prevent build abortions (need to RCA why builds are taking longer) (cherry picked from commit 68b9232) * DDF-5578 updated codecov stage to be more efficient (#5579) (cherry picked from commit 2e7ec9e) * Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac)
AdamBurstynski
pushed a commit
that referenced
this pull request
Dec 20, 2019
* Updated Jenkinsfile (#5190) Removed the Xss thread stack size option and added a minimum heap memory option to maven opts (cherry picked from commit e523306) * Increased timeout value to prevent build abortions (need to RCA why builds are taking longer) (cherry picked from commit 68b9232) * DDF-5504 Upgraded to DDF-Parent 1.0.8 and Dependency-Check 5.2.2 (#5510) Cleaned-up dependency-check configuration DDF-5504 Updated dependency-check stage to be more efficient DDF-5504 Updated DDF-Parent and Depdendency-Check DDF-5504 Added dependency-check:aggregate to non-PR builds (cherry picked from commit 0456c03) * DDF-5578 updated codecov stage to be more efficient (#5579) (cherry picked from commit 2e7ec9e) * Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac) * DDF-5597 updated dependency-check properties for local NVD (#5654) * DDF-5597 updated dependency-check properties * DDF-5597 added back dependency-check maven version (cherry picked from commit 365bfdd) Co-authored-by: Ryan Zwiefelhofer <rzwiefel@users.noreply.github.com> Co-authored-by: Matthew Bates <matthew.bates@connexta.com> Co-authored-by: Shaun Morris <shaundmorris@users.noreply.github.com>
shaundmorris
added a commit
that referenced
this pull request
Jan 3, 2020
* DDF-5578 updated codecov stage to be more efficient (#5579) (cherry picked from commit 2e7ec9e) * Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac) * DDF-5597 updated dependency-check properties for local NVD (#5654) * DDF-5597 updated dependency-check properties * DDF-5597 added back dependency-check maven version (cherry picked from commit 365bfdd) Co-authored-by: Shaun Morris <shaundmorris@users.noreply.github.com>
AdamBurstynski
pushed a commit
that referenced
this pull request
Jan 6, 2020
* Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * Updated Jenkinsfile (#5190) Removed the Xss thread stack size option and added a minimum heap memory option to maven opts (cherry picked from commit e523306) * DDF-5578 updated codecov stage to be more efficient (#5579) (cherry picked from commit 2e7ec9e) * Increased timeout value to prevent build abortions (need to RCA why builds are taking longer) (cherry picked from commit 68b9232) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac) * DDF-5504 Upgraded to DDF-Parent 1.0.8 and Dependency-Check 5.2.2 (#5510) Cleaned-up dependency-check configuration DDF-5504 Updated dependency-check stage to be more efficient DDF-5504 Updated DDF-Parent and Depdendency-Check DDF-5504 Added dependency-check:aggregate to non-PR builds (cherry picked from commit 0456c03) (cherry picked from commit 6a48ac2) * DDF-5597 updated dependency-check properties for local NVD (#5654) * DDF-5597 updated dependency-check properties * DDF-5597 added back dependency-check maven version (cherry picked from commit 365bfdd) Co-authored-by: Ryan Zwiefelhofer <rzwiefel@users.noreply.github.com> Co-authored-by: Shaun Morris <shaundmorris@users.noreply.github.com> Co-authored-by: Matthew Bates <matthew.bates@connexta.com>
AdamBurstynski
pushed a commit
that referenced
this pull request
Jan 9, 2020
* DDF-5504 Upgraded to DDF-Parent 1.0.8 and Dependency-Check 5.2.2 (#5510) Cleaned-up dependency-check configuration DDF-5504 Updated dependency-check stage to be more efficient DDF-5504 Updated DDF-Parent and Depdendency-Check DDF-5504 Added dependency-check:aggregate to non-PR builds (cherry picked from commit 0456c03) * DDF-5578 updated codecov stage to be more efficient (#5579) (cherry picked from commit 2e7ec9e) * Increased timeout value to prevent build abortions (need to RCA why builds are taking longer) (cherry picked from commit 68b9232) * Archive the dependecy-check aggregate report after the owasp stage finishes. (#5643) (cherry picked from commit 03a3865) * General Jenkinsfile cleanup. (#5666) Moved Codeco.io to be right after the ITests. Removed all the commented windows sections. Removed unneeded parallel sections as well. Added in Commenting onto PR builds using internal library function postCommetnIfPR. (cherry picked from commit efe40ac) * DDF-5597 updated dependency-check properties for local NVD (#5654) * DDF-5597 updated dependency-check properties * DDF-5597 added back dependency-check maven version (cherry picked from commit 365bfdd) Co-authored-by: Shaun Morris <shaundmorris@users.noreply.github.com> Co-authored-by: Matthew Bates <matthew.bates@connexta.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What does this PR do?
Archive the dependency-check aggregate report after the owasp stage finishes successfully
Who is reviewing it?
@TonyMorrison
@LinkMJB
@shaundmorris
Select relevant component teams:
@codice/build
@codice/security
How should this be tested?
N/A
Any background context you want to provide?
N/A
What are the relevant tickets?
Fixes: #5635
Screenshots
Checklist:
Notes on Review Process
Please see Notes on Review Process for further guidance on requirements for merging and abbreviated reviews.
Review Comment Legend: