inteligr8/alfresco-transform-core
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-transform-core.git synced 2025-08-07 17:48:35 +00:00
Code Issues Packages Projects Releases Wiki Activity

ATS-468 : Add Veracode (SAST & SCA) scans to Transform Service Travis builds (#188)

Browse Source 
- add SCA & SAST
   - use wildcards to reference jars' locations - a single static scan will be triggered
   - use sandbox based on git branch
   - use maven plugin for source clear scans
   - filter logs
This commit is contained in:
Denis Ungureanu
2020-03-19 18:26:55 +02:00
committed by GitHub
parent a8366eadab
commit 46b2e6df5b
4 changed files with 75 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
_ci/static_analysis_init.sh Normal file
View File

@@ -0,0 +1,13 @@
#!/usr/bin/env bash
echo "=========================== Starting Static Analysis Init Script ==========================="
PS4="\[\e[35m\]+ \[\e[m\]"
set -vex
pushd "$(dirname "${BASH_SOURCE[0]}")/../"
wget https://repo1.maven.org/maven2/com/veracode/vosp/api/wrappers/vosp-api-wrappers-java/$VERACODE_WRAPPER_VERSION/vosp-api-wrappers-java-$VERACODE_WRAPPER_VERSION.jar
sha1sum -c <<< "$VERACODE_WRAPPER_SHA1 vosp-api-wrappers-java-$VERACODE_WRAPPER_VERSION.jar"
popd
set +vex
echo "=========================== Finishing Static Analysis Init Script =========================="