Changes for page Jenkins Shared Library

Last modified by Boris Folgmann on 2025/11/03 09:41

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Children
- Content
- Comments
- Likes

From 3.4 to 4.1 From 7.1 to 7.2

From version 4.1

edited by Achim Mahnke
on 2025/10/27 12:59

Change comment: There is no comment for this version

To version 7.1

edited by Boris Folgmann
on 2025/11/03 09:14

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (2 modified, 0 added, 0 removed)

Details

Page properties

Author

@@ -1,1 +1,1 @@
--xwiki:XWiki.achimmahnket-systemscom
++xwiki:XWiki.borisfolgmannt-systemscom

Content

@@ -128,6 +128,8 @@
  )))|(((
  npm command to execute for building Node.JS projects.
  )))
++|= |go|'go'|Golang version to use.
++Refers to a symbolic name of a go tool configuration in Jenkins.
  |= |goBuildCommand|(((
  'go build -o app cmd/server/main.go'
  )))|go build run. Should be overridden for your project.
@@ -310,9 +310,11 @@
  |(((
  helmRegistry
  )))|(((
--Nexus registry of your DOaaS instance
++Helm registry of your DOaaS instance, which is usally 'https:~/~/registry-CUSTOMER.devops.t-systems.net/chartrepo/PROJECTKEY'
  )))|(((
--Name of registry to which the packaged Helm chart is uploaded.
++Helm registry to which the packaged Helm chart is uploaded.
++
++
  )))
  |(((
  helmRegistryCredentialsId
@@ -351,7 +351,7 @@
  )))|(((
  Id of the Jenkins Credentials for signers private keyfile.
  )))
--|=(% colspan="1" rowspan="12" %)(((
++|=(% colspan="1" rowspan="8" %)(((
  Static Source Code Analysis
  )))|(((
  checkstyleConfig
@@ -376,29 +376,7 @@
  )))|(((
   Name of a config file to use for yamllint. If not set a best-practice[[ relaxed configuration >>url:https://prd.sdc.t-systems.net/bitbucket/projects/DEVOPSAAS/repos/sdcloud-caas-jenkins-libs/browse/resources/com/tsystems/sdc/jenkinslib/yamllint.yml||shape="rect"]]is used which is different from the original yamllint[[ config>>url:https://yamllint.readthedocs.io/en/stable/configuration.html#default-configuration||shape="rect"]].
  )))
--|skipDependencyCheck|false|Set to true to skip the dependency-check.
  |(((
--dependencyCheckTool
--)))|(((
--'dependency-check'
--)))|(((
--Defines which named dependency-check tool should be used.
--)))
--|(((
--dependencyCheckArgs
--)))|(((
--'~-~-disableAssembly ~-~-nvdValidForHours 720'
--)))|(((
--Addtional arguments which are be passed to dependency-check. See [[Dependency>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]][[ Check CLI Arguments>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]] for more information.
--)))
--|(((
--dependencyCheckNvdApiKeyCredentialsId
--)))|(((
--'dependency-check-nvdapikey'
--)))|(((
--If you have your own NVD API Key, set it as a credential of type text in Jenkins. Then specify the credential id using this argument. It will be automatically passed to dependency-check. There will be no error if no credential is found. Just the NVD download will be slower. Please note, on DevOps-as-a-Service a shared NVD API Key is automatically supplied for the default credential id.
--)))
--|(((
  sonarQube
  )))|(((
  true for the defaultBranch and for pull-requests, if a SonarQube version is detected which supports scanning multiple branches
@@ -449,6 +449,23 @@
  |sonarQualityGate| |Sets the desired quality gate to use for the scan result in SonarQube.
  If not specified, the quality gate is not changed.
  As a default, SonarQube will use the quality gate "Sonar way" for new scan results.
++|=(% colspan="1" rowspan="5" %)Dependency Check|skipDependencyCheck|false|Set to true to skip the dependency-check.
++|dependencyCheckTool|'dependency-check'|Defines which named dependency-check tool should be used.
++|dependencyCheckMvnArgs|'-DassemblyAnalyzerEnabled=false'|Additional arguments which are be passed to dependency-check for maven projects.(((
++See [[Dependency Check Maven Configuration>>https://jeremylong.github.io/DependencyCheck/dependency-check-maven/configuration.html]] for more information.
++)))
++|dependencyCheckArgs|'~-~-disableAssembly'|Addtional arguments which are be passed to dependency-check. See [[Dependency>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]][[ Check CLI Arguments>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]] for more information.
++|dependencyCheckNvdApiKeyCredentialsId|'dependency-check-nvdapikey'|If you have your own NVD API Key, set it as a credential of type text in Jenkins. Then specify the credential id using this argument. It will be automatically passed to dependency-check. There will be no error if no credential is found. Just the NVD download will be slower. Please note, on DevOps-as-a-Service a shared NVD API Key is automatically supplied for the default credential id.
++|=(% colspan="1" rowspan="2" %)Dependency Track|depTrackCredentialsId|'PROJECTKEY-deptrack-projectcreator'|(((
++Id of the Jenkins Credential which has to be used to authenticate to Dependency Track for publishing the SBOM.
++)))
++|depTrackClassifier|'application'|The component type (e.g. application, library, firmware, ...) that should be set in the SBOM file.
++Will be later shown as classifier for the project in Dependency Track.
++See [[CycloneDX Metadata Component Type>>https://cyclonedx.org/docs/1.6/json/#metadata_component_type]] for supported values.
++|=(% colspan="1" rowspan="2" %)Trivy|trivySeverity|'High'|String which sets the minimum severity of Trivy findings that has to be reached to mark the Trivy Results stage as unstable.
++Possible values are: "None", "Unknown", "Negligible", "Low", "Medium", "High", "Critical".
++|trivyBuildResult|'SUCCESS'|String which sets the overall build result when the result of the Trivy scan reaches trivyServerity.
++Possible values are: "SUCCESS", "UNSTABLE" or "FAILURE"
  |=(% rowspan="7" %)(((
  Deployment
  )))|(((