Changes for page Jenkins Shared Library

Last modified by Boris Folgmann on 2025/11/03 09:41

From 6.6 to 6.5 From 7.2 to 7.1

From version 7.1

edited by Boris Folgmann
on 2025/11/03 09:14

Change comment: There is no comment for this version

To version 6.6

edited by Boris Folgmann
on 2025/11/03 09:09

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (1 modified, 0 added, 0 removed)

Details

Page properties

Content

@@ -355,9 +355,10 @@
  )))|(((
  Id of the Jenkins Credentials for signers private keyfile.
  )))
--|=(% colspan="1" rowspan="8" %)(((
++|=(% colspan="1" rowspan="14" %)(((
  Static Source Code Analysis
--)))|(((
++)))
++Dependency Check|(((
  checkstyleConfig
  )))|(((
  best-practice releaxed configuration
@@ -380,7 +380,32 @@
  )))|(((
   Name of a config file to use for yamllint. If not set a best-practice[[ relaxed configuration >>url:https://prd.sdc.t-systems.net/bitbucket/projects/DEVOPSAAS/repos/sdcloud-caas-jenkins-libs/browse/resources/com/tsystems/sdc/jenkinslib/yamllint.yml||shape="rect"]]is used which is different from the original yamllint[[ config>>url:https://yamllint.readthedocs.io/en/stable/configuration.html#default-configuration||shape="rect"]].
  )))
++|skipDependencyCheck|false|Set to true to skip the dependency-check.
  |(((
++dependencyCheckTool
++)))|(((
++'dependency-check'
++)))|(((
++Defines which named dependency-check tool should be used.
++)))
++|dependencyCheckMvnArgs|'-DassemblyAnalyzerEnabled=false'|Additional arguments which are be passed to dependency-check for maven projects.(((
++See [[Dependency Check Maven Configuration>>https://jeremylong.github.io/DependencyCheck/dependency-check-maven/configuration.html]] for more information.
++)))
++|(((
++dependencyCheckArgs
++)))|(((
++'~-~-disableAssembly'
++)))|(((
++Addtional arguments which are be passed to dependency-check. See [[Dependency>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]][[ Check CLI Arguments>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]] for more information.
++)))
++|(((
++dependencyCheckNvdApiKeyCredentialsId
++)))|(((
++'dependency-check-nvdapikey'
++)))|(((
++If you have your own NVD API Key, set it as a credential of type text in Jenkins. Then specify the credential id using this argument. It will be automatically passed to dependency-check. There will be no error if no credential is found. Just the NVD download will be slower. Please note, on DevOps-as-a-Service a shared NVD API Key is automatically supplied for the default credential id.
++)))
++|(((
  sonarQube
  )))|(((
  true for the defaultBranch and for pull-requests, if a SonarQube version is detected which supports scanning multiple branches
@@ -431,13 +431,7 @@
  |sonarQualityGate| |Sets the desired quality gate to use for the scan result in SonarQube.
  If not specified, the quality gate is not changed.
  As a default, SonarQube will use the quality gate "Sonar way" for new scan results.
--|=(% colspan="1" rowspan="5" %)Dependency Check|skipDependencyCheck|false|Set to true to skip the dependency-check.
--|dependencyCheckTool|'dependency-check'|Defines which named dependency-check tool should be used.
--|dependencyCheckMvnArgs|'-DassemblyAnalyzerEnabled=false'|Additional arguments which are be passed to dependency-check for maven projects.(((
--See [[Dependency Check Maven Configuration>>https://jeremylong.github.io/DependencyCheck/dependency-check-maven/configuration.html]] for more information.
--)))
--|dependencyCheckArgs|'~-~-disableAssembly'|Addtional arguments which are be passed to dependency-check. See [[Dependency>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]][[ Check CLI Arguments>>url:https://jeremylong.github.io/DependencyCheck/dependency-check-cli/arguments.html||shape="rect"]] for more information.
--|dependencyCheckNvdApiKeyCredentialsId|'dependency-check-nvdapikey'|If you have your own NVD API Key, set it as a credential of type text in Jenkins. Then specify the credential id using this argument. It will be automatically passed to dependency-check. There will be no error if no credential is found. Just the NVD download will be slower. Please note, on DevOps-as-a-Service a shared NVD API Key is automatically supplied for the default credential id.
++| | |
  |=(% colspan="1" rowspan="2" %)Dependency Track|depTrackCredentialsId|'PROJECTKEY-deptrack-projectcreator'|(((
  Id of the Jenkins Credential which has to be used to authenticate to Dependency Track for publishing the SBOM.
  )))