forked from LiveCarta/LivecartaPipelinesSharedLibraries
14 lines
538 B
Groovy
14 lines
538 B
Groovy
def secScan(script, image) {
|
|
sh """
|
|
mkdir -p /var/jenkins_home/secscan_reports/${script.env.JOB_NAME}/
|
|
docker run \
|
|
-v ./trivy_cache:/root/.cache \
|
|
-v /var/run/docker.sock:/var/run/docker.sock \
|
|
aquasec/trivy \
|
|
-f template \
|
|
--template "@contrib/html.tpl" \
|
|
-o /dev/stdout \
|
|
image --exit-code 1 --severity HIGH,CRITICAL \
|
|
${image} > /var/jenkins_home/secscan_reports/${script.env.JOB_NAME}/secscan_report_\$(date +"%Y%m%d_%H%M%S")_${image}.html
|
|
"""
|
|
} |