Jenkins

Learn how to integrate Debricked with Jenkins.

You can integrate your Jenkins pipeline with Debricked, so that a vulnerability scan is performed every time the pipeline is triggered.

Configure Debricked token

Start by generating an access token. Copy the token to use it in the next step.

Create the DEBRICKED_TOKEN, which the pipeline will use. Inside Jenkins, go to your pipeline, click on “Add Credentials”, and select the correct folder. Create a new credential with "Kind" set to secret text. In the secret field insert the access token you created in the previous step. As ID, enter DEBRICKED_TOKEN and click on the button “Create”. See the image below:

Configure Jenkins CI Workflow

We assume you already have a Jenkinsfile in your repository, describing a declarative pipeline. You now need to add a new stage to this pipeline.

Add the following template to the file:

https://github.com/debricked/cli/blob/main/examples/templates/Jenkins/Jenkinsfile

pipeline {
    agent any
    
   environment {
        DEBRICKED_TOKEN = credentials('DEBRICKED_TOKEN')
    }

    stages {
        stage('Debricked Scan') {
            steps {
                script {
                    sh 'curl -L https://github.com/debricked/cli/releases/download/release-v1/cli_linux_x86_64.tar.gz | tar -xz debricked'
                    sh './debricked scan'
                }
            }
        }
    }
}

Commit your changes to Jenkinsfile and watch the CI run!

Last updated 4 months ago