Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-41081

Anchore plugin does not use default policy to evaluate gates when policy configuration is left blank in the build step


    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Minor Minor
    • None
    • Jenkins version: 2.32.1
      Anchore plugin version: 1.0.4
      Jenkins running in a container

      As per the help for "Policy file" parameter in the Anchore Container Image Scanner build step, the plugin uses a default policy if the field is left blank/empty. The actual behavior observed was the plugin evaluates the gate with an empty policy document resulting in no gate output

        1. screenshot-1.png
          199 kB
          Swathi Gangisetty
        2. screenshot-2.png
          70 kB
          Swathi Gangisetty

            swathigangisetty Swathi Gangisetty
            swathigangisetty Swathi Gangisetty
            0 Vote for this issue
            2 Start watching this issue