-
Story
-
Resolution: Done
-
Minor
-
None
As Amit the AppSec manager I would like to have an option to automatically delete scans that have not been completed added to the Jenkins plugin so that I am no longer required to manually intervene and delete these scans in order for subsequent Jenkins scans to be submitted.
Acceptance criteria:
- Add an override option to the Jenkins plugin to automatically delete scans that have been completed for Pipeline based on the following choices:
-
- Level 0 - do not delete an incomplete scan when running the uploadandscan action. The default. If set, you must delete an incomplete scan manually to proceed with the uploadandscan action.
-
- Level 1 - delete a scan with a status of incomplete, no modules defined, failed, or canceled to proceed with the uploadandscan action. If errors occur when running this action, the Java wrapper automatically deletes the incomplete scan.
-
- Level 2 - delete a scan of any status except Results Ready to proceed with the uploadandscan action. If errors occur when running this action, the Java wrapper automatically deletes the incomplete scan.
-
- Refer to https://docs.veracode.com/r/r_uploadandscan for additional details
- Requires latest Java Wrapper ( v22.5.10.0) with delete scan feature
- this setting applicable only at job level
- Policy and Sandbox
- Only applicable for Static scans, not DA
- Default value is OFF
- Persist value
- Maintain backwards compatibility with previous implementation which was a boolean vs. integer
- Log appropriate messaging that identifies the scan being deleted, error encountered
- Meaningful unit tests are created and pass