From 95712b3762bd8388d0b12829108ebc6b0099bab9 Mon Sep 17 00:00:00 2001
From: OZGCloud <ozgcloud@mgm-tp.com>
Date: Mon, 14 Oct 2024 14:26:15 +0200
Subject: [PATCH] OZG-6811 add Deploy SBOM to DependencyTrack stage in
 Jenkinsfile

---
 Jenkinsfile | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/Jenkinsfile b/Jenkinsfile
index 149c162..23b0ac4 100644
--- a/Jenkinsfile
+++ b/Jenkinsfile
@@ -91,6 +91,23 @@ pipeline {
             }
         }
 
+        stage ('Deploy SBOM to DependencyTrack') {
+            steps {
+                script {
+                    IMAGE_TAG = "${env.BRANCH_NAME}-${getPomVersion('pom.xml')}"
+
+                    configFileProvider([configFile(fileId: 'maven-settings', variable: 'MAVEN_SETTINGS')]) {
+                        withCredentials([string(credentialsId: 'dependency-track-api-key', variable: 'API_KEY')]) {
+
+                            catchError(buildResult: 'UNSTABLE', stageResult: 'FAILURE') {
+                                sh "mvn  --no-transfer-progress -s $MAVEN_SETTINGS io.github.pmckeown:dependency-track-maven-plugin:upload-bom -Ddependency-track.apiKey=$API_KEY -Ddependency-track.projectVersion=${IMAGE_TAG} -Ddependency-track.dependencyTrackBaseUrl=https://dependency-track.ozg-sh.de"
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
         stage('Sonar Checks') {
             when {
                 branch 'master'
-- 
GitLab