Merge pull request 'OZG-4833-use-dependency-track' (#738) from...

Merge pull request 'OZG-4833-use-dependency-track' (#738) from OZG-4833-use-dependency-track into master Reviewed-on: https://git.ozg-sh.de/ozgcloud-app/alfa/pulls/738

Merge pull request 'OZG-4833-use-dependency-track' (#738) from...
78b2cbb3 · OZGCloud · 7bee29b0 · f75d1a8c · 78b2cbb3
Commit 78b2cbb3 authored 9 months ago by OZGCloud
--- a/Jenkinsfile
+++ b/Jenkinsfile
@@ -248,20 +248,17 @@ pipeline {
            }
        }
-        stage ('OWASP Dependency-Check Vulnerabilities') {
+        stage ('Deploy SBOM to DependencyTrack') {
            steps {
-                    dependencyCheck additionalArguments: '''
+                configFileProvider([configFile(fileId: 'maven-settings', variable: 'MAVEN_SETTINGS')]) {
-                        -o "./"
+                    withCredentials([string(credentialsId: 'dependency-track-api-key', variable: 'API_KEY')]) {
-                        -s "./"
-                        -f "ALL"
+                        dir('alfa-server') {
-                        -d /dependency-check-data
-                        --suppression dependency-check-supressions.xml
+                            sh 'mvn  --no-transfer-progress -s $MAVEN_SETTINGS io.github.pmckeown:dependency-track-maven-plugin:upload-bom -Ddependency-track.apiKey=$API_KEY -Ddependency-track.projectVersion=' + generateImageTag() + ' -Ddependency-track.dependencyTrackBaseUrl=https://dependency-track.ozg-sh.de'
-                        --disableKnownExploited
+                        }
-                        --noupdate
+                    }
-                        --disableArchive
+                }
-                        --prettyPrint''', odcInstallation: 'dependency-check-owasp'
-                    dependencyCheckPublisher pattern: 'dependency-check-report.xml'
            }
        }