-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathJenkinsSecretsChecker
More file actions
38 lines (37 loc) · 838 Bytes
/
JenkinsSecretsChecker
File metadata and controls
38 lines (37 loc) · 838 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
pipeline {
agent any
stages {
stage('Pull project code'){
steps {
echo 'downloading git directory..'
git 'https://github.com/ibmappsec/GOAT.git'
}
}
stage('Check git history for secrets'){
steps{
script{
echo 'running trufflehog to check project history for secrets'
sh 'trufflehog --regex --entropy=False https://github.com/ibmappsec/GOAT'
}
}
}
}
post {
always {
echo 'This will always run'
}
success {
echo 'This will run only if successful'
}
failure {
echo 'This will run only if failed'
}
unstable {
echo 'This will run only if the run was marked as unstable'
}
changed {
echo 'This will run only if the state of the Pipeline has changed'
echo 'For example, if the Pipeline was previously failing but is now successful'
}
}
}