Checkmarx One Jenkins Plugin
The Checkmarx One Jenkins Plugin enables you to trigger scans directly from a Jenkins workflow. It provides a wrapper around theCheckmarx One CLI Tool which creates a zip archive from your source code repository and uploads it to Checkmarx One for scanning. The plugin provides easy integration into Jenkins while enabling scan customization using the full functionality and flexibility of the CLI tool. You can configure the installation to automatically update to the latest CLI version.
Note
The plugin code can be found here.
Main Features
Automatically trigger SAST, SCA, IaC Security and API Securiy scans from Jenkins
Supports integrating Checkmarx One build steps into FreeStyle or Pipeline projects
Can be configured to automatically update to the latest CLI version
Supports use of CLI arguments to customize scan configuration
Interface for viewing scan results summary and trends in the Jenkins environment
Direct links from within Jenkins to detailed Checkmarx One scan results and reports
Prerequisites
A Jenkins installation LTS 2.263.1 (Supported Operating systems: Windows and Linux)
You have a Checkmarx One account and you have an OAuth2 Client ID and Client Secret for that account. To create an OAuth2 client, see Creating an OAuth2 Client for Checkmarx One Integrations.