The base jenkins slave used by all ODS builder slaves
- Creates trust relationship with applications in the openshift cluster (thru certificate management)
- Sonarqube scanner plugin binding to the central SQ instance
- Sonarqube report plugin used to download the scan results within the
jenkins shared library's stage
stageScanForSonarQube - OWASP scan plugin
- Creates proxy awareness when
HTTP_PROXYis injected during build phase - Tailor - on top of
openshift CLIto provide infrastrucure as code - Snyk Security Scan CLI when
SNYK_DISTRIBUTION_URLis injected during build phase - skopeo to promote container images between registries.