- Contact FOSSA Admins (see #fossa-support Slack channel) for a FOSSA API Key
- Note: Credentials, API Keys, and other secrets should only be shared via Thycotic
- Login to Jenkins
- Add the FOSSA API Key into Jenkin's Secret Store as 'Secret text'
- Open the Project's Jenkins Pipeline Configuration
- Under 'Bindings' add a new 'Secret Text', set the 'Variable' field to 'FOSSA_API_KEY' and set the 'Credentials' dropdown to the FOSSA API Key entry from the Secret Store
- Under 'Build' add a new build step and set the 'Command' as :
- If using PowerShell
Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_install.ps1')) Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_run.ps1'))- If using Windows Shell (Batch)
@"%SystemRoot%\System32\WindowsPowerShell\v1.0\powershell.exe" -NoProfile -InputFormat None -ExecutionPolicy Bypass -Command "Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_install.ps1'))" @"%SystemRoot%\System32\WindowsPowerShell\v1.0\powershell.exe" -NoProfile -InputFormat None -ExecutionPolicy Bypass -Command "Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_run.ps1'))"- If using Linux Shell (Bash)
curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_install.sh | bash -s -- -b $WORKSPACE curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/mdsol/fossa_ci_scripts/main/jenkins/fossa_run.sh | bash -s -- -b $WORKSPACE - Follow any necessary Optional Steps found below
- Save the changes to the Jenkins Pipeline
- Follow necessary steps to Setup FOSSA CLI
- Commit & Push changes to GitHub
- Open a Pull Request against a Jenkins Monitored Branch
- Check Jenkins Project Pipeline for errors or failures
- Merge the Pull Request when satisfied with output
- Add a Parameter to the Jenkins Pipeline called 'FOSSA_FAIL_BUILD' and set its value to 'true'
Note : This functionalily is optional at this time (Nov 2018), but will be made manditory through script updates in the future. This toggle is a courtesy for teams which want to get a head start on these requirements.
- Add an environment variable to the Travis YML named
FOSSA_CLI_VERSIONand set its value to a valid semantic version for the FOSSA CLI.- Note: See the FOSSA CLI GitHub Repository for released versions.