From f1f0a53d463fea0a3753337dcdef44322f603055 Mon Sep 17 00:00:00 2001 From: ondrejrozsypal Date: Wed, 8 Jan 2020 15:44:32 +0100 Subject: [PATCH 1/3] add ws config --- wss-unified-agent.config | 45 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 wss-unified-agent.config diff --git a/wss-unified-agent.config b/wss-unified-agent.config new file mode 100644 index 00000000..c36c823f --- /dev/null +++ b/wss-unified-agent.config @@ -0,0 +1,45 @@ +############################################################### +# WhiteSource Unified-Agent configuration file +############################################################### +# GENERAL SCAN MODE: Files and Package Managers +############################################################### +# Organization vitals +###################### + +projectToken=dfddac3de4cb47f1b61c8c35e56e98d0d881a86c4b9b454a9720a7bf90bc99bd + +# Change the below URL to your WhiteSource server. +# Use the 'WhiteSource Server URL' which can be retrieved +# from your 'Profile' page on the 'Server URLs' panel. +# Then, add the '/agent' path to it. +wss.url=https://app.whitesourcesoftware.com/agent + +############ +# Policies # +############ +checkPolicies=true +forceCheckAllDependencies=false +forceUpdate=false +forceUpdate.failBuildOnPolicyViolation=false +#updateInventory=false + +########### +# General # +########### +log.level=debug + +######################################## +# Package Manager Dependency resolvers # +######################################## +python.requirementsFileIncludes=requirements.txt requirements-opt.txt requirements-dev.txt + +########################################################################################### +# Includes/Excludes Glob patterns - Please use only one exclude line and one include line # +########################################################################################### +includes=**/*.zip **/*.tar.gz **/*.egg **/*.whl **/*.py + +#Exclude file extensions or specific directories by adding **/*. or **//** +excludes=**/*sources.jar **/*javadoc.jar + +case.sensitive.glob=false +followSymbolicLinks=true From d2805b59a2c0bd9992fb1cc45d42a64a2de76007 Mon Sep 17 00:00:00 2001 From: ondrejrozsypal Date: Wed, 8 Jan 2020 15:44:39 +0100 Subject: [PATCH 2/3] add cci config --- .circleci/config.yml | 46 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 .circleci/config.yml diff --git a/.circleci/config.yml b/.circleci/config.yml new file mode 100644 index 00000000..d20caa56 --- /dev/null +++ b/.circleci/config.yml @@ -0,0 +1,46 @@ +version: 2.1 + +executors: + java: + description: "A regular executor based on openjdk image" + docker: + - image: circleci/openjdk:8-jdk + +jobs: + whitesource-scan: + executor: java + + steps: + - checkout + + - run: + name: Install pip + command: | + sudo apt-get update + sudo apt-get install -y python-pip + - run: + name: Download latest WhiteSource Unified Agent + command: curl -LJO https://github.com/whitesource/unified-agent-distribution/releases/latest/download/wss-unified-agent.jar + - run: + name: Run WhiteSource scan + command: java -jar wss-unified-agent.jar -d ~/project -c ~/project/wss-unified-agent.config -apiKey ${API_KEY} + - store_artifacts: + path: ~/project/whitesource + +workflows: + version: 2 + commit: + jobs: + - whitesource-scan: + context: whitesource + security-scan: + triggers: + - schedule: + cron: "0 1 * * 0" + filters: + branches: + only: + master + jobs: + - whitesource-scan: + context: whitesource From 38b0ff6125413afd7a85fbe29a7b9900a4ff18b6 Mon Sep 17 00:00:00 2001 From: ondrejrozsypal Date: Thu, 9 Jan 2020 13:53:54 +0100 Subject: [PATCH 3/3] comment debug level --- wss-unified-agent.config | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/wss-unified-agent.config b/wss-unified-agent.config index c36c823f..e918eb38 100644 --- a/wss-unified-agent.config +++ b/wss-unified-agent.config @@ -26,7 +26,7 @@ forceUpdate.failBuildOnPolicyViolation=false ########### # General # ########### -log.level=debug +#log.level=debug ######################################## # Package Manager Dependency resolvers #