As a Developer, I want to add the Application Security Analyzer, Kryptowire, into the build process, such that any security risks are detected in the build process
This will involve creating a Jenkins plugin for Kryptowire.
https://www.kryptowire.com/
h2, Acceptance Criteria
- Jenkins plugin created that allow applications to be run through security scanning provided by Kryptowire when the plugin is referenced / included in the Jenkinsfile.
- Document; create/update 'How to integrate 'Application Security Analysis' into the build process of my Mobile - Application' guide.
- See the Kryptowire Scan phase in the OpenShift pipeline.
h2. Tasks
- create new plugin to submit binary to cryptowire
- document how this plugin should be installed and configured
- document how this plugin should be invoked from the Jenkinsfile
- publish to jenkins plugin repo |
|
