Connect

Select Manage Jenkins in the left sidebar of your Jenkins dashboard.

Select Manage Plugins under System Configuration.

Check to enable the Contrast Continuous Application Security plugin under the Installed tab.

Select Manage Jenkins again.

Select Configure System to find the Contrast Connections section.

Enter your Contrast username. Your username is the email address you use for your account in Contrast.

Enter the:

You can find these in your profile under User settings > Profile > Your keys.

Select a Result of a vulnerable build to choose how you want Contrast to mark your Jenkins job when your application is too vulnerable:

Check the box next to Apply this vulnerable build result to the job when Jenkins encounters an error with Contrast if you want the Jenkins job to automatically fail whenever your Jenkins instance can't find your application.

You can define the criteria that the Contrast plugin will use to determine whether an application is too vulnerable at the Jenkins system level. Check the box next to Allow global Contrast Vulnerability Threshold Conditions to be overridden in a Job configuration if you want job level controls to override system level controls. Leave the box unchecked if you want to enforce consistency of criteria across all Jenkins jobs in your instance.

Click Test Contrast connection to make sure that the plugin can authenticate to Contrast and retrieve information about your applications' vulnerabilities.