Contrast Jenkins integration
Jenkins is a continuous integration (CI) tool that automates the process of building, testing, deploying, and running applications.
With the Contrast plugin for Jenkins, you can add application security gates to this pipeline. These gates contain criteria that can fail the Jenkins job for a vulnerable application with a build result like "Failure" or "Unstable".
Tip
You can view the plugin source code in the Jenkins Github repository.
Use these versions to ensure compatibility:
Jenkins | Contrast-Jenkins plugin | Contrast |
|---|---|---|
2.60.3 | 3.4 | 3.7.6 |
2.60.3 | 3.7 | 3.7.10 |
2.60.3 | 3.8 | 3.8.0 |
Install and use Jenkins plugin
Define a connection between Contrast and Jenkins.
Depending on your situation, decide how you will use Jenkins:
If you are using freestyle jobs, you can define vulnerability security controls at a system level or as a post-build action step.
Define vulnerability security controls for pipeline steps.
Optionally, a Contrast Organization Administrator define a job outcome policy.