2 # SPDX-license-identifier: Apache-2.0
3 ########################
4 # Job configuration for opnfv-anteater (security audit)
5 ########################
16 - apex-tripleo-heat-templates
80 - 'opnfv-security-audit-verify-{stream}'
81 - 'opnfv-security-audit-{repo}-weekly-{stream}'
89 ########################
91 ########################
93 name: 'opnfv-security-audit-{repo}-weekly-{stream}'
95 disabled: '{obj:disabled}'
98 - ericsson-build3-defaults
100 name: ANTEATER_SCAN_PATCHSET
102 description: "Have anteater scan patchsets (true) or full project (false)"
108 default: 'refs/heads/{stream}'
109 description: "Default Gerrit ref git HEAD should point to"
118 - anteater-security-audit-weekly
121 # defined in jjb/global/releng-macros.yml
122 - 'email-{repo}-ptl':
123 subject: 'OPNFV Security Scan Result: {repo}'
128 name: 'opnfv-security-audit-verify-{stream}'
130 disabled: '{obj:disabled}'
135 default: 'opnfv-build'
136 description: 'Slave label on Jenkins'
138 project: $GERRIT_PROJECT
142 default: https://gerrit.opnfv.org/gerrit/$PROJECT
143 # yamllint disable rule:line-length
144 description: "Used for overriding the GIT URL coming from Global Jenkins configuration in case if the stuff is done on none-LF HW."
145 # yamllint enable rule:line-length
150 # yamllint disable rule:line-length
153 server-name: 'gerrit.opnfv.org'
155 - patchset-created-event:
156 exclude-drafts: 'false'
157 exclude-trivial-rebase: 'false'
158 exclude-no-code-change: 'false'
159 - draft-published-event
160 - comment-added-contains-event:
161 comment-contains-value: 'recheck'
162 - comment-added-contains-event:
163 comment-contains-value: 'reverify'
165 - project-compare-type: 'REG_EXP'
166 project-pattern: 'apex|armband|bamboo|barometer|bottlenecks|calipso|compass4nfv|conductor|cooper|cperf|daisy|doctor|dovetail|dpacc|enfv|escalator|fds|fuel|functest|octopus|pharos|releng|sandbox|yardstick|infra|ipv6|kvmfornfv|lsoapi|models|moon|multisite|netready'
168 - branch-compare-type: 'ANT'
169 branch-pattern: '**/{branch}'
178 # yamllint enable rule:line-length
181 - anteater-security-audit
182 - report-security-audit-result-to-gerrit
185 artifacts: ".reports/*"
187 ########################
189 ########################
191 name: anteater-security-audit
194 !include-raw: ./anteater-security-audit.sh
197 name: report-security-audit-result-to-gerrit
200 !include-raw: ./anteater-report-to-gerrit.sh
203 name: anteater-security-audit-weekly
206 !include-raw: ./anteater-security-audit-weekly.sh