The following plugin provides functionality available through
Pipeline-compatible steps. Read more about how to integrate steps into your
Pipeline in the
Steps
section of the
Pipeline Syntax
page.
Name of the file that contains a list of container images for anchore to analyze, evaluate policy, and run queries against. The format for each line is "imageId /path/to/Dockerfile", where the Dockerfile is optional. This file must be made available (created by a prior step) to Anchore Container Image Scanner plugin.
Type:String
annotations (optional)
Array / List of Nested Object
key
key
Type:String
value
value
Type:String
autoSubscribeTagUpdates (optional)
If selected or set to 'true', the Anchore Container Image Scanner step will instruct Anchore Engine to automatically begin watching the added tag for updates from registry. Default value: 'true'
Type:boolean
bailOnFail (optional)
If selected or set to 'true', the Anchore Container Image Scanner step will cause the build to fail if the policy evaluation result is FAIL. Default value: 'true'
Type:boolean
bailOnPluginFail (optional)
If selected or set to 'true', the Anchore Container Image Scanner step will cause the build to fail if the plugin encounters an error. Default value: 'true'
Type:boolean
engineCredentialsId (optional)
Type:String
engineRetries (optional)
Number of polling attempts spaced at 5 second intervals spent waiting for the Anchore Engine operation to complete.
Type:String
engineurl (optional)
Anchore Engine URL
Type:String
engineverify (optional)
Type:boolean
forceAnalyze (optional)
If selected or set to 'true', the Anchore Container Image Scanner step will instruct Anchore Engine to force analyze the image. Default value: 'false'
Type:boolean
policyBundleId (optional)
ID of the policy bundle on Anchore Engine to be used for policy evaluations. If empty, the policy bundle marked active on Anchore Engine will be used by default.