feat(detectExecuteScan): Add useDetect9 for latest BlackDuck script
#4649
Conversation
|
@CCFenner Is there anything else I can do? Or do I need a review by someone else? If so, could you assign/ping them? :) Regards, |
|
Hello @bugwelle , could you please regenerate _generated file ? |
|
@dimaste Sure! Done. Btw: Isn't detect8 still the default? Or was the |
|
Kudos, SonarCloud Quality Gate passed!
|
|
This is the default value, but we don't use it actually. It works in any case where no other detect version parameter is provided.
|
|
@bugwelle we discussed your PR with product management. We can merge it after the server upgrade which we should complete by the end of the year. The reason is that the current server version does not officially support it. I'll merge it once the server is upgraded. For now, let's keep the PR. |
@dimaste Oh! 😄 Thanks for reviewing it. :) |
|
Sure I see your concern, you can try to pass this as a workaround in Piper config of detect step for your scenario customEnvironmentVariables: |
Awesome! I'll try it out. I didn't find that option myself. :) Regards, |
|
Thank you for your contribution! This pull request is stale because it has been open 60 days with no activity. In order to keep it open, please remove stale label or add a comment within the next 10 days. If you need a Piper team member to remove the stale label make sure to add |
|
@dimaste I've updated the PR. It seems that useDetect7/8 was removed during the last 3 months. I've added @SAP/jenkins-library-team can you remove the stale label? |
|
|
Thank you for your contribution! This pull request is stale because it has been open 60 days with no activity. In order to keep it open, please remove stale label or add a comment within the next 10 days. If you need a Piper team member to remove the stale label make sure to add |
`detect8.sh` is no longer the most recent version of the BlackDuck runner. `detect9.sh` is now available and fixes some important bugs such as incorrect dependency reporting for `package-lock.json`'s in version 2 and 3. This commit adds `detect9.sh` support by adding a new `detectExecuteScan` option `useDetect9`, similar to the existing option `useDetect9`. See release notes of Synopsis Detect: - https://sig-product-docs.synopsys.com/bundle/integrations-detect/page/currentreleasenotes.html
|
@dimaste I've rebased the PR. It seems that useDetect7/8 was removed during the last 5 months. I've added @SAP/jenkins-library-team can you remove the stale label? |
|
|
Hi @bugwelle , this functionality has been merged separately so you can use it :) |
detect8.shis no longer the most recent version of the BlackDuck runner.detect9.shis now available and fixes some important bugs such as incorrect dependency reporting forpackage-lock.json's in version 2 and 3.This commit adds
detect9.shsupport by adding a newdetectExecuteScanoptionuseDetect9, similar to the old optionuseDetect8.See release notes of Synopsis Detect:
Changes