The following plugin provides functionality available through Pipeline-compatible steps. Read more about how to integrate steps into your Pipeline in the Steps section of the Pipeline Syntax page.

For a list of other such plugins, see the Pipeline Steps Reference page.

NeuVector Vulnerability Scanner Plugin

neuvector: NeuVector Vulnerability Scanner

  • repository : String
    Enter the name of the repository to scan. For private images, enter your login username, image name, and tag in the format: username/image-name:tag. Example: testuser/demo-image:1.2. For public images on Docker Hub, use the format: library/image-name:tag. Example: library/alpine:3.18.
  • registrySelection : String
    Select a registry by its nickname from the drop down menu, or select Local. Registries can be added in the global settings.
  • controllerEndpointUrlSelection : String (optional)

    Select a Controller Endpoint URL from the dropdown menu, identified by its nickname. Add new Controller Endpoint URLs in the Global Settings

    Note: This setting is not applicable in standalone mode.

  • nameOfVulnerabilityToExemptFour : String (optional)
  • nameOfVulnerabilityToExemptOne : String (optional)
  • nameOfVulnerabilityToExemptThree : String (optional)
  • nameOfVulnerabilityToExemptTwo : String (optional)
  • nameOfVulnerabilityToFailFour : String (optional)
  • nameOfVulnerabilityToFailOne : String (optional)
  • nameOfVulnerabilityToFailThree : String (optional)
  • nameOfVulnerabilityToFailTwo : String (optional)
  • numberOfHighSeverityToFail : String (optional)
    Minimum number of high vulnerabilities to fail the build. Leave blank or zero if not applicable.
  • numberOfMediumSeverityToFail : String (optional)
    Minimum number of medium vulnerabilities to fail the build. Leave blank or zero if not applicable.
  • scanLayers : boolean (optional)
    Check to scan the image layers, and get the number of vulnerabilities for each layer.
  • scanTimeout : int (optional)
    The timeout value in minutes for the local image scan. The default is 10 minutes.
  • sendReportToController : boolean (optional)
    Enable this option to send the scan report to the Controller when using the Standalone Scanner.
  • standaloneScanner : boolean (optional)
    Enable this option to perform scans using the Standalone Scanner.
  • tag : String (optional)
    Enter the image tag. The default tag is ‘latest’.

Was this page helpful?

Please submit your feedback about this page through this quick form.

Alternatively, if you don't wish to complete the quick form, you can simply indicate if you found this page helpful?

    


See existing feedback here.