Configure your SourceClear Jenkins Job

SourceClear Software Composition Analysis

Procedure

  1. Select the job you want to scan.
  2. Select Build Environment.
  3. Select Use secret text(s) or file(s).
  4. Under Bindings, select Add > Secret text.
  5. For Variable, enter SRCCLR_API_TOKEN.
  6. Select SRCCLR_API_TOKEN from the dropdown menu.
  7. In the build section, select Add build step > Execute shell.
  8. Add the following command to the shell command box:
    curl -sSL https://download.sourceclear.com/ci.sh | sh
  9. Save your build.

Results

The next time your job runs, SourceClear performs a scan.