A lightweight script that helps to integrate the FossID with various git-based CI/CD environments.
- Install FossID 2020.x or higher
- install jq package (https://stedolan.github.io/jq/)
#(debian/ubuntu)
sudo apt-get install jq
#(redhat/centos)
yum install jq./fossid-git.sh --fossid.scheme=https --fossid.host=fossid.mycompany.com --fossid.username=myuser \
--fossid.apikey=abcdefgh --fossid.project.name=myproject --fossid.scan.name=myscan \
--fossid.git.url=https://github.com/mycompany/myproject --fossid.git.branch=master- Example of --fossid.git.url for private repository: https://username:password@bitbucket.org/mycompany/myproject.git
- Example of --fossid.git.url for public repository: https://github.com/mycompany/myproject.git
- *(Optional) --fossid.filesystem.path is an optional parameter that allows you to scan the code of a specific path in the FossID server's file system.
--fossid.scheme : (Required) protocol (http or https)
--fossid.host : (Required) hostname of FossID webserver
--fossid.username : (Required) FossID username
--fossid.apikey : (Required) FossID apikey
--fossid.project.name : (Required) name for the FossID project
--fossid.scan.name : (Required) name for the FossID scan
--fossid.git.url : git repository url
--fossid.git.branch : branch name of git repository
--fossid.filesystem.path : (Optional) target path in the FossID server's file system
(Advanced)
--fossid.trust.cert : Trust self-signed certificates (true/false)
--fossid.timeout : set operation timeout (default:0 - unlimited)
--fossid.proxy.scheme : set proxy protocol (http or https)"
--fossid.proxy.host : set proxy host for connnection"
--fossid.proxy.port : set proxy port"
--fossid.proxy.username : set proxy username"
--fossid.proxy.password : set proxy password"
- support for proxy connection, minor bug fixed
- support for trust certificate option, help menu added
- structural improvement and bug fixed
- output message handling improvement and bug fixed
- bug fixed / added feature: print scan info when finished
- added feature: check scan progress
- added support for git repository scanning
- create child scan if project already exists
- structural improvement
- structural improvement
- improvement using jq
- structural improvement
- initial release
This project is licensed under the terms of the GNU General Public License v2.0 or later alike below.
Copyright (c) 2020 OSBC / junsulee jslee@osbc.co.kr
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.