Skip to main content

Setting up Integration with ThreadFix through Jenkins

You can integrate CxSAST with ThreadFix enabling Jenkins to automatically initiate a CxSAST scan and push the scan results to ThreadFix.

To set up integration with ThreadFix through Jenkins:

1. Install the ThreadFix Plugin in Jenkins.

1343324166.jpg

2. Configure the ThreadFix Plugin in Jenkins.

1343324170.jpg

3. Add a new application in ThreadFix.

1343324174.jpg

4. Click <Add Application>.

1343324178.jpg

5. Configure a job in Jenkins by adding a build step "Execute Checkmarx Scan".

1343324182.png

Notice

You must check Enable synchronous mode.

6. Add a Post Scan Action "Publish to ThreadFix".

1343324186.jpg

Notice

Scan file path location must be set to %WORKSPACE%\Checkmarx\Reports\ScanReport.xml.

7. Click <Save>. Every time you run a Jenkins job it will be scanned by Checkmarx and pushed to the ThreadFix Server.

In this section: