This docker image wraps around the Nexus IQ CLI. It performs a component intelligence evaluation against the files in the mounted workspace.
sh evaluate [options] <Archives or directories to scan>
sh evaluate -s https://lifecycle.myCompany.com -a ciUser:ciPassword -i WEBAPP target/our-web-app.war
Required:
- URL to the IQ Server to which the scan result should be uploaded
-s, --server-url <http[s]://...>
- Authentication credentials to use for the IQ Server
-a, --authentication <username:password>
- ID of the application on the Lifecycle Server
-i, --application-id <app ID>
Optional:
- The stage to run analysis against. Accepted values: develop | build | stage-release | release | operate. Default: build
-t, --stage <stage>
- Path to a JSON file where the results of the policy evaluation will be stored in a machine-readable format. Default: none
-r, --result-file </path/to/file.json>
- Enable Expanded Coverage analysis. Default: false
-xc, --expanded-coverage
- Fail on policy evaluation warnings. Default: false
-w, --fail-on-policy-warnings
- Ignore system errors (IO, network, server, etc). Default: false
-e, --ignore-system-errors
- Proxy to use. Default: none
-p, --proxy <host[:port]>
- Credentials to use for the proxy. Default: none
-U, --proxy-user <username:password>
- Enable debug logs. WARNING: This may expose sensitive information in the log. Default: false
-X, --debug
- Show the help screen. Default: false
-h, --help