ADDED License scan stage to occur pre-commit in Jenkins

Signed-off-by: Zuhayr Elahi <[email protected]>

Author: zelahi

Jenkinsfile

@@ -35,6 +35,23 @@ pipeline {
                         }
                     }
                 }
+                stage("License Scan") {
+                    environment {
+                        FOSSA_API_KEY=credentials('cb07b147-32a4-4400-aaac-21c3f8c9e62e')
+                    }
+                    agent {
+                        label 'ubuntu-1604-aufs-edge'
+                    }
+                    steps {
+                        dir('src/github.com/docker/app') {
+                            checkout scm
+                            ansiColor(xterm) {
+                                sh "BRANCH_NAME='${BRANCH_NAME}' make fossa-analyze"
+                                sh 'make fossa-test'
+                            }
+                        }
+                    }
+                }
                 stage("Binaries"){
                     agent {
                         label 'ubuntu-1604-aufs-edge'

Makefile

@@ -111,6 +111,19 @@ coverage: coverage-test-unit coverage-test-e2e ## run tests with coverage
 	go tool cover -func _build/cov/all.out
 	go tool cover -html _build/cov/all.out -o _build/cov/coverage.html
 
+fossa-analyze:
+	docker run -i --rm -e FOSSA_API_KEY=$(FOSSA_API_KEY) \
+		-e GO111MODULE=off \
+		-v $(CURDIR)/$*:/go/src/github.com/docker/app \
+		-w /go/src/github.com/docker/app \
+		$(BUILD_ANALYZER) analyze $(FOSSA_OPTS) --branch $(BRANCH_NAME)
+
+fossa-test:
+	docker run -i --rm -e FOSSA_API_KEY=$(FOSSA_API_KEY) \
+	-v $(CURDIR)/$*:/go/src/github.com/docker/app \
+	-w /go/src/github.com/docker/app \
+	$(BUILD_ANALYZER) test --debug
+
 clean: ## clean build artifacts
 	$(call rmdir,bin)
 	$(call rmdir,_build)

vars.mk

@@ -3,6 +3,10 @@ BIN_NAME ?= docker-app
 BIN_STANDALONE_NAME := ${BIN_NAME}-standalone
 E2E_NAME := $(BIN_NAME)-e2e
 
+# Variables for fossa scan
+BUILD_ANALYZER?=dockereng/fossa-analyzer
+FOSSA_OPTS?=--option all-tags:true --option allow-unresolved:true
+
 # Enable experimental features. "on" or "off"
 EXPERIMENTAL := off