neuvector
diff --git a/‎.gitignore‎
Lines changed: 6 additions & 0 deletions b/‎.gitignore‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎LICENSE‎
Lines changed: 2 additions & 12 deletions b/‎LICENSE‎
Lines changed: 2 additions & 12 deletions
diff --git a/‎README.md‎
Lines changed: 74 additions & 0 deletions b/‎README.md‎
Lines changed: 74 additions & 0 deletions
diff --git a/‎pom.xml‎
Lines changed: 179 additions & 0 deletions b/‎pom.xml‎
Lines changed: 179 additions & 0 deletions
diff --git a/‎src/main/java/neuvector/AdminConfigUtil.java‎
Lines changed: 17 additions & 0 deletions b/‎src/main/java/neuvector/AdminConfigUtil.java‎
Lines changed: 17 additions & 0 deletions
@@ -21,3 +21,9 @@
 
 # virtual machine crash logs, see http://www.java.com/en/download/help/error_hotspot.xml
 hs_err_pid*
+
+.DS_Store
+target
+
+.DS_Store
+target
@@ -175,18 +175,7 @@
 
    END OF TERMS AND CONDITIONS
 
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
+   Copyright 2019 NeuVector, Inc.
 
    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.
@@ -199,3 +188,4 @@
    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    See the License for the specific language governing permissions and
    limitations under the License.
+
@@ -0,0 +1,74 @@
+# Bamboo plugin
+- [Work flow](#work-flow)
+- [Env setup](#env-setup)
+  - [Prerequest](#prerequest)
+  - [Server setup](#server-setup)
+  - [Plugin setup](#plugin-setup)
+  - [How to run the plugin](#how-to-run-the-plugin)
+- [Trouble shooting](#trouble-shooting)
+- [Build from source](#build-from-source)
+- [Reference](#reference)
+
+# Work flow
+![CI-plugin drawio](https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/a248014b-a562-45f5-ac92-a52c24091f3e)
+
+
+# Env setup
+## Prerequest
+- [Install the Atlassian SDK on a Linux or Mac system](https://developer.atlassian.com/server/framework/atlassian-sdk/install-the-atlassian-sdk-on-a-linux-or-mac-system/#install-the-atlassian-sdk-on-a-linux-or-mac-system)
+
+## Server setup
+1. Start a bamboo server (bamboo server or you have your own)
+    - Simply run `atlas-create-bamboo-plugin` in terminal.
+    - Then `atlas-run`
+2. Go to Manage App, install it with .obr file
+<img width="1133" alt="Screen Shot 2024-03-15 at 4 57 46 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/88bc2066-445f-4e60-9205-9a4423abee52">
+
+
+## Plugin setup
+1. Go to Neuvector Section
+<img width="769" alt="Screen Shot 2024-03-15 at 5 06 28 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/65bfa246-c10c-4387-8966-8a983f2bf1e2">
+
+2. Setup the env based on your need.
+<img width="1333" alt="Screen Shot 2024-03-15 at 5 09 32 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/355ee0eb-a193-4017-8a86-4e81dbbd276a">
+
+
+2. [Create a Project](https://www.youtube.com/watch?v=7KuNy9CD1lA&t=7s) and set up tasks.
+3. Set up the task based on your need
+    - Set up the fail / exempt, write in format like **CVE-2021-23840**
+    - Click X can dynamically delete the CVE
+    <img width="1333" alt="Screen Shot 2024-03-15 at 5 09 32 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/2e7e5552-c80e-48b6-96d5-53b869d931bb">
+
+
+4. Create artifact in task, must create or you have no such report
+<img width="1944" alt="Screen Shot 2024-03-20 at 12 03 59 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/8ac4316a-482d-468f-9633-6824ce8cd638">
+
+
+
+
+## How to run the plugin
+- Click run.
+- When finish, we will have two files (you can click to download)
+    - Html
+    - Json
+    - Txt
+  <img width="1018" alt="Screen Shot 2024-03-20 at 12 03 44 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/cc73964f-78d8-49ba-86dc-872db66984f8">
+
+
+
+# Trouble shooting
+1. buildLogger.addBuildLogEntry() shows in console of the task.
+<img width="1326" alt="Screen Shot 2024-03-15 at 5 13 23 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/19978663-0bd8-4801-992d-95bcbc35a881">
+
+
+2. System.out.println() shows in bamboo server, where your run `atlas-run`
+<img width="1186" alt="Screen Shot 2024-03-15 at 5 12 15 PM" src="https://github.com/pohanhuangtw/bamboo-plugin/assets/145627854/c8537949-8ae4-42f5-8a76-9029e5dde9ae">
+
+
+
+# Build from source
+`atlas-clean && atlas-mvn package` can generate the .obr / .jar
+
+# Reference
+1. [Create a HelloWorld plugin project](https://developer.atlassian.com/server/framework/atlassian-sdk/create-a-helloworld-plugin-project/#create-a-helloworld-plugin-project)
+2. [Bamboo Tutorial](https://www.youtube.com/watch?v=7KuNy9CD1lA&t=7s)
@@ -0,0 +1,179 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+
+    <modelVersion>4.0.0</modelVersion>
+    <groupId>neuvector</groupId>
+    <artifactId>neuvector</artifactId>
+    <version>1.0.2-SNAPSHOT</version>
+
+    <organization>
+        <name>NeuVector</name>
+        <url>https://www.neuvector.com/</url>
+    </organization>
+
+    <name>NeuVector</name>
+    <description>This is the NeuVector image scanner plugin for Atlassian Bamboo.</description>
+    <packaging>atlassian-plugin</packaging>
+
+    <properties>
+        <bamboo.version>8.0.0</bamboo.version>
+        <bamboo.data.version>${bamboo.version}</bamboo.data.version>
+        <amps.version>8.0.2</amps.version>
+        <plugin.testrunner.version>2.0.1</plugin.testrunner.version>
+        <atlassian.spring.scanner.version>1.2.13</atlassian.spring.scanner.version>
+        <!-- This property ensures consistency between the key in atlassian-plugin.xml and the OSGi bundle's key. -->
+        <atlassian.plugin.key>${project.groupId}.${project.artifactId}</atlassian.plugin.key>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <maven.compiler.source>1.8</maven.compiler.source>
+        <maven.compiler.target>1.8</maven.compiler.target>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>com.atlassian.bamboo</groupId>
+            <artifactId>atlassian-bamboo-web</artifactId>
+            <version>${bamboo.version}</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>com.atlassian.plugin</groupId>
+            <artifactId>atlassian-spring-scanner-annotation</artifactId>
+            <version>${atlassian.spring.scanner.version}</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>javax.inject</groupId>
+            <artifactId>javax.inject</artifactId>
+            <version>1</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.httpcomponents</groupId>
+            <artifactId>httpclient</artifactId>
+            <version>4.5.14</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>junit</groupId>
+            <artifactId>junit</artifactId>
+            <version>4.10</version>
+            <scope>test</scope>
+        </dependency>
+        <!-- DEPENDENCIES TO AVOID LOADER CONFLICT-->
+        <dependency>
+            <groupId>org.slf4j</groupId>
+            <artifactId>slf4j-api</artifactId>
+            <version>1.7.30</version>
+            <scope>provided</scope>
+        </dependency>
+        <!-- WIRED TEST RUNNER DEPENDENCIES -->
+        <dependency>
+            <groupId>com.atlassian.plugins</groupId>
+            <artifactId>atlassian-plugins-osgi-testrunner</artifactId>
+            <version>${plugin.testrunner.version}</version>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>javax.ws.rs</groupId>
+            <artifactId>jsr311-api</artifactId>
+            <version>1.1.1</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>com.google.code.gson</groupId>
+            <artifactId>gson</artifactId>
+            <version>2.10.1</version>
+        </dependency>
+        <dependency>
+            <groupId>com.github.docker-java</groupId>
+            <artifactId>docker-java-core</artifactId>
+            <version>3.2.12</version>
+        </dependency>
+        <dependency>
+            <groupId>com.github.docker-java</groupId>
+            <artifactId>docker-java-transport-httpclient5</artifactId>
+            <version>3.2.12</version>
+        </dependency>
+        <dependency>
+            <groupId>commons-io</groupId>
+            <artifactId>commons-io</artifactId>
+            <version>2.6</version> <!-- Make sure this matches across compile and runtime environments -->
+        </dependency>
+    </dependencies>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>com.atlassian.maven.plugins</groupId>
+                <artifactId>bamboo-maven-plugin</artifactId>
+                <version>${amps.version}</version>
+                <extensions>true</extensions>
+                <configuration>
+                    <productVersion>${bamboo.version}</productVersion>
+                    <productDataVersion>${bamboo.data.version}</productDataVersion>
+                    <enableQuickReload>true</enableQuickReload>
+
+                    <!-- See here for an explanation of default instructions: -->
+                    <!-- https://developer.atlassian.com/docs/advanced-topics/configuration-of-instructions-in-atlassian-plugins -->
+                    <instructions>
+                        <Atlassian-Plugin-Key>${atlassian.plugin.key}</Atlassian-Plugin-Key>
+
+                        <!-- Add package to export here -->
+                        <Export-Package>
+                            neuvector.api,
+                        </Export-Package>
+
+                        <!-- Add package import here -->
+                        <Import-Package>
+                            org.springframework.osgi.*;resolution:="optional",
+                            org.eclipse.gemini.blueprint.*;resolution:="optional",
+                            *;version="0";resolution:="optional"
+                        </Import-Package>
+
+                        <!-- Ensure plugin is spring powered -->
+                        <Spring-Context>*</Spring-Context>
+                    </instructions>
+                </configuration>
+            </plugin>
+
+            <plugin>
+                <groupId>com.atlassian.plugin</groupId>
+                <artifactId>atlassian-spring-scanner-maven-plugin</artifactId>
+                <version>${atlassian.spring.scanner.version}</version>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>atlassian-spring-scanner</goal>
+                        </goals>
+                        <phase>process-classes</phase>
+                    </execution>
+                </executions>
+                <configuration>
+                    <scannedDependencies>
+                        <dependency>
+                            <groupId>com.atlassian.plugin</groupId>
+                            <artifactId>atlassian-spring-scanner-external-jar</artifactId>
+                        </dependency>
+                    </scannedDependencies>
+                    <verbose>false</verbose>
+                </configuration>
+            </plugin>
+        </plugins>
+    </build>
+
+<repositories>
+    <repository>
+        <id>atlassian-public</id>
+        <url>https://packages.atlassian.com/maven/repository/public/</url>
+        <releases>
+            <enabled>true</enabled>
+        </releases>
+        <snapshots>
+            <enabled>true</enabled>
+        </snapshots>
+    </repository>
+</repositories>
+
+</project>
@@ -0,0 +1,17 @@
+package neuvector;
+
+import com.atlassian.spring.container.ContainerManager;
+import com.atlassian.bamboo.configuration.AdministrationConfiguration;
+import org.apache.commons.lang.StringUtils;
+
+public abstract class AdminConfigUtil
+{
+    private static AdministrationConfiguration adminConfig;
+    
+    public static String getAdminConfig(final String key) {
+        if (AdminConfigUtil.adminConfig == null) {
+            AdminConfigUtil.adminConfig = (AdministrationConfiguration) ContainerManager.getComponent("administrationConfiguration");
+        }
+        return StringUtils.defaultString(AdminConfigUtil.adminConfig.getSystemProperty(key));
+    }
+}