From 7e81937fd276fa13b693a6294960941ba16f39c4 Mon Sep 17 00:00:00 2001
From: Tobias Trabelsi
 <64127335+tobias-trabelsi-sonarsource@users.noreply.github.com>
Date: Tue, 8 Feb 2022 14:48:09 +0100
Subject: [PATCH] BUILD-1347 added whitesource scan

---
 .cirrus.yml              | 27 +++++++++++++++++++++++++++
 wss-unified-agent.config | 25 +++++++++++++++++++++++++
 2 files changed, 52 insertions(+)
 create mode 100644 wss-unified-agent.config

diff --git a/.cirrus.yml b/.cirrus.yml
index 6c2c3cd1186..267ff46c331 100644
--- a/.cirrus.yml
+++ b/.cirrus.yml
@@ -478,3 +478,30 @@ upgd_oracle12_task:
     - ./private/cirrus/cirrus-qa.sh oracle12
   on_failure:
     <<: *REPORTS_JUNIT_ON_FAILURE_TEMPLATE
+
+ws_scan_task:
+  only_if: >-
+    $CIRRUS_CRON == "nightly" ||
+    $CIRRUS_CRON == "weekly-latest" ||
+    $CIRRUS_CRON == "weekly-lts" ||
+    changesInclude('private/cirrus/cirrus-whitesource-scan.sh')
+  depends_on: build
+  timeout_in: 30m
+  gke_container:
+    <<: *GKE_CONTAINER_TEMPLATE
+    cpu: 2
+    memory: 4Gb
+  env:
+    WS_APIKEY: ENCRYPTED[308f809a4051b3225bed52131b32fb52895bc5a12c23e901f35b1d1e9d80bcaf75a1023c0dd171994bdbe790b4055e66]
+    WS_WSS_URL: "https://saas-eu.whitesourcesoftware.com/agent"
+    WS_USERKEY: ENCRYPTED[747f9c9006cf9859fd5f02bad85a044c5c0f32d12190deb624d480ad6d86b2f114da136e068645281e9e83e2f0727ab2]
+    SLACK_WEBHOOK_SQ: ENCRYPTED[dec8e4350cbea3b94d63098558bcb3ae9e79b71c2b6286fcfb9eb80c0953b6448b10f7271b07b5e75e52f362c25d7a8f]
+  whitesource_script:
+    - ./private/cirrus/cirrus-whitesource-scan.sh
+  allow_failures: "true"
+  on_failure:
+    slack_notification_script:
+      - ./private/cirrus/cirrus-whitesource-notifications.sh
+  always:
+    ws_artifacts:
+      path: "whitesource/**/*"
diff --git a/wss-unified-agent.config b/wss-unified-agent.config
new file mode 100644
index 00000000000..2ec6d0e3bc7
--- /dev/null
+++ b/wss-unified-agent.config
@@ -0,0 +1,25 @@
+# WhiteSource documentation https://whitesource.atlassian.net/wiki/spaces/WD/pages/1544880156/Unified+Agent+Configuration+Parameters
+
+excludes=**/*it-* **/*test*
+includes=**/*.java **/*.js **/*.ts
+fileSystemScan=False
+
+gradle.resolveDependencies=True
+gradle.aggregateModules=True
+gradle.preferredEnvironment=wrapper
+gradle.innerModulesAsDependencies=True
+gradle.ignoredConfigurations=.*it.*
+gradle.excludeModules=.*it.*
+
+npm.includeDevDependencies=False
+npm.resolveDependencies=True
+npm.resolveLockFile=False
+npm.runPreStep=False
+npm.yarnProject=True
+
+case.sensitive.glob=false
+archiveIncludes=**/*.jar
+
+forceUpdate=true
+checkPolicies=true
+forceUpdate.failBuildOnPolicyViolation=true
-- 
2.39.5