BUILD-1347 added whitesource scan

.cirrus.yml

@@ -644,3 +644,32 @@ owasp_check_task:
   always:
     reports_artifacts:
       path: "build/reports/*"
+
+ws_scan_task:
+  only_if: >-
+    $CIRRUS_CRON == "nightly" ||
+    $CIRRUS_CRON == "weekly-latest" ||
+    $CIRRUS_CRON == "weekly-lts" ||
+    changesInclude('private/cirrus/cirrus-whitesource-scan.sh')
+  <<: *YARN_CACHE_TEMPLATE
+  <<: *GRADLE_CACHE_TEMPLATE
+  depends_on: build
+  timeout_in: 30m
+  gke_container:
+    <<: *GKE_CONTAINER_TEMPLATE
+    cpu: 2
+    memory: 4Gb
+    SLACK_WEBHOOK_SQ: ENCRYPTED[dec8e4350cbea3b94d63098558bcb3ae9e79b71c2b6286fcfb9eb80c0953b6448b10f7271b07b5e75e52f362c25d7a8f]
+  env:
+    WS_APIKEY: ENCRYPTED[308f809a4051b3225bed52131b32fb52895bc5a12c23e901f35b1d1e9d80bcaf75a1023c0dd171994bdbe790b4055e66]
+    WS_WSS_URL: "https://saas-eu.whitesourcesoftware.com/agent"
+    WS_USERKEY: ENCRYPTED[747f9c9006cf9859fd5f02bad85a044c5c0f32d12190deb624d480ad6d86b2f114da136e068645281e9e83e2f0727ab2]
+  whitesource_script:
+    - ./private/cirrus/cirrus-whitesource-scan.sh
+  allow_failures: "true"
+  on_failure:
+    slack_notification_script:
+      - ./private/cirrus/cirrus-whitesource-notifications.sh
+  always:
+    ws_artifacts:
+      path: "whitesource/**/*"

wss-unified-agent.config

@@ -0,0 +1,25 @@
+# WhiteSource documentation https://whitesource.atlassian.net/wiki/spaces/WD/pages/1544880156/Unified+Agent+Configuration+Parameters
+
+excludes=**/*it-* **/*test*
+includes=**/*.java **/*.js **/*.ts
+fileSystemScan=False
+
+gradle.resolveDependencies=True
+gradle.aggregateModules=True
+gradle.preferredEnvironment=wrapper
+gradle.innerModulesAsDependencies=True
+gradle.ignoredConfigurations=.*it.*
+gradle.excludeModules=.*it.*
+
+npm.includeDevDependencies=False
+npm.resolveDependencies=True
+npm.resolveLockFile=False
+npm.runPreStep=False
+npm.yarnProject=True
+
+case.sensitive.glob=false
+archiveIncludes=**/*.jar
+
+forceUpdate=true
+checkPolicies=true
+forceUpdate.failBuildOnPolicyViolation=true