This Jenkins plugin enables integrate Wiz CLI to detect sensitive data, secrets, misconfigurations, and vulnerabilities in container images, directories and IaC files.
To configure this plugin, you will need to generate service account, follow the documentation here.
To configure this plugin, you will need to copy Wiz CLI URL according to the OS, follow the documentation here.
Once the Wiz service account is created in your Wiz account and Wiz CLI URL copied, you will need to provide your Wiz Client ID, Secret Key and Wiz CLI Docker image in order to configure the Jenkins plugin. To configure, navigate to "Manage Jenkins" -> "System", then scroll to the "WIZ" section. Input the Wiz Client ID, Secret Key and Wiz CLI Docker image into the appropriate fields, then click Save.
Note! If you access Wiz from gov.wiz.io or app.wiz.us, you must configure the Wiz Environment field: gov OR fedramp
📷 Show Preview
Once the global configuration is complete, you can add the Wiz Scanner build step to your pipelines. Provide full custom command-line arguments.
📷 Show Preview
Once the Wiz Scanner build step is added, it will produce a Wiz Scanner result page.
To contribute to this repository, please review the CONTRIBUTING file.
Also, please refer to the Jenkins contribution guidelines
Licensed under MIT, see LICENSE