The administrator must be able to choose if the vulnerabilities returned by checkmarx can be visibles or not on Jenkins.
For now, we only patched the plugin to not generate reports :
I purpose to add an option on the global configuration of the plugin to block all checkmarx reports generation on Jenkins.
With this option enabled, the plugin will just run a analysis and get the status.
To see the full details of the analysis, the user must have the rights to connect to checkmarx.
- Jenkins 2.204.1
- checkmarx-plugin 8.90.4