From 6e9fbe44c402022288c60a12f0505dd4df88826a Mon Sep 17 00:00:00 2001
From: dongho <dongho@ekstrah.com>
Date: Wed, 10 Dec 2025 15:52:41 +0000
Subject: [PATCH] update

---
 Jenkinsfile | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 Jenkinsfile

diff --git a/Jenkinsfile b/Jenkinsfile
new file mode 100644
index 0000000..85af871
--- /dev/null
+++ b/Jenkinsfile
@@ -0,0 +1,25 @@
+pipeline {
+    agent any
+
+    stages {
+        stage('Security Scan') {
+            steps {
+                withCredentials([string(credentialsId: 'nvd-api-key', variable: 'NVD_API_KEY')]) {
+                    // Run OWASP Dependency Check using the specific installation configured in Jenkins
+                    // Using NVD API Key to avoid rate limiting
+                    dependencyCheck additionalArguments: "--scan ./ --format ALL --nvdApiKey ${NVD_API_KEY}", odcInstallation: 'depcheck'
+                }
+            }
+        }
+    }
+
+    post {
+        always {
+            // Publish the results
+            dependencyCheckPublisher pattern: 'dependency-check-report.xml'
+            
+            // Archive the reports
+            archiveArtifacts allowEmptyArchive: true, artifacts: 'dependency-check-report.html'
+        }
+    }
+}