While checking a reference project (file-parameter-plugin <https://github.com/jenkinsci/file-parameters-plugin>) for proper CD setup, I have seen that the repository is flagged as " *jenkins-security-scan-enabled*". I understand, but maybe being just naive, that some sort of static security analysis is enabled.
I didn't see anything in the reference project or in the documentation. Any hints where to look for more info, how to enable it, and handle the output (experience has taught me that it can be quite overwhelming)? Is this a recommendation when "modernizing/refreshing" a plugin? Or is it still experimental? /- Jmm -- You received this message because you are subscribed to the Google Groups "Jenkins Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/CABLvyXxsFtawr%2BOBiX26ppvxv9ZZStYA0J0Uz2rxqJ%3DJFKn5ug%40mail.gmail.com.
