This Jenkins plugin enables integrate Wiz CLI to detect sensitive data, secrets, misconfigurations, and vulnerabilities in container images, directories and IaC files.

• Access as an admin to your Jenkins account.

1. Locate the Wiz CLI link relevant to your OShere and store it in a safe place for future use. For example, the Wiz CLI download URL for Linux (AMD64) ishttps://downloads.wiz.io/wizcli/latest/wizcli-linux-amd64.
2. In Wiz, generate a service account byfollowing these steps.
3. Log in to your Jenkins account.
4. Navigate to Manage Jenkins and click Plugins.
5. On the right menu, click Available plugins and search for "Wiz Scanner" using the top search bar.
6. Choose the Wiz Scanner and click Install on the top right.
7. Navigate to Manage Jenkins > System and scroll down to the Wiz section.
8. Fill in the Client ID, Secret Key (aka Client Secret), and Wiz CLI link that were previously collected.
9. (GovCloud/FedRAMP tenants only) Fill in the relevant environment variable.Find your environment variable here.
10. Click Save.
11. Depending on the type of job, follow these steps:

1. On the dashboard, locate a freestyle job and select it.
2. On the left side menu, navigate to Configure > Build Steps.
3. Click Add Build Step and select Wiz Scanner.
4. Insert a Wiz CLI command (without the wizcli argument).See the Use Wiz CLI page to learn how to build commands.

1. On the dashboard, locate a pipeline job and select it
2. On the left side menu, navigate to Configure > Pipeline.
3. Ensure the Definition is set to Pipeline script.
4. In the Script section, insert a Wiz CLI command (including the wizcli argument).See the Use Wiz CLI page to learn how to build commands.

Run the job by clicking Build Now. When the build completes, scan results can be viewed under theWiz Scanner tab.

To contribute to this repository, please review theCONTRIBUTING file.

Also, please refer to the Jenkinscontribution guidelines

Licensed under MIT, seeLICENSE