mirror
/
mongo
mirror of https://github.com/mongodb/mongo
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

SERVER-111140: use authenticated Jira client for SAST report generation (#41583) 

GitOrigin-RevId: 55aa72fc82717d3313d7b643b5d16bdb50281d03
This commit is contained in:
Evan Fetsko 2025-09-19 13:35:11 -04:00 committed by MongoDB Bot
parent bc0010bd6c
commit 2047058807
2 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
etc/evergreen_yml_components/tasks/release_tasks.yml
View File

@ -21,6 +21,10 @@ tasks:
binary: "${workdir}/src/evergreen/write_sast_report_env_file.sh" binary: "${workdir}/src/evergreen/write_sast_report_env_file.sh"
env: env:
WORK_DIR: ${workdir} WORK_DIR: ${workdir}
JIRA_OAUTH_ACCESS_TOKEN: ${jira_auth_access_token}
JIRA_OAUTH_ACCESS_TOKEN_SECRET: ${jira_auth_access_token_secret}
JIRA_OAUTH_CONSUMER_KEY: ${jira_auth_consumer_key}
JIRA_OAUTH_KEY_CERT: ${jira_auth_key_cert}
SAST_REPORT_COVERITY_USERNAME: ${SAST_REPORT_COVERITY_USERNAME} SAST_REPORT_COVERITY_USERNAME: ${SAST_REPORT_COVERITY_USERNAME}
SAST_REPORT_COVERITY_PASSWORD: ${SAST_REPORT_COVERITY_PASSWORD} SAST_REPORT_COVERITY_PASSWORD: ${SAST_REPORT_COVERITY_PASSWORD}
SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID: ${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID} SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID: ${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID}

14
evergreen/write_sast_report_env_file.sh
View File

@ -1,9 +1,13 @@
#!/bin/env bash #!/bin/env bash
cat <<EOF >${WORK_DIR}/sast_report_generation_credentials.env cat <<EOF >${WORK_DIR}/sast_report_generation_credentials.env
COVERITY_USERNAME=${SAST_REPORT_COVERITY_USERNAME} COVERITY_USERNAME="${SAST_REPORT_COVERITY_USERNAME}"
COVERITY_PASSWORD=${SAST_REPORT_COVERITY_PASSWORD} COVERITY_PASSWORD="${SAST_REPORT_COVERITY_PASSWORD}"
GOOGLE_CLIENT_ID=${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID} GOOGLE_CLIENT_ID="${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_ID}"
GOOGLE_CLIENT_REFRESH_TOKEN=${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_REFRESH_TOKEN} GOOGLE_CLIENT_REFRESH_TOKEN="${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_REFRESH_TOKEN}"
GOOGLE_CLIENT_SECRET=${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_SECRET} GOOGLE_CLIENT_SECRET="${SAST_REPORT_UPLOAD_GOOGLE_CLIENT_SECRET}"
JIRA_OAUTH_ACCESS_TOKEN="${JIRA_OAUTH_ACCESS_TOKEN}"
JIRA_OAUTH_ACCESS_TOKEN_SECRET="${JIRA_OAUTH_ACCESS_TOKEN_SECRET}"
JIRA_OAUTH_CONSUMER_KEY="${JIRA_OAUTH_CONSUMER_KEY}"
JIRA_OAUTH_KEY_CERT="${JIRA_OAUTH_KEY_CERT}"
EOF EOF