NexusIQ scan for Android

vinaykumarbhandari · 2019-01-21 16:22:49 UTC

Hi,

We’re using Nexus Platform Plugin in Jenkins to carry out Android scan vulnerabilities.
I’m looking for how NexusIq will be scanning Android application?
I tried to apply the parameter scanPattern as [*.apk] file, but it is not get scanning.

e.g We’re executing following pipeline script in Jenkins

nexusPolicyEvaluation iqApplication: ‘ApplicationID’, iqStage: ‘build’, iqScanPatterns: [scanPattern: ‘**/*.apk’]

Any thoughts?

nickcook · 2019-01-24 00:10:13 UTC

Hi,

Check out this post from @fcremer for information about scanning Android with IQ server.

vinaykumarbhandari · 2019-02-06 13:50:56 UTC

Thanks for the workaround. It works.
We are able to scan the Android vulnerabilities

Any thoughts, if it available with Nexus Platform Plugin itself?