From d00ad9cddcc1b895f64e2ff8f59b562df4d1ebcb Mon Sep 17 00:00:00 2001
From: "Achim H." <hermann.Achim@gmail.com>
Date: Tue, 5 May 2026 14:05:39 +0200
Subject: [PATCH] added trivy scanning

---
 Jenkinsfile                                   |  15 ++++++++++++
 ...erletSourceRootsMapping_MyHelloWorld.Tests | Bin 518 -> 518 bytes
 .../net8.0/MyHelloWorld.Tests.AssemblyInfo.cs |   2 +-
 ...yHelloWorld.Tests.AssemblyInfoInputs.cache |   2 +-
 ....GeneratedMSBuildEditorConfig.editorconfig |   2 +-
 ...yHelloWorld.Tests.csproj.nuget.dgspec.json |  22 +++++++++---------
 MyHelloWorld.Tests/obj/project.assets.json    |  10 ++++----
 MyHelloWorld.Tests/obj/project.nuget.cache    |   4 ++--
 .../obj/SecDevOpsLab.csproj.nuget.dgspec.json |  10 ++++----
 MyHelloWorld/obj/project.nuget.cache          |   4 ++--
 10 files changed, 43 insertions(+), 28 deletions(-)

diff --git a/Jenkinsfile b/Jenkinsfile
index 4f4f42f..5c7812b 100644
--- a/Jenkinsfile
+++ b/Jenkinsfile
@@ -12,6 +12,11 @@ pipeline {
                     command:
                     - cat
                     tty: true
+                  - name: trivy
+                    image: aquasec/trivy:latest
+                    command:
+                    - cat
+                    tty: true    
                 '''
         }
     }
@@ -34,6 +39,16 @@ pipeline {
 				}
 			}	
 		}
+
+        stage('Security: Trivy Scan') {
+            steps {
+                container('trivy') {
+                    // Scannt das Dateisystem auf Schwachstellen (NuGet) und Secrets
+                    // --exit-code 1 lässt die Pipeline bei kritischen Fehlern abbrechen
+                    sh 'trivy fs --exit-code 1 --severity HIGH,CRITICAL .'
+                }
+            }
+        }
 		
 		stage('Unit Tests') {
             steps {
diff --git a/MyHelloWorld.Tests/bin/Debug/net8.0/CoverletSourceRootsMapping_MyHelloWorld.Tests b/MyHelloWorld.Tests/bin/Debug/net8.0/CoverletSourceRootsMapping_MyHelloWorld.Tests
index d33733458b33c1ca414f50274480a98ff3bbf99b..d2332c4cda52d79aeea9a652e1ad3a1f006015c4 100644
GIT binary patch
delta 43
ncmZo;X=7pf|8HW0(qtXRn28Nta27~FYT_Xk5XHjFz{LOnWd04t

delta 59
ycmZo;X=7pj|1WuBqvB*8#=42m6eb^GRGIipg%K(g17k=r+cH4Kq*!<vxEKJFDH4VN

diff --git a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfo.cs b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfo.cs
index 2a7d181..5912f74 100644
--- a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfo.cs
+++ b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfo.cs
@@ -13,7 +13,7 @@ using System.Reflection;
 [assembly: System.Reflection.AssemblyCompanyAttribute("MyHelloWorld.Tests")]
 [assembly: System.Reflection.AssemblyConfigurationAttribute("Debug")]
 [assembly: System.Reflection.AssemblyFileVersionAttribute("1.0.0.0")]
-[assembly: System.Reflection.AssemblyInformationalVersionAttribute("1.0.0+848e51c5555bb6073abd5ea3c0d9542490da8a0b")]
+[assembly: System.Reflection.AssemblyInformationalVersionAttribute("1.0.0+cf992d544c838206c483289f3baa0c85552f7539")]
 [assembly: System.Reflection.AssemblyProductAttribute("MyHelloWorld.Tests")]
 [assembly: System.Reflection.AssemblyTitleAttribute("MyHelloWorld.Tests")]
 [assembly: System.Reflection.AssemblyVersionAttribute("1.0.0.0")]
diff --git a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfoInputs.cache b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfoInputs.cache
index 476ccdb..21712ad 100644
--- a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfoInputs.cache
+++ b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.AssemblyInfoInputs.cache
@@ -1 +1 @@
-43aaa2e5ce5666864645ad9941baede5657c25b7a1005f7aa3f39204eb00354d
+cd7cd6d89224ce4f2141ef3b9a0e34a6e8261f98f03df22fedfa5203ecf39536
diff --git a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.GeneratedMSBuildEditorConfig.editorconfig b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.GeneratedMSBuildEditorConfig.editorconfig
index ead166b..b23e621 100644
--- a/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.GeneratedMSBuildEditorConfig.editorconfig
+++ b/MyHelloWorld.Tests/obj/Debug/net8.0/MyHelloWorld.Tests.GeneratedMSBuildEditorConfig.editorconfig
@@ -8,6 +8,6 @@ build_property.PlatformNeutralAssembly =
 build_property.EnforceExtendedAnalyzerRules = 
 build_property._SupportedPlatformList = Linux,macOS,Windows
 build_property.RootNamespace = MyHelloWorld.Tests
-build_property.ProjectDir = c:\Users\HermanH\SecDevOpsLab\MyHelloWorld.Tests\
+build_property.ProjectDir = C:\Users\HermanH\SecDevOpsLab\MyHelloWorld.Tests\
 build_property.EnableComHosting = 
 build_property.EnableGeneratedComInterfaceComImportInterop = 
diff --git a/MyHelloWorld.Tests/obj/MyHelloWorld.Tests.csproj.nuget.dgspec.json b/MyHelloWorld.Tests/obj/MyHelloWorld.Tests.csproj.nuget.dgspec.json
index 87f7da5..452cbde 100644
--- a/MyHelloWorld.Tests/obj/MyHelloWorld.Tests.csproj.nuget.dgspec.json
+++ b/MyHelloWorld.Tests/obj/MyHelloWorld.Tests.csproj.nuget.dgspec.json
@@ -1,17 +1,17 @@
 {
   "format": 1,
   "restore": {
-    "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj": {}
+    "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj": {}
   },
   "projects": {
-    "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj": {
+    "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj": {
       "version": "1.0.0",
       "restore": {
-        "projectUniqueName": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
+        "projectUniqueName": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
         "projectName": "MyHelloWorld.Tests",
-        "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
+        "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
         "packagesPath": "C:\\Users\\HermanH\\.nuget\\packages\\",
-        "outputPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\obj\\",
+        "outputPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\obj\\",
         "projectStyle": "PackageReference",
         "configFilePaths": [
           "C:\\Users\\HermanH\\AppData\\Roaming\\NuGet\\NuGet.Config"
@@ -26,8 +26,8 @@
           "net8.0": {
             "targetAlias": "net8.0",
             "projectReferences": {
-              "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
-                "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj"
+              "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
+                "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj"
               }
             }
           }
@@ -88,14 +88,14 @@
         }
       }
     },
-    "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
+    "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
       "version": "1.0.0",
       "restore": {
-        "projectUniqueName": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
+        "projectUniqueName": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
         "projectName": "SecDevOpsLab",
-        "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
+        "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
         "packagesPath": "C:\\Users\\HermanH\\.nuget\\packages\\",
-        "outputPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\obj\\",
+        "outputPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\obj\\",
         "projectStyle": "PackageReference",
         "configFilePaths": [
           "C:\\Users\\HermanH\\AppData\\Roaming\\NuGet\\NuGet.Config"
diff --git a/MyHelloWorld.Tests/obj/project.assets.json b/MyHelloWorld.Tests/obj/project.assets.json
index a2a9de1..e85d954 100644
--- a/MyHelloWorld.Tests/obj/project.assets.json
+++ b/MyHelloWorld.Tests/obj/project.assets.json
@@ -5553,11 +5553,11 @@
   "project": {
     "version": "1.0.0",
     "restore": {
-      "projectUniqueName": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
+      "projectUniqueName": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
       "projectName": "MyHelloWorld.Tests",
-      "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
+      "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
       "packagesPath": "C:\\Users\\HermanH\\.nuget\\packages\\",
-      "outputPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\obj\\",
+      "outputPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\obj\\",
       "projectStyle": "PackageReference",
       "configFilePaths": [
         "C:\\Users\\HermanH\\AppData\\Roaming\\NuGet\\NuGet.Config"
@@ -5572,8 +5572,8 @@
         "net8.0": {
           "targetAlias": "net8.0",
           "projectReferences": {
-            "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
-              "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj"
+            "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
+              "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj"
             }
           }
         }
diff --git a/MyHelloWorld.Tests/obj/project.nuget.cache b/MyHelloWorld.Tests/obj/project.nuget.cache
index d4f9ae7..050bc32 100644
--- a/MyHelloWorld.Tests/obj/project.nuget.cache
+++ b/MyHelloWorld.Tests/obj/project.nuget.cache
@@ -1,8 +1,8 @@
 {
   "version": 2,
-  "dgSpecHash": "kD04QkFSt4E=",
+  "dgSpecHash": "cMCqBPi36D8=",
   "success": true,
-  "projectFilePath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
+  "projectFilePath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld.Tests\\MyHelloWorld.Tests.csproj",
   "expectedPackageFiles": [
     "C:\\Users\\HermanH\\.nuget\\packages\\coverlet.collector\\6.0.0\\coverlet.collector.6.0.0.nupkg.sha512",
     "C:\\Users\\HermanH\\.nuget\\packages\\junitxml.testlogger\\8.0.0\\junitxml.testlogger.8.0.0.nupkg.sha512",
diff --git a/MyHelloWorld/obj/SecDevOpsLab.csproj.nuget.dgspec.json b/MyHelloWorld/obj/SecDevOpsLab.csproj.nuget.dgspec.json
index 44fe627..a6555ec 100644
--- a/MyHelloWorld/obj/SecDevOpsLab.csproj.nuget.dgspec.json
+++ b/MyHelloWorld/obj/SecDevOpsLab.csproj.nuget.dgspec.json
@@ -1,17 +1,17 @@
 {
   "format": 1,
   "restore": {
-    "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {}
+    "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {}
   },
   "projects": {
-    "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
+    "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj": {
       "version": "1.0.0",
       "restore": {
-        "projectUniqueName": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
+        "projectUniqueName": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
         "projectName": "SecDevOpsLab",
-        "projectPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
+        "projectPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
         "packagesPath": "C:\\Users\\HermanH\\.nuget\\packages\\",
-        "outputPath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\obj\\",
+        "outputPath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\obj\\",
         "projectStyle": "PackageReference",
         "configFilePaths": [
           "C:\\Users\\HermanH\\AppData\\Roaming\\NuGet\\NuGet.Config"
diff --git a/MyHelloWorld/obj/project.nuget.cache b/MyHelloWorld/obj/project.nuget.cache
index 5ffe434..fd0c057 100644
--- a/MyHelloWorld/obj/project.nuget.cache
+++ b/MyHelloWorld/obj/project.nuget.cache
@@ -1,8 +1,8 @@
 {
   "version": 2,
-  "dgSpecHash": "uoyT75+QbkQ=",
+  "dgSpecHash": "WtqJwqDQoLM=",
   "success": true,
-  "projectFilePath": "c:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
+  "projectFilePath": "C:\\Users\\HermanH\\SecDevOpsLab\\MyHelloWorld\\SecDevOpsLab.csproj",
   "expectedPackageFiles": [],
   "logs": []
 }
\ No newline at end of file