Merge "Add CIS benchmark trigger"

commit: 433922d420a4c9ba4578d0dc46bfdc4006ab5009 [log] [tgz]
author: Sergey Lalov <slalov@mirantis.com> Tue Aug 12 18:13:43 2025 +0000
committer: Gerrit Code Review <gerrit@172.18.228.132> Tue Aug 12 18:13:43 2025 +0000
tree: 022529bb7304a1666655202ded343475f8f4d7f3
parent: 4636402f2dfb3a1d9bf60de0151716ad01032750 [diff]
parent: b251f75d7440f527d8a924670ed2781d6ce31103 [diff]
diff --git a/src/com/mirantis/mk/KaasUtils.groovy b/src/com/mirantis/mk/KaasUtils.groovy
index 4ebaa59..85599e9 100644
--- a/src/com/mirantis/mk/KaasUtils.groovy
+++ b/src/com/mirantis/mk/KaasUtils.groovy

@@ -133,6 +133,7 @@
     def enableBv2Smoke = true
     def runCacheWarmup = env.CACHE_WARMUP_ENABLED ? env.CACHE_WARMUP_ENABLED.toBoolean() : false
     def cveScan = false
+    def cisBenchmark = env.RUN_NESSUS_SCAN ? env.RUN_NESSUS_SCAN.toBoolean() : false
     // Sync to public CDN is triggered automatically for corresponding scenarios
     // This trigger is used only for on-demand cases
     def publicCISync = false
@@ -354,6 +355,10 @@
         airGapped = true
     }
 
+    if (commitMsg ==~ /(?s).*\[nessus-scan\].*/ || env.GERRIT_EVENT_COMMENT_TEXT ==~ /(?s).*nessus-scan\\.*/) {
+        cisBenchmark = true
+    }
+
     if (commitMsg ==~ /(?s).*\[airgap-cdn-(eu|us|public-ci)\].*/) {
         def parsedStr = commitMsg =~ /\[airgap-cdn-(eu|us|public-ci)\]/
         switch (parsedStr[0][1]) {
@@ -641,6 +646,7 @@
         Child Upgrade via update plan with sequental steps enabled: ${upgradeChildPlanSeq}
         Child Upgrade via update plan with bulk steps enabled: ${upgradeChildPlanBulk}
         Runtime restart checker for child upgrade enabled: ${upgradeRestartChecker}
+        Start Nessus scan: ${cisBenchmark}
         Triggers: https://gerrit.mcp.mirantis.com/plugins/gitiles/kaas/core/+/refs/heads/master/hack/ci-gerrit-keywords.md""")
     return [
         osCloudLocation                          : openstackIMC,
@@ -719,6 +725,7 @@
         upgradeChildPlanSeqEnabled               : upgradeChildPlanSeq,
         upgradeChildPlanBulkEnabled              : upgradeChildPlanBulk,
         upgradeRestartCheckerEnabled             : upgradeRestartChecker,
+        cisBenchmark                             : cisBenchmark,
     ]
 }
 
@@ -990,6 +997,7 @@
         booleanParam(name: 'UPGRADE_CHILD_PLAN_SEQ', value: triggers.upgradeChildPlanSeqEnabled),
         booleanParam(name: 'UPGRADE_CHILD_PLAN_BULK', value: triggers.upgradeChildPlanBulkEnabled),
         booleanParam(name: 'ENABLE_RESTART_CHECKER_FOR_CHILD_UPGRADE', value: triggers.upgradeRestartCheckerEnabled),
+        booleanParam(name: 'RUN_NESSUS_SCAN', value: triggers.cisBenchmark),
     ]
 
     // Determine component team custom context
commit	433922d420a4c9ba4578d0dc46bfdc4006ab5009	[log] [tgz]
author	Sergey Lalov <slalov@mirantis.com>	Tue Aug 12 18:13:43 2025 +0000
committer	Gerrit Code Review <gerrit@172.18.228.132>	Tue Aug 12 18:13:43 2025 +0000
tree	022529bb7304a1666655202ded343475f8f4d7f3
parent	4636402f2dfb3a1d9bf60de0151716ad01032750 [diff]
parent	b251f75d7440f527d8a924670ed2781d6ce31103 [diff]