commit b251f75d7440f527d8a924670ed2781d6ce31103
author piudin <piudin@mirantis.com> Mon Aug 04 12:30:48 2025 +0400
committer piudin <piudin@mirantis.com> Mon Aug 04 12:34:10 2025 +0400
tree 27fb087ffca66fd16317be21839c87c00dd7a67a
parent 753b2c8dced70096448e174cf264d714ab20ff5e

Add CIS benchmark trigger

Task: PRODX-53892
Change-Id: I3600e0f0119e5a5bc24e0abd3f104cb359cc27a0

src/com/mirantis/mk/KaasUtils.groovy

diff --git a/src/com/mirantis/mk/KaasUtils.groovy b/src/com/mirantis/mk/KaasUtils.groovy
index 1d6b714..6b6298a 100644
--- a/src/com/mirantis/mk/KaasUtils.groovy
+++ b/src/com/mirantis/mk/KaasUtils.groovy
@@ -133,6 +133,7 @@
     def enableBv2Smoke = true
     def runCacheWarmup = env.CACHE_WARMUP_ENABLED ? env.CACHE_WARMUP_ENABLED.toBoolean() : false
     def cveScan = false
+    def cisBenchmark = env.RUN_NESSUS_SCAN ? env.RUN_NESSUS_SCAN.toBoolean() : false
     // Sync to public CDN is triggered automatically for corresponding scenarios
     // This trigger is used only for on-demand cases
     def publicCISync = false
@@ -350,6 +351,10 @@
         airGapped = true
     }
 
+    if (commitMsg ==~ /(?s).*\[nessus-scan\].*/ || env.GERRIT_EVENT_COMMENT_TEXT ==~ /(?s).*nessus-scan\\.*/) {
+        cisBenchmark = true
+    }
+
     if (commitMsg ==~ /(?s).*\[airgap-cdn-(eu|us|public-ci)\].*/) {
         def parsedStr = commitMsg =~ /\[airgap-cdn-(eu|us|public-ci)\]/
         switch (parsedStr[0][1]) {
@@ -637,6 +642,7 @@
         Child Upgrade via update plan with sequental steps enabled: ${upgradeChildPlanSeq}
         Child Upgrade via update plan with bulk steps enabled: ${upgradeChildPlanBulk}
         Runtime restart checker for child upgrade enabled: ${upgradeRestartChecker}
+        Start Nessus scan: ${cisBenchmark}
         Triggers: https://gerrit.mcp.mirantis.com/plugins/gitiles/kaas/core/+/refs/heads/master/hack/ci-gerrit-keywords.md""")
     return [
         osCloudLocation                          : openstackIMC,
@@ -715,6 +721,7 @@
         upgradeChildPlanSeqEnabled               : upgradeChildPlanSeq,
         upgradeChildPlanBulkEnabled              : upgradeChildPlanBulk,
         upgradeRestartCheckerEnabled             : upgradeRestartChecker,
+        cisBenchmark                             : cisBenchmark,
     ]
 }
 
@@ -986,6 +993,7 @@
         booleanParam(name: 'UPGRADE_CHILD_PLAN_SEQ', value: triggers.upgradeChildPlanSeqEnabled),
         booleanParam(name: 'UPGRADE_CHILD_PLAN_BULK', value: triggers.upgradeChildPlanBulkEnabled),
         booleanParam(name: 'ENABLE_RESTART_CHECKER_FOR_CHILD_UPGRADE', value: triggers.upgradeRestartCheckerEnabled),
+        booleanParam(name: 'RUN_NESSUS_SCAN', value: triggers.cisBenchmark),
     ]
 
     // Determine component team custom context