Installation and Setup
To install and work with the plugin:
- Install the JFrog plugin,
- If JFrog Xray is behind an HTTP proxy, configure the proxy settings as described here. This is supported since version 1.1.0 of the JFrog Eclipse Plugin.
- Configure the plugin to connect to JFrog Xray.
- Scan and view the results.
- Filter Xray Scanned Results.
- JFrog Xray version 188.8.131.52 and above.
- Download the plugin zip.
- Go to Help | Install New Software, click Add and then click Archive.
- Choose the plugin zip file you downloaded and click Add.
- Click Next.
Configuring the Plugin
Connecting to JFrog Xray
Once the plugin is successfully installed, connect the plugin to your instance of JFrog Xray.
- Go to Eclipse (Preferences), click JFrog Xray.
Set your JFrog Xray URL and login credentials.
Test your connection to Xray using the Test Connection button.
Scanning Gradle Projects
Behind the scenes, the JFrog plugin executes a Gradle script, which creates the dependencies tree of the project. The plugin reads the Gradle configuration defined in Eclipse. This configuration is added to Eclipse by the Buildship plugin You can access this configuration by going in Preferences | Gradle | Gradle distribution
If the Gradle configuration is not set, then Gradle Wrapper will be used. If the project does not include the Gradle Wrapper configuration, Gradle will be automatically downloaded.
Using the Plugin
Open JFrog tab
To open the plugin tab click on Window | Show View | Other | Security | JFrog.
Scanning and Viewing the Results
JFrog Xray automatically performs a scan when the plugin first loaded on startup.
To manually invoke a scan:
- Click Refresh in the JFrog plugin.
- View the scanned results in the plugin.
Filtering Xray Scanned Results
The JFrog plugin provides the following filter to narrow down the scanned results to view exactly what you need:
Severity: Displays issues according to specific severities.
- License: Displays components according to specific licenses.
Please report issues by opening an issue on Github.