- fixed the jenkins comments by added SuppressWarnings annotation.

Author: Susenthiran28

src/main/java/io/jenkins/plugins/vigilnz/build/SecurityCheckBuilder.java

@@ -12,10 +12,12 @@
 import hudson.tasks.Builder;
 import hudson.util.FormValidation;
 import hudson.util.ListBoxModel;
-import hudson.util.Secret;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
 import io.jenkins.cli.shaded.org.apache.commons.lang.StringUtils;
 import io.jenkins.plugins.vigilnz.api.ApiService;
 import io.jenkins.plugins.vigilnz.credentials.TokenCredentials;
+import io.jenkins.plugins.vigilnz.models.ApiResponse;
 import io.jenkins.plugins.vigilnz.ui.ScanResultAction;
 import jenkins.model.Jenkins;
 import org.kohsuke.stapler.AncestorInPath;
@@ -31,7 +33,6 @@
 // This file for Jenkins FreeStyle Job Method
 public class SecurityCheckBuilder extends Builder {
 
-    /** Credential ID (identifier to look up the actual credential, not sensitive) */
     private final String credentialsId;
     private String targetFile;  // Optional parameter
     private boolean cveScan;
@@ -104,12 +105,14 @@ public boolean perform(AbstractBuild build, Launcher launcher, BuildListener lis
         // Validate at least one scan type is selected
         if (scanTypes.isEmpty()) {
             listener.error("Error: At least one scan type must be selected.");
+            attachResult(build, buildErrorResponse("At least one scan type must be selected."));
             return false;
         }
 
         // Validate credentials ID is provided
         if (credentialsId == null || credentialsId.trim().isEmpty()) {
             listener.error("Error: Credentials ID is required. Please select a credential in the build step configuration.");
+            attachResult(build, buildErrorResponse("Credentials ID is required."));
             return false;
         }
 
@@ -122,6 +125,7 @@ public boolean perform(AbstractBuild build, Launcher launcher, BuildListener lis
 
         if (creds == null) {
             listener.error("Error: Vigilnz Token credential not found with ID: " + credentialsId);
+            attachResult(build, buildErrorResponse("Vigilnz Token credential not found with ID: " + credentialsId));
             return false;
         }
         // Get the actual token value from the credential
@@ -143,6 +147,8 @@ public boolean perform(AbstractBuild build, Launcher launcher, BuildListener lis
             build.addAction(new ScanResultAction(result));
         } catch (Exception e) {
             listener.error("Scan failed");
+            attachResult(build, buildErrorResponse("Scan failed: " + e.getMessage()));
+            build.addAction(new ScanResultAction(new ApiResponse().toString()));
             return false;
         }
 
@@ -223,4 +229,21 @@ public FormValidation doCheckScanType(@AncestorInPath Item project, @QueryParame
 
     }
 
+    private void attachResult(AbstractBuild build, String json) {
+        try {
+            build.addAction(new ScanResultAction(json));
+        } catch (Exception ignored) {
+            // Swallow to avoid masking original error
+        }
+    }
+
+    private String buildErrorResponse(String message) {
+        ApiResponse resp = new ApiResponse();
+        resp.setMessage(message);
+        try {
+            return new ObjectMapper().writeValueAsString(resp);
+        } catch (JsonProcessingException e) {
+            return "{\"message\":\"" + message.replace("\"", "\\\"") + "\"}";
+        }
+    }
 }

src/main/java/io/jenkins/plugins/vigilnz/credentials/TokenCredentials.java

@@ -14,13 +14,14 @@
 import org.kohsuke.stapler.QueryParameter;
 import org.kohsuke.stapler.verb.POST;
 
-@SuppressWarnings("lgtm[jenkins/password-in-field]")
 public class TokenCredentials extends BaseStandardCredentials {
 
     private final Secret token;
 
+    @SuppressWarnings("lgtm[jenkins/plaintext-storage]")
     private final String tokenId;
 
+    @SuppressWarnings("lgtm[jenkins/plaintext-storage]")
     private final String tokenDescription;
 
     @DataBoundConstructor

src/main/java/io/jenkins/plugins/vigilnz/pipeline/PipelineStep.java

@@ -13,17 +13,10 @@
 import java.util.List;
 import java.util.Set;
 
-/**
- * Pipeline step for Vigilnz security scans.
- * Security: The 'credentialsId' field stores only a credential ID (identifier), not the actual token value.
- * The actual token is stored securely in TokenCredentials using Secret.
- */
+
 public class PipelineStep extends Step {
 
-    /** 
-     * Credential ID (not sensitive - just an identifier to look up the actual credential).
-     * The actual token is stored securely in TokenCredentials using Secret.
-     */
+
     private final String credentialsId;
     private final List<String> scanTypes;
     private String targetFile;  // Optional parameter
@@ -34,11 +27,6 @@ public PipelineStep(String credentialsId, List<String> scanTypes) {
         this.scanTypes = scanTypes != null ? scanTypes : List.of();
     }
 
-    @DataBoundSetter
-    public void setTargetFile(String targetFile) {
-        this.targetFile = targetFile;
-    }
-
     public String getCredentialsId() {
         return credentialsId;
     }
@@ -47,6 +35,11 @@ public String getTargetFile() {
         return targetFile;
     }
 
+    @DataBoundSetter
+    public void setTargetFile(String targetFile) {
+        this.targetFile = targetFile;
+    }
+
     public List<String> getScanTypes() {
         return scanTypes != null ? scanTypes : List.of();
     }

src/main/java/io/jenkins/plugins/vigilnz/pipeline/PipelineStepExecution.java

@@ -6,8 +6,11 @@
 import hudson.FilePath;
 import hudson.model.Run;
 import hudson.model.TaskListener;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
 import io.jenkins.plugins.vigilnz.api.ApiService;
 import io.jenkins.plugins.vigilnz.credentials.TokenCredentials;
+import io.jenkins.plugins.vigilnz.models.ApiResponse;
 import io.jenkins.plugins.vigilnz.ui.ScanResultAction;
 import org.jenkinsci.plugins.workflow.steps.StepContext;
 import org.jenkinsci.plugins.workflow.steps.StepExecution;
@@ -76,16 +79,17 @@ public boolean start() throws Exception {
 
         TaskListener listener = getContext().get(TaskListener.class);
         Run<?, ?> run = getContext().get(Run.class);
-        
+
         String credentialsId = step.getCredentialsId();
-        
+
         // Validate credentials ID is provided
         if (credentialsId == null || credentialsId.trim().isEmpty()) {
             listener.error("Error: Credentials ID is required. Please provide a credential ID in the pipeline step.");
+            attachResult(run, buildErrorResponse("Credentials ID is required."));
             getContext().onFailure(new AbortException("Credentials ID is required"));
             return false;
         }
-        
+
         TokenCredentials creds =
                 CredentialsProvider.findCredentialById(
                         credentialsId,
@@ -112,6 +116,7 @@ public boolean start() throws Exception {
             // Validate at least one scan type is selected
             if (scanTypes == null || scanTypes.isEmpty()) {
                 listener.error("Error: At least one scan type must be selected.");
+                attachResult(run, buildErrorResponse("At least one scan type must be selected."));
                 getContext().onFailure(new AbortException("At least one scan type must be selected"));
                 return false;
             }
@@ -124,17 +129,37 @@ public boolean start() throws Exception {
                 run.addAction(new ScanResultAction(result));
             } catch (Exception e) {
                 listener.error("Scan failed");
+                attachResult(run, buildErrorResponse("Scan failed: " + e.getMessage()));
                 getContext().onFailure(new AbortException("Scan failed"));
                 return false;
             }
 
         } else {
             listener.error("Error: Vigilnz Token credential not found with ID: " + credentialsId);
+            attachResult(run, buildErrorResponse("Vigilnz Token credential not found with ID: " + credentialsId));
             getContext().onFailure(new AbortException("No Vigilnz Token credential found with ID: " + credentialsId));
             return false;
         }
 
         getContext().onSuccess(null);
         return true;
     }
+
+    private void attachResult(Run<?, ?> run, String json) {
+        try {
+            run.addAction(new ScanResultAction(json));
+        } catch (Exception ignored) {
+            // Swallow to avoid masking original error
+        }
+    }
+
+    private String buildErrorResponse(String message) {
+        ApiResponse resp = new ApiResponse();
+        resp.setMessage(message);
+        try {
+            return new ObjectMapper().writeValueAsString(resp);
+        } catch (JsonProcessingException e) {
+            return "{\"message\":\"" + message.replace("\"", "\\\"") + "\"}";
+        }
+    }
 }

…ain/resources/images.symbols/vigilnz.svg …ain/resources/images/symbols/vigilnz.svgsrc/main/resources/images.symbols/vigilnz.svg renamed to src/main/resources/images/symbols/vigilnz.svg src/main/resources/images.symbols/vigilnz.svg renamed to src/main/resources/images/symbols/vigilnz.svg

@@ -2,7 +2,17 @@
 <j:jelly xmlns:j="jelly:core" xmlns:f="/lib/form">
 
     <f:entry title="Token" field="token">
-        <f:password/>
+        <f:password checkUrl="${descriptor.checkToken}" clazz="passwordClass"/>
+        <script>
+            console.log("The script is calling")
+            const element = document.querySelector(".passwordClass");
+            element.addEventListener("blur", myFunction);
+            function myFunction() {
+                // Manually trigger the onchange event
+                const event = new Event("change", { bubbles: true });
+                element.dispatchEvent(event);
+            }
+        </script>
     </f:entry>
 
     <f:entry field="tokenId" title="ID">
@@ -14,12 +24,11 @@
                        value="${instance.tokenId != null and instance.tokenId != '' ? instance.tokenId : instance.id}"/>
                 <!-- Display as read-only -->
                 <f:readOnlyTextbox value="${idValue}"/>
-                <!-- Submit the actual ID as hidden field (not using field="tokenId" to avoid conflict) -->
-                <input type="hidden" name="tokenId" value="${idValue}"/>
+
             </j:when>
             <!-- New credential: allow user to enter ID (optional) -->
             <j:otherwise>
-                <f:textbox field="tokenId"/>
+                <f:textbox/>
             </j:otherwise>
         </j:choose>
     </f:entry>

src/main/resources/io/jenkins/plugins/vigilnz/credentials/TokenCredentials/config.jelly

@@ -3,7 +3,7 @@
     <l:layout title="Vigilnz Security Scan Results">
         <l:main-panel>
             <h1 style="display:flex; align-items:center; gap:10px;font-family: 'Helvetica', sans-serif;">
-                <l:icon src="symbol-vigilnz plugin-vigilnz-security" class="icon-xlg"/>
+                <l:icon src="symbol-vigilnz plugin-vigilnz-security" style="width:45px;height:45px;" class="icon-xlg"/>
                 Vigilnz Security Scan Results
             </h1>