The main goal when setting up a job is to have Jenkins run Brakeman, and then the plugin will read the results.
Ruby must be installed on the Jenkins server.
Enable the plugin
On the job configuration page, check the box next to “Publish Brakeman warnings”. On newer builds of Jenkins, you’ll find this under the “Add post-build action” dropdown at the bottom of the page.
The plugin will look for an output file from Brakeman in the work directory. The name of the output file can be specified here, but the default should be fine.
Set Job to Run Brakeman
Click “Add Build Step” and then “Execute shell”.
This is the tricky part, and it depends on how Ruby is set up on the server. The important part is that the output from Brakeman needs to be in the
If Ruby is installed globally, then this should work:
gem install brakeman --no-ri --no-rdoc && brakeman --no-progress -o brakeman-output.tabs
If RVM is installed on the server:
bash -l -c ' gem install brakeman --no-ri --no-rdoc && brakeman --no-progress -o brakeman-output.json'
It might make sense to also set up a separate gemset:
bash -l -c ' rvm gemset create my-brakeman-job && rvm gemset use my-brakeman-job && gem install brakeman --no-ri --no-rdoc && brakeman --no-progress -o brakeman-output.json'