Spectral Jenkins Security is a security scanning tool designed to integrate into Jenkins CI/CD pipelines. The tool focuses on detecting security issues including secrets, credentials, and vulnerabilities within code repositories and CI/CD workflows. The solution implements a shift-left security approach by scanning code during the build process. It requires a single line of code integration using Jenkins DSL or traditional pipeline syntax. The scanner operates with a zero-copy architecture, meaning no data is sent from the CI environment and no special privileges are required for deployment. The tool includes hundreds of custom detectors and machine learning models to identify security vulnerabilities in code, configuration files, and data. Users can create custom detectors and workflows using the Spectral engine. The scanner integrates natively with Jenkins JUnit plugin for reporting and orchestration. Spectral Jenkins Security includes a companion tool called Preflight that validates the security of CI processes before execution. The solution provides real-time policy enforcement and can control build status based on scan results. It offers automated updates without requiring maintenance from users. The scanning process is designed for speed to minimize impact on CI/CD pipeline execution times. Results can be connected to SpectralOps platform for alerting and security orchestration capabilities.