diff --git a/CHANGELOG.md b/CHANGELOG.md
index f7a3e3af..c11a077a 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,7 @@
 ### ⭐ New Features
 - Support for specifying the parent project using its name and version as an alternative to its ID ([#261](https://github.com/jenkinsci/dependency-track-plugin/issues/261))
 - Include artifact name in Publishing Logline ([#264](https://github.com/jenkinsci/dependency-track-plugin/issues/264))
+- Support for Policy Violations ([#130](https://github.com/jenkinsci/dependency-track-plugin/issues/130))
 
 ### 🐞 Bugs Fixed
 
diff --git a/README.md b/README.md
index 572bac60..f6f411c8 100644
--- a/README.md
+++ b/README.md
@@ -20,12 +20,13 @@ Asynchronous publishing simply uploads the SBOM to Dependency-Track and the job
 
 ![job trend](docs/images/jenkins-job-trend.png)
 
-![findings](docs/images/jenkins-job-findings.png)
+![build summary](docs/images/jenkins-build-summary.png)
+![findings](docs/images/jenkins-build-findings.png) ![policy violations](docs/images/jenkins-build-policy-violations.png)
 
 ## Global Configuration
 To setup, navigate to Jenkins > System Configuration and complete the Dependency-Track section.
 
-![global configuration](docs/images/jenkins-global-odt.png)
+![global configuration](docs/images/jenkins-global-settings.png)
 
 **Dependency-Track Backend URL**: URL to the Backend of your Dependency-Track instance.
 
@@ -50,7 +51,8 @@ BOM_UPLOAD | :ballot_box_with_check: | needed for BOM upload
 VIEW_PORTFOLIO | :ballot_box_with_check: | needed to retrieve list of projects
 VULNERABILITY_ANALYSIS | :ballot_box_with_check: | needed to perform dependency analysis
 PROJECT_CREATION_UPLOAD | :grey_question: | needed to create non-existing projects during BOM upload
-VIEW_VULNERABILITY | :grey_question: | needed in synchronous publishing mode to retrieve analysis results
+VIEW_VULNERABILITY | :grey_question: | needed in synchronous publishing mode to retrieve results for vulnerabilities
+VIEW_POLICY_VIOLATION | :grey_question: | needed in synchronous publishing mode to retrieve results for policy violations
 PORTFOLIO_MANAGEMENT | :grey_question: | needed for updating project properties such as tags
 
 ## Job Configuration
@@ -66,7 +68,7 @@ Once configured with a valid URL and API key, simply configure a job to publish
 
 **Artifact:** Specifies the file to upload. Paths are relative from the Jenkins workspace. The use of environment variables in the form `${VARIABLE}` is supported here.
 
-**Enable synchronous publishing mode**: Uploads a SBOM to Dependency-Track and waits for Dependency-Track to process and return results. The results returned are identical to the auditable findings but exclude findings that have previously been suppressed. Analysis decisions and vulnerability details are included in the response. Synchronous mode is possible with Dependency-Track v3.3.1 and higher. The provided API key requires the `VIEW_VULNERABILITY` permission to use this feature with Dependency-Track v4.4 and newer!
+**Enable synchronous publishing mode**: Uploads a SBOM to Dependency-Track and waits for Dependency-Track to process and return results. The results returned are identical to the auditable findings but exclude findings that have previously been suppressed. Analysis decisions and vulnerability details are included in the response. Synchronous mode is possible with Dependency-Track v3.3.1 and higher. The provided API key requires the `VIEW_VULNERABILITY` permission to use this feature with Dependency-Track v4.4 and newer! If the provided API key has the permission `VIEW_POLICY_VIOLATION`, then the results of policy violations are returned as well.
 
 **Update project properties**: Allows updating of some project properties after uploading the BOM. The provided API key requires the `PORTFOLIO_MANAGEMENT` permission to use this feature! These properties are:
 - tags
@@ -87,6 +89,10 @@ When synchronous mode is enabled, thresholds can be defined which can optionally
 
 **New Findings:** Sets the threshold for the number of new critical, high, medium, low or unassigned severity findings allowed. If the number of new findings equals or is greater than the previous builds finding for any one of the severities, the job status will be changed to UNSTABLE or FAILURE. The previous build is the one that is successful and has an analysis result of Dependency-Track, which does not necessarily have to be the immediately previous build.
 
+### Policy Violations
+
+If synchronous mode is enabled, it is possible to set the job to the UNSTABLE or FAILURE state depending on the state of the policy violation. Policy violations are evaluated after the threshold values for vulnerability findings.
+
 ## Examples
 ### Declarative Pipeline
 
diff --git a/docs/images/jenkins-build-findings.png b/docs/images/jenkins-build-findings.png
new file mode 100644
index 00000000..a154a7cb
Binary files /dev/null and b/docs/images/jenkins-build-findings.png differ
diff --git a/docs/images/jenkins-build-policy-violations.png b/docs/images/jenkins-build-policy-violations.png
new file mode 100644
index 00000000..d82f41a2
Binary files /dev/null and b/docs/images/jenkins-build-policy-violations.png differ
diff --git a/docs/images/jenkins-build-summary.png b/docs/images/jenkins-build-summary.png
new file mode 100644
index 00000000..13c5f5ae
Binary files /dev/null and b/docs/images/jenkins-build-summary.png differ
diff --git a/docs/images/jenkins-global-odt.png b/docs/images/jenkins-global-odt.png
deleted file mode 100644
index d4214118..00000000
Binary files a/docs/images/jenkins-global-odt.png and /dev/null differ
diff --git a/docs/images/jenkins-global-settings.png b/docs/images/jenkins-global-settings.png
new file mode 100644
index 00000000..57d7d13c
Binary files /dev/null and b/docs/images/jenkins-global-settings.png differ
diff --git a/docs/images/jenkins-job-findings.png b/docs/images/jenkins-job-findings.png
deleted file mode 100644
index 4e7a4397..00000000
Binary files a/docs/images/jenkins-job-findings.png and /dev/null differ
diff --git a/docs/images/jenkins-job-publish.png b/docs/images/jenkins-job-publish.png
index 5e1ab384..fb608c0e 100644
Binary files a/docs/images/jenkins-job-publish.png and b/docs/images/jenkins-job-publish.png differ
diff --git a/docs/images/jenkins-job-thresholds.png b/docs/images/jenkins-job-thresholds.png
index 82ad341a..16fa7d74 100644
Binary files a/docs/images/jenkins-job-thresholds.png and b/docs/images/jenkins-job-thresholds.png differ
diff --git a/docs/images/jenkins-job-trend-policy-violations.png b/docs/images/jenkins-job-trend-policy-violations.png
new file mode 100644
index 00000000..163b5fd2
Binary files /dev/null and b/docs/images/jenkins-job-trend-policy-violations.png differ
diff --git a/docs/images/jenkins-job-trend.png b/docs/images/jenkins-job-trend.png
index 2aa7d3f8..f4332e83 100644
Binary files a/docs/images/jenkins-job-trend.png and b/docs/images/jenkins-job-trend.png differ
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ApiClient.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ApiClient.java
index 972d157a..6f964843 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ApiClient.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ApiClient.java
@@ -40,6 +40,7 @@
 import org.jenkinsci.plugins.DependencyTrack.model.Project;
 import org.jenkinsci.plugins.DependencyTrack.model.Team;
 import org.jenkinsci.plugins.DependencyTrack.model.UploadResult;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
 import org.springframework.http.HttpStatus;
 import org.springframework.retry.RetryPolicy;
 import org.springframework.retry.backoff.UniformRandomBackOffPolicy;
@@ -62,6 +63,7 @@ public class ApiClient {
     private static final String API_URL = "/api/v1";
     static final String API_KEY_HEADER = "X-Api-Key";
     static final String PROJECT_FINDINGS_URL = API_URL + "/finding/project";
+    static final String PROJECT_VIOLATIONS_URL = API_URL + "/violation/project";
     static final String BOM_URL = API_URL + "/bom";
     static final String BOM_TOKEN_URL = BOM_URL + "/token";
     static final String PROJECT_URL = API_URL + "/project";
@@ -266,6 +268,28 @@ public List<Finding> getFindings(@NonNull final String projectUuid) throws ApiCl
         });
     }
 
+    @NonNull
+    @SuppressFBWarnings("NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE")
+    public List<Violation> getViolations(@NonNull final String projectUuid) throws ApiClientException {
+        final var uri = UriComponentsBuilder.fromUriString(PROJECT_VIOLATIONS_URL).pathSegment("{uuid}").build(projectUuid);
+        final var request = createRequest(uri);
+        return executeWithRetry(() -> {
+            try (var response = httpClient.newCall(request).execute()) {
+                final var body = response.body().string();
+                if (!response.isSuccessful()) {
+                    final int status = response.code();
+                    logger.log(body);
+                    throw new ApiClientException(Messages.ApiClient_Error_RetrieveViolations(status, HttpStatus.valueOf(status).getReasonPhrase()));
+                }
+                return ViolationParser.parse(body);
+            } catch (ApiClientException e) {
+                throw e;
+            } catch (IOException e) {
+                throw new ApiClientException(Messages.ApiClient_Error_Connection(StringUtils.EMPTY, StringUtils.EMPTY), e);
+            }
+        });
+    }
+
     @NonNull
     @SuppressFBWarnings("NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE")
     public UploadResult upload(@Nullable final String projectId, @Nullable final String projectName, @Nullable final String projectVersion, @NonNull final FilePath artifact,
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ComponentParser.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ComponentParser.java
new file mode 100644
index 00000000..cb09ace9
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ComponentParser.java
@@ -0,0 +1,37 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import lombok.experimental.UtilityClass;
+import net.sf.json.JSONObject;
+import org.jenkinsci.plugins.DependencyTrack.model.Component;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+@UtilityClass
+class ComponentParser extends ModelParser {
+
+    Component parseComponent(JSONObject json) {
+        final String uuid = getKeyOrNull(json, "uuid");
+        final String name = getKeyOrNull(json, "name");
+        final String group = getKeyOrNull(json, "group");
+        final String version = getKeyOrNull(json, "version");
+        final String purl = getKeyOrNull(json, "purl");
+        return new Component(uuid, name, group, version, purl);
+    }
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher.java
index c4e17747..c23bd14d 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher.java
@@ -32,6 +32,7 @@
 import hudson.tasks.Recorder;
 import hudson.util.Secret;
 import java.util.Optional;
+import jenkins.model.RunAction2;
 import jenkins.tasks.SimpleBuildStep;
 import lombok.AccessLevel;
 import lombok.EqualsAndHashCode;
@@ -43,11 +44,15 @@
 import org.jenkinsci.plugins.DependencyTrack.model.SeverityDistribution;
 import org.jenkinsci.plugins.DependencyTrack.model.Thresholds;
 import org.jenkinsci.plugins.DependencyTrack.model.UploadResult;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
 import org.jenkinsci.plugins.DependencyTrack.model.Vulnerability;
 import org.jenkinsci.plugins.plaincredentials.StringCredentials;
 import org.kohsuke.stapler.DataBoundConstructor;
 import org.kohsuke.stapler.DataBoundSetter;
 
+import static org.jenkinsci.plugins.DependencyTrack.model.Permissions.VIEW_POLICY_VIOLATION;
+
 @Getter
 @Setter(onMethod_ = {@DataBoundSetter})
 @EqualsAndHashCode(callSuper = true)
@@ -235,6 +240,18 @@ public final class DependencyTrackPublisher extends Recorder implements SimpleBu
      */
     private Integer failedNewUnassigned;
 
+    /**
+     * mark job as UNSTABLE if there is at least one policy violation of severity
+     * warning
+     */
+    private boolean warnOnViolationWarn;
+
+    /**
+     * mark job as FAILED if there is at least one policy violation of severity
+     * fail
+     */
+    private boolean failOnViolationFail;
+
     @Getter(AccessLevel.NONE)
     @Setter(AccessLevel.NONE)
     private transient ApiClientFactory clientFactory;
@@ -324,9 +341,14 @@ public void perform(@NonNull final Run<?, ?> run, @NonNull final FilePath worksp
 
         final var thresholds = getThresholds();
         if (synchronous && StringUtils.isNotBlank(uploadResult.getToken())) {
-            final var severityDistribution = publishAnalysisResult(logger, apiClient, uploadResult.getToken(), run, effectiveProjectName, effectiveProjectVersion);
+            final var resultActions = publishAnalysisResult(logger, apiClient, uploadResult.getToken(), run, effectiveProjectName, effectiveProjectVersion);
             if (thresholds.hasValues()) {
-                evaluateRiskGates(run, logger, severityDistribution, thresholds);
+                final var resultAction = resultActions.get(0).map(ResultAction.class::cast).get();
+                evaluateRiskGates(run, logger, resultAction.getSeverityDistribution(), thresholds);
+            }
+            if (resultActions.get(1).isPresent()) {
+                final var violationsAction = resultActions.get(1).map(ViolationsRunAction.class::cast).get();
+                evaluateViolations(run, logger, violationsAction.getViolations());
             }
         }
         if (!synchronous && thresholds.hasValues()) {
@@ -334,7 +356,7 @@ public void perform(@NonNull final Run<?, ?> run, @NonNull final FilePath worksp
         }
     }
 
-    private SeverityDistribution publishAnalysisResult(final ConsoleLogger logger, final ApiClient apiClient, final String token, final Run<?, ?> build, final String effectiveProjectName, final String effectiveProjectVersion) throws InterruptedException, ApiClientException, AbortException {
+    private List<Optional<RunAction2>> publishAnalysisResult(final ConsoleLogger logger, final ApiClient apiClient, final String token, final Run<?, ?> build, final String effectiveProjectName, final String effectiveProjectVersion) throws InterruptedException, ApiClientException, AbortException {
         final long timeout = System.currentTimeMillis() + (60000L * getEffectivePollingTimeout());
         final long interval = 1000L * getEffectivePollingInterval();
         logger.log(Messages.Builder_Polling());
@@ -352,10 +374,24 @@ private SeverityDistribution publishAnalysisResult(final ConsoleLogger logger, f
         final List<Finding> findings = apiClient.getFindings(effectiveProjectId);
         final SeverityDistribution severityDistribution = new SeverityDistribution(build.getNumber());
         findings.stream().map(Finding::getVulnerability).map(Vulnerability::getSeverity).forEach(severityDistribution::add);
-        final ResultAction projectAction = new ResultAction(findings, severityDistribution);
-        projectAction.setDependencyTrackUrl(getEffectiveFrontendUrl());
-        projectAction.setProjectId(effectiveProjectId);
-        build.addOrReplaceAction(projectAction);
+        final var findingsAction = new ResultAction(findings, severityDistribution);
+        findingsAction.setDependencyTrackUrl(getEffectiveFrontendUrl());
+        findingsAction.setProjectId(effectiveProjectId);
+        build.addOrReplaceAction(findingsAction);
+
+        final var team = apiClient.getTeamPermissions();
+        ViolationsRunAction violationsAction = null;
+        // for compatibility reasons: the permission may not be present so we check if it is. otherwise an exception would be thrown.
+        if (team.getPermissions().contains(VIEW_POLICY_VIOLATION.toString())) {
+            logger.log(Messages.Builder_Violations_Processing());
+            final var violations = apiClient.getViolations(effectiveProjectId);
+            violationsAction = new ViolationsRunAction(violations);
+            violationsAction.setDependencyTrackUrl(getEffectiveFrontendUrl());
+            violationsAction.setProjectId(effectiveProjectId);
+            build.addOrReplaceAction(violationsAction);
+        } else {
+            logger.log(Messages.Builder_Violations_Skipped(VIEW_POLICY_VIOLATION, team.getName()));
+        }
 
         // update ResultLinkAction with one that surely contains a projectId
         final ResultLinkAction linkAction = new ResultLinkAction(getEffectiveFrontendUrl(), effectiveProjectId);
@@ -363,7 +399,8 @@ private SeverityDistribution publishAnalysisResult(final ConsoleLogger logger, f
         linkAction.setProjectVersion(effectiveProjectVersion);
         build.addOrReplaceAction(linkAction);
 
-        return severityDistribution;
+        // replace with record when using Java 17
+        return List.of(Optional.of(findingsAction), Optional.ofNullable(violationsAction));
     }
 
     private void evaluateRiskGates(final Run<?, ?> build, final ConsoleLogger logger, final SeverityDistribution currentDistribution, final Thresholds thresholds) throws AbortException {
@@ -390,6 +427,16 @@ private void evaluateRiskGates(final Run<?, ?> build, final ConsoleLogger logger
         }
     }
 
+    private void evaluateViolations(final Run<?, ?> build, final ConsoleLogger logger, final List<Violation> violations) throws AbortException {
+        if (warnOnViolationWarn && violations.stream().anyMatch(violation -> violation.getState() == ViolationState.WARN)) {
+            logger.log(Messages.Builder_Violations_Exceed());
+            build.setResult(Result.UNSTABLE);
+        }
+        if (failOnViolationFail && violations.stream().anyMatch(violation -> violation.getState() == ViolationState.FAIL)) {
+            throw new AbortException(Messages.Builder_Violations_Exceed());
+        }
+    }
+
     /**
      *
      * @return A Descriptor Implementation
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImpl.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImpl.java
index 57212e5c..7b84022b 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImpl.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImpl.java
@@ -296,8 +296,10 @@ private FormValidation checkTeamPermissions(final ApiClient apiClient, final Str
         }
         if (synchronous) {
             requiredPermissions.add(VIEW_VULNERABILITY.toString());
+            requiredPermissions.add(VIEW_POLICY_VIOLATION.toString());
         } else {
             optionalPermissions.add(VIEW_VULNERABILITY.toString());
+            optionalPermissions.add(VIEW_POLICY_VIOLATION.toString());
         }
         if (projectProperties) {
             requiredPermissions.add(PORTFOLIO_MANAGEMENT.toString());
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/FindingParser.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/FindingParser.java
index 23e154a7..b7b12c44 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/FindingParser.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/FindingParser.java
@@ -24,7 +24,6 @@
 import net.sf.json.JSONArray;
 import net.sf.json.JSONNull;
 import net.sf.json.JSONObject;
-import org.apache.commons.lang.StringUtils;
 import org.jenkinsci.plugins.DependencyTrack.model.Analysis;
 import org.jenkinsci.plugins.DependencyTrack.model.Component;
 import org.jenkinsci.plugins.DependencyTrack.model.Finding;
@@ -32,7 +31,7 @@
 import org.jenkinsci.plugins.DependencyTrack.model.Vulnerability;
 
 @UtilityClass
-class FindingParser {
+class FindingParser extends ModelParser {
 
     List<Finding> parse(final String jsonResponse) {
         final JSONArray jsonArray = JSONArray.fromObject(jsonResponse);
@@ -49,22 +48,13 @@ List<Finding> parse(final String jsonResponse) {
     }
 
     private Finding parseFinding(JSONObject json) {
-        final Component component = parseComponent(json.getJSONObject("component"));
+        final Component component = ComponentParser.parseComponent(json.getJSONObject("component"));
         final Vulnerability vulnerability = parseVulnerability(json.getJSONObject("vulnerability"));
         final Analysis analysis = parseAnalysis(json.optJSONObject("analysis"));
         final String matrix = getKeyOrNull(json, "matrix");
         return new Finding(component, vulnerability, analysis, matrix);
     }
 
-    private Component parseComponent(JSONObject json) {
-        final String uuid = getKeyOrNull(json, "uuid");
-        final String name = getKeyOrNull(json, "name");
-        final String group = getKeyOrNull(json, "group");
-        final String version = getKeyOrNull(json, "version");
-        final String purl = getKeyOrNull(json, "purl");
-        return new Component(uuid, name, group, version, purl);
-    }
-
     private Vulnerability parseVulnerability(JSONObject json) {
         final String uuid = getKeyOrNull(json, "uuid");
         final String source = getKeyOrNull(json, "source");
@@ -73,7 +63,7 @@ private Vulnerability parseVulnerability(JSONObject json) {
         final String subtitle = getKeyOrNull(json, "subtitle");
         final String description = getKeyOrNull(json, "description");
         final String recommendation = getKeyOrNull(json, "recommendation");
-        final Severity severity = json.has("severity") ? Severity.valueOf(json.getString("severity")) : null;
+        final Severity severity = getEnum(json, "severity", Severity.class);
         final Integer severityRank = json.optInt("severityRank");
         final var cwe = Optional.ofNullable(json.optJSONArray("cwes")).map(a -> a.optJSONObject(0)).filter(Predicate.not(JSONNull.class::isInstance));
         final Integer cweId = cwe.map(o -> o.optInt("cweId")).orElse(null);
@@ -100,14 +90,4 @@ private List<String> parseAliases(JSONObject json, String vulnId) {
                 .collect(Collectors.toList())
                 : null;
     }
-
-    private String getKeyOrNull(JSONObject json, String key) {
-        // key can be null. but it may also be JSONNull!
-        // optString and getString do not check if v is JSONNull. instead they return just v.toString() which will be "null"!
-        return Optional.ofNullable(json.opt(key))
-                .filter(Predicate.not(JSONNull.class::isInstance))
-                .map(Object::toString)
-                .map(StringUtils::trimToNull)
-                .orElse(null);
-    }
 }
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ModelParser.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ModelParser.java
new file mode 100644
index 00000000..17d3b380
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ModelParser.java
@@ -0,0 +1,51 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import java.util.Optional;
+import java.util.function.Predicate;
+import net.sf.json.JSONObject;
+import net.sf.json.util.JSONUtils;
+import org.apache.commons.lang.StringUtils;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+abstract class ModelParser {
+
+    protected ModelParser() {
+    }
+
+    protected static final String getKeyOrNull(final JSONObject json, final String key) {
+        // key can be null. but it may also be JSONNull!
+        // optString and getString do not check if v is JSONNull. instead they return just v.toString() which will be "null"!
+        return Optional.ofNullable(json.opt(key))
+                .filter(Predicate.not(JSONUtils::isNull))
+                .map(Object::toString)
+                .map(StringUtils::trimToNull)
+                .orElse(null);
+    }
+
+    protected static final <T extends Enum<T>> T getEnum(final JSONObject json, final String key, final Class<T> enumType) {
+        final var value = getKeyOrNull(json, key);
+        try {
+            return value != null ? Enum.valueOf(enumType, value) : null;
+        } catch (IllegalArgumentException ignore) {
+            return null;
+        }
+    }
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ProjectParser.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ProjectParser.java
index 6e87a70c..29973174 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ProjectParser.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ProjectParser.java
@@ -20,13 +20,12 @@
 import java.util.stream.Collectors;
 import lombok.experimental.UtilityClass;
 import net.sf.json.JSONArray;
-import net.sf.json.JSONNull;
 import net.sf.json.JSONObject;
 import org.apache.commons.lang.StringUtils;
 import org.jenkinsci.plugins.DependencyTrack.model.Project;
 
 @UtilityClass
-class ProjectParser {
+class ProjectParser extends ModelParser {
 
     Project parse(final JSONObject json) {
         final String lastInheritedRiskScoreStr = getKeyOrNull(json, "lastInheritedRiskScore");
@@ -43,20 +42,10 @@ Project parse(final JSONObject json) {
                 .active(activeStr != null ? Boolean.valueOf(activeStr) : null)
                 .swidTagId(getKeyOrNull(json, "swidTagId"))
                 .group(getKeyOrNull(json, "group"))
-                .parent(json.has("parent") ? ProjectParser.parse(json.getJSONObject("parent")) : null)
+                .parent(json.has("parent") ? parse(json.getJSONObject("parent")) : null)
                 .build();
     }
 
-    private String getKeyOrNull(JSONObject json, String key) {
-        // key can be null. but it may also be JSONNull!
-        // optString and getString do not check if v is JSONNull. instead they return just v.toString() which will be "null"!
-        Object v = json.opt(key);
-        if (v instanceof JSONNull) {
-            v = null;
-        }
-        return v == null ? null : StringUtils.trimToNull(v.toString());
-    }
-
     private LocalDateTime parseDateTime(String dateTime) {
         if (dateTime == null) {
             return null;
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationParser.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationParser.java
new file mode 100644
index 00000000..ae7bcf58
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationParser.java
@@ -0,0 +1,48 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import java.util.List;
+import java.util.stream.Collectors;
+import lombok.experimental.UtilityClass;
+import net.sf.json.JSONArray;
+import net.sf.json.JSONObject;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationType;
+
+@UtilityClass
+class ViolationParser extends ModelParser {
+
+    List<Violation> parse(final String jsonResponse) {
+        final JSONArray jsonArray = JSONArray.fromObject(jsonResponse);
+        return jsonArray.stream()
+                .map(JSONObject.class::cast)
+                .map(ViolationParser::parseViolation)
+                .collect(Collectors.toList());
+    }
+
+    private Violation parseViolation(JSONObject json) {
+        final var uuid = getKeyOrNull(json, "uuid");
+        final var type = getEnum(json, "type", ViolationType.class);
+        final var policy = json.getJSONObject("policyCondition").getJSONObject("policy");
+        final var state = getEnum(policy, "violationState", ViolationState.class);
+        final var policyName = getKeyOrNull(policy, "name");
+        final var component = ComponentParser.parseComponent(json.getJSONObject("component"));
+        return new Violation(uuid, type, state, policyName, component);
+    }
+
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction.java
new file mode 100644
index 00000000..8b2c9d6e
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction.java
@@ -0,0 +1,96 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import hudson.model.InvisibleAction;
+import hudson.model.Job;
+import java.util.Comparator;
+import java.util.List;
+import java.util.Objects;
+import java.util.stream.Collectors;
+import lombok.Getter;
+import lombok.NonNull;
+import lombok.RequiredArgsConstructor;
+import net.sf.json.JSONArray;
+import net.sf.json.JSONObject;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
+import org.kohsuke.stapler.WebApp;
+import org.kohsuke.stapler.bind.JavaScriptMethod;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+@RequiredArgsConstructor
+public class ViolationsJobAction extends InvisibleAction {
+
+    @Getter
+    @NonNull
+    private final Job<?, ?> project;
+
+    @Override
+    public String getUrlName() {
+        return "dtrackTrend";
+    }
+
+    /**
+     * Returns whether the policy violations trend chart is visible or not.
+     *
+     * @return {@code true} if the trend is visible, false otherwise
+     */
+    public boolean isTrendVisible() {
+        return project.getBuilds().stream()
+                .map(run -> run.getAction(ViolationsRunAction.class))
+                .anyMatch(Objects::nonNull);
+    }
+
+    /**
+     * Returns the UI model for an ECharts line chart that shows the violations
+     * stacked by state.
+     *
+     * @return the UI model as JSON
+     */
+    @JavaScriptMethod
+    public JSONArray getViolationsTrend() {
+        project.checkPermission(hudson.model.Item.READ);
+        final List<JSONObject> distributions = project.getBuilds().stream()
+                .sorted(Comparator.naturalOrder())
+                .map(run -> run.getAction(ViolationsRunAction.class)).filter(Objects::nonNull)
+                .map(result -> {
+                    final var violations = result.getViolations()
+                            .stream()
+                            .collect(Collectors.toMap(violation -> violation.getState().name().toLowerCase(), i -> 1, (a, b) -> a + b));
+                    final var item = new JSONObject();
+                    item.element("buildNumber", result.getRun().getNumber());
+                    item.putAll(violations);
+                    // ensure all keys exist
+                    item.putIfAbsent(ViolationState.INFO.name().toLowerCase(), 0);
+                    item.putIfAbsent(ViolationState.WARN.name().toLowerCase(), 0);
+                    item.putIfAbsent(ViolationState.FAIL.name().toLowerCase(), 0);
+                    return item;
+                })
+                .collect(Collectors.toList());
+        return JSONArray.fromObject(distributions);
+    }
+
+    public String getBindUrl() {
+        return WebApp.getCurrent().boundObjectTable.bind(this).getURL();
+    }
+
+    public String getCrumb() {
+        return WebApp.getCurrent().getCrumbIssuer().issueCrumb();
+    }
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction.java
new file mode 100644
index 00000000..36a439ab
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction.java
@@ -0,0 +1,128 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import edu.umd.cs.findbugs.annotations.NonNull;
+import hudson.Plugin;
+import hudson.PluginWrapper;
+import hudson.model.Action;
+import hudson.model.Run;
+import java.io.Serializable;
+import java.util.Collection;
+import java.util.List;
+import java.util.Optional;
+import java.util.Set;
+import jenkins.model.Jenkins;
+import jenkins.model.RunAction2;
+import jenkins.tasks.SimpleBuildStep;
+import lombok.EqualsAndHashCode;
+import lombok.Getter;
+import lombok.RequiredArgsConstructor;
+import lombok.Setter;
+import net.sf.json.JSONArray;
+import org.apache.commons.codec.digest.DigestUtils;
+import org.apache.commons.lang.StringUtils;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.kohsuke.stapler.WebApp;
+import org.kohsuke.stapler.bind.JavaScriptMethod;
+
+@Getter
+@EqualsAndHashCode
+@RequiredArgsConstructor
+public class ViolationsRunAction implements RunAction2, SimpleBuildStep.LastBuildAction, Serializable {
+
+    private static final long serialVersionUID = 8223620580665511318L;
+
+    private transient Run<?, ?> run; // transient: see RunAction2, and JENKINS-45892
+    private final List<Violation> violations;
+
+    /**
+     * the URL of the Dependency-Track Server to which these results are
+     * belonging to
+     */
+    @Setter
+    private String dependencyTrackUrl;
+
+    /**
+     * the ID of the project to which these results are belonging to
+     */
+    @Setter
+    private String projectId;
+
+    @Override
+    public String getIconFileName() {
+        return "/plugin/dependency-track/icons/dt-logo-symbol.svg";
+    }
+
+    @Override
+    public String getDisplayName() {
+        return Messages.Result_DT_ReportViolations();
+    }
+
+    @Override
+    public String getUrlName() {
+        return "dependency-track-violations";
+    }
+
+    @Override
+    public void onAttached(Run<?, ?> run) {
+        this.run = run;
+    }
+
+    @Override
+    public void onLoad(Run<?, ?> run) {
+        this.run = run;
+    }
+
+    @Override
+    public Collection<? extends Action> getProjectActions() {
+        return Set.of(new ViolationsJobAction(run.getParent()));
+    }
+
+    @NonNull
+    public String getVersionHash() {
+        return DigestUtils.sha256Hex(
+                Optional.ofNullable(Jenkins.get().getPlugin("dependency-track"))
+                        .map(Plugin::getWrapper)
+                        .map(PluginWrapper::getVersion)
+                        .orElse(StringUtils.EMPTY)
+        );
+    }
+
+    public boolean hasViolations() {
+        return violations != null && !violations.isEmpty();
+    }
+
+    /**
+     * Returns the UI model for an ECharts line chart that shows the violations.
+     *
+     * @return the UI model as JSON
+     */
+    @JavaScriptMethod
+    public JSONArray getViolationsJson() {
+        run.checkPermission(hudson.model.Item.READ);
+        return JSONArray.fromObject(violations);
+    }
+
+    public String getBindUrl() {
+        return WebApp.getCurrent().boundObjectTable.bind(this).getURL();
+    }
+
+    public String getCrumb() {
+        return WebApp.getCurrent().getCrumbIssuer().issueCrumb();
+    }
+
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Permissions.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Permissions.java
index 655610c7..bd4ffb13 100644
--- a/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Permissions.java
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Permissions.java
@@ -20,5 +20,5 @@
  * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
  */
 public enum Permissions {
-    BOM_UPLOAD, VIEW_PORTFOLIO, VULNERABILITY_ANALYSIS, PROJECT_CREATION_UPLOAD, PORTFOLIO_MANAGEMENT, VIEW_VULNERABILITY
+    BOM_UPLOAD, VIEW_PORTFOLIO, VULNERABILITY_ANALYSIS, PROJECT_CREATION_UPLOAD, PORTFOLIO_MANAGEMENT, VIEW_VULNERABILITY, VIEW_POLICY_VIOLATION
 }
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Violation.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Violation.java
new file mode 100644
index 00000000..71067b96
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/Violation.java
@@ -0,0 +1,42 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack.model;
+
+import java.io.Serializable;
+import lombok.EqualsAndHashCode;
+import lombok.Value;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+@Value
+@EqualsAndHashCode(onlyExplicitlyIncluded = true)
+public class Violation implements Serializable {
+
+    private static final long serialVersionUID = -2591514706071774767L;
+
+    @EqualsAndHashCode.Include
+    private final String uuid;
+    private final ViolationType type;
+    private final ViolationState state;
+    private final String policyName;
+    private final Component component;
+
+    public int getStateRank() {
+        return state.ordinal();
+    }
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationState.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationState.java
new file mode 100644
index 00000000..efbeeeb9
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationState.java
@@ -0,0 +1,26 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack.model;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+public enum ViolationState {
+    FAIL,
+    WARN,
+    INFO
+}
diff --git a/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationType.java b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationType.java
new file mode 100644
index 00000000..a86574e6
--- /dev/null
+++ b/src/main/java/org/jenkinsci/plugins/DependencyTrack/model/ViolationType.java
@@ -0,0 +1,26 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack.model;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+public enum ViolationType {
+    LICENSE,
+    SECURITY,
+    OPERATIONAL
+}
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.jelly
index 437e4470..00f738ed 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.jelly
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.jelly
@@ -67,6 +67,12 @@ limitations under the License.
     </f:section>
 
     <f:optionalBlock inline="true" field="synchronous" title="${%enable.synchronous}">
+        <f:entry title="${%warnOnViolationWarn}" field="warnOnViolationWarn">
+            <f:checkbox id="warnOnViolationWarn" />
+        </f:entry>
+        <f:entry title="${%failOnViolationFail}" field="failOnViolationFail">
+            <f:checkbox id="failOnViolationFail" />
+        </f:entry>
         <f:advanced title="${%riskGateThresholds} - ${%totalFindings}" align="left">
             <f:section title="${%riskGateThresholds} - ${%totalFindings}">
                 <f:description>
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.properties
index 314d7880..45a2829f 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config.properties
@@ -40,3 +40,5 @@ Low=Low Finding
 Unassigned=Unassigned Finding
 Unstable=Unstable
 Failure=Failure
+warnOnViolationWarn=Mark build as unstable on policy violations of type WARN
+failOnViolationFail=Fail build on policy violations of type FAIL
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config_de.properties
index 6870c6f9..934fd8e3 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config_de.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/config_de.properties
@@ -40,3 +40,5 @@ Low=Niedriger Befund
 Unassigned=Unkategorisierter Befund
 Unstable=Instabil
 Failure=Fehlgeschlagen
+warnOnViolationWarn=Lauf als instabil markieren, wenn es Richtlinienverst\u00f6\u00dfe mit Schweregrad Warnung gibt
+failOnViolationFail=Lauf fehlschlagen lassen, wenn es Richtlinienverst\u00f6\u00dfe mit Schweregrad Fehler gibt
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail.html b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail.html
new file mode 100644
index 00000000..427eafd0
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail.html
@@ -0,0 +1,4 @@
+<div>
+    <p>Marks the current build as unstable if there is at least one policy violation of severity failure.</p>
+    <p>This setting applies only to synchronous publishing mode!</p>
+</div>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail_de.html b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail_de.html
new file mode 100644
index 00000000..dc5114a8
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-failOnViolationFail_de.html
@@ -0,0 +1,4 @@
+<div>
+    <p>Den Lauf fehlschlagen lassen, wenn es Richtlinienverstöße mit Schweregrad Fehler gibt.</p>
+    <p>Diese Einstellung gilt nur für den synchronen Veröffentlichungsmodus!</p>
+</div>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn.html b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn.html
new file mode 100644
index 00000000..ae78d610
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn.html
@@ -0,0 +1,4 @@
+<div>
+    <p>Marks the current build as unstable if there is at least one policy violation of severity warning.</p>
+    <p>This setting applies only to synchronous publishing mode!</p>
+</div>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn_de.html b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn_de.html
new file mode 100644
index 00000000..efad3da3
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisher/help-warnOnViolationWarn_de.html
@@ -0,0 +1,4 @@
+<div>
+    <p>Den Lauf fehlschlagen lassen, wenn es Richtlinienverstöße mit Schweregrad Warnung gibt.</p>
+    <p>Diese Einstellung gilt nur für den synchronen Veröffentlichungsmodus!</p>
+</div>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.jelly
index 524c01f8..f3d773c7 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.jelly
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.jelly
@@ -2,7 +2,7 @@
 <j:jelly xmlns:j="jelly:core">
 
     <j:if test="${from.isTrendVisible()}">
-        <aside>
+        <aside class="jenkins-!-margin-bottom-3">
             <h3 class="test-trend-caption">
                 ${%chart.title}
             </h3>
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.properties
index 8a5b841d..466a1e29 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox.properties
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-chart.title=Dependency-Track Trend
+chart.title=Vulnerabilities
 
 seriesTitle.critical=Critical
 seriesTitle.high=High
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox_de.properties
index 7def93e1..faa00771 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox_de.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/JobAction/floatingBox_de.properties
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-chart.title=Dependency-Track Trend
+chart.title=Schwachstellen
 
 seriesTitle.critical=Kritisch
 seriesTitle.high=Hoch
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages.properties
index df5b842e..c0243a16 100755
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages.properties
@@ -42,7 +42,10 @@ Builder.Polling=Polling Dependency-Track for BOM processing status
 Builder.Polling.Timeout.Exceeded=Polling Dependency-Track for results is taking longer than expected - polling limit exceeded
 Builder.Project.Lookup=Looking up id of newly created project with name "{0}" and version "{1}"
 Builder.Project.Update=Updating project properties
-Builder.Findings.Processing=Processing findings
+Builder.Findings.Processing=Processing vulnerabilities
+Builder.Violations.Processing=Processing policy violations
+Builder.Violations.Exceed=Violations exceed configured thresholds
+Builder.Violations.Skipped="{0}" permission is missing for team "{1}", processing of policy violations will be skipped
 Builder.Threshold.Exceed=Findings exceed configured thresholds
 Builder.Threshold.ComparingTo=Evaluating new findings against previous build #{0}
 Builder.Threshold.NoComparison=This is the first build. Findings will not be compared to a previous build.
@@ -53,9 +56,11 @@ Builder.Connection.Failed=Could not connect to Dependency-Track. Please check th
 ApiClient.Error.Connection=An error occurred connecting to Dependency-Track - HTTP response code: {0} {1}
 ApiClient.Error.TokenProcessing=An error occurred while checking if a token is being processed - HTTP response code: {0} {1}
 ApiClient.Error.RetrieveFindings=An error occurred while retrieving findings - HTTP response code: {0} {1}
+ApiClient.Error.RetrieveViolations=An error occurred while retrieving violations - HTTP response code: {0} {1}
 ApiClient.Error.ProjectLookup=An error occurred while looking up project id for name "{0}" and version "{1}" - HTTP response code: {2} {3}
 ApiClient.Error.ProjectLoad=An error occurred while loading project with id "{0}" - HTTP response code: {1} {2}
 ApiClient.Error.ProjectUpdate=An error occurred while updating project with id "{0}" - HTTP response code: {1} {2}
 
-Result.DT.Report=Dependency-Track Report
+Result.DT.Report=Report of Vulnerabilities
+Result.DT.ReportViolations=Report of Policy Violations
 Result.DT.Project=Dependency-Track Project
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages_de.properties
index 6acaceac..fff739d9 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages_de.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/Messages_de.properties
@@ -42,7 +42,10 @@ Builder.Polling=Warte auf Ende der Analyse in Dependency-Track
 Builder.Polling.Timeout.Exceeded=Wartezeit f\u00fcr die Analyseergebnisse \u00fcberschritten
 Builder.Project.Lookup=Ermittle ID des eben erzeugten Projekts mit Namen "{0}" und Version "{1}"
 Builder.Project.Update=Aktualisiere Projekt-Eigenschaften
-Builder.Findings.Processing=Verarbeite Ergebnisse
+Builder.Findings.Processing=Verarbeite Schwachstellen
+Builder.Violations.Processing=Verarbeite Richtlinienverst\u00f6\u00dfe
+Builder.Violations.Exceed=Richtlinienverst\u00f6\u00dfe \u00fcberschreiten konfigurierte Schwellwerte
+Builder.Violations.Skipped=Berechtigung "{0}" fehlt f\u00fcr Team "{1}", Verarbeitung der Richtlinienverst\u00f6\u00dfe wird \u00fcbersprungen
 Builder.Threshold.Exceed=Ergebnisse \u00fcberschreiten konfigurierte Schwellwerte
 Builder.Threshold.ComparingTo=Bewerte neue Ergebnisse im Vergleich zu fr\u00fcherem Lauf #{0}
 Builder.Threshold.NoComparison=Dies ist der erste Lauf. Die Ergebnisse werden nicht mit einem fr\u00fcheren Lauf verglichen.
@@ -53,9 +56,11 @@ Builder.Connection.Failed=Es konnte keine Verbindung mit Dependency-Track herges
 ApiClient.Error.Connection=Verbindungsfehler mit Dependency-Track - HTTP-Antwortcode: {0} {1}
 ApiClient.Error.TokenProcessing=Bei der Pr\u00fcfung, ob ein Token verarbeitet wird, ist ein Fehler aufgetreten - HTTP-Antwortcode: {0} {1}
 ApiClient.Error.RetrieveFindings=Beim Abrufen der Ergebnisse ist ein Fehler aufgetreten - HTTP-Antwortcode: {0} {1}
+ApiClient.Error.RetrieveViolations=Beim Abrufen der Richtlinienverst\u00f6\u00dfe ist ein Fehler aufgetreten - HTTP-Antwortcode: {0} {1}
 ApiClient.Error.ProjectLookup=Bei der Suche nach der Projekt-ID f\u00fcr Projektname "{0}" und Version "{1}" ist ein Fehler aufgetreten - HTTP-Antwortcode: {2} {3}
 ApiClient.Error.ProjectLoad=Bei dem Laden des Projekts mit ID "{0}" ist ein Fehler aufgetreten - HTTP response code: {1} {2}
 ApiClient.Error.ProjectUpdate=Bei der Aktualiserung des Projekts mit ID "{0}" ist ein Fehler aufgetreten - HTTP response code: {1} {2}
 
-Result.DT.Report=Dependency-Track Report
+Result.DT.Report=Report der Schwachstellen
+Result.DT.ReportViolations=Report der Richtlinienverst\u00f6\u00dfe
 Result.DT.Project=Dependency-Track Projekt
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/index.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/index.jelly
index 37843188..64b6c830 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/index.jelly
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/index.jelly
@@ -24,7 +24,7 @@
         <l:main-panel>
             <h1>${%page.title(it.displayName, it.run.parent.displayName, it.run.displayName)}</h1>
             <div class="alert alert-warning dt-warning" role="alert">
-                ${%page.globalwarning.1} <j:if test="${it.dependencyTrackUrl != null and !it.dependencyTrackUrl.isEmpty()}">${%page.globalwarning.2(it.dependencyTrackUrl + '/projects/' + it.projectId, 'alert-link')}</j:if>
+                ${%page.globalwarning.1} <j:if test="${it.dependencyTrackUrl != null and !it.dependencyTrackUrl.isEmpty()}">${%page.globalwarning.2(it.dependencyTrackUrl + '/projects/' + it.projectId + '/findings', 'alert-link')}</j:if>
             </div>
 
             <div id="app">
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary.properties
index 1f3754a9..9fecd6e0 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary.properties
@@ -12,8 +12,8 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-summary.text=Dependency Analysis Summary
-summary.title=View detailed dependency analysis
+summary.text=Summary of Vulnerabilities
+summary.title=View report of vulnerabilities
 summary.noFindings=No findings
 
 seriesTitle.critical=Critical
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary_de.properties
index 8e5ad8e5..28a8fa85 100644
--- a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary_de.properties
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ResultAction/summary_de.properties
@@ -12,8 +12,8 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-summary.text=Zusammenfassung der Abh\u00e4ngigkeitsanalyse
-summary.title=Detaillierte Ansicht der Abh\u00e4ngigkeitsanalyse ansehen
+summary.text=Zusammenfassung der Schwachstellen
+summary.title=Report der Schwachstellen ansehen
 summary.noFindings=Keine Befunde
 
 seriesTitle.critical=Kritisch
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.jelly
new file mode 100644
index 00000000..ff53189f
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.jelly
@@ -0,0 +1,15 @@
+<?jelly escape-by-default='true'?>
+<j:jelly xmlns:j="jelly:core">
+
+    <j:if test="${from.isTrendVisible()}">
+        <aside class="jenkins-!-margin-bottom-3">
+            <h3 class="test-trend-caption">
+                ${%chart.title}
+            </h3>
+            <figure id="${from.urlName}-history-chart-violations" style="margin: 0; width: 500px; height: 210px;"/>
+
+            <script src="${resURL}/plugin/dependency-track/js/charts-violations.js" type="module" async="async" data-action-url="${from.bindUrl}" data-crumb-value="${from.crumb}"></script>
+        </aside>
+    </j:if>
+
+</j:jelly>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.properties
new file mode 100644
index 00000000..9e31d124
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox.properties
@@ -0,0 +1,21 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+chart.title=Policy Violations
+yAxis.title=Policy Violations
+tooltip.title=Policy Violations of Build #{value}
+
+seriesTitle.info=Info
+seriesTitle.fail=Failure
+seriesTitle.warn=Warning
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox_de.properties
new file mode 100644
index 00000000..3642d736
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsJobAction/floatingBox_de.properties
@@ -0,0 +1,21 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+chart.title=Richtlinienverst\u00f6\u00dfe
+yAxis.title=Richtlinienverst\u00f6\u00dfe
+tooltip.title=Richtlinienverst\u00f6\u00dfe von Lauf #{value}
+
+seriesTitle.info=Informationell
+seriesTitle.fail=Fehler
+seriesTitle.warn=Warnung
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.jelly
new file mode 100644
index 00000000..fc09cbba
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.jelly
@@ -0,0 +1,113 @@
+<?jelly escape-by-default='true'?>
+<j:jelly xmlns:j="jelly:core" xmlns:l="/lib/layout" xmlns:st="jelly:stapler" xmlns:v-on="vue" xmlns:v-slot="vue">
+
+    <st:header name="viewport" value="width=device-width, initial-scale=1, shrink-to-fit=no" />
+
+    <l:layout title="${%page.title(it.displayName, it.run.parent.displayName, it.run.displayName)}">
+
+        <l:side-panel>
+            <st:include page="sidepanel.jelly" it="${it.run}" optional="true" />
+        </l:side-panel>
+
+        <l:header>
+            <link rel="preload" as="style" onload="this.rel='stylesheet'" href="${resURL}/plugin/dependency-track/css/bootstrap.min.css?v=${it.versionHash}" />
+            <link rel="preload" as="style" onload="this.rel='stylesheet'" href="${resURL}/plugin/dependency-track/css/bootstrap-vue.min.css?v=${it.versionHash}" />
+            <link rel="preload" as="style" onload="this.rel='stylesheet'" href="${resURL}/plugin/dependency-track/css/result-action.css?v=${it.versionHash}" />
+
+            <script type="text/javascript" src="${resURL}/plugin/dependency-track/js/libs/vue.min.js?v=${it.versionHash}" defer="defer"></script>
+            <script type="text/javascript" src="${resURL}/plugin/dependency-track/js/libs/bootstrap-vue.min.js?v=${it.versionHash}" defer="defer"></script>
+            <script type="text/javascript" src="${resURL}/plugin/dependency-track/js/libs/bootstrap-vue-icons.min.js?v=${it.versionHash}" defer="defer"></script>
+
+            <script type="text/javascript" src="${resURL}/plugin/dependency-track/js/violations-action.js?v=${it.versionHash}" defer="defer" data-action-url="${it.bindUrl}" data-crumb-value="${it.crumb}"></script>
+        </l:header>
+
+        <l:main-panel>
+            <h1>${%page.title(it.displayName, it.run.parent.displayName, it.run.displayName)}</h1>
+            <div class="alert alert-warning dt-warning" role="alert">
+                ${%page.globalwarning.1} <j:if test="${it.dependencyTrackUrl != null and !it.dependencyTrackUrl.isEmpty()}">${%page.globalwarning.2(it.dependencyTrackUrl + '/projects/' + it.projectId + '/policyViolations', 'alert-link')}</j:if>
+            </div>
+
+            <div id="app">
+            <b-form-group
+                label-cols-sm="1"
+                label-align-sm="right"
+                label-size="sm"
+                label-for="filterInput"
+                class="mb-1"
+                >
+                <b-input-group size="sm">
+                    <b-form-input
+                        v-model="filter"
+                        type="search"
+                        id="filterInput"
+                        debounce="500"
+                        placeholder="${%searchinput.placeholder}"
+                    ></b-form-input>
+                    <b-input-group-append>
+                        <b-button :disabled="!filter" v-on:click="filter = ''">${%searchinput.clear}</b-button>
+                        <b-dropdown text="${%filter.title}" size="sm" dropleft="dropleft">
+                            <b-dropdown-form>
+                                <b-form-group description="${%filter.description}">
+                                <b-form-checkbox-group v-model="filterOn">
+                                    <b-form-checkbox value="component.name">${%filter.value.name}</b-form-checkbox>
+                                    <b-form-checkbox value="component.version">${%filter.value.version}</b-form-checkbox>
+                                    <b-form-checkbox value="component.group">${%filter.value.group}</b-form-checkbox>
+                                    <b-form-checkbox value="policyName">${%filter.value.policyName}</b-form-checkbox>
+                                    <b-form-checkbox value="type">${%filter.value.type}</b-form-checkbox>
+                                    <b-form-checkbox value="state">${%filter.value.state}</b-form-checkbox>
+                                </b-form-checkbox-group>
+                                </b-form-group>
+                            </b-dropdown-form>
+                        </b-dropdown>
+                    </b-input-group-append>
+                </b-input-group>
+            </b-form-group>
+
+            <span class="sr-only">${%findingsbar.description}</span>
+            <b-progress :max="rows" class="mb-1">
+                <b-progress-bar variant="danger" :value="countByState.FAIL" show-value="show-value" title="${%findingsbar.title.fail}"></b-progress-bar>
+                <b-progress-bar variant="warning" :value="countByState.WARN" show-value="show-value" title="${%findingsbar.title.warn}"></b-progress-bar>
+                <b-progress-bar variant="info" :value="countByState.INFO" show-value="show-value" title="${%findingsbar.title.info}"></b-progress-bar>
+            </b-progress>
+
+            <b-table striped="striped" hover="hover" responsive="responsive" show-empty="show-empty"
+                     id="findings-table"
+                     :items="items"
+                     :fields="fields"
+                     :filter="filter"
+                     :filter-included-fields="filterOn"
+                     :sort-by.sync="sortBy"
+                     :sort-desc.sync="sortDesc"
+                     :per-page="perPage"
+                     :current-page="currentPage"
+                     :busy.sync="isBusy"
+                     :no-provider-paging="true"
+                     :no-provider-sorting="true"
+                     :no-provider-filtering="true"
+                     :filter-function="matchesFilter"
+                     v-on:filtered="onFiltered"
+                     >
+
+                <template slot="cell(stateRank)" slot-scope="data"><j:whitespace>
+                    <b-badge variant="danger" v-if="data.value === 0"><b-icon icon="bug-fill" font-scale="1.5"></b-icon></b-badge>
+                    <b-badge variant="warning" v-if="data.value === 1"><b-icon icon="bug-fill" font-scale="1.5"></b-icon></b-badge>
+                    <b-badge variant="info" v-if="data.value === 2"><b-icon icon="bug-fill" font-scale="1.5"></b-icon></b-badge>
+                    <span v-if="data.value === 0">${%severity.fail}</span>
+                    <span v-if="data.value === 1">${%severity.warn}</span>
+                    <span v-if="data.value === 2">${%severity.info}</span>
+                </j:whitespace></template>
+                <template slot="cell(type)" slot-scope="data"><j:whitespace>
+                    <b-badge pill="pill" variant="info">{{data.value}}</b-badge>
+                </j:whitespace></template>
+            </b-table>
+            <b-pagination
+                v-model="currentPage"
+                :total-rows="rows"
+                :per-page="perPage"
+                aria-controls="findings-table"
+                align="center"
+                ></b-pagination>
+        </div>
+        </l:main-panel>
+    </l:layout>
+</j:jelly>
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.properties
new file mode 100644
index 00000000..3ec08677
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index.properties
@@ -0,0 +1,38 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+page.title={0} for {1}{2}
+page.globalwarning.1=These results may not be up to date.
+page.globalwarning.2=Please visit <a class="{1}" href="{0}">the Dependency-Track project page</a> for the most recent results.
+
+searchinput.placeholder=Type to Search
+searchinput.clear=Clear
+
+filter.title=Filter on
+filter.description=Leave all unchecked to filter on all data
+filter.value.name=Name
+filter.value.version=Version
+filter.value.group=Group
+filter.value.policyName=Policy Name
+filter.value.type=Type
+filter.value.state=State
+
+findingsbar.description=#Violations:
+findingsbar.title.fail=#fail violations
+findingsbar.title.warn=#warn violations
+findingsbar.title.info=#info violations
+
+severity.fail=Failure
+severity.warn=Warning
+severity.info=Info
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index_de.properties
new file mode 100644
index 00000000..1741b09f
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/index_de.properties
@@ -0,0 +1,41 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+page.title={0} f\u00fcr {1}{2}
+page.globalwarning.1=Diese Ergebnisse sind m\u00f6glicherweise veraltet.
+page.globalwarning.2=Bitte besuchen Sie <a class="{1}" href="{0}">die Projektseite in Dependency-Track</a> f\u00fcr aktuelle Ergebnisse.
+
+searchinput.placeholder=In Ergebnissen suchen
+searchinput.clear=L\u00f6schen
+
+filter.title=Einschr\u00e4nken auf
+filter.description=Leer lassen um \u00fcber alle Spalten zu suchen
+filter.value.name=Name
+filter.value.version=Version
+filter.value.group=Gruppe
+filter.value.policyName=Richtlinienname
+filter.value.type=Richtlinientyp
+filter.value.state=Schweregrad
+
+findingsbar.description=#Richtlinienverst\u00f6\u00dfe:
+findingsbar.title.fail=#Verst\u00f6\u00dfe mit Schweregrad Fehler
+findingsbar.title.warn=#Verst\u00f6\u00dfe mit Schweregrad Warnung
+findingsbar.title.info=#Verst\u00f6\u00dfe mit Schweregrad Informationell
+
+recommendation.title=Empfehlung
+analysis.state.title=Analysis state
+
+severity.fail=Fehler
+severity.warn=Warnung
+severity.info=Informationell
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.jelly b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.jelly
new file mode 100644
index 00000000..16b5805d
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.jelly
@@ -0,0 +1,15 @@
+<?jelly escape-by-default='true'?>
+<j:jelly xmlns:j="jelly:core" xmlns:h="/lib/hudson" xmlns:l="/lib/layout">
+
+    <h:summary icon="${from.iconFileName}" href="${from.urlName}/" iconOnly="true">
+        <h3><a href="${from.urlName}/" title="${%summary.title}">${%summary.text}</a></h3>
+        <j:choose>
+            <j:when test="${from.hasViolations()}">
+                <figure id="${from.urlName}-summary-chart" style="margin:0; width: 500px; height: 210px;"/>
+                <script src="${resURL}/plugin/dependency-track/js/violations-summary.js?v=${from.versionHash}" type="module" async="async" data-action-url="${it.bindUrl}" data-crumb-value="${it.crumb}"></script>
+            </j:when>
+            <j:otherwise><p>${%summary.noFindings}</p></j:otherwise>
+        </j:choose>
+    </h:summary>
+
+</j:jelly>
\ No newline at end of file
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.properties
new file mode 100644
index 00000000..0e85d54e
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary.properties
@@ -0,0 +1,23 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+summary.text=Summary of Policy Violations
+summary.title=View report of policy violations
+summary.noFindings=No violations
+
+seriesTitle.fail=Failure
+seriesTitle.warn=Warning
+seriesTitle.info=Info
+
+tooltip.title=Policy Violations
diff --git a/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary_de.properties b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary_de.properties
new file mode 100644
index 00000000..7fe7ed69
--- /dev/null
+++ b/src/main/resources/org/jenkinsci/plugins/DependencyTrack/ViolationsRunAction/summary_de.properties
@@ -0,0 +1,23 @@
+# This file is part of Dependency-Track Jenkins plugin.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+summary.text=Zusammenfassung der Richtlinienverst\u00f6\u00dfe
+summary.title=Report der Richtlinienverst\u00f6\u00dfe ansehen
+summary.noFindings=Keine Verst\u00f6\u00dfe
+
+seriesTitle.fail=Fehler
+seriesTitle.warn=Warnung
+seriesTitle.info=Informationell
+
+tooltip.title=Richtlinienverst\u00f6\u00dfe
diff --git a/src/main/webapp/js/charts-violations.js b/src/main/webapp/js/charts-violations.js
new file mode 100644
index 00000000..30237558
--- /dev/null
+++ b/src/main/webapp/js/charts-violations.js
@@ -0,0 +1,180 @@
+import { init as echartsInit } from './libs/echarts.esm.min.js';
+const currentScript = document.currentScript || document.querySelector('script[type="module"][src$="/plugin/dependency-track/js/charts-violations.js"][data-action-url]');
+
+    const actionUrl = new URL(currentScript.dataset.actionUrl, window.location.origin);
+    if (!(actionUrl.origin === window.location.origin
+            && /^https?:$/.test(actionUrl.protocol)
+            && actionUrl.pathname.startsWith(`${document.head.dataset.rooturl}/$stapler/bound/`)
+    )) {
+        throw new Error('malicious URL in data-action-url detected!');
+    }
+
+    const crumbHeaderName = document.head.dataset.crumbHeader || 'Jenkins-Crumb';
+    const crumbValue = document.head.dataset.crumbValue || currentScript.dataset.crumbValue || '';
+    const fetchHeaders = new Headers([
+        ['Content-Type', 'application/x-stapler-method-invocation;charset=UTF-8'],
+        ['Crumb', crumbValue],
+        [crumbHeaderName, crumbValue],
+    ]);
+
+    const container = document.getElementById('dtrackTrend-history-chart-violations');
+    const textColor = window.getComputedStyle(container).getPropertyValue('color');
+    const fontFamily = window.getComputedStyle(container).getPropertyValue('font-family');
+    const chart = echartsInit(container);
+    chart.setOption({
+        tooltip: {
+            trigger: 'axis',
+            axisPointer: {
+                label: {
+                    formatter: 'Policy Violations of Build #{value}',
+                },
+            },
+        },
+        legend: {
+            orient: 'horizontal',
+            x: 'center',
+            y: 'bottom',
+            textStyle: {
+                color: textColor,
+                fontFamily,
+            }
+        },
+        grid: {
+            left: 20,
+            right: 10,
+            bottom: '20%',
+            top: 10,
+            containLabel: true
+        },
+        xAxis: {
+            type: 'category',
+            boundaryGap: false,
+            axisLabel: {
+                fontWeight: 'bolder',
+                formatter: '#{value}',
+            },
+            triggerEvent: true,
+        },
+        yAxis: [
+            {
+                id: 'Violations',
+                name: 'Violations',
+                nameLocation: 'center',
+                boundaryGap: false,
+                nameGap: 30,
+                nameRotate: 90,
+                type: 'value'
+            }
+        ],
+        color: ['#dc0000', '#fdc500', '#357abd'],
+        textStyle: {
+            color: textColor,
+            fontFamily,
+        },
+        series: [
+            {
+                id: 'Fail',
+                name: 'Fail',
+                type: 'line',
+                z: 5,
+                emphasis: {
+                    focus: 'series',
+                },
+            },
+            {
+                id: 'Warn',
+                name: 'Warning',
+                type: 'line',
+                z: 3,
+                emphasis: {
+                    focus: 'series',
+                },
+            },
+            {
+                id: 'Info',
+                name: 'Info',
+                type: 'line',
+                z: 1,
+                emphasis: {
+                    focus: 'series',
+                },
+            }
+        ]
+    });
+    chart.resize();
+    chart.on('click', 'xAxis', event => {
+        if (event.targetType === 'axisLabel' && event.value) {
+            window.location += parseInt(event.value, 10) + '/dependency-track-violations';
+        }
+    });
+    window.addEventListener('resize', () => {
+        chart.resize();
+    });
+
+    window.fetch(`${document.head.dataset.rooturl}/i18n/resourceBundle/?baseName=org.jenkinsci.plugins.DependencyTrack.ViolationsJobAction.floatingBox`, {
+        mode: 'same-origin',
+        credentials: 'same-origin',
+        cache: 'default',
+        headers: new Headers([
+            ['Content-Type', 'application/json'],
+            ['Crumb', crumbValue],
+            [crumbHeaderName, crumbValue],
+        ]),
+    })
+    .then(response => response.ok ? response.json().then(json => json.data) : {})
+    .then(i18n => {
+        chart.setOption({
+            tooltip: {
+                axisPointer: {
+                    label: { formatter: i18n['tooltip.title'] }
+                },
+            },
+            yAxis: [
+                { id: 'Violations', name: i18n['yAxis.title'] },
+            ],
+            series: [
+                { id: 'Fail', name: i18n['seriesTitle.fail'] },
+                { id: 'Warn', name: i18n['seriesTitle.warn'] },
+                { id: 'Info', name: i18n['seriesTitle.info'] },
+            ]
+        });
+    });
+    
+    window.fetch(`${actionUrl.href}/getViolationsTrend`, {
+        method: 'POST',
+        mode: 'same-origin',
+        credentials: 'same-origin',
+        cache: 'default',
+        body: '[]',
+        headers: fetchHeaders,
+    })
+    .then(response => {
+        if (response.ok) {
+            return response.json().then(data => Array.isArray(data) ? data : []);
+        } else {
+            throw new Error(`HTTP error! status: ${response.status}`);
+        }
+    })
+    .then(data => {
+        if (data.length) {
+            chart.setOption({
+                xAxis: {
+                    data: data.map(run => run.buildNumber),
+                },
+                series: [
+                    {
+                        id: 'Fail',
+                        data: data.map(run => run.fail)
+                    },
+                    {
+                        id: 'Warn',
+                        data: data.map(run => run.warn)
+                    },
+                    {
+                        id: 'Info',
+                        data: data.map(run => run.info)
+                    }
+                ]
+            });
+        }
+    });
diff --git a/src/main/webapp/js/result-action.js b/src/main/webapp/js/result-action.js
index ec8f5397..238423c2 100644
--- a/src/main/webapp/js/result-action.js
+++ b/src/main/webapp/js/result-action.js
@@ -131,10 +131,14 @@
                 const searchValues = [];
                 Object.entries(accessPaths).forEach(p1 => {
                     p1[1].forEach(p2 => {
+                        let searchValue;
                         if (p1[0] === 'vulnerability' && p2 === 'severityRank') {
-                            searchValues.push(item.vulnerability.severity.toLowerCase());
+                            searchValue = item.vulnerability.severity;
                         } else {
-                            searchValues.push(item[p1[0]][p2].toString().toLowerCase());
+                            searchValue = item[p1[0]][p2].toString();
+                        }
+                        if (searchValue) {
+                            searchValues.push(searchValue.toLowerCase());
                         }
                     });
                 });
diff --git a/src/main/webapp/js/violations-action.js b/src/main/webapp/js/violations-action.js
new file mode 100644
index 00000000..bd234e22
--- /dev/null
+++ b/src/main/webapp/js/violations-action.js
@@ -0,0 +1,163 @@
+'use strict';
+
+// create vue.js based table
+(function () {
+    function getNativeFunction(clazz, func) {
+        const frame = document.createElement('iframe');
+        frame.style.display = 'none';
+        document.body.appendChild(frame);
+        const nativeClazz = frame.contentWindow[clazz];
+        frame.parentNode.removeChild(frame);
+        return nativeClazz.prototype[func];
+    }
+
+// make String.trim() work again like it should
+// otherwise sorting the vue.js-table will not work
+    if (String.prototype.trim.toString().indexOf('[native code]') === -1) {
+        String.prototype.trim = getNativeFunction('String', 'trim');
+    }
+// restore Array.filter ... damn ancient prototype.js!
+// otherwise "updateAriaDescribedby" in boostrape-vue (2.21+) will not work because 3rd arg in filter callback is undefined
+    if (Array.prototype.filter.toString().indexOf('[native code]') === -1) {
+        Array.prototype.filter = getNativeFunction('Array', 'filter');
+    }
+
+    const actionUrl = new URL(document.currentScript.dataset.actionUrl, window.location.origin);
+    if (!(actionUrl.origin === window.location.origin
+            && /^https?:$/.test(actionUrl.protocol)
+            && actionUrl.pathname.startsWith(`${document.head.dataset.rooturl}/$stapler/bound/`)
+    )) {
+        throw new Error('malicious URL in data-action-url detected!');
+    }
+
+    const crumbHeaderName = document.head.dataset.crumbHeader || 'Jenkins-Crumb';
+    const crumbValue = document.head.dataset.crumbValue || document.currentScript.dataset.crumbValue || '';
+    const fetchHeaders = new Headers([
+        ['Content-Type', 'application/x-stapler-method-invocation;charset=UTF-8'],
+        ['Crumb', crumbValue],
+        [crumbHeaderName, crumbValue],
+    ]);
+
+    /**
+     * update severity-bar
+     * 
+     * @param {object[]} items
+     */
+    function updateCounter(items) {
+        this.countByState.FAIL = items.filter(violation => violation.state === 'FAIL').length;
+        this.countByState.WARN = items.filter(violation => violation.state === 'WARN').length;
+        this.countByState.INFO = items.filter(violation => violation.state === 'INFO').length;
+    }
+
+    /**
+     * Trigger pagination to update the number of buttons/pages due to filtering
+     * 
+     * @param {object[]} items
+     */
+    function updatePaging(items) {
+        this.rows = items.length;
+        this.currentPage = 1;
+    }
+
+    const app = new Vue({
+        el: '#app',
+        data: {
+            rows: 0,
+            perPage: 10,
+            currentPage: 1,
+            isBusy: false,
+            sortBy: 'stateRank',
+            sortDesc: false,
+            filter: null,
+            filterOn: [],
+            fields: [
+                { key: 'component.name', label: 'Name', sortable: true },
+                { key: 'component.version', label: 'Version', sortable: true },
+                { key: 'component.group', label: 'Group', sortable: true },
+                { key: 'policyName', label: 'Policy Name', sortable: true },
+                { key: 'type', label: 'Type', sortable: true },
+                { key: 'stateRank', label: 'State', sortable: true },
+            ],
+            countByState: {
+                FAIL: 0,
+                WARN: 0,
+                INFO: 0,
+            }
+        },
+        methods: {
+            items(ctx, callback) {
+                return window.fetch(`${actionUrl.href}/getViolationsJson`, {
+                    method: 'POST',
+                    mode: 'same-origin',
+                    credentials: 'same-origin',
+                    cache: 'default',
+                    body: '[]',
+                    headers: fetchHeaders,
+                })
+                .then(response => {
+                    if (response.ok) {
+                        return response.json().then(data => Array.isArray(data) ? data : []);
+                    } else {
+                        throw new Error(`HTTP error! status: ${response.status}`);
+                    }
+                }).then(items => {
+                    updatePaging.call(this, items);
+                    updateCounter.call(this, items);
+                    return items;
+                });
+            },
+            onFiltered(filteredItems) {
+                updatePaging.call(this, filteredItems);
+                updateCounter.call(this, filteredItems);
+            },
+            matchesFilter(item, term) {
+                const keys = this.filterOn.length ? this.filterOn : this.fields.map(field => field.key);
+                const searchValues = [];
+                const accessPaths = { };
+                keys.filter(key => key.includes('.')).forEach(key => {
+                    const parts = key.split('.');
+                    if (accessPaths[parts[0]] === undefined) {
+                        accessPaths[parts[0]] = [parts[1]];
+                    } else {
+                        accessPaths[parts[0]].push(parts[1]);
+                    }
+                });
+                keys.filter(key => !key.includes('.')).forEach(key => {
+                   accessPaths[key] = key;
+                });
+                Object.entries(accessPaths).forEach(p1 => {
+                    if (Array.isArray(p1[1])) {
+                        searchValues.push(...p1[1].map(p2 => item[p1[0]][p2].toLowerCase()).filter(value => value.length));
+                    } else {
+                        if (p1[0] === 'stateRank' && item['state']) {
+                            searchValues.push(item['state'].toLowerCase());
+                        } else if (item[p1[0]]) {
+                            searchValues.push(item[p1[0]].toLowerCase());
+                        }
+                    }
+                });
+                return searchValues.some(value => value.includes(term.trim().toLowerCase()));
+            }
+        },
+    });
+
+    window.fetch(`${document.head.dataset.rooturl}/i18n/resourceBundle/?baseName=org.jenkinsci.plugins.DependencyTrack.ViolationsRunAction.index`, {
+        mode: 'same-origin',
+        credentials: 'same-origin',
+        cache: 'default',
+        headers: new Headers([
+            ['Content-Type', 'application/json'],
+            ['Crumb', crumbValue],
+            [crumbHeaderName, crumbValue],
+        ]),
+    })
+    .then(response => response.ok ? response.json().then(json => json.data) : {})
+    .then(i18n => {
+        app.fields.find(field => field.key === 'component.name').label = i18n['filter.value.name'];
+        app.fields.find(field => field.key === 'component.version').label = i18n['filter.value.version'];
+        app.fields.find(field => field.key === 'component.group').label = i18n['filter.value.group'];
+        app.fields.find(field => field.key === 'policyName').label = i18n['filter.value.policyName'];
+        app.fields.find(field => field.key === 'type').label = i18n['filter.value.type'];
+        app.fields.find(field => field.key === 'stateRank').label = i18n['filter.value.state'];
+    });
+})();
diff --git a/src/main/webapp/js/violations-summary.js b/src/main/webapp/js/violations-summary.js
new file mode 100644
index 00000000..4ca20a89
--- /dev/null
+++ b/src/main/webapp/js/violations-summary.js
@@ -0,0 +1,124 @@
+import { init as echartsInit } from './libs/echarts.esm.min.js';
+const currentScript = document.currentScript || document.querySelector('script[type="module"][src*="/plugin/dependency-track/js/violations-summary.js"][data-action-url]');
+
+    const actionUrl = new URL(currentScript.dataset.actionUrl, window.location.origin);
+    if (!(actionUrl.origin === window.location.origin
+            && /^https?:$/.test(actionUrl.protocol)
+            && actionUrl.pathname.startsWith(`${document.head.dataset.rooturl}/$stapler/bound/`)
+    )) {
+        throw new Error('malicious URL in data-action-url detected!');
+    }
+
+    const crumbHeaderName = document.head.dataset.crumbHeader || 'Jenkins-Crumb';
+    const crumbValue = document.head.dataset.crumbValue || currentScript.dataset.crumbValue || '';
+    const fetchHeaders = new Headers([
+        ['Content-Type', 'application/x-stapler-method-invocation;charset=UTF-8'],
+        ['Crumb', crumbValue],
+        [crumbHeaderName, crumbValue],
+    ]);
+
+    const container = document.getElementById('dependency-track-violations-summary-chart');
+    const textColor = window.getComputedStyle(container).getPropertyValue('color');
+    const fontFamily = window.getComputedStyle(container).getPropertyValue('font-family');
+    const chart = echartsInit(container);
+    chart.setOption({
+        tooltip: {
+            trigger: 'item',
+        },
+        grid: {
+            left: 20,
+            bottom: 10,
+            top: 10,
+            containLabel: true
+        },
+        xAxis: {
+            type: 'value',
+            max: 'dataMax',
+            min: 0,
+            minInterval: 1,
+        },
+        yAxis: {
+            type: 'category',
+            data: ['Fail', 'Warn', 'Info'],
+            inverse: true,
+            nameGap: 30,
+            axisLabel: {
+                interval: 0,
+            },
+        },
+        textStyle: {
+            color: textColor,
+            fontFamily,
+        },
+        series: [
+            {
+                id: 'Violations',
+                name: 'Violations',
+                type: 'bar',
+                emphasis: {
+                    focus: 'item',
+                },
+            },
+        ]
+    });
+
+    window.fetch(`${document.head.dataset.rooturl}/i18n/resourceBundle/?baseName=org.jenkinsci.plugins.DependencyTrack.ViolationsRunAction.summary`, {
+        mode: 'same-origin',
+        credentials: 'same-origin',
+        cache: 'default',
+        headers: new Headers([
+            ['Content-Type', 'application/json'],
+            ['Crumb', crumbValue],
+            [crumbHeaderName, crumbValue],
+        ]),
+    })
+    .then(response => response.ok ? response.json().then(json => json.data) : {})
+    .then(i18n => {
+        chart.setOption({
+            series: [
+                { id: 'Violations', name: i18n['tooltip.title'] }
+            ],
+            yAxis: {
+                data: [i18n['seriesTitle.fail'], i18n['seriesTitle.warn'], i18n['seriesTitle.info']],
+            }
+        });
+    });
+
+    window.fetch(`${actionUrl.href}/getViolationsJson`, {
+        method: 'POST',
+        mode: 'same-origin',
+        credentials: 'same-origin',
+        cache: 'default',
+        body: '[]',
+        headers: fetchHeaders,
+    })
+    .then(response => {
+        if (response.ok) {
+            return response.json().then(data => Array.isArray(data) ? data : []);
+        } else {
+            throw new Error(`HTTP error! status: ${response.status}`);
+        }
+    })
+    .then(data => {
+        if (data.length) {
+            const chartData = [
+                { name: 'FAIL', value: 0, color: '#dc0000' },
+                { name: 'WARN', value: 0, color: '#fdc500' },
+                { name: 'INFO', value: 0, color: '#357abd' },
+            ];
+            data.forEach(violation => {
+                chartData.find(item => item.name === violation.state).value++;
+            });
+            chart.setOption({
+                series: [
+                    {
+                        id: 'Violations',
+                        data: chartData.map(item => {
+                            return { value: item.value, itemStyle: { color: item.color } };
+                        }),
+                    },
+                ]
+            });
+        }
+    });
+
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ApiClientTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ApiClientTest.java
index eafe8a3b..81bc6a16 100644
--- a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ApiClientTest.java
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ApiClientTest.java
@@ -300,6 +300,48 @@ void getFindingsTestWithErrors() throws IOException {
         verify(httpClient, times(2)).newCall(any(okhttp3.Request.class));
     }
 
+    @Test
+    void getViolationsTest(JenkinsRule r) throws ApiClientException {
+        server = HttpServer.create()
+                .host("localhost")
+                .port(0)
+                .route(routes -> routes.get(ApiClient.PROJECT_VIOLATIONS_URL + "/{uuid}", (request, response) -> {
+            assertCommonHeaders(request);
+            assertThat(request.param("uuid")).isNotEmpty();
+            String uuid = request.param("uuid");
+            switch (uuid) {
+                case "uuid-1":
+                    return response.sendString(Mono.just("[]"));
+                default:
+                    return response.sendNotFound();
+            }
+        }))
+                .bindNow();
+
+        ApiClient uut = createClient();
+
+        assertThatCode(() -> uut.getViolations("foo")).isInstanceOf(ApiClientException.class)
+                .hasNoCause()
+                .hasMessage(Messages.ApiClient_Error_RetrieveViolations(HttpResponseStatus.NOT_FOUND.code(), HttpResponseStatus.NOT_FOUND.reasonPhrase()));
+
+        assertThat(uut.getViolations("uuid-1")).isEmpty();
+    }
+
+    @Test
+    void getViolationsTestWithErrors() throws IOException {
+        final var httpClient = mock(OkHttpClient.class);
+        final var call = mock(okhttp3.Call.class);
+        final var uut = createClient(httpClient);
+        when(httpClient.newCall(any(okhttp3.Request.class))).thenReturn(call);
+        doThrow(new ConnectException("oops"))
+                .when(call).execute();
+
+        assertThatCode(() -> uut.getViolations("foo"))
+                .hasMessage(Messages.ApiClient_Error_Connection("", ""))
+                .hasCauseInstanceOf(ConnectException.class);
+        verify(httpClient, times(2)).newCall(any(okhttp3.Request.class));
+    }
+
     @Test
     void uploadTestWithUuid(@TempDir Path tmp, JenkinsRule r) throws IOException, InterruptedException {
         Path bom = tmp.resolve("bom.xml");
@@ -460,7 +502,7 @@ void isTokenBeingProcessedTestWithErrors() throws IOException {
     }
 
     @Test
-    void updateProjectPropertiesTest(JenkinsRule r) throws ApiClientException, InterruptedException {
+    void updateProjectPropertiesTest(JenkinsRule r) throws InterruptedException {
         final AtomicReference<String> requestBody = new AtomicReference<>();
         final CountDownLatch completionSignal = new CountDownLatch(1);
         server = HttpServer.create()
@@ -507,7 +549,7 @@ void updateProjectPropertiesTest(JenkinsRule r) throws ApiClientException, Inter
     }
 
     @Test
-    void updateProjectPropertiesTestWithStatus304(JenkinsRule r) throws ApiClientException, InterruptedException {
+    void updateProjectPropertiesTestWithStatus304(JenkinsRule r) throws InterruptedException {
         final CountDownLatch completionSignal = new CountDownLatch(1);
         server = HttpServer.create()
                 .host("localhost")
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ConsoleLoggerTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ConsoleLoggerTest.java
index 20eaa29e..9ff5dedc 100644
--- a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ConsoleLoggerTest.java
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ConsoleLoggerTest.java
@@ -32,7 +32,7 @@
 class ConsoleLoggerTest {
 
     @Test
-    void testLog() throws IOException {
+    void testLog() {
         PrintStream ps = mock(PrintStream.class);
         ConsoleLogger uut = new ConsoleLogger(ps);
         uut.log("test\r\nline2");
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisherTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisherTest.java
index d3c42dbc..4e81fd52 100644
--- a/src/test/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisherTest.java
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/DependencyTrackPublisherTest.java
@@ -35,9 +35,14 @@
 import java.io.ObjectOutputStream;
 import java.nio.file.Path;
 import java.util.List;
+import java.util.Set;
 import org.jenkinsci.plugins.DependencyTrack.model.Project;
 import org.jenkinsci.plugins.DependencyTrack.model.SeverityDistribution;
+import org.jenkinsci.plugins.DependencyTrack.model.Team;
 import org.jenkinsci.plugins.DependencyTrack.model.UploadResult;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationType;
 import org.jenkinsci.plugins.plaincredentials.impl.StringCredentialsImpl;
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
@@ -50,6 +55,7 @@
 
 import static org.assertj.core.api.Assertions.assertThat;
 import static org.assertj.core.api.Assertions.assertThatCode;
+import static org.jenkinsci.plugins.DependencyTrack.model.Permissions.VIEW_POLICY_VIOLATION;
 import static org.mockito.ArgumentMatchers.any;
 import static org.mockito.ArgumentMatchers.anyString;
 import static org.mockito.ArgumentMatchers.eq;
@@ -90,7 +96,7 @@ class DependencyTrackPublisherTest {
     private final String apikey = "api-key";
 
     @BeforeEach
-    void setup(JenkinsRule r) throws ApiClientException, IOException {
+    void setup(JenkinsRule r) throws IOException {
         when(listener.getLogger()).thenReturn(System.err);
 
         DescriptorImpl descriptor = r.jenkins.getDescriptorByType(DescriptorImpl.class);
@@ -143,7 +149,7 @@ void testPerformPrechecks(@TempDir Path tmpWork) throws IOException {
     }
 
     @Test
-    void doNotThrowNPEinGetEffectiveApiKey(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void doNotThrowNPEinGetEffectiveApiKey(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -156,7 +162,7 @@ void doNotThrowNPEinGetEffectiveApiKey(@TempDir Path tmpWork) throws IOException
     }
 
     @Test
-    void testPerformAsync(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testPerformAsync(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -173,6 +179,8 @@ void testPerformAsync(@TempDir Path tmpWork) throws IOException, InterruptedExce
 
         assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
         verify(client, never()).getFindings(anyString());
+        verify(client, never()).getTeamPermissions();
+        verify(client, never()).getViolations(anyString());
         verify(client, never()).lookupProject(anyString(), anyString());
         verify(client, never()).updateProjectProperties(eq("uuid-1"), any(ProjectProperties.class));
 
@@ -180,7 +188,7 @@ void testPerformAsync(@TempDir Path tmpWork) throws IOException, InterruptedExce
     }
 
     @Test
-    void testPerformAsyncWithoutProjectId(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testPerformAsyncWithoutProjectId(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -195,10 +203,12 @@ void testPerformAsyncWithoutProjectId(@TempDir Path tmpWork) throws IOException,
         assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
         verify(client, never()).lookupProject(anyString(), anyString());
         verify(client, never()).getFindings(anyString());
+        verify(client, never()).getTeamPermissions();
+        verify(client, never()).getViolations(anyString());
     }
 
     @Test
-    void testPerformSync(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testPerformSync(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -210,6 +220,7 @@ void testPerformSync(@TempDir Path tmpWork) throws IOException, InterruptedExcep
         when(client.upload(eq("uuid-1"), isNull(), isNull(), any(FilePath.class), eq(false), isNull())).thenReturn(new UploadResult(true, "token-1"));
         when(client.isTokenBeingProcessed("token-1")).thenReturn(Boolean.TRUE).thenReturn(Boolean.FALSE);
         when(client.getFindings("uuid-1")).thenReturn(List.of());
+        when(client.getTeamPermissions()).thenReturn(Team.builder().name("test-team").permissions(Set.of()).build());
         
         Run buildWithResultAction = mock(Run.class);
         when(buildWithResultAction.getResult()).thenReturn(Result.SUCCESS);
@@ -225,11 +236,12 @@ void testPerformSync(@TempDir Path tmpWork) throws IOException, InterruptedExcep
         assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
         verify(client, times(2)).isTokenBeingProcessed("token-1");
         verify(client).getFindings("uuid-1");
+        verify(client).getTeamPermissions();
         verify(buildWithResultAction, times(2)).getAction(ResultAction.class);
     }
 
     @Test
-    void testPerformSyncNoThresholds(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testPerformSyncNoThresholds(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -240,6 +252,7 @@ void testPerformSyncNoThresholds(@TempDir Path tmpWork) throws IOException, Inte
         when(client.upload(eq("uuid-1"), isNull(), isNull(), any(FilePath.class), eq(false), isNull())).thenReturn(new UploadResult(true, "token-1"));
         when(client.isTokenBeingProcessed("token-1")).thenReturn(Boolean.TRUE).thenReturn(Boolean.FALSE);
         when(client.getFindings("uuid-1")).thenReturn(List.of());
+        when(client.getTeamPermissions()).thenReturn(Team.builder().name("test-team").permissions(Set.of()).build());
         
         Run abortedBuild = mock(Run.class);
         when(abortedBuild.getResult()).thenReturn(Result.NOT_BUILT);
@@ -248,11 +261,55 @@ void testPerformSyncNoThresholds(@TempDir Path tmpWork) throws IOException, Inte
         assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
         verify(client, times(2)).isTokenBeingProcessed("token-1");
         verify(client).getFindings("uuid-1");
+        verify(client).getTeamPermissions();
         verify(abortedBuild, never()).getAction(ResultAction.class);
     }
 
     @Test
-    void testPerformSyncWithoutProjectId(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testPerformSyncNoThresholdsWarnOnViolationWarn(@TempDir Path tmpWork) throws IOException {
+        File tmp = tmpWork.resolve("bom.xml").toFile();
+        tmp.createNewFile();
+        FilePath workDir = new FilePath(tmpWork.toFile());
+        DependencyTrackPublisher uut = new DependencyTrackPublisher(tmp.getName(), true, clientFactory);
+        uut.setProjectId("uuid-1");
+        uut.setDependencyTrackApiKey(apikeyId);
+        uut.setWarnOnViolationWarn(true);
+
+        when(client.upload(eq("uuid-1"), isNull(), isNull(), any(FilePath.class), eq(false), isNull())).thenReturn(new UploadResult(true, "token-1"));
+        when(client.isTokenBeingProcessed("token-1")).thenReturn(Boolean.FALSE);
+        when(client.getFindings("uuid-1")).thenReturn(List.of());
+        when(client.getTeamPermissions()).thenReturn(Team.builder().name("test-team").permissions(Set.of(VIEW_POLICY_VIOLATION.toString())).build());
+        when(client.getViolations("uuid-1")).thenReturn(List.of(new Violation("uuid-1", ViolationType.SECURITY, ViolationState.WARN, "rule-1", null)));
+
+        assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
+        verify(client).isTokenBeingProcessed("token-1");
+        verify(client).getFindings("uuid-1");
+        verify(client).getTeamPermissions();
+        verify(client).getViolations("uuid-1");
+        verify(build).setResult(Result.UNSTABLE);
+    }
+
+    @Test
+    void testPerformSyncNoThresholdsFailOnViolationFail(@TempDir Path tmpWork) throws IOException {
+        File tmp = tmpWork.resolve("bom.xml").toFile();
+        tmp.createNewFile();
+        FilePath workDir = new FilePath(tmpWork.toFile());
+        DependencyTrackPublisher uut = new DependencyTrackPublisher(tmp.getName(), true, clientFactory);
+        uut.setProjectId("uuid-1");
+        uut.setDependencyTrackApiKey(apikeyId);
+        uut.setFailOnViolationFail(true);
+
+        when(client.upload(eq("uuid-1"), isNull(), isNull(), any(FilePath.class), eq(false), isNull())).thenReturn(new UploadResult(true, "token-1"));
+        when(client.isTokenBeingProcessed("token-1")).thenReturn(Boolean.FALSE);
+        when(client.getFindings("uuid-1")).thenReturn(List.of());
+        when(client.getTeamPermissions()).thenReturn(Team.builder().name("test-team").permissions(Set.of(VIEW_POLICY_VIOLATION.toString())).build());
+        when(client.getViolations("uuid-1")).thenReturn(List.of(new Violation("uuid-1", ViolationType.SECURITY, ViolationState.FAIL, "rule-1", null)));
+
+        assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).isInstanceOf(AbortException.class).hasMessage(Messages.Builder_Violations_Exceed());
+    }
+
+    @Test
+    void testPerformSyncWithoutProjectId(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
@@ -264,22 +321,27 @@ void testPerformSyncWithoutProjectId(@TempDir Path tmpWork) throws IOException,
         uut.setDependencyTrackApiKey(apikeyId);
         uut.setAutoCreateProjects(Boolean.TRUE);
         uut.setProjectProperties(props);
+        final var team = Team.builder().name("test-team").permissions(Set.of(VIEW_POLICY_VIOLATION.toString())).build();
 
         when(client.upload(isNull(), eq("name-1"), eq("version-1"), any(FilePath.class), eq(true), eq(props))).thenReturn(new UploadResult(true, "token-1"));
         when(client.isTokenBeingProcessed("token-1")).thenReturn(Boolean.TRUE).thenReturn(Boolean.FALSE);
         when(client.getFindings("uuid-1")).thenReturn(List.of());
+        when(client.getTeamPermissions()).thenReturn(team);
+        when(client.getViolations("uuid-1")).thenReturn(List.of());
         when(client.lookupProject("name-1", "version-1")).thenReturn(Project.builder().uuid("uuid-1").build());
 
         assertThatCode(() -> uut.perform(build, workDir, env, launcher, listener)).doesNotThrowAnyException();
         assertThat(uut.getProjectId()).isNullOrEmpty();
         verify(client, times(2)).isTokenBeingProcessed("token-1");
         verify(client).getFindings("uuid-1");
+        verify(client).getTeamPermissions();
+        verify(client).getViolations("uuid-1");
         verify(client).updateProjectProperties("uuid-1", props);
         verify(client).lookupProject("name-1", "version-1");
     }
 
     @Test
-    void testUseOfOverridenProperties(@TempDir Path tmpWork) throws IOException, InterruptedException {
+    void testUseOfOverridenProperties(@TempDir Path tmpWork) throws IOException {
         File tmp = tmpWork.resolve("bom.xml").toFile();
         tmp.createNewFile();
         FilePath workDir = new FilePath(tmpWork.toFile());
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImplTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImplTest.java
index 97a86d9e..44bffa0f 100644
--- a/src/test/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImplTest.java
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/DescriptorImplTest.java
@@ -186,7 +186,7 @@ void doTestConnectionPermissionTest() throws IOException {
     }
 
     @Test
-    void doTestConnectionTestWithEmptyArgs() throws ApiClientException, IOException {
+    void doTestConnectionTestWithEmptyArgs() throws IOException {
         final String apikey = "api-key";
         final String credentialsid = "credentials-id";
         // custom factory here so we can check that doTestConnection strips trailing slashes from the url
@@ -217,7 +217,7 @@ void doTestConnectionTestWithTeamPermissions() throws IOException {
         final String credentialsid = "credentials-id";
         final Team team = Team.builder()
                 .name("test-team")
-                .permissions(Stream.of(BOM_UPLOAD, VIEW_PORTFOLIO, VULNERABILITY_ANALYSIS, PROJECT_CREATION_UPLOAD, PORTFOLIO_MANAGEMENT).map(Enum::toString).collect(Collectors.toSet()))
+                .permissions(Stream.of(BOM_UPLOAD, VIEW_PORTFOLIO, VULNERABILITY_ANALYSIS, PROJECT_CREATION_UPLOAD, PORTFOLIO_MANAGEMENT, VIEW_POLICY_VIOLATION).map(Enum::toString).collect(Collectors.toSet()))
                 .build();
         // custom factory here so we can check that doTestConnection strips trailing slashes from the url
         ApiClientFactory factory = (url, apiKey, logger, connTimeout, readTimeout) -> {
@@ -245,6 +245,7 @@ void doTestConnectionTestWithTeamPermissions() throws IOException {
                     .contains(Messages.Publisher_PermissionTest_Okay(VULNERABILITY_ANALYSIS))
                     .contains(Messages.Publisher_PermissionTest_Okay(PROJECT_CREATION_UPLOAD))
                     .contains(Messages.Publisher_PermissionTest_Optional(PORTFOLIO_MANAGEMENT))
+                    .contains(Messages.Publisher_PermissionTest_Optional(VIEW_POLICY_VIOLATION))
                     .contains(team.getPermissions().toArray(String[]::new));
         }
     }
@@ -285,6 +286,7 @@ void doTestConnectionTestWithMissingRequiredPermission() throws IOException {
                     .contains(Messages.Publisher_PermissionTest_Okay(PROJECT_CREATION_UPLOAD))
                     .contains(Messages.Publisher_PermissionTest_Missing(PORTFOLIO_MANAGEMENT))
                     .contains(Messages.Publisher_PermissionTest_Missing(VIEW_VULNERABILITY))
+                    .contains(Messages.Publisher_PermissionTest_Missing(VIEW_POLICY_VIOLATION))
                     .contains(team.getPermissions().toArray(String[]::new));
         }
     }
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/FindingParserTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/FindingParserTest.java
index 03a10f3c..b4d8f40b 100644
--- a/src/test/java/org/jenkinsci/plugins/DependencyTrack/FindingParserTest.java
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/FindingParserTest.java
@@ -46,14 +46,15 @@ void parseTest() {
         Analysis a1 = new Analysis("state-1", false);
         Finding f1 = new Finding(c1, v1, a1, "matrix-1");
 
+        var aliases2 = List.of("CVE-1234-123456");
         var c2 = new Component("uuid-2", "name-2", "group-2", "version-2", "purl-2");
-        var v2 = new Vulnerability("uuid-2", "GITHUB", "GHSA-abcd-abcd-abcd", "title-1", "subtitle-1", "description-1", "recommendation-1", Severity.CRITICAL, 1, 2, "cweName-1", null);
+        var v2 = new Vulnerability("uuid-2", "GITHUB", "GHSA-abcd-abcd-abcd", "title-1", "subtitle-1", "description-1", "recommendation-1", Severity.CRITICAL, 1, 2, "cweName-1", aliases2);
         var f2 = new Finding(c2, v2, a1, "matrix-3");
 
         var c3 = new Component("uuid-3", "name-3", "group-3", "version-3", "purl-3");
-        var v3 = new Vulnerability("uuid-3", "FOO", "FOO-78945", "title-3", "subtitle-3", "description-3", "recommendation-3", Severity.CRITICAL, 1, 2, "cweName-1", null);
+        var v3 = new Vulnerability("uuid-3", "FOO", "FOO-78945", "title-3", "subtitle-3", "description-3", "recommendation-3", Severity.CRITICAL, 1, null, null, null);
         var f3 = new Finding(c3, v3, a1, "matrix-4");
 
-        assertThat(FindingParser.parse(Files.contentOf(findings, StandardCharsets.UTF_8))).containsExactly(f1, f2, f3);
+        assertThat(FindingParser.parse(Files.contentOf(findings, StandardCharsets.UTF_8))).usingRecursiveFieldByFieldElementComparator().containsExactly(f1, f2, f3);
     }
 }
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationParserTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationParserTest.java
new file mode 100644
index 00000000..a1a253a6
--- /dev/null
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationParserTest.java
@@ -0,0 +1,46 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import java.io.File;
+import java.nio.charset.StandardCharsets;
+import org.assertj.core.util.Files;
+import org.jenkinsci.plugins.DependencyTrack.model.Component;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationType;
+import org.junit.jupiter.api.Test;
+
+import static org.assertj.core.api.Assertions.assertThat;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+class ViolationParserTest {
+
+    @Test
+    void parseTest() {
+        final var findings = Files.contentOf(new File("src/test/resources/violations.json"), StandardCharsets.UTF_8);
+        final var c1 = new Component("uuid-1", "name-1", "group-1", "version-1", "purl-1");
+        final var c2 = new Component("uuid-2", "name-2", "group-2", "version-2", "purl-2");
+        final var v1 = new Violation("71e3ee99-86df-4819-a007-04dd9eb08278", ViolationType.SECURITY, ViolationState.INFO, "my-rule2", c2);
+        final var v2 = new Violation("965e0b34-64cb-44ba-ae65-5c05b6f296be", ViolationType.SECURITY, ViolationState.WARN, "my-rule1", c1);
+        final var v3 = new Violation("0f15c0b5-9849-41e8-9361-1a3f966bed76", ViolationType.SECURITY, ViolationState.FAIL, "my-rule3", c1);
+        
+        assertThat(ViolationParser.parse(findings)).usingRecursiveFieldByFieldElementComparator().containsExactly(v1, v2, v3);
+    }
+}
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobActionTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobActionTest.java
new file mode 100644
index 00000000..63cfd6ab
--- /dev/null
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsJobActionTest.java
@@ -0,0 +1,120 @@
+/*
+ * Copyright 2024 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import hudson.model.FreeStyleBuild;
+import hudson.model.FreeStyleProject;
+import hudson.model.Job;
+import hudson.model.Run;
+import hudson.model.User;
+import hudson.security.ACL;
+import hudson.security.ACLContext;
+import hudson.security.AccessDeniedException3;
+import hudson.util.RunList;
+import java.io.IOException;
+import java.util.List;
+import java.util.Map;
+import net.sf.json.JSONArray;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationState;
+import org.jenkinsci.plugins.DependencyTrack.model.ViolationType;
+import org.junit.jupiter.api.Test;
+import org.jvnet.hudson.test.JenkinsRule;
+import org.jvnet.hudson.test.MockAuthorizationStrategy;
+import org.jvnet.hudson.test.junit.jupiter.WithJenkins;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.assertj.core.api.Assertions.assertThatCode;
+import static org.assertj.core.api.Assertions.assertThatObject;
+import static org.assertj.core.api.Assertions.assertThatThrownBy;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+@WithJenkins
+class ViolationsJobActionTest {
+
+    @Test
+    void isTrendVisible() {
+        Job job = mock(Job.class);
+        Run run = mock(Run.class);
+        when(run.getAction(ViolationsRunAction.class)).thenReturn(new ViolationsRunAction(List.of()));
+        when(job.getBuilds())
+                .thenReturn(RunList.fromRuns(List.of()))
+                .thenReturn(RunList.fromRuns(List.of(run)));
+        var uut = new ViolationsJobAction(job);
+        assertThat(uut.isTrendVisible()).isFalse();
+        assertThat(uut.isTrendVisible()).isTrue();
+    }
+
+    @Test
+    void getViolationsTrendPermissionTest(JenkinsRule j) throws IOException {
+        final var mockAuthorizationStrategy = new MockAuthorizationStrategy();
+        j.jenkins.setAuthorizationStrategy(mockAuthorizationStrategy);
+        j.jenkins.setSecurityRealm(j.createDummySecurityRealm());
+        
+        FreeStyleProject project;
+        try (ACLContext ignored = ACL.as(User.getOrCreateByIdOrFullName(ACL.SYSTEM_USERNAME))) {
+            mockAuthorizationStrategy.grant(Job.CREATE).onRoot().to(ACL.SYSTEM_USERNAME);
+            project = j.createFreeStyleProject();
+        }
+        final var uut = new ViolationsJobAction(project);
+        final var anonymous = User.getOrCreateByIdOrFullName(ACL.ANONYMOUS_USERNAME);
+        // without propper permissions
+        try (ACLContext ignored = ACL.as(anonymous)) {
+            assertThatThrownBy(() -> uut.getViolationsTrend()).isInstanceOf(AccessDeniedException3.class);
+        }
+        // with propper permissions
+        try (ACLContext ignored = ACL.as(anonymous)) {
+            mockAuthorizationStrategy.grant(Job.READ).onItems(project).to(anonymous);
+            assertThatCode(() -> uut.getViolationsTrend()).doesNotThrowAnyException();
+        }
+    }
+
+    @Test
+    @SuppressWarnings("unchecked")
+    void getViolationsTrend(JenkinsRule j) throws IOException {
+        final var project = j.createFreeStyleProject();
+        final var ra1 = mock(ViolationsRunAction.class);
+        final var ra2 = mock(ViolationsRunAction.class);
+        final var run1 = mock(Run.class);
+        final var run2 = mock(Run.class);
+        final var v1 = List.of(new Violation("uuid-1", ViolationType.LICENSE, ViolationState.FAIL, "policy-1", null), new Violation("uuid-2", ViolationType.LICENSE, ViolationState.INFO, "policy-2", null), new Violation("uuid-2", ViolationType.OPERATIONAL, ViolationState.INFO, "policy-5", null));
+        final var v2 = List.of(new Violation("uuid-1", ViolationType.SECURITY, ViolationState.FAIL, "policy-3", null), new Violation("uuid-2", ViolationType.SECURITY, ViolationState.WARN, "policy-4", null));
+        when(run1.getNumber()).thenReturn(1);
+        when(run2.getNumber()).thenReturn(2);
+        when(ra1.hasViolations()).thenReturn(true);
+        when(ra1.getViolations()).thenReturn(v1);
+        when(ra1.getRun()).thenReturn(run1);
+        when(ra2.hasViolations()).thenReturn(true);
+        when(ra2.getViolations()).thenReturn(v2);
+        when(ra2.getRun()).thenReturn(run2);
+        final FreeStyleBuild b1 = new FreeStyleBuild(project);
+        b1.addAction(ra1);
+        final FreeStyleBuild b2 = new FreeStyleBuild(project);
+        b2.addAction(ra2);
+        project._getRuns().put(1, b1);
+        project._getRuns().put(2, b2);
+
+        final var uut = new ViolationsJobAction(project);
+        final var expected = JSONArray.fromObject(List.of(Map.of("buildNumber", 1, "fail", 1, "info", 2, "warn", 0), Map.of("buildNumber", 2, "fail", 1, "warn", 1, "info", 0)));
+        assertThatObject(uut.getViolationsTrend()).isEqualTo(expected);
+    }
+    
+}
diff --git a/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunActionTest.java b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunActionTest.java
new file mode 100644
index 00000000..29af6313
--- /dev/null
+++ b/src/test/java/org/jenkinsci/plugins/DependencyTrack/ViolationsRunActionTest.java
@@ -0,0 +1,105 @@
+/*
+ * Copyright 2021 OWASP.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.jenkinsci.plugins.DependencyTrack;
+
+import hudson.model.FreeStyleBuild;
+import hudson.model.FreeStyleProject;
+import hudson.model.Job;
+import hudson.model.User;
+import hudson.security.ACL;
+import hudson.security.ACLContext;
+import hudson.security.AccessDeniedException3;
+import java.io.File;
+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+import java.util.List;
+import net.sf.json.JSONArray;
+import org.assertj.core.api.Assertions;
+import org.assertj.core.util.Files;
+import org.jenkinsci.plugins.DependencyTrack.model.Violation;
+import org.junit.jupiter.api.Test;
+import org.jvnet.hudson.test.JenkinsRule;
+import org.jvnet.hudson.test.MockAuthorizationStrategy;
+import org.jvnet.hudson.test.junit.jupiter.WithJenkins;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.assertj.core.api.Assertions.assertThatCode;
+import static org.assertj.core.api.Assertions.assertThatThrownBy;
+
+/**
+ *
+ * @author Ronny "Sephiroth" Perinke <sephiroth@sephiroth-j.de>
+ */
+@WithJenkins
+class ViolationsRunActionTest {
+
+    private List<Violation> getTestViolations() {
+        File violations = new File("src/test/resources/violations.json");
+        return ViolationParser.parse(Files.contentOf(violations, StandardCharsets.UTF_8));
+    }
+
+    @Test
+    void getVersionHashTest(JenkinsRule j) {
+        final ViolationsRunAction uut = new ViolationsRunAction(null);
+        // does not equal sha-256 of empty string
+        assertThat(uut.getVersionHash()).describedAs("hashed Version should not be empty").matches("[a-f0-9]{64}").isNotEqualTo("e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855");
+    }
+
+    @Test
+    void getViolationsJsonPermissionTest(JenkinsRule j) throws IOException {
+        final MockAuthorizationStrategy mockAuthorizationStrategy = new MockAuthorizationStrategy();
+        j.jenkins.setAuthorizationStrategy(mockAuthorizationStrategy);
+        j.jenkins.setSecurityRealm(j.createDummySecurityRealm());
+
+        FreeStyleProject project;
+        try (ACLContext ignored = ACL.as(User.getOrCreateByIdOrFullName(ACL.SYSTEM_USERNAME))) {
+            mockAuthorizationStrategy.grant(Job.CREATE).onRoot().to(ACL.SYSTEM_USERNAME);
+            project = j.createFreeStyleProject();
+        }
+        final FreeStyleBuild b1 = new FreeStyleBuild(project);
+        final ViolationsRunAction uut = new ViolationsRunAction(getTestViolations());
+        uut.onLoad(b1);
+
+        final User anonymous = User.getOrCreateByIdOrFullName(ACL.ANONYMOUS_USERNAME);
+        // without propper permissions
+        try (ACLContext ignored = ACL.as(anonymous)) {
+            assertThatThrownBy(() -> uut.getViolationsJson()).isInstanceOf(AccessDeniedException3.class);
+        }
+        // with propper permissions
+        try (ACLContext ignored = ACL.as(anonymous)) {
+            mockAuthorizationStrategy.grant(Job.READ).onItems(project).to(anonymous);
+            assertThatCode(() -> uut.getViolationsJson()).doesNotThrowAnyException();
+        }
+    }
+
+    @Test
+    @SuppressWarnings("unchecked")
+    void getViolationsJson(JenkinsRule j) throws IOException {
+        final FreeStyleProject project = j.createFreeStyleProject();
+        final FreeStyleBuild b1 = new FreeStyleBuild(project);
+        final List<Violation> violations = getTestViolations();
+        final ViolationsRunAction uut = new ViolationsRunAction(violations);
+        uut.onLoad(b1);
+        Assertions.<JSONArray>assertThat(uut.getViolationsJson()).isEqualTo(JSONArray.fromObject(violations));
+    }
+
+    @Test
+    void hasViolationsTest() {
+        assertThat(new ViolationsRunAction(null).hasViolations()).isFalse();
+        assertThat(new ViolationsRunAction(List.of()).hasViolations()).isFalse();
+        assertThat(new ViolationsRunAction(getTestViolations()).hasViolations()).isTrue();
+    }
+}
diff --git a/src/test/java/org/jenkinsci/plugins/configuration/ConfigurationAsCodeTest.java b/src/test/java/org/jenkinsci/plugins/configuration/ConfigurationAsCodeTest.java
index 92079c1e..004c4a86 100644
--- a/src/test/java/org/jenkinsci/plugins/configuration/ConfigurationAsCodeTest.java
+++ b/src/test/java/org/jenkinsci/plugins/configuration/ConfigurationAsCodeTest.java
@@ -19,7 +19,7 @@ class ConfigurationAsCodeTest {
     private static JenkinsConfiguredWithCodeRule r;
 
     @Test
-    void shouldSupportConfigurationAsCode() throws Exception {
+    void shouldSupportConfigurationAsCode() {
         DescriptorImpl descriptor = r.getInstance().getDescriptorByType(DescriptorImpl.class);
 
         assertThat(descriptor)
diff --git a/src/test/resources/violations.json b/src/test/resources/violations.json
new file mode 100644
index 00000000..2fdb011d
--- /dev/null
+++ b/src/test/resources/violations.json
@@ -0,0 +1,76 @@
+[{
+        "type": "SECURITY",
+        "component": {
+            "uuid": "uuid-2",
+            "name": "name-2",
+            "group": "group-2",
+            "version": "version-2",
+            "purl": "purl-2"
+        },
+        "policyCondition": {
+            "policy": {
+                "name": "my-rule2",
+                "operator": "ANY",
+                "violationState": "INFO",
+                "uuid": "171bdab2-e58c-48d5-8b60-ba4f6771e370",
+                "includeChildren": false,
+                "global": true
+            },
+            "operator": "IS",
+            "subject": "SEVERITY",
+            "value": "UNASSIGNED",
+            "uuid": "841cd56d-bf1c-4c12-87af-0edec1378608"
+        },
+        "timestamp": 1723992479032,
+        "uuid": "71e3ee99-86df-4819-a007-04dd9eb08278"
+    }, {
+        "type": "SECURITY",
+        "component": {
+            "uuid": "uuid-1",
+            "name": "name-1",
+            "group": "group-1",
+            "version": "version-1",
+            "purl": "purl-1"
+        },
+        "policyCondition": {
+            "policy": {
+                "name": "my-rule1",
+                "operator": "ANY",
+                "violationState": "WARN",
+                "uuid": "c0763480-60eb-4b4b-9a2b-8b7f8a9f4f80",
+                "includeChildren": false,
+                "global": true
+            },
+            "operator": "IS",
+            "subject": "SEVERITY",
+            "value": "MEDIUM",
+            "uuid": "773f46f3-4b77-4894-9eef-5aef1d86e46a"
+        },
+        "timestamp": 1723992479029,
+        "uuid": "965e0b34-64cb-44ba-ae65-5c05b6f296be"
+    }, {
+        "type": "SECURITY",
+        "component": {
+            "uuid": "uuid-1",
+            "name": "name-1",
+            "group": "group-1",
+            "version": "version-1",
+            "purl": "purl-1"
+        },
+        "policyCondition": {
+            "policy": {
+                "name": "my-rule3",
+                "operator": "ANY",
+                "violationState": "FAIL",
+                "uuid": "171bdab2-e58c-48d5-8b60-ba4f6771e371",
+                "includeChildren": false,
+                "global": true
+            },
+            "operator": "IS",
+            "subject": "SEVERITY",
+            "value": "CRITICAL",
+            "uuid": "841cd56d-bf1c-4c12-87af-0edec1378608"
+        },
+        "timestamp": 1723992478947,
+        "uuid": "0f15c0b5-9849-41e8-9361-1a3f966bed76"
+    }]
\ No newline at end of file