Visual Studio Code Extension for Fortify Static Code Analyzer

preview_player
Показать описание
Demo of installing and using the Fortify IDE plugin for Visual Studio Code.

There are three different tasks: this video cover the Static Code Analyzer local execution of SCA and the remote execution of a remote SCA scan via ScanCentral. A later video will cover the Fortify on Demand task.

Fortify Static Code Analyzer (SCA)—Build Better Code and Secure Your Software
Fortify SCA is an automated static testing offering that builds security into the development process. Fortify SCA pinpoints the root cause of the vulnerability and prioritizes results, and provides best practices so developers can code more securely. It reviews code and helps developers identify and resolve issues with less effort and in less time.

Fortify Software Security Center (SSC) is a centralized management repository that provides security managers and program administrators with visibility into their entire application security testing program. Fortify SSC provides an accurate picture of your software risk across your enterprise by helping, manage security testing activities, prioritize remediation efforts based on risk potential, measure improvements, and generate cross-portfolio management reports.

- Connect with peers and share your knowledge
- Find solutions and answers to your technical questions
- Stay informed on new releases and product enhancements
- Access downloads, demos, videos and support tips
Рекомендации по теме
Комментарии
Автор

The plugin for Visual Studio Code has a problem, when we add parameters in the translation phase, the parameters are triggered in the scan phase. This happens in Static Code Analyzer.

CarlosHenrique-nrvo
Автор

where to download sca package and how to install?

amlivinginhell