MicroFocus FortifyPluginsforJetBrainsIDEsand AndroidStudio

Micro Focus Fortify Plugins for JetBrains IDEs and Android Studio

Software Version: 21.2.0

User Guide

Document Release Date: November 2021 Software Release Date: November 2021

User Guide

Legal Notices

Micro Focus The Lawn 22-30 Old Bath Road Newbury, Berkshire RG14 1QN UK

Warranty

The only warranties for products and services of Micro Focus and its affiliates and licensors ("Micro Focus") are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Micro Focus shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.

Restricted Rights Legend

Confidential computer software. Except as specifically indicated otherwise, a valid license from Micro Focus is required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license.

Copyright Notice

? Copyright 2012 - 2021 Micro Focus or one of its affiliates

Trademark Notices

All trademarks, service marks, product names, and logos included in this document are the property of their respective owners.

Documentation Updates

The title page of this document contains the following identifying information: l Software Version number l Document Release Date, which changes each time the document is updated l Software Release Date, which indicates the release date of this version of the software

This document was produced on November 04, 2021. To check for recent updates or to verify that you are using the most recent edition of a document, go to:

Micro Focus Fortify Plugins for JetBrains IDEs and Android Studio (21.2.0)

Page 2 of 50

User Guide

Contents

Preface Contacting Micro Focus Fortify Customer Support For More Information About the Documentation Set Fortify Product Feature Videos

Change Log

Chapter 1: Introduction About Fortify Plugins for JetBrains IDEs and Android Studio Related Documents All Products Micro Focus Fortify ScanCentral SAST Micro Focus Fortify Software Security Center Micro Focus Fortify Static Code Analyzer

Chapter 2: Using the Fortify Analysis Plugin About the Fortify Analysis Plugin Installation Installing the Fortify Analysis Plugin Uninstalling the Fortify Analysis Plugin Fortify Security Content Updating Fortify Security Content Updating Fortify Security Content on a Network that uses a Proxy Server About Analyzing the Source Code About Scanning Locally Setting Memory for Code Analysis Setting the Query Language Type Selecting the Fortify Security Content to Apply During Analysis Using Quick Scan Mode Excluding Dependent Modules from Analysis Specifying Additional Fortify Static Code Analyzer Options Synchronizing with Fortify Software Security Center

Micro Focus Fortify Plugins for JetBrains IDEs and Android Studio (21.2.0)

5 5 5 5 5

6

7 7 8 8 9 9 10

11 11 11 12 12 13 13 14 14 15 15 15 16 16 17 18

Page 3 of 50

User Guide

Scanning Projects Locally

18

Performing an Advanced Local Scan

20

About Scanning with Fortify ScanCentral SAST

23

Configuring Fortify ScanCentral SAST Options

24

Scanning Projects with Fortify ScanCentral SAST

27

Performing an Advanced Scan with Fortify ScanCentral SAST

28

Uploading Analysis Results to Fortify Software Security Center

32

Locating Analysis Plugin Log Files

33

Chapter 3: Using the Fortify Remediation Plugin

34

About the Fortify Remediation Plugin Installation

34

Installing the Fortify Remediation Plugin

34

Uninstalling the Fortify Remediation Plugin

35

Opening Fortify Software Security Center Application Versions

35

Viewing Audit Results

36

Grouping and Selecting Issues

37

Grouping Issues

38

Viewing Issue Information

39

Audit Tab

39

Recommendations Tab

40

Details Tab

40

History Tab

41

Assigning Users to Issues

41

Assigning Tags to Issues

41

Adding Comments to Issues

42

Customizing Issue Visibility

42

Searching for Issues

43

Search Modifiers

43

Locating Issues in your Source Code

49

Locating Remediation Plugin Log Files

49

Send Documentation Feedback

50

Micro Focus Fortify Plugins for JetBrains IDEs and Android Studio (21.2.0)

Page 4 of 50

User Guide Preface

Preface

Contacting Micro Focus Fortify Customer Support

Visit the Support website to: l Manage licenses and entitlements l Create and manage technical assistance requests l Browse documentation and knowledge articles l Download software l Explore the Community

For More Information

For more information about Fortify software products:

About the Documentation Set

The Fortify Software documentation set contains installation, user, and deployment guides for all Fortify Software products and components. In addition, you will find technical notes and release notes that describe new features, known issues, and last-minute updates. You can access the latest versions of these documents from the following Micro Focus Product Documentation website: To be notified of documentation updates between releases, subscribe to Fortify Product Announcements on the Micro Focus Community:

Fortify Product Feature Videos

You can find videos that highlight Fortify products and features on the Fortify Unplugged YouTube channel:

Micro Focus Fortify Plugins for JetBrains IDEs and Android Studio (21.2.0)

Page 5 of 50

 ................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download