-
Notifications
You must be signed in to change notification settings - Fork 32
Expand file tree
/
Copy pathfortify.config
More file actions
60 lines (54 loc) · 2.04 KB
/
fortify.config
File metadata and controls
60 lines (54 loc) · 2.04 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
# Translation options
[translation]
-exclude data
-exclude test
-exclude etc
# Scan options
[scan]
-scan-policy Security
#-rules .\etc\sast-custom-rules\example-custom-rules.xml
#-filter .\etc\sast-filters\example-filter.fpr
# SSC Upload options (uncomment and configure to enable FPR upload)
# Configuration precedence: Environment Variables > Config File > Script Parameters
# Environment variables: SSC_URL, SSC_AUTH_TOKEN, SSC_APP_NAME, SSC_APP_VERSION_NAME
[ssc]
#SSCUrl=YOUR_SSC_URL_HERE
#SSCAuthToken=YOUR_SSC_TOKEN_HERE
AppName=IWA-Java
AppVersion=main
# ScanCentral SAST Scan options (uncomment and configure to enable ScanCentral SAST upload)
# Configuration precedence: Environment Variables > Config File > Script Parameters
# Environment variables: SCANCENTRAL_SAST_CTRL_URL, SCANCENTRAL_SAST_POOL_ID, SCANCENTRAL_SAST_EMAIL_ID
[sc-sast]
ScancentralSastCtrlUrl=
ScancentralSastCtrlToken=
ScanCentralSastClientAuthToken=
ScancentralSastPoolId=00000000-0000-0000-0000-000000000002
ScancentralSastEmailId=do-not-reply@opentext.com
# ScanCentral DAST Scan options (uncomment and configure to enable ScanCentral DAST upload)
# Configuration precedence: Environment Variables > Config File > Script Parameters
# Environment variables: SCANCENTRAL_DAST_API_URL
[sc-dast]
ScancentralDastApiUrl=
# Aviator Audit options (uncomment and configure to enable Aviator audit functionality)
# Environment variables: AVIATOR_URL, AVIATOR_TOKEN, AVIATOR_APP_NAME
[aviator]
#AviatorUrl=YOUR_AVIATOR_URL_HERE
#AviatorToken=YOUR_AVIATOR_TOKEN_HERE
AviatorAppName="IWA-Java"
# Fortify on Demand options (uncomment and configure to enabled FoD scan)
# Environment variables: FOD_API_URL, FOD_USERNAME, FOD_PASSWORD, FOD_TENANT, PACKAGE_FILE, FOD_APPLICATION_NAME, FOD_RELEASE_NAME
[fod]
FodApiUrl=https://api.emea.fortify.com
#FoDClientId=YOUR_FOD_CLIENT_ID_HERE
#FodClientSecret=YOUR_FOD_CLIENT_SECRET_HERE
FodUsername=
FodPassword=
FodTenant=
PackageFile=fortifypackage.zip
FodApplicationName=IWA-Java
FodReleaseName=main
#FodReleaseId
ApiScope=api-tenant
PollingInterval=10
WaitFor=true