Initiates an OSA scan using the given account credentials. Also automatically creates a project in Checkmarx if none exists with the given name.
Inputs
Input Name | Input Code | Required | Description |
---|---|---|---|
Checkmarx Account Code | FDCX_INP_ANALYSIS_TOOL_ACCOUNT_CODE | Y | The Checkmarx account with all required properties such as URL, Username and Password. |
Checkmarx Project Name | FDCX_INP_PROJECT_NAME | Y | The project name to use in Checkmarx. If no project exists with this name one will be created. |
Wait for Scan to Complete | FDCX_INP_WAIT_SCAN_COMPLETE | Y | Whether to wait for the scan to complete or not. If set to false you will need to use readCxOSAScan to see results. |
Scan Directory | FDCX_INP_SCAN_DIRECTORY | Y | The directory where files to be scanned will be uploaded from. Also a zip file will be created in this directory containg those files. Typically you would want to leave this as the artifacts directory, which is the default. |
Outputs
Output Name | Description |
---|---|
FDCX_OUT_SCAN_ID | ID of the scan. |
FDCX_OUT_SCAN_RESULT_LINK | Link to the scan results. |
FDCX_OUT_HIGH_VULNERABILITIY_COUNT | Number of High Vulnerabilities. |
FDCX_OUT_MEDIUM_VULNERABILITIY_COUNT | Number of Medium Vulnerabilities. |
FDCX_OUT_LOW_VULNERABILITIY_COUNT | Number of Low Vulnerabilities. |
Artifacts
This operation consumes artifacts from the artifacts repository.
Endpoint Selection
This operation delegates the selection to the workflow developer to determine.
Endpoint Execution
This operation will execute on any one of the selected endpoints and will be random in the determination of which one.