Execute PMD Static code analyzer on source code. It will help you find common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and many more. Dependency-check is an SCA tool and it allows a user to run scans on Dependencies which generates reports for known vulnerable components. that we used in our source. This operation can be executed after the build or before deployment on the artifact.
| Info |
|---|
OWASPDVThis operation will install OWASPDC V 8.1.0 tool on the endpoint. You can download other Version from OWASPDC . |
Target Properties
Property Name | Property Code | Required | Description |
OWASPDC Path | FDOWASPDC_PATH | No | Absolute path to OWASPDC Home folder (if this Value value left empty plug in plugin will install V8.1.0 on end point) |
...
Input Name | Input Code | Required | Description |
|---|---|---|---|
Project Source Folder | FDOWASPDC_INP_PROJECT_LOCATION | No | Path to the project. If a relative path is given, a path inside of the FD_TEMP_DIR will be assumed. |
Additional argumentsArguments | FDOWASPDC_INP_ADDITIONAL_ARGUMENTS | No | Additional arguments(ex: ---- enableExperimental) |
...