Initiates a an SAST scan using the given account credentials. Also automatically creates a project in Checkmarx if none exists with the given name.
Inputs
Input Name | Input Code | Required | Description |
---|---|---|---|
Checkmarx Account Code |
| Y | The Checkmarx account with all |
required properties such as URL, Username and Password. | |||
Checkmarx Project Name |
| Y | The project name to use in Checkmarx. If no project exists with this name, one will be created. |
Wait for Scan to Complete |
| Y | Whether to wait for the scan to complete or not. If set to false, you will need to use getSASTScanResults to see results. |
Report Type |
| Y | Type of report to be generated. Only applies if Wait for Completion is set to true. |
Incremental Scan |
| Y | Whether to perform an Incremental Scan. |
Source Location |
| Y | Where to derive the source code from. If upload is used, any contents in FD_TEMP_DIR will be uploaded to Checkmarx. If Git is selected it will use first configured git scm. Only token-based authentication is supported for git. If none is selected whatever is configured already on the project in Checkmarx will be used. |
Exclude files |
| Y | Files (including wildcards) to exclude from the scan. |
Exclude folders |
| Y | Folders (including wildcards) to exclude from the scan. |
Is Public |
| Y | Whether the scan is public or not. |
Force Scan |
| Y | Whether to force a scan or not. |
Team Name |
| N | Team name to use to create project if none exists. If this value is not set, default team name on checkmarx account will be used instead. |
Outputs
Output Name | Description |
---|---|
| ID of the scan. |
| Link to the scan results. Only applies if wait for scan is true. |
| Number of High Vulnerabilities. Only applies if wait for scan is true. |
| Number of Medium Vulnerabilities. Only applies if wait for scan is true. |
| Number of Low Vulnerabilities. Only applies if wait for scan is true. |
Artifacts
This operation doesn’t consume or produce any artifacts.
...