runCxOSAScan

Initiates an OSA scan using the given account credentials. Also automatically creates a project in Checkmarx if none exists with the given name.

Inputs

Input NameInput CodeRequiredDescription
Checkmarx Account CodeFDCX_INP_ANALYSIS_TOOL_ACCOUNT_CODEYThe Checkmarx account with all required properties such as URL, Username and Password.
Checkmarx Project NameFDCX_INP_PROJECT_NAMEYThe project name to use in Checkmarx. If no project exists with this name one will be created.
Wait for Scan to CompleteFDCX_INP_WAIT_SCAN_COMPLETEYWhether to wait for the scan to complete or not. If set to false you will need to use readCxOSAScan to see results.
Scan DirectoryFDCX_INP_SCAN_DIRECTORYY

The directory where files to be scanned will be uploaded from. Also a zip file will be created in this directory containg those files. Typically you would want to leave this as the artifacts directory, which is the default.

Outputs

Output NameDescription
FDCX_OUT_SCAN_IDID of the scan.
FDCX_OUT_SCAN_RESULT_LINKLink to the scan results.
FDCX_OUT_HIGH_VULNERABILITIY_COUNTNumber of High Vulnerabilities.
FDCX_OUT_MEDIUM_VULNERABILITIY_COUNTNumber of Medium Vulnerabilities.
FDCX_OUT_LOW_VULNERABILITIY_COUNTNumber of Low Vulnerabilities.

Artifacts

This operation consumes artifacts from the artifacts repository.

Endpoint Selection

This operation delegates the selection to the workflow developer to determine.

Endpoint Execution

This operation will execute on any one of the selected endpoints and will be random in the determination of which one.