Dependency-Track Plugin for Fortify SSC

91918

Steve S Community

Steve S | Community
This plugin allows Fortify SSC to integrate results from Dependency-Track alongside findings from SCA, providing a consolidated view of security-centric code findings and vulnerable component findings.
9 downloads

Description

Dependency-Track is an open source Software Composition Analysis (SCA) platform that allows organizations to identify and reduce risk from the use of third-party and open source components. Dependency-Track can automatically publish results to Fortify Software Security Center (SSC) providing a consolidated view of security-centric code findings and vulnerable component findings.Dependency-Track accomplishes this in the following ways:

  • Fortify SSC integration is configured in Dependency-Track
  • Dependency-Track pushes findings to Fortify SSC on a periodic basis (configurable)
  • A plugin for Fortify SSC parses Dependency-Track findings


Minimum Requirements


  • Dependency-Track v3.4.0 or later

  • Fortify SSC 17.20 or later

Releases

Release
Date
1.0.0 1.0.0
Nov 30, 2018
More info Less info
Product Compatibility
Fortify Software Security Center
Version 17.20
Version 18.10
Release Notes

Initial release

Languages
English

Resources

Unsubscribe from notifications

You are receiving release updates for this item because you have subscribed to the following products:
If you unsubscribe, you will no longer receive any notifications for these products.
Tip: to update your subscription preferences, go to Manage Subscriptions from your Dashboard, uncheck the products you no longer want to receive notifications for, and click 'Save'.
Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox