FortifyBugTrackerUtility allows for automated submission of vulnerability information from both Fortify on Demand (FoD) and Fortify Software Security Center (SSC) to bug tracking systems like Atlassian JIRA, ALM Octane and Microsoft Azure DevOps (formerly TFS/VSTS), and other external systems like RSA Archer or CSV file.The utility is fully configurable through an XML configuration file, specifying details like:
Some advantages compared to the native bug tracker functionality included with FoD/SSC:
For detailed usage and configuration instructions, please refer to the documentation included with the distribution zip file.This utility was developed by Fortify Professional Services in collaboration with the customer community. The plugin is provided as-is and is not supported through the regular Fortify support channels. If you require assistance with deployment, bug fixes or enhancements, we encourage you to reach out to your Fortify Professional Services representative, or send an email to email@example.com.
SSC: Added configuration options for including hidden/suppressed/removed vulnerabilities
Changes in this version:
Major update with lot's of internal refactoring, bug fixes and new and changed functionality. The sections below provide more details about the major changes from an end user perspective.Documentation & command usage:
Functionality & bug fixes:
Internal refactoring to use generic Fortify Client API library
Similar apps are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.
Related content and resources
Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox