Fortify Jenkins Plugin (On-Premise)

88982

James R Community

James R | Community

The Fortify plugin for Jenkins.

1 reviews

395 downloads

Get It
See previous releases

Product compatibility

Fortify Static Code Analyzer Fortify Software Security Center

CATEGORY

Build Servers

Description
Suggested apps
Releases
Reviews

Have questions about this item?

Contact us
Subscribe to receive update notifications for this item
Subscribe

Description

The Fortify Jenkins Plugin (Jenkins Plugin) is used in conjunction with Fortify Software Security Center (Fortify Software Security Center), a collaborative system used to review and security analysis results. If you use a Fortify Static Code Analyzer plugin such as Maven to scan your source code after each build, the Jenkins plugin automatically uploads the Fortify Project Results (FPR) file to a Fortify Software Security Center server and enables you to view the details within Jenkins. It also provides metrics for each build and an overview of the results, without the need to connect to Fortify Software Security Center.

Updated documentation provide here.

Suggested apps

Fortify Security Assistant for Eclipse

James Rabon

Real-time security results in the Eclipse IDE to help developers identify and remove software vulnerabilities as they code.

Micro Focus COMMUNITY

Fortify BugTracker Utility

Micro Focus

FortifyBugTrackerUtility allows for submitting vulnerabilities from either Fortify on Demand (FoD) or Software Security Center (SSC) to various bug trackers and other external systems including ALM Octane, JIRA, Archer, and MS TFS.

Black Duck Hub Integration with SSC

James Rabon

View results of Black Duck's open source security testing along with Fortify app security scan results

Fortify SonarQube Plugin

James Rabon

Fortify SonarQube plug-in allows for importing Fortify scan results from Software Security Center into SonarQube.

Dependency-Track Plugin for Fortify SSC

Steve Springett

This plugin allows Fortify SSC to integrate results from Dependency-Track alongside findings from SCA, providing a consolidated view of security-centric code findings and vulnerable component findings.

Micro Focus COMMUNITY

WebInspect API Scanning (WISwag)

Micro Focus

WebInspect 19.2.0 supports simplified API scanning by directly consuming OpenAPI (Swagger) and Odata API definitions.

Fortify SourceAndLibScanner

James Rabon

SourceAndLibScanner provides a command-line interface that enables you to combine both your Fortify Static Code Analyzer and Sonatype scan of your Java application into a single command.

Sonatype Nexus Lifecycle integration with SSC

Sonatype

This bundle contains the parser plugin for Software Security Center and an integration service that can integrate results from Sonatype's Nexus Lifecycle alongside findings from SCA, providing a consolidated view of application vulnerabilities.

Micro Focus COMMUNITY

WebInspect Macro Recorder 5

Micro Focus

A standalone license-free version of the WebInspect 19.2 macro recorder.

Releases

Release

Date

Fortify Jenkins Plugin 19.2.30

Jan 17, 2020

More info Less info

Product compatibility

Fortify Static Code Analyzer

Version 20.20 · 20.10

Version 19.22 · 19.20 · 19.10

Version 18.20 · 18.10

Release notes

ScanCentral (Cloudscan) support added!

Languages

English

Fortify Jenkins Plugin 17.20

23.3 MB

|

Feb 1, 2018

More info Less info

Product compatibility

Fortify Static Code Analyzer

Version 17.1 · 17.20

Fortify Software Security Center

Version 17.1 · 17.20

Release notes

Updated to work with SCA / SSC 17.20

Languages

English

Files

(23.3 MB)

Your browser is not supported!

Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox

release-rel-2021-2-3-3805 | Wed Feb 24 23:06:24 PST 2021