Kevin A. Lee
When using FortifyVulnerabilityExporter with tools that allow import of SCA findings from SSC/FoD allow Debricked information to be exported as well as Sonatype.
Add commands for invoking DAST Automated API. The following additional commands should be included under the `dast-scan` entity: ``` cancel (PREVIEW) Cancel a DAST scan. setup-website (PREVIEW) Configure DAST Automated...
If data for any FoD download commands has not been processed (e.g. scans or reports) a HTTP 202 code is returned. Currently we are waiting forever for a successful HTTP...
We have many customers that pass custom `targs/sargs` when starting ScanCentral scans remotely, including: - filter files (`-filter`) - custom rules (`-rules`) - scan precision (`-scan-precision`)/ scan policy (`-scan-policy`) We...
For consistency with other modules any FoD argument options should be changed to lowercase. For example: `fod app create-microservice-app --criticality=High --status=Development --owner=kevin.lee --microservices=ms1,ms2,ms3 --release-microservice=ms2 --auto-required-attrs fcli-test-a:1.0` should be changed to...
It would be good to be able to download an FPR containing the results of a ScanCentral SAST scan like the "scancentral" client "-f" option does. This can either be...
When running fcli on RHEL Linuxusing the Java distribution the following errors are shown: ``` Failed to load native library:jansi-2.4.0-f0a85c3b55c23dbb-libjansi.so. The native library file at /tmp/jansi-2.4.0-f0a85c3b55c23dbb-libjansi.so is not executable, make...
Update the 'fcli fod add' and 'fcli fod update' commands to allow users and groups to be given/revoked access to applications Examples include: ``` fcli fod update MyApp --add-user XXX...
Application Audit Templates apply filters at a per-application level that either suppress or change the severity of issues across all current and future scans. Once you have configured filters for...
Given an existing application release with scan results, create a command that allows vulnerability details to be retrieved. For example: `fcli fod release vulns -Filters "severityString:Critical|High"` Note: the above uses...