Fortify Usage | VA Software Assurance

Skip to main content

VA Software Assurance

Home
Fortify
CodeQL
- CodeQL Usage
- CodeQL Errors
Snyk
- Snyk Usage
- Snyk Errors
Threat Modeling

This site uses Just the Docs, a documentation theme for Jekyll.

Fortify
Fortify Usage

These technical notes provide information on how to use Fortify SCA:

Table of contents

Fortify Cheat Sheet (Getting Started)
Fortify Documentation
Always Use Default Scan Settings
Common Fortify findings in jQuery
Does Fortify support jQuery and Node.js
Entering command-line arguments into Audit Workbench or Fortify IDE plugin
How to audit findings in third-party code
How to create a Fortify log file
How to increase memory for Fortify translation
How to install or update Fortify rulepacks
How to merge scan files
How to scan a Visual Studio Web Site Project
How to scan an iOS application
How to scan Apex code
How to scan applications using Modular Analysis
How to scan files with non-standard file extensions
How to scan files without file name extensions
How to scan Flex code
How to scan PL/SQL on Windows
How to scan TypeScript files
How to select a Fortify Visual Studio IDE Plugin
How to troubleshoot Fortify not scanning some files in a project
How to view error messages reported by Fortify
How to view Remediation Effort for findings in AWB
Should minified JavaScript code be scanned
Third-party JavaScript libraries not scanned by Fortify
Weak XML Schema - Unbounded Occurrences findings
When Fortify does not support the programming language version used
Which Filter Set value should be used
Which Fortify tool should I use to scan my application

GitHub at VA (part of VA OIT)
All content is available under Creative Commons Zero v1.0 Universal, except where otherwise stated.