Skip to content
/ fortify-docker Public

A little repo with some dockerfiles which setup fortify in a container for consistent translations

5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ryohare/fortify-docker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
cpp.dockerfile
cpp.dockerfile
 
 
java11.dockerfile
java11.dockerfile
 
 
java8.dockerfile
java8.dockerfile
 
 
scan-mvn.py
scan-mvn.py
 
 

Repository files navigation

fortify-docker

A docker container for running fortify on different platforms. This was made to normalize fortify translations accross multiple platforms. Each docker file is geared towards a specific translation target (e.g. java8, 11, c, c++, etc)

Prereqs

Download the latest fortify sca from Microfocus and update the docker files with that binary name in the install step denoted with the comment install fortify in the dockerfiles.

Building the image

Example

docker build . -t fortify:java8 -f java8.dockerfile

Running a translation

# run container. Mount .m2 for maven credentials, .ssh for git ssh credentials
docker run -it --rm -v $HOME/.m2 -v `pwd`:/scan -v $HOME/.ssh foritfy:java8 /bin/bash
cd /scan

# fortify scan
sourceanalyzer -b <BUILD_ID> mvn install com.fortify.sca.plugins.maven:sca-maven-plugin:translate -DskipTests=true

About

A little repo with some dockerfiles which setup fortify in a container for consistent translations

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages