Versions Compared

Old Version 5

changes.mady.by.user David P

Saved on

compared with

New Version 6

changes.mady.by.user David P

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The Consolidated Project State window provides a high level summary of the status of each project.

...

Go to Dashboard > Project State and click the link on the Project Name. The Consolidated Project State window is displayed.

Summary

You can perform the following actions from the Consolidated Project State window:

  • Full Scan - perform a SAST scan for the whole project 

  • Incremental Scan - perform a SAST scan for only new and modified files since the last scan

  • Run OSA - perform Open Source Analysis on predefined open source libraries associated with this project.

    Info

    Note that a purchased or trial CxOSA license is required in order to run CxOSA projects. Please contact your Checkmarx Administrator.


    Info

    CI/Build plugins now use new core library with better compatibility and increased result accuracy. The new capability extracts dependencies resolving manifest files on the customer side.

    Additional Actions:

    • Edit Project - displays the projects details
    • Open Scan Summary - displays the scan summary

    • Open Viewer - displays the scan results viewer

    • CxOSA Viewer - displays the CxOSA scan results viewer (see CxOSA Viewer).

      Info

      Action options on the Consolidated Project State window are available according to the user's permissions.


Current Status - Includes the time/date stamp indicating the date and time of the last SAST scan 

SAST Vulnerabilities Status

...

Click the Full Scan Results link to display the Scan List for this project.

SAST Progress Status

Provides a graph with the progress status of each vulnerability severity.

...

 - Recurring vulnerability instances from previous scan

Open Source Analysis (CxOSA)

Open Source Analysis (OSA) helps you manage the security risk involved in using open source libraries in your applications. This provides open source analysis results for predefined open source libraries associated with this project. Includes a stamp indicating the date and time of the last analysis.

...

For more information about Open Source Analysis (CxOSA), please see the CxOSA Viewer.

Scan History

Click the Scans History tab to display the scan results for the project.

...