Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Resolved Issues and Changes

CategoryResolved Issues
HF17

The XML report has been enhanced with additional information regarding the ‘Queries Details’ and ‘Source Code’.

Queries Details now contains:

  • Risk: What might happen?
  • Cause: How does it happen?
  • General Recommendations: How to avoid it?
  • Source Code Examples.

Source Code now contains:

  • Num of LOCs (number of lines of code): Before and after the vulnerable line.
  • Method Scope: Brings the entire method of the vulnerable line.
  • File: Brings the entire file that has the vulnerable line.

For these new features, configuration keys were added to the CxComponentConfiguration table in the CxSAST database.

  • To activate the Queries Details feature, set the AddQueryMetaDataToXmlReport configuration key to “true”. 
  • To activate the Source Code feature, set the XmlReportSourceLinesRange configuration key to a number larger than 0.

.

CategoryResolved Issues
HF16

Fixed an issue which prevented the name of the plugin, which triggered the scan, from being displayed in the ORIGIN column on the Scans page.


Fixed an error which prevented the results of full and incremental scans from merging together.


Fixed an issue which prevented downloading logs from the WebPortal, where the location of the logs were changed from their default log location.


Fixed an issue which prevented the code contained in files with long path names from being displayed in the Results Viewer, 

Fixed an issue where team-level query overrides are sometimes saved under incorrect teams.


Fixed an issue on the Projects page of the WebPortal which prevented items from being displayed in the "Shared Libraries" textbox in the OSA (Open Source Analysis) tab.

Fixed an issue which prevented the Post Scan Action from creating reports when the system was configured for LDAP environments.


Improved the Incremental scan flows mechanism so that the various possible incremental scan results are more consistent with the full scan results.

Fixed an issue which sporadically caused empty scan reports to be generated.

Fixed an issue which occurred when scanning zip files containing more than 65535 files.


Improved the Incremental scan flows mechanism so that incremental scan results are more consistent with the full scan results.

Improved the stability of the incremental scan process where several incremental scans are being triggered in parallel.

For security fixes, click this link for additional information.

...