Fortify Hosted supports a range of plugins for the following IDE’s
- Eclipse
- Visual Studio
- VSCode
- JetBrains:
- IntelliJ IDEA
- AndroidStudio
- PyCharm
- WebStorm
The capability provided includes:
- Security Assistant
This is a lightweight security checker that highlights potential security vulnerabilities as you type your code.
- Analyze
This is the ability to run a SAST scan locally on your desktop. This functionality is licensed separately and may not be available for your implementation of Fortify Hosted.
- Analyze with ScanCentral SAST
This is the ability to submit your code to Fortify Software Security Center (SSC) to be scanned on our scan farm.
- Audit
The ability to work with the results of a SAST scan locally by opening a Fortify Project (FPR) file that it is either the output of a local scan or has been downloaded from SSC.
On completion, it can be exported and uploaded back to SSC.
- Collaborative Audit
The ability to work directly on the results of a SAST scan in collaboration with other users.
- Fortify on Demand
This is the ability to link to our managed service and is not relevant for Fortify Hosted users.
If your IDE is not supported, then you can work with the results of SAST scans using the Fortify Software Security Center web interface or our desktop tool Audit Workbench.
The functionality available for each tool is summarized below.
Security Assistant |
Analyze |
Analyze with ScanCentral |
Audit |
Collaborative Audit |
|
Eclipse |
X |
X |
X |
X |
X |
Visual Studio |
X | X | X | X | X |
VSCode |
X | X | X | ||
IntelliJ IDEA |
X | X | X | X | |
AndroidStudio |
X | X | X | X | |
PyCharm |
X | ||||
WebStorm |
X | ||||
SSC Web Interface |
X | X | |||
Audit Workbench |
X | X | X |
For more details, please refer to the documentation of the individual plugins. See Fortify Hosted Documentation