Integrations

AppScan on Cloud offers various plugins and integrations, that are listed on the AppScan on Cloud Integrations page:

New plugins are added regularly. See Integrations. See also the Community Plugins GitHub repository

ASoC supports the following plugins and integrations:
Plugin/Integration/Action Supported plugin version Supported ASoC version Description
Integrated Development Environments (IDE)
HCL AppScan Extension For Visual Studio 2022 2.4 and newer 1.3.0 and newer Execute SAST scans on AppScan 360° and pull scans and fix groups data within the IDE.
HCL AppScan JetBrains Plugin, including IntelliJ Idea, PyCharm, WebStorm, PhpStorm, Rider, CLion, GoLang, RubyMine 2.9 and newer 1.3.0 and newer Pull scans and fix groups data from AppScan 360° within the IDE.
Continuous integration/continuous delivery (CI/CD)
HCL AppScan Jenkins Plugin
  • SAST: 1.1.0
  • SAST and DAST: 1.4.0
  • SAST: 1.0.0 and newer
  • DAST: 1.3.0 and newer
Execute SAST and DAST scans using AppScan 360°.
HCL AppScan Azure DevOps Plugin
  • SAST: 2.1.0
  • SAST and DAST: 2.4.0
  • SAST: 1.0.0 and newer
  • DAST: 1.3.0 and newer
Execute SAST and DAST Scans using AppScan 360°.
HCL AppScan SAST GitHub Action 1.0.6 1.3.0 and newer Integrate SAST scanning into GitHub workflows.
HCL AppScan DAST GitHub Action 1.0.6 and newer 1.4.0 and newer Integrate DAST scanning into GitHub workflows.
HCL AppScan CodeSweep GitHub Action 2.1 and newer 1.3.0 and newer Scans modified code in pull requests alerting you to vulnerabilities before the code reaches your main branch.
HCL AppScan Maven Plugin 1.0.13 and newer 1.3.0 and newer Integrates SAST scans of your Java projects into the Maven build.
HCL AppScan Gradle Plugin 1.0.10 and newer 1.3.0 and newer Integrates SAST scans of your Java projects into the Gradle build.
Defect tracking systems
HCL AppScan Issue Gateway 1.2 and newer 1.3.0 and newer Pull SAST and DAST issues from AppScan 360° to supported DTS providers, namely Jira, Azure DevOps and Engineering Workflow Management (RTC).
Vulnerability management
HCL AppScan ServiceNow Integration 1.3.0 and newer 1.3.0 and newer Pull SAST and DAST issues from AppScan 360° to their respective SNOW instance.
Client tools
AppScan Activity Recorder 2.0.0 1.3.0 and newer Record traffic and actions to be used in AppScan 360° DAST scans.