About IRX files
About IRX files.
An IRX file is a secure and encrypted zip archive that contains the information that is necessary to run a full static analysis of your program. It is encrypted at-rest upon creation, as well as during transport to the cloud (over SSL).
Internally, an IRX archive contains these files and artifacts:
- A proprietary and obfuscated representation of your deployable program artifacts, built from your deployed source code (for example, Java bytecode or .Net MSIL). To learn which languages are supported for static analysis scans, see System requirements for static analysis).
- Any runtime script files that are deployed with your program that can be analyzed for security vulnerabilities (for example .js (Javascript) or .rb (Ruby) files).
- Static Analyzer configuration files that describe the application or project hierarchy and relationships or dependencies of your program. This allows for accurate and complete security analysis across project boundaries within your application.
- Static Analyzer log files generated during the creation of the archive (for diagnostics and support).
Important: An IRX generated by AppScan on Cloud can be used with AppScan on Cloud only; an IRX generated with AppScan 360° can be used with AppScan 360° only.