Review reference information for the product.
The CLI is an interface to core AppScan® Source functionality.
deleteassess (da)
Welcome to the documentation for HCL® AppScan® Source.
HCL® AppScan® Source delivers maximum value to every user in your organization who plays a role in software security. Whether a security analyst, quality assurance professional, developer, or executive, the AppScan Source products deliver the functionality, flexibility, and power you need - right to your desktop.
Explore these new features that have been added to AppScan® Source - and note any features and capabilities that have been deprecated in this release.
Learn how to install the product.
Learn how to configure the product.
Learn how to administer the product.
Learn how to develop by using the product.
Learn how to extend the product.
Ounce/Make is a tool that automates the importing of configuration information into AppScan® Source from build environments that use makefile. Ounce/Make eliminates the need to import configuration information from makefiles manually; this the recommended method of configuring these projects.
makefile
makefiles
Many CLI commands require that you have the appropriate AppScan® Source permissions.
AppScan® Source command line interface (CLI) commands conform to a usage template with required and optional arguments, similar to a command shell. CLI commands are not case sensitive and do not require switches for different arguments.
about (a)
clearcache (cc)
delete (del)
deleteuser (du)
delvar (dv)
details (det)
echo
getaseinfo (gase)
help (?)
import (im)
info (i)
list (ls, dir)
listassess (la)
listgroups (lgrp)
listusers (lu)
log
login (in)
login_file
login_local (local)
logout (out)
moduser (mu)
newuser (nu)
openapplication (oa)
openassessmentfile (oaf)
openfolder (of)
password (passwd)
printuser (pu)
publishassess (pa)
publishassessase (pase)
quit
record (rc)
refresh (rf)
register (reg)
removeassess (da)
report (rpt)
scan (sc)
script (scr)
setaseinfo (sase)
If your AppScan® Enterprise Server has been installed with the AppScan Enterprise Console option, you can publish assessments to it. The Enterprise Console offers a variety of tools for working with your assessments - such as reporting features, issue management, trend analysis, and dashboards.
setcurrentobject (set, cd)
setvar (sv)
unregister (unreg)
You can use a configuration file to customize how a scan is run with the command line interface (using the scan command), wherein you can specify individual targets - or include or exclude targets. In addition, you can use the configuration file to specify additional information that would help to generate complete scan results.
The AppScan® Source command line interface (CLI) enables you to automatically import an AppScan Source project file (.ppf) and scan your source code. From the command line, you can run a script, such as the following sample, Run_Assessments.txt.
This section describes how to use Ounce/Ant, an AppScan® Source build utility that integrates AppScan Source and Apache Ant. Integrating Ounce/Ant with your Ant environment helps you automate builds and code assessments.
The Data Access API provides access to AppScan® Source-generated assessment results, including findings and finding details. It also provides access to assessment metrics such as analysis date and time, lines of code, V-density, and number of findings.
Learn common product terminology.
There are a number of self-help information resources and tools to help you troubleshoot problems.
This command has been renamed. See removeassess (da).