Review reference information for HCL® AppScan® Source, including using utilities, plug-ins, and APIs.
Learn common product terminology.
Welcome to the documentation for HCL® AppScan® Source.
Explore these new features that have been added to AppScan® Source - and note any features and capabilities that have been deprecated in this release.
Learn how to install, upgrade, and activate HCL® AppScan® Source.
Learn how to configure applications and projects, and set attributes and properties in HCL® AppScan® Source.
Learn how to administer user accounts and permissions, audit user activity, and manage integrations in HCL® AppScan® Source.
This section explains how to scan your source code and manage assessments in HCL® AppScan® Source.
Grouping similar findings allows security analysts or IT auditors to segment and triage source code problems. This section explains how to triage AppScan® Source assessments and analyze results.
Security analysts and risk managers can access reports of select findings or a series of audit reports that measure compliance with software security best practices and regulatory requirements. This section explains how to create reports of aggregate finding data.
Learn how to extend the product to meet specific development requirements.
Ounce/Make is a tool that automates the importing of configuration information into AppScan® Source from build environments that use makefile. Ounce/Make eliminates the need to import configuration information from makefiles manually; this the recommended method of configuring these projects.
makefile
makefiles
The CLI is an interface to core AppScan® Source functionality.
This section describes how to use Ounce/Ant, an AppScan® Source build utility that integrates AppScan Source and Apache Ant. Integrating Ounce/Ant with your Ant environment helps you automate builds and code assessments.
The Data Access API provides access to AppScan® Source-generated assessment results, including findings and finding details. It also provides access to assessment metrics such as analysis date and time, lines of code, V-density, and number of findings.
Self-help information, resources, and tools to help you troubleshoot issues while using HCL® AppScan® Source.