从Fortify sourceanalyzer命令行获取文本输出 [英] Obtaining text output from Fortify sourceanalyzer command line
问题描述
有关问题:
我想对我的.NET解决方案进行每晚的Fortify扫描,该扫描由TeamCity的命令行运行程序触发。我想将自己的结果自定义摘要发布到网页上。
I would like to perform a nightly Fortify scan of my .NET solution, triggered by TeamCity's command line runner. I want to post up my own custom summary of the results to a web page.
我想要的关键信息是每个关键级别的问题数量。
The key information I want is the number of issues per level of criticality.
我以前使用-f命令行开关与Audit Workbench客户端一起使用,但是生成的.FPR文件看起来很难手动解析和解释。
I have previously used the -f command-line switch for use with the Audit Workbench client, but the resulting .FPR file looks difficult to parse and interpret manually.
我正在使用 Fortify Static Code Analyzer 5.15.0.0060
,但似乎没有格式
我可以用来指定文本的选项。
I'm using Fortify Static Code Analyzer 5.15.0.0060
and there does not appear to be a -format
option that I can use to specify text.
有没有办法获取扫描发现的问题数量?
Is there a way to obtain the numbers of issues found by the scan?
推荐答案
使用ReportGenerator实用程序。它是专门为此目的而设计的。
Use the ReportGenerator utility. It was specifically designed for this purpose.
这篇关于从Fortify sourceanalyzer命令行获取文本输出的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!