Azure devops checkmarx 定期扫描所有内容
我正在尝试在 azure devops 中使用 checkmarx 的 fullScanCycle 参数,但由于某种原因,这不起作用。
- task: Security static source code analysis@2020
inputs:
CheckmarxService: "CheckMarx"
projectName: "myProjectName"
preset: "High and Medium"
fullTeamName: 'someName'
fullScansScheduled: true
fullScanCycle: 3
folderExclusion: "cvs, .svn, .hg , .git"
fileExtension: |
...
syncMode: true
vulnerabilityThreshold: true
high: 1
根据我的说法,我的代码应该增量扫描三次,第四次完整扫描。但这并没有发生。即使代码没有更改,我希望在三遍后再次扫描我的代码。我做错了什么吗?
您可以看到这些扫描只需要 += 1 分钟。完整扫描需要 30 多个..
I am trying to user the fullScanCycle parameter for checkmarx in azure devops, but for some reason this is not working.
- task: Security static source code analysis@2020
inputs:
CheckmarxService: "CheckMarx"
projectName: "myProjectName"
preset: "High and Medium"
fullTeamName: 'someName'
fullScansScheduled: true
fullScanCycle: 3
folderExclusion: "cvs, .svn, .hg , .git"
fileExtension: |
...
syncMode: true
vulnerabilityThreshold: true
high: 1
According to me my code should be scanned trice incrementaly and the fourt time full. but this is not happening. I want my code to be scanned again after three times even if the code was not changed. Am I doing something wrong?
you can see these scans only take += 1 minute. a full scan would take over 30..
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
如果没有源更改,Checkmarx 不会调用扫描。我相信实际上根本没有触发任何扫描。您应该在日志中看到这一点。
Checkmarx doesn't invoke the scan if there are no source changes. I believe that actually no scan was triggered at all. You should see that in the logs.