I wanted to let everyone know that I developed and published a Jenkins plugin for Fortify CloudScan. The plugin greatly simplifies the configuration of CloudScan jobs.
For those that do not know, Fortify CloudScan allows an organization to host their own internal cloud-based infrastructure of Static Code Analyzer (SCA) machines that are distributed scan jobs by a centralized controller and optionally integrated with Software Security Center (SSC). CloudScan is included with HP Fortify 4.30 and higher and was an optional component in previous versions of Fortify.
My organization recently rolled out CloudScan across our global R&D organization and every Fortify job in the company is leveraging the technology. If you've ever played with CloudScan, you'll know that the command to execute can get insanely huge, especially when SSC is involved. We needed something that would greatly simplify configuration, especially for build engineers without prior Fortify knowledge.
The plugin was just published today and will show up on the Jenkins update site later tonight.