• State Not Answered
  • Replies reply
    1
  • Subscribers subscribers
    18
  • Views views
    76
  • Users 0 members are here
Related Discussions
Options

Fortify SCA deleting the source files during translation

Rushikesh Baiwar

I am facing a really wierd issue during translation phase of Fortify source code static analysis. When the translation reaches a particular project it starts deleting the files source files from the disk. All the files in the source directory gets deleted and finally we get the build error saying file not found. I have tried various versions of fortify since 17.2 , 18.2 and 19.2. But all versions gives me the same result.

My source code is in .Net. Has anyone else ever faced such an issue? Does anyone have any suggestions for me? Any help with this is highly appreciated.

Thanks

Rushi

  • 0

    Really odd for SCA to delete files. It will if
    1] you specify a clean step - but these are the NST files NOT the source code

    2] your build system jas a clean step (generally a good idea) BUT it has generated some source
    In this case it is not Fortify that is deleting it but the clean step. Again, presenting the clean code to Fortify is generally best step.

    Would help to know what build tool you are using. Mvn? Gradle? Make?

    Generic example

    sourceanalyzer -b pants -clean

    sourceanalyzer -b pants <<sca options>> <<put your build command here>>

    That should be the translate done - it should NOT have removed any source files unless the build command tells it to.

    If you were building on Linux you could strace the sourceanalyzer process and see where IT is triggering a delete - but I seriously doubt it is. I have been using SCA since 3.2 for about 12 years and never hit such an issue. So likely it is your build process that removes the files? You could have a unique scenario but I doubt it.

    Start debugging your build first.

Resources

Support
Documentation
Training
CyberRes Academy
Partner Portal
Contact us
Compliance
Help
Company
Privacy Policy
Terms of Use
Accessibility
Anti-Slavery Statement
Support
How To Buy
Careers
Investor Relations
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.