Knowledge Doc: [Software Security Center] SSC 22.1.2 - 3rd party FioriDAST vulnerabilities cannot be uploaded in app versions

0 Likes

Summary
Users cannot upload their 3rd party vulnerabilities with [FioriDAST]. It results: [Exception: No valid analysis result was found. To resolve, scan.info file should be used.

Products
Fortify Software Security Center

Environment
Fortify SSC 22.1

Situation
During FioriDAST vulnerability attempt to upload in SSC, artifact fails and alerts: [Exception: No valid analysis result was found. To resolve, scan.info file should be used.

Cause
scan.info file was not used with xml file.

Resolution
1.Create scan.info file, add engineType=FIORIDAST and save the file.

2.Add [combine] FioriDAST_sample.xml and scan.info file in a zip file.

3.Upload to your FIORI app version.

Knowledge Base Article Link

03-Oct-2022•Knowledge
URL Name
KM000010910

Labels:

Knowledge Docs
Comment List
Related
Recommended