技術專欄
Fortify Software Security Center (SSC) 21.1.0新增功能:
Oracle: JDBC Driver Requirement
If you use Oracle as your Fortify Software Security Center database, you no longer need to manually add the JDBC driver. The installer now includes the JDBC Thin Driver (ojdbc8.jar).
Autoconfigure Update
You no longer need to provide db.driver.class, db.dialect, or db.like.specialCharacters to deploy SSC using autoconfiguration (<app_context>.autoconfig file). Deployment works for all databases if you provide values for db.username, db.password, and jdbc.url only.
Required Attribute Alert
If an administrator creates a new required attribute, Fortify Software Security Center alerts you to the addition so that you can specify a value for it in an application version.
Export Open Source Results
You can now export your open source data to a comma-separated file.
DENY Button for Artifacts
There is now a DENY button for artifacts that require approval but were uploaded by mistake. The denied results will not be merged with the application version but can be retained as part of the record.
New Reports
The premium report bundle now includes three new issue reports:
· DISA STIG 5.1
· NIST 800-53 Revision 5 (Accessed through the FISMA Compliance: FIPS-200 report template)
· CWE Top 25 2020
StartTLS Support for LDAP
StartTLS is now supported as a connection method to LDAP servers.
Enhanced Issue Filtering
Issue filtering from the OVERVIEW and AUDIT pages now includes enhancements.
You can now filter issues based on their category.
Kubernetes Support
· Added support for Kubernetes version 1.20.
· Added support for versions 3.4 and 3.5 of the Helm command-line tool.
Service Integrations Support
· Added support for Azure DevOps Server 2020
