fortify-rules.properties

com.fortify.sca.rules.
password_regex.global

The regular expression to match password identifiers across all languages unless a language-specific rules property is set.

Value type: String

Default: (?i)(s|_)?(user|usr|member|admin|guest|login|default|
new|current|old|client|server|proxy|sqlserver|
my|mysql|mongo|mongodb|db|database|ldap|smtp|
email|email(_)?smtp)?(_|\.)?(pass(wd|word|phrase)|secret)

com.fortify.sca.rules
.password_regex.abap

Regular expression to match password identifiers in ABAP code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.actionscript

Regular expression to match password identifiers in ActionScript code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

Regular expression to match password identifiers in Salesforce Apex code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.cfml

Regular expression to match password identifiers in ColdFusion (CFML) code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (none)

com.fortify.sca.rules.
password_regex.cobol

Regular expression to match password identifiers in COBOL code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.config

Regular expression to match password identifiers in XML. Setting this property overrides the global regex password rules property. Do not use regular expression modifiers. The value is case-insensitive.

Value type: String

Default: (s|_)?(user|usr|member|admin|guest|login|default|
new|current|old|client|server|proxy|sqlserver|
my|mysql|mongo|mongodb|db|database|ldap|smtp|
email|email(_)?smtp)?(_|\.)?pass(wd|word|phrase)

com.fortify.sca.rules.
password_regex.cpp

Regular expression to match password identifiers in C and C++ code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.dart

Regular expression to match password identifiers in Dart code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.dotnet

Regular expression to match password identifiers in .NET code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.docker

Regular expression to match password identifiers in Dockerfiles. Setting this property overrides the global regex password rules property.

Value type: String

Default: .*pass(wd|word|phrase).*

com.fortify.sca.rules.
password_regex.golang

Regular expression to match password identifiers in Go code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.java

Regular expression to match password identifiers in Java code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.javascript

Regular expression to match password identifiers in JavaScript and TypeScript code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.json

Regular expression to match password identifiers in JSON. Setting this property overrides the global regex password rules property.

Value type: String

Default: (?i).*pass(wd|word|phrase).*

com.fortify.sca.rules.
password_regex.jsp

Regular expression used to match password identifiers in JSP code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.objc

Regular expression to match password identifiers in Objective-C and Objective-C++ code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (?i)(s|_)?(user|usr|member|admin|guest|login|default|
new|current|old|client|server|proxy|sqlserver|
my|mysql|mongo|mongodb|db|database|ldap|smtp|
email|email(_)?smtp)?(_|\.)?(token|pin|pass(wd|word|phrase))

com.fortify.sca.rules.
password_regex.php

Regular expression to match password identifiers in PHP code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

Regular expression to match password identifiers in PowerShell files. Setting this property overrides the global regex password rules property.

Value type: String

Default: (?i)([a-z_]*|\{.*)(pass(wd|word|phrase)|pwd)(.*\}|[a-z_]*)

com.fortify.sca.rules.
password_regex.properties

Regular expression to match password identifiers in Properties files. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.python

Regular expression to match password identifiers in Python code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.ruby

Regular expression to match password identifiers in Ruby code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.sql

Regular expression to match password identifiers in SQL code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.swift

Regular expression to match password identifiers in Swift code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (?i)(s|_)?(user|usr|member|admin|guest|login|default|
new|current|old|client|server|proxy|sqlserver|
my|mysql|mongo|mongodb|db|database|ldap|smtp|
email|email(_)?smtp)?(_|\.)?(token|pin|pass(wd|word|phrase))

com.fortify.sca.rules.
password_regex.vb

Regular expression to match password identifiers in VB6 code. Setting this property overrides the global regex password rules property.

Value type: String

Default: (value for com.fortify.sca.rules.password_regex.global)

com.fortify.sca.rules.
password_regex.yaml

Regular expression to match password identifiers in YAML. Setting this property overrides the global regex password rules property.

Value type: String

Default: (?i).*pass(wd|word|phrase).*

com.fortify.sca.rules.
key_regex.global

The regular expression to match key identifiers across all languages unless a language-specific regex key rules property is set.

Value type: String

Default: (?i)((enc|dec)(ryption|rypt)?|crypto|secret|private)(_)?key

com.fortify.sca.rules.
key_regex.abap

Regular expression to match key identifiers in ABAP code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.actionscript

Regular expression to match key identifiers in ActionScript code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.cfml

Regular expression to match key identifiers in CFML code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.cpp

Regular expression to match key identifiers in C and C++ code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.golang

Regular expression to match key identifiers in Go code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.java

Regular expression to match key identifiers in Java code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.javascript

Regular expression to match key identifiers in JavaScript and TypeScript code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.jsp

Regular expression to match key identifiers in JSP code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.objc

Regular expression used to match key identifiers in Objective-C and Objective-C++ code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.php

Regular expression to match key identifiers in PHP code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.python

Regular expression to match key identifiers in Python code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.ruby

Regular expression used to match key identifiers in Ruby code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.sql

Regular expression to match key identifiers in SQL code. Setting this property overrides the global regex key rules property.

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.swift

Regular expression used to match key identifiers in Swift code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

com.fortify.sca.rules.
key_regex.vb

Regular expression to match key identifiers in Visual Basic 6 code. Setting this property overrides the global regex key rules property.

Value type: String

Default: (value for com.fortify.sca.rules.key_regex.global)

Name of the serverless function called when no JSON/YAML cloud build config file exists.

Value type: String

Default: (none)

If set to true, the scanned cloud function is an HTTP trigger.

Value type: Boolean

Default: false

If set to true and OpenText SAST scans an application with a supported framework, produces a results file to be imported into OpenText™ Dynamic Application Security Testing to improve results.

Value type: Boolean

Default: false