Introduction

OpenText™ Core SAST Aviator is a cloud-based enterprise service that audits, identifies, and classifies each issue received from the SAST scan results as a true positive or a false positive.

OpenText™ Core SAST Aviator leverages the Large Language Model (LLM) technology to classify an issue as a true positive or a false positive and provide a detailed explanation on the classification. When an issue is classified as a true positive, SAST Aviator offers remediation recommendations, enabling users to resolve code issues quickly and accurately.

SAST Aviator is accessible using SAST in an off-cloud setup and SAST through the Fortify Hosted model. In both scenarios, you can use the open-source Fortify CLI tool to transmit SAST scan results from the OpenText™ Fortify Software Security Center to SAST Aviator for processing. The results from SAST Aviator are stored as audit information in the Fortify Software Security Center.